Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support restartable ECDH in TLS 1.2 clients in Mbed TLS 4.x #9784

Open
gilles-peskine-arm opened this issue Nov 19, 2024 · 1 comment
Open
Labels
component-tls enhancement size-l Estimated task size: large (2w+)

Comments

@gilles-peskine-arm
Copy link
Contributor

In Mbed TLS 4.0 (upcoming), when MBEDTLS_ECDH_RESTARTABLE is enabled, ECDSA signature and verification operations in TLS 1.2 clients are interruptible, i.e. they will return MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS regularly during ECC operations to avoid blocking for too long. This does not apply to ECDH operations, however.

This is the continuation of a limitation in Mbed TLS 3.6, where ECDH operations from TLS are only interruptible when MBEDTLS_USE_PSA_CRYPTO is enabled. In Mbed TLS 4.0, the non-PSA code path from TLS no longer exists.

The goal of this issue is to implement interruptibility for ECDH in TLS 1.2 clients, i.e. reach the same level of functionality as Mbed TLS 3.6 for ECC interruptibility in TLS.

Note that TLS 1.3 is out of scope.

@yanesca
Copy link
Contributor

yanesca commented Dec 2, 2024

Corresponding investigation task: #7294.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
component-tls enhancement size-l Estimated task size: large (2w+)
Projects
Status: No status
Development

No branches or pull requests

2 participants