Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ML-KEM: OpenSSL Part 1 #113719

Merged
merged 50 commits into from
Mar 21, 2025
Merged

ML-KEM: OpenSSL Part 1 #113719

merged 50 commits into from
Mar 21, 2025

Conversation

vcsjones
Copy link
Member

@vcsjones vcsjones commented Mar 20, 2025
edited
Loading

This brings in the minimum implementation to have a testable implementation of ML-KEM on Linux.

What is in this PR:

  • Key generation
  • Key import (seed, encapsulation key, decapsulation key)
  • Key export (seed, encapsulation key, decapsulation key)
  • Encapsulate and Decapsulate
  • Microsoft.Bcl.Cryptography (only working implementation for now is type-forwards, down level always has IsSupported as false until a Windows implementation is available)
  • Tests

What is not in this PR:

  • PKCS8 / SPKI loading and export
  • Convenience APIs, Callee-allocated buffers
  • Platform-specific derived types (MLKemOpenSsl, etc)
  • Certificates

Contributes to #113508

vcsjones added 26 commits March 18, 2025 09:52
@vcsjones
Initial scaffolding and algorithm fetching

Unverified

This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
Learn about vigilant mode
ebb5a1a
@vcsjones
Key generation
122010a
@vcsjones
Allow importing seeds into ML-KEM
e541327
@vcsjones
Encapsulate
b3dd3ba
@vcsjones
Public fields. Maybe a good idea
dc93837
@vcsjones
Export decapsulation key
b421b4a
@vcsjones
Export encaps key
8e603a3
@vcsjones
NIST vectors for generation
50e57db
@vcsjones
Minor tweaks
dfdb8e4
@vcsjones
Round trip on encapsulation and decapsulation
8400cea
@vcsjones
Reorder
d1d6b68
@vcsjones
Merge remote-tracking branch 'ms/main' into ml-kem
cc76d55
@vcsjones
Rework some key import and export things
5c69aa3
@vcsjones
Encapsulation roundtrip
a6670c1
@vcsjones
Import Decapsulation key
3e56b46
@vcsjones
Check encapsulation key
6d568d7
@vcsjones
More tests and resource strings
da5b60d
@vcsjones
Keep working on tests
f9aa1be
@vcsjones
Actual encapsulation tests
90b0ac5
@vcsjones
Get tests building in OOB
5a36083
@vcsjones
Improve test execution time
c647045
@vcsjones
Remove redundant MLKem from member names
970c144
@vcsjones
Add tests for MLKemAlgorithm
f0a8ea0
@vcsjones
Test and prohibit overlapping buffers
0b6d963
@vcsjones
Fixup docs
ff75b39
@vcsjones
Fix doc contents
Loading
Loading status checks…
dc96bae
@vcsjones vcsjones requested review from bartonjs and Copilot March 20, 2025 01:13
@vcsjones
Code review feedback.
Loading
Loading status checks…
5df8232
This was referenced Mar 20, 2025
Open
Open
@vcsjones
Fix typos.
Loading
Loading status checks…
fe5a6ad
bartonjs
bartonjs reviewed Mar 20, 2025
View reviewed changes
src/libraries/Common/tests/System/Security/Cryptography/MLKemTests.Keys.cs Outdated
Comment on lines 112 to 122
[ConditionalFact(typeof(MLKem), nameof(MLKem.IsSupported))]
public static void ExportPrivateSeed_OnlyHasDecapsulationKey()
{
MLKemGenerateTestVector vector = MLKemGenerateTestVectors.First();
using MLKem kem = MLKem.ImportDecapsulationKey(
vector.Algorithm,
vector.DecapsulationKey.HexToByteArray());

Assert.Throws<CryptographicException>(() => kem.ExportPrivateSeed(
new byte[MLKem.PrivateSeedSizeInBytes]));
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe we'll have it later, but a template method boundary conditions test could import a decaps key (and/or encaps key) then call export on the seed with the wrong size, and we show that ExportPrivateSeedCore never got called.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I will add this to my scenario of "test cases when we have derived types" where "derived type = stub"

bartonjs
bartonjs approved these changes Mar 20, 2025
View reviewed changes
Copy link
Member

@bartonjs bartonjs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So long as that one header uses a style consistently, LGTM

@vcsjones vcsjones merged commit f6fc3fb into dotnet:main Mar 21, 2025
145 of 148 checks passed
@vcsjones vcsjones deleted the ml-kem branch March 21, 2025 01:02
@vcsjones vcsjones mentioned this pull request Mar 21, 2025
Merged
@vcsjones vcsjones added this to the 10.0.0 milestone Mar 22, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@krwq krwq

@PranavSenthilnathan PranavSenthilnathan

Copilot code review Copilot

@bartonjs bartonjs

Assignees

@vcsjones vcsjones

Labels
area-System.Security new-api-needs-documentation
Projects
None yet
Milestone
10.0.0
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@vcsjones @krwq @bartonjs @PranavSenthilnathan