Commit Graph

1045 Commits

Author SHA1 Message Date
John M. Schanck
2767acd007 Fix left shift overflow for MASK_N2 2021-03-24 21:02:47 +00:00
John M. Schanck
6cf952a2ce Remove BITMASK macro 2021-03-24 21:02:47 +00:00
John M. Schanck
1325ba6dff Remove old HQC implementations 2021-03-24 21:02:47 +00:00
John M. Schanck
ae30e1f432 Avoid ==, !=, etc in arithmetic expressions. Some compilers will produce non-constant time code. 2021-03-24 21:02:47 +00:00
John M. Schanck
b16ce91595 Avoid using log(a) to check if a==0 2021-03-24 21:02:47 +00:00
John M. Schanck
f74c1e6ad2 Satisfy linter 2021-03-24 21:02:47 +00:00
John M. Schanck
6c4abb23ec Simplify hqc-rmrs*/clean/reed_muller.c and fix potentially non-constant time behavior. 2021-03-24 21:02:47 +00:00
John M. Schanck
d5fd7d6d0c Fix an avx2/gf2x.c buffer overflow 2021-03-24 21:02:47 +00:00
John M. Schanck
cb7675a9b6 Replace avx2 'reduce' in gf2x 2021-03-24 21:02:47 +00:00
John M. Schanck
b0afb62c0e New HQC and HQC-RMRS from upstream 2021-03-24 21:02:47 +00:00
John M. Schanck
abd0178219 NTRU Prime: Get random bytes in one shot and use corresponding KATs 2021-03-24 21:02:47 +00:00
John M. Schanck
6047ae532a NTRU Prime: avoid narrowing in loop iteration 2021-03-24 21:02:47 +00:00
John M. Schanck
4971f4a4b0 Revert "NTRU Prime: change prototype for clean/crypto_sort_int32"
This reverts commit 8a372ad2e8.
2021-03-24 21:02:47 +00:00
John M. Schanck
fee8635c9f NTRU Prime: change prototype for clean/crypto_sort_int32 2021-03-24 21:02:47 +00:00
John M. Schanck
162751e2e5 NTRU Prime: jump directly to crypto_sort_smallindices 2021-03-24 21:02:47 +00:00
John M. Schanck
1a402a1917 NTRU Prime: satisfy linter 2021-03-24 21:02:47 +00:00
John M. Schanck
b568d01ac6 NTRU Prime: Simplified patch set 2021-03-24 21:02:47 +00:00
John M. Schanck
2c5eb2a732 NTRU Prime: Disable -Wconversion for gcc 2021-03-24 21:02:47 +00:00
John M. Schanck
333248de03 NTRU Prime: more unary negations 2021-03-24 21:02:47 +00:00
John M. Schanck
c2d2d145b7 NTRU Prime: more explicit casts 2021-03-24 21:02:47 +00:00
John M. Schanck
4883bb44c0 NTRU Prime: avoid unsigned unary negation 2021-03-24 21:02:47 +00:00
John M. Schanck
191aed977f NTRU Prime: more compiler warnings 2021-03-24 21:02:47 +00:00
John M. Schanck
09d3f1e1e6 NTRU Prime: More changes for MS compiler 2021-03-24 21:02:47 +00:00
John M. Schanck
565cd17478 NTRU Prime: Explicit casts to avoid conversion warnings 2021-03-24 21:02:47 +00:00
John M. Schanck
7b5a4c494b NTRU Prime: Match the NIST submission's sequence of calls to randombytes 2021-03-24 21:02:47 +00:00
John M. Schanck
431dbada45 Add sntrup{653,761,857} and ntrulpr{653,761,857}
Exported from SUPERCOP-20200826 using the scripts at:
https://github.com/jschanck/pqclean-package-ntruprime
2021-03-24 21:02:46 +00:00
Thom Wiggers
3671aff2f8 Remove CFLAGS from keccak4x makefile (closes #321) 2021-03-24 21:02:46 +00:00
John M. Schanck
196f0c1ae2 NTRU: remove unused .s file 2021-03-24 21:02:46 +00:00
John M. Schanck
4c268aae14 NTRU: inline the one call that needed @plt 2021-03-24 21:02:46 +00:00
John M. Schanck
a008d4ad21 ntruhrss701/avx2: fix non-PIC call 2021-03-24 21:02:46 +00:00
Thom Wiggers
c4c16bf0ff Incorporate fix https://github.com/sphincs/sphincsplus/pull/15 2021-03-24 21:02:46 +00:00
John M. Schanck
97e0aad338 NTRU: Move crypto_sort_int32.h include to top of sample.c 2021-03-24 21:02:46 +00:00
John M. Schanck
2f56d17d67 NTRU: more explicit casts for MS compiler 2021-03-24 21:02:46 +00:00
John M. Schanck
f772093fd4 NTRU: add explicit cast for MS compiler 2021-03-24 21:02:46 +00:00
John M. Schanck
722b510358 NTRU: duplicate consistency 2021-03-24 21:02:46 +00:00
John M. Schanck
f37f0f3e85 Update NTRU and add AVX2 NTRU implementations 2021-03-24 21:02:46 +00:00
John Schanck
0d7743d576 Update NTRU (#311)
* Update NTRU

version: https://github.com/jschanck/ntru/tree/485dde03

* Fixed ntruhrss701/clean/Makefile.Microsoft_nmake
2021-03-24 21:02:46 +00:00
Sofía Celi
c59580a355 Fix overflow in multiplication in Saber 2021-03-24 21:02:46 +00:00
Thom Wiggers
3d05000b2c Update README for Round 3 (#306)
See also #305
2021-03-24 21:02:46 +00:00
Matthias J. Kannwischer
22babfef8a remove threebears, ledakem, newhope, mqdss, qtesla
NIST announced the Round 3 finalists and alternate candidates today:
https://groups.google.com/a/list.nist.gov/d/msg/pqc-forum/0ieuPB-b8eg/Cl7Ji8TpCwAJ

Some of the schemes in PQClean did not make it to Round 3 and this commit
removes them.
2021-03-24 21:02:46 +00:00
Thom Wiggers
8e27bd0915 Add MQDSS AVX2 implementations (#288)
* Add AVX2 version of mqdss

* Fix duplicate consistency
2021-03-24 21:02:46 +00:00
Douglas Stebila
106365bfa3 Mention FrodoKEM timing leak in SECURITY.md 2021-03-24 21:02:46 +00:00
Douglas Stebila
96e5f1d7ae Fix timing leak in decapsulation.
As identified in: Qian Guo, Thomas Johansson, Alexander Nilsson. A 
key-recovery timing attack on post-quantum primitives using the 
Fujisaki-Okamoto transformation and its application on FrodoKEM. In 
CRYPTO 2020.

Based on 
155c24c3df
2021-03-24 21:02:46 +00:00
Thom Wiggers
1f8b852e8f Speed up test collection (#298)
* don't do filesystem operations during collection

* Greatly speed up test collection

* fixup! Greatly speed up test collection

* Silence junit warning

* fixup! Greatly speed up test collection
2021-03-24 21:02:46 +00:00
Thom Wiggers
4604907c4c Kyber768 and Kyber1024 don't need -maes (see #296) 2021-03-24 21:02:46 +00:00
Ko-
be16fceb68 Fix whitespace to satisfy test_duplicate_consistency 2021-03-24 21:02:46 +00:00
Ko-
0116179381 Update KAT values 2021-03-24 21:02:46 +00:00
Ko-
f5bc4052c7 Add domain separation to NewHope
NewHope announced a new version of their specification that adds
explicit domain separation. This is a port of
https://github.com/newhopecrypto/newhope/commit/607a9d3
2021-03-24 21:02:46 +00:00
Thom Wiggers
4409c6f44f Add Keccakx4 to build 2021-03-24 21:02:46 +00:00
Thom Wiggers
e81295480a remove duplicate from Makefiles 2021-03-24 21:02:46 +00:00