kris
/
pqcrypto
mirror of https://github.com/henrydcase/pqc.git
1
1
Fork 0
Code Issues 1 Releases 2 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
123 Commits
9 Branches
76 MiB
Tree: 8dcf6529b8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8dcf6529b8'
${ noResults }
pqcrypto/README.md

README.md 6.8 KiB
Raw Normal View History

First sketch of the README
5 years ago
Add badge
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Add badge
5 years ago
First sketch of the README
5 years ago
Merge branch 'master' into make-dilithium
5 years ago
First sketch of the README
5 years ago
Merge branch 'master' into make-dilithium
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
First sketch of the README
5 years ago
Fix SUPERCOP url
5 years ago
Spelling and formatting fixes
5 years ago
First sketch of the README
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
First sketch of the README
5 years ago
Merge branch 'master' into make-dilithium
5 years ago
First sketch of the README
5 years ago
Checkboxes
5 years ago
Mark currently checked requirements
5 years ago
Checkboxes
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Checkboxes
5 years ago
Mark currently checked requirements
5 years ago
Checkboxes
5 years ago
Partially validate return codes
5 years ago
Don't fail if decapsulating with wrong keys doesn't return -1 Closes #11
5 years ago
Checkboxes
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Update checked boxes
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Mark currently checked requirements
5 years ago
check for license files
5 years ago
Check META files (closes #6)
5 years ago
First sketch of the README
5 years ago
Spelling and formatting fixes
5 years ago
First sketch of the README
5 years ago
Spelling and formatting fixes
5 years ago
First sketch of the README
5 years ago
Merge branch 'master' into make-dilithium
5 years ago
Update checked boxes
5 years ago
First sketch of the README
5 years ago
Fixed (?) comment in README
5 years ago
First sketch of the README
5 years ago
Fixed (?) comment in README
5 years ago
First sketch of the README
5 years ago
Fixed (?) comment in README
5 years ago
First sketch of the README
5 years ago
Fixed (?) comment in README
5 years ago
First sketch of the README
5 years ago
Merge branch 'master' into make-dilithium
5 years ago
First sketch of the README
5 years ago
Renamed sigbytes to siglen (consistent with mlen)
5 years ago
First sketch of the README
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Adds list of requireddependencies
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
Update README to refer to common Makefile
5 years ago
Update README.md with information about Makefiles and Windows CI
5 years ago
First sketch of the README
5 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133 
  1. # PQClean

  2. 

  3. [![Build Status](https://travis-ci.com/PQClean/PQClean.svg?branch=master)](https://travis-ci.com/PQClean/PQClean)

  4. [![Build status](https://ci.appveyor.com/api/projects/status/186ky7yb9mlqj3io?svg=true)](https://ci.appveyor.com/project/PQClean/pqclean)

  5. 

  6. **PQClean**, in short, is an effort to collect **clean** implementations of the post-quantum

  7. schemes that are in the

  8. [NIST post-quantum project](https://csrc.nist.gov/projects/post-quantum-cryptography).

  9. The goal of PQClean is to provide *standalone implementations* that

  10. 

  11. * can easily be integrated into libraries such as [liboqs](https://openquantumsafe.org/#liboqs) or [libpqcrypto](https://libpqcrypto.org/);

  12. * can efficiently upstream into higher-level protocol integration efforts such as [Open Quantum Safe](https://openquantumsafe.org/#integrations);

  13. * can easily be integrated into benchmarking frameworks such as [SUPERCOP](https://bench.cr.yp.to/supercop.html);

  14. * can easily be integrated into frameworks targeting embedded platforms such as [pqm4](https://github.com/mupq/pqm4);

  15. * are suitable starting points for architecture-specific optimized implementations;

  16. * are suitable starting points for evaluation of implementation security; and

  17. * are suitable targets for formal verification.

  18. 

  19. What PQClean is **not** aiming for is

  20. 

  21. * a build system producing an integrated library of all schemes;

  22. * including benchmarking of implementations; and

  23. * including integration into higher-level applications or protocols.

  24. 

  25. As a first main target, we are collecting C implementations that fulfill the requirements

  26. listed below.

  27. 

  28. ## Requirements on C implementations that are automatically checked

  29. 

  30. _The checking of items on this list is still being developed. Checked items should be working._

  31. 

  32. * [x] Code is valid C99

  33. * [x] Passes functional tests

  34. * [x] API functions do not write outside provided buffers

  35. * [x] Compiles with `-Wall -Wextra -Wpedantic -Werror` with `gcc` and `clang`

  36. * [x] Consistent test vectors across runs

  37. * [ ] Consistent test vectors on big-endian and little-endian machines

  38. * [ ] Consistent test vectors on 32-bit and 64-bit machines

  39. * [x] No errors/warnings reported by valgrind

  40. * [x] No errors/warnings reported by address sanitizer

  41. * [ ] Only dependencies:

  42.   * [x] `fips202.c`

  43.   * [x] `sha2.c`

  44.   * [ ] `aes.c`

  45.   * [x] `randombytes.c`

  46. * [ ] API functions return `0` on success, negative on failure

  47.     * [x] 0 on success

  48.     * [ ] Negative on failure (within restrictions of FO transform).

  49. * [ ] No dynamic memory allocations

  50. * [ ] No branching on secret data (dynamically checked using valgrind)

  51. * [ ] No access to secret memory locations (dynamically checked using valgrind)

  52. * [ ] Separate subdirectories (without symlinks) for each parameter set of each scheme

  53. * [x] Builds under Linux, MacOS, and Windows

  54.     * [x] Linux

  55.     * [x] MacOS

  56.     * [x] Windows

  57. * [x] Makefile-based build for each separate scheme

  58. * [x] Makefile-based build for Windows (`nmake`)

  59. * [x] All exported symbols are namespaced with `PQCLEAN_SCHEMENAME_`

  60. * [x] Each implementation comes with a `LICENSE` file (see below)

  61. * [x] Each scheme comes with a `META.yml` file giving details about version of the algorithm, designers

  62.     * [x] Each individual implementation is specified in `META.yml`.

  63. 

  64. 

  65. ## Requirements on C implementations that are manually checked

  66. 

  67. * Makefiles without explicit rules (rely on implicit, built-in rules)

  68. * `#ifdef`s only for header encapsulation

  69. * No stringification macros

  70. * Output-parameter pointers in functions are on the left

  71. * `const` arguments are labeled as `const`

  72. * All exported symbols are namespaced in place

  73. * All integer types are of fixed size, using `stdint.h` types (including `uint8_t` instead of `unsigned char`)

  74. * Integers used for indexing are of size `size_t`

  75. * variable declarations at the beginning (except in `for (size_t i=...`)

  76. 

  77. 

  78. ## Clean C implementations currently in PQClean

  79. 

  80. Currently, the continuous-integration and testing environment of PQClean is still work in progress

  81. and as a consequence PQClean does not yet have many implementations.

  82. 

  83. <!--

  84.  Currently, PQClean includes clean C implementations of the following KEMs:

  85. 

  86.  * [Kyber-512](https://pq-crystals.org/kyber/)

  87.  * [Kyber-768](https://pq-crystals.org/kyber/)

  88.  * [Kyber-1024](https://pq-crystals.org/kyber/)

  89. 

  90.  Currently, PQClean includes clean C implementations of the following signature schemes:

  91. 

  92.  * [Dilithium-III](https://pq-crystals.org/dilithium/)

  93. -->

  94. 

  95. ## API used by PQClean

  96. 

  97. PQClean is essentially using the same API as required for the NIST reference implementations,

  98. which is also used by SUPERCOP and by libpqcrypto. The only two differences to that API are

  99. the following:

  100. * All lengths are passed as type `size_t` instead of `unsigned long long`; and

  101. * Signatures offer two additional functions that follow the "traditional" approach used

  102. in most software stacks of computing and verifying signatures instead of producing and

  103. recovering signed messages. Specifically, those functions have the following name and signature:

  104. 

  105. ```

  106. int crypto_sign_signature(uint8_t *sig, size_t *siglen, const uint8_t *m, size_t mlen, const uint8_t *sk);

  107. int crypto_sign_verify(const uint8_t *sig, size_t siglen, const uint8_t *m, size_t mlen, const uint8_t *pk);

  108. ```

  109. 

  110. ## Building PQClean

  111. 

  112. As noted above, PQClean is **not** meant to be built as a single library: it is a collection of source code that can be easily integrated into other libraries.  The PQClean repository includes various test programs which do build various files, but you should not use the resulting binaries for any purpose.

  113. 

  114. List of required dependencies: ``gcc or clang, make, python3, python-yaml library, valgrind``.

  115. 

  116. ## Using source code from PQClean in your own project

  117. 

  118. Each implementation directory in PQClean (e.g., crypto\_kem/kyber768\clean) can be extracted for use in your own project.  You will need to:

  119. 

  120. 1. Copy the source code from the implementation's directory into your project.

  121. 2. Add the files to your project's build system.

  122. 3. Provide instantiations of any of the common cryptographic algorithms used by the implementation.  This likely includes `common/randombytes.h` (a cryptographic random number generator), and possibly `common/sha2.h` (the SHA-2 hash function family) and `common/fips202.h` (the SHA-3 hash function family).

  123. 

  124. Regarding #2, adding the files to your project's build system, each implementation in PQClean is accompanied by example two makefiles that show how one could build the files for that implementation:

  125. 

  126. - The file `Makefile` which can be used with GNU Make, BSD Make, and possibly others.

  127. - The file `Makefile.Microsoft_nmake` which can be used with Visual Studio's nmake.

  128. 

  129. ## License

  130. 

  131. Each subdirectory containing implementations contains a LICENSE file stating under what license

  132. that specific implementation is released. All other code for testing etc. in this repository

  133. is released under the conditions of [CC0](http://creativecommons.org/publicdomain/zero/1.0/).