ML-DSA + COSE improve tests #116543
Merged
ML-DSA + COSE improve tests #116543
+598
−825
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
There was a problem hiding this comment.
Pull Request Overview
This PR introduces ML‑DSA support into existing COSE tests by updating helper methods, test files, and the project file to include ML‑DSA test data. Key changes include:
- Adding ML‑DSA test data files and a new define constant in the project file.
- Changing method signatures and generic constraints from AsymmetricAlgorithm to IDisposable to accommodate ML‑DSA.
- Updating helper methods (e.g. GetExpectedAlgorithmStringValue) and key conversion logic to support the new ML‑DSA algorithms.
Reviewed Changes
Copilot reviewed 12 out of 12 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| System.Security.Cryptography.Cose.Tests.csproj | Added compilation for ML‑DSA test data and defined constant for PEM encoding exclusion. |
| CoseTestHelpers.cs | Introduced ML‑DSA-specific algorithm string conversion and updated key conversion logic and parameter types. |
| CoseSign1MessageTests.Sign.cs, CoseMultiSignMessageTests.Sign.cs, and related test files | Updated generic constraints and method signatures to use IDisposable instead of AsymmetricAlgorithm. |
| MLDsaTestsData.cs and MLDsaTestsData.Ietf.cs | Updated with required modifiers and conditional PEM encoding compilation. |
src/libraries/System.Security.Cryptography.Cose/tests/CoseTestHelpers.cs
Show resolved
Hide resolved
|
Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones |
bartonjs
reviewed
Jun 11, 2025
...mon/tests/System/Security/Cryptography/AlgorithmImplementations/MLDsa/MLDsaTestsData.Ietf.cs
Outdated
Show resolved
Hide resolved
bartonjs
reviewed
Jun 11, 2025
...s/Common/tests/System/Security/Cryptography/AlgorithmImplementations/MLDsa/MLDsaTestsData.cs
Outdated
Show resolved
Hide resolved
bartonjs
reviewed
Jun 11, 2025
...m.Security.Cryptography.Cose/tests/CoseMultiSignMessageTests.Sign.CustomHeaderMaps.Stream.cs
Outdated
Show resolved
Hide resolved
bartonjs
reviewed
Jun 11, 2025
src/libraries/System.Security.Cryptography.Cose/tests/CoseTestHelpers.cs
Outdated
Show resolved
Hide resolved
bartonjs
reviewed
Jun 11, 2025
src/libraries/System.Security.Cryptography.Cose/tests/CoseTestHelpers.cs
Outdated
Show resolved
Hide resolved
bartonjs
reviewed
Jun 11, 2025
...aries/System.Security.Cryptography.Cose/tests/System.Security.Cryptography.Cose.Tests.csproj
Outdated
Show resolved
Hide resolved
This was referenced Jun 12, 2025
Open
This was referenced Jun 23, 2025
bartonjs
reviewed
Jun 23, 2025
Comment on lines
+504
to
+515
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa44Key; | ||
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa44KeyWithoutPrivateKey; | ||
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa65Key; | ||
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa65KeyWithoutPrivateKey; | ||
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa87Key; | ||
| [ThreadStatic] | ||
| private static MLDsa? t_mldsa87KeyWithoutPrivateKey; |
There was a problem hiding this comment.
Consider, as a followup, introducing a private nested class to hold all of these ThreadStatic values, e.g.
[ThreadStatic]
private static KeyRing t_threadKeys;
private static KeyRing ThreadKeys => (t_threadKeys ??= new KeyRing());
internal static MLDsa MLDsa44Key => ThreadKeys.MLDsa44Key;
...
private sealed class KeyRing
{
internal MLDsa MLDsa44 { get => field ??= CreateMLDsa(MLDsaAlgorithm.MLDsa44, true); private set; }
...
}It's not that what's here is bad, it's just that it's a lot of individual ThreadStatic values, and over time it just feels like it's increasing the risk of missing one and having parallelism where we don't expect it.
There was a problem hiding this comment.
I'll add this and the other change in the next PR
bartonjs
reviewed
Jun 23, 2025
| case CoseAlgorithm.MLDsa65: | ||
| case CoseAlgorithm.MLDsa87: | ||
| return MLDsa.IsSupported; | ||
| default: return true; |
There was a problem hiding this comment.
Nit (not worth respinning for, but if there's any other edit, please fix).
Suggested change
| default: return true; | |
| default: | |
| return true; |
bartonjs
approved these changes
Jun 23, 2025
|
Failures seem unrelated |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This includes ML-DSA into existing COSE tests (part of the feedback from #115158)
This is not 100% done yet as some of the new tests might be possible to be removed now but I'm not yet sure if we're actually testing all new CoseKey overloads.