LibVerse is a low level cryptographic library built using the
verse eDSL. It is not a standalone cryptographic library,
and is expected to be used by other high level libraries in C or other
high level languages like Haskell, Python etc (i.e. languages that
support foreign function interface to C). It fact, it was designed
primarily for the raaz cryptographic library as a source of
low-level cryptographic primitives. This focus means that libverse
does not come with any supporting code like benchmarks or unit
tests. In fact it does not even come with the full implementations of
standard primitives --- only the "tight loops" of these primitives are
exposed. The higher level crypto library that uses libverse should
provide these missing features to make libverse usable.
Why this low level design ? Although a higher level of abstraction is
always better for the safety and portability of software, high level
languages are often prone to leak of side channel information which
can be deadly for cryptographic libraries. Hence libverse is at this
low level of abstraction. Instead of writing this low level code by
hand (which is problematic in a different way), we express this code
in the [verse eDSL] at a much higher level of abstraction. Since it is
written in Coq, we can even hope to verify a significant portion of it
by using the full power of a proof assistant like Coq.
Although the actual cryptographic implementations are themselves written in verse which in turn is an eDSL in Coq, the source code available in this repository is the extracted C, or in the future when verse starts supporting it, assembly language functions. Hence all you need is a C compiler or a FFI interface to call C in case of languages like Haskell. Just include the source code somewhere in your applications/library's directory and hook it to your compilation process.
The C files libverse/verse.h and libverse/verse.c provide a
minimal kernel of C functions that provide primitives like endian
conversion and bitwise rotations that are unfortunately not available
by default. All other files are in fact generated from the Coq source
using the Verse eDSL. Therefore it does not make much sense to accept
pull requests here unless the patches in question changes one of the
kernel C files. Rather, consider contributing to the original coq
source available at source repository of verse. In
particular, the implementation exposed here have their coq sources
under the directory src/Verse/CryptoLib.
LibVerse expose C (and in the future assembly) function for various primitives. The source code is arranged according to the following convention.
-
The function name that implement a primitive
pfor an architectureamaking use of the processor featuresfwill be namesverse_p_a_f, e.g.verse_chacha20_x86_64_avx2. If there are multiple features that are required, it should be separated by_(underscores). -
The above function will reside in the file
./p/a/f.ext, whereextis eithercif it is a portable C code or is 's' if it is in assembly language. The correspondingCoqsource will be atsrc/Verse/CryptoLib/p/a/f.vin the verse repository. -
The generated source (C or assembly) will be at
p/a/f.ext
Copyright (c) 2018, Piyush P Kurur
The library is licensed under
- Apache License, Version 2.0 http://www.apache.org/licenses/LICENSE-2.0
- BSD 3-Clause license https://opensource.org/licenses/BSD-3-Clause
You may not use this software except in compliance with one of the above Licenses (at your option).
SPDX-License-Identifier: (Apache-2.0 OR BSD-3-Clause)
Unless required by applicable law or agreed to in writing, software distributed under these Licenses is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. For the exact terms and conditions see the accompanying LICENSE file.