sharpetronics/liboqs
1
0
Fork 0
mirror of https://github.com/open-quantum-safe/liboqs.git synced 2025-10-04 00:02:01 -04:00
Code Issues Projects Releases Wiki Activity
liboqs/zephyr
History
Tobias Frauenschläger 4906c3fc88
Add support for embedded Zephyr RTOS (#1621) 
* Zephyr RTOS support

This commit adds initial support for the zephyr operating system. Some
minor changes to the library build system have been made for it to be
compilable with zephyr. Furthermore, we added support for an embedded
build option to disable standard library methods for random number
generation.

* Zephyr: added algorithm selection

The algorithms can now be selected with Kconfig. Per default, we only
enable the algorithms selected by NIST to be standardized. However, all
supported algorithms can be enabled or disabled individually on a per
project basis.

* Zephyr: added testable samples

Added two sample applications within the zephyr directory for KEMs and
Signatures. These are also intended for CI testing.

* Zephyr: added CI tests

* Zephyr: Add documentation

Signed-off-by: Tobias Frauenschläger <t.frauenschlaeger@me.com>
2023-12-20 08:20:56 +01:00
..
samples
Add support for embedded Zephyr RTOS (#1621)
2023-12-20 08:20:56 +01:00
CMakeLists.txt
Add support for embedded Zephyr RTOS (#1621)
2023-12-20 08:20:56 +01:00
Kconfig
Add support for embedded Zephyr RTOS (#1621)
2023-12-20 08:20:56 +01:00
module.yml
Add support for embedded Zephyr RTOS (#1621)
2023-12-20 08:20:56 +01:00
README.md
Add support for embedded Zephyr RTOS (#1621)
2023-12-20 08:20:56 +01:00

README.md

Zephyr Project Port

liboqs can be used as a module for the Zephyr RTOS.

Installation

You have to add liboqs to your West workspace using a West Manifest

In your manifest file (west.yml), add the following:

remotes:
    # <other remotes>
    - name: liboqs
      url-base: https://github.com/open-quantum-safe

projects:
    # <other projects>
    - name: liboqs
      path: modules/crypto/liboqs
      revision: main
      remote: liboqs

After adding the new information to your manifest file, run west update to download and install liboqs as a Zephyr module. After that, you can use it in your projects.

Currently, Zephyr versions 3.4 and 3.5 are supported. Please feel free to open an issue or a PR in case you need another version supported (without guarantee that older versions can be supported at all).

Usage

Disclaimer regarding random number generation

In order to properly use the Zephyr port of liboqs, you have to provide a custom callback function for random number generation using the OQS_randombytes_custom_algorithm() API. Otherwise, all key generation and signing operations will fail.

In the two provided sample applications (also see Samples), a callback is set using the default sys_rand_get() method from Zephyr. This method, however, does not provide random data suitable for cryptographic operations and is only good for testing purposes. Make sure to use a proper entroy source from your hardware to obtain actual random data.

Configuration

The port provides a variety of configurable options using Kconfig. Once you have the liboqs module enabled with CONFIG_LIBOQS=y, you can manually enable or disable specific KEM or Signature algorithms using the LIBOQS_ENABLE_KEM_xxx and LIBOQS_ENABLE_SIG_xxx options.

The algorithms to be standardized by NIST are enabled by default, all others are disabled by default.

Supported architectures

At the moment, the following architectures are supported with the Zephyr port:

  • 32-bit ARM
  • 64-bit ARM
  • x86
  • Native Posix

Other architectures supported by Zephyr are not supported with this port, as liboqs itself doesn't support these architectures (the modules can't be enabled in those cases). Please feel free to raise an issue or PR in case a new architecture is required.

Samples

Two sample applications are provided, demonstrating the usage of the library from within Zephyr. See samples/KEMs and samples/Signatures.