Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove chacha20 cipher #62

Merged
merged 4 commits into from
Jan 21, 2025
Merged

Remove chacha20 cipher #62

merged 4 commits into from
Jan 21, 2025

Conversation

DimitarSch
Copy link
Contributor

Remove chacha20 cipher from cmd/ssh-proxy/main.go and cmd/sshd/main.go files in accordance to SAP security standards in order to prevent vulnerabilities related to terapin attacks.

Related BLI: https://jira.tools.sap/browse/CFAR-1064

Changes have been applied and tested on a dev landscape using a custom diego release.

@DimitarSch
Remove chacha20 cipher from cmd/ssh-proxy/main.go
be39df2 
Remove chacha20 cipher from cmd/ssh-proxy/main.go file in accordance to SAP security standards in order to prevent vulnerabilities related to terapin attacks.
Related BLI: https://jira.tools.sap/browse/CFAR-1064
@DimitarSch
Remove chacha20 cipher from cmd/sshd/main.go
be9a7f3 
Remove chacha20 cipher from cmd/sshd/main.go file in accordance to SAP security standards in order to prevent vulnerabilities related to terapin attacks.
Related BLI: https://jira.tools.sap/browse/CFAR-1064
@DimitarSch DimitarSch requested a review from a team as a code owner January 7, 2025 13:37
@DimitarSch DimitarSch mentioned this pull request Jan 7, 2025
Closed
@DimitarSch
Copy link
Contributor Author

Related diego release issue:
cloudfoundry/diego-release#982

@DimitarSch
Update ssh-proxy/main_test.go
00b48bd 
Remove chacha20 cipher from tests
Related BLI: https://jira.tools.sap/browse/CFAR-1064
@DimitarSch
Update sshd/main_test.go
c56b760 
Remove chacha20 cipher from tests
Related BLI: https://jira.tools.sap/browse/CFAR-1064
@ameowlia ameowlia merged commit 7049bbe into cloudfoundry:main Jan 21, 2025
1 check passed
@ameowlia
Copy link
Member

FYI - I am going to mark this as a breaking change.

@jochenehret
Copy link

@DimitarSch : The URL https://jira.tools.sap/browse/CFAR-1064 is not accessible for everyone. You could create a github issue instead so that everyone can access the information.

@PlamenDoychev
Copy link

Hi @jochenehret, it was not intended this link to be exposed externally. This is the issue which @DimitarSch opened which apparently also contains the link, but also provides some more information.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ameowlia ameowlia ameowlia approved these changes

Assignees
No one assigned
Labels
None yet
Projects
Application Runtime Platform Working Group
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@DimitarSch @ameowlia @jochenehret @PlamenDoychev