Weird SSL issues
27 views
Skip to first unread message
Dominique St-Pierre Boucher
Jun 7, 2017, 10:40:04 AM6/7/17
to qubes-users
Hello Qubes community!
I have a weird issue with SSL (HTTPS) access.
Here is my setup: Debian 9 minimal sys-net - Fedora 24 minimal sys-firewall. Any app-vm running Fedora 24 or Debian 9 (have not tested any other) have issues connecting to https sites with Chrome, Chromium or Firefox-esr. Sometimes it works, sometimes not...
I have tested on numerous wired and wireless network with the same result.
Please help me figure this out!
Dominique
Bernhard
Jun 7, 2017, 10:44:12 AM6/7/17
to qubes...@googlegroups.com
in the appvm are wrong (sometimes even in the future) - although dom0 is
accurately set up. If you have a cure to that (especially for debian) I
am interested ... maybe you experience the same problem? Bernhard
Unman
Jun 7, 2017, 11:27:35 AM6/7/17
to Bernhard, qubes...@googlegroups.com
Is this something new, or have you always had this problem?
Have you updated your kernel in the VMs? If so, there's a known issue
affecting SSL. Try changing the kernel that you are using in the qubes
to an earlier version and see if that helps.
unman
Dominique St-Pierre Boucher
Jun 7, 2017, 12:30:33 PM6/7/17
to qubes-users, haa...@web.de, un...@thirdeyesecurity.org
Thanks for the quick answer. Do I change the kernel in the sys-net / sys-firewall or on the app-vm or both?
Thanks
Dominique
Reg Tiangha
Jun 7, 2017, 2:25:38 PM6/7/17
to qubes...@googlegroups.com
On 06/07/2017 08:43 AM, Bernhard wrote:
>> Hello Qubes community!
>>
>> I have a weird issue with SSL (HTTPS) access.
>>
>> Here is my setup: Debian 9 minimal sys-net - Fedora 24 minimal sys-firewall. Any app-vm running Fedora 24 or Debian 9 (have not tested any other) have issues connecting to https sites with Chrome, Chromium or Firefox-esr. Sometimes it works, sometimes not...
>>
>> I have tested on numerous wired and wireless network with the same result..
>> Hello Qubes community!
>>
>> I have a weird issue with SSL (HTTPS) access.
>>
>> Here is my setup: Debian 9 minimal sys-net - Fedora 24 minimal sys-firewall. Any app-vm running Fedora 24 or Debian 9 (have not tested any other) have issues connecting to https sites with Chrome, Chromium or Firefox-esr. Sometimes it works, sometimes not...
>>
>>
>> Please help me figure this out!
>>
>> Dominique
>>
> Hello, I sometimes have SSL issues that all from the fact that the time
> in the appvm are wrong (sometimes even in the future) - although dom0 is
> accurately set up. If you have a cure to that (especially for debian) I
> am interested ... maybe you experience the same problem? Bernhard
>
Are you running kernel 4.9.29 from current-testing? There's a workaround
>> Please help me figure this out!
>>
>> Dominique
>>
> Hello, I sometimes have SSL issues that all from the fact that the time
> in the appvm are wrong (sometimes even in the future) - although dom0 is
> accurately set up. If you have a cure to that (especially for debian) I
> am interested ... maybe you experience the same problem? Bernhard
>
in this thread here:
https://github.com/QubesOS/qubes-issues/issues/2840#issuecomment-305938895
And it should be fixed in the next kernel release.
Reply all
Reply to author
Forward
0 new messages