crypto_kem
This page lists all primitives grouped under operation
crypto_kem
.
For each primitive, all listed implementations were checked across a number of compilers, compiler options, and hosts.
The progress bar shows the relative number of successes, fails, and errors:
crypto_aead_decrypt returns nonzero
The absolute number of successes, fails, and errors is shown to the left of the progress bar.
The following code was used to flag secret data, and test implementations:
1 | void timecop_doit(void) |
2 | { |
3 | poison(k, klen); |
4 | poison(s, slen); |
5 | crypto_kem_enc(c,k,p); |
6 | unpoison(c, clen); |
7 | crypto_kem_dec(t,c,s); |
8 | } |
Click an implementation to see all checked compiler options.
babybear
babybearephem
bigquake1
bigquake3
bigquake5
dags3
dags5
edonk128k08n72nu8l8
edonk128k16n80nu4l6
edonk128k16n80nu8l6
edonk128k32n96nu4l4
edonk128ref
edonk192k16n112nu4l8
edonk192k32n128nu4l6
edonk192k48n144nu4l4
edonk192ref
firesaber
frodokem640
frodokem976
hila5
kindi256342
kindi256522
kindi512222
kindi512241
kindi512321
kyber1024
kyber512
kyber768
lac128
lac192
lac256
lake1
lake2
lake3
ledakem12
ledakem13
ledakem14
ledakem32
ledakem33
ledakem34
ledakem52
ledakem53
ledakem54
lightsaber
lima2p1024cca
lima2p2048cca
limasp1018cca
limasp1306cca
limasp1822cca
limasp2062cca
locker1
locker2
locker3
locker4
locker5
locker6
locker7
locker8
locker9
lotus128
lotus192
lotus256
mamabear
mamabearephem
mceliece6960119
mceliece8192128
mersenne756839
newhope1024cca
newhope512cca
ntruhrss701
ntrukem443
ntrukem743
ntrulpr4591761
ntskem1264
ntskem13136
ntskem1380
oddmanhattan128
oddmanhattan192
oddmanhattan256
papabear
papabearephem
pqrsa15
ramstakers216091
ramstakers756839
rsa2048
saber
sikep503
sntrup4591761
titaniumccahi
titaniumccalite
titaniumccamed
titaniumccastd
titaniumccasuper
titaniumccatoy