Target HPKE draft-12

[sayrer]

The TLS WG is proposing to update the interop version with a new draft that would target cfrg-hpke-draft-08, and hopefully eliminate churn there. I think it would be best to target that version in Ring. In Rustls, we can prototype against Cloudflare's deployed ECH draft-09 code (cfrg-hpke-draft-07) using an old version of the rust-hpke crate.

See: https://mailarchive.ietf.org/arch/msg/tls/KluT9tockL5kDcIaevGOhyLWUDc/

[chris-wood]

Throwing in my support here. I'd love to see HPKE support land in ring.

[cjpatton]

Bumping this issue, as I'd also love to see this happen.

[cjpatton]

Are the maintainers open to a PR for adding partial support for the latest draft (HPKE-12)? An implementation of base mode and support for at least one cipher suite would be useful.

[briansmith]

Are the maintainers open to a PR for adding partial support for the latest draft (HPKE-12)? An implementation of base mode and support for at least one cipher suite would be useful.

Yes, that would be great as I seem to never find time to get to this. Happy to meet with you to discuss it before you start, if that would help.

[cjpatton]

Thanks @briansmith, I'll ping you when I have some time to start work on this. Is brian@briansmith.org a good email address (from your GH profile)

[briansmith]

Thanks @briansmith, I'll ping you when I have some time to start work on this. Is brian@briansmith.org a good email address (from your GH profile)

Great! Yes, that's the email address.

[tanyav2]

We've started working on this now. cc @cjpatton

[tanyav2]

PR implementing base mode is now up for initial review- https://github.com/briansmith/ring/pull/1462