Evaluate alternate SSL/TLS libraries: CyaSSL, GnuTLS, ...

Is tor able to compile and run against these libraries? Should we support/recommend them?

changed milestone to %Tor: unspecified

added component::core tor/tor lorax milestone::Tor: unspecified openssl portability priority::medium severity::normal ssl status::new tor-client type::task version::tor unspecified labels

See also: #13815 (moved) for a BoringSSL port #13415 (moved) for LibreSSL #13817 (moved) for (SSL fork) library detection

Yawning notes that the CyaSSL/GnuTLS GPL and Tor license are incompatible. But perhaps PolarSSL is an option.

Actually, the Tor license should be GPL compatible, since it doesn't include an advertising clause. OpenSSL is GPL-incompatible, but we don't have the same problem it does.

Trac:
Milestone: N/A to Tor: 0.2.7.x-final

Trac:
Status: new to assigned

Trac:
Milestone: Tor: 0.2.7.x-final to Tor: 0.2.8.x-final

Move a few tickets out of 0.2.8. I would take a good patch for most of these if somebody writes one. (If you do, please make the ticket needs_review and move it back into maint-0.2.8 milestone. :) )

Trac:
Milestone: Tor: 0.2.8.x-final to Tor: 0.2.???

Milestone renamed

Trac:
Milestone: Tor: 0.2.??? to Tor: 0.3.???

Finally admitting that 0.3.??? was a euphemism for Tor: unspecified all along.

Trac:
Keywords: N/A deleted, tor-03-unspecified-201612 added
Milestone: Tor: 0.3.??? to Tor: unspecified

Remove an old triaging keyword.

Trac:
Keywords: tor-03-unspecified-201612 deleted, N/A added

Change the status of all assigned/accepted Tor tickets with owner="" to "new".

Trac:
Status: assigned to new

Trac:
Sponsor: N/A to N/A
Severity: N/A to Normal
Reviewer: N/A to N/A
Keywords: lorax deleted, lorax tor-client portability ssl openssl added

GnuTLS might be helpful for anti-censorship use, despite their incompatible licenses.

I live in China and patched my own Tor with GnuTLS (using their gnutls_record_send_range to do extra padding), which works smoothly with vanilla bridges. Never seen GFW active probing on my bridge.

moved to tpo/core/tor#13977 (closed)