Key Exchange issue

RE: Key Exchange issue

Sigurd Hellesvik — Fri, 19 Apr 2024 06:54:21 GMT

[quote user="Philrt"]I did, and the changes did attempt to write the certificate despite not receiving a request. But for some reason it still produced a TLS handshake error.[/quote]

To quote myself from talking to our developers:

"At the very least if the hack work that would be a good indication to them being correct about what goes wrong"

And especially when you are not able to make it work like that, I start to suspect that the handshake request really is not the cause here after all.

However, if you got a workaround for key renewal, that fixes your issue, and that is that.
Good luck onwards!

RE: Key Exchange issue

Randall — Thu, 18 Apr 2024 14:26:31 GMT

I did, and the changes did attempt to write the certificate despite not receiving a request. But for some reason it still produced a TLS handshake error.

On the positive side, the cloud team has agreed to give me an alternate route to get certificate and key renewals. So I guess this ticket can be closed out.

RE: Key Exchange issue

Sigurd Hellesvik — Wed, 17 Apr 2024 13:57:22 GMT

I think that TLS code is the same for MBEDTLS NRF_SECURITY and MBEDTLS_BUILTIN. It is the underlying crypto drivers that are changed.

However, I am not 100% on that, so I suggest that you print or step through code or something like that to verify that the file is really used

RE: Key Exchange issue

Randall — Tue, 16 Apr 2024 18:03:02 GMT

Interesting suggestion. I tried several variants of overriding the client_auth flag. Unfortunately, it all resulted in a TLS handshake error.

Looking at the above it also appears to be using NRF_SECURITY with MBEDTLS_LIBRARY. I'm using MBEDTLS_BUILTIN. I don't know if that makes any difference.

Randall

RE: Key Exchange issue

Sigurd Hellesvik — Tue, 16 Apr 2024 11:56:56 GMT

[quote user="Philrt"]Do you know anything about TLS 1.3 support in Zephyr?[/quote]

You have triggered an automatic quote from my part:
I am not able to answer questions about our timeline. You can try to ask your local sales representative from Nordic Semiconductor for information about our timeline.

For adding the cert manually, here is some info that might help you do that:

"
I looked what happens when the TLS state machine enters the state MBEDTLS_SSL_CLIENT_CERTIFICATE
https://github.com/nrfconnect/sdk-mbedtls/blob/main/library/ssl_tls12_client.c#L3552

The mbedtls_ssl_write_certificate() function will skip sending client certificate if ssl->handshake->client_auth == 0

ssl->handshake->client_auth is only set if ServerHello contains a Certificate request here:
https://github.com/nrfconnect/sdk-mbedtls/blob/main/library/ssl_tls12_client.c#L2523

If the customer wants to hack a solution that always sends the client certificate without receiving a certificate request they can probably just set ssl->handshake->client_auth somewhere in the state machine.
"

RE: Key Exchange issue

Randall — Tue, 16 Apr 2024 11:49:20 GMT

One has to set CONFIG_MBEDTLS_DEBUG to y before setting the debug level will not trigger an error. So yes, I've already set that config to y.

Do you know anything about TLS 1.3 support in Zephyr?

RE: Key Exchange issue

Sigurd Hellesvik — Mon, 15 Apr 2024 14:03:06 GMT

Try CONFIG_MBEDTLS_DEBUG?

RE: Key Exchange issue

Randall — Mon, 15 Apr 2024 12:03:04 GMT

The only one missing is ECJPAKE. Doubted that key juggling is something that Microsoft is doing but I tried it anyway. And it still doesn't work. I can't really do wireshark since I'm using a cell modem. The cloud team did with a Linux-based Zephyr setup and it basically shows that the certificate isn't being sent to the authorization server. I tried to enable MBEDTLS debugging, but the level keeps getting set to 0. I tried to hard wire it with CONFIG_MBEDTLS_DEBUG_LEVEL but I didn't get any debug and looking it autoconf.h it's still set to 0. So something in the build is hard wiring it to 0 and I don't know what it is.

RE: Key Exchange issue

Sigurd Hellesvik — Mon, 15 Apr 2024 08:07:08 GMT

I think first, it would be good to have a closer look into this, maybe we can get some new info.

Can you get a wireshark sniffer log from the error you get?

Do you get UART logs from the device when it fails?
Try to turn on mbedlts logging and see if you get more info then.

[quote user=""]

CONFIG_MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_PSK_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_RSA_ENABLED=y

CONFIG_MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED=y

[/quote]

I see that you have enabled 10 options while CONFIG_MBEDTLS_KEY_EXCHANGE_ALL_ENABLED selects 11. Off-chance, but maybe you are missing the last one?

RE: Key Exchange issue

Randall — Fri, 12 Apr 2024 13:50:57 GMT

The person that posted the issue on the Azure github seems to think it's a bug. I guess Microsoft doesn't agree as they haven't done anything to address it. So if there is a way to get Zephyr to offer up the certificate on it's own, that would be great. If not, I may be stuck unless the cloud provider offers me an alternate way to renew keys.

Thanks,

RE: Key Exchange issue

Sigurd Hellesvik — Fri, 12 Apr 2024 12:37:57 GMT

Looking at mbedtls code, it only gives the certificate if it is requested.

However, having a another look at the spec:

The client MUST send a Certificate message if and only if the server
has requested client authentication via a CertificateRequest message

So only sending cert if requested seems to align with the spec after all.

This was a bit back and forth. Let me know if anything was unclear and what you think about this

RE: Key Exchange issue

Sigurd Hellesvik — Fri, 12 Apr 2024 07:42:25 GMT

As you see from the edit on the message below, I agree that it looks possible yes.

So I asked our crypto team if they know how to configure mbedtls for this, if possible

RE: Key Exchange issue

Sigurd Hellesvik — Fri, 12 Apr 2024 07:13:10 GMT

[quote user="Philrt"]

The are two way of do a mTLS init connection.

1) The server ask for a certificate from the client (that's what Zephyr supports out of the box)

2) The client send the cert inside the handshake (that's what curl does).

[/quote]

Both can be true here, so I do not quite grasp the difference.
The server first asks for a cert, and then the client sends it as part of the handshake?

Do you mean by 2) that the server never requests the cert? That would be wierd as the spec says:

   The server MUST send a Certificate message whenever the agreed-upon
   key exchange method uses certificates for authentication (this
   includes all key exchange methods defined in this document
   except PSK).

Disclaimer: I must admit that I have not looked very much at the TLS spec before so I might vert well be mistaken here

But I still would like to know a bit more about the two different methods mentioned here.

EDIT:

nvm I found this other section on certificate requests saying MAY. And that is what you are referring to:

A server which is authenticating with a certificate MAY optionally
   request a certificate from the client.

RE: Key Exchange issue

Randall — Thu, 11 Apr 2024 18:05:26 GMT

It's SDK 2.5.2 on custom hardware. But we are using the Laird Pinnacle 100 module that has a 52840 paired with the Sierra Wireless modem. But we are using the Zephyr builtin mbedTLS library.

The cloud provider dug into this some and has the following comments;

-------------------------------------------------------------------------------------------------------

For some reason Azure don't send a certificate request when using a App Service hosted in docker in Azure. Our other endpoints is hosted using Azure function and the Microsoft Identity Provider intercept the call and do a rewrite of the header. That's why it works for device-dev.get-cloud.com and not auth.get-cloud.com.

The are two way of do a mTLS init connection.

1) The server ask for a certificate from the client (that's what Zephyr supports out of the box)

2) The client send the cert inside the handshake (that's what curl does).

------------------------------------------------------------------------------------------------

It seems to be related to an Azure issue;

https://github.com/MicrosoftDocs/azure-docs/issues/111230

Hopefully that sheds more light

RE: Key Exchange issue

Sigurd Hellesvik — Wed, 10 Apr 2024 11:45:55 GMT

Hi,

For us to help you with this in the best possible way, please list the following information:

SDK Version
Development Kit Version
Which sample do you use?
Do you use custom hardware or code?

Regards,
Sigurd Hellesvik