Kyber: Implementation in wolfSSL #7318

SparkiDev · 2024-03-12T00:04:40Z

Description

Put Kyber implementation into wolfSSL.

Testing

Regression tested kyber.
--enable-kyber no defaults to wolfSSL when liboqs is not specified.

Checklist

added tests
updated/added doxygen
updated appropriate READMEs
Updated manual and documentation

dgarske

./configure --enable-kyber --enable-smallstack --enable-intelasm && make
...
wolfcrypt/src/wc_kyber_asm.S:12065:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12066:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12126:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12127:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12187:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12188:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12248:21: error: invalid operand for instruction
  CC       examples/client/client-client.o
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12249:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12309:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12310:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12370:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12371:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12431:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12432:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12495:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12496:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12686:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12687:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12751:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12752:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~
wolfcrypt/src/wc_kyber_asm.S:12817:21: error: invalid operand for instruction
        movzbl %bl, %r10b
                    ^~~~~
wolfcrypt/src/wc_kyber_asm.S:12818:21: error: invalid operand for instruction
        movzbl %bl, %cl
                    ^~~

Apple clang version 15.0.0 (clang-1500.3.9.4)
Target: x86_64-apple-darwin23.3.0
Thread model: posix```

dgarske · 2024-03-13T21:50:56Z

wolfcrypt/src/wc_kyber_poly.c

+
+/* Initialize Kyber implementation.
+ */
+void kyber_init()


void kyber_init() ^ void 1 error generated.```

dgarske · 2024-03-13T21:52:30Z

wolfcrypt/src/wc_kyber.c

+/**
+ * Make a Kyber key object using a random number generator.
+ *
+ * @param  [in, out]  key   Kyber key ovject.


ovject -> object. 4 places in code.

dgarske · 2024-03-13T21:53:02Z

wolfcrypt/src/wc_kyber_poly.c

+}
+
+
+/* Encapsuluate message.


Encapsuluate -> Encapsulate. Two places

dgarske · 2024-03-13T21:53:39Z

wolfcrypt/src/wc_kyber_poly.c

+        r += 4;
+    }
+#else
+    /* Calculate sizteen integer coefficients at a time. */


sizteen -> sixteen

dgarske · 2024-03-13T21:55:37Z

wolfcrypt/src/wc_kyber_poly.c

+}
+
+/* Get the noise/error by calculating random bytes and sampling to a binomial
+ * deistributions.


deistributions -> distributions

SparkiDev · 2024-03-13T22:16:59Z

Assembly code fixed.

dgarske

Builds, but fails.

./configure --enable-kyber --enable-smallstack --enable-intelasm && make
./wolfcrypt/test/testwolfcrypt
...
KYBER    test failed!
 error L=35378
 [fiducial line numbers: 8247 25532 38178 50526]

Many build errors with: ./configure --enable-kyber=small --enable-smallstack --enable-intelasm && make. Lots also without the intelasm.

./wolfssl/wolfcrypt/wc_kyber.h:124:18: error: use of undeclared identifier 'KYBER512_K'; did you mean 'KYBER512'?
    sword16 priv[KYBER_MAX_K * KYBER_N];
                 ^~~~~~~~~~~
                 KYBER512
./wolfssl/wolfcrypt/kyber.h:148:37: note: expanded from macro 'KYBER_MAX_K'
#define KYBER_MAX_K                 KYBER512_K
                                    ^
./wolfssl/wolfcrypt/kyber.h:156:5: note: 'KYBER512' declared here
    KYBER512  = 0,
    ^
In file included from wolfcrypt/benchmark/benchmark.c:171:
./wolfssl/wolfcrypt/wc_kyber.h:126:17: error: use of undeclared identifier 'KYBER512_K'; did you mean 'KYBER512'?
    sword16 pub[KYBER_MAX_K * KYBER_N];
                ^~~~~~~~~~~
                KYBER512
./wolfssl/wolfcrypt/kyber.h:148:37: note: expanded from macro 'KYBER_MAX_K'
#define KYBER_MAX_K                 KYBER512_K
                                    ^
./wolfssl/wolfcrypt/kyber.h:156:5: note: 'KYBER512' declared here
    KYBER512  = 0,
    ^
In file included from wolfcrypt/src/wc_kyber_poly.c:31:
./wolfssl/wolfcrypt/wc_kyber.h:124:18: error: use of undeclared identifier 'KYBER512_K'; did you mean 'KYBER512'?
    sword16 priv[KYBER_MAX_K * KYBER_N];
                 ^~~~~~~~~~~
                 KYBER512
./wolfssl/wolfcrypt/kyber.h:148:37: note: expanded from macro 'KYBER_MAX_K'
#define KYBER_MAX_K                 KYBER512_K
                                    ^
./wolfssl/wolfcrypt/kyber.h:156:5: note: 'KYBER512' declared here
    KYBER512  = 0,
    ^
In file included from wolfcrypt/src/wc_kyber_poly.c:31:
./wolfssl/wolfcrypt/wc_kyber.h:126:17: error: use of undeclared identifier 'KYBER512_K'; did you mean 'KYBER512'?
    sword16 pub[KYBER_MAX_K * KYBER_N];
                ^~~~~~~~~~~
                KYBER512
./wolfssl/wolfcrypt/kyber.h:148:37: note: expanded from macro 'KYBER_MAX_K'
#define KYBER_MAX_K                 KYBER512_K
                                    ^
./wolfssl/wolfcrypt/kyber.h:156:5: note: 'KYBER512' declared here
    KYBER512  = 0,
    ^
wolfcrypt/src/wc_kyber_poly.c:1280:35: error: unused parameter 'prf' [-Werror,-Wunused-parameter]
int kyber_gen_matrix(KYBER_PRF_T* prf, sword16* a, int kp, byte* seed,
                                  ^
wolfcrypt/src/wc_kyber_poly.c:1280:49: error: unused parameter 'a' [-Werror,-Wunused-parameter]
int kyber_gen_matrix(KYBER_PRF_T* prf, sword16* a, int kp, byte* seed,
                                                ^
wolfcrypt/src/wc_kyber_poly.c:1280:56: error: unused parameter 'kp' [-Werror,-Wunused-parameter]
int kyber_gen_matrix(KYBER_PRF_T* prf, sword16* a, int kp, byte* seed,
                                                       ^
wolfcrypt/src/wc_kyber_poly.c:1280:66: error: unused parameter 'seed' [-Werror,-Wunused-parameter]
int kyber_gen_matrix(KYBER_PRF_T* prf, sword16* a, int kp, byte* seed,
                                                                 ^
wolfcrypt/src/wc_kyber_poly.c:1281:9: error: unused parameter 'transposed' [-Werror,-Wunused-parameter]
    int transposed)
        ^
wolfcrypt/src/wc_kyber_poly.c:1843:34: error: unused parameter 'prf' [-Werror,-Wunused-parameter]
int kyber_get_noise(KYBER_PRF_T* prf, int kp, sword16* vec1,
                                 ^
wolfcrypt/src/wc_kyber_poly.c:1843:43: error: unused parameter 'kp' [-Werror,-Wunused-parameter]
int kyber_get_noise(KYBER_PRF_T* prf, int kp, sword16* vec1,
                                          ^
wolfcrypt/src/wc_kyber_poly.c:1843:56: error: unused parameter 'vec1' [-Werror,-Wunused-parameter]
int kyber_get_noise(KYBER_PRF_T* prf, int kp, sword16* vec1,
                                                       ^
wolfcrypt/src/wc_kyber_poly.c:1844:14: error: unused parameter 'vec2' [-Werror,-Wunused-parameter]
    sword16* vec2, sword16* poly, byte* seed)
             ^
wolfcrypt/src/wc_kyber_poly.c:1844:29: error: unused parameter 'poly' [-Werror,-Wunused-parameter]
    sword16* vec2, sword16* poly, byte* seed)
                            ^
wolfcrypt/src/wc_kyber_poly.c:1844:41: error: unused parameter 'seed' [-Werror,-Wunused-parameter]
    sword16* vec2, sword16* poly, byte* seed)
                                        ^
13 errors generated.
make[2]: *** [wolfcrypt/src/src_libwolfssl_la-wc_kyber_poly.lo] Error 1
make[2]: *** Waiting for unfinished jobs....
wolfcrypt/benchmark/benchmark.c:9195:13: error: use of undeclared identifier 'KYBER512_CIPHER_TEXT_SIZE'
    byte ct[KYBER_MAX_CIPHER_TEXT_SIZE];
            ^
./wolfssl/wolfcrypt/kyber.h:151:37: note: expanded from macro 'KYBER_MAX_CIPHER_TEXT_SIZE'
#define KYBER_MAX_CIPHER_TEXT_SIZE  KYBER512_CIPHER_TEXT_SIZE
                                    ^
3 errors generated.```

dgarske · 2024-03-13T22:26:37Z

wolfcrypt/src/wc_kyber_poly.c

+
+#ifdef WOLFSSL_KYBER1024
+/* Get the noise/error by calculating random bytes and sampling to a binomial
+ * deistributions.


deistributions -> distributions. Four places

Put Kyber implementation into wolfSSL.

SparkiDev · 2024-03-13T23:15:42Z

Can't do --enable-kyber=small.
Must be --enable-kyber=small,all or specific sizes.

SparkiDev · 2024-03-13T23:16:08Z

Assembly code works now.

SparkiDev self-assigned this Mar 12, 2024

SparkiDev force-pushed the kyber_1 branch 3 times, most recently from 5fc8fd6 to a2695be Compare March 12, 2024 01:39

SparkiDev assigned wolfSSL-Bot and unassigned SparkiDev Mar 12, 2024

SparkiDev added the For This Release label Mar 12, 2024

dgarske requested changes Mar 13, 2024

View reviewed changes

dgarske assigned SparkiDev Mar 13, 2024

SparkiDev force-pushed the kyber_1 branch from a2695be to 1cd245b Compare March 13, 2024 22:16

SparkiDev assigned dgarske and unassigned SparkiDev Mar 13, 2024

dgarske requested changes Mar 13, 2024

View reviewed changes

dgarske assigned SparkiDev and unassigned dgarske Mar 13, 2024

SparkiDev force-pushed the kyber_1 branch from 1cd245b to 3071127 Compare March 13, 2024 23:12

Kyber: Implementation in wolfSSL

25b2c66

Put Kyber implementation into wolfSSL.

SparkiDev force-pushed the kyber_1 branch from 3071127 to 25b2c66 Compare March 13, 2024 23:14

dgarske approved these changes Mar 14, 2024

View reviewed changes

dgarske merged commit 8fd8548 into wolfSSL:master Mar 14, 2024
105 of 110 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Kyber: Implementation in wolfSSL #7318

Kyber: Implementation in wolfSSL #7318

SparkiDev commented Mar 12, 2024

dgarske left a comment

dgarske Mar 13, 2024

SparkiDev Mar 13, 2024

dgarske Mar 13, 2024

SparkiDev Mar 13, 2024

dgarske Mar 13, 2024

SparkiDev Mar 13, 2024

dgarske Mar 13, 2024

SparkiDev Mar 13, 2024

dgarske Mar 13, 2024

SparkiDev commented Mar 13, 2024

dgarske left a comment

dgarske Mar 13, 2024

SparkiDev Mar 13, 2024

SparkiDev commented Mar 13, 2024 •

edited by dgarske

Loading

SparkiDev commented Mar 13, 2024

Kyber: Implementation in wolfSSL #7318

Kyber: Implementation in wolfSSL #7318

Conversation

SparkiDev commented Mar 12, 2024

Description

Testing

Checklist

dgarske left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

SparkiDev commented Mar 13, 2024

dgarske left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

SparkiDev commented Mar 13, 2024 • edited by dgarske Loading

SparkiDev commented Mar 13, 2024

SparkiDev commented Mar 13, 2024 •

edited by dgarske

Loading