Skip to content

Upgrade liboqs OpenSSL to 3.0 #4132

New issue
New issue
Open
Open
Upgrade liboqs OpenSSL to 3.0#4132
Assignees
WillChilds-Klein
Labels
priority/lowRank 4size/mediumtype/integration_testtype/post-quantum
@WillChilds-Klein

Description

@WillChilds-Klein
WillChilds-Klein
opened on Aug 7, 2023

Problem:

Our hybrid PQ handshake integration tests currently test both client and server against OQS OpenSSL 1.1.1, which has been deprecated by both OpenSSL and OQS's fork thereof.

Solution:

To ensure ongoing compatibility with OQS OpenSSL, we need to upgrade our CI's installation to 3.0 and test against that. Additionally, this will unblock us from testing against hybrid KEM groups SecP256r1Kyber768Draft00 and X25519Kyber768Draft00.

Requirements / Acceptance Criteria:

  1. Upgrade our CI installation scripts to install and build latest OQS OpenSSL 3.0 instead of 1.1.1
  2. Add integration test case for negotiating SecP256r1Kyber768Draft00
  3. Add integration tests case negotiating X25519Kyber768Draft00

Out of scope:

  • actually building s2n against OQS OpenSSL -- this is only for tests
  • supporting any additional KEM groups supported by OQS OpenSSL 3.0 not already supported by s2n

Metadata

Metadata

Assignees

Labels

priority/lowRank 4size/mediumtype/integration_testtype/post-quantum

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions