Skip to content

crypto/tls: add ConnectionState.CurveID #67516

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
FiloSottile opened this issue May 19, 2024 · 5 comments
Closed

crypto/tls: add ConnectionState.CurveID #67516

FiloSottile opened this issue May 19, 2024 · 5 comments
Labels
Proposal Proposal-Accepted Proposal-Crypto Proposal related to crypto packages or other security issues
Milestone
Go1.25

Comments

@FiloSottile
Copy link
Contributor

Proposal Details

With #67061, the selected "CurveID" is the difference between a post-quantum connection and not. We should expose it in ConnectionState. I actually assumed we were already exposing this.

It's unfortunate to use the CurveID misnomer, but ConnectionState doesn't feel like the place to start introducing a new name, it will only cause confusion.

/cc @golang/security
@FiloSottile FiloSottile added Proposal Proposal-Crypto Proposal related to crypto packages or other security issues labels May 19, 2024
@gopherbot gopherbot added this to the Proposal milestone May 19, 2024
@ianlancetaylor ianlancetaylor moved this to Incoming in Proposals May 20, 2024
@FiloSottile
Copy link
Contributor Author

If a deprecated RSA KEX is used, CurveID will be zero.

@rsc
Copy link
Contributor

rsc commented Aug 14, 2024

This proposal has been added to the active column of the proposals project
and will now be reviewed at the weekly proposal review meetings.
— rsc for the proposal review group

@rsc rsc moved this from Incoming to Active in Proposals Aug 14, 2024
@rsc
Copy link
Contributor

rsc commented Aug 29, 2024

Based on the discussion above, this proposal seems like a likely accept.
— rsc for the proposal review group

The proposal is to add a CurveID field of type tls.CurveID to tls.ConnectionState.

@rsc rsc moved this from Active to Likely Accept in Proposals Aug 29, 2024
@rsc
Copy link
Contributor

rsc commented Sep 4, 2024

No change in consensus, so accepted. 🎉
This issue now tracks the work of implementing the proposal.
— rsc for the proposal review group

The proposal is to add a CurveID field of type tls.CurveID to tls.ConnectionState.

@rsc rsc moved this from Likely Accept to Accepted in Proposals Sep 4, 2024
@rsc rsc changed the title proposal: crypto/tls: add ConnectionState.CurveID crypto/tls: add ConnectionState.CurveID Sep 4, 2024
@rsc rsc modified the milestones: Proposal, Backlog Sep 4, 2024
@seankhliao seankhliao mentioned this issue Sep 4, 2024
Closed
@dmitshur dmitshur modified the milestones: Backlog, Go1.24 Sep 4, 2024
@FiloSottile FiloSottile mentioned this issue Oct 22, 2024
Closed
@FiloSottile FiloSottile mentioned this issue Nov 1, 2024
Open
@gopherbot gopherbot modified the milestones: Go1.24, Go1.25 Feb 11, 2025
@gopherbot
Copy link
Contributor

Change https://go.dev/cl/653315 mentions this issue: crypto/tls: add ConnectionState.CurveID

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Proposal Proposal-Accepted Proposal-Crypto Proposal related to crypto packages or other security issues
Projects
Proposals
Status: Accepted
Milestone
Go1.25
Development

No branches or pull requests
4 participants
@rsc @FiloSottile @dmitshur @gopherbot