Bad SSL behaviour - insecure and does not support SNI #106
Comments
|
I just found #66 and also found that |
|
Yes, that is true. I noticed the same a few days ago myself and implemented a fix for it that verifies the hostname and maintains standard http proxy support. I didn't just want to report it openly without also providing a fix. |
|
I pushed my solution from my private bitbucket repo and submitted it as pull request #107 . |
|
That looks horrifying. BTW: I tried just the follwing code: Done this way I get the SNI working, however hostname checking is still not performed by Android. |
|
@ondrap Have you tested version 2.2 yet? |
|
Just did that: com.neovisionaries.ws.client.HostnameUnverifiedException: The certificate of the peer (CN=xxx.yyy.org) does not match the expected hostname (zzz.yyy.org) The sockets are somewhat picky about which function you use to create the socket, with some it does SNI (e.g. see above), with some it doesn't (probably the one this library is using). |
|
Ok, good. I'm sure it would be appreciated if you manage to get SNI working properly without workarounds and submit a pull request. I don't have any server that requires SNI and I'm not that motivated to set one up just for this. I'm guessing the developer doesn't have one either. |
|
I'll try, I will need this, so hopefully I get to understand maven et al... |
|
You don't need to use Maven, that is just for deployment of official releases. Fork this repo, git clone your fork, make changes and commit and push them when done. You can then open a pull request from the GitHub website. |
|
I am just looking into the docs - according to https://developer.android.com/reference/android/net/SSLCertificateSocketFactory.html Looking at the docs here, it seems to me you could have used getDefaultHostnameVerifier()? https://developer.android.com/training/articles/security-ssl.html#WarningsSslSocket Unfortunately the code snippet at that page says: However, in the https://developer.android.com/reference/javax/net/ssl/SSLParameters.html it seems there is a function |
|
The default HostnameVerifier on Android does indeed check the hostname if invoked. The same is seemingly not true for Java's equivalent however and since this is a Java library not restricted to Android, I had to pull in a working HostnameVerifier with a compatible license. There is an internal one within the sun namespace but that is not supposed to be used by apps, could be removed at any time and doesn't necessarily exist on Android. None of this changes the fact that the library did not check the hostname in versions prior to 2.1. I confirmed that in practice both on Android 7.1.2 and Java 8. You can't just go by Android's documentation. |
|
I tried to implement it and it seems quite a problem...
|
|
I have created a PR #109 with an example implementation with both methods. |
|
This is a problem for me too...any idea how I can easily use ondrap's repo as a gradle dependency? |
|
Just a note -
I ended up not using SNI, because I need to support the older Androids :( |
|
To use it - I am not a Java expert, but this worked for me: just clone it, run |
|
Yeah...I just dropped the files into my project, and that seemed okay. However, I need to pass a cookie with an authentication token, like so: socket.addHeader("Cookie", "token=abc") The cookie does not appear to be sent (I get a 401 response now, instead of ssl certificate issues). I never got past the SNI problem, so I don't know if this is your modified version, or in original source source. Maybe I'm adding the cookie header wrong? |
|
Did you try to use the |
|
That one crashes pretty much immediately when I call socket.connectAsynchronously() or socket.connect(). Does it require a minimum anrdoid API of 24? That's a bit of an issue for me... |
|
Yes, it does. But the problem is that for API<24 neither works. It seems to me there just isn't an API on Android side to support it, the |
|
Is there any other way I can easily override the hostname validation? I don't want to go with the NaiveSSLContext method if I can avoid it. EDIT: I think I might go back to your master branch, @ondrap...it seemed to work with the exception of cookies not being passed. I can find an alternative to that for authentication purposes, as long as everything else works. I'll give it a try, and will note here if it works. |
|
Alright, ignore my problem with cookies. @ondrap, after I went back to your master branch, I found it's working perfectly (so far). My problem wasn't that cookies weren't being sent (they are). I was neglecting to send the protocol for my socket (which will also result in an 401 response from the service I'm working with). Is there any significant reason I wouldn't want to use this for Android apps (i.e., what's the rationale for the separate android-api24 branch)? |
|
The android-api24 branch uses android API 24 API. The master version doesn't, so it compiles with lower API correctly. But: it seems to me that even the master version does not work with API<24; the http call is made, but (at least on some phones??) the SNI does not seem to be sent. I haven't tested it, a friend tried to use it on his phone (API ~ 22) and SNI wasn't sent. You can try it on your devices and report the result... |
|
I see. I did get it working on a device with API v23 (from your master branch). When I get a chance, I'll try on a lower version. |
|
The timeout issue in #109 seems to be easily solvable by calling setSoTimeout right after creating the socket. |
|
I'm sorry I could have time to follow this discussion, but the problem seems to be serious? Has any pull request been posted? |
|
I'm having the same issue. It happens in devices with android version 6 and older.. (7 and 8 works) |
|
The problem is that Java < 8 and Android API < v23 (if I remember it correctly) doesn't support SNI and there doesn't seem a way to force it. I haven't tried with the higher APIs/Java, if my pull request is needed or not. |
|
Just tested SNI with API 22, Java 7 using org.java_websocket.client.WebSocketClient (https://github.com/TooTallNate/Java-WebSocket/) and LetsEncrypt certificate and it worked fine. Here is the relevant code: https://github.com/tinode/android-example/blob/master/tinodesdk/src/main/java/co/tinode/tinodesdk/Connection.java |
|
@or-else Does it check certificates at all? The problem with the older APIs is that it doesn't check the certificates; obviously SNI seems to work then (unless you use the default settings of HA-proxy that switches virtual hosts based on SNI...). |
|
@TakahikoKawasaki nv-websocket-client needs SNI support so that WebSockets over SSL works with Cloudflare. Two days ago, we enabled Cloudflare on our domain and our Android app broke. Cloudflare has supported websocket connections since 2014. and we confirm that it works with our web browser client and our iOS app, but not our Android app which uses nv-websocket-client. We debugged our Android app and determined that the reason WebSocket connections are failing is because nv-websocket-client is not sending SNI information to Cloudflare's servers. As a result, Cloudflare's servers do not know where to direct WebSocket traffic to. It is not possible to work around this by setting a default IP address because Cloudflare's servers are not dedicated to individual customers - they are shared with all their customers. As a result, we have had to disable Cloudflare for the time being. Will you be able to implement a solution? I found something here that might be of assistance: |
|
@vlasky
If the underlying system has I confirmed Sorry, I've not read details of this thread yet. I just found |
|
@TakahikoKawasaki my testing shows that nv-websocket-client 2.4 solves the SNI issue for phones running Android 7.0 (Nougat) and onwards, but not for earlier versions which are currently the majority of Android users. My idea for fixing nv-websocket-client in earlier versions of Android would be to perhaps create a Java HttpsURLConnection that is used only for negotiating an SNI connection with the server, then after the SNI phase is completed, nv-websocket-client would somehow take over HttpsURLConnection's internal socket object and use it. Of course, I haven't had time to try and test the feasibility or practicality of this idea due to time pressures. Instead, I managed to work around the problem by signing up to Cloudflare's Pro plan. All of Cloudflare's premium plans provide legacy support for clients without SNI. Basically, Cloudflare creates an SSL certificate for each edge server IP address with Subject Alternative Names (SANs) covering all the domains belonging to all premium customers assigned to that edge server. This means that even if a client connects to Cloudflare's edge server without providing SNI, the SSL certificate will be verified as valid. Cloudflare's web server can then read the HOST request header sent by the client and know which server to forward the SSL connection to. Here are some links on Cloudflare's website discussing SNI:
Although I have found an effective workaround for my immediate problem that now allows older Android phones to use our webapp, there is still a need for nv-websocket-client to have SNI support to cover the majority of Android users running versions of Android prior to Nougat. Until that happens, those Android users and creators of WebSocket-enabled webapps will continue to experience the following limitations:
|
|
Hello there. Someone wrote above about using Now take a look on the part of code where doing SNI processing. if (enableSNIExtension) {
String hostname = getRawHostnameSE();
if (hostname != null && hostname.indexOf('.') > 0 &&
!IPAddressUtil.isIPv4LiteralAddress(hostname) &&
!IPAddressUtil.isIPv6LiteralAddress(hostname)) {
clientHelloMessage.addServerNameIndicationExtension(hostname);
}
}As you can see if Solution: |
|
Any update regarding this topic? |
|
I think that I got SNI working on Android 4.4.1 and up with this code: Inspired by: smarek/httpclient-android#7 |
|
We're seeing this issue when using Azure App Services in the basic plan. The basic plan doesn't support IP-based TLS bindings, so an upgrade to the Standard plan is required. We use the basic plan for our dev and test environments, so we need to upgrade all of them, which is quite costly. |
|
@minichma Did you try my code snippet above? |
|
@twogood No, we didn't, because we consider using reflection kind of a last resort solution. In our case we prefer using IP-based TLS even though it's more costly. However, it's good to know that another workaround exists, so thanks for sharing! Maybe we'll add it as a fallback, because in situations where it wouldn't work, it would at least not do any harm. But then again, it would make testing even more complex and error prone. |
|
Android5.0 and Android6.0 issue: The certificate of the peer does not match the expected hostname (xxx.com) solution: on com.neovisionaries:nv-websocket-client:2.2 webSocket = new WebSocketFactory().createSocket(uri, 3000); java.lang.reflect.Method setHostnameMethod = ((SSLSocket) webSocket.getSocket()) .getClass().getMethod("setHostname", String.class); webSocket.setFrameQueueSize(5)//设置帧队列最大值为5 FRAME_QUEUE_SIZE |
I just spent an hour digging through this so I might be wrong, but it seems to me the
wss:protocol is seriously broken.TL;DR It connectes to a server, doesn't support SNI and doesn't check the certificate hostname. (I used tcpdump/wireshark).
The reason: I'd say this: http://stackoverflow.com/a/28031673/149901
https://github.com/TakahikoKawasaki/nv-websocket-client/blob/master/src/main/java/com/neovisionaries/ws/client/WebSocketFactory.java#L622
leads to this:
https://github.com/TakahikoKawasaki/nv-websocket-client/blob/master/src/main/java/com/neovisionaries/ws/client/SocketConnector.java#L110
I.e. as per the stackoverflow issue, it seems that connecting to the IP adress results in skipping all these checks. (BTW: haproxy requires correct use of SNI)
The text was updated successfully, but these errors were encountered: