x/net/websocket: chrome wss doesn't work with go-lang https/tls server

[xoba]

What steps will reproduce the problem?
If possible, include a link to a program on play.golang.org.

0. see http://play.golang.org/p/FM79CQOQT1 for my test code "ws.go", which
runs fine on a real machine but not in play environment because of websockets
1. "go run ws.go"
2. in a browser, visit unsecure url "http://localhost:8080"; ---
this is insecure version, you should see echo messages once per second
3. in a browser, visit secure url "https://localhost:8090"; ---
    this is secure version, depending on browser type, you should see same output as insecure version, or error; note
      that you will have to accept the untrusted certificate below and/or security exception manually when prompted.

What is the expected output?
list of log events in browser: "open", then multiple "message"
events once per second

What do you see instead?
for wss in chrome (my version is 28.0.1500.95), we see error and premature close events
(i.e., wss fails), whereas firefox and opera work fine. note that wss in chrome seems to
work fine with other non-golang https/tls servers. for insecure websockets (ws), all
three work fine: chrome, firefox, & opera.

Which compiler are you using (5g, 6g, 8g, gccgo)?
i run the test code as "go run ws.go"

Which operating system are you using?
http://linuxmint.com/ 64-bit v15

Which version are you using?  (run 'go version')
go version devel +d7db8c804ffa Mon Aug 12 13:03:50 2013 +1000 linux/amd64

Please provide any additional information below.
code at http://play.golang.org/p/FM79CQOQT1 is attached

Attachments:

1. ws.go (5559 bytes)

[robpike]

Comment 1:

No idea even who's responsible for this. It's possibly a chrome bug.

Labels changed: added priority-later, removed priority-triage, go1.2maybe.

[robpike]

Comment 2:

Status changed to Accepted.

[xoba]

Comment 3:

this updated version of ws.go (attached) now works in chrome browser with secure
websockets! with one important caveat, however: 
it embeds a node.js tls proxy server, which handles the tls on the frontend, proxying
the secure sockets to insecure ones (plain http) on the go-lang backend.
so for whatever reason, it seems the root issue is chrome-vs-golang tls, not secure
websockets per se.
node.js-to-chrome connections here are TLS 1.1, whereas the original go-lang-only ones
were SSL 3.0 with an additional warning about possibly outdated server code on chrome's
connection detail popup.
so for now, this is my workaround.

Attachments:

1. ws.go (5758 bytes)

[mb0]

Comment 4:

i have the same problem with wss: in chrome. it worked fine until revision 47ec7a68b1a2.
https://code.google.com/p/go/source/detail?r=47ec7a68b1a2b01cd9d6a4ea6d4f4042ea377eb7&name=default
the other problem after this revision is that client certificate authentication also
fails in chrome.
i would like to provide more info, but i have no idea where to start.

[mb0]

Comment 5:

i found a workaround. if i disable the ECDHE-ECDSA ciphers in chromium, both secure
websockets (wss:) and client certificate authentication work again:
$ chromium-browser --cipher-suite-blacklist=0xc007,0xc009,0xc00a
i got the cipher ids from crypt/tls/cipher_suites.go
TLS_ECDHE_ECDSA_WITH_RC4_128_SHA     uint16 = 0xc007
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA uint16 = 0xc009
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA uint16 = 0xc00a

[gopherbot]

Comment 6 by ben.lubar:

I've added a workaround to my program that disables the malfunctioning ciphers.
Something similar could work for other programs, so I'll post the commit here:
BenLubar/Rnoadm@45e1006

[andybalholm]

Comment 7:

I'm having a the same problem, but not with websockets. Running a MITM HTTPS proxy, I
get a lot of errors related to ECDHE_ECDSA when Chrome connects to Google sites through
my proxy. The problem seems to be that somehow a cipher suite using ECDSA is being
chosen even though my server certificate has an RSA private key—and therefore it can't
do ECDSA.
If I disable the ECDHE_ECDSA cipher suites in  crypto/tls/cipher_suites.go, the errors
go away. But the real solution would be for the function that picks the cipher suite to
take the type of server certificate into account.

[xoba]

Comment 8:

using this workaround provided by ben, works for me now -- thanks! i'm really curious
what should be fixed though --- golang or chromium browser or both?
TLSConfig: &tls.Config{
      // BUG: https://golang.org/issue/6121
      CipherSuites: []uint16{
        tls.TLS_RSA_WITH_RC4_128_SHA,
        tls.TLS_RSA_WITH_3DES_EDE_CBC_SHA,
        tls.TLS_RSA_WITH_AES_128_CBC_SHA,
        tls.TLS_RSA_WITH_AES_256_CBC_SHA,
      },
    }

[rsc]

Comment 9:

Labels changed: added go1.3maybe.

[rsc]

Comment 10:

Labels changed: added release-none, removed go1.3maybe.

[rsc]

Comment 11:

Labels changed: added repo-net.