-
Notifications
You must be signed in to change notification settings - Fork 570
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PQC: Add hybrid groups x25519/ML-KEM-768 and secp256r1/ML-KEM-768 #4375
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚀
Thanks for the reviews. I'm holding back on merging that because I'd like to update bogo (which I believe has test cases for those groups already). |
c7a5ddf
to
9ebb11b
Compare
Enabling relevant BoGo tests revealed something that we might want to have a look at here (or independently):
|
9ebb11b
to
c85054a
Compare
c85054a
to
88ef044
Compare
Those groups are described in draft-kwiatkowski-tls-ecdhe-mlkem and the code points are officially provided by IANA. Therefore they can be seen as 'fit for production use'.
88ef044
to
59abd7a
Compare
// TODO: once `TLS::Policy::key_exchange_groups()` contains it by | ||
// default, remove this explicit check. | ||
if(group == Botan::TLS::Group_Params::HYBRID_X25519_KYBER_768_R3_OQS) { | ||
// | ||
// See: https://github.com/randombit/botan/pull/4305 | ||
if(group == Botan::TLS::Group_Params::HYBRID_X25519_ML_KEM_768) { | ||
groups.push_back(group); | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
See also: #4305 (comment)
Should be ready for merge now. |
Pull Request Dependencies
Description
Those groups are described in draft-kwiatkowski-tls-ecdhe-mlkem and the code points are registered by IANA.