Make Tor support TLS1.3 ciphers with OpenSSL 1.1.1

Without this patch, not only will TLS1.3 not work with Tor, but OpenSSL 1.1.1 with TLS1.3 enabled won't build any connections at all: It requires that either TLS1.3 be disabled, or some TLS1.3 ciphersuites be listed. Closes ticket 24978.
author: Nick Mathewson <nickm@torproject.org> 2018-01-23 09:23:21 -0500
committer: Nick Mathewson <nickm@torproject.org> 2018-01-23 09:23:21 -0500
commit: 0dbe3ddc334d5e343c2a926e972cc20cb131a42a (patch)
tree: ce09bf9541c95fe0e1da793531f2f4eeaf0d24c8 /changes
parent: a2aaf9509ba578f4e7705b506ee9a0f764d24ff2 (diff)
download: tor-0dbe3ddc334d5e343c2a926e972cc20cb131a42a.tar.gz
tor-0dbe3ddc334d5e343c2a926e972cc20cb131a42a.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/changes/bug24978 b/changes/bug24978
new file mode 100644
index 0000000000..5dc45c7442
--- /dev/null
+++ b/changes/bug24978
@@ -0,0 +1,7 @@
+  o Minor features (compatibility, OpenSSL):
+    - Tor will now support TLS1.3 once OpenSSL 1.1.1 is released.
+      Previous versions of Tor would not have worked with OpenSSL
+      1.1.1, since they neither disabled TLS 1.3 nor enabled any of the
+      ciphersuites it requires. Here we enable the TLS 1.3 ciphersuites.
+      Closes ticket 24978.
+
author	Nick Mathewson <nickm@torproject.org>	2018-01-23 09:23:21 -0500
committer	Nick Mathewson <nickm@torproject.org>	2018-01-23 09:23:21 -0500
commit	0dbe3ddc334d5e343c2a926e972cc20cb131a42a (patch)
tree	ce09bf9541c95fe0e1da793531f2f4eeaf0d24c8 /changes
parent	a2aaf9509ba578f4e7705b506ee9a0f764d24ff2 (diff)
download	tor-0dbe3ddc334d5e343c2a926e972cc20cb131a42a.tar.gz tor-0dbe3ddc334d5e343c2a926e972cc20cb131a42a.zip