Skip to content
/ bigints Public

WIP constant time bigint implementation in SPARK

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

AldanTanneo/bigints

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

52 Commits
.github/workflows
.github/workflows
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
alire.toml
alire.toml
 
 
bigints.gpr
bigints.gpr
 
 

Repository files navigation

Tests

SPARK Constant Time Big Integer library

Implementation of a constant time big integer library, heavily inspired by crypto-bigint.

Usage

The implementations are generic over the size of the integer

package U256 is new Bigints.Uint (256);
package U1024 is new Bigints.Uint (1024);

There is also a generic package to deal with modular integers (ie, over a prime field)

P : U256 := ...--  a big prime, like 2^255 - 19
package GF_P is new Bigints.Modular (U256, P);

All functions are implemented in constant time, except those with an explicit _Vartime suffix. Overloaded operators are also constant time.

⚠️ The constant time choice primitives like Choice_From_Condition, Cond_Select, CSwap rely on best-effort optimisation barriers.

Tests

The library is formally checked using gnatprove. When contracts are respected, there cannot be any runtime errors.

Some functional contracts try to go a bit further and prove more advanced behaviours (WIP).

Tests are implemented in ./tests/src/. Run them (UNIX only) with

cd tests
./run.sh

About

WIP constant time bigint implementation in SPARK

Topics

cryptography spark ada bigint formal-verification

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

0.1.0 Latest
Jan 30, 2025

Languages