kex: Implement remaining hybrid ML-KEM methods

This builds on top of a9c8f94. The pure ML-KEM code is now separated from the hybrid parts, with the hybrid implementation generalized to support NIST curves. Signed-off-by: Pavol Žáčik <pzacik@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>
2026-02-09 18:04:25 +09:00 · 2025-11-18 13:36:25 +01:00
parent 7911580304
commit 0ef79018b3
21 changed files with 1494 additions and 793 deletions
--- a/tests/client/torture_algorithms.c
+++ b/tests/client/torture_algorithms.c
@@ -768,6 +768,38 @@ static void torture_algorithms_ecdh_mlkem768x25519_sha256(void **state)
 }
 #endif /* HAVE_MLKEM && defined(OPENSSH_MLKEM768X25519_SHA256) */

+#if defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM768NISTP256_SHA256)
+static void torture_algorithms_ecdh_mlkem768nistp256_sha256(void **state)
+{
+    struct torture_state *s = *state;
+
+    if (ssh_fips_mode()) {
+        skip();
+    }
+
+    test_algorithm(s->ssh.session,
+                   "mlkem768nistp256-sha256",
+                   NULL /*cipher*/,
+                   NULL /*hmac*/);
+}
+#endif /* HAVE_MLKEM && defined(OPENSSH_MLKEM768NISTP256_SHA256) */
+
+#if defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM1024NISTP384_SHA384)
+static void torture_algorithms_ecdh_mlkem1024nistp384_sha384(void **state)
+{
+    struct torture_state *s = *state;
+
+    if (ssh_fips_mode()) {
+        skip();
+    }
+
+    test_algorithm(s->ssh.session,
+                   "mlkem1024nistp384-sha384",
+                   NULL /*cipher*/,
+                   NULL /*hmac*/);
+}
+#endif /* HAVE_MLKEM && defined(OPENSSH_MLKEM1024NISTP384_SHA384) */
+
 static void torture_algorithms_dh_group1(void **state) {
    struct torture_state *s = *state;

@@ -1050,6 +1082,16 @@ int torture_run_tests(void) {
                                        session_setup,
                                        session_teardown),
 #endif /* HAVE_MLKEM && defined(OPENSSH_MLKEM768X25519_SHA256) */
+#if defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM768NISTP256_SHA256)
+        cmocka_unit_test_setup_teardown(torture_algorithms_ecdh_mlkem768nistp256_sha256,
+                                        session_setup,
+                                        session_teardown),
+#endif /* defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM768NISTP256_SHA256) */
+#if defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM1024NISTP384_SHA384)
+        cmocka_unit_test_setup_teardown(torture_algorithms_ecdh_mlkem1024nistp384_sha384,
+                                        session_setup,
+                                        session_teardown),
+#endif /* defined(HAVE_MLKEM) && defined(OPENSSH_MLKEM1024NISTP384_SHA384) */
 #if defined(HAVE_ECC)
        cmocka_unit_test_setup_teardown(torture_algorithms_ecdh_sha2_nistp256,
                                        session_setup,