Thanks to visit codestin.com
Credit goes to github.com

Skip to content

feat: add integration test for secp384r1_mlkem_1024 #5438

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 15 commits into from
Jul 29, 2025
Merged

feat: add integration test for secp384r1_mlkem_1024 #5438

merged 15 commits into from
Jul 29, 2025

Conversation

johubertj
Copy link
Contributor

@johubertj johubertj commented Jul 24, 2025
edited
Loading

Resolved issues:

resolves #5432

Description of changes:

Adds integration tests for validating ML-KEM hybrid key exchange interoperability between s2n-tls and OpenSSL 3.5.

Previously, there were no automated tests verifying negotiation of the SecP384r1MLKEM1024 KEM group between s2n-tls and OpenSSL clients/servers. This PR adds two integration tests:

  • s2n_client_mlkem: s2n-tls client connecting to OpenSSL 3.5 server
  • s2n_server_mlkem: s2n-tls server accepting an OpenSSL 3.5 client

These tests confirm a successful handshakes and verifies the negotiated KEM group SecP384r1MLKEM1024.

Call-outs:

Adding integration tests for PR #5395

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@github-actions github-actions bot added the s2n-core team label Jul 24, 2025
@johubertj johubertj marked this pull request as ready for review July 24, 2025 23:36
@johubertj johubertj requested review from jmayclin and goatgoose July 24, 2025 23:37
jmayclin
jmayclin reviewed Jul 25, 2025
View reviewed changes
@johubertj johubertj requested a review from jmayclin July 25, 2025 18:00
@lrstewart lrstewart requested review from lrstewart and removed request for goatgoose July 25, 2025 18:20
jmayclin
jmayclin reviewed Jul 28, 2025
View reviewed changes
jmayclin
jmayclin reviewed Jul 28, 2025
View reviewed changes
lrstewart
lrstewart approved these changes Jul 28, 2025
View reviewed changes
bindings/rust/standard/integration/src/features/mod.rs

#[cfg(feature = "pq")]
mod mldsa;
mod pq;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is probably fine for a temporary hack, but it seems sad that we have an entire "features" folder but we're going to shove all the features into one module. If we had a third feature that wasn't pq, what would we rename this module to? "misc"? The more correct way to handle this would probably be to move any code you need to reuse out of mldsa so you can have a separate mlkem file specifically for mlkem tests.

lrstewart
lrstewart reviewed Jul 28, 2025
View reviewed changes
lrstewart
lrstewart reviewed Jul 28, 2025
View reviewed changes
@johubertj johubertj added this pull request to the merge queue Jul 29, 2025
Merged via the queue into aws:main with commit c13ea19 Jul 29, 2025
57 of 59 checks passed
@johubertj johubertj deleted the feat/add_mlkem_rust_integ branch July 29, 2025 18:31
@BrewTestBot BrewTestBot mentioned this pull request Aug 5, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lrstewart lrstewart lrstewart approved these changes

@jmayclin jmayclin jmayclin approved these changes

Assignees
No one assigned
Labels
s2n-core team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add secp384r1_mlkem-1024 integ test
3 participants
@johubertj @lrstewart @jmayclin