Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Re-assign all code points #561

Open
baentsch opened this issue Nov 3, 2024 · 14 comments
Open

Re-assign all code points #561

baentsch opened this issue Nov 3, 2024 · 14 comments
Labels
help wanted Extra attention is needed

Comments

@baentsch
Copy link
Member

baentsch commented Nov 3, 2024

As correctly questioned in #556 (comment) the code points in this project are not aligned with IANA, most notably code points from non-standardized algorithms are not in the "Reserved for private use" space.

This issue is to suggest changing that -- ideally in a long-term easily maintainable manner, best fully automatic during algorithm changes done to the underlying liboqs.
@baentsch baentsch added the help wanted Extra attention is needed label Nov 3, 2024
@baentsch baentsch mentioned this issue Nov 3, 2024
Closed
@pi-314159
Copy link
Member

pi-314159 commented Nov 12, 2024
edited
Loading

Talking about resigning codepoints: Since Chrome 131 was released today (Edge 131 this Thursday) and Firefox 132 was released on October 29, we can drop Kyber support. Additionally, to simplify maintenance efforts, we can reverse the order of all X25519 hybrids.

I suggest doing this with the liboqs 0.12.0 or 1.0 release.

@baentsch @bhess

@baentsch
Copy link
Member Author

Following the mantra "less code is more secure code" I'm all for simplification and easing maintenance and would be OK dropping all Kyber support (incl. "hybrid order juggling") for good (also making the implementation effort for this issue quicker). Objections, @dstebila @SWilson4 ?

@dstebila dstebila mentioned this issue Nov 12, 2024
Open
@dstebila
Copy link
Member

I've created open-quantum-safe/liboqs#1989 about dropping Kyber support.

@baentsch
Copy link
Member Author

Another code point proposal to track/implement: https://datatracker.ietf.org/doc/html/draft-tls-westerbaan-mldsa-00

baentsch referenced this issue Nov 23, 2024
@baentsch
update MLKEM code points (#511)
8abfecd 
* update X25519-MLKEM768 code point

Signed-off-by: Michael Baentsch <[email protected]>

* further MLKEM (O)ID updates

Signed-off-by: Michael Baentsch <[email protected]>

* set p256_mlkem768 code point as per standard

Signed-off-by: Michael Baentsch <[email protected]>

---------

Signed-off-by: Michael Baentsch <[email protected]>
@tomato42
Copy link

I think that ML-DSA codepoints are especially important, so I've filed #578 to track them.

@baentsch
Copy link
Member Author

I think that ML-DSA codepoints are especially important, so I've filed #578 to track them.

Well, this doesn't really fit this issue: Adapting the ML-DSA code points and OIDs is run-of-the-mill business that has nothing to do with the "general overhaul" (beyond non-standardized IDs) that this issue suggests: As the code base gets updated to actually include the standardized code (in this case, as per #568) the corresponding code points (and OIDs) get updated. That said, your issue really should be a PR feedback... Just used it that way :)

@tomato42
Copy link

@baentsch aah, I took #561 (comment) as you wanting to use this issue for cleanup in general, sorry about that 🙂

will take a look at #568

@baentsch
Copy link
Member Author

@baentsch aah, I took #561 (comment) as you wanting to use this issue for cleanup in general, sorry about that 🙂

I wouldn't want to clean up things that are not even available for tidying :-)

will take a look at #568

Thanks.

@baentsch baentsch mentioned this issue Jan 3, 2025
Open
@RodriM11
Copy link
Contributor

RodriM11 commented Jan 4, 2025

Hi! Regarding this issue, I had a couple questions:

  • Regarding the handling of code points for KEM procedures, should "old" code points be re-assigned into IANA-compliant ones? (I imagine the answer is no, but wanted to asked just in case). Also, is there any specific reason to keep those 'old' schemes in the generate.yml (specifically, 2º round BIKE, HQC and Kyber, plus Kyber 90's) ?
  • The re-assignation of code points to IANA "Reserved for private use" (i.e. 65024-65279) can either be done manually or try to automatize it, as @baentsch suggested. Regarding the latter, the way I was thinking it was to complete the generate.yml with the next available code point (by checking the already established ones on the file). This way, to add a new configuration, you would add family, name_group, etc.. to generate.yml and generate.py would add nid, nid_hybrid and nid of extra_nids. The problem of this approach is that generate.yml has a number of peculiarities that YAML libraries not always handle (although I am very much not versed on Python and YAML). Based on a quick search, it seems that a different python module would be needed to handle comments (e.g. ruamel.yaml), and that some modifications would happen to the file (the hyphen and EOL before each new scheme, the spaces of signature's mix_with configuration, etc... A different approach if this is not desired (not automatic) could be to include a function that provides the next available code group, from those available, when a new configuration is added to generate.yml. But, as I said, I am not versed on this so any suggestion or different approach would be greatly appreciated.

@RodriM11
Copy link
Contributor

RodriM11 commented Jan 6, 2025

Additionally, that automatic behavior could also be translated to signatures (for future additions): the code_point field would be filled automatically with the next available element from the range 0xfe00 to 0xffff, once the remaining fields have been filled to add a new configuration.

Update: I have tried ruamel.yaml to see how generate.yml is affected, and it seems, since hyphens are used in two different forms (before each configuration, in a separate line, and in the same line within current definitions, for example) the hyphen before each configuration gets pulled to the first line of the configuration. Also, the spaces in the 'mix_with' field is modified. But, other than that, it could be a plausible solution to automatically fill the generate.yml with an IANA-compliant code point for each new configuration added.

@RodriM11
Copy link
Contributor

@baentsch any thoughts?

@baentsch
Copy link
Member Author

Oops -- that slipped my attention; thanks for tagging me again @RodriM11 -- oqsprovider in my view is a bit in "hibernation mode" at least until openssl 3.5 alpha appears (and apparently not just in my view :).

should "old" code points be re-assigned into IANA-compliant ones?

No: Inactive code points should remain as-is:

Is there any specific reason to keep those 'old' schemes in the generate.yml (specifically, 2º round BIKE, HQC and Kyber, plus Kyber 90's) ?

Yes: That information is used to generate documentation allowing people to understand which code/algorithm version is running somewhere if the documented IDs appear in traces.

it could be a plausible solution to automatically fill the generate.yml with an IANA-compliant code point for each new configuration added

That would be nice. If I get your proposal right (?) you'd recommend running a script to generate "generate.yml" to avoid (failure-prone/tedious) manual edits? If so (?) a PR to resolve this issue that way would be very welcome indeed.

@RodriM11
Copy link
Contributor

If I get your proposal right (?) you'd recommend running a script to generate "generate.yml" to avoid (failure-prone/tedious) manual edits? If so (?) a PR to resolve this issue that way would be very welcome indeed.

Yes, that would be the idea. My only "concern" is that generate.yml has some peculiarities (e.g. the hyphen and EOL before each new scheme, the spaces of signature's mix_with configuration, etc...) and to maintain as much as possible, a new Python package would be required (e.g. ruamel.yaml), and even then, some modifications to generate.yml would happen. If that is acceptable yes, (I think) I would be able to automatize the process.

PD: if those peculiarities are just a 'beauty' artifact (as I believe), I could avoid using ruamel.yaml and just get rid of them. Let me know what you think about the approaches.

@baentsch
Copy link
Member Author

some modifications to generate.yml would happen

I personally don't mind at all about such changes as long as they don't impact users (or the build logic). But even then, we can declare it part of #375 :) So, please go ahead. And cleaning up stuff, particularly if that avoids dependencies is always a Good Thing (and if only to ease maintainability :).

RodriM11 added a commit to RodriM11/oqs-provider that referenced this issue Feb 20, 2025
@RodriM11
Update KEM code points to IANA compliance (open-quantum-safe#561)
50ce4dc 
Signed-off-by: RodriM11 <[email protected]>
@RodriM11 RodriM11 mentioned this issue Feb 20, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@tomato42 @dstebila @baentsch @RodriM11 @pi-314159