Adding STSAFE with mbedTLS client for IoT work

Hello Benjamin,

I am trying to compile this, I am using latest STSAFE library downloaded from st.com website.

It seems that you have built the code using older library because now StSafeA_Read needs 10 parameters, but your code is passing only 9 parameters. Could you please update the example or share your stsafe library, because I can't find old version for this library.

Thanks.

Hello @Benjamin BARATTE​ ,

Thanks for the updated file.

This is now compiling and I could also run your provided "mbedtls_example()" successfully.

Now first I want stsafe to negotiate encryption with mosquitto server. (2nd step will be to add client certificate authentication)

So we enabled MBEDTLS_ECDH_GEN_PUBLIC_ALT and MBEDTLS_ECDH_COMPUTE_SHARED_ALT in our mbedtls_config.h file and tried to connect our server, however the handshake with server is failing.

It seems that the two alternate functions "mbedtls_ecdh_gen_public" and "mbedtls_ecdh_compute_shared" aren't getting called during handshake.

I think we have missed defining the ciphersuits or other settings properly in mbedtls_config.h.

Could you please share what should be enabled in "mbedtls_config.h" file in order to get this working.

Thank You.

Hello @Benjamin BARATTE​ ,

Thank you for your support so far.

I have been trying to use stsafe somehow to authenticate client from last 2 months.

Client authentication is very much necessary when IoT device is trying to send data to server and server wants to check authenticity of the device.

I accept, I am novice to this security and related stuff, but I have very good knowledge about ST controllers and using them as per my need.

I would like to point out, There is no example which tells how to use stsafe and mbedTLS together for client authentication. I have found such example for other security chips.

Also, I am not been able to use use your provided example file to authenticate client.

Could you please at least confirm if it is possible to use stsafe to authenticate client with mbedTLS or not? Also, If it is possible then it is my humble request to ST to provide a working example to integrate stsafe with mbedTLS for client authentication.

I hope to get a positive reply, as I desperately want to get it working.

Thank You.

HI @Community member​ ,

I understand your point and I agree this is not a simple subject.

I confirm that STSAFE-A is fully usable with MbedTLS and we do have more complex example using AWS or Azure connectivity using STSAFE-A for authentication.

In order to have a mutually authenticated setup, you need both server and client setup with the correct CAs.

Today, the handshake does not work with your MQTT server, therefore we need to go a bit more in detail of the TLS handshake failure.

How did you configure your Mosquitto server ? does it support the following ciphersuite : ECDHE-ECDSA-AES256-GCM-SHA384 ?

When I do testing with STSAFE-A and TLS, I'm using this ciphersuite (ECDHE-ECDSA-AES256-GCM-SHA384) on server side which is generally an OpenSSL test server with the ST CA certificate.

One more point, using ECDH with STSAFE-A is optional but as this is not called in your case, I guess the issue araise before the ECDH and most probably around the ciphersuite selection or the client certificate verification on server side.

In the MbedTLS config file, please check the following parameters (I'm sorry I don't have a recent mbedtls config file to provide) :

#define MBEDTLS_ECP_DP_SECP256R1_ENABLED

#define MBEDTLS_ECP_DP_SECP384R1_ENABLED

#define MBEDTLS_ECP_DP_BP256R1_ENABLED

#define MBEDTLS_ECP_DP_BP384R1_ENABLED

#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED

#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED

#define MBEDTLS_ECDSA_C

#define MBEDTLS_ECDH_C

at least to be sure to have ECDSA cipher suite presented by the client to the server.

Generally, when using STSAFE-A, I deactivate the RSA support.

To activate the traces in the TLS handshake, I'm using the following code :

#define CLIENT_PRINTF "[CLIENT] : "

static void my_debug( void *ctx, int level,

           const char *file, int line,

           const char *str )

{

  ((void) level);

uint32_t file_size = strlen(file);

int32_t i = file_size;

while ((file[i] != '/') && (i != 0))

i--;

i++;

  async_printf(CLIENT_PRINTF "%s:%04d: %s", &file[i], line, str );

}

in your client code add :

mbedtls_debug_set_threshold( 4 );

mbedtls_ssl_conf_dbg( &conf, my_debug, stdout );

This will provide more information regarding the handshake issue.

I'll try to get a full MbedTLS example working. could share on which STM32 you are working on ?

Thanks,

Best Regards,

Benjamin

Hi @Community member​ ,

I have looked at the test.mosquitto.org and it seems that it does not support the ECDSA, therefore, it's not possible to use the STSAFE-A with this configuration, could you try to setup a local instance of mosquitto server to check if you can use ECDSA. I have seen that the Mosquitto project rely on OpenSSL and should be able to support ECDSA.

In the log, you can see that you send the client hello with the following ciphersuites :

TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256

TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256

TLS-ECDHE-ECDSA-WITH-ARIA-128-GCM-SHA256

TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256

TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256

TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256

TLS-ECDH-ECDSA-WITH-ARIA-128-GCM-SHA256

TLS-ECDH-ECDSA-WITH-ARIA-128-CBC-SHA256

why looks good to me.

and you didn't receive server hello, therefore the server didn't match any client ciphersuite and reject the connection, the error -0x7280 is MBEDTLS_ERR_SSL_CONN_EOF, which means that the server has closed the connection.

Regarding the CSR generation, the error -0x5100 is MBEDTLS_ERR_MD_BAD_INPUT_DATA

I see that the ciphersuite does not include SHA384, did you activate the #define MBEDTLS_SHA512_C ? this is mandatory to use SHA384.

Best Regards,

Benjamin

Hi @Benjamin BARATTE​ 

Thanks for sharing your inputs.

I will setup local mosquitto and will try to run it again and will share the results soon.

Apart from this, to enable client authentication, I saw we need to use mbedtls_ssl_conf_own_cert, which needs private key and client certificate, but we can't read and provide private key from stsafe.

Thus I am confused about this and can't think of using it.

Is there another way of doing client authentication?

Thank You.

Best,

Krunal