Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Respect system wide minimum TLS version #709

Closed
ekohl opened this issue Jan 5, 2024 · 5 comments · Fixed by #710
Closed

Respect system wide minimum TLS version #709

ekohl opened this issue Jan 5, 2024 · 5 comments · Fixed by #710

Comments

@ekohl
Copy link
Contributor

ekohl commented Jan 5, 2024
edited
Loading

It is possible to have a system wide crypto policy for OpenSSL, and Red Hat based distros (Fedora, RHEL & friends) do this out of the box. As far as I can see, the way this is done is in /etc/pki/tls/openssl.cnf:

# Load default TLS policy configuration

openssl_conf = default_modules

[ default_modules ]

ssl_conf = ssl_module

[ ssl_module ]

system_default = crypto_policy

[ crypto_policy ]

.include /etc/crypto-policies/back-ends/opensslcnf.config

Then in /etc/crypto-policies/back-ends/opensslcnf.config there is:

CipherString = @SECLEVEL=2:kEECDH:kRSA:kEDH:kPSK:kDHEPSK:kECDHEPSK:-aDSS:-3DES:!DES:!RC4:!RC2:!IDEA:-SEED:!eNULL:!aNULL:!MD5:-SHA384:-CAMELLIA:-ARIA:-AESCCM8
Ciphersuites = TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:TLS_AES_128_CCM_SHA256
TLS.MinProtocol = TLSv1.2
TLS.MaxProtocol = TLSv1.3
DTLS.MinProtocol = DTLSv1.2
DTLS.MaxProtocol = DTLSv1.2
SignatureAlgorithms = ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:rsa_pss_pss_sha256:rsa_pss_rsae_sha256:rsa_pss_pss_sha384:rsa_pss_rsae_sha384:rsa_pss_pss_sha512:rsa_pss_rsae_sha512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:ECDSA+SHA1:RSA+SHA1

Note how there's a TLS.MinProtocol. This is not respected by Ruby, and I think it's because of this bit:

openssl/lib/openssl/ssl.rb

Line 25 in 1fa9fc5

:min_version => OpenSSL::SSL::TLS1_VERSION,

It doesn't appear to be possible to set this to nil and I don't see any constant that tells it to use the system default.

When I comment the line out, it does respect the system wide default. This appears to be done for ciphers already.
@ekohl
Copy link
Contributor Author

ekohl commented Jan 5, 2024

And Debian (checked on Debian Bullseye (11)) has:

openssl_conf = default_conf

[default_conf]
ssl_conf = ssl_sect

[ssl_sect]
system_default = system_default_sect

[system_default_sect]
MinProtocol = TLSv1.2
CipherString = DEFAULT@SECLEVEL=2

This was referenced Jan 5, 2024
Closed
Merged
@rhenium
Copy link
Member

rhenium commented Jan 8, 2024

OpenSSL::SSL::SSLContext#set_params overrides the minimum protocol version based on the discussion in https://bugs.ruby-lang.org/issues/9424. In short, the latest OpenSSL version at that time (1.0.1) still allowed SSL 3.0 and SSL 2.0 by default, and we wanted to disable them.

PR #710 seems reasonable to me.

wbclark added a commit to wbclark/katello that referenced this issue Mar 11, 2024
@wbclark
Fixes #36979 - Remove cdn_ssl_version setting
c2e79e0 
This was originally added to allow downgrading the CDN connection
SSL version for compatibility with much older proxy servers. That
should be less of a concern now.

We do still set a value of TLS v1.2 for the min_version, but only
because ruby/openssl#709 prevents using
the system-wide crypto policy for now. In the future, that can be
removed as well, restoring control to the user at the OS level.
@wbclark wbclark mentioned this issue Mar 11, 2024
Merged
wbclark added a commit to Katello/katello that referenced this issue Mar 13, 2024
@wbclark
Fixes #36979 - Remove cdn_ssl_version setting
78fcba9 
This was originally added to allow downgrading the CDN connection
SSL version for compatibility with much older proxy servers. That
should be less of a concern now.

We do still set a value of TLS v1.2 for the min_version, but only
because ruby/openssl#709 prevents using
the system-wide crypto policy for now. In the future, that can be
removed as well, restoring control to the user at the OS level.
qcjames53 pushed a commit to qcjames53/katello that referenced this issue Mar 19, 2024
@wbclark @qcjames53
Fixes #36979 - Remove cdn_ssl_version setting
815a5c7 
This was originally added to allow downgrading the CDN connection
SSL version for compatibility with much older proxy servers. That
should be less of a concern now.

We do still set a value of TLS v1.2 for the min_version, but only
because ruby/openssl#709 prevents using
the system-wide crypto policy for now. In the future, that can be
removed as well, restoring control to the user at the OS level.

(cherry picked from commit 78fcba9)
qcjames53 added a commit to Katello/katello that referenced this issue Mar 19, 2024
@qcjames53 @jeremylenz
@wbclark @ianballou @m-bucher
[CP] Katello 4.12.0 Release Cherry Picks (#10944)
67d0f5e 
* Refs #37148 - Remove removed_widgets override (#10927)

(cherry picked from commit 40a70ce)

* Fixes #35215 - Handle cloned hostgroups in hosts_and_hostgroups_helper (#10894)

(cherry picked from commit e3d46c6)

* Fixes #36979 - Remove cdn_ssl_version setting

This was originally added to allow downgrading the CDN connection
SSL version for compatibility with much older proxy servers. That
should be less of a concern now.

We do still set a value of TLS v1.2 for the min_version, but only
because ruby/openssl#709 prevents using
the system-wide crypto policy for now. In the future, that can be
removed as well, restoring control to the user at the OS level.

(cherry picked from commit 78fcba9)

* Fixes #37277 - Fix ACS randomly failing VCR tests (#10941)

(cherry picked from commit 6d93801)

* Fixes #37240 - Fix CCV duplicate repo warning (#10928)

(cherry picked from commit 02fc313)

---------

Co-authored-by: Jeremy Lenz <[email protected]>
Co-authored-by: William Bradford Clark <[email protected]>
Co-authored-by: Ian Ballou <[email protected]>
Co-authored-by: Markus Bucher <[email protected]>
@rhenium rhenium mentioned this issue Jun 11, 2024
Closed
@junaruga
Copy link
Member

junaruga commented Jan 28, 2025
edited
Loading

@rhenium Can we backport this issue's fix: ae215a4 (#710) into maint-3.2 and maint-3.1 branches that are in the normal maintenance status? Then I can see this fix in the future versions of the Ruby 3.3.z and 3.2.z.

@rhenium
Copy link
Member

rhenium commented Jan 29, 2025

I saw this (and the SSL options counterpart #767) as an enhancement rather than a bug fix. I'm not sure if we want to have this kind of changes in a patch release.

@junaruga
Copy link
Member

I saw this (and the SSL options counterpart #767) as an enhancement rather than a bug fix. I'm not sure if we want to have this kind of changes in a patch release.

All right. I was thinking that not respecting the system-wide OpenSSL configuration file was a bug. But if you think these (#710 and #767) are an enhancement rather than a bug fix, and it is not the case of the normal maintenance in our maintenance policy table, that's okay. I was asking you to backport the commit in the context of downstream Ruby 3.3 RPM in Fedora Linux version 41 and 40. And I can just keep the patch (#710) in the Ruby 3.3 RPMs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Only set min_version on OpenSSL < 1.1.0 ekohl/openssl
3 participants
@junaruga @ekohl @rhenium