nsqd: enable support for TLS1.3 #1385
Conversation
karalabe
changed the title
nsqd/nsqd.go
Outdated
| @@ -717,7 +717,7 @@ func buildTLSConfig(opts *Options) (*tls.Config, error) { | |||
| Certificates: []tls.Certificate{cert}, | |||
| ClientAuth: tlsClientAuthPolicy, | |||
| MinVersion: opts.TLSMinVersion, | |||
| MaxVersion: tls.VersionTLS12, // enable TLS_FALLBACK_SCSV prior to Go 1.5: https://go-review.googlesource.com/#/c/1776/ | |||
| MaxVersion: tls.VersionTLS13, // enable TLS_FALLBACK_SCSV prior to Go 1.5: https://go-review.googlesource.com/#/c/1776/ | |||
There was a problem hiding this comment.
I think this line can be removed, and the default zero value should work?
// MinVersion contains the minimum SSL/TLS version that is acceptable.
// If zero, then TLS 1.0 is taken as the minimum.
MinVersion uint16
// MaxVersion contains the maximum SSL/TLS version that is acceptable.
// If zero, then the maximum version supported by this package is used,
// which is currently TLS 1.3.
MaxVersion uint16
(I checked latest go-1.17 and back to go-1.13 and it's consistent with that behavior.)
(This code hasn't been revisited in a very long time - I think the comment, and what the code tries to do, is out-of-date.)
Currently NSQD is capped at TLS1.2. TLS1.3 has been stabilized since Go 1.14, released almost 2 years ago. Might as well bump it.
|
Btw, I needed to make a small tweak to the protocol tests where the TLS handshake was tested. In TLS1.2 and before, the handshake is a multi-RTT thing, where a lot of things are negotiated. If client certificates are used, those are sent over somewhere in the middle of the handshake and further things are negotiated afterwards. This means that a bad/missing client certificate will cause the handshake to fail. In TLS1.3, the handshake was reduced to 3 messages: Client -> Server; Server -> Client; Client -> Server (see code). The client certificate is transmitted in the last Client -> Server message; at which point the TLS handshake completes. If the client certificate is bad, that rejection is not returned by the handshake, rather in the first application read. This meant that the code in the tests that relied on |
|
Alternatively, I guess it would also be fine to try and read a single byte and have that fail; not to mix in the high level NSQ networking and risk some other error popping up. I can also do that if you want, just followed the test as close as possible in this iteration. |
|
This looks good to me, thanks! |
Currently NSQD is capped at TLS1.2. TLS1.3 has been stabilized since Go 1.14, released almost 2 years ago. Might as well bump it.