Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate default TLS ciphers for SecureTransport #2091

Closed
sethmlarson opened this issue Nov 24, 2020 · 5 comments
Closed

Investigate default TLS ciphers for SecureTransport #2091

sethmlarson opened this issue Nov 24, 2020 · 5 comments
Milestone
v2.0

Comments

@sethmlarson
Copy link
Member

#2082 makes system ciphers the default with stdlib SSLContext implementation. Can we take a similar approach with SecureTransport or should we still rely on urllib3's default list?

If we're relying on urllib3's default list we only need to make securetransport.inject_into_urllib3() set USE_SYSTEM_SSL_CIPHERS to False unconditionally.

We should remove all the RSA ciphers from the list if we end up not using system ciphers.

cc @pquentin would be great if you could test this out as our resident macOS owner :)
@sethmlarson sethmlarson added this to the v2.0 milestone Nov 24, 2020
@pquentin
Copy link
Member

Can you please clarify what you would like me to test?

@sethmlarson
Copy link
Member Author

@pquentin Seeing if we can remove the section where we explicitly configure ciphers and SecureTransport chooses mostly secure ciphers by default. If that's the case then we can rely on Apple/system defaults, otherwise we'll continue configuring our own.

@sethmlarson sethmlarson mentioned this issue Nov 25, 2020
Merged
@pquentin
Copy link
Member

SecureTransport in macOS 10.15 and 11.0 enables the following list by default:

TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_3DES_EDE_CBC_SHA

Travis supports many older macOS versions, I can run my script there if there's interest

@pquentin
Copy link
Member

Since Travis supports macOS 10.11+, I asked it to print ciphers for macOS 10.11 to 10.15.

The result : all versions from macOS 10.12 to 10.15 support precisely the ciphers mentioned above.

macOS 10.11 supports those too:

TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
TLS_ECDHE_RSA_WITH_RC4_128_SHA
TLS_RSA_WITH_RC4_128_SHA
TLS_RSA_WITH_RC4_128_MD5

But macOS 10.11 was EOL'd in September 2018, so we can probably ignore those extra ciphers.

@pquentin
Copy link
Member

As discussed on Discord today, this investigation is over: SecureTransport uses sensible ciphers and can remove one it it's broken. There's no need to set our own cipher list here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v2.0
Development

No branches or pull requests
2 participants
@pquentin @sethmlarson