SSL error on websocket.org

[jdm]

Visiting https://www.websocket.org/echo.html in my local macos build yields:

[jdm]

There is very little to go on here:

godot:master-servo jdm$ RUST_LOG=net,openssl,hyper_openssl,hyper ./mach run https://www.websocket.org/echo.html
[2020-07-01T05:04:00Z DEBUG net::image_cache] New image cache
[2020-07-01T05:04:02Z INFO  net::cookie_storage]  === COOKIES SENT:
[2020-07-01T05:04:02Z DEBUG net::http_cache] trying to construct cache response for "https://www.websocket.org/echo.html"
[2020-07-01T05:04:02Z INFO  net::http_loader] GET request for https://www.websocket.org/echo.html
[2020-07-01T05:04:02Z INFO  net::http_loader]  - ("accept", "text/html, application/xhtml+xml, application/xml; q=0.9, */*; q=0.8")
[2020-07-01T05:04:02Z INFO  net::http_loader]  - ("accept-language", "en-US, en; q=0.5")
[2020-07-01T05:04:02Z INFO  net::http_loader]  - ("user-agent", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:75.0) Servo/1.0 Firefox/75.0")
[2020-07-01T05:04:02Z INFO  net::http_loader]  - ("accept-encoding", "gzip, deflate, br")
[2020-07-01T05:04:02Z TRACE hyper::client::pool] checkout waiting for idle connection: "https://www.websocket.org"
[2020-07-01T05:04:02Z TRACE hyper::client::connect::http] Http::connect; scheme=https, host=www.websocket.org, port=None
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::dns] resolving host="www.websocket.org"
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::http] connecting to 174.129.224.73:443
[2020-07-01T05:04:02Z DEBUG hyper::client::connect::http] connected to Some(V4(174.129.224.73:443))
[2020-07-01T05:04:02Z TRACE hyper::client::pool] checkout dropped for "https://www.websocket.org"
[2020-07-01T05:04:17Z DEBUG net::resource_thread] Exited CoreResourceManager
35 threads are still running after shutdown (bad)

[Darkspirit]

https://www.ssllabs.com/ssltest/analyze.html?d=www.websocket.org&hideResults=on

This server does not support Forward Secrecy with the reference browsers.
This server does not support Authenticated encryption (AEAD) cipher suites.

TLS_RSA_WITH_AES_128_CBC_SHA (0x2f) WEAK

That's ciphersuite 61 in SSL_CIPHER_SUITE_FULL: 0.43% usage

This is a case for web advocacy. It's a fatal but rare configuration mistake, they support only one deprecated ciphersuite - it's the second worst Firefox currently has.
Servo already has the same sane minimum requirements as Apple App Transport Security, therefore neither iOS apps can connect to https://websocket.org.

Reproducible with:
mozregression --launch 2020-07-21 --pref security.ssl3.rsa_aes_128_sha:false -a https://websocket.org/

Secure Connection Failed
An error occurred during a connection to websocket.org. PR_END_OF_FILE_ERROR

I'll mail them. Sorry for not seeing this earlier.

[jdm]

Thanks for that analysis!

[mrobinson]

Looks like this site is gone now. The redirect to the parking page is failing, but that seems like a totally different issue.