Drop WoSign/StartCom root certs in 8.0 #9434
Comments
ChALkeR
added
discuss
|
+1 |
|
/cc @nodejs/security |
|
We compile the root CA list from Mozilla's certdata.txt, it's just a matter of updating before the v8.0.0 release. The WoSign and StartCom certificates haven't been removed upstream yet, I just checked. |
|
@bnoordhuis I am aware of that, but they do plan removing those. As I mentioned above:
I think that we should add an exception from that rule and remove the certs manually, because in case if they remove those certs e.g. one week later than we cut 8.0 rc/release, the LTS be stuck with the insecure certs for several more years (or a breaking update would be needed without a semver-major version bump). |
We can and do update certificates in minor LTS releases so that's not an issue. We did so in v4.5.0, for example (and added a WoSign certificate in the process, I wryly note.) |
|
@bnoordhuis Ah, if removing certs in semver-minor LTS releases is fine, then it would be much easier to adopt this change. Another thing then — would we be able to keep the root certs until they are removed from the Mozilla root store, but distrust certs that are newer than 2016-10-21 and were signed by the affected StartCom and WoSign certs, like Google and Mozilla will do in 2017-01? |
We can. We already do something similar for CNNIC-issued certificates, see #1895. |
|
I too think we should not diverge from the Mozilla's certs unless absolutely necessary. |
|
Note to self: we can probably just take Mozilla's StartComAndWoSignData.inc from https://hg.mozilla.org/releases/mozilla-aurora/rev/f1024d90b420 but TBD how to deal with the back-dated certificates. |
|
We cannot check backdated certs unless Certificate Transparency is supported. Mozilla says that they deprecates WoSign/StartCom certs immediately once a backdated cert is found in the future. |
|
My thinking was that, since there are only 60-something known back-dated certificates, we can simply hard-code their serial numbers. |
|
They are all SHA-1 certs to be expired in the end of this year. I think it has little benefits to check them only for less than 2 months. I've just made a patch to check certs issued by StartCom and WoSign as mozilla does in If there is no objections to do it, I will submit it. |
|
That's a good point. I left some comments on the commit. Go ahead and file a pull request. |
|
@shigeki the commit looks quite good, please submit PR! |
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: #9434 PR-URL: #9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: nodejs#9434 PR-URL: nodejs#9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: nodejs#9434 PR-URL: nodejs#9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: #9434 PR-URL: #9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: #9434 PR-URL: #9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: #9434 PR-URL: #9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: #9434 PR-URL: #9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
When tls client connects to the server with certification issued by either StartCom or WoSign listed in StartComAndWoSignData.inc, check notBefore of the server certificate and CERT_REVOKED error returns if it is after 00:00:00 on October 21, 2016. See for details in https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/, https://security.googleblog.com/2016/10/distrusting-wosign-and-startcom.html and https://support.apple.com/en-us/HT204132 Fixes: nodejs/node#9434 PR-URL: nodejs/node#9469 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
The story: https://wiki.mozilla.org/CA:WoSign_Issues
We should probably take action on that in 8.0, especially noting that it will be an LTS version maintained until 2020-04.
Note that they might or might not be still be present in Mozilla root store at the time of 8.0 release, but they do plan removing them.
Related: #3159.
The text was updated successfully, but these errors were encountered: