pqc-thunderbird libgcrypt issues

pqc-thunderbird / libgcrypt

GNU General Public License v2.0

1 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

bring PQC signature-schemes in libgcrypt up-to-date with final NIST standard

#65 falko-strenzke closed 3 days ago
0
-fanalyzer cipher/mldsa-poly.c: warning: use of uninitialized value ‘POLY_UNIFORM_ETA_NBLOCKS’

#64 falko-strenzke closed 6 months ago
2
-fanalyzer mlkem-indcpa-avx2.c: warning: use of uninitialized value ‘h’

#63 falko-strenzke closed 6 months ago
2
-fanalyzer warning mlkem polyvec check for null after deref

#62 falko-strenzke closed 6 months ago
0
-fanalyzer warning for mlkem private_key_size_bytes

#61 falko-strenzke closed 6 months ago
1
-fanalyzer warning for mlkem public_key_size_bytes

#60 falko-strenzke closed 6 months ago
1
ML-DSA: Check hint bit checking in our implementation

#59 falko-strenzke closed 7 months ago
1
check all changes to SLH-DSA after 3rd round are incorporated

#58 falko-strenzke closed 4 months ago
1
verify that changes to ML-DSA after 3rd round are included

#57 falko-strenzke closed 7 months ago
1
Wycheproof tests for Kyber

#56 falko-strenzke opened 7 months ago
0
missing fixes from standard branch for ML-DSA

#55 falko-strenzke closed 6 months ago
6
Shorter Tests for SLH-DSA

#54 falko-strenzke closed 7 months ago
7
need to increase the minimum pool size in secmem.c to 65536

#53 falko-strenzke closed 7 months ago
0
fine concept: add refs to ref-impl. commits

#52 falko-strenzke closed 7 months ago
0
delivery of Libgcrypt fine concept

#51 falko-strenzke closed 7 months ago
0
ML-KEM/ML-DSA: Runtime Check for AVX2 HW Support

#50 TJ-91 closed 7 months ago
1
make combined branch for AP delivery with all algos

#49 falko-strenzke closed 7 months ago
4
Falko's review of ML-DSA and SLH-DSA with AVX2

#48 falko-strenzke closed 7 months ago
1
implement ML-KEM "edge case" test vectors

#47 falko-strenzke opened 8 months ago
0
Check and fix "KyberSlash2" ML-KEM variable time OP during re-encryption

#46 falko-strenzke closed 7 months ago
0
properly integrate mgf1 into the build system

#45 TJ-91 closed 7 months ago
1
implement compute_keygrip() for SLH-DSA

#44 falko-strenzke closed 8 months ago
1
implement compute_keygrip() for ML-DSA

#43 falko-strenzke closed 8 months ago
1
rename mlkem to mlkem_ipd in S-expressions

#42 falko-strenzke closed 7 months ago
0
Memory leaks ML-KEM tests

#41 falko-strenzke closed 11 months ago
1
don't use uintXX_t types

#40 falko-strenzke closed 11 months ago
0
Check Kyber specs deviations

#39 falko-strenzke opened 11 months ago
0
ML-KEM: functions that use buffers on the stack

#38 falko-strenzke closed 11 months ago
0
_gcry_md_hash_buffers_extract can be used instead of _gcry_md_open&write&extract&close.

#37 falko-strenzke closed 7 months ago
1
tests/bench-slope KMAC

#36 falko-strenzke opened 11 months ago
0
tests/benchmark KMAC

#35 falko-strenzke opened 11 months ago
0
tests/bench-slope cSHAKE

#34 falko-strenzke opened 11 months ago
0
tests/benchmark cSHAKE

#33 falko-strenzke opened 11 months ago
0
tests/bench-slope ML-KEM

#32 falko-strenzke opened 11 months ago
0
tests/benchmark ML-KEM

#31 falko-strenzke opened 11 months ago
0
mlkem.c: mlkem_check_secret_key: "memcmp" is used to compare shared secrets. Should this use constant time comparison instead?

#30 falko-strenzke closed 11 months ago
0
There's many functions that use buffers on stack. Do those contain secrets? Should those buffers be wiped before returning from function (with wipememory())? For example, "mlkem_check_secret_key" has two buffers "shared_secret_1" and "shared_secret_2" which are not wiped.

#29 falko-strenzke closed 11 months ago
0
cipher/tests-utils.h: not sure about this file. Where these functions copied over from other tests sources? Should other tests switch to use tests-utils.h?

#28 falko-strenzke closed 7 months ago
0
"_gcry_consttime_cmov": this could be hardened against nonce@once style attacks. _gcry_mpih_set_cond in mpi/mpih-const-time.c can be used as example for this (uses two masks and AND/OR instead of single mask with XOR).

#27 falko-strenzke closed 11 months ago
1
"_gcry_consttime_bytes_differ": there is already "buf_eq_const" in bufhelp.h which does the same.

#26 falko-strenzke closed 11 months ago
0
First, I needed following to patches to make tests run (fixes building & testing outside source tree, and fixes memory leaks): 0001-fix-mlkem-test.patch1 KBDownload

#25 falko-strenzke closed 11 months ago
0
Jussi's comments on Phabricator regarding kyber and kmac patches

#24 falko-strenzke closed 7 months ago
0
SPHINCS Tasks

#23 TJ-91 closed 7 months ago
3
Kyber Review

#22 TJ-91 closed 11 months ago
6
HMAC test ignores failure when setting key (not security relevant)

#21 falko-strenzke closed 11 months ago
0
correct cSHAKE API

#20 falko-strenzke closed 1 year ago
1
Security issue in MAC verification

#19 falko-strenzke closed 11 months ago
3
Aligning algo names to NIST drafts

#18 falko-strenzke closed 11 months ago
2
nbits for Kyber and Dilithium

#17 falko-strenzke closed 11 months ago
6
create kyber patch

#16 falko-strenzke closed 11 months ago
0