seems that tor-0.2.1.22 compiled against dev-libs/openssl-0.9.8l-r2 isn't able to do TLS handshake. Solution: tor-0.2.1.24 avaliable on homepage compiled against the same openssl libs is working OK. Reproducible: Always Steps to Reproduce: just install / run it... tail -f /var/log/tor/tor.log Actual Results: Mar 17 00:17:32.908 [notice] Tor 0.2.1.22 opening log file. Mar 17 00:17:32.909 [notice] Parsing GEOIP file. Mar 17 00:17:33.399 [notice] No current certificate known for authority moria1; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority tor26; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority dizum; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority ides; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority gabelmoo; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority dannenberg; launching request. Mar 17 00:17:33.399 [notice] No current certificate known for authority urras; launching request. Mar 17 00:17:33.399 [notice] Bootstrapped 5%: Connecting to directory server. Mar 17 00:17:33.399 [notice] I learned some more directory information, but not enough to build a circuit: We have no network-status consensus. Mar 17 00:17:33.417 [notice] Bootstrapped 10%: Finishing handshake with directory server. Mar 17 00:17:33.487 [warn] TLS error: unexpected close while renegotiating Mar 17 00:17:33.487 [notice] No current certificate known for authority moria1; launching request. Mar 17 00:17:33.487 [notice] No current certificate known for authority tor26; launching request. Mar 17 00:17:33.488 [notice] No current certificate known for authority dizum; launching request. Mar 17 00:17:33.488 [notice] No current certificate known for authority ides; launching request. Mar 17 00:17:33.488 [notice] No current certificate known for authority gabelmoo; launching request. Mar 17 00:17:33.488 [notice] No current certificate known for authority dannenberg; launching request. Mar 17 00:17:33.488 [notice] No current certificate known for authority urras; launching request. Mar 17 00:17:33.590 [warn] TLS error: unexpected close while renegotiating Expected Results: Mar 17 00:18:48.959 [notice] Tor v0.2.1.24. This is experimental software. Do not rely on it for strong anonymity. (Running on Linux i686) Mar 17 00:18:48.960 [notice] Configuration file "/usr/local/etc/tor/torrc" not present, using reasonable defaults. Mar 17 00:18:48.961 [notice] Initialized libevent version 1.4.13-stable using method epoll. Good. Mar 17 00:18:48.961 [notice] Opening Socks listener on 127.0.0.1:9050 Mar 17 00:18:48.963 [warn] You are running Tor as root. You don't need to, and you probably shouldn't. Mar 17 00:18:49.071 [notice] OpenSSL OpenSSL 0.9.8l 5 Nov 2009 looks like version 0.9.8l; I will try SSL3_FLAGS to enable renegotation. Mar 17 00:18:49.697 [notice] We now have enough directory information to build circuits. Mar 17 00:18:49.697 [notice] Bootstrapped 80%: Connecting to the Tor network. Mar 17 00:18:49.724 [notice] Bootstrapped 85%: Finishing handshake with first hop. Mar 17 00:18:49.885 [notice] Bootstrapped 90%: Establishing a Tor circuit. Mar 17 00:18:51.910 [notice] Tor has successfully opened a circuit. Looks like client functionality is working. Mar 17 00:18:51.910 [notice] Bootstrapped 100%: Done. emerge --info Portage 2.1.7.17 (default/linux/x86/10.0/desktop, gcc-4.1.2, glibc-2.10.1-r1, 2.6.31-gentoo-r6 i686) ================================================================= System uname: Linux-2.6.31-gentoo-r6-i686-Intel-R-_Core-TM-2_Duo_CPU_T5670_@_1.80GHz-with-gentoo-1.12.13 Timestamp of tree: Tue, 16 Mar 2010 22:45:02 +0000 ccache version 2.4 [enabled] app-shells/bash: 4.0_p35 dev-java/java-config: 2.1.10 dev-lang/python: 2.4.6, 2.5.4-r4, 2.6.4 dev-python/pycrypto: 2.0.1-r6 dev-util/ccache: 2.4-r7 dev-util/cmake: 2.6.4-r3 sys-apps/baselayout: 1.12.13 sys-apps/sandbox: 1.6-r2 sys-devel/autoconf: 2.13, 2.63-r1 sys-devel/automake: 1.9.6-r2, 1.10.2 sys-devel/binutils: 2.18-r3 sys-devel/gcc: 4.1.2, 4.3.4 sys-devel/gcc-config: 1.4.1 sys-devel/libtool: 2.2.6b virtual/os-headers: 2.6.27-r2 ACCEPT_KEYWORDS="x86" ACCEPT_LICENSE="* -@EULA" CBUILD="i686-pc-linux-gnu" CFLAGS="-O2 -march=i686 -pipe" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/X11/xkb" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/php/apache2-php5/ext-active/ /etc/php/cgi-php5/ext-active/ /etc/php/cli-ph p5/ext-active/ /etc/revdep-rebuild /etc/sandbox.d /etc/splash /etc/terminfo /etc/udev/rules.d" CXXFLAGS="-O2 -march=i686 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="assume-digests ccache distlocks fixpackages news parallel-fetch protect-owned sandbox sfperms strict unmerge-logs unmerge-orphans userfetch" GENTOO_MIRRORS="http://gentoo.mirror.web4u.cz/ http://gentoo.inode.at/ http://gentoo.ynet.sk/pub http://gd.tuwien.ac.at/opsys/linux/gentoo/" LDFLAGS="-Wl,-O1" MAKEOPTS="-j3" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packag es" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" SYNC="rsync://rsync.europe.gentoo.org/gentoo-portage" USE="X X509 a52 aac acl acomposite acpi alsa bash-completion berkdb bluetooth branding bzip2 cairo cdr cli consolekit cracklib crypt cups cxx dbus dri dts dvd dvdr eds emboss encode esd e vo fam firefox flac fontforge gdbm gif gnutls gpm gstreamer gtk hal iconv idea java jpeg jpeg2k kerberos lame ldap libnotify loop-aes mad md5sum mikmod mng modules motif mp3 mp4 mpeg mudf lap musepack ncurses nls nptl nptlonly ogg opengl openmp pam pcre pdf perl php pic png ppds pppd python qt3support qt4 quicktime readline reflection samba sdl session spell spl sqlite sse 2 ssl startup-notification svg sysfs tcpd thunar tiff truetype unicode usb utils vorbis win32codecs wma x264 x86 xml xorg xprint xulrunner xv xvid zlib" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1 emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" ALSA_PCM_PLUGI NS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES ="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs d av_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_ id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="keyboard mouse cirrus synaptics evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" RUBY_TARGETS="ruby18" USERLAND="GNU" VIDEO_CARDS="fbdev vesa" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, LANG, LC_ALL, LINGUAS, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS, PORTDIR_OVERLAY
Please paste your "emerge -pv tor openssl" output.
This just entered in the tree, but fixes severe issues. Please stabilise. Thanks for your report, Ed, .25 is out meanwhile.
x86 stable
ppc stable
sparc stable
amd64 stable
Reassigning to Christian (fauli) as Gustavo was retired.
ppc64 stable, closing
