baentsch
commented
2 years ago openssl does not have a algorithm name called "dilithium2_arm".
This is intentional: The name selects the algorithm, not a specific platform code base.
If
is dilithium2, which one will be used, is "dilithium2_ref" default? Then, how can we use "dilithium2_avx2"?
This is the right question: At the core of liboqs is the desire to always make available the most suitable implementation for a specific platform. Accordingly, AVX2 will be used if liboqs (and openssl) get built on a(n x86_64) platform supporting that CPU feature (or if it has been specifically requested at build time by configuration).
I think I have succeeded building a new implementation of dilithium2(with arm_neon) in liboqs by changing some configurations
That is very good and it would be great for everyone if you'd consider contributing that to liboqs via a PR: It then would flow automatically into the downstream projects like oqs-openssl (and get automatically used when openssl is built on such platform).
As there currently already is activity in the liboqs project to bring in ARM optimized code (see for example https://github.com/open-quantum-safe/liboqs/pull/1117), your work/contribution there would be great.
herfrain
dstebila
I think I have succeeded building a new implementation of dilithium2(with arm_neon) in liboqs by changing some configurations, but I don't know how to use it in openssl, beacuse openssl does not have a algorithm name called "dilithium2_arm".
By the way, I see there are "dilithium2_ref" and "dilithium2_avx2" in liboqs, when we run
apps/openssl req -x509 -new -newkey <SIG> -keyout <SIG>_CA.key -out <SIG>_CA.crt -nodes -subj "/CN=oqstest CA" -days 365 -config apps/openssl.cnfIf<SIG>is dilithium2, which one will be used, is "dilithium2_ref" default? Then, how can we use "dilithium2_avx2"?In short, my purpose is to add "dilithium2_arm" and use it in openssl command.
Thanks very much if you can help~