Merge pull request #435 from anhu/mlkem-hybrid-draft-names-wolfmqtt

JacobBarthelmeh · web-flow · commit 21b93032a30b · 2025-08-01T16:02:53.000-06:00
Rename ML-KEM hybrids to match IETF Draft.
diff --git a/README.md b/README.md
@@ -312,7 +312,7 @@ The SN client was tested using the Eclipse Paho MQTT-SN Gateway (https://github.
 
 ## Post-Quantum MQTT Support
 
-Recently the OpenQuantumSafe project has integrated their fork of OpenSSL with the mosquito MQTT broker. You can now build wolfMQTT with wolfSSL and use that to publish to the mosquito MQTT broker. Currently, wolfMQTT supports the `ML_KEM_768` and `P384_ML_KEM_768` groups and ML-DSA-65 for authentication in TLS 1.3. This works on Linux.
+Recently the OpenQuantumSafe project has integrated their fork of OpenSSL with the mosquito MQTT broker. You can now build wolfMQTT with wolfSSL and use that to publish to the mosquito MQTT broker. Currently, wolfMQTT supports the `ML_KEM_768` and `SecP384r1MLKEM768` groups and ML-DSA-65 for authentication in TLS 1.3. This works on Linux.
 
 ### Getting Started with Post-Quantum Mosquito MQTT Broker and Subscriber
 
@@ -359,10 +359,10 @@ NOTE: No need to install wolfmqtt.
 Since the broker and subscriber are still running, you can use `mqttclient` to publish using post-quantum algorithms in TLS 1.3 by doing the following:
 
 ```
-./examples/mqttclient/mqttclient -T -h 174.18.0.2 -p 8883 -t -A CA.crt -K publisher.key -c publisher.crt -m "Hello from post-quantum wolfMQTT" -n test/sensor1 -Q P384_ML_KEM_768
+./examples/mqttclient/mqttclient -T -h 174.18.0.2 -p 8883 -t -A CA.crt -K publisher.key -c publisher.crt -m "Hello from post-quantum wolfMQTT" -n test/sensor1 -Q SecP384r1MLKEM768
 ```
 
-Congratulations! You have just published an MQTT message using TLS 1.3 with ML-KEM-768 hybridized with ECDHE on the P-384 curve and ML-DSA-65 signature scheme. To use only ML-KEM-768, replace `P384_ML_KEM_768` with `ML_KEM_768`. Moreover, you have also shown interoperability with liboqs, liboqs-provider, openssl3 and mosquitto.
+Congratulations! You have just published an MQTT message using TLS 1.3 with ML-KEM-768 hybridized with ECDHE on the P-384 curve and ML-DSA-65 signature scheme. To use only ML-KEM-768, replace `SecP384r1MLKEM768` with `ML_KEM_768`. Moreover, you have also shown interoperability with liboqs, liboqs-provider, openssl3 and mosquitto.
 
 Latest version combination tested:
     - wolfSSL: v5.8.2-stable
diff --git a/examples/mqttexample.c b/examples/mqttexample.c
@@ -728,8 +728,8 @@ int mqtt_tls_cb(MqttClient* client)
             int group = 0;
             if (XSTRCMP(mTlsPQAlg, "ML_KEM_768") == 0) {
                 group = WOLFSSL_ML_KEM_768;
-            } else if (XSTRCMP(mTlsPQAlg, "P384_ML_KEM_768") == 0) {
-                group = WOLFSSL_P384_ML_KEM_768;
+            } else if (XSTRCMP(mTlsPQAlg, "SecP384r1MLKEM768") == 0) {
+                group = WOLFSSL_SECP384R1MLKEM768;
             } else {
                 PRINTF("Invalid post-quantum KEM specified");
             }
