Add X25519Kyber768Draft00 experimental HPKE KEM by chris-wood · Pull Request #421 · cloudflare/circl

chris-wood · 2023-04-06T14:45:37Z

See the draft. Some tasks still left to do:

Add multiple encryption vectors to match RFC9180
Add multiple export vectors to match RFC9180

hpke/hybridkem.go

bwesterb · 2023-04-06T15:03:05Z

Thanks @chris-wood !

bwesterb · 2023-04-06T15:03:47Z

For your convenience:

  Running [/home/runner/golangci-lint-1.51.2-linux-amd64/golangci-lint run --out-format=github-actions --config=./.etc/golangci.yml ./...] in [] ...
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofumpt`-ed (gofumpt)
  Error: File is not `gofumpt`-ed (gofumpt)
  Error: `(kemBase).labeledExtract` - `salt` always receives `nil` (unparam)

chris-wood · 2023-04-06T15:12:05Z

For your convenience:

  Running [/home/runner/golangci-lint-1.51.2-linux-amd64/golangci-lint run --out-format=github-actions --config=./.etc/golangci.yml ./...] in [] ...
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofmt`-ed with `-s` (gofmt)
  Error: File is not `gofumpt`-ed (gofumpt)
  Error: File is not `gofumpt`-ed (gofumpt)
  Error: `(kemBase).labeledExtract` - `salt` always receives `nil` (unparam)

What incantation do I need to invoke to make these changes locally? Can we get that set up in a make target?

bwesterb · 2023-04-06T21:06:07Z

What incantation do I need to invoke to make these changes locally? Can we get that set up in a make target?

make lint

chris-wood · 2023-04-07T18:25:09Z

What incantation do I need to invoke to make these changes locally? Can we get that set up in a make target?

make lint

This is sort of unhelpful in that it just runs the linter without actually applying changes. I'll send a PR to update the Makefile so that there's a target for actually doing the formatting.

chris-wood · 2023-04-07T18:26:13Z

@bwesterb I pushed some preliminary test vector generation code.

chris-wood · 2023-04-07T18:34:18Z

Marking as ready for review now. I updated when keys are validated (only when we receive them over the wire through deserialization functions). Fail early and fail often!

gitguardian · 2023-04-07T18:49:32Z

️✅ There are no secrets present in this pull request anymore.

If these secrets were true positive and are still valid, we highly recommend you to revoke them.
Once a secret has been leaked into a git repository, you should consider it compromised, even if it was deleted immediately.
Find here more information about risks.

^{_{🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!}}

hpke/hybrid-x25119-kyber768-test-vectors.json

bwesterb · 2023-04-08T17:34:48Z

@armfazh @cjpatton Please check whether this makes sense to you.

hpke/hybridkem.go

hpke/xkem.go

hpke/algs.go

armfazh · 2023-04-11T19:10:23Z

hpke/hpke.go


 // NewSender creates a Sender with knowledge of the receiver's public-key.
 func (suite Suite) NewSender(pkR kem.PublicKey, info []byte) (*Sender, error) {
-	if !suite.kemID.validatePublicKey(pkR) {


As part of this checking, the validation also checks whether the KEM in the suite is compatible with the KEM key.

The same applies to other checking.

Let's address that in a separate PR?

hpke/vectors_test.go

hpke/aead.go

chris-wood · 2023-04-12T15:58:58Z

@armfazh can you please re-review? I'd like to merge this and address KEM-specific validation steps in a separate PR, if possible.

armfazh

it looks good, could you please squash the commits.

chris-wood · 2023-04-12T18:12:24Z

@armfazh squashed and ready to go!

This change also adds the ability to produce test vectors for the draft specification: https://datatracker.ietf.org/doc/draft-westerbaan-cfrg-hpke-xyber768d00/ This change also updates the known answer test vectors from RFC9180.

bwesterb · 2023-04-12T20:24:04Z

Cool 😎

bwesterb self-requested a review April 6, 2023 14:46

bwesterb requested changes Apr 6, 2023

View reviewed changes

chris-wood marked this pull request as ready for review April 7, 2023 18:33

bwesterb self-requested a review April 7, 2023 18:46

bwesterb approved these changes Apr 7, 2023

View reviewed changes

bwesterb requested review from armfazh and cjpatton April 7, 2023 18:47

bwesterb reviewed Apr 7, 2023

View reviewed changes

hpke/hybrid-x25119-kyber768-test-vectors.json Outdated Show resolved Hide resolved

bwesterb added the new feature New functionality or module label Apr 10, 2023

armfazh reviewed Apr 11, 2023

View reviewed changes

armfazh approved these changes Apr 12, 2023

View reviewed changes

chris-wood force-pushed the caw/hybrid-x25519-kyber-hpke-kem branch from 2424c4f to 13bd304 Compare April 12, 2023 18:12

Add X25519Kyber768Draft00 experimental HPKE KEM

161705b

This change also adds the ability to produce test vectors for the draft specification: https://datatracker.ietf.org/doc/draft-westerbaan-cfrg-hpke-xyber768d00/ This change also updates the known answer test vectors from RFC9180.

chris-wood force-pushed the caw/hybrid-x25519-kyber-hpke-kem branch from 13bd304 to 161705b Compare April 12, 2023 18:13

armfazh merged commit eaec71f into main Apr 12, 2023

armfazh deleted the caw/hybrid-x25519-kyber-hpke-kem branch April 12, 2023 18:43

Conversation

chris-wood commented Apr 6, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

bwesterb commented Apr 6, 2023

Uh oh!

bwesterb commented Apr 6, 2023

Uh oh!

chris-wood commented Apr 6, 2023

Uh oh!

bwesterb commented Apr 6, 2023

Uh oh!

chris-wood commented Apr 7, 2023

Uh oh!

chris-wood commented Apr 7, 2023

Uh oh!

chris-wood commented Apr 7, 2023

Uh oh!

gitguardian bot commented Apr 7, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

️✅ There are no secrets present in this pull request anymore.

Uh oh!

Uh oh!

bwesterb commented Apr 8, 2023

Uh oh!

Uh oh!

Uh oh!

Uh oh!

armfazh Apr 11, 2023

Choose a reason for hiding this comment

Uh oh!

chris-wood Apr 12, 2023

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

chris-wood commented Apr 12, 2023

Uh oh!

armfazh left a comment

Choose a reason for hiding this comment

Uh oh!

chris-wood commented Apr 12, 2023

Uh oh!

bwesterb commented Apr 12, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

chris-wood commented Apr 6, 2023 •

edited

Loading

gitguardian bot commented Apr 7, 2023 •

edited

Loading