Add kem trait impls when ECDH is supported #1556
Conversation
It would be good to specifically call it out as such, and add test vectors.
Yes, that'd probably be a good idea. I went ahead and snagged the |
does this mean adding generic randomized round trip tests or are there test vectors that I'm unaware of?
One issue here is that Rust would treat this as an impl of a foreign trait on a foreign type which is forbidden the last time I checked. The impl would have to be proxied. Something along the lines of struct<X> Proxy(x: X);
impl<C> Encapsulate<EK, SS> for Proxy<EphemeralSecret<C>>
where
C: CurveArithmetic
{}which may not be entirely desirable. Let me know what you think. |
One upside here is that we might be able to bundle the DH-KEMs from a variety of providers, probably through an enum? In particular since X25519-dalek does not implement the |
Yes, you'd need newtypes for encapsulators/decapsulators.
We generally use traits, not enums, to support multiple providers. Enums have a number of drawbacks, such as preventing downstream crates from integrating, and also always linking all of the associated code for all providers whether they're used or not, whereas traits are friendly to dead code elimination.
That's a problem that could potentially be remedied upstream. |
This will allow easy integration of the generic TLS 1.3 KEM combiner, since the current plan is to take any two KEMs that support Encapsulate/Decapsulate and combine them piecewise, and this turns the DH implementations into a KEM as described by TLS. I wonder if this should go into KEMs instead, however.