OpenSSL ECH integration

[sftcd]

This PR adds Encrypted Client Hello (ECH) functionality to apache2, when using OpenSSL for TLS.

Notes:

• ECH is not yet part of an OpenSSL release. We'd hope ECH will be part of OpenSSL 4.0 in April 2026. However, we have been working with OpenSSL maintainers on the so-called "ECH feature branch" and that branch (subject to the same OpenSSL maintainer approval process as the OpenSSL master branch) now includes sufficient ECH code for web servers like apache2. So there's plenty of time for this PR to be discussed, but starting now may be timely.
• This PR includes documentation in a markdown document in the repo's top directory, which is certainly the wrong place, but may be useful short-term. That describes how to do the build, configuration and logging changes, and the code changes for ECH. (So should be a good place for reviewers to start.)
• While OpenSSL releases do not yet include ECH support, some other TLS libraries do, in particular boringssl. If useful, we could extend this PR to also support boringssl, or that could be a follow-up. (It'd be good if the server configuration were the same regardless of the TLS library.)
• ECH support using these OpenSSL ECH APIs was included in the ligthttpd web server (in January 2025) so some code and patterns are common with that. We also plan to submit similar PRs to apache2 and haproxy, and ideally all would share some commonality.
• We have proposed a very similar PR for the NGINX project (OpenSSL ECH integration nginx/nginx#840).
• All that said, we're not fixated at all on things being done this way, and would be happy to make whatever changes are desired for apache2 and there are some notes on potential changes in the documentation.

Lastly, for open-ness, our work on this has been funded by the Open Technology Fund (OTF) in the DEfO project.

[notroj]

Thanks for the PR, have not reviewed but wanted to try hooking it up in CI: https://github.com/notroj/httpd/actions/runs/17064056660/job/48376952186

[rpluem]

First short style nitpick: Please take care to put spaces around operands like =, == and != when doing tests or assignments.

[sftcd]

thanks for the CI setup! and that of course found a thing that's hopefully fixed in the above push - if there're more will similarly fix as they come

[sftcd]

First short style nitpick: Please take care to put spaces around operands like =, == and != when doing tests or assignments.

will go over those in a bit, thanks

[rpluem]

We still try to keep some C89 compatibility for older compilers on more exotic platforms. Hence please move the declaration of elen at the top of the function.

[sftcd]

sorry, doing that kind of tidying up now generally

[rpluem]

Whitespace Nit:

Suggested change

	sc->echkeydir = NULL;
	sc->echkeydir = NULL;

[sftcd]

ack

[rpluem]

Can you please also add some documentation for the new directive SSLECHKeyDir to docs/manual/mod/mod_ssl.xml?
Can you please also add a new txt file to the `changes-entries directory that describes the change?

[rpluem]

For APLOG_TRACE? logging we don't use APLOGNOs.

Suggested change

	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, cmd->server, APLOGNO(10519)
	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, cmd->server,

[sftcd]

ack, doing that generally

[sftcd]

ack

[rpluem]

Please also document the SSL_ECH_ environment variables in docs/manual/mod/mod_ssl.xml.

[sftcd]

push above should tidy the code/address nits; documentation requested still TBD but coming soon:-)

[rpluem]

push above should tidy the code/address nits; documentation requested still TBD but coming soon:-)

Thanks. This just leaves the last two comments to modules/ssl/ssl_engine_kernel.c open (move code to ssl_engine_vars.c and loglevel discussion).

[sftcd]

In the push above, I took a stab at adding documentation in the right place (docs/manual/mod/mod_ssl.xml) and building the resulting HTML which sort-of seems ok, but likely needs change. I've left the ECH-build.md file in the PR for now, as that still contains information that's not elsewhere at the moment. (We can ditch that once there's nothing left of value in the markdown file.)

[sftcd]

push above should tidy the code/address nits; documentation requested still TBD but coming soon:-)

Thanks. This just leaves the last two comments to modules/ssl/ssl_engine_kernel.c open (move code to ssl_engine_vars.c and loglevel discussion).

Apologies for being slow (I often am:-) but I'm not seeing where those "last two comments" are - can you point me at them when you have a chance? Thanks.

[rpluem]

In the push above, I took a stab at adding documentation in the right place (docs/manual/mod/mod_ssl.xml) and building the resulting HTML which sort-of seems ok, but likely needs change. I've left the ECH-build.md file in the PR for now, as that still contains information that's not elsewhere at the moment. (We can ditch that once there's nothing left of value in the markdown file.)

Thanks. You can remove the HTML changes from PR as these will be created in a step separately from the commit. Just the changes to the xml file are required.

[rpluem]

push above should tidy the code/address nits; documentation requested still TBD but coming soon:-)

Thanks. This just leaves the last two comments to modules/ssl/ssl_engine_kernel.c open (move code to ssl_engine_vars.c and loglevel discussion).

Apologies for being slow (I often am:-) but I'm not seeing where those "last two comments" are - can you point me at them when you have a chance? Thanks.

I just readded the comments to the latest version of the code as I was not sure how I should point you to them.

[sftcd]

If I've done it right the (force) push above just removes the documentation files that I shouldn't have included yesterday and make no other change

[sftcd]

I just readded the comments to the latest version of the code as I was not sure how I should point you to them.

I've no idea why, but I'm not seeing any comments at all on ssl_engine_kernel.c sorry

[rpluem]

I just readded the comments to the latest version of the code as I was not sure how I should point you to them.

I've no idea why, but I'm not seeing any comments at all on ssl_engine_kernel.c sorry

Very strange. I thought that my comments might get removed after another commit or on a force push, but I still can see them on the files tab. There are currently 4 open.

[rpluem]

For APLOG_TRACE? logging we don't use APLOGNOs.

Suggested change

	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, s, APLOGNO(10524)
	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, s,

[sftcd]

yep fixed that

[rpluem]

For APLOG_TRACE? logging we don't use APLOGNOs.

Suggested change

	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, s, APLOGNO(10530)
	ap_log_error(APLOG_MARK, APLOG_TRACE4, 0, s,

[sftcd]

also fixed that

[rpluem]

Same as above regarding C89.

[sftcd]

should be fixed now too

[rpluem]

Same as above regarding C89.

[sftcd]

also fixed

[rpluem]

Same as above regarding C89.

[sftcd]

also fixed

[rpluem]

I think these should be DEBUG and not INFO messages.

[sftcd]

sure, happy to take guidance on what level's best, so changed them to APLOG_DEBUG

[rpluem]

This whole stuff belongs to ssl_engine_vars.c. You should only amend ssl_hook_Fixup_vars here.

[sftcd]

so I've tried to do that, but not sure I'm understanding the reference to ssl_hook_Fixup_vars so might've done it wrong, but it should be closer at least. I also need to run this version in a test setup with PHP, which I've not done yet, (will later today, when on a different n/w where that's easier for me), so I might have more to change when I do that.

[rpluem]

Currently it is not the way I would like to see it, but the way I told you it should look like is probably a bit wrong as well :-). The core thing I would like to get to is that the 3 new variables can be queried through the central ssl_var_lookup function from ssl_engine_vars.c to enable other possible consumers of these variables to get its values. Once this is possible you can add them to the environment in ssl_engine_kernel.c::ssl_hook_Fixup via

#ifdef HAVE_OPENSSL_ECH
extract_to_env(r, env, "SSL_ECH_INNER_SNI");
extract_to_env(r, env, "SSL_ECH_OUTER_SNI");
extract_to_env(r, env, "SSL_ECH_STATUS_SNI");
#endif

You would implement your extraction in ssl_engine_vars.c::ssl_var_lookup_ssl and would add cases for ECH_INNER_SNI, ECH_OUTER_SNI and ECH_STATUS. The SSL_ prefix gets already striped by ssl_engine_vars.c::ssl_var_lookup when it calls ssl_engine_vars.c::ssl_var_lookup_ssl. Keep in mind that you have to apr_pstrdup() the strings in this case here before returning them. For example have a look how SSL_SESSION_RESUMED or better SESSION_RESUMED is currently implemented (

httpd/modules/ssl/ssl_engine_vars.c

Line 468 in f09577a

else if(ssl != NULL && strcEQ(var, "SESSION_RESUMED")) {

).

[rpluem]

I think these should be DEBUG and not INFO messages.

[sftcd]

yep, changed to that

[rpluem]

People who are not committers to this project are typically credited with name and email address (unless you don't want to give yours), hence a pattern like [John Doe [email protected]].

[sftcd]

no problem doing that so I added an email

[rpluem]

Suggested change

	<compatibility>Available in httpd 2.X.0 and later</compatibility>
	<compatibility>Available in Apache HTTP Server 2.5.1 and later</compatibility>

[sftcd]

sure, also tweaked the example using dig

[rpluem]

I think I know what I did wrong: I forgot to submit my review and hence it was only visible to me.

[notroj]

Updated CI run https://github.com/notroj/httpd/actions/runs/17120295279/job/48559395252#step:11:2461

[rpluem]

Suggested change

struct stat thestat;

[sftcd]

indeed!

[sftcd]

I think I know what I did wrong: I forgot to submit my review and hence it was only visible to me.

Thanks for those, I'll process 'em shortly. (And am relieved I wasn't doing something wrong:-)

[sftcd]

The push above tries to address today's @rpluem comments.

[notroj]

I still got permission denied trying to push to sftcd:ECH-shared via ssh so maybe there is some other restriction here, oh well.

Latest run: https://github.com/notroj/httpd/actions/runs/17236024872

[notroj]

Checking for echdir!=NULL is redundant since the calling function already checks that, so you can document it as a constraint for the interface.

[sftcd]

happy to do that if that's the local preference

[notroj]

If apr_dir_open fails catch the returned apr_status_t and pass it to the ap_log_error so the actual error is logged

[sftcd]

good idea

[notroj]

IMO if TLSv1.3 is not supported by the TLS toolkit, using SSLECHKeyDir should be a config-time error, so merely warning for this is not sufficient. So in the definition of HAVE_OPENSSL_ECH in ssl_private.h check that SSL_HAVE_PROTOCOL_TLSV1_3 definition too, and drop this case?

[notroj]

Alternative: in ssl_cmd_SSLECHKeyDir check that SSL_HAVE_PROTOCOL_TLSV1_3 is defined and if not always return an error string - this would give better feedback than simply getting an error that the directive isn't supported.

[sftcd]

Hmm. I agree having some cases handled as warnings (as above) and others as fatal is a bit off and all should be handled at the same error level. (For the moment I'll do s/WARN/EMERG/ just to be consistent and we can fix better based on the conclusion of this point.)

I guess one could take either of two positions though:

1. ECH is an optional privacy improvement, already vulnerable to some active attacks (on the DNS), and (some) clients/browsers might in any case fallback to non-ECH (in a 2nd connection) so logging but continuing in the face of misconfiguration is better, or,
2. if ECH is configured on and the server can't actually do ECH, then that should be treated as fatal so the server admin gets to know about and fix things (which could be the server config, or the server s/w etc.)

I could be convinced either way;-)

Is there any guidance from how other misconfigurations are handled?

[sftcd]

Having thought about that, I figure the better thing to do is number 2 above - treat all these errors as fatal and don't start the server (so use APLOG_EMERG) - what convinced me was that if you start an old server that doesn't have any ECH support, and that sees an SSLECHKeyDir directive then that old server will fail to start, so doing likewise in these cases seems correct. So I think the code now in the PR does the right thing.

@notroj - is there a reason to do this in ssl_cmd_SSLECHKeyDir or is it ok as-is?

[notroj]

Not sure it's written down as guidance but yes your (2) is generally preferred, if the configuration cannot be applied, fail at config time. It's better to do it in ssl_cmd_SSLECHKeyDir so that httpd -t will fail for the configuration.

[sftcd]

ah right, will make that change so

[sftcd]

Just pushed a change for that, let me know if more needed - the commit is here

[ylavic]

apr_dir_close(dir);?

[sftcd]

ta

[ylavic]

OSSL_ECHSTORE_free(es);?

[sftcd]

also ta

[ylavic]

This } else { looks unnecessary if you leave the SSL_CTX_set_client_hello_cb() below out of #else /* HAVE_OPENSSL_ECH */?

[rpluem]

But shouldn't we set only one, SSL_CTX_ech_set_callback or SSL_CTX_set_client_hello_cbbut not both at the same time?

[rpluem]

Answering myself: Scratch the above. You answered it to me in a later comment and why we do SSL_CTX_set_client_hello_cb since 076e283 if possible. Hence we should always call SSL_CTX_set_client_hello_cb independent of HAVE_OPENSSL_ECH.

[sftcd]

So I guess neither ssl_callback_ECH() nor ssl_callback_ClientHello() are that well named - something like ssl_callback_set_vhost_from_[ClientHello|ECH]() might be better. But that said, I'm not sure if the #else is better left in - will get back when I've re-checked which callback fires when in which cases.

[sftcd]

So I added a new ECH test to my current PR for the OpenSSL feature branch that basically mimics what ssl_callback_ClientHello() does.

The result is: the client_hello callback fires first, and has the inner CH, after ECH decryption has worked, so all should be well regardless of which callback is used. The ECH callback doesn't fire until the ServerHello message is being prepared (IIRC it has to be that way in case of HRR, as the ECH callback shouldn't fire until HRR and ECH have both succeeded.)

So I guess we could get rid of ssl_callback_ECH() entirely, but I wonder what's the correct thing for the server to do when HRR happens?

[sftcd]

I did a test build getting rid of ssl_callback_ECH() and just using ssl_callback_ClientHello() and it seems to work fine, even though the callback is hit twice when we hit HRR, but I didn't seen any bad side-effects of that, and it's what happens already so is presumably ok. I guess that's less change so unless there's a reason to keep ssl_callback_ECH() I'll make that change in a while.

[sftcd]

Oops - we still want ssl_callback_ECH() to log the ECH outcome, but the vhost stuff can now be left to the CH callback.

[sftcd]

push below (50e1f81) makes these changes

[ylavic]

it seems to work fine, even though the callback is hit twice when we hit HRR, but I didn't seen any bad side-effects of that, and it's what happens already so is presumably ok.

If ssl_callback_ClientHello() can be called multiple times with HRR, maybe we should not let its init_vhost() be a noop for the second time (should the SNI be chang{able,ed} in between..)? Maybe for another PR/commit though since it's not really related to ECH.

Oops - we still want ssl_callback_ECH() to log the ECH outcome, but the vhost stuff can now be left to the CH callback.

Agreed.

[sftcd]

If ssl_callback_ClientHello() can be called multiple times with HRR, maybe we should not let its init_vhost() be a noop for the second time (should the SNI be chang{able,ed} in between..)? Maybe for another PR/commit though since it's not really related to ECH.

Agree that that'd be for a separate PR. I didn't notice any leak in the HRR case via valgrind fwiw. The TLSv1.3 spec says how the 2nd CH can differ from the first (at https://datatracker.ietf.org/doc/html/rfc8446#section-4.1.2) and there's some text too about that in the ECH spec (as the 2nd CH uses the same HPKE context). Those rules do not allow for changing the SNI between the 1st and 2nd CH's, but of course a bad client might cheat. I'm not sure how or if different TLS libraries make those checks, nor whether there'd be information on that available to applications. When the OpenSSL client hello callback fires, I don't believe you'd know if HRR will happen or not though as the CH hasn't even been parsed, so the library won't have noticed that the key shares are such as to cause HRR. If there's some setup where the init_vhost() can cause side-effects then I guess this would be worth trying to better handle, but I don't know if that's the case.

Sounds like creating an issue for httpd for this is probably right? I can do that but it might be better done by one of you who understand the server code better. (let me know)

[sftcd]

I still got permission denied trying to push to sftcd:ECH-shared via ssh so maybe there is some other restriction here, oh well.

That's odd. Maybe if one of you close then re-open the PR that'd do something? Or perhaps you don't care:-) Either's fine by me.

[sftcd]

push above has changes from various comments today, with two remaining things to for me to check/to-discuss - how best to handle misconfiguration and the ordering of callbacks (I'll do the checking Wed sometime and get back)

[sftcd]

push above simplifies the use of callbacks as per discussion above

[notroj]

https://github.com/notroj/httpd/actions/runs/17288258105/job/49069552136#step:11:2463

ssl_engine_kernel.c: In function 'ssl_callback_ECH':
ssl_engine_kernel.c:2396:18: error: unused variable 'ivstatus' [-Werror=unused-variable]
 2396 |     apr_status_t ivstatus;
      |                  ^~~~~~~~
cc1: all warnings being treated as errors

[sftcd]

push above removes ivstatus (thanks for re-doing the CI run)

[ylavic]

Not sure this is needed since ssl_callback_ECH() will log the status anyway?
And I don't think we want this to be logged at APLOG_INFO for every connection, APLOG_DEBUG/TRACEn would be enough IMHO.

[sftcd]

yeah, that's fair - I guess I added that while figuring stuff out;-)

it's removed in the push below

[rpluem]

@notroj : Can you start another probably final CI build? I think all questions have been addressed.

[notroj]

Sorry I did already forgot to mention - all green! https://github.com/notroj/httpd/actions/runs/17299086256

[notroj]

Possibly the most reviewed PR ever... I merged this with minor syntax/style changes only. I didn't include the new doc file but included the relevant parts of that text in the commit message and I think most of the rest is covered in the docs.

Many thanks @sftcd !

[sftcd]

That's great thanks! It was a pleasure getting/handling those comments. And do ping if/as ECH issues arise, happy to help out as I can.