Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Updates for testserver to liboqs-0.12.0 & oqs-provider-0.8.0 #340

Merged
merged 2 commits into from
Jan 13, 2025
Merged

Updates for testserver to liboqs-0.12.0 & oqs-provider-0.8.0 #340

merged 2 commits into from
Jan 13, 2025

Conversation

bhess
Copy link
Member

@bhess bhess commented Jan 8, 2025

  • test server & nginx
  • curl

Closes #339

@bhess
Update to liboqs-0.12.0 & oqs-provider-0.8.0
11d34a7 
- test server & nginx
- curl

Signed-off-by: Basil Hess <bhe@zurich.ibm.com>
SWilson4
SWilson4 approved these changes Jan 8, 2025
View reviewed changes
nginx/fulltest/Dockerfile Outdated Show resolved Hide resolved
baentsch
baentsch reviewed Jan 8, 2025
View reviewed changes
nginx/Dockerfile Outdated
@@ -27,7 +27,7 @@ ARG INSTALLDIR=${BASEDIR}/nginx
ARG SIG_ALG="dilithium3"

# defines the list of default groups to be activated in nginx-openssl config:
ARG DEFAULT_GROUPS=x25519:x448:kyber512:p256_kyber512:kyber768:p384_kyber768:kyber1024:p521_kyber1024
ARG DEFAULT_GROUPS=x25519:x448:prime256v1:secp384r1:secp521r1:kyber512:x25519_kyber768:p256_kyber512:kyber768:p384_kyber768:kyber1024:p521_kyber1024:mlkem512:mlkem768:mlkem1024:X25519MLKEM768:SecP256r1MLKEM768
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

An opportunity to remove kyber and dilithium? This will not work when the next oqsprovider release is done.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the suggestion @baentsch, I agree. Updated accordingly.

baentsch
baentsch reviewed Jan 8, 2025
View reviewed changes
nginx/fulltest/index-template Outdated
@@ -83,7 +83,7 @@ tr:nth-child(even) {

<p>For automated testing, a JSON file encoding all available SIG/KEM combinations and the respective ports where they can be found is <a href="assignments.json">available for download here</a>. <i>We explicitly want to warn that algorithm/port combinations are subject to change. Be sure to download the most current JSON file before testing.</i></p>

<p>Note: The designator "*" below for key exchange algorithms should not be understood that the port referenced supports any possible KEM, but only all those KEMs configured into the underlying nginx server as default groups. This can be set when building the server via the <a href="https://github.com/open-quantum-safe/oqs-demos/blob/main/nginx/fulltest/Dockerfile#L25-L26">DEFAULT_GROUPS</a> configuration option. The default algorithm list is: <pre>x25519:x448:prime256v1:secp384r1:secp521r1:kyber512:x25519_kyber768:p256_kyber512:kyber768:p384_kyber768:kyber1024:p521_kyber1024.</pre></p>
<p>Note: The designator "*" below for key exchange algorithms should not be understood that the port referenced supports any possible KEM, but only all those KEMs configured into the underlying nginx server as default groups. This can be set when building the server via the <a href="https://github.com/open-quantum-safe/oqs-demos/blob/main/nginx/fulltest/Dockerfile#L25-L26">DEFAULT_GROUPS</a> configuration option. The default algorithm list is: <pre>x25519:x448:prime256v1:secp384r1:secp521r1:kyber512:x25519_kyber768:p256_kyber512:kyber768:p384_kyber768:kyber1024:p521_kyber1024:mlkem512:mlkem768:mlkem1024:X25519MLKEM768:SecP256r1MLKEM768.</pre></p>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same here (remove old algs now?)

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated accordingly.

@bhess bhess merged commit 6a1edbf into main Jan 13, 2025
11 checks passed
@bhess bhess deleted the bhe-testserver0120 branch January 13, 2025 16:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@baentsch baentsch baentsch approved these changes

@SWilson4 SWilson4 SWilson4 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Update test.openquantumsafe.org
3 participants
@bhess @SWilson4 @baentsch