Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Context support for ML-DSA and SLH-DSA #4567

Draft
wants to merge 18 commits into
base: master
Choose a base branch
from
Draft

Context support for ML-DSA and SLH-DSA #4567

wants to merge 18 commits into from

Conversation

FAlbertDev
Copy link
Collaborator

@FAlbertDev FAlbertDev commented Jan 17, 2025
edited by atreiber94
Loading

ML-DSA and SLH-DSA allow for a custom context for domain separation. This PR adds support for this using the new (experimental) signature options interface.

This closes #4376 since pre-hashed variants are postponed for now (see #4376 (comment)).

Dependencies

TODOs

  • Tests

randombit and others added 18 commits January 16, 2025 13:04
@randombit @reneme
Add PK_Signature_Options
920465e 
This allows controlling all details of how signatures are created,
without having to stuff values into the single parameters string
which was previously available.
@reneme
Introduce a base builder as discussed here: randombit#4318 (comment)
88a17f0
@reneme
Consumers can specify expectations of value availability
a699722 
As discussed: https://github.com/randombit/botan/pull/4318\#issuecomment-2340834399
@reneme
Split Options and Builder into two classes
5f53277 
As discussed: https://github.com/randombit/botan/pull/4318\#issuecomment-2340834399
@reneme
Disentangle pk_keys.h and pubkey.h with fwd declares
524c7be
@reneme
Go all-in on the builder pattern
e8638cd 
as mentioned here: https://github.com/randombit/botan/pull/4318\#issuecomment-2297990007
@reneme
remove half-baked c'tors of PK_Signer/Verifier
e63baee 
as discussed: https://github.com/randombit/botan/pull/4318\#issuecomment-2297990007
@reneme
.with_provider() filters out legacy 'base' provider
6aabdb9
@reneme
PK_Signature_Options::from_legacy()
4d06ceb 
Without this patch, clang seemed to miscompile the retrofitting of the
PK_Signer() legacy constructor. valgrind complained about uninitialized
memory when building with clang in -O2 and -O3 (didn't test -O1).
@reneme
Code cleanup in base classes
4904709
@reneme
Cleanups
b8306ad
@reneme
Dilithium can't deal with context/prehash yet
f03d5ff
@reneme
Options<>::to_string() can render uint8_t buffers
5e4a2b6
@reneme
Test: OptionsBuilder
0f87d52
@reneme
Fix after rebase
cb246d7
@reneme
Fix after rebase
2b206c3
@reneme
TPM2 wrapper uses PK_Options
de6d3aa
@FAlbertDev
Context support for ML-DSA and SLH-DSA
34786d9
@coveralls
Copy link

Coverage Status

coverage: 91.206% (-0.003%) from 91.209%
when pulling 34786d9 on Rohde-Schwarz:feature/fips_ctx_and_prehash
into 6a97b80 on randombit:master.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Support Pre-Hash and Context in ML-DSA/SLH-DSA
4 participants
@FAlbertDev @coveralls @randombit @reneme