Visiting https://www.websocket.org/echo.html in my local macos build yields:
jdm
All 3 comments
There is very little to go on here:
godot:master-servo jdm$ RUST_LOG=net,openssl,hyper_openssl,hyper ./mach run https://www.websocket.org/echo.html
[2020-07-01T05:04:00Z DEBUG net::image_cache] New image cache
[2020-07-01T05:04:02Z INFO net::cookie_storage] === COOKIES SENT:
[2020-07-01T05:04:02Z DEBUG net::http_cache] trying to construct cache response for "https://www.websocket.org/echo.html"
[2020-07-01T05:04:02Z INFO net::http_loader] GET request for https://www.websocket.org/echo.html
[2020-07-01T05:04:02Z INFO net::http_loader] - ("accept", "text/html, application/xhtml+xml, application/xml; q=0.9, */*; q=0.8")
[2020-07-01T05:04:02Z INFO net::http_loader] - ("accept-language", "en-US, en; q=0.5")
[2020-07-01T05:04:02Z INFO net::http_loader] - ("user-agent", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:75.0) Servo/1.0 Firefox/75.0")
[2020-07-01T05:04:02Z INFO net::http_loader] - ("accept-encoding", "gzip, deflate, br")
[2020-07-01T05:04:02Z TRACE hyper::client::pool] checkout waiting for idle connection: "https://www.websocket.org"
[2020-07-01T05:04:02Z TRACE hyper::client::connect::http] Http::connect; scheme=https, host=www.websocket.org, port=None
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::dns] resolving host="www.websocket.org"
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::http] connecting to 174.129.224.73:443
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::http] connected to Some(V4(174.129.224.73:443))
[2020-07-01T05:04:02Z TRACE hyper::client::pool] checkout dropped for "https://www.websocket.org"
[2020-07-01T05:04:17Z DEBUG net::resource_thread] Exited CoreResourceManager
35 threads are still running after shutdown (bad)
https://www.ssllabs.com/ssltest/analyze.html?d=www.websocket.org&hideResults=on
This server does not support Forward Secrecy with the reference browsers.
This server does not support Authenticated encryption (AEAD) cipher suites.
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f) WEAK
That's ciphersuite 61 in SSL_CIPHER_SUITE_FULL: 0.43% usage
This is a case for web advocacy. It's a fatal but rare configuration mistake, they support only one deprecated ciphersuite - it's the second worst Firefox currently has.
Servo already has the same sane minimum requirements as Apple App Transport Security, therefore neither iOS apps can connect to https://websocket.org.
Reproducible with:
mozregression --launch 2020-07-21 --pref security.ssl3.rsa_aes_128_sha:false -a https://websocket.org/
Secure Connection Failed
An error occurred during a connection to websocket.org. PR_END_OF_FILE_ERROR
I'll mail them. Sorry for not seeing this earlier.
Darkspirit
on 22 Jul 2020
Thanks for that analysis!
jdm
on 22 Jul 2020
Related issues
Grishy
路
3Comments
SimonSapin
路
3Comments
mrobinson
路
3Comments
kmcallister
路
4Comments
CYBAI
路
3Comments
Most helpful comment
https://www.ssllabs.com/ssltest/analyze.html?d=www.websocket.org&hideResults=on
That's ciphersuite 61 in SSL_CIPHER_SUITE_FULL: 0.43% usage
This is a case for web advocacy. It's a fatal but rare configuration mistake, they support only one deprecated ciphersuite - it's the second worst Firefox currently has.
Servo already has the same sane minimum requirements as Apple App Transport Security, therefore neither iOS apps can connect to https://websocket.org.
Reproducible with:
mozregression --launch 2020-07-21 --pref security.ssl3.rsa_aes_128_sha:false -a https://websocket.org/
I'll mail them. Sorry for not seeing this earlier.