kris
/
pqc
1
1
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
Reference implementations of PQC
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
693 Commit
9 分支
14 MiB
目錄樹: 78a65d6ec9
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '78a65d6ec9'
${ noResults }
pqc/README.md

README.md 9.3 KiB
原始文件 Normal View 文件歷史

First sketch of the README
5 年之前
Add status badges
5 年之前
Add badge
5 年之前
First sketch of the README
5 年之前
Merge branch 'master' into make-dilithium
5 年之前
First sketch of the README
5 年之前
Merge branch 'master' into make-dilithium
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
First sketch of the README
5 年之前
Fix SUPERCOP url
5 年之前
Spelling and formatting fixes
5 年之前
First sketch of the README
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
First sketch of the README
5 年之前
Merge branch 'master' into make-dilithium
5 年之前
First draft of CONTRIBUTING
5 年之前
First sketch of the README
5 年之前
Checkboxes
5 年之前
Mark currently checked requirements
5 年之前
Test for prohibited includes in api.h
5 年之前
Add -Wmissing-prototypes (#109) * fix prototypes for sphincs and static functions in aes.c * fix missing prototypes in all frodo variants * fix missing prototypes in kyber * remove const from non-pointer arguments in Frodo * add missing prototypes to requirements in README
5 年之前
Move #if check from manual to automatic
5 年之前
Mark currently checked requirements
5 年之前
Add test instructions to README
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Mark 'common' dependencies in README as complete
5 年之前
Clarify ambigious check wrt return codes
5 年之前
Throw errors when using variable-length arrays Windows already complains about this in CI, but this will let us catch these issues on Linux as well.
5 年之前
Checkboxes
5 年之前
Check box wrt symbolic link check
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Update checked boxes
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Mark currently checked requirements
5 年之前
check for license files
5 年之前
Check META files (closes #6)
5 年之前
First sketch of the README
5 年之前
Update README based on discussion on integer sizes
5 年之前
First sketch of the README
5 年之前
Spelling and formatting fixes
5 年之前
Update README based on discussion on integer sizes
5 年之前
First sketch of the README
5 年之前
Merge branch 'master' into make-dilithium
5 年之前
Update checked boxes
5 年之前
First sketch of the README
5 年之前
Fixed (?) comment in README
5 年之前
First sketch of the README
5 年之前
Fixed (?) comment in README
5 年之前
First sketch of the README
5 年之前
Fixed (?) comment in README
5 年之前
First sketch of the README
5 年之前
Fixed (?) comment in README
5 年之前
First sketch of the README
5 年之前
Merge branch 'master' into make-dilithium
5 年之前
First sketch of the README
5 年之前
Renamed sigbytes to siglen (consistent with mlen)
5 年之前
First sketch of the README
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Some cleanup, expanded dependencies, removed two unnecessary files in kyber768
5 年之前
Adds list of requireddependencies
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Update README to refer to common Makefile
5 年之前
Update README.md with information about Makefiles and Windows CI
5 年之前
Write up some lines about some consumers
5 年之前
Fixed link to rust project in README.md
5 年之前
Update text and add more details about OQS [skip ci]
5 年之前
Trivial commit to trigger a rerun of all CI.
5 年之前
Write up some lines about some consumers
5 年之前
First sketch of the README
5 年之前
Make license information in README more specific
5 年之前
Add test instructions to README
5 年之前
Add link to test framework wiki page. [skip ci]
5 年之前
Add CircleCI link to README
5 年之前
Add test instructions to README
5 年之前
Parallel tests (#206) * Do tests with pytest to run them in parallel * attempt to handle merge commits better for PR test path Similar to how we solved this for travis * Clean up imports * don't run valgrind if not specified slow_test * Fix functest after initializer rename * upload tests results as junit * Upload test-common files since #200 got merged * Catch test results upload failure
5 年之前
Add test instructions to README
5 年之前
Mention submodules in README
5 年之前
Parallel tests (#206) * Do tests with pytest to run them in parallel * attempt to handle merge commits better for PR test path Similar to how we solved this for travis * Clean up imports * don't run valgrind if not specified slow_test * Fix functest after initializer rename * upload tests results as junit * Upload test-common files since #200 got merged * Catch test results upload failure
5 年之前
Add test instructions to README
5 年之前
Mention submodules in README
5 年之前
Add test instructions to README
5 年之前
Add CircleCI link to README
5 年之前
Add test instructions to README
5 年之前
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165 
  1. # PQClean

  2. 

  3. [![Build Status on Travis CI](https://travis-ci.com/PQClean/PQClean.svg?branch=master)](https://travis-ci.com/PQClean/PQClean)

  4. [![Build Status on Appveyor](https://ci.appveyor.com/api/projects/status/186ky7yb9mlqj3io/branch/master?svg=true)](https://ci.appveyor.com/project/PQClean/pqclean/branch/master)

  5. [![Build Status on CircleCI](https://circleci.com/gh/PQClean/PQClean/tree/master.svg?style=svg)](https://circleci.com/gh/PQClean/PQClean/tree/master)

  6. 

  7. **PQClean**, in short, is an effort to collect **clean** implementations of the post-quantum

  8. schemes that are in the

  9. [NIST post-quantum project](https://csrc.nist.gov/projects/post-quantum-cryptography).

  10. The goal of PQClean is to provide *standalone implementations* that

  11. 

  12. * can easily be integrated into libraries such as [liboqs](https://openquantumsafe.org/#liboqs) or [libpqcrypto](https://libpqcrypto.org/);

  13. * can efficiently upstream into higher-level protocol integration efforts such as [Open Quantum Safe](https://openquantumsafe.org/#integrations);

  14. * can easily be integrated into benchmarking frameworks such as [SUPERCOP](https://bench.cr.yp.to/supercop.html);

  15. * can easily be integrated into frameworks targeting embedded platforms such as [pqm4](https://github.com/mupq/pqm4);

  16. * are suitable starting points for architecture-specific optimized implementations;

  17. * are suitable starting points for evaluation of implementation security; and

  18. * are suitable targets for formal verification.

  19. 

  20. What PQClean is **not** aiming for is

  21. 

  22. * a build system producing an integrated library of all schemes;

  23. * including benchmarking of implementations; and

  24. * including integration into higher-level applications or protocols.

  25. 

  26. As a first main target, we are collecting C implementations that fulfill the requirements

  27. listed below.

  28. Please also review our [guidelines for contributors](CONTRIBUTING.md) if you are interested in adding a scheme to PQClean.

  29. 

  30. ## Requirements on C implementations that are automatically checked

  31. 

  32. _The checking of items on this list is still being developed. Checked items should be working._

  33. 

  34. * [x] Code is valid C99

  35. * [x] Passes functional tests

  36. * [x] API functions do not write outside provided buffers

  37. * [x] `api.h` cannot include external files

  38. * [x] Compiles with `-Wall -Wextra -Wpedantic -Werror -Wmissing-prototypes` with `gcc` and `clang`

  39. * [x] `#if`/`#ifdef`s only for header encapsulation

  40. * [x] Consistent test vectors across runs

  41. * [x] Consistent test vectors on big-endian and little-endian machines

  42. * [x] Consistent test vectors on 32-bit and 64-bit machines

  43. * [x] No errors/warnings reported by valgrind

  44. * [x] No errors/warnings reported by address sanitizer

  45. * [x] Only dependencies: `fips202.c`, `sha2.c`, `aes.c`, `randombytes.c`

  46. * [x] API functions return `0` on success

  47. * [x] No dynamic memory allocations (including variable-length arrays)

  48. * [ ] No branching on secret data (dynamically checked using valgrind)

  49. * [ ] No access to secret memory locations (dynamically checked using valgrind)

  50. * [x] Separate subdirectories (without symlinks) for each parameter set of each scheme

  51. * [x] Builds under Linux, MacOS, and Windows

  52.     * [x] Linux

  53.     * [x] MacOS

  54.     * [x] Windows

  55. * [x] Makefile-based build for each separate scheme

  56. * [x] Makefile-based build for Windows (`nmake`)

  57. * [x] All exported symbols are namespaced with `PQCLEAN_SCHEMENAME_`

  58. * [x] Each implementation comes with a `LICENSE` file (see below)

  59. * [x] Each scheme comes with a `META.yml` file giving details about version of the algorithm, designers

  60.     * [x] Each individual implementation is specified in `META.yml`.

  61. 

  62. 

  63. ## Requirements on C implementations that are manually checked

  64. 

  65. * Minimalist Makefiles

  66. * No stringification macros

  67. * Output-parameter pointers in functions are on the left

  68. * `const` arguments are labeled as `const`

  69. * All exported symbols are namespaced in place

  70. * Integer types are of fixed size where relevant, using `stdint.h` types

  71. * Integers used for indexing memory are of size `size_t`

  72. * Variable declarations at the beginning (except in `for (size_t i=...`)

  73. 

  74. 

  75. ## Clean C implementations currently in PQClean

  76. 

  77. Currently, the continuous-integration and testing environment of PQClean is still work in progress

  78. and as a consequence PQClean does not yet have many implementations.

  79. 

  80. <!--

  81.  Currently, PQClean includes clean C implementations of the following KEMs:

  82. 

  83.  * [Kyber-512](https://pq-crystals.org/kyber/)

  84.  * [Kyber-768](https://pq-crystals.org/kyber/)

  85.  * [Kyber-1024](https://pq-crystals.org/kyber/)

  86. 

  87.  Currently, PQClean includes clean C implementations of the following signature schemes:

  88. 

  89.  * [Dilithium-III](https://pq-crystals.org/dilithium/)

  90. -->

  91. 

  92. ## API used by PQClean

  93. 

  94. PQClean is essentially using the same API as required for the NIST reference implementations,

  95. which is also used by SUPERCOP and by libpqcrypto. The only two differences to that API are

  96. the following:

  97. * All lengths are passed as type `size_t` instead of `unsigned long long`; and

  98. * Signatures offer two additional functions that follow the "traditional" approach used

  99. in most software stacks of computing and verifying signatures instead of producing and

  100. recovering signed messages. Specifically, those functions have the following name and signature:

  101. 

  102. ```

  103. int crypto_sign_signature(uint8_t *sig, size_t *siglen, const uint8_t *m, size_t mlen, const uint8_t *sk);

  104. int crypto_sign_verify(const uint8_t *sig, size_t siglen, const uint8_t *m, size_t mlen, const uint8_t *pk);

  105. ```

  106. 

  107. ## Building PQClean

  108. 

  109. As noted above, PQClean is **not** meant to be built as a single library: it is a collection of source code that can be easily integrated into other libraries.  The PQClean repository includes various test programs which do build various files, but you should not use the resulting binaries for any purpose.

  110. 

  111. List of required dependencies: ``gcc or clang, make, python3, python-yaml library, valgrind, astyle (>= 3.0)``.

  112. 

  113. ## Using source code from PQClean in your own project

  114. 

  115. Each implementation directory in PQClean (e.g., crypto\_kem/kyber768\clean) can be extracted for use in your own project.  You will need to:

  116. 

  117. 1. Copy the source code from the implementation's directory into your project.

  118. 2. Add the files to your project's build system.

  119. 3. Provide instantiations of any of the common cryptographic algorithms used by the implementation.  This likely includes `common/randombytes.h` (a cryptographic random number generator), and possibly `common/sha2.h` (the SHA-2 hash function family) and `common/fips202.h` (the SHA-3 hash function family).

  120. 

  121. Regarding #2, adding the files to your project's build system, each implementation in PQClean is accompanied by example two makefiles that show how one could build the files for that implementation:

  122. 

  123. - The file `Makefile` which can be used with GNU Make, BSD Make, and possibly others.

  124. - The file `Makefile.Microsoft_nmake` which can be used with Visual Studio's nmake.

  125. 

  126. ## Projects integrating PQClean-distributed source code

  127. 

  128. The following projects consume implementations from PQClean and provide their own wrappers around the implementations.

  129. Their integration strategies may serve as examples for your own projects.

  130. 

  131. - **[pqcrypto crate](https://github.com/rustpq/pqcrypto)**: Rust integration that automatically generates wrappers from PQClean source code.

  132. - **[mupq](https://github.com/mupq/)**: Runs the implementations from PQClean as reference implementations to compare with microcontroller-optimized code.

  133. - **[Open Quantum Safe](https://github.com/open-quantum-safe/)**: The Open Quantum Safe project integrates implementations from PQClean into their [liboqs](https://github.com/open-quantum-safe/liboqs/) C library, which then exposes them via [C++](https://github.com/open-quantum-safe/liboqs-cpp), [C# / .NET](https://github.com/open-quantum-safe/liboqs-dotnet), and [Python](https://github.com/open-quantum-safe/liboqs-python) wrappers, as well as to forks of [OpenSSL](https://github.com/open-quantum-safe/openssl) and [OpenSSH](https://github.com/open-quantum-safe/openssh-portable).

  134. 

  135. ## License

  136. 

  137. Each subdirectory containing implementations contains a `LICENSE` file stating under what license that specific implementation is released.

  138. The files in `common` contain licensing information at the top of the file (and are currently either public domain or MIT).

  139. All other code in this repository is released under the conditions of [CC0](http://creativecommons.org/publicdomain/zero/1.0/).

  140. 

  141. ## Running tests locally

  142. 

  143. See https://github.com/PQClean/PQClean/wiki/Test-framework for details about the PQClean test framework.

  144. 

  145. While we run extensive automatic testing on [Circle CI][circleci-pqc] (Linux builds), [Travis CI][travis-pqc] (OS X builds) and [Appveyor][appveyor-pqc] (Windows builds), most tests can also be run locally.

  146. To do this, make sure the following is installed:

  147. 

  148. * Python 3.5+

  149. * `pytest` for python 3.

  150. 

  151. We also recommend installing ``pytest-xdist`` to allow running tests in parallel.

  152. 

  153. You will also need to make sure the submodules are initialized by running:

  154. 

  155. ```

  156. git submodule update --init

  157. ```

  158. 

  159. Run the Python-based tests by going into the `test` directory and running `pytest -v` or (recommended) `pytest -n=auto` for parallel testing.

  160. 

  161. You may also run `python3 <testmodule>` where `<testmodule>` is any of the files starting with `test_` in the `test/` folder.

  162. 

  163. [circleci-pqc]: https://circleci.com/gh/PQClean/PQClean/

  164. [travis-pqc]: https://travis-ci.com/PQClean/PQClean/

  165. [appveyor-pqc]: https://ci.appveyor.com/project/PQClean/pqclean