highctidh 1.0.2024011100

ctype bindings for highctidh

This is an unofficial fork of high-ctidh. This is highly experimental software and it has not yet been reviewed for security considerations. We encourage users of this software to assume that there are vulnerabilities until a review confirms otherwise.

This fork enhances high-ctidh with additional Makefile targets including building high-ctidh as four shared libraries, one for each key size of 511, 512, 1024, and 2048. Python bindings are additionally added, as well as optional Debian packaging of both the shared library object files and the Python module. The Python bindings were made in concert with the author of the Golang bindings which are now included. Both bindings were built around the same shared objects for cross verification purposes. Currently this library is fast on the amd64/x86_64 CPU architecture and functional but much slower with other CPU architectures. The portable backend was generated using the fiat-crypto project which uses a "Correct-by-Construction" approach; see PRIMES.md for more information. Tested architectures for the C library include: amd64/x86_64 (with and without avx2), arm32v5, arm32v6, arm32v7, arm64v8/aarch64/arm64, i386, loongarch64/Loongson, mips, mipsel, mips64, mips64el, POWER8/ppc64, POWER9/ppc64le, riscv64, s390x, and sparc64.

The Golang bindings compile and should be functional on amd64/x86_64, arm32v5, arm32v6, arm32v7, arm64v8/aarch64/arm64, i386, ppc64, ppc64le, riscv64, s390x, mips, mipsle, mips64, mips64le. The misc/test-golang-cross.sh script runs tests on the host build architecture and then attempts to cross-compile for each listed architecture. The .woodpecker/golang.yml attempts to perform a cross-compile for all listed golang versions and enumerated architectures. Native builds for the Golang bindings should be functional on loong64 and sparc64 but this is currently untested. Go version 1.21 is used to build and test in .woodpecker/golang.yml.

The Python bindings build and should be functional on amd64, arm32/armv7l, arm32v5, arm32v6, arm32v7, arm64, i386, ppc64le, riscv64, s390x, and mips64el. Python 3.9, 3.10, 3.11, and 3.12 are used to build and test in .woodpecker/qemu-python-clang.yml.

Debian packages and Python wheels that contain everything needed to use highctidh build with the make -f Makefile.packages packages Makefile target for amd64, arm32/armv7l, arm32/armv5, arm64, i386, mips64el, ppc64el, riscv64, and s390x.

Building on CheriBSD, FreeBSD, and OpenBSD building is supported using the gmake command.

To see rough performance numbers, look at BENCHMARKS.md. We recommend using gcc 10 or later as the compiler except on 32-bit platforms where we recommend clang 14.

We attempt to comprehensively test changes to this software in a continuous integration environment. Testing includes clang, gcc, native builds on linux/amd64 and linux/arm64, as well as qemu builds for almost all other supported architectures. Please consult the relevant configuration files in .woodpecker/ for more information.

The library has been tested on the following operating systems:

• Alpine v3.18 (musl libc)
• Alpine v3.19 (musl libc)
• Debian Sid (GNU libc)
• Debian Bookworm (GNU libc)
• HardenedBSD (FreeBSD libc)
• Ubuntu Mantic (GNU libc)
• Ubuntu Noble (GNU libc)

To build and install we recommend:

   sudo apt install gcc clang make
   make
   sudo make install

To build and install the shared library files using the "Correct-by-Construction" fiat-crypto portable C backend:

    make libhighctidh.so HIGHCTIDH_PORTABLE=1
    sudo make install

The fiat-crypto portable C backend works on all platforms.

To build and install the shared library files using the original artisanal x86_64 assembler backend:

    make libhighctidh.so HIGHCTIDH_PORTABLE=0
    sudo make install

The original artisanal assembler backend works only on the x86_64 platform. It has been modified slightly for compatibility with LLVM-as/clang. Hand written assembler contributions for other platforms are welcome.

By default HIGHCTIDH_PORTABLE=1 is enabled for all platforms unless the library is installed via the Python package, in which case optimized implementations will be used where possible.

To test without installing run the test target:

   make test

An example C program that can use any of the libhighctidh_{511,512,1024,2048}.so libraries is available in example-ctidh.c. Use the make examples target to build example-ctidh511, example-ctidh512, example-ctidh1024, and example-ctidh2048 programs.

A basic Python benchmarking program misc/highctidh-simple-benchmark.py shows general performance numbers. Python tests may be run with pytest and should be functional without pytest assuming the library is installed. If the library path includes the build directory as is done in test.sh, pytest or python should be able to run the tests without installation.

More information about the Python bindings including installation instructions are available in the README.python.md file.

The Golang bindings behave as any normal Golang module/package.

The original authors of this software released high-ctidh in the public domain. All contributions made in this fork are also in the public domain.

The original released README is README.original.md. The original website was https://ctidh.isogeny.org/software.html

This project is funded through the NGI Assure Fund, a fund established by NLnet with financial support from the European Commission's Next Generation Internet program. Learn more on the NLnet project page.