Ubuntu 20.04 "could not make secure connection: no protocols available"

minetest-mods / irc

IRC Mod for Minetest

BSD 2-Clause "Simplified" License

43 stars 31 forks source link

Ubuntu 20.04 "could not make secure connection: no protocols available" #67

Open timcu opened 3 years ago

timcu commented 3 years ago

This mod uses LuaIRC which hard codes the deprecated protocol tlsv1 for secure connections. As of Ubuntu 20.04, tlsv1 is no longer available. I have added a pull request to the upstream LuaIRC project which fixes this problem.

https://github.com/JakobOvrum/LuaIRC/pull/36

In the meantime, to workaround this problem, users can edit irc/irc/init.lua and change line 111 from

params = {mode = "client", protocol = "tlsv1"}

params = {mode = "client", protocol = "any"}

crabctrl commented 3 years ago

Hi, just wanted to pop in to mention that this is a significant issue. TLSv1 has known security vulnerabilities, and is no longer supported by many servers. As @timcu suggested, using protocol = "any" is the correct approach, as that allows the SSL library to select the best available protocol, which is important and should always be used for security (and compatibility) reasons.

In any case, this bug causes the mod to be unusable on my server, without the above patch. Please change this, it's literally one line of code, and yet this issue has been apparently unread for four months...

timcu commented 3 years ago

Thanks for this comment of support @katp32 . Please also add a comment to the pull request on the upstream project

JakobOvrum/LuaIRC#36