fix(integration): Update PQ integration test expectations #5082
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jmayclin
reviewed
Feb 5, 2025
| @@ -53,7 +53,7 @@ mod kms_pq { | |||
| tls.as_ref().cipher_suite()?, | |||
| "TLS_AES_256_GCM_SHA384" | |||
| ); | |||
| assert_eq!(tls.as_ref().kem_group_name(), Some("x25519_kyber-512-r3")); | |||
| assert!(tls.as_ref().kem_group_name().unwrap().to_lowercase().contains("kyber")); | |||
There was a problem hiding this comment.
From the comment above
// Note: In the future KMS will deprecate kyber_r3 in favor of ML-KEM.
// At that point this test should be updated with a security policy that
// supports ML-KEM.
So I'd vote for switching the security policy and then asserting on one of the standardized IANA groups like SecP256r1MLKEM768.
There was a problem hiding this comment.
I tried this but it only sometimes worked. I think some of the KMS hosts maybe still only support the draft KEM groups. For now I updated the test with a security policy that includes both ML-KEM and kyber groups, and assert that any KEM group was negotiated. I opened an issue to update this test to assert ML-KEM when we're able to: #5086
goatgoose
force-pushed
the
fix-kms-pq-test
branch
from
b36e819 to
2cec38e
Compare
jmayclin
approved these changes
Feb 5, 2025
lrstewart
approved these changes
Feb 5, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of changes:
The KMS PQ network integration test recently started failing in CI because KMS started negotiating a different KEM group:
We're currently expecting
x25519_kyber-512-r3to be negotiated, but KMS is now negotiatingSecP256r1Kyber768Draft00.I don't believe this to be indicative of any regression on our side, since this failure wasn't caused by any specific PR. Also,
SecP256r1Kyber768Draft00is actually a more preferred KEM group in the test security policy (PQ-TLS-1-2-2023-10-09):s2n-tls/tls/s2n_kem_preferences.c
Lines 30 to 32 in c6b41ef
This PR updates the expectations of this test.
Call-outs:
The purpose of this test is simply to verify that we can successfully perform a PQ handshake. The specific KEM group seems less important. So I updated this test to just check that any kyber KEM group was negotiated. We could instead update this test to check for the new KEM group specifically, if this seems preferable.
Testing:
The PQ integration test should now succeed.
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.