> The private key encoding formats of ML-KEM and ML-DSA are updated to match > the latest IERTF drafts at: > https://datatracker.ietf.org/doc/html/draft-ietf-lamps-dilithium-certificates-06 > and > https://datatracker.ietf.org/doc/html/draft-ietf-lamps-kyber-certificates-07. > Most importantly, the seed used to generate a key pair is now stored in the > private key. > > Both the seed and the expanded format are stored inside a `NamedPKCS8Key` > now. When loading from a PKCS #8 key that contains the seed, both fields will > be filled. If the PKCS #8 encoding only contains the expanded key (which does > not conform to the current drafts but might have been created earlier), the > expanded key will be read and used in KEM and signature operations.
Weijun Wang has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains four additional commits since the last revision: - Merge branch 'master' into 8347938 - add more checks into a test - clean executable bits - the fix ------------- Changes: - all: https://git.openjdk.org/jdk/pull/23376/files - new: https://git.openjdk.org/jdk/pull/23376/files/4ce726b5..b24065d0 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=23376&range=02 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=23376&range=01-02 Stats: 18751 lines in 290 files changed: 8116 ins; 6935 del; 3700 mod Patch: https://git.openjdk.org/jdk/pull/23376.diff Fetch: git fetch https://git.openjdk.org/jdk.git pull/23376/head:pull/23376 PR: https://git.openjdk.org/jdk/pull/23376
