Is openssl 1.1.0's "secure heap" feature useful for us?

Found out about this in the 1.1.0 changelog. Maybe it could be something to take advantage of.

changed milestone to %Tor: unspecified

added component::core tor/tor hardening milestone::Tor: unspecified openssl priority::medium security severity::normal status::new tls tor-client tor-relay type::enhancement labels

Sounds like a good idea - but we should make sure we turn it on for all private keys, not just the automatic RSA key protection. http://blog.nullspace.io/akamai-ssl-patch.html

Milestone renamed

Trac:
Milestone: Tor: 0.2.??? to Tor: 0.3.???

Finally admitting that 0.3.??? was a euphemism for Tor: unspecified all along.

Trac:
Milestone: Tor: 0.3.??? to Tor: unspecified
Keywords: N/A deleted, tor-03-unspecified-201612 added

Remove an old triaging keyword.

Trac:
Keywords: tor-03-unspecified-201612 deleted, N/A added

Trac:
Keywords: openssl110 deleted, openssl hardening security tor-relay tor-client added
Type: defect to enhancement

Trac:
Keywords: openssl hardening security tor-relay tor-client deleted, tls openssl hardening security tor-relay tor-client added

moved to tpo/core/tor#19983 (closed)