From d4008c7f1e54676ad3f0ed9f95c82985f649951d Mon Sep 17 00:00:00 2001 From: "John M. Schanck" Date: Sun, 13 Sep 2020 14:13:48 -0400 Subject: [PATCH] uint8_t api for encode/decode in optimized rmrs --- crypto_kem/hqc-192/avx2/vector.c | 4 +- crypto_kem/hqc-256/avx2/vector.c | 4 +- crypto_kem/hqc-rmrs-128/avx2/code.c | 8 +- crypto_kem/hqc-rmrs-128/avx2/code.h | 4 +- crypto_kem/hqc-rmrs-128/avx2/hqc.c | 15 +-- crypto_kem/hqc-rmrs-128/avx2/hqc.h | 4 +- crypto_kem/hqc-rmrs-128/avx2/kem.c | 20 ++-- crypto_kem/hqc-rmrs-128/avx2/reed_muller.c | 65 +++++++------ crypto_kem/hqc-rmrs-128/avx2/reed_muller.h | 4 +- crypto_kem/hqc-rmrs-128/avx2/reed_solomon.c | 33 +++---- crypto_kem/hqc-rmrs-128/avx2/reed_solomon.h | 4 +- crypto_kem/hqc-rmrs-128/avx2/vector.c | 16 ---- crypto_kem/hqc-rmrs-192/avx2/code.c | 8 +- crypto_kem/hqc-rmrs-192/avx2/code.h | 4 +- crypto_kem/hqc-rmrs-192/avx2/hqc.c | 15 +-- crypto_kem/hqc-rmrs-192/avx2/hqc.h | 4 +- crypto_kem/hqc-rmrs-192/avx2/kem.c | 20 ++-- crypto_kem/hqc-rmrs-192/avx2/reed_muller.c | 65 +++++++------ crypto_kem/hqc-rmrs-192/avx2/reed_muller.h | 4 +- crypto_kem/hqc-rmrs-192/avx2/reed_solomon.c | 33 +++---- crypto_kem/hqc-rmrs-192/avx2/reed_solomon.h | 4 +- crypto_kem/hqc-rmrs-192/avx2/vector.c | 16 ---- crypto_kem/hqc-rmrs-256/avx2/code.c | 8 +- crypto_kem/hqc-rmrs-256/avx2/code.h | 4 +- crypto_kem/hqc-rmrs-256/avx2/hqc.c | 15 +-- crypto_kem/hqc-rmrs-256/avx2/hqc.h | 4 +- crypto_kem/hqc-rmrs-256/avx2/kem.c | 20 ++-- crypto_kem/hqc-rmrs-256/avx2/reed_muller.c | 65 +++++++------ crypto_kem/hqc-rmrs-256/avx2/reed_muller.h | 4 +- crypto_kem/hqc-rmrs-256/avx2/reed_solomon.c | 33 +++---- crypto_kem/hqc-rmrs-256/avx2/reed_solomon.h | 4 +- crypto_kem/hqc-rmrs-256/avx2/vector.c | 16 ---- test/duplicate_consistency/hqc-128_avx2.yml | 93 +++++++------------ test/duplicate_consistency/hqc-128_clean.yml | 82 +++++++--------- test/duplicate_consistency/hqc-192_avx2.yml | 72 +++++--------- test/duplicate_consistency/hqc-192_clean.yml | 66 +++++-------- test/duplicate_consistency/hqc-256_avx2.yml | 56 ++++------- test/duplicate_consistency/hqc-256_clean.yml | 50 ++++------ .../hqc-rmrs-128_avx2.yml | 53 +++++++---- .../hqc-rmrs-128_clean.yml | 52 +++++++---- .../hqc-rmrs-192_avx2.yml | 32 ++++--- .../hqc-rmrs-192_clean.yml | 32 ++++--- .../hqc-rmrs-256_avx2.yml | 12 ++- .../hqc-rmrs-256_clean.yml | 12 ++- 44 files changed, 508 insertions(+), 631 deletions(-) diff --git a/crypto_kem/hqc-192/avx2/vector.c b/crypto_kem/hqc-192/avx2/vector.c index 1dceddfc..73f5d5bc 100644 --- a/crypto_kem/hqc-192/avx2/vector.c +++ b/crypto_kem/hqc-192/avx2/vector.c @@ -116,7 +116,7 @@ void PQCLEAN_HQC192_AVX2_vect_set_random(AES_XOF_struct *ctx, uint64_t *v) { seedexpander(ctx, rand_bytes, VEC_N_SIZE_BYTES); - memcpy(v, rand_bytes, VEC_N_SIZE_BYTES); + PQCLEAN_HQC192_AVX2_load8_arr(v, VEC_N_SIZE_64, rand_bytes, VEC_N_SIZE_BYTES); v[VEC_N_SIZE_64 - 1] &= RED_MASK; } @@ -133,7 +133,7 @@ void PQCLEAN_HQC192_AVX2_vect_set_random_from_randombytes(uint64_t *v) { uint8_t rand_bytes [VEC_K_SIZE_BYTES] = {0}; randombytes(rand_bytes, VEC_K_SIZE_BYTES); - memcpy(v, rand_bytes, VEC_K_SIZE_BYTES); + PQCLEAN_HQC192_AVX2_load8_arr(v, VEC_K_SIZE_64, rand_bytes, VEC_K_SIZE_BYTES); } diff --git a/crypto_kem/hqc-256/avx2/vector.c b/crypto_kem/hqc-256/avx2/vector.c index 9c3c9ea3..925b6f97 100644 --- a/crypto_kem/hqc-256/avx2/vector.c +++ b/crypto_kem/hqc-256/avx2/vector.c @@ -116,7 +116,7 @@ void PQCLEAN_HQC256_AVX2_vect_set_random(AES_XOF_struct *ctx, uint64_t *v) { seedexpander(ctx, rand_bytes, VEC_N_SIZE_BYTES); - memcpy(v, rand_bytes, VEC_N_SIZE_BYTES); + PQCLEAN_HQC256_AVX2_load8_arr(v, VEC_N_SIZE_64, rand_bytes, VEC_N_SIZE_BYTES); v[VEC_N_SIZE_64 - 1] &= RED_MASK; } @@ -133,7 +133,7 @@ void PQCLEAN_HQC256_AVX2_vect_set_random_from_randombytes(uint64_t *v) { uint8_t rand_bytes [VEC_K_SIZE_BYTES] = {0}; randombytes(rand_bytes, VEC_K_SIZE_BYTES); - memcpy(v, rand_bytes, VEC_K_SIZE_BYTES); + PQCLEAN_HQC256_AVX2_load8_arr(v, VEC_K_SIZE_64, rand_bytes, VEC_K_SIZE_BYTES); } diff --git a/crypto_kem/hqc-rmrs-128/avx2/code.c b/crypto_kem/hqc-rmrs-128/avx2/code.c index ca4c9ab4..5059e0f0 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/code.c +++ b/crypto_kem/hqc-rmrs-128/avx2/code.c @@ -21,8 +21,8 @@ * @param[out] em Pointer to an array that is the tensor code word * @param[in] m Pointer to an array that is the message */ -void PQCLEAN_HQCRMRS128_AVX2_code_encode(uint64_t *em, const uint64_t *m) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS128_AVX2_code_encode(uint8_t *em, const uint8_t *m) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS128_AVX2_reed_solomon_encode(tmp, m); PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(em, tmp); @@ -37,8 +37,8 @@ void PQCLEAN_HQCRMRS128_AVX2_code_encode(uint64_t *em, const uint64_t *m) { * @param[out] m Pointer to an array that is the message * @param[in] em Pointer to an array that is the code word */ -void PQCLEAN_HQCRMRS128_AVX2_code_decode(uint64_t *m, const uint64_t *em) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS128_AVX2_code_decode(uint8_t *m, const uint8_t *em) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS128_AVX2_reed_muller_decode(tmp, em); PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(m, tmp); diff --git a/crypto_kem/hqc-rmrs-128/avx2/code.h b/crypto_kem/hqc-rmrs-128/avx2/code.h index 550ff599..4316be5f 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/code.h +++ b/crypto_kem/hqc-rmrs-128/avx2/code.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS128_AVX2_code_encode(uint64_t *em, const uint64_t *message); +void PQCLEAN_HQCRMRS128_AVX2_code_encode(uint8_t *em, const uint8_t *message); -void PQCLEAN_HQCRMRS128_AVX2_code_decode(uint64_t *m, const uint64_t *em); +void PQCLEAN_HQCRMRS128_AVX2_code_decode(uint8_t *m, const uint8_t *em); #endif diff --git a/crypto_kem/hqc-rmrs-128/avx2/hqc.c b/crypto_kem/hqc-rmrs-128/avx2/hqc.c index 597c9454..558c070f 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/hqc.c +++ b/crypto_kem/hqc-rmrs-128/avx2/hqc.c @@ -70,7 +70,7 @@ void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk * @param[in] theta Seed used to derive randomness required for encryption * @param[in] pk String containing the public key */ -void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk) { +void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk) { AES_XOF_struct seedexpander; uint64_t h[VEC_N_256_SIZE_64] = {0}; uint64_t s[VEC_N_256_SIZE_64] = {0}; @@ -96,7 +96,8 @@ void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t PQCLEAN_HQCRMRS128_AVX2_vect_add(u, r1, u, VEC_N_256_SIZE_64); // Compute v = m.G by encoding the message - PQCLEAN_HQCRMRS128_AVX2_code_encode(v, m); + PQCLEAN_HQCRMRS128_AVX2_code_encode((uint8_t *)v, m); + PQCLEAN_HQCRMRS128_AVX2_load8_arr(v, VEC_N1N2_256_SIZE_64, (uint8_t *)v, VEC_N1N2_SIZE_BYTES); PQCLEAN_HQCRMRS128_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); // Compute v = m.G + s.r2 + e @@ -117,15 +118,14 @@ void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t * @param[in] v Vector v (second part of the ciphertext) * @param[in] sk String containing the secret key */ -void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { - uint64_t x[VEC_N_256_SIZE_64] = {0}; - uint64_t y[VEC_N_256_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { uint8_t pk[PUBLIC_KEY_BYTES] = {0}; uint64_t tmp1[VEC_N_256_SIZE_64] = {0}; uint64_t tmp2[VEC_N_256_SIZE_64] = {0}; + uint64_t y[VEC_N_256_SIZE_64] = {0}; // Retrieve x, y, pk from secret key - PQCLEAN_HQCRMRS128_AVX2_hqc_secret_key_from_string(x, y, pk, sk); + PQCLEAN_HQCRMRS128_AVX2_hqc_secret_key_from_string(tmp1, y, pk, sk); // Compute v - u.y PQCLEAN_HQCRMRS128_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); @@ -134,5 +134,6 @@ void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, con // Compute m by decoding v - u.y - PQCLEAN_HQCRMRS128_AVX2_code_decode(m, tmp2); + PQCLEAN_HQCRMRS128_AVX2_store8_arr((uint8_t *)tmp1, VEC_N_SIZE_BYTES, tmp2, VEC_N_256_SIZE_64); + PQCLEAN_HQCRMRS128_AVX2_code_decode(m, (uint8_t *)tmp1); } diff --git a/crypto_kem/hqc-rmrs-128/avx2/hqc.h b/crypto_kem/hqc-rmrs-128/avx2/hqc.h index b3383093..cc8d98d6 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/hqc.h +++ b/crypto_kem/hqc-rmrs-128/avx2/hqc.h @@ -13,9 +13,9 @@ void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk); -void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk); +void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk); -void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); +void PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); #endif diff --git a/crypto_kem/hqc-rmrs-128/avx2/kem.c b/crypto_kem/hqc-rmrs-128/avx2/kem.c index a2a368a8..4f5e6d3b 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/kem.c +++ b/crypto_kem/hqc-rmrs-128/avx2/kem.c @@ -47,26 +47,26 @@ int PQCLEAN_HQCRMRS128_AVX2_crypto_kem_keypair(unsigned char *pk, unsigned char int PQCLEAN_HQCRMRS128_AVX2_crypto_kem_enc(unsigned char *ct, unsigned char *ss, const unsigned char *pk) { uint8_t theta[SHA512_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint64_t u[VEC_N_256_SIZE_64] = {0}; uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char mc[VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES] = {0}; // Computing m - PQCLEAN_HQCRMRS128_AVX2_vect_set_random_from_randombytes(m); + randombytes(m, VEC_K_SIZE_BYTES); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(u, v, m, theta, pk); // Computing d - sha512(d, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); @@ -95,7 +95,7 @@ int PQCLEAN_HQCRMRS128_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char pk[PUBLIC_KEY_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint8_t theta[SHA512_BYTES] = {0}; uint64_t u2[VEC_N_256_SIZE_64] = {0}; uint64_t v2[VEC_N1N2_256_SIZE_64] = {0}; @@ -112,17 +112,17 @@ int PQCLEAN_HQCRMRS128_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha PQCLEAN_HQCRMRS128_AVX2_hqc_pke_decrypt(m, u, v, sk); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m' PQCLEAN_HQCRMRS128_AVX2_hqc_pke_encrypt(u2, v2, m, theta, pk); // Computing d' - sha512(d2, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d2, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); - PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); + PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_256_SIZE_64); PQCLEAN_HQCRMRS128_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); diff --git a/crypto_kem/hqc-rmrs-128/avx2/reed_muller.c b/crypto_kem/hqc-rmrs-128/avx2/reed_muller.c index 740276b0..0c987e1f 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/reed_muller.c +++ b/crypto_kem/hqc-rmrs-128/avx2/reed_muller.c @@ -15,10 +15,10 @@ // copy bit 0 into all bits of a 64 bit value #define BIT0MASK(x) (int64_t)(-((x) & 1)) -static void encode(uint64_t *word, uint32_t message); +static void encode(uint8_t *word, uint8_t message); static void expand_and_sum(__m256i *dst, const uint64_t *src); static void hadamard(__m256i *src, __m256i *dst); -static int32_t find_peaks(__m256i *transform); +static uint32_t find_peaks(__m256i *transform); @@ -39,28 +39,38 @@ static int32_t find_peaks(__m256i *transform); * @param[out] word An RM(1,7) codeword * @param[in] message A message to encode */ -static void encode(uint64_t *word, uint32_t message) { - // the four parts of the word are identical - // except for encoding bits 5 and 6 - uint32_t first_word; +static void encode(uint8_t *word, uint8_t message) { + uint32_t e; // bit 7 flips all the bits, do that first to save work - first_word = BIT0MASK(message >> 7); + e = BIT0MASK(message >> 7); // bits 0, 1, 2, 3, 4 are the same for all four longs // (Warning: in the bit matrix above, low bits are at the left!) - first_word ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; - first_word ^= BIT0MASK(message >> 1) & 0xcccccccc; - first_word ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; - first_word ^= BIT0MASK(message >> 3) & 0xff00ff00; - first_word ^= BIT0MASK(message >> 4) & 0xffff0000; + e ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; + e ^= BIT0MASK(message >> 1) & 0xcccccccc; + e ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; + e ^= BIT0MASK(message >> 3) & 0xff00ff00; + e ^= BIT0MASK(message >> 4) & 0xffff0000; // we can store this in the first quarter - ((uint32_t *) word)[0] = first_word; + word[0 + 0] = (e >> 0x00) & 0xff; + word[0 + 1] = (e >> 0x08) & 0xff; + word[0 + 2] = (e >> 0x10) & 0xff; + word[0 + 3] = (e >> 0x18) & 0xff; // bit 5 flips entries 1 and 3; bit 6 flips 2 and 3 - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[1] = first_word; - first_word ^= BIT0MASK(message >> 6); - ((uint32_t *) word)[3] = first_word; - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[2] = first_word; + e ^= BIT0MASK(message >> 5); + word[4 + 0] = (e >> 0x00) & 0xff; + word[4 + 1] = (e >> 0x08) & 0xff; + word[4 + 2] = (e >> 0x10) & 0xff; + word[4 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 6); + word[12 + 0] = (e >> 0x00) & 0xff; + word[12 + 1] = (e >> 0x08) & 0xff; + word[12 + 2] = (e >> 0x10) & 0xff; + word[12 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 5); + word[8 + 0] = (e >> 0x00) & 0xff; + word[8 + 1] = (e >> 0x08) & 0xff; + word[8 + 2] = (e >> 0x10) & 0xff; + word[8 + 3] = (e >> 0x18) & 0xff; } @@ -218,7 +228,7 @@ inline void hadamard(__m256i *src, __m256i *dst) { * * @param[in] transform Structure that contain the expanded codeword */ -inline int32_t find_peaks(__m256i *transform) { +inline uint32_t find_peaks(__m256i *transform) { // a whole lot of vector variables __m256i bitmap, abs_rows[8], bound, active_row, max_abs_rows; __m256i peak_mask; @@ -322,7 +332,7 @@ inline int32_t find_peaks(__m256i *transform) { result |= message_mask & ptr[i]; } message |= (0x8000 & ~result) >> 8; - return message; + return (uint32_t) message; } @@ -336,14 +346,13 @@ inline int32_t find_peaks(__m256i *transform) { * @param[out] cdw Array of size VEC_N1N2_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_N1_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg) { for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { - // fill entries i * MULTIPLICITY to (i+1) * MULTIPLICITY // encode first word - encode(&cdw[2 * i * MULTIPLICITY], ((uint8_t *)msg)[i]); + encode(&cdw[16 * i * MULTIPLICITY], msg[i]); // copy to other identical codewords for (size_t copy = 1; copy < MULTIPLICITY; copy++) { - memcpy(&cdw[2 * (i * MULTIPLICITY + copy)], &cdw[2 * i * MULTIPLICITY], 2 * sizeof(uint64_t)); + memcpy(&cdw[16 * i * MULTIPLICITY + 16 * copy], &cdw[16 * i * MULTIPLICITY], 16); } } } @@ -359,18 +368,18 @@ void PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *m * @param[out] msg Array of size VEC_N1_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1N2_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS128_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw) { +void PQCLEAN_HQCRMRS128_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw) { __m256i expanded[8]; __m256i transform[8]; for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { // collect the codewords - expand_and_sum(expanded, &cdw[2 * i * MULTIPLICITY]); + expand_and_sum(expanded, (uint64_t *)&cdw[16 * i * MULTIPLICITY]); // apply hadamard transform hadamard(expanded, transform); // fix the first entry to get the half Hadamard transform transform[0] -= _mm256_set_epi16(0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 64 * MULTIPLICITY); // finish the decoding - ((uint8_t *)msg)[i] = find_peaks(transform); + msg[i] = find_peaks(transform); } } diff --git a/crypto_kem/hqc-rmrs-128/avx2/reed_muller.h b/crypto_kem/hqc-rmrs-128/avx2/reed_muller.h index 6cd6834e..5eed29ee 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/reed_muller.h +++ b/crypto_kem/hqc-rmrs-128/avx2/reed_muller.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS128_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS128_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw); +void PQCLEAN_HQCRMRS128_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.c b/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.c index 32e2de73..68090f0f 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.c +++ b/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.c @@ -1,6 +1,7 @@ #include "fft.h" #include "gf.h" #include "parameters.h" +#include "parsing.h" #include "reed_solomon.h" #include #include @@ -30,37 +31,31 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values); * @param[out] cdw Array of size VEC_N1_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_K_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg) { uint8_t gate_value = 0; uint16_t tmp[PARAM_G] = {0}; uint16_t PARAM_RS_POLY [] = {RS_POLY_COEFS}; - uint8_t msg_bytes[PARAM_K] = {0}; - uint8_t cdw_bytes[PARAM_N1] = {0}; - - for (size_t i = 0; i < VEC_K_SIZE_64; ++i) { - for (size_t j = 0; j < 8; ++j) { - msg_bytes[i * 8 + j] = (uint8_t) (msg[i] >> (j * 8)); - } + for (size_t i = 0; i < PARAM_N1; i++) { + cdw[i] = 0; } for (int i = PARAM_K - 1; i >= 0; --i) { - gate_value = msg_bytes[i] ^ cdw_bytes[PARAM_N1 - PARAM_K - 1]; + gate_value = msg[i] ^ cdw[PARAM_N1 - PARAM_K - 1]; for (size_t j = 0; j < PARAM_G; ++j) { tmp[j] = PQCLEAN_HQCRMRS128_AVX2_gf_mul(gate_value, PARAM_RS_POLY[j]); } for (size_t k = PARAM_N1 - PARAM_K - 1; k; --k) { - cdw_bytes[k] = cdw_bytes[k - 1] ^ tmp[k]; + cdw[k] = cdw[k - 1] ^ tmp[k]; } - cdw_bytes[0] = tmp[0]; + cdw[0] = tmp[0]; } - memcpy(cdw_bytes + PARAM_N1 - PARAM_K, msg_bytes, PARAM_K); - memcpy(cdw, cdw_bytes, PARAM_N1); + memcpy(cdw + PARAM_N1 - PARAM_K, msg, PARAM_K); } @@ -312,8 +307,7 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values) { * @param[out] msg Array of size VEC_K_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { - uint8_t cdw_bytes[PARAM_N1] = {0}; +void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw) { uint16_t syndromes[2 * PARAM_DELTA] = {0}; uint16_t sigma[1 << PARAM_FFT] = {0}; uint8_t error[1 << PARAM_M] = {0}; @@ -321,11 +315,8 @@ void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { uint16_t error_values[PARAM_N1] = {0}; uint16_t deg; - // Copy the vector in an array of bytes - memcpy(cdw_bytes, cdw, PARAM_N1); - // Calculate the 2*PARAM_DELTA syndromes - compute_syndromes(syndromes, cdw_bytes); + compute_syndromes(syndromes, cdw); // Compute the error locator polynomial sigma // Sigma's degree is at most PARAM_DELTA but the FFT requires the extra room @@ -341,9 +332,9 @@ void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { compute_error_values(error_values, z, error); // Correct the errors - correct_errors(cdw_bytes, error_values); + correct_errors(cdw, error_values); // Retrieve the message from the decoded codeword - memcpy(msg, cdw_bytes + (PARAM_G - 1), PARAM_K); + memcpy(msg, cdw + (PARAM_G - 1), PARAM_K); } diff --git a/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.h b/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.h index e5978746..0dca7eef 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.h +++ b/crypto_kem/hqc-rmrs-128/avx2/reed_solomon.h @@ -14,9 +14,9 @@ static const uint16_t alpha_ij_pow [48][79] = {{2, 4, 8, 16, 32, 64, 128, 29, 58, 116, 232, 205, 135, 19, 38, 76, 152, 45, 90, 180, 117, 234, 201, 143, 3, 6, 12, 24, 48, 96, 192, 157, 39, 78, 156, 37, 74, 148, 53, 106, 212, 181, 119, 238, 193, 159, 35, 70, 140, 5, 10, 20, 40, 80, 160, 93, 186, 105, 210, 185, 111, 222, 161, 95, 190, 97, 194, 153, 47, 94, 188, 101, 202, 137, 15, 30, 60, 120, 240}, {4, 16, 64, 29, 116, 205, 19, 76, 45, 180, 234, 143, 6, 24, 96, 157, 78, 37, 148, 106, 181, 238, 159, 70, 5, 20, 80, 93, 105, 185, 222, 95, 97, 153, 94, 101, 137, 30, 120, 253, 211, 107, 177, 254, 223, 91, 113, 217, 67, 17, 68, 13, 52, 208, 103, 129, 62, 248, 199, 59, 236, 151, 102, 133, 46, 184, 218, 79, 33, 132, 42, 168, 154, 82, 85, 73, 57, 228, 183}, {8, 64, 58, 205, 38, 45, 117, 143, 12, 96, 39, 37, 53, 181, 193, 70, 10, 80, 186, 185, 161, 97, 47, 101, 15, 120, 231, 107, 127, 223, 182, 217, 134, 68, 26, 208, 206, 62, 237, 59, 197, 102, 23, 184, 169, 33, 21, 168, 41, 85, 146, 228, 115, 191, 145, 252, 179, 241, 219, 150, 196, 110, 87, 130, 100, 7, 56, 221, 166, 89, 242, 195, 86, 138, 36, 61, 245, 251, 139}, {16, 29, 205, 76, 180, 143, 24, 157, 37, 106, 238, 70, 20, 93, 185, 95, 153, 101, 30, 253, 107, 254, 91, 217, 17, 13, 208, 129, 248, 59, 151, 133, 184, 79, 132, 168, 82, 73, 228, 230, 198, 252, 123, 227, 150, 149, 165, 130, 200, 28, 221, 81, 121, 195, 172, 18, 61, 247, 203, 44, 250, 27, 173, 2, 32, 58, 135, 152, 117, 3, 48, 39, 74, 212, 193, 140, 40, 186, 111}, {32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59, 51, 46, 169, 132, 77, 85, 114, 230, 145, 215, 255, 150, 55, 174, 100, 28, 167, 89, 239, 172, 36, 244, 235, 44, 233, 108, 1, 32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59, 51, 46, 169, 132}, {64, 205, 45, 143, 96, 37, 181, 70, 80, 185, 97, 101, 120, 107, 223, 217, 68, 208, 62, 59, 102, 184, 33, 168, 85, 228, 191, 252, 241, 150, 110, 130, 7, 221, 89, 195, 138, 61, 251, 44, 207, 173, 8, 58, 38, 117, 12, 39, 53, 193, 10, 186, 161, 47, 15, 231, 127, 182, 134, 26, 206, 237, 197, 23, 169, 21, 41, 146, 115, 145, 179, 219, 196, 87, 100, 56, 166, 242, 86}, {128, 19, 117, 24, 156, 181, 140, 93, 161, 94, 60, 107, 163, 67, 26, 129, 147, 102, 109, 132, 41, 57, 209, 252, 255, 98, 87, 200, 224, 89, 155, 18, 245, 11, 233, 173, 16, 232, 45, 3, 157, 53, 159, 40, 185, 194, 137, 231, 254, 226, 68, 189, 248, 197, 46, 158, 168, 170, 183, 145, 123, 75, 110, 25, 28, 166, 249, 69, 61, 235, 176, 54, 2, 29, 38, 234, 48, 37, 119}, {29, 76, 143, 157, 106, 70, 93, 95, 101, 253, 254, 217, 13, 129, 59, 133, 79, 168, 73, 230, 252, 227, 149, 130, 28, 81, 195, 18, 247, 44, 27, 2, 58, 152, 3, 39, 212, 140, 186, 190, 202, 231, 225, 175, 26, 31, 118, 23, 158, 77, 146, 209, 229, 219, 55, 25, 56, 162, 155, 36, 243, 88, 54, 4, 116, 45, 6, 78, 181, 5, 105, 97, 137, 211, 223, 67, 52, 62, 236}, {58, 45, 12, 37, 193, 80, 161, 101, 231, 223, 134, 208, 237, 102, 169, 168, 146, 191, 179, 150, 87, 7, 166, 195, 36, 251, 125, 173, 64, 38, 143, 39, 181, 10, 185, 47, 120, 127, 217, 26, 62, 197, 184, 21, 85, 115, 252, 219, 110, 100, 221, 242, 138, 245, 44, 54, 8, 205, 117, 96, 53, 70, 186, 97, 15, 107, 182, 68, 206, 59, 23, 33, 41, 228, 145, 241, 196, 130, 56}, {116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44, 108, 32, 38, 3, 156, 193, 160, 190, 15, 214, 226, 26, 124, 51, 169, 77, 114, 145, 255, 55, 100, 167, 239, 36, 235, 233, 1, 116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44, 108, 32, 38, 3}, {232, 234, 39, 238, 160, 97, 60, 254, 134, 103, 118, 184, 84, 57, 145, 227, 220, 7, 162, 172, 245, 176, 71, 58, 180, 192, 181, 40, 95, 15, 177, 175, 208, 147, 46, 21, 73, 99, 241, 55, 200, 166, 43, 122, 44, 216, 128, 45, 48, 106, 10, 222, 202, 107, 226, 52, 237, 133, 66, 85, 209, 123, 196, 50, 167, 195, 144, 11, 54, 32, 76, 12, 148, 140, 185, 188, 211, 182, 13}, {205, 143, 37, 70, 185, 101, 107, 217, 208, 59, 184, 168, 228, 252, 150, 130, 221, 195, 61, 44, 173, 58, 117, 39, 193, 186, 47, 231, 182, 26, 237, 23, 21, 146, 145, 219, 87, 56, 242, 36, 139, 54, 64, 45, 96, 181, 80, 97, 120, 223, 68, 62, 102, 33, 85, 191, 241, 110, 7, 89, 138, 251, 207, 8, 38, 12, 53, 10, 161, 15, 127, 134, 206, 197, 169, 41, 115, 179, 196}, {135, 6, 53, 20, 190, 120, 163, 13, 237, 46, 84, 228, 229, 98, 100, 81, 69, 251, 131, 32, 45, 192, 238, 186, 94, 187, 217, 189, 236, 169, 82, 209, 241, 220, 28, 242, 72, 22, 173, 116, 201, 37, 140, 222, 15, 254, 34, 62, 204, 132, 146, 63, 75, 130, 167, 43, 245, 250, 4, 38, 24, 212, 80, 194, 253, 182, 52, 147, 184, 77, 183, 179, 149, 141, 89, 9, 203, 54, 128}, {19, 24, 181, 93, 94, 107, 67, 129, 102, 132, 57, 252, 98, 200, 89, 18, 11, 173, 232, 3, 53, 40, 194, 231, 226, 189, 197, 158, 170, 145, 75, 25, 166, 69, 235, 54, 29, 234, 37, 5, 95, 120, 91, 52, 59, 218, 82, 191, 227, 174, 221, 43, 247, 207, 32, 90, 39, 35, 111, 15, 225, 136, 237, 92, 77, 115, 246, 220, 56, 239, 122, 125, 4, 76, 96, 238, 105, 101, 177}, {38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145}, {76, 157, 70, 95, 253, 217, 129, 133, 168, 230, 227, 130, 81, 18, 44, 2, 152, 39, 140, 190, 231, 175, 31, 23, 77, 209, 219, 25, 162, 36, 88, 4, 45, 78, 5, 97, 211, 67, 62, 46, 154, 191, 171, 50, 89, 72, 176, 8, 90, 156, 10, 194, 187, 134, 124, 92, 41, 99, 75, 100, 178, 144, 125, 16, 180, 37, 20, 153, 107, 17, 248, 184, 82, 198, 150, 200, 121, 61, 250}, {152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153}, {45, 37, 80, 101, 223, 208, 102, 168, 191, 150, 7, 195, 251, 173, 38, 39, 10, 47, 127, 26, 197, 21, 115, 219, 100, 242, 245, 54, 205, 96, 70, 97, 107, 68, 59, 33, 228, 241, 130, 89, 61, 207, 58, 12, 193, 161, 231, 134, 237, 169, 146, 179, 87, 166, 36, 125, 64, 143, 181, 185, 120, 217, 62, 184, 85, 252, 110, 221, 138, 44, 8, 117, 53, 186, 15, 182, 206, 23, 41}, {90, 148, 186, 30, 226, 62, 109, 73, 179, 174, 162, 61, 131, 232, 96, 140, 153, 127, 52, 51, 168, 99, 98, 56, 172, 22, 8, 234, 212, 185, 240, 67, 237, 79, 114, 241, 25, 121, 245, 108, 19, 39, 20, 188, 223, 189, 133, 41, 63, 55, 221, 9, 176, 64, 3, 238, 161, 211, 34, 59, 66, 183, 219, 200, 239, 251, 71, 152, 37, 160, 137, 182, 129, 92, 85, 229, 165, 166, 72}, {180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36, 233, 116, 96, 5, 94, 223, 103, 46, 85, 215, 174, 89, 244, 108, 38, 156, 160, 15, 226, 124, 169, 114, 255, 100, 239, 235, 1, 180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36, 233, 116, 96, 5}, {117, 181, 161, 107, 26, 102, 41, 252, 87, 89, 245, 173, 45, 53, 185, 231, 68, 197, 168, 145, 110, 166, 61, 54, 38, 37, 186, 120, 134, 59, 21, 191, 196, 221, 36, 207, 205, 39, 80, 15, 217, 237, 33, 115, 150, 56, 138, 125, 58, 96, 10, 101, 182, 62, 169, 228, 219, 7, 86, 44, 64, 12, 70, 47, 223, 206, 184, 146, 241, 100, 195, 139, 8, 143, 193, 97, 127, 208, 23}, {234, 238, 97, 254, 103, 184, 57, 227, 7, 172, 176, 58, 192, 40, 15, 175, 147, 21, 99, 55, 166, 122, 216, 45, 106, 222, 107, 52, 133, 85, 123, 50, 195, 11, 32, 12, 140, 188, 182, 124, 158, 115, 49, 224, 36, 131, 19, 37, 105, 253, 68, 151, 154, 252, 174, 121, 251, 2, 201, 193, 194, 225, 206, 109, 114, 219, 14, 69, 125, 116, 157, 80, 30, 67, 59, 42, 198, 110, 81}, {201, 159, 47, 91, 124, 33, 209, 149, 166, 244, 71, 117, 238, 194, 223, 31, 79, 115, 98, 167, 61, 216, 90, 181, 190, 254, 206, 218, 213, 150, 224, 72, 54, 152, 106, 161, 177, 189, 184, 114, 171, 56, 18, 131, 38, 148, 111, 107, 104, 46, 146, 227, 14, 138, 233, 135, 37, 210, 211, 26, 133, 170, 241, 141, 172, 125, 232, 78, 186, 253, 136, 102, 164, 123, 100, 43, 88, 58, 157}, {143, 70, 101, 217, 59, 168, 252, 130, 195, 44, 58, 39, 186, 231, 26, 23, 146, 219, 56, 36, 54, 45, 181, 97, 223, 62, 33, 191, 110, 89, 251, 8, 12, 10, 15, 134, 197, 41, 179, 100, 86, 125, 205, 37, 185, 107, 208, 184, 228, 150, 221, 61, 173, 117, 193, 47, 182, 237, 21, 145, 87, 242, 139, 64, 96, 80, 120, 68, 102, 85, 241, 7, 138, 207, 38, 53, 161, 127, 206}, {3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223, 124, 132, 145, 174, 239, 44, 116, 156, 185, 214, 103, 169, 230, 55, 89, 235, 32, 96, 160, 253, 26, 46, 114, 150, 167, 244, 1, 3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223, 124, 132, 145, 174}, {6, 20, 120, 13, 46, 228, 98, 81, 251, 32, 192, 186, 187, 189, 169, 209, 220, 242, 22, 116, 37, 222, 254, 62, 132, 63, 130, 43, 250, 38, 212, 194, 182, 147, 77, 179, 141, 9, 54, 180, 159, 101, 67, 151, 85, 227, 112, 61, 142, 3, 10, 60, 136, 23, 114, 49, 166, 243, 16, 96, 93, 211, 208, 218, 230, 110, 121, 11, 58, 156, 111, 127, 31, 66, 145, 65, 155, 125, 19}, {12, 80, 231, 208, 169, 191, 87, 195, 125, 38, 181, 47, 217, 197, 85, 219, 221, 245, 8, 96, 186, 107, 206, 33, 145, 130, 86, 207, 45, 193, 101, 134, 102, 146, 150, 166, 251, 64, 39, 185, 127, 62, 21, 252, 100, 138, 54, 117, 70, 15, 68, 23, 228, 196, 89, 139, 58, 37, 161, 223, 237, 168, 179, 7, 36, 173, 143, 10, 120, 26, 184, 115, 110, 242, 44, 205, 53, 97, 182}, {24, 93, 107, 129, 132, 252, 200, 18, 173, 3, 40, 231, 189, 158, 145, 25, 69, 54, 234, 5, 120, 52, 218, 191, 174, 43, 207, 90, 35, 15, 136, 92, 115, 220, 239, 125, 76, 238, 101, 17, 133, 228, 149, 121, 44, 135, 212, 47, 175, 51, 146, 49, 162, 139, 116, 148, 97, 113, 236, 85, 171, 83, 251, 128, 156, 161, 163, 147, 41, 255, 224, 245, 16, 157, 185, 254, 248, 168, 123}, {48, 105, 127, 248, 77, 241, 224, 247, 64, 156, 95, 182, 236, 170, 150, 162, 11, 205, 212, 94, 134, 133, 213, 110, 239, 250, 45, 35, 30, 26, 218, 99, 130, 69, 108, 143, 40, 211, 206, 132, 229, 7, 144, 2, 96, 210, 254, 237, 154, 255, 221, 243, 128, 37, 190, 113, 197, 73, 49, 89, 22, 135, 181, 188, 17, 23, 183, 220, 195, 233, 90, 70, 60, 52, 169, 198, 25, 138, 216}, {96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15}, {192, 222, 182, 151, 114, 110, 155, 27, 143, 160, 177, 237, 82, 75, 89, 88, 152, 70, 240, 103, 21, 123, 224, 251, 116, 212, 101, 136, 218, 145, 200, 144, 8, 78, 190, 217, 204, 183, 87, 172, 216, 12, 105, 225, 59, 170, 98, 242, 250, 180, 10, 211, 31, 168, 255, 83, 139, 135, 238, 15, 52, 158, 252, 14, 244, 64, 74, 153, 134, 46, 209, 130, 9, 142, 96, 111, 91, 197, 57}, {157, 95, 217, 133, 230, 130, 18, 2, 39, 190, 175, 23, 209, 25, 36, 4, 78, 97, 67, 46, 191, 50, 72, 8, 156, 194, 134, 92, 99, 100, 144, 16, 37, 153, 17, 184, 198, 200, 61, 32, 74, 47, 34, 109, 145, 141, 122, 64, 148, 94, 68, 218, 63, 7, 244, 128, 53, 188, 136, 169, 126, 14, 245, 29, 106, 101, 13, 79, 252, 28, 247, 58, 212, 202, 26, 158, 229, 56, 243}, {39, 97, 134, 184, 145, 7, 245, 58, 181, 15, 208, 21, 241, 166, 44, 45, 10, 107, 237, 85, 196, 195, 54, 12, 185, 182, 102, 115, 130, 36, 8, 37, 47, 68, 169, 252, 56, 251, 205, 193, 120, 206, 168, 219, 89, 125, 117, 80, 127, 59, 146, 110, 86, 173, 96, 161, 217, 23, 191, 100, 61, 64, 53, 101, 26, 33, 179, 221, 139, 38, 70, 231, 62, 41, 150, 242, 207, 143, 186}, {78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79}, {156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15, 103, 77, 150, 239, 108, 96, 190, 17, 169, 215, 167, 44, 180, 160, 223, 51, 230, 100, 244, 116, 193, 253, 124, 85, 55, 172, 1, 156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15, 103, 77, 150, 239}, {37, 101, 208, 168, 150, 195, 173, 39, 47, 26, 21, 219, 242, 54, 96, 97, 68, 33, 241, 89, 207, 12, 161, 134, 169, 179, 166, 125, 143, 185, 217, 184, 252, 221, 44, 117, 186, 182, 23, 145, 56, 139, 45, 80, 223, 102, 191, 7, 251, 38, 10, 127, 197, 115, 100, 245, 205, 70, 107, 59, 228, 130, 61, 58, 193, 231, 237, 146, 87, 36, 64, 181, 120, 62, 85, 110, 138, 8, 53}, {74, 137, 206, 82, 55, 138, 16, 212, 120, 124, 73, 87, 72, 29, 193, 211, 147, 228, 25, 244, 205, 140, 177, 197, 230, 141, 251, 76, 40, 223, 204, 198, 56, 11, 180, 186, 113, 92, 252, 167, 176, 143, 111, 67, 169, 123, 162, 207, 24, 190, 68, 66, 227, 242, 108, 157, 47, 52, 84, 150, 155, 142, 37, 202, 103, 41, 149, 69, 8, 106, 60, 62, 170, 165, 36, 128, 238, 231, 199}, {148, 30, 62, 73, 174, 61, 232, 140, 127, 51, 99, 56, 22, 234, 185, 67, 79, 241, 121, 108, 39, 188, 189, 41, 55, 9, 64, 238, 211, 59, 183, 200, 251, 152, 160, 182, 92, 229, 166, 233, 24, 97, 13, 42, 150, 43, 2, 53, 60, 124, 146, 65, 122, 205, 5, 254, 102, 198, 112, 44, 201, 111, 134, 158, 255, 242, 216, 78, 101, 103, 82, 110, 18, 128, 193, 187, 118, 115, 141}, {53, 120, 237, 228, 100, 251, 45, 186, 217, 169, 241, 242, 173, 37, 15, 62, 146, 130, 245, 38, 80, 182, 184, 179, 89, 54, 39, 101, 206, 85, 87, 61, 205, 10, 223, 23, 252, 166, 207, 96, 47, 208, 41, 110, 36, 58, 70, 127, 102, 145, 221, 125, 12, 97, 26, 168, 196, 138, 64, 193, 107, 197, 191, 56, 44, 143, 161, 68, 21, 150, 86, 8, 181, 231, 59, 115, 7, 139, 117}, {106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100, 235, 180, 185, 17, 132, 150, 172, 32, 193, 214, 51, 145, 167, 233, 96, 94, 103, 85, 174, 244, 38, 160, 226, 169, 255, 239, 1, 106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100, 235, 180, 185, 17}, {212, 211, 197, 198, 167, 207, 157, 202, 62, 114, 200, 139, 201, 95, 26, 154, 220, 61, 19, 160, 217, 158, 171, 86, 32, 159, 127, 133, 229, 89, 216, 74, 120, 147, 230, 56, 176, 24, 47, 103, 170, 130, 243, 90, 185, 34, 42, 196, 18, 116, 10, 91, 109, 241, 239, 2, 181, 187, 151, 145, 83, 131, 39, 137, 124, 228, 141, 11, 143, 190, 52, 41, 165, 122, 38, 93, 175, 33, 75}, {181, 107, 102, 252, 89, 173, 53, 231, 197, 145, 166, 54, 37, 120, 59, 191, 221, 207, 39, 15, 237, 115, 56, 125, 96, 101, 62, 228, 7, 44, 12, 47, 206, 146, 100, 139, 143, 97, 208, 85, 130, 251, 117, 161, 26, 41, 87, 245, 45, 185, 68, 168, 110, 61, 38, 186, 134, 21, 196, 36, 205, 80, 217, 33, 150, 138, 58, 10, 182, 169, 219, 86, 64, 70, 223, 184, 241, 195, 8}, {119, 177, 23, 123, 239, 8, 159, 225, 184, 255, 43, 64, 140, 91, 169, 171, 69, 58, 20, 226, 33, 49, 18, 205, 160, 67, 21, 149, 144, 38, 105, 34, 168, 220, 244, 45, 111, 13, 41, 174, 243, 117, 95, 104, 85, 25, 203, 143, 194, 103, 146, 200, 22, 12, 94, 31, 228, 14, 176, 96, 202, 248, 115, 112, 233, 39, 30, 147, 191, 167, 27, 37, 240, 236, 145, 81, 216, 53, 211}, {238, 254, 184, 227, 172, 58, 40, 175, 21, 55, 122, 45, 222, 52, 85, 50, 11, 12, 188, 124, 115, 224, 131, 37, 253, 151, 252, 121, 2, 193, 225, 109, 219, 69, 116, 80, 67, 42, 110, 244, 90, 161, 104, 170, 100, 22, 24, 101, 248, 230, 221, 27, 74, 231, 51, 229, 242, 4, 159, 223, 218, 171, 138, 232, 160, 134, 84, 220, 245, 180, 95, 208, 73, 200, 44, 48, 202, 237, 209}, {193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44}, {159, 91, 33, 149, 244, 117, 194, 31, 115, 167, 216, 181, 254, 218, 150, 72, 152, 161, 189, 114, 56, 131, 148, 107, 46, 227, 138, 135, 210, 26, 170, 141, 125, 78, 253, 102, 123, 43, 58, 160, 34, 41, 25, 22, 96, 30, 236, 252, 249, 32, 10, 175, 84, 87, 235, 6, 101, 199, 198, 89, 2, 35, 182, 66, 55, 245, 234, 153, 62, 230, 83, 173, 119, 225, 169, 49, 144, 45, 95}, {35, 113, 21, 165, 235, 12, 137, 118, 252, 239, 128, 80, 34, 82, 100, 176, 78, 231, 133, 255, 138, 19, 111, 208, 114, 112, 54, 212, 254, 169, 98, 122, 117, 153, 124, 191, 162, 2, 70, 226, 42, 87, 203, 24, 15, 236, 229, 195, 29, 160, 68, 164, 200, 125, 156, 211, 23, 227, 9, 38, 222, 189, 228, 224, 108, 181, 225, 79, 196, 244, 234, 47, 248, 99, 89, 4, 140, 217, 84}, {70, 217, 168, 130, 44, 39, 231, 23, 219, 36, 45, 97, 62, 191, 89, 8, 10, 134, 41, 100, 125, 37, 107, 184, 150, 61, 117, 47, 237, 145, 242, 64, 80, 68, 85, 7, 207, 53, 127, 169, 196, 245, 143, 101, 59, 252, 195, 58, 186, 26, 146, 56, 54, 181, 223, 33, 110, 251, 12, 15, 197, 179, 86, 205, 185, 208, 228, 221, 173, 193, 182, 21, 87, 139, 96, 120, 102, 241, 138}}; -void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw); +void PQCLEAN_HQCRMRS128_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-128/avx2/vector.c b/crypto_kem/hqc-rmrs-128/avx2/vector.c index ffc7bc77..ccb1b75a 100644 --- a/crypto_kem/hqc-rmrs-128/avx2/vector.c +++ b/crypto_kem/hqc-rmrs-128/avx2/vector.c @@ -122,22 +122,6 @@ void PQCLEAN_HQCRMRS128_AVX2_vect_set_random(AES_XOF_struct *ctx, uint64_t *v) { -/** - * @brief Generates a random vector - * - * This function generates a random binary vector. It uses the the randombytes function. - * - * @param[in] v Pointer to an array - */ -void PQCLEAN_HQCRMRS128_AVX2_vect_set_random_from_randombytes(uint64_t *v) { - uint8_t rand_bytes [VEC_K_SIZE_BYTES] = {0}; - - randombytes(rand_bytes, VEC_K_SIZE_BYTES); - PQCLEAN_HQCRMRS128_AVX2_load8_arr(v, VEC_K_SIZE_64, rand_bytes, VEC_K_SIZE_BYTES); -} - - - /** * @brief Adds two vectors * diff --git a/crypto_kem/hqc-rmrs-192/avx2/code.c b/crypto_kem/hqc-rmrs-192/avx2/code.c index 70e401bc..b44aa4b3 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/code.c +++ b/crypto_kem/hqc-rmrs-192/avx2/code.c @@ -21,8 +21,8 @@ * @param[out] em Pointer to an array that is the tensor code word * @param[in] m Pointer to an array that is the message */ -void PQCLEAN_HQCRMRS192_AVX2_code_encode(uint64_t *em, const uint64_t *m) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS192_AVX2_code_encode(uint8_t *em, const uint8_t *m) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS192_AVX2_reed_solomon_encode(tmp, m); PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(em, tmp); @@ -37,8 +37,8 @@ void PQCLEAN_HQCRMRS192_AVX2_code_encode(uint64_t *em, const uint64_t *m) { * @param[out] m Pointer to an array that is the message * @param[in] em Pointer to an array that is the code word */ -void PQCLEAN_HQCRMRS192_AVX2_code_decode(uint64_t *m, const uint64_t *em) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS192_AVX2_code_decode(uint8_t *m, const uint8_t *em) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS192_AVX2_reed_muller_decode(tmp, em); PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(m, tmp); diff --git a/crypto_kem/hqc-rmrs-192/avx2/code.h b/crypto_kem/hqc-rmrs-192/avx2/code.h index e2f1ef55..2bf1f78c 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/code.h +++ b/crypto_kem/hqc-rmrs-192/avx2/code.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS192_AVX2_code_encode(uint64_t *em, const uint64_t *message); +void PQCLEAN_HQCRMRS192_AVX2_code_encode(uint8_t *em, const uint8_t *message); -void PQCLEAN_HQCRMRS192_AVX2_code_decode(uint64_t *m, const uint64_t *em); +void PQCLEAN_HQCRMRS192_AVX2_code_decode(uint8_t *m, const uint8_t *em); #endif diff --git a/crypto_kem/hqc-rmrs-192/avx2/hqc.c b/crypto_kem/hqc-rmrs-192/avx2/hqc.c index 627b47e0..198fef83 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/hqc.c +++ b/crypto_kem/hqc-rmrs-192/avx2/hqc.c @@ -70,7 +70,7 @@ void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk * @param[in] theta Seed used to derive randomness required for encryption * @param[in] pk String containing the public key */ -void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk) { +void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk) { AES_XOF_struct seedexpander; uint64_t h[VEC_N_256_SIZE_64] = {0}; uint64_t s[VEC_N_256_SIZE_64] = {0}; @@ -96,7 +96,8 @@ void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t PQCLEAN_HQCRMRS192_AVX2_vect_add(u, r1, u, VEC_N_256_SIZE_64); // Compute v = m.G by encoding the message - PQCLEAN_HQCRMRS192_AVX2_code_encode(v, m); + PQCLEAN_HQCRMRS192_AVX2_code_encode((uint8_t *)v, m); + PQCLEAN_HQCRMRS192_AVX2_load8_arr(v, VEC_N1N2_256_SIZE_64, (uint8_t *)v, VEC_N1N2_SIZE_BYTES); PQCLEAN_HQCRMRS192_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); // Compute v = m.G + s.r2 + e @@ -117,15 +118,14 @@ void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t * @param[in] v Vector v (second part of the ciphertext) * @param[in] sk String containing the secret key */ -void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { - uint64_t x[VEC_N_256_SIZE_64] = {0}; - uint64_t y[VEC_N_256_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { uint8_t pk[PUBLIC_KEY_BYTES] = {0}; uint64_t tmp1[VEC_N_256_SIZE_64] = {0}; uint64_t tmp2[VEC_N_256_SIZE_64] = {0}; + uint64_t y[VEC_N_256_SIZE_64] = {0}; // Retrieve x, y, pk from secret key - PQCLEAN_HQCRMRS192_AVX2_hqc_secret_key_from_string(x, y, pk, sk); + PQCLEAN_HQCRMRS192_AVX2_hqc_secret_key_from_string(tmp1, y, pk, sk); // Compute v - u.y PQCLEAN_HQCRMRS192_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); @@ -134,5 +134,6 @@ void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, con // Compute m by decoding v - u.y - PQCLEAN_HQCRMRS192_AVX2_code_decode(m, tmp2); + PQCLEAN_HQCRMRS192_AVX2_store8_arr((uint8_t *)tmp1, VEC_N_SIZE_BYTES, tmp2, VEC_N_256_SIZE_64); + PQCLEAN_HQCRMRS192_AVX2_code_decode(m, (uint8_t *)tmp1); } diff --git a/crypto_kem/hqc-rmrs-192/avx2/hqc.h b/crypto_kem/hqc-rmrs-192/avx2/hqc.h index 49e68a75..a28774ee 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/hqc.h +++ b/crypto_kem/hqc-rmrs-192/avx2/hqc.h @@ -13,9 +13,9 @@ void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk); -void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk); +void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk); -void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); +void PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); #endif diff --git a/crypto_kem/hqc-rmrs-192/avx2/kem.c b/crypto_kem/hqc-rmrs-192/avx2/kem.c index 5e32f145..c09fb3d2 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/kem.c +++ b/crypto_kem/hqc-rmrs-192/avx2/kem.c @@ -47,26 +47,26 @@ int PQCLEAN_HQCRMRS192_AVX2_crypto_kem_keypair(unsigned char *pk, unsigned char int PQCLEAN_HQCRMRS192_AVX2_crypto_kem_enc(unsigned char *ct, unsigned char *ss, const unsigned char *pk) { uint8_t theta[SHA512_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint64_t u[VEC_N_256_SIZE_64] = {0}; uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char mc[VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES] = {0}; // Computing m - PQCLEAN_HQCRMRS192_AVX2_vect_set_random_from_randombytes(m); + randombytes(m, VEC_K_SIZE_BYTES); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(u, v, m, theta, pk); // Computing d - sha512(d, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); @@ -95,7 +95,7 @@ int PQCLEAN_HQCRMRS192_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char pk[PUBLIC_KEY_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint8_t theta[SHA512_BYTES] = {0}; uint64_t u2[VEC_N_256_SIZE_64] = {0}; uint64_t v2[VEC_N1N2_256_SIZE_64] = {0}; @@ -112,17 +112,17 @@ int PQCLEAN_HQCRMRS192_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha PQCLEAN_HQCRMRS192_AVX2_hqc_pke_decrypt(m, u, v, sk); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m' PQCLEAN_HQCRMRS192_AVX2_hqc_pke_encrypt(u2, v2, m, theta, pk); // Computing d' - sha512(d2, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d2, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); - PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); + PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_256_SIZE_64); PQCLEAN_HQCRMRS192_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); diff --git a/crypto_kem/hqc-rmrs-192/avx2/reed_muller.c b/crypto_kem/hqc-rmrs-192/avx2/reed_muller.c index 81fb557b..439cc62f 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/reed_muller.c +++ b/crypto_kem/hqc-rmrs-192/avx2/reed_muller.c @@ -15,10 +15,10 @@ // copy bit 0 into all bits of a 64 bit value #define BIT0MASK(x) (int64_t)(-((x) & 1)) -static void encode(uint64_t *word, uint32_t message); +static void encode(uint8_t *word, uint8_t message); static void expand_and_sum(__m256i *dst, const uint64_t *src); static void hadamard(__m256i *src, __m256i *dst); -static int32_t find_peaks(__m256i *transform); +static uint32_t find_peaks(__m256i *transform); @@ -39,28 +39,38 @@ static int32_t find_peaks(__m256i *transform); * @param[out] word An RM(1,7) codeword * @param[in] message A message to encode */ -static void encode(uint64_t *word, uint32_t message) { - // the four parts of the word are identical - // except for encoding bits 5 and 6 - uint32_t first_word; +static void encode(uint8_t *word, uint8_t message) { + uint32_t e; // bit 7 flips all the bits, do that first to save work - first_word = BIT0MASK(message >> 7); + e = BIT0MASK(message >> 7); // bits 0, 1, 2, 3, 4 are the same for all four longs // (Warning: in the bit matrix above, low bits are at the left!) - first_word ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; - first_word ^= BIT0MASK(message >> 1) & 0xcccccccc; - first_word ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; - first_word ^= BIT0MASK(message >> 3) & 0xff00ff00; - first_word ^= BIT0MASK(message >> 4) & 0xffff0000; + e ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; + e ^= BIT0MASK(message >> 1) & 0xcccccccc; + e ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; + e ^= BIT0MASK(message >> 3) & 0xff00ff00; + e ^= BIT0MASK(message >> 4) & 0xffff0000; // we can store this in the first quarter - ((uint32_t *) word)[0] = first_word; + word[0 + 0] = (e >> 0x00) & 0xff; + word[0 + 1] = (e >> 0x08) & 0xff; + word[0 + 2] = (e >> 0x10) & 0xff; + word[0 + 3] = (e >> 0x18) & 0xff; // bit 5 flips entries 1 and 3; bit 6 flips 2 and 3 - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[1] = first_word; - first_word ^= BIT0MASK(message >> 6); - ((uint32_t *) word)[3] = first_word; - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[2] = first_word; + e ^= BIT0MASK(message >> 5); + word[4 + 0] = (e >> 0x00) & 0xff; + word[4 + 1] = (e >> 0x08) & 0xff; + word[4 + 2] = (e >> 0x10) & 0xff; + word[4 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 6); + word[12 + 0] = (e >> 0x00) & 0xff; + word[12 + 1] = (e >> 0x08) & 0xff; + word[12 + 2] = (e >> 0x10) & 0xff; + word[12 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 5); + word[8 + 0] = (e >> 0x00) & 0xff; + word[8 + 1] = (e >> 0x08) & 0xff; + word[8 + 2] = (e >> 0x10) & 0xff; + word[8 + 3] = (e >> 0x18) & 0xff; } @@ -218,7 +228,7 @@ inline void hadamard(__m256i *src, __m256i *dst) { * * @param[in] transform Structure that contain the expanded codeword */ -inline int32_t find_peaks(__m256i *transform) { +inline uint32_t find_peaks(__m256i *transform) { // a whole lot of vector variables __m256i bitmap, abs_rows[8], bound, active_row, max_abs_rows; __m256i peak_mask; @@ -322,7 +332,7 @@ inline int32_t find_peaks(__m256i *transform) { result |= message_mask & ptr[i]; } message |= (0x8000 & ~result) >> 8; - return message; + return (uint32_t) message; } @@ -336,14 +346,13 @@ inline int32_t find_peaks(__m256i *transform) { * @param[out] cdw Array of size VEC_N1N2_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_N1_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg) { for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { - // fill entries i * MULTIPLICITY to (i+1) * MULTIPLICITY // encode first word - encode(&cdw[2 * i * MULTIPLICITY], ((uint8_t *)msg)[i]); + encode(&cdw[16 * i * MULTIPLICITY], msg[i]); // copy to other identical codewords for (size_t copy = 1; copy < MULTIPLICITY; copy++) { - memcpy(&cdw[2 * (i * MULTIPLICITY + copy)], &cdw[2 * i * MULTIPLICITY], 2 * sizeof(uint64_t)); + memcpy(&cdw[16 * i * MULTIPLICITY + 16 * copy], &cdw[16 * i * MULTIPLICITY], 16); } } } @@ -359,18 +368,18 @@ void PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *m * @param[out] msg Array of size VEC_N1_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1N2_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS192_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw) { +void PQCLEAN_HQCRMRS192_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw) { __m256i expanded[8]; __m256i transform[8]; for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { // collect the codewords - expand_and_sum(expanded, &cdw[2 * i * MULTIPLICITY]); + expand_and_sum(expanded, (uint64_t *)&cdw[16 * i * MULTIPLICITY]); // apply hadamard transform hadamard(expanded, transform); // fix the first entry to get the half Hadamard transform transform[0] -= _mm256_set_epi16(0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 64 * MULTIPLICITY); // finish the decoding - ((uint8_t *)msg)[i] = find_peaks(transform); + msg[i] = find_peaks(transform); } } diff --git a/crypto_kem/hqc-rmrs-192/avx2/reed_muller.h b/crypto_kem/hqc-rmrs-192/avx2/reed_muller.h index 1a95a9c5..4dced5e6 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/reed_muller.h +++ b/crypto_kem/hqc-rmrs-192/avx2/reed_muller.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS192_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS192_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw); +void PQCLEAN_HQCRMRS192_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.c b/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.c index 657798b6..4d60602f 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.c +++ b/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.c @@ -1,6 +1,7 @@ #include "fft.h" #include "gf.h" #include "parameters.h" +#include "parsing.h" #include "reed_solomon.h" #include #include @@ -30,37 +31,31 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values); * @param[out] cdw Array of size VEC_N1_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_K_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg) { uint8_t gate_value = 0; uint16_t tmp[PARAM_G] = {0}; uint16_t PARAM_RS_POLY [] = {RS_POLY_COEFS}; - uint8_t msg_bytes[PARAM_K] = {0}; - uint8_t cdw_bytes[PARAM_N1] = {0}; - - for (size_t i = 0; i < VEC_K_SIZE_64; ++i) { - for (size_t j = 0; j < 8; ++j) { - msg_bytes[i * 8 + j] = (uint8_t) (msg[i] >> (j * 8)); - } + for (size_t i = 0; i < PARAM_N1; i++) { + cdw[i] = 0; } for (int i = PARAM_K - 1; i >= 0; --i) { - gate_value = msg_bytes[i] ^ cdw_bytes[PARAM_N1 - PARAM_K - 1]; + gate_value = msg[i] ^ cdw[PARAM_N1 - PARAM_K - 1]; for (size_t j = 0; j < PARAM_G; ++j) { tmp[j] = PQCLEAN_HQCRMRS192_AVX2_gf_mul(gate_value, PARAM_RS_POLY[j]); } for (size_t k = PARAM_N1 - PARAM_K - 1; k; --k) { - cdw_bytes[k] = cdw_bytes[k - 1] ^ tmp[k]; + cdw[k] = cdw[k - 1] ^ tmp[k]; } - cdw_bytes[0] = tmp[0]; + cdw[0] = tmp[0]; } - memcpy(cdw_bytes + PARAM_N1 - PARAM_K, msg_bytes, PARAM_K); - memcpy(cdw, cdw_bytes, PARAM_N1); + memcpy(cdw + PARAM_N1 - PARAM_K, msg, PARAM_K); } @@ -312,8 +307,7 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values) { * @param[out] msg Array of size VEC_K_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { - uint8_t cdw_bytes[PARAM_N1] = {0}; +void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw) { uint16_t syndromes[2 * PARAM_DELTA] = {0}; uint16_t sigma[1 << PARAM_FFT] = {0}; uint8_t error[1 << PARAM_M] = {0}; @@ -321,11 +315,8 @@ void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { uint16_t error_values[PARAM_N1] = {0}; uint16_t deg; - // Copy the vector in an array of bytes - memcpy(cdw_bytes, cdw, PARAM_N1); - // Calculate the 2*PARAM_DELTA syndromes - compute_syndromes(syndromes, cdw_bytes); + compute_syndromes(syndromes, cdw); // Compute the error locator polynomial sigma // Sigma's degree is at most PARAM_DELTA but the FFT requires the extra room @@ -341,9 +332,9 @@ void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { compute_error_values(error_values, z, error); // Correct the errors - correct_errors(cdw_bytes, error_values); + correct_errors(cdw, error_values); // Retrieve the message from the decoded codeword - memcpy(msg, cdw_bytes + (PARAM_G - 1), PARAM_K); + memcpy(msg, cdw + (PARAM_G - 1), PARAM_K); } diff --git a/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.h b/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.h index dd181214..96b2e911 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.h +++ b/crypto_kem/hqc-rmrs-192/avx2/reed_solomon.h @@ -14,9 +14,9 @@ static const uint16_t alpha_ij_pow [44][75] = {{2, 4, 8, 16, 32, 64, 128, 29, 58, 116, 232, 205, 135, 19, 38, 76, 152, 45, 90, 180, 117, 234, 201, 143, 3, 6, 12, 24, 48, 96, 192, 157, 39, 78, 156, 37, 74, 148, 53, 106, 212, 181, 119, 238, 193, 159, 35, 70, 140, 5, 10, 20, 40, 80, 160, 93, 186, 105, 210, 185, 111, 222, 161, 95, 190, 97, 194, 153, 47, 94, 188, 101, 202, 137, 15}, {4, 16, 64, 29, 116, 205, 19, 76, 45, 180, 234, 143, 6, 24, 96, 157, 78, 37, 148, 106, 181, 238, 159, 70, 5, 20, 80, 93, 105, 185, 222, 95, 97, 153, 94, 101, 137, 30, 120, 253, 211, 107, 177, 254, 223, 91, 113, 217, 67, 17, 68, 13, 52, 208, 103, 129, 62, 248, 199, 59, 236, 151, 102, 133, 46, 184, 218, 79, 33, 132, 42, 168, 154, 82, 85}, {8, 64, 58, 205, 38, 45, 117, 143, 12, 96, 39, 37, 53, 181, 193, 70, 10, 80, 186, 185, 161, 97, 47, 101, 15, 120, 231, 107, 127, 223, 182, 217, 134, 68, 26, 208, 206, 62, 237, 59, 197, 102, 23, 184, 169, 33, 21, 168, 41, 85, 146, 228, 115, 191, 145, 252, 179, 241, 219, 150, 196, 110, 87, 130, 100, 7, 56, 221, 166, 89, 242, 195, 86, 138, 36}, {16, 29, 205, 76, 180, 143, 24, 157, 37, 106, 238, 70, 20, 93, 185, 95, 153, 101, 30, 253, 107, 254, 91, 217, 17, 13, 208, 129, 248, 59, 151, 133, 184, 79, 132, 168, 82, 73, 228, 230, 198, 252, 123, 227, 150, 149, 165, 130, 200, 28, 221, 81, 121, 195, 172, 18, 61, 247, 203, 44, 250, 27, 173, 2, 32, 58, 135, 152, 117, 3, 48, 39, 74, 212, 193}, {32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59, 51, 46, 169, 132, 77, 85, 114, 230, 145, 215, 255, 150, 55, 174, 100, 28, 167, 89, 239, 172, 36, 244, 235, 44, 233, 108, 1, 32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59}, {64, 205, 45, 143, 96, 37, 181, 70, 80, 185, 97, 101, 120, 107, 223, 217, 68, 208, 62, 59, 102, 184, 33, 168, 85, 228, 191, 252, 241, 150, 110, 130, 7, 221, 89, 195, 138, 61, 251, 44, 207, 173, 8, 58, 38, 117, 12, 39, 53, 193, 10, 186, 161, 47, 15, 231, 127, 182, 134, 26, 206, 237, 197, 23, 169, 21, 41, 146, 115, 145, 179, 219, 196, 87, 100}, {128, 19, 117, 24, 156, 181, 140, 93, 161, 94, 60, 107, 163, 67, 26, 129, 147, 102, 109, 132, 41, 57, 209, 252, 255, 98, 87, 200, 224, 89, 155, 18, 245, 11, 233, 173, 16, 232, 45, 3, 157, 53, 159, 40, 185, 194, 137, 231, 254, 226, 68, 189, 248, 197, 46, 158, 168, 170, 183, 145, 123, 75, 110, 25, 28, 166, 249, 69, 61, 235, 176, 54, 2, 29, 38}, {29, 76, 143, 157, 106, 70, 93, 95, 101, 253, 254, 217, 13, 129, 59, 133, 79, 168, 73, 230, 252, 227, 149, 130, 28, 81, 195, 18, 247, 44, 27, 2, 58, 152, 3, 39, 212, 140, 186, 190, 202, 231, 225, 175, 26, 31, 118, 23, 158, 77, 146, 209, 229, 219, 55, 25, 56, 162, 155, 36, 243, 88, 54, 4, 116, 45, 6, 78, 181, 5, 105, 97, 137, 211, 223}, {58, 45, 12, 37, 193, 80, 161, 101, 231, 223, 134, 208, 237, 102, 169, 168, 146, 191, 179, 150, 87, 7, 166, 195, 36, 251, 125, 173, 64, 38, 143, 39, 181, 10, 185, 47, 120, 127, 217, 26, 62, 197, 184, 21, 85, 115, 252, 219, 110, 100, 221, 242, 138, 245, 44, 54, 8, 205, 117, 96, 53, 70, 186, 97, 15, 107, 182, 68, 206, 59, 23, 33, 41, 228, 145}, {116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44, 108, 32, 38, 3, 156, 193, 160, 190, 15, 214, 226, 26, 124, 51, 169, 77, 114, 145, 255, 55, 100, 167, 239, 36, 235, 233, 1, 116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44}, {232, 234, 39, 238, 160, 97, 60, 254, 134, 103, 118, 184, 84, 57, 145, 227, 220, 7, 162, 172, 245, 176, 71, 58, 180, 192, 181, 40, 95, 15, 177, 175, 208, 147, 46, 21, 73, 99, 241, 55, 200, 166, 43, 122, 44, 216, 128, 45, 48, 106, 10, 222, 202, 107, 226, 52, 237, 133, 66, 85, 209, 123, 196, 50, 167, 195, 144, 11, 54, 32, 76, 12, 148, 140, 185}, {205, 143, 37, 70, 185, 101, 107, 217, 208, 59, 184, 168, 228, 252, 150, 130, 221, 195, 61, 44, 173, 58, 117, 39, 193, 186, 47, 231, 182, 26, 237, 23, 21, 146, 145, 219, 87, 56, 242, 36, 139, 54, 64, 45, 96, 181, 80, 97, 120, 223, 68, 62, 102, 33, 85, 191, 241, 110, 7, 89, 138, 251, 207, 8, 38, 12, 53, 10, 161, 15, 127, 134, 206, 197, 169}, {135, 6, 53, 20, 190, 120, 163, 13, 237, 46, 84, 228, 229, 98, 100, 81, 69, 251, 131, 32, 45, 192, 238, 186, 94, 187, 217, 189, 236, 169, 82, 209, 241, 220, 28, 242, 72, 22, 173, 116, 201, 37, 140, 222, 15, 254, 34, 62, 204, 132, 146, 63, 75, 130, 167, 43, 245, 250, 4, 38, 24, 212, 80, 194, 253, 182, 52, 147, 184, 77, 183, 179, 149, 141, 89}, {19, 24, 181, 93, 94, 107, 67, 129, 102, 132, 57, 252, 98, 200, 89, 18, 11, 173, 232, 3, 53, 40, 194, 231, 226, 189, 197, 158, 170, 145, 75, 25, 166, 69, 235, 54, 29, 234, 37, 5, 95, 120, 91, 52, 59, 218, 82, 191, 227, 174, 221, 43, 247, 207, 32, 90, 39, 35, 111, 15, 225, 136, 237, 92, 77, 115, 246, 220, 56, 239, 122, 125, 4, 76, 96}, {38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26}, {76, 157, 70, 95, 253, 217, 129, 133, 168, 230, 227, 130, 81, 18, 44, 2, 152, 39, 140, 190, 231, 175, 31, 23, 77, 209, 219, 25, 162, 36, 88, 4, 45, 78, 5, 97, 211, 67, 62, 46, 154, 191, 171, 50, 89, 72, 176, 8, 90, 156, 10, 194, 187, 134, 124, 92, 41, 99, 75, 100, 178, 144, 125, 16, 180, 37, 20, 153, 107, 17, 248, 184, 82, 198, 150}, {152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1}, {45, 37, 80, 101, 223, 208, 102, 168, 191, 150, 7, 195, 251, 173, 38, 39, 10, 47, 127, 26, 197, 21, 115, 219, 100, 242, 245, 54, 205, 96, 70, 97, 107, 68, 59, 33, 228, 241, 130, 89, 61, 207, 58, 12, 193, 161, 231, 134, 237, 169, 146, 179, 87, 166, 36, 125, 64, 143, 181, 185, 120, 217, 62, 184, 85, 252, 110, 221, 138, 44, 8, 117, 53, 186, 15}, {90, 148, 186, 30, 226, 62, 109, 73, 179, 174, 162, 61, 131, 232, 96, 140, 153, 127, 52, 51, 168, 99, 98, 56, 172, 22, 8, 234, 212, 185, 240, 67, 237, 79, 114, 241, 25, 121, 245, 108, 19, 39, 20, 188, 223, 189, 133, 41, 63, 55, 221, 9, 176, 64, 3, 238, 161, 211, 34, 59, 66, 183, 219, 200, 239, 251, 71, 152, 37, 160, 137, 182, 129, 92, 85}, {180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36, 233, 116, 96, 5, 94, 223, 103, 46, 85, 215, 174, 89, 244, 108, 38, 156, 160, 15, 226, 124, 169, 114, 255, 100, 239, 235, 1, 180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36}, {117, 181, 161, 107, 26, 102, 41, 252, 87, 89, 245, 173, 45, 53, 185, 231, 68, 197, 168, 145, 110, 166, 61, 54, 38, 37, 186, 120, 134, 59, 21, 191, 196, 221, 36, 207, 205, 39, 80, 15, 217, 237, 33, 115, 150, 56, 138, 125, 58, 96, 10, 101, 182, 62, 169, 228, 219, 7, 86, 44, 64, 12, 70, 47, 223, 206, 184, 146, 241, 100, 195, 139, 8, 143, 193}, {234, 238, 97, 254, 103, 184, 57, 227, 7, 172, 176, 58, 192, 40, 15, 175, 147, 21, 99, 55, 166, 122, 216, 45, 106, 222, 107, 52, 133, 85, 123, 50, 195, 11, 32, 12, 140, 188, 182, 124, 158, 115, 49, 224, 36, 131, 19, 37, 105, 253, 68, 151, 154, 252, 174, 121, 251, 2, 201, 193, 194, 225, 206, 109, 114, 219, 14, 69, 125, 116, 157, 80, 30, 67, 59}, {201, 159, 47, 91, 124, 33, 209, 149, 166, 244, 71, 117, 238, 194, 223, 31, 79, 115, 98, 167, 61, 216, 90, 181, 190, 254, 206, 218, 213, 150, 224, 72, 54, 152, 106, 161, 177, 189, 184, 114, 171, 56, 18, 131, 38, 148, 111, 107, 104, 46, 146, 227, 14, 138, 233, 135, 37, 210, 211, 26, 133, 170, 241, 141, 172, 125, 232, 78, 186, 253, 136, 102, 164, 123, 100}, {143, 70, 101, 217, 59, 168, 252, 130, 195, 44, 58, 39, 186, 231, 26, 23, 146, 219, 56, 36, 54, 45, 181, 97, 223, 62, 33, 191, 110, 89, 251, 8, 12, 10, 15, 134, 197, 41, 179, 100, 86, 125, 205, 37, 185, 107, 208, 184, 228, 150, 221, 61, 173, 117, 193, 47, 182, 237, 21, 145, 87, 242, 139, 64, 96, 80, 120, 68, 102, 85, 241, 7, 138, 207, 38}, {3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223, 124, 132, 145, 174, 239, 44, 116, 156, 185, 214, 103, 169, 230, 55, 89, 235, 32, 96, 160, 253, 26, 46, 114, 150, 167, 244, 1, 3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223}, {6, 20, 120, 13, 46, 228, 98, 81, 251, 32, 192, 186, 187, 189, 169, 209, 220, 242, 22, 116, 37, 222, 254, 62, 132, 63, 130, 43, 250, 38, 212, 194, 182, 147, 77, 179, 141, 9, 54, 180, 159, 101, 67, 151, 85, 227, 112, 61, 142, 3, 10, 60, 136, 23, 114, 49, 166, 243, 16, 96, 93, 211, 208, 218, 230, 110, 121, 11, 58, 156, 111, 127, 31, 66, 145}, {12, 80, 231, 208, 169, 191, 87, 195, 125, 38, 181, 47, 217, 197, 85, 219, 221, 245, 8, 96, 186, 107, 206, 33, 145, 130, 86, 207, 45, 193, 101, 134, 102, 146, 150, 166, 251, 64, 39, 185, 127, 62, 21, 252, 100, 138, 54, 117, 70, 15, 68, 23, 228, 196, 89, 139, 58, 37, 161, 223, 237, 168, 179, 7, 36, 173, 143, 10, 120, 26, 184, 115, 110, 242, 44}, {24, 93, 107, 129, 132, 252, 200, 18, 173, 3, 40, 231, 189, 158, 145, 25, 69, 54, 234, 5, 120, 52, 218, 191, 174, 43, 207, 90, 35, 15, 136, 92, 115, 220, 239, 125, 76, 238, 101, 17, 133, 228, 149, 121, 44, 135, 212, 47, 175, 51, 146, 49, 162, 139, 116, 148, 97, 113, 236, 85, 171, 83, 251, 128, 156, 161, 163, 147, 41, 255, 224, 245, 16, 157, 185}, {48, 105, 127, 248, 77, 241, 224, 247, 64, 156, 95, 182, 236, 170, 150, 162, 11, 205, 212, 94, 134, 133, 213, 110, 239, 250, 45, 35, 30, 26, 218, 99, 130, 69, 108, 143, 40, 211, 206, 132, 229, 7, 144, 2, 96, 210, 254, 237, 154, 255, 221, 243, 128, 37, 190, 113, 197, 73, 49, 89, 22, 135, 181, 188, 17, 23, 183, 220, 195, 233, 90, 70, 60, 52, 169}, {96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89}, {192, 222, 182, 151, 114, 110, 155, 27, 143, 160, 177, 237, 82, 75, 89, 88, 152, 70, 240, 103, 21, 123, 224, 251, 116, 212, 101, 136, 218, 145, 200, 144, 8, 78, 190, 217, 204, 183, 87, 172, 216, 12, 105, 225, 59, 170, 98, 242, 250, 180, 10, 211, 31, 168, 255, 83, 139, 135, 238, 15, 52, 158, 252, 14, 244, 64, 74, 153, 134, 46, 209, 130, 9, 142, 96}, {157, 95, 217, 133, 230, 130, 18, 2, 39, 190, 175, 23, 209, 25, 36, 4, 78, 97, 67, 46, 191, 50, 72, 8, 156, 194, 134, 92, 99, 100, 144, 16, 37, 153, 17, 184, 198, 200, 61, 32, 74, 47, 34, 109, 145, 141, 122, 64, 148, 94, 68, 218, 63, 7, 244, 128, 53, 188, 136, 169, 126, 14, 245, 29, 106, 101, 13, 79, 252, 28, 247, 58, 212, 202, 26}, {39, 97, 134, 184, 145, 7, 245, 58, 181, 15, 208, 21, 241, 166, 44, 45, 10, 107, 237, 85, 196, 195, 54, 12, 185, 182, 102, 115, 130, 36, 8, 37, 47, 68, 169, 252, 56, 251, 205, 193, 120, 206, 168, 219, 89, 125, 117, 80, 127, 59, 146, 110, 86, 173, 96, 161, 217, 23, 191, 100, 61, 64, 53, 101, 26, 33, 179, 221, 139, 38, 70, 231, 62, 41, 150}, {78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1}, {156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15, 103, 77, 150, 239, 108, 96, 190, 17, 169, 215, 167, 44, 180, 160, 223, 51, 230, 100, 244, 116, 193, 253, 124, 85, 55, 172, 1, 156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15}, {37, 101, 208, 168, 150, 195, 173, 39, 47, 26, 21, 219, 242, 54, 96, 97, 68, 33, 241, 89, 207, 12, 161, 134, 169, 179, 166, 125, 143, 185, 217, 184, 252, 221, 44, 117, 186, 182, 23, 145, 56, 139, 45, 80, 223, 102, 191, 7, 251, 38, 10, 127, 197, 115, 100, 245, 205, 70, 107, 59, 228, 130, 61, 58, 193, 231, 237, 146, 87, 36, 64, 181, 120, 62, 85}, {74, 137, 206, 82, 55, 138, 16, 212, 120, 124, 73, 87, 72, 29, 193, 211, 147, 228, 25, 244, 205, 140, 177, 197, 230, 141, 251, 76, 40, 223, 204, 198, 56, 11, 180, 186, 113, 92, 252, 167, 176, 143, 111, 67, 169, 123, 162, 207, 24, 190, 68, 66, 227, 242, 108, 157, 47, 52, 84, 150, 155, 142, 37, 202, 103, 41, 149, 69, 8, 106, 60, 62, 170, 165, 36}, {148, 30, 62, 73, 174, 61, 232, 140, 127, 51, 99, 56, 22, 234, 185, 67, 79, 241, 121, 108, 39, 188, 189, 41, 55, 9, 64, 238, 211, 59, 183, 200, 251, 152, 160, 182, 92, 229, 166, 233, 24, 97, 13, 42, 150, 43, 2, 53, 60, 124, 146, 65, 122, 205, 5, 254, 102, 198, 112, 44, 201, 111, 134, 158, 255, 242, 216, 78, 101, 103, 82, 110, 18, 128, 193}, {53, 120, 237, 228, 100, 251, 45, 186, 217, 169, 241, 242, 173, 37, 15, 62, 146, 130, 245, 38, 80, 182, 184, 179, 89, 54, 39, 101, 206, 85, 87, 61, 205, 10, 223, 23, 252, 166, 207, 96, 47, 208, 41, 110, 36, 58, 70, 127, 102, 145, 221, 125, 12, 97, 26, 168, 196, 138, 64, 193, 107, 197, 191, 56, 44, 143, 161, 68, 21, 150, 86, 8, 181, 231, 59}, {106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100, 235, 180, 185, 17, 132, 150, 172, 32, 193, 214, 51, 145, 167, 233, 96, 94, 103, 85, 174, 244, 38, 160, 226, 169, 255, 239, 1, 106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100}, {212, 211, 197, 198, 167, 207, 157, 202, 62, 114, 200, 139, 201, 95, 26, 154, 220, 61, 19, 160, 217, 158, 171, 86, 32, 159, 127, 133, 229, 89, 216, 74, 120, 147, 230, 56, 176, 24, 47, 103, 170, 130, 243, 90, 185, 34, 42, 196, 18, 116, 10, 91, 109, 241, 239, 2, 181, 187, 151, 145, 83, 131, 39, 137, 124, 228, 141, 11, 143, 190, 52, 41, 165, 122, 38}, {181, 107, 102, 252, 89, 173, 53, 231, 197, 145, 166, 54, 37, 120, 59, 191, 221, 207, 39, 15, 237, 115, 56, 125, 96, 101, 62, 228, 7, 44, 12, 47, 206, 146, 100, 139, 143, 97, 208, 85, 130, 251, 117, 161, 26, 41, 87, 245, 45, 185, 68, 168, 110, 61, 38, 186, 134, 21, 196, 36, 205, 80, 217, 33, 150, 138, 58, 10, 182, 169, 219, 86, 64, 70, 223}, {119, 177, 23, 123, 239, 8, 159, 225, 184, 255, 43, 64, 140, 91, 169, 171, 69, 58, 20, 226, 33, 49, 18, 205, 160, 67, 21, 149, 144, 38, 105, 34, 168, 220, 244, 45, 111, 13, 41, 174, 243, 117, 95, 104, 85, 25, 203, 143, 194, 103, 146, 200, 22, 12, 94, 31, 228, 14, 176, 96, 202, 248, 115, 112, 233, 39, 30, 147, 191, 167, 27, 37, 240, 236, 145}, {238, 254, 184, 227, 172, 58, 40, 175, 21, 55, 122, 45, 222, 52, 85, 50, 11, 12, 188, 124, 115, 224, 131, 37, 253, 151, 252, 121, 2, 193, 225, 109, 219, 69, 116, 80, 67, 42, 110, 244, 90, 161, 104, 170, 100, 22, 24, 101, 248, 230, 221, 27, 74, 231, 51, 229, 242, 4, 159, 223, 218, 171, 138, 232, 160, 134, 84, 220, 245, 180, 95, 208, 73, 200, 44}}; -void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw); +void PQCLEAN_HQCRMRS192_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-192/avx2/vector.c b/crypto_kem/hqc-rmrs-192/avx2/vector.c index 935d443f..38bbd51c 100644 --- a/crypto_kem/hqc-rmrs-192/avx2/vector.c +++ b/crypto_kem/hqc-rmrs-192/avx2/vector.c @@ -122,22 +122,6 @@ void PQCLEAN_HQCRMRS192_AVX2_vect_set_random(AES_XOF_struct *ctx, uint64_t *v) { -/** - * @brief Generates a random vector - * - * This function generates a random binary vector. It uses the the randombytes function. - * - * @param[in] v Pointer to an array - */ -void PQCLEAN_HQCRMRS192_AVX2_vect_set_random_from_randombytes(uint64_t *v) { - uint8_t rand_bytes [VEC_K_SIZE_BYTES] = {0}; - - randombytes(rand_bytes, VEC_K_SIZE_BYTES); - PQCLEAN_HQCRMRS192_AVX2_load8_arr(v, VEC_K_SIZE_64, rand_bytes, VEC_K_SIZE_BYTES); -} - - - /** * @brief Adds two vectors * diff --git a/crypto_kem/hqc-rmrs-256/avx2/code.c b/crypto_kem/hqc-rmrs-256/avx2/code.c index 874248d9..c1af29d2 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/code.c +++ b/crypto_kem/hqc-rmrs-256/avx2/code.c @@ -21,8 +21,8 @@ * @param[out] em Pointer to an array that is the tensor code word * @param[in] m Pointer to an array that is the message */ -void PQCLEAN_HQCRMRS256_AVX2_code_encode(uint64_t *em, const uint64_t *m) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS256_AVX2_code_encode(uint8_t *em, const uint8_t *m) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS256_AVX2_reed_solomon_encode(tmp, m); PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(em, tmp); @@ -37,8 +37,8 @@ void PQCLEAN_HQCRMRS256_AVX2_code_encode(uint64_t *em, const uint64_t *m) { * @param[out] m Pointer to an array that is the message * @param[in] em Pointer to an array that is the code word */ -void PQCLEAN_HQCRMRS256_AVX2_code_decode(uint64_t *m, const uint64_t *em) { - uint64_t tmp[VEC_N1_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS256_AVX2_code_decode(uint8_t *m, const uint8_t *em) { + uint8_t tmp[8 * VEC_N1_SIZE_64] = {0}; PQCLEAN_HQCRMRS256_AVX2_reed_muller_decode(tmp, em); PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(m, tmp); diff --git a/crypto_kem/hqc-rmrs-256/avx2/code.h b/crypto_kem/hqc-rmrs-256/avx2/code.h index b55a2f55..521ca289 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/code.h +++ b/crypto_kem/hqc-rmrs-256/avx2/code.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS256_AVX2_code_encode(uint64_t *em, const uint64_t *message); +void PQCLEAN_HQCRMRS256_AVX2_code_encode(uint8_t *em, const uint8_t *message); -void PQCLEAN_HQCRMRS256_AVX2_code_decode(uint64_t *m, const uint64_t *em); +void PQCLEAN_HQCRMRS256_AVX2_code_decode(uint8_t *m, const uint8_t *em); #endif diff --git a/crypto_kem/hqc-rmrs-256/avx2/hqc.c b/crypto_kem/hqc-rmrs-256/avx2/hqc.c index bc67c912..631267e8 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/hqc.c +++ b/crypto_kem/hqc-rmrs-256/avx2/hqc.c @@ -70,7 +70,7 @@ void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk * @param[in] theta Seed used to derive randomness required for encryption * @param[in] pk String containing the public key */ -void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk) { +void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk) { AES_XOF_struct seedexpander; uint64_t h[VEC_N_256_SIZE_64] = {0}; uint64_t s[VEC_N_256_SIZE_64] = {0}; @@ -96,7 +96,8 @@ void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t PQCLEAN_HQCRMRS256_AVX2_vect_add(u, r1, u, VEC_N_256_SIZE_64); // Compute v = m.G by encoding the message - PQCLEAN_HQCRMRS256_AVX2_code_encode(v, m); + PQCLEAN_HQCRMRS256_AVX2_code_encode((uint8_t *)v, m); + PQCLEAN_HQCRMRS256_AVX2_load8_arr(v, VEC_N1N2_256_SIZE_64, (uint8_t *)v, VEC_N1N2_SIZE_BYTES); PQCLEAN_HQCRMRS256_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); // Compute v = m.G + s.r2 + e @@ -117,15 +118,14 @@ void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t * @param[in] v Vector v (second part of the ciphertext) * @param[in] sk String containing the secret key */ -void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { - uint64_t x[VEC_N_256_SIZE_64] = {0}; - uint64_t y[VEC_N_256_SIZE_64] = {0}; +void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk) { uint8_t pk[PUBLIC_KEY_BYTES] = {0}; uint64_t tmp1[VEC_N_256_SIZE_64] = {0}; uint64_t tmp2[VEC_N_256_SIZE_64] = {0}; + uint64_t y[VEC_N_256_SIZE_64] = {0}; // Retrieve x, y, pk from secret key - PQCLEAN_HQCRMRS256_AVX2_hqc_secret_key_from_string(x, y, pk, sk); + PQCLEAN_HQCRMRS256_AVX2_hqc_secret_key_from_string(tmp1, y, pk, sk); // Compute v - u.y PQCLEAN_HQCRMRS256_AVX2_vect_resize(tmp1, PARAM_N, v, PARAM_N1N2); @@ -134,5 +134,6 @@ void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, con // Compute m by decoding v - u.y - PQCLEAN_HQCRMRS256_AVX2_code_decode(m, tmp2); + PQCLEAN_HQCRMRS256_AVX2_store8_arr((uint8_t *)tmp1, VEC_N_SIZE_BYTES, tmp2, VEC_N_256_SIZE_64); + PQCLEAN_HQCRMRS256_AVX2_code_decode(m, (uint8_t *)tmp1); } diff --git a/crypto_kem/hqc-rmrs-256/avx2/hqc.h b/crypto_kem/hqc-rmrs-256/avx2/hqc.h index b7e3bd8d..b2ab1da2 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/hqc.h +++ b/crypto_kem/hqc-rmrs-256/avx2/hqc.h @@ -13,9 +13,9 @@ void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_keygen(unsigned char *pk, unsigned char *sk); -void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint64_t *m, unsigned char *theta, const unsigned char *pk); +void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(uint64_t *u, uint64_t *v, uint8_t *m, unsigned char *theta, const unsigned char *pk); -void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(uint64_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); +void PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(uint8_t *m, const uint64_t *u, const uint64_t *v, const unsigned char *sk); #endif diff --git a/crypto_kem/hqc-rmrs-256/avx2/kem.c b/crypto_kem/hqc-rmrs-256/avx2/kem.c index d495273b..66c6d534 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/kem.c +++ b/crypto_kem/hqc-rmrs-256/avx2/kem.c @@ -47,26 +47,26 @@ int PQCLEAN_HQCRMRS256_AVX2_crypto_kem_keypair(unsigned char *pk, unsigned char int PQCLEAN_HQCRMRS256_AVX2_crypto_kem_enc(unsigned char *ct, unsigned char *ss, const unsigned char *pk) { uint8_t theta[SHA512_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint64_t u[VEC_N_256_SIZE_64] = {0}; uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char mc[VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES] = {0}; // Computing m - PQCLEAN_HQCRMRS256_AVX2_vect_set_random_from_randombytes(m); + randombytes(m, VEC_K_SIZE_BYTES); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(u, v, m, theta, pk); // Computing d - sha512(d, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); @@ -95,7 +95,7 @@ int PQCLEAN_HQCRMRS256_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha uint64_t v[VEC_N1N2_256_SIZE_64] = {0}; unsigned char d[SHA512_BYTES] = {0}; unsigned char pk[PUBLIC_KEY_BYTES] = {0}; - uint64_t m[VEC_K_SIZE_64] = {0}; + uint8_t m[VEC_K_SIZE_BYTES] = {0}; uint8_t theta[SHA512_BYTES] = {0}; uint64_t u2[VEC_N_256_SIZE_64] = {0}; uint64_t v2[VEC_N1N2_256_SIZE_64] = {0}; @@ -112,17 +112,17 @@ int PQCLEAN_HQCRMRS256_AVX2_crypto_kem_dec(unsigned char *ss, const unsigned cha PQCLEAN_HQCRMRS256_AVX2_hqc_pke_decrypt(m, u, v, sk); // Computing theta - sha3_512(theta, (uint8_t *) m, VEC_K_SIZE_BYTES); + sha3_512(theta, m, VEC_K_SIZE_BYTES); // Encrypting m' PQCLEAN_HQCRMRS256_AVX2_hqc_pke_encrypt(u2, v2, m, theta, pk); // Computing d' - sha512(d2, (unsigned char *) m, VEC_K_SIZE_BYTES); + sha512(d2, m, VEC_K_SIZE_BYTES); // Computing shared secret - PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc, VEC_K_SIZE_BYTES, m, VEC_K_SIZE_64); - PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_SIZE_64); + memcpy(mc, m, VEC_K_SIZE_BYTES); + PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES, VEC_N_SIZE_BYTES, u, VEC_N_256_SIZE_64); PQCLEAN_HQCRMRS256_AVX2_store8_arr(mc + VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES, VEC_N1N2_SIZE_BYTES, v, VEC_N1N2_SIZE_64); sha512(ss, mc, VEC_K_SIZE_BYTES + VEC_N_SIZE_BYTES + VEC_N1N2_SIZE_BYTES); diff --git a/crypto_kem/hqc-rmrs-256/avx2/reed_muller.c b/crypto_kem/hqc-rmrs-256/avx2/reed_muller.c index 543dd568..abc2c6ab 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/reed_muller.c +++ b/crypto_kem/hqc-rmrs-256/avx2/reed_muller.c @@ -15,10 +15,10 @@ // copy bit 0 into all bits of a 64 bit value #define BIT0MASK(x) (int64_t)(-((x) & 1)) -static void encode(uint64_t *word, uint32_t message); +static void encode(uint8_t *word, uint8_t message); static void expand_and_sum(__m256i *dst, const uint64_t *src); static void hadamard(__m256i *src, __m256i *dst); -static int32_t find_peaks(__m256i *transform); +static uint32_t find_peaks(__m256i *transform); @@ -39,28 +39,38 @@ static int32_t find_peaks(__m256i *transform); * @param[out] word An RM(1,7) codeword * @param[in] message A message to encode */ -static void encode(uint64_t *word, uint32_t message) { - // the four parts of the word are identical - // except for encoding bits 5 and 6 - uint32_t first_word; +static void encode(uint8_t *word, uint8_t message) { + uint32_t e; // bit 7 flips all the bits, do that first to save work - first_word = BIT0MASK(message >> 7); + e = BIT0MASK(message >> 7); // bits 0, 1, 2, 3, 4 are the same for all four longs // (Warning: in the bit matrix above, low bits are at the left!) - first_word ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; - first_word ^= BIT0MASK(message >> 1) & 0xcccccccc; - first_word ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; - first_word ^= BIT0MASK(message >> 3) & 0xff00ff00; - first_word ^= BIT0MASK(message >> 4) & 0xffff0000; + e ^= BIT0MASK(message >> 0) & 0xaaaaaaaa; + e ^= BIT0MASK(message >> 1) & 0xcccccccc; + e ^= BIT0MASK(message >> 2) & 0xf0f0f0f0; + e ^= BIT0MASK(message >> 3) & 0xff00ff00; + e ^= BIT0MASK(message >> 4) & 0xffff0000; // we can store this in the first quarter - ((uint32_t *) word)[0] = first_word; + word[0 + 0] = (e >> 0x00) & 0xff; + word[0 + 1] = (e >> 0x08) & 0xff; + word[0 + 2] = (e >> 0x10) & 0xff; + word[0 + 3] = (e >> 0x18) & 0xff; // bit 5 flips entries 1 and 3; bit 6 flips 2 and 3 - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[1] = first_word; - first_word ^= BIT0MASK(message >> 6); - ((uint32_t *) word)[3] = first_word; - first_word ^= BIT0MASK(message >> 5); - ((uint32_t *) word)[2] = first_word; + e ^= BIT0MASK(message >> 5); + word[4 + 0] = (e >> 0x00) & 0xff; + word[4 + 1] = (e >> 0x08) & 0xff; + word[4 + 2] = (e >> 0x10) & 0xff; + word[4 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 6); + word[12 + 0] = (e >> 0x00) & 0xff; + word[12 + 1] = (e >> 0x08) & 0xff; + word[12 + 2] = (e >> 0x10) & 0xff; + word[12 + 3] = (e >> 0x18) & 0xff; + e ^= BIT0MASK(message >> 5); + word[8 + 0] = (e >> 0x00) & 0xff; + word[8 + 1] = (e >> 0x08) & 0xff; + word[8 + 2] = (e >> 0x10) & 0xff; + word[8 + 3] = (e >> 0x18) & 0xff; } @@ -218,7 +228,7 @@ inline void hadamard(__m256i *src, __m256i *dst) { * * @param[in] transform Structure that contain the expanded codeword */ -inline int32_t find_peaks(__m256i *transform) { +inline uint32_t find_peaks(__m256i *transform) { // a whole lot of vector variables __m256i bitmap, abs_rows[8], bound, active_row, max_abs_rows; __m256i peak_mask; @@ -322,7 +332,7 @@ inline int32_t find_peaks(__m256i *transform) { result |= message_mask & ptr[i]; } message |= (0x8000 & ~result) >> 8; - return message; + return (uint32_t) message; } @@ -336,14 +346,13 @@ inline int32_t find_peaks(__m256i *transform) { * @param[out] cdw Array of size VEC_N1N2_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_N1_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg) { for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { - // fill entries i * MULTIPLICITY to (i+1) * MULTIPLICITY // encode first word - encode(&cdw[2 * i * MULTIPLICITY], ((uint8_t *)msg)[i]); + encode(&cdw[16 * i * MULTIPLICITY], msg[i]); // copy to other identical codewords for (size_t copy = 1; copy < MULTIPLICITY; copy++) { - memcpy(&cdw[2 * (i * MULTIPLICITY + copy)], &cdw[2 * i * MULTIPLICITY], 2 * sizeof(uint64_t)); + memcpy(&cdw[16 * i * MULTIPLICITY + 16 * copy], &cdw[16 * i * MULTIPLICITY], 16); } } } @@ -359,18 +368,18 @@ void PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *m * @param[out] msg Array of size VEC_N1_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1N2_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS256_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw) { +void PQCLEAN_HQCRMRS256_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw) { __m256i expanded[8]; __m256i transform[8]; for (size_t i = 0; i < VEC_N1_SIZE_BYTES; i++) { // collect the codewords - expand_and_sum(expanded, &cdw[2 * i * MULTIPLICITY]); + expand_and_sum(expanded, (uint64_t *)&cdw[16 * i * MULTIPLICITY]); // apply hadamard transform hadamard(expanded, transform); // fix the first entry to get the half Hadamard transform transform[0] -= _mm256_set_epi16(0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 64 * MULTIPLICITY); // finish the decoding - ((uint8_t *)msg)[i] = find_peaks(transform); + msg[i] = find_peaks(transform); } } diff --git a/crypto_kem/hqc-rmrs-256/avx2/reed_muller.h b/crypto_kem/hqc-rmrs-256/avx2/reed_muller.h index d51aefdd..7cb10aab 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/reed_muller.h +++ b/crypto_kem/hqc-rmrs-256/avx2/reed_muller.h @@ -12,9 +12,9 @@ #include #include -void PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS256_AVX2_reed_muller_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS256_AVX2_reed_muller_decode(uint64_t *msg, const uint64_t *cdw); +void PQCLEAN_HQCRMRS256_AVX2_reed_muller_decode(uint8_t *msg, const uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.c b/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.c index 55ae7e16..390315b0 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.c +++ b/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.c @@ -1,6 +1,7 @@ #include "fft.h" #include "gf.h" #include "parameters.h" +#include "parsing.h" #include "reed_solomon.h" #include #include @@ -30,37 +31,31 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values); * @param[out] cdw Array of size VEC_N1_SIZE_64 receiving the encoded message * @param[in] msg Array of size VEC_K_SIZE_64 storing the message */ -void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg) { +void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg) { uint8_t gate_value = 0; uint16_t tmp[PARAM_G] = {0}; uint16_t PARAM_RS_POLY [] = {RS_POLY_COEFS}; - uint8_t msg_bytes[PARAM_K] = {0}; - uint8_t cdw_bytes[PARAM_N1] = {0}; - - for (size_t i = 0; i < VEC_K_SIZE_64; ++i) { - for (size_t j = 0; j < 8; ++j) { - msg_bytes[i * 8 + j] = (uint8_t) (msg[i] >> (j * 8)); - } + for (size_t i = 0; i < PARAM_N1; i++) { + cdw[i] = 0; } for (int i = PARAM_K - 1; i >= 0; --i) { - gate_value = msg_bytes[i] ^ cdw_bytes[PARAM_N1 - PARAM_K - 1]; + gate_value = msg[i] ^ cdw[PARAM_N1 - PARAM_K - 1]; for (size_t j = 0; j < PARAM_G; ++j) { tmp[j] = PQCLEAN_HQCRMRS256_AVX2_gf_mul(gate_value, PARAM_RS_POLY[j]); } for (size_t k = PARAM_N1 - PARAM_K - 1; k; --k) { - cdw_bytes[k] = cdw_bytes[k - 1] ^ tmp[k]; + cdw[k] = cdw[k - 1] ^ tmp[k]; } - cdw_bytes[0] = tmp[0]; + cdw[0] = tmp[0]; } - memcpy(cdw_bytes + PARAM_N1 - PARAM_K, msg_bytes, PARAM_K); - memcpy(cdw, cdw_bytes, PARAM_N1); + memcpy(cdw + PARAM_N1 - PARAM_K, msg, PARAM_K); } @@ -312,8 +307,7 @@ static void correct_errors(uint8_t *cdw, const uint16_t *error_values) { * @param[out] msg Array of size VEC_K_SIZE_64 receiving the decoded message * @param[in] cdw Array of size VEC_N1_SIZE_64 storing the received word */ -void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { - uint8_t cdw_bytes[PARAM_N1] = {0}; +void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw) { uint16_t syndromes[2 * PARAM_DELTA] = {0}; uint16_t sigma[1 << PARAM_FFT] = {0}; uint8_t error[1 << PARAM_M] = {0}; @@ -321,11 +315,8 @@ void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { uint16_t error_values[PARAM_N1] = {0}; uint16_t deg; - // Copy the vector in an array of bytes - memcpy(cdw_bytes, cdw, PARAM_N1); - // Calculate the 2*PARAM_DELTA syndromes - compute_syndromes(syndromes, cdw_bytes); + compute_syndromes(syndromes, cdw); // Compute the error locator polynomial sigma // Sigma's degree is at most PARAM_DELTA but the FFT requires the extra room @@ -341,9 +332,9 @@ void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw) { compute_error_values(error_values, z, error); // Correct the errors - correct_errors(cdw_bytes, error_values); + correct_errors(cdw, error_values); // Retrieve the message from the decoded codeword - memcpy(msg, cdw_bytes + (PARAM_G - 1), PARAM_K); + memcpy(msg, cdw + (PARAM_G - 1), PARAM_K); } diff --git a/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.h b/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.h index ec3f8ec4..482f181a 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.h +++ b/crypto_kem/hqc-rmrs-256/avx2/reed_solomon.h @@ -14,9 +14,9 @@ static const uint16_t alpha_ij_pow [46][77] = {{2, 4, 8, 16, 32, 64, 128, 29, 58, 116, 232, 205, 135, 19, 38, 76, 152, 45, 90, 180, 117, 234, 201, 143, 3, 6, 12, 24, 48, 96, 192, 157, 39, 78, 156, 37, 74, 148, 53, 106, 212, 181, 119, 238, 193, 159, 35, 70, 140, 5, 10, 20, 40, 80, 160, 93, 186, 105, 210, 185, 111, 222, 161, 95, 190, 97, 194, 153, 47, 94, 188, 101, 202, 137, 15, 30, 60}, {4, 16, 64, 29, 116, 205, 19, 76, 45, 180, 234, 143, 6, 24, 96, 157, 78, 37, 148, 106, 181, 238, 159, 70, 5, 20, 80, 93, 105, 185, 222, 95, 97, 153, 94, 101, 137, 30, 120, 253, 211, 107, 177, 254, 223, 91, 113, 217, 67, 17, 68, 13, 52, 208, 103, 129, 62, 248, 199, 59, 236, 151, 102, 133, 46, 184, 218, 79, 33, 132, 42, 168, 154, 82, 85, 73, 57}, {8, 64, 58, 205, 38, 45, 117, 143, 12, 96, 39, 37, 53, 181, 193, 70, 10, 80, 186, 185, 161, 97, 47, 101, 15, 120, 231, 107, 127, 223, 182, 217, 134, 68, 26, 208, 206, 62, 237, 59, 197, 102, 23, 184, 169, 33, 21, 168, 41, 85, 146, 228, 115, 191, 145, 252, 179, 241, 219, 150, 196, 110, 87, 130, 100, 7, 56, 221, 166, 89, 242, 195, 86, 138, 36, 61, 245}, {16, 29, 205, 76, 180, 143, 24, 157, 37, 106, 238, 70, 20, 93, 185, 95, 153, 101, 30, 253, 107, 254, 91, 217, 17, 13, 208, 129, 248, 59, 151, 133, 184, 79, 132, 168, 82, 73, 228, 230, 198, 252, 123, 227, 150, 149, 165, 130, 200, 28, 221, 81, 121, 195, 172, 18, 61, 247, 203, 44, 250, 27, 173, 2, 32, 58, 135, 152, 117, 3, 48, 39, 74, 212, 193, 140, 40}, {32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59, 51, 46, 169, 132, 77, 85, 114, 230, 145, 215, 255, 150, 55, 174, 100, 28, 167, 89, 239, 172, 36, 244, 235, 44, 233, 108, 1, 32, 116, 38, 180, 3, 96, 156, 106, 193, 5, 160, 185, 190, 94, 15, 253, 214, 223, 226, 17, 26, 103, 124, 59, 51, 46}, {64, 205, 45, 143, 96, 37, 181, 70, 80, 185, 97, 101, 120, 107, 223, 217, 68, 208, 62, 59, 102, 184, 33, 168, 85, 228, 191, 252, 241, 150, 110, 130, 7, 221, 89, 195, 138, 61, 251, 44, 207, 173, 8, 58, 38, 117, 12, 39, 53, 193, 10, 186, 161, 47, 15, 231, 127, 182, 134, 26, 206, 237, 197, 23, 169, 21, 41, 146, 115, 145, 179, 219, 196, 87, 100, 56, 166}, {128, 19, 117, 24, 156, 181, 140, 93, 161, 94, 60, 107, 163, 67, 26, 129, 147, 102, 109, 132, 41, 57, 209, 252, 255, 98, 87, 200, 224, 89, 155, 18, 245, 11, 233, 173, 16, 232, 45, 3, 157, 53, 159, 40, 185, 194, 137, 231, 254, 226, 68, 189, 248, 197, 46, 158, 168, 170, 183, 145, 123, 75, 110, 25, 28, 166, 249, 69, 61, 235, 176, 54, 2, 29, 38, 234, 48}, {29, 76, 143, 157, 106, 70, 93, 95, 101, 253, 254, 217, 13, 129, 59, 133, 79, 168, 73, 230, 252, 227, 149, 130, 28, 81, 195, 18, 247, 44, 27, 2, 58, 152, 3, 39, 212, 140, 186, 190, 202, 231, 225, 175, 26, 31, 118, 23, 158, 77, 146, 209, 229, 219, 55, 25, 56, 162, 155, 36, 243, 88, 54, 4, 116, 45, 6, 78, 181, 5, 105, 97, 137, 211, 223, 67, 52}, {58, 45, 12, 37, 193, 80, 161, 101, 231, 223, 134, 208, 237, 102, 169, 168, 146, 191, 179, 150, 87, 7, 166, 195, 36, 251, 125, 173, 64, 38, 143, 39, 181, 10, 185, 47, 120, 127, 217, 26, 62, 197, 184, 21, 85, 115, 252, 219, 110, 100, 221, 242, 138, 245, 44, 54, 8, 205, 117, 96, 53, 70, 186, 97, 15, 107, 182, 68, 206, 59, 23, 33, 41, 228, 145, 241, 196}, {116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44, 108, 32, 38, 3, 156, 193, 160, 190, 15, 214, 226, 26, 124, 51, 169, 77, 114, 145, 255, 55, 100, 167, 239, 36, 235, 233, 1, 116, 180, 96, 106, 5, 185, 94, 253, 223, 17, 103, 59, 46, 132, 85, 230, 215, 150, 174, 28, 89, 172, 244, 44, 108, 32}, {232, 234, 39, 238, 160, 97, 60, 254, 134, 103, 118, 184, 84, 57, 145, 227, 220, 7, 162, 172, 245, 176, 71, 58, 180, 192, 181, 40, 95, 15, 177, 175, 208, 147, 46, 21, 73, 99, 241, 55, 200, 166, 43, 122, 44, 216, 128, 45, 48, 106, 10, 222, 202, 107, 226, 52, 237, 133, 66, 85, 209, 123, 196, 50, 167, 195, 144, 11, 54, 32, 76, 12, 148, 140, 185, 188, 211}, {205, 143, 37, 70, 185, 101, 107, 217, 208, 59, 184, 168, 228, 252, 150, 130, 221, 195, 61, 44, 173, 58, 117, 39, 193, 186, 47, 231, 182, 26, 237, 23, 21, 146, 145, 219, 87, 56, 242, 36, 139, 54, 64, 45, 96, 181, 80, 97, 120, 223, 68, 62, 102, 33, 85, 191, 241, 110, 7, 89, 138, 251, 207, 8, 38, 12, 53, 10, 161, 15, 127, 134, 206, 197, 169, 41, 115}, {135, 6, 53, 20, 190, 120, 163, 13, 237, 46, 84, 228, 229, 98, 100, 81, 69, 251, 131, 32, 45, 192, 238, 186, 94, 187, 217, 189, 236, 169, 82, 209, 241, 220, 28, 242, 72, 22, 173, 116, 201, 37, 140, 222, 15, 254, 34, 62, 204, 132, 146, 63, 75, 130, 167, 43, 245, 250, 4, 38, 24, 212, 80, 194, 253, 182, 52, 147, 184, 77, 183, 179, 149, 141, 89, 9, 203}, {19, 24, 181, 93, 94, 107, 67, 129, 102, 132, 57, 252, 98, 200, 89, 18, 11, 173, 232, 3, 53, 40, 194, 231, 226, 189, 197, 158, 170, 145, 75, 25, 166, 69, 235, 54, 29, 234, 37, 5, 95, 120, 91, 52, 59, 218, 82, 191, 227, 174, 221, 43, 247, 207, 32, 90, 39, 35, 111, 15, 225, 136, 237, 92, 77, 115, 246, 220, 56, 239, 122, 125, 4, 76, 96, 238, 105}, {38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169, 85, 145, 150, 100, 89, 36, 44, 1, 38, 96, 193, 185, 15, 223, 26, 59, 169}, {76, 157, 70, 95, 253, 217, 129, 133, 168, 230, 227, 130, 81, 18, 44, 2, 152, 39, 140, 190, 231, 175, 31, 23, 77, 209, 219, 25, 162, 36, 88, 4, 45, 78, 5, 97, 211, 67, 62, 46, 154, 191, 171, 50, 89, 72, 176, 8, 90, 156, 10, 194, 187, 134, 124, 92, 41, 99, 75, 100, 178, 144, 125, 16, 180, 37, 20, 153, 107, 17, 248, 184, 82, 198, 150, 200, 121}, {152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78, 10, 153, 214, 68, 147, 79, 146, 215, 220, 221, 69, 11, 1, 152, 78}, {45, 37, 80, 101, 223, 208, 102, 168, 191, 150, 7, 195, 251, 173, 38, 39, 10, 47, 127, 26, 197, 21, 115, 219, 100, 242, 245, 54, 205, 96, 70, 97, 107, 68, 59, 33, 228, 241, 130, 89, 61, 207, 58, 12, 193, 161, 231, 134, 237, 169, 146, 179, 87, 166, 36, 125, 64, 143, 181, 185, 120, 217, 62, 184, 85, 252, 110, 221, 138, 44, 8, 117, 53, 186, 15, 182, 206}, {90, 148, 186, 30, 226, 62, 109, 73, 179, 174, 162, 61, 131, 232, 96, 140, 153, 127, 52, 51, 168, 99, 98, 56, 172, 22, 8, 234, 212, 185, 240, 67, 237, 79, 114, 241, 25, 121, 245, 108, 19, 39, 20, 188, 223, 189, 133, 41, 63, 55, 221, 9, 176, 64, 3, 238, 161, 211, 34, 59, 66, 183, 219, 200, 239, 251, 71, 152, 37, 160, 137, 182, 129, 92, 85, 229, 165}, {180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36, 233, 116, 96, 5, 94, 223, 103, 46, 85, 215, 174, 89, 244, 108, 38, 156, 160, 15, 226, 124, 169, 114, 255, 100, 239, 235, 1, 180, 106, 185, 253, 17, 59, 132, 230, 150, 28, 172, 44, 32, 3, 193, 190, 214, 26, 51, 77, 145, 55, 167, 36, 233, 116}, {117, 181, 161, 107, 26, 102, 41, 252, 87, 89, 245, 173, 45, 53, 185, 231, 68, 197, 168, 145, 110, 166, 61, 54, 38, 37, 186, 120, 134, 59, 21, 191, 196, 221, 36, 207, 205, 39, 80, 15, 217, 237, 33, 115, 150, 56, 138, 125, 58, 96, 10, 101, 182, 62, 169, 228, 219, 7, 86, 44, 64, 12, 70, 47, 223, 206, 184, 146, 241, 100, 195, 139, 8, 143, 193, 97, 127}, {234, 238, 97, 254, 103, 184, 57, 227, 7, 172, 176, 58, 192, 40, 15, 175, 147, 21, 99, 55, 166, 122, 216, 45, 106, 222, 107, 52, 133, 85, 123, 50, 195, 11, 32, 12, 140, 188, 182, 124, 158, 115, 49, 224, 36, 131, 19, 37, 105, 253, 68, 151, 154, 252, 174, 121, 251, 2, 201, 193, 194, 225, 206, 109, 114, 219, 14, 69, 125, 116, 157, 80, 30, 67, 59, 42, 198}, {201, 159, 47, 91, 124, 33, 209, 149, 166, 244, 71, 117, 238, 194, 223, 31, 79, 115, 98, 167, 61, 216, 90, 181, 190, 254, 206, 218, 213, 150, 224, 72, 54, 152, 106, 161, 177, 189, 184, 114, 171, 56, 18, 131, 38, 148, 111, 107, 104, 46, 146, 227, 14, 138, 233, 135, 37, 210, 211, 26, 133, 170, 241, 141, 172, 125, 232, 78, 186, 253, 136, 102, 164, 123, 100, 43, 88}, {143, 70, 101, 217, 59, 168, 252, 130, 195, 44, 58, 39, 186, 231, 26, 23, 146, 219, 56, 36, 54, 45, 181, 97, 223, 62, 33, 191, 110, 89, 251, 8, 12, 10, 15, 134, 197, 41, 179, 100, 86, 125, 205, 37, 185, 107, 208, 184, 228, 150, 221, 61, 173, 117, 193, 47, 182, 237, 21, 145, 87, 242, 139, 64, 96, 80, 120, 68, 102, 85, 241, 7, 138, 207, 38, 53, 161}, {3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223, 124, 132, 145, 174, 239, 44, 116, 156, 185, 214, 103, 169, 230, 55, 89, 235, 32, 96, 160, 253, 26, 46, 114, 150, 167, 244, 1, 3, 5, 15, 17, 51, 85, 255, 28, 36, 108, 180, 193, 94, 226, 59, 77, 215, 100, 172, 233, 38, 106, 190, 223, 124, 132}, {6, 20, 120, 13, 46, 228, 98, 81, 251, 32, 192, 186, 187, 189, 169, 209, 220, 242, 22, 116, 37, 222, 254, 62, 132, 63, 130, 43, 250, 38, 212, 194, 182, 147, 77, 179, 141, 9, 54, 180, 159, 101, 67, 151, 85, 227, 112, 61, 142, 3, 10, 60, 136, 23, 114, 49, 166, 243, 16, 96, 93, 211, 208, 218, 230, 110, 121, 11, 58, 156, 111, 127, 31, 66, 145, 65, 155}, {12, 80, 231, 208, 169, 191, 87, 195, 125, 38, 181, 47, 217, 197, 85, 219, 221, 245, 8, 96, 186, 107, 206, 33, 145, 130, 86, 207, 45, 193, 101, 134, 102, 146, 150, 166, 251, 64, 39, 185, 127, 62, 21, 252, 100, 138, 54, 117, 70, 15, 68, 23, 228, 196, 89, 139, 58, 37, 161, 223, 237, 168, 179, 7, 36, 173, 143, 10, 120, 26, 184, 115, 110, 242, 44, 205, 53}, {24, 93, 107, 129, 132, 252, 200, 18, 173, 3, 40, 231, 189, 158, 145, 25, 69, 54, 234, 5, 120, 52, 218, 191, 174, 43, 207, 90, 35, 15, 136, 92, 115, 220, 239, 125, 76, 238, 101, 17, 133, 228, 149, 121, 44, 135, 212, 47, 175, 51, 146, 49, 162, 139, 116, 148, 97, 113, 236, 85, 171, 83, 251, 128, 156, 161, 163, 147, 41, 255, 224, 245, 16, 157, 185, 254, 248}, {48, 105, 127, 248, 77, 241, 224, 247, 64, 156, 95, 182, 236, 170, 150, 162, 11, 205, 212, 94, 134, 133, 213, 110, 239, 250, 45, 35, 30, 26, 218, 99, 130, 69, 108, 143, 40, 211, 206, 132, 229, 7, 144, 2, 96, 210, 254, 237, 154, 255, 221, 243, 128, 37, 190, 113, 197, 73, 49, 89, 22, 135, 181, 188, 17, 23, 183, 220, 195, 233, 90, 70, 60, 52, 169, 198, 25}, {96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38, 193, 15, 26, 169, 145, 100, 36, 1, 96, 185, 223, 59, 85, 150, 89, 44, 38}, {192, 222, 182, 151, 114, 110, 155, 27, 143, 160, 177, 237, 82, 75, 89, 88, 152, 70, 240, 103, 21, 123, 224, 251, 116, 212, 101, 136, 218, 145, 200, 144, 8, 78, 190, 217, 204, 183, 87, 172, 216, 12, 105, 225, 59, 170, 98, 242, 250, 180, 10, 211, 31, 168, 255, 83, 139, 135, 238, 15, 52, 158, 252, 14, 244, 64, 74, 153, 134, 46, 209, 130, 9, 142, 96, 111, 91}, {157, 95, 217, 133, 230, 130, 18, 2, 39, 190, 175, 23, 209, 25, 36, 4, 78, 97, 67, 46, 191, 50, 72, 8, 156, 194, 134, 92, 99, 100, 144, 16, 37, 153, 17, 184, 198, 200, 61, 32, 74, 47, 34, 109, 145, 141, 122, 64, 148, 94, 68, 218, 63, 7, 244, 128, 53, 188, 136, 169, 126, 14, 245, 29, 106, 101, 13, 79, 252, 28, 247, 58, 212, 202, 26, 158, 229}, {39, 97, 134, 184, 145, 7, 245, 58, 181, 15, 208, 21, 241, 166, 44, 45, 10, 107, 237, 85, 196, 195, 54, 12, 185, 182, 102, 115, 130, 36, 8, 37, 47, 68, 169, 252, 56, 251, 205, 193, 120, 206, 168, 219, 89, 125, 117, 80, 127, 59, 146, 110, 86, 173, 96, 161, 217, 23, 191, 100, 61, 64, 53, 101, 26, 33, 179, 221, 139, 38, 70, 231, 62, 41, 150, 242, 207}, {78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153, 68, 79, 215, 221, 11, 152, 10, 214, 147, 146, 220, 69, 1, 78, 153}, {156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15, 103, 77, 150, 239, 108, 96, 190, 17, 169, 215, 167, 44, 180, 160, 223, 51, 230, 100, 244, 116, 193, 253, 124, 85, 55, 172, 1, 156, 94, 26, 132, 255, 89, 233, 3, 185, 226, 46, 145, 28, 235, 38, 5, 214, 59, 114, 174, 36, 32, 106, 15, 103, 77}, {37, 101, 208, 168, 150, 195, 173, 39, 47, 26, 21, 219, 242, 54, 96, 97, 68, 33, 241, 89, 207, 12, 161, 134, 169, 179, 166, 125, 143, 185, 217, 184, 252, 221, 44, 117, 186, 182, 23, 145, 56, 139, 45, 80, 223, 102, 191, 7, 251, 38, 10, 127, 197, 115, 100, 245, 205, 70, 107, 59, 228, 130, 61, 58, 193, 231, 237, 146, 87, 36, 64, 181, 120, 62, 85, 110, 138}, {74, 137, 206, 82, 55, 138, 16, 212, 120, 124, 73, 87, 72, 29, 193, 211, 147, 228, 25, 244, 205, 140, 177, 197, 230, 141, 251, 76, 40, 223, 204, 198, 56, 11, 180, 186, 113, 92, 252, 167, 176, 143, 111, 67, 169, 123, 162, 207, 24, 190, 68, 66, 227, 242, 108, 157, 47, 52, 84, 150, 155, 142, 37, 202, 103, 41, 149, 69, 8, 106, 60, 62, 170, 165, 36, 128, 238}, {148, 30, 62, 73, 174, 61, 232, 140, 127, 51, 99, 56, 22, 234, 185, 67, 79, 241, 121, 108, 39, 188, 189, 41, 55, 9, 64, 238, 211, 59, 183, 200, 251, 152, 160, 182, 92, 229, 166, 233, 24, 97, 13, 42, 150, 43, 2, 53, 60, 124, 146, 65, 122, 205, 5, 254, 102, 198, 112, 44, 201, 111, 134, 158, 255, 242, 216, 78, 101, 103, 82, 110, 18, 128, 193, 187, 118}, {53, 120, 237, 228, 100, 251, 45, 186, 217, 169, 241, 242, 173, 37, 15, 62, 146, 130, 245, 38, 80, 182, 184, 179, 89, 54, 39, 101, 206, 85, 87, 61, 205, 10, 223, 23, 252, 166, 207, 96, 47, 208, 41, 110, 36, 58, 70, 127, 102, 145, 221, 125, 12, 97, 26, 168, 196, 138, 64, 193, 107, 197, 191, 56, 44, 143, 161, 68, 21, 150, 86, 8, 181, 231, 59, 115, 7}, {106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100, 235, 180, 185, 17, 132, 150, 172, 32, 193, 214, 51, 145, 167, 233, 96, 94, 103, 85, 174, 244, 38, 160, 226, 169, 255, 239, 1, 106, 253, 59, 230, 28, 44, 3, 190, 26, 77, 55, 36, 116, 5, 223, 46, 215, 89, 108, 156, 15, 124, 114, 100, 235, 180}, {212, 211, 197, 198, 167, 207, 157, 202, 62, 114, 200, 139, 201, 95, 26, 154, 220, 61, 19, 160, 217, 158, 171, 86, 32, 159, 127, 133, 229, 89, 216, 74, 120, 147, 230, 56, 176, 24, 47, 103, 170, 130, 243, 90, 185, 34, 42, 196, 18, 116, 10, 91, 109, 241, 239, 2, 181, 187, 151, 145, 83, 131, 39, 137, 124, 228, 141, 11, 143, 190, 52, 41, 165, 122, 38, 93, 175}, {181, 107, 102, 252, 89, 173, 53, 231, 197, 145, 166, 54, 37, 120, 59, 191, 221, 207, 39, 15, 237, 115, 56, 125, 96, 101, 62, 228, 7, 44, 12, 47, 206, 146, 100, 139, 143, 97, 208, 85, 130, 251, 117, 161, 26, 41, 87, 245, 45, 185, 68, 168, 110, 61, 38, 186, 134, 21, 196, 36, 205, 80, 217, 33, 150, 138, 58, 10, 182, 169, 219, 86, 64, 70, 223, 184, 241}, {119, 177, 23, 123, 239, 8, 159, 225, 184, 255, 43, 64, 140, 91, 169, 171, 69, 58, 20, 226, 33, 49, 18, 205, 160, 67, 21, 149, 144, 38, 105, 34, 168, 220, 244, 45, 111, 13, 41, 174, 243, 117, 95, 104, 85, 25, 203, 143, 194, 103, 146, 200, 22, 12, 94, 31, 228, 14, 176, 96, 202, 248, 115, 112, 233, 39, 30, 147, 191, 167, 27, 37, 240, 236, 145, 81, 216}, {238, 254, 184, 227, 172, 58, 40, 175, 21, 55, 122, 45, 222, 52, 85, 50, 11, 12, 188, 124, 115, 224, 131, 37, 253, 151, 252, 121, 2, 193, 225, 109, 219, 69, 116, 80, 67, 42, 110, 244, 90, 161, 104, 170, 100, 22, 24, 101, 248, 230, 221, 27, 74, 231, 51, 229, 242, 4, 159, 223, 218, 171, 138, 232, 160, 134, 84, 220, 245, 180, 95, 208, 73, 200, 44, 48, 202}, {193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85, 100, 44, 96, 15, 59, 145, 89, 1, 193, 223, 169, 150, 36, 38, 185, 26, 85}, {159, 91, 33, 149, 244, 117, 194, 31, 115, 167, 216, 181, 254, 218, 150, 72, 152, 161, 189, 114, 56, 131, 148, 107, 46, 227, 138, 135, 210, 26, 170, 141, 125, 78, 253, 102, 123, 43, 58, 160, 34, 41, 25, 22, 96, 30, 236, 252, 249, 32, 10, 175, 84, 87, 235, 6, 101, 199, 198, 89, 2, 35, 182, 66, 55, 245, 234, 153, 62, 230, 83, 173, 119, 225, 169, 49, 144}}; -void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_encode(uint64_t *cdw, const uint64_t *msg); +void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_encode(uint8_t *cdw, const uint8_t *msg); -void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint64_t *msg, uint64_t *cdw); +void PQCLEAN_HQCRMRS256_AVX2_reed_solomon_decode(uint8_t *msg, uint8_t *cdw); #endif diff --git a/crypto_kem/hqc-rmrs-256/avx2/vector.c b/crypto_kem/hqc-rmrs-256/avx2/vector.c index 575abe76..9728d063 100644 --- a/crypto_kem/hqc-rmrs-256/avx2/vector.c +++ b/crypto_kem/hqc-rmrs-256/avx2/vector.c @@ -122,22 +122,6 @@ void PQCLEAN_HQCRMRS256_AVX2_vect_set_random(AES_XOF_struct *ctx, uint64_t *v) { -/** - * @brief Generates a random vector - * - * This function generates a random binary vector. It uses the the randombytes function. - * - * @param[in] v Pointer to an array - */ -void PQCLEAN_HQCRMRS256_AVX2_vect_set_random_from_randombytes(uint64_t *v) { - uint8_t rand_bytes [VEC_K_SIZE_BYTES] = {0}; - - randombytes(rand_bytes, VEC_K_SIZE_BYTES); - PQCLEAN_HQCRMRS256_AVX2_load8_arr(v, VEC_K_SIZE_64, rand_bytes, VEC_K_SIZE_BYTES); -} - - - /** * @brief Adds two vectors * diff --git a/test/duplicate_consistency/hqc-128_avx2.yml b/test/duplicate_consistency/hqc-128_avx2.yml index 289ec7ca..477a82d1 100644 --- a/test/duplicate_consistency/hqc-128_avx2.yml +++ b/test/duplicate_consistency/hqc-128_avx2.yml @@ -1,21 +1,21 @@ consistency_checks: -- source: - scheme: hqc-128 - implementation: clean - files: + - source: + scheme: hqc-128 + implementation: clean + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-192 - implementation: clean - files: + - source: + scheme: hqc-192 + implementation: clean + files: - code.h - hqc.h -- source: - scheme: hqc-192 - implementation: avx2 - files: + - source: + scheme: hqc-192 + implementation: avx2 + files: - alpha_table.h - bch.h - code.h @@ -34,16 +34,17 @@ consistency_checks: - kem.c - parsing.c - repetition.c -- source: - scheme: hqc-256 - implementation: clean - files: + - vector.c + - source: + scheme: hqc-256 + implementation: clean + files: - code.h - hqc.h -- source: - scheme: hqc-256 - implementation: avx2 - files: + - source: + scheme: hqc-256 + implementation: avx2 + files: - bch.h - code.h - fft.h @@ -59,55 +60,29 @@ consistency_checks: - hqc.c - kem.c - parsing.c -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h + - vector.c + - source: + scheme: hqc-rmrs-128 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - gf2x.c - - hqc.c - - kem.c - parsing.c - - vector.c -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c - - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c - - vector.c diff --git a/test/duplicate_consistency/hqc-128_clean.yml b/test/duplicate_consistency/hqc-128_clean.yml index 6edb1566..a20fa459 100644 --- a/test/duplicate_consistency/hqc-128_clean.yml +++ b/test/duplicate_consistency/hqc-128_clean.yml @@ -1,15 +1,15 @@ consistency_checks: -- source: - scheme: hqc-128 - implementation: avx2 - files: + - source: + scheme: hqc-128 + implementation: avx2 + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-192 - implementation: clean - files: + - source: + scheme: hqc-192 + implementation: clean + files: - bch.h - code.h - fft.h @@ -27,16 +27,16 @@ consistency_checks: - kem.c - parsing.c - vector.c -- source: - scheme: hqc-192 - implementation: avx2 - files: + - source: + scheme: hqc-192 + implementation: avx2 + files: - code.h - hqc.h -- source: - scheme: hqc-256 - implementation: clean - files: + - source: + scheme: hqc-256 + implementation: clean + files: - bch.h - code.h - fft.h @@ -54,16 +54,16 @@ consistency_checks: - kem.c - parsing.c - vector.c -- source: - scheme: hqc-256 - implementation: avx2 - files: + - source: + scheme: hqc-256 + implementation: avx2 + files: - code.h - hqc.h -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: + - source: + scheme: hqc-rmrs-128 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -71,16 +71,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -88,16 +82,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -105,9 +93,3 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h - - hqc.h diff --git a/test/duplicate_consistency/hqc-192_avx2.yml b/test/duplicate_consistency/hqc-192_avx2.yml index df799ca3..1168e122 100644 --- a/test/duplicate_consistency/hqc-192_avx2.yml +++ b/test/duplicate_consistency/hqc-192_avx2.yml @@ -1,21 +1,21 @@ consistency_checks: -- source: - scheme: hqc-192 - implementation: clean - files: + - source: + scheme: hqc-192 + implementation: clean + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-256 - implementation: clean - files: + - source: + scheme: hqc-256 + implementation: clean + files: - code.h - hqc.h -- source: - scheme: hqc-256 - implementation: avx2 - files: + - source: + scheme: hqc-256 + implementation: avx2 + files: - bch.h - code.h - fft.h @@ -32,52 +32,28 @@ consistency_checks: - kem.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-128 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - gf2x.c - - hqc.c - - kem.c - parsing.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c diff --git a/test/duplicate_consistency/hqc-192_clean.yml b/test/duplicate_consistency/hqc-192_clean.yml index 9d48006b..ca916a24 100644 --- a/test/duplicate_consistency/hqc-192_clean.yml +++ b/test/duplicate_consistency/hqc-192_clean.yml @@ -1,15 +1,15 @@ consistency_checks: -- source: - scheme: hqc-192 - implementation: avx2 - files: + - source: + scheme: hqc-192 + implementation: avx2 + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-256 - implementation: clean - files: + - source: + scheme: hqc-256 + implementation: clean + files: - bch.h - code.h - fft.h @@ -28,16 +28,16 @@ consistency_checks: - kem.c - parsing.c - vector.c -- source: - scheme: hqc-256 - implementation: avx2 - files: + - source: + scheme: hqc-256 + implementation: avx2 + files: - code.h - hqc.h -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: + - source: + scheme: hqc-rmrs-128 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -45,16 +45,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -62,16 +56,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -79,9 +67,3 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h - - hqc.h diff --git a/test/duplicate_consistency/hqc-256_avx2.yml b/test/duplicate_consistency/hqc-256_avx2.yml index 79407a51..ba542d33 100644 --- a/test/duplicate_consistency/hqc-256_avx2.yml +++ b/test/duplicate_consistency/hqc-256_avx2.yml @@ -1,57 +1,33 @@ consistency_checks: -- source: - scheme: hqc-256 - implementation: clean - files: + - source: + scheme: hqc-256 + implementation: clean + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-128 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - - hqc.c - - kem.c - parsing.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - gf2x.h - - hqc.h - parsing.h - vector.h - gf2x.c - - hqc.c - - kem.c - parsing.c diff --git a/test/duplicate_consistency/hqc-256_clean.yml b/test/duplicate_consistency/hqc-256_clean.yml index dd5db480..272f9d3c 100644 --- a/test/duplicate_consistency/hqc-256_clean.yml +++ b/test/duplicate_consistency/hqc-256_clean.yml @@ -1,15 +1,15 @@ consistency_checks: -- source: - scheme: hqc-256 - implementation: avx2 - files: + - source: + scheme: hqc-256 + implementation: avx2 + files: - api.h - code.h - hqc.h -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: + - source: + scheme: hqc-rmrs-128 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -17,16 +17,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -34,16 +28,10 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: - - code.h - - hqc.h -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - gf2x.h - parsing.h - vector.h @@ -51,9 +39,3 @@ consistency_checks: - gf.c - parsing.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: - - code.h - - hqc.h diff --git a/test/duplicate_consistency/hqc-rmrs-128_avx2.yml b/test/duplicate_consistency/hqc-rmrs-128_avx2.yml index 3ccb2095..3815739f 100644 --- a/test/duplicate_consistency/hqc-rmrs-128_avx2.yml +++ b/test/duplicate_consistency/hqc-rmrs-128_avx2.yml @@ -1,23 +1,31 @@ consistency_checks: -- source: - scheme: hqc-rmrs-128 - implementation: clean - files: + - source: + scheme: hqc-rmrs-128 + implementation: clean + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: - code.h - fft.h - gf2x.h @@ -35,17 +43,22 @@ consistency_checks: - reed_muller.c - reed_solomon.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h + - reed_solomon.h - fft.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - code.h - fft.h - gf2x.h diff --git a/test/duplicate_consistency/hqc-rmrs-128_clean.yml b/test/duplicate_consistency/hqc-rmrs-128_clean.yml index f0eabae8..0d1e3b67 100644 --- a/test/duplicate_consistency/hqc-rmrs-128_clean.yml +++ b/test/duplicate_consistency/hqc-rmrs-128_clean.yml @@ -1,16 +1,20 @@ consistency_checks: -- source: - scheme: hqc-rmrs-128 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-128 + implementation: avx2 + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: - code.h - fft.h - gf2x.h @@ -29,17 +33,21 @@ consistency_checks: - reed_muller.c - reed_solomon.c - vector.c -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - code.h - fft.h - gf2x.h @@ -58,10 +66,14 @@ consistency_checks: - reed_muller.c - reed_solomon.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c + - reed_solomon.c diff --git a/test/duplicate_consistency/hqc-rmrs-192_avx2.yml b/test/duplicate_consistency/hqc-rmrs-192_avx2.yml index b0ca9c1d..69894460 100644 --- a/test/duplicate_consistency/hqc-rmrs-192_avx2.yml +++ b/test/duplicate_consistency/hqc-rmrs-192_avx2.yml @@ -1,23 +1,31 @@ consistency_checks: -- source: - scheme: hqc-rmrs-192 - implementation: clean - files: + - source: + scheme: hqc-rmrs-192 + implementation: clean + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - code.h - fft.h - gf2x.h diff --git a/test/duplicate_consistency/hqc-rmrs-192_clean.yml b/test/duplicate_consistency/hqc-rmrs-192_clean.yml index 8a84c41b..358f8ffb 100644 --- a/test/duplicate_consistency/hqc-rmrs-192_clean.yml +++ b/test/duplicate_consistency/hqc-rmrs-192_clean.yml @@ -1,16 +1,20 @@ consistency_checks: -- source: - scheme: hqc-rmrs-192 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-192 + implementation: avx2 + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - reed_solomon.c + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - code.h - fft.h - gf2x.h @@ -29,10 +33,14 @@ consistency_checks: - reed_muller.c - reed_solomon.c - vector.c -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c + - reed_solomon.c diff --git a/test/duplicate_consistency/hqc-rmrs-256_avx2.yml b/test/duplicate_consistency/hqc-rmrs-256_avx2.yml index f9ff518a..c28ea654 100644 --- a/test/duplicate_consistency/hqc-rmrs-256_avx2.yml +++ b/test/duplicate_consistency/hqc-rmrs-256_avx2.yml @@ -1,9 +1,13 @@ consistency_checks: -- source: - scheme: hqc-rmrs-256 - implementation: clean - files: + - source: + scheme: hqc-rmrs-256 + implementation: clean + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c + - reed_solomon.c diff --git a/test/duplicate_consistency/hqc-rmrs-256_clean.yml b/test/duplicate_consistency/hqc-rmrs-256_clean.yml index 26b13d38..fa8019e1 100644 --- a/test/duplicate_consistency/hqc-rmrs-256_clean.yml +++ b/test/duplicate_consistency/hqc-rmrs-256_clean.yml @@ -1,9 +1,13 @@ consistency_checks: -- source: - scheme: hqc-rmrs-256 - implementation: avx2 - files: + - source: + scheme: hqc-rmrs-256 + implementation: avx2 + files: - api.h + - code.h - fft.h - gf.h + - hqc.h + - reed_muller.h - fft.c + - reed_solomon.c