Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.
Sign upTLS connections should disallow handshakes which use small DH groups #8581
Comments
|
The first two are now blocked, but https://dh1024.badssl.com/ isn't. Assigning to @avadacatavra to decide. |
|
@nox I think we should block it |
|
Once I've blocked it, I think it would be good to make a more usable error message ("obsolete/insecure cipher--handshake failed" maybe). Currently, when we block these, the only message displayed is 'the handshake failed' |
|
Also, how do we feel about switching to the modern cipher list (less backward compatibility) in https://wiki.mozilla.org/Security/Server_Side_TLS? Major differences:
Based on my recent-ish cipherscan results, it looks like we shouldn't take too much of a hit on web compat |
|
Modern also drops non-AEAD suites, which probably breaks substantial portions of the web :-( +1 on removing DHE though, Chrome has already done this, and because the TLS handshake doesn't negotiate FFDH-params, there's probably no way to bump the minimum DH without also breaking stuff. |
|
"HTTPS state" in the Fetch spec can be either "modern" or "deprecated", so we can have two lists, one for the ones we prefer, and one for the ones which are bad but which we need to support for webcompat. |
|
See #16357. |
|
@avadacatavra if you want to switch modern on, you'll probably need to provide data on how bad the breakage is so we can make a decision. Feel free to remove DHE though, since it seems like other browsers are doing that. |
changed default ciphers to modern ones <!-- Please describe your changes on the following line: --> I changed the default ciphers to the modern set (ref: https://wiki.mozilla.org/Security/Server_Side_TLS), but added an option to use the intermediate set for web compatibility --- <!-- Thank you for contributing to Servo! Please replace each `[ ]` by `[X]` when the step is complete, and replace `__` with appropriate data: --> - [X] `./mach build -d` does not report any errors - [X] `./mach test-tidy` does not report any errors - [X] These changes fix #8581 (github issue number if applicable). <!-- Either: --> - [ ] There are tests for these changes OR - [ ] These changes do not require tests because _____ <!-- Also, please make sure that "Allow edits from maintainers" checkbox is checked, so that we can help you if you get stuck somewhere along the way.--> <!-- Pull requests that do not address these steps are welcome, but they will require additional verification as part of the review process. --> <!-- Reviewable:start --> --- This change is [<img src="https://reviewable.io/review_button.svg" height="34" align="absmiddle" alt="Reviewable"/>](https://reviewable.io/reviews/servo/servo/16535) <!-- Reviewable:end -->
changed default ciphers to modern ones <!-- Please describe your changes on the following line: --> I changed the default ciphers to the modern set (ref: https://wiki.mozilla.org/Security/Server_Side_TLS), but added an option to use the intermediate set for web compatibility --- <!-- Thank you for contributing to Servo! Please replace each `[ ]` by `[X]` when the step is complete, and replace `__` with appropriate data: --> - [X] `./mach build -d` does not report any errors - [X] `./mach test-tidy` does not report any errors - [X] These changes fix #8581 (github issue number if applicable). <!-- Either: --> - [ ] There are tests for these changes OR - [ ] These changes do not require tests because _____ <!-- Also, please make sure that "Allow edits from maintainers" checkbox is checked, so that we can help you if you get stuck somewhere along the way.--> <!-- Pull requests that do not address these steps are welcome, but they will require additional verification as part of the review process. --> <!-- Reviewable:start --> --- This change is [<img src="https://reviewable.io/review_button.svg" height="34" align="absmiddle" alt="Reviewable"/>](https://reviewable.io/reviews/servo/servo/16535) <!-- Reviewable:end -->
changed default ciphers to modern ones <!-- Please describe your changes on the following line: --> I changed the default ciphers to the modern set (ref: https://wiki.mozilla.org/Security/Server_Side_TLS), but added an option to use the intermediate set for web compatibility --- <!-- Thank you for contributing to Servo! Please replace each `[ ]` by `[X]` when the step is complete, and replace `__` with appropriate data: --> - [X] `./mach build -d` does not report any errors - [X] `./mach test-tidy` does not report any errors - [X] These changes fix #8581 (github issue number if applicable). <!-- Either: --> - [ ] There are tests for these changes OR - [ ] These changes do not require tests because _____ <!-- Also, please make sure that "Allow edits from maintainers" checkbox is checked, so that we can help you if you get stuck somewhere along the way.--> <!-- Pull requests that do not address these steps are welcome, but they will require additional verification as part of the review process. --> <!-- Reviewable:start --> --- This change is [<img src="https://reviewable.io/review_button.svg" height="34" align="absmiddle" alt="Reviewable"/>](https://reviewable.io/reviews/servo/servo/16535) <!-- Reviewable:end -->
|
This can be closed. Support for DHE has been removed with #22243. |
See for example:
which should be blocked. (https://dh1024.badssl.com/ should also be blocked eventually IMO, but is not yet in many major browsers)