Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add EVP KEM APIs to integrate-pq branch #485

Merged
merged 6 commits into from
May 12, 2022
Merged

Add EVP KEM APIs to integrate-pq branch #485

merged 6 commits into from
May 12, 2022

Conversation

brian-jarvis-aws
Copy link
Contributor

Description of changes:

In AWS-LC, the reference code for the post-quantum cryptography (PQC) key encapsulation mechanism (KEM) PQCrystals-Kyber currently exists on a feature branch, integrate-pq. The API for using Kyber’s KEM operations is currently defined in pq_kem.h. This is a thin layer around the Kyber KEM operations, defined using an EVP_PQ_KEM structure. See this example of how it is done for Kyber512.

The problem with the current state of the integrate-pq branch is that it takes us down a path which diverges from the way KEMs are interfaced within the upstream OpenSSL codebase beginning with OpenSSL 3.0.

This change removes the custom PQ_KEM interface and replaces it with an EVP interface which is compatible with the calling signatures of the OpenSSL 3 EVP KEM APIs.

Call-outs:

The kem.c file was placed into the fipsmodule directory to align with where other EVP structures are. If this is not acceptable from a FIPS standpoint, I can move it elsewhere.

Testing:

  • Unit tests added for the new APIs. Now unneeded pq_kem tests (the ones for the old API) have been removed.
  • KAT tests updated to use the new APIs.
  • The CI posix, minimal, and sanitizer tests were run locally to catch some memory issues.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

torben-hansen
torben-hansen reviewed May 9, 2022
View reviewed changes
Copy link
Contributor

@torben-hansen torben-hansen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AWS-LC-specific style comments.

crypto/evp_extra/internal.h
typedef struct {
uint8_t pub[KYBER512_PUBLICKEY_BYTES];
uint8_t priv[KYBER512_SECRETKEY_BYTES];
uint8_t pub[800];
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

magic number

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I normally prefer not to have it like this either, but I deferred to the convention of this file (see the other key structures above this).

crypto/fipsmodule/evp/kem.c Outdated Show resolved Hide resolved
crypto/fipsmodule/evp/kem.c Outdated Show resolved Hide resolved
crypto/fipsmodule/evp/kem.c Outdated Show resolved Hide resolved
crypto/fipsmodule/evp/kem.c
#include <openssl/evp.h>
#include <openssl/mem.h>

#define SUCCESS (1)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We just use 0 or 1 without macro's. Maybe sometime in the future.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it be a problem to leave the macros? I personally find it more readable to use them, especially since the openssl convention of 1 for success and 0 for failure is different from what I'm used to (no data to back this up, but anecdotally it seems most *nix programs use 0 for success).

crypto/kyber/kem_kyber_512.c Outdated Show resolved Hide resolved
crypto/kyber/p_kyber_test.cc Outdated Show resolved Hide resolved
include/openssl/evp.h Outdated Show resolved Hide resolved
crypto/fipsmodule/evp/internal.h Outdated Show resolved Hide resolved
crypto/fipsmodule/evp/internal.h Outdated Show resolved Hide resolved
@brian-jarvis-aws brian-jarvis-aws merged commit 32fc107 into aws:integrate-pq May 12, 2022
@torben-hansen
Copy link
Contributor

Please revert - I'm not done reviewing.

brian-jarvis-aws added a commit that referenced this pull request May 12, 2022
@brian-jarvis-aws
Revert "Add EVP KEM APIs to integrate-pq branch (#485)"
513aca9 
This reverts commit 32fc107.
torben-hansen added a commit that referenced this pull request May 12, 2022
@torben-hansen
Revert "Add EVP KEM APIs to integrate-pq branch (#485)"
e44ea08 
This reverts commit 32fc107.
torben-hansen added a commit that referenced this pull request May 12, 2022
@torben-hansen
Revert "Add EVP KEM APIs to integrate-pq branch (#485)"
6ff307a 
This reverts commit 32fc107.
dkostic pushed a commit to dkostic/aws-lc that referenced this pull request Aug 23, 2022
@brian-jarvis-aws
Add EVP KEM APIs to integrate-pq branch (aws#485)
b8f6fde 
* Remove PQ_KEM API and replace with EVP_KEM API. Update KAT tests to match new API.

* Address memory issues found during testing.

* Update comment, braces, and function parameter style

* Update test names to match convention
jakemas pushed a commit to jakemas/aws-lc that referenced this pull request Nov 1, 2022
@brian-jarvis-aws @jakemas
Add EVP KEM APIs to integrate-pq branch (aws#485)
0891b87 
* Remove PQ_KEM API and replace with EVP_KEM API. Update KAT tests to match new API.

* Address memory issues found during testing.

* Update comment, braces, and function parameter style

* Update test names to match convention
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@torben-hansen torben-hansen torben-hansen left review comments

@dkostic dkostic dkostic approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@brian-jarvis-aws @torben-hansen @dkostic