Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove the DHE-RSA key exchange #9685

Open
gilles-peskine-arm opened this issue Oct 10, 2024 · 1 comment · May be fixed by #9917
Open

Remove the DHE-RSA key exchange #9685

gilles-peskine-arm opened this issue Oct 10, 2024 · 1 comment · May be fixed by #9917
Assignees
@valeriosetti
Labels
api-break This issue/PR breaks the API and must wait for a new major version component-tls size-s Estimated task size: small (~2d)

Comments

@gilles-peskine-arm
Copy link
Contributor

gilles-peskine-arm commented Oct 10, 2024
edited
Loading

Remove the DHE-RSA key exchange.

This completes the removal of finite-field Diffie-Hellman from TLS 1.2. Note that it remains available in TLS 1.3.

  • Prerequisites:
  • Config option: MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
  • Key exchange type: MBEDTLS_KEY_EXCHANGE_DHE_RSA
  • Affected cipher suite macros regex: MBEDTLS_TLS_DHE_RSA_WITH_\w+
  • Full list of cipher suite names: 
    TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256
TLS-DHE-RSA-WITH-AES-256-GCM-SHA384
TLS-DHE-RSA-WITH-AES-256-CCM
TLS-DHE-RSA-WITH-AES-256-CBC-SHA256
TLS-DHE-RSA-WITH-AES-256-CBC-SHA
TLS-DHE-RSA-WITH-AES-256-CCM-8
TLS-DHE-RSA-WITH-CAMELLIA-256-GCM-SHA384
TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256
TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA
TLS-DHE-RSA-WITH-ARIA-256-GCM-SHA384
TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384
TLS-DHE-RSA-WITH-AES-128-GCM-SHA256
TLS-DHE-RSA-WITH-AES-128-CCM
TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
TLS-DHE-RSA-WITH-AES-128-CBC-SHA
TLS-DHE-RSA-WITH-AES-128-CCM-8
TLS-DHE-RSA-WITH-CAMELLIA-128-GCM-SHA256
TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256
TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA
TLS-DHE-RSA-WITH-ARIA-128-GCM-SHA256
TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256
  • Identified non-obvious mentions in documentation (this is not an exhaustive list):
    • References to FFDH in docs/architecture/psa-migration/psa-limitations.md and docs/driver-only-builds.md.
  • Follow-up: Remove FFDH-specific code from compat.sh #9686

Follow the steps in #9681 unless there is a good reason to deviate.
@gilles-peskine-arm gilles-peskine-arm added component-tls api-break This issue/PR breaks the API and must wait for a new major version size-s Estimated task size: small (~2d) labels Oct 10, 2024
This was referenced Oct 10, 2024
Open
Open
@gilles-peskine-arm gilles-peskine-arm mentioned this issue Nov 4, 2024
Closed
@mpg
Copy link
Contributor

mpg commented Nov 5, 2024

we're removing the ability to do a non-PSK key exchange that involves ECC

I think you mean that doesn't involve ECC?

@gilles-peskine-arm gilles-peskine-arm mentioned this issue Dec 4, 2024
Merged
5 tasks
@valeriosetti valeriosetti mentioned this issue Jan 20, 2025
Open
5 tasks
@valeriosetti valeriosetti self-assigned this Jan 21, 2025
@valeriosetti valeriosetti moved this from Blocked to Implementation in progress in Mbed TLS 4.0 planning Jan 22, 2025
This was referenced Jan 22, 2025
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@valeriosetti valeriosetti

Labels
api-break This issue/PR breaks the API and must wait for a new major version component-tls size-s Estimated task size: small (~2d)
Projects
Mbed TLS 4.0 planning
Status: Implementation in progress
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Remove the DHE-RSA key exchange valeriosetti/mbedtls
3 participants
@mpg @gilles-peskine-arm @valeriosetti