Merge pull request #323 from pq-code-package/remove-nistkat

Remove the NISTKAT test

Author: mkannwischer

.github/actions/functest/action.yml

@@ -39,9 +39,6 @@ inputs:
   kat:
     description: Determine whether to run kat test or not
     default: "true"
-  nistkat:
-    description: Determine whether to run nistkat test or not
-    default: "true"
   acvp:
     description: Determine whether to run acvp test or not
     default: "true"
@@ -58,7 +55,6 @@ runs:
           echo MODE="${{ inputs.cross_prefix == '' && 'native' || 'cross' }}" >> $GITHUB_ENV
           echo FUNC="${{ inputs.func == 'true' && 'func' || 'no-func' }}" >> $GITHUB_ENV
           echo KAT="${{ inputs.kat == 'true' && 'kat' || 'no-kat' }}" >> $GITHUB_ENV
-          echo NISTKAT="${{ inputs.nistkat == 'true' && 'nistkat' || 'no-nistkat' }}" >> $GITHUB_ENV
           echo ACVP="${{ inputs.acvp == 'true' && 'acvp' || 'no-acvp' }}" >> $GITHUB_ENV
           echo EXAMPLES="${{ inputs.examples == 'true' && 'examples' || 'no-examples' }}" >> $GITHUB_ENV
       - name: Setup nix
@@ -91,11 +87,11 @@ runs:
             - $(python3 --version)
             - $(${{ inputs.cross_prefix }}${CC} --version | grep -m1 "")
           EOF
-      - name: ${{ env.MODE }} ${{ inputs.opt }} tests (${{ env.FUNC }}, ${{ env.KAT }}, ${{ env.NISTKAT }}, ${{ env.EXAMPLES }})
+      - name: ${{ env.MODE }} ${{ inputs.opt }} tests (${{ env.FUNC }}, ${{ env.KAT }}, ${{ env.EXAMPLES }})
         shell: ${{ env.SHELL }}
         run: |
           make clean
-          ./scripts/tests all --exec-wrapper="${{ inputs.exec_wrapper }}" --cross-prefix="${{ inputs.cross_prefix }}" --cflags="${{ inputs.cflags }}" --opt=${{ inputs.opt }} --${{ env.FUNC }} --${{ env.KAT }} --${{ env.NISTKAT }} --${{ env.ACVP }} --${{ env.EXAMPLES }} -v
+          ./scripts/tests all --exec-wrapper="${{ inputs.exec_wrapper }}" --cross-prefix="${{ inputs.cross_prefix }}" --cflags="${{ inputs.cflags }}" --opt=${{ inputs.opt }} --${{ env.FUNC }} --${{ env.KAT }} --${{ env.ACVP }} --${{ env.EXAMPLES }} -v
       - name: Post ${{ env.MODE }} Tests
         shell: ${{ env.SHELL }}
         if: success() || failure()

.github/actions/multi-functest/action.yml

@@ -36,9 +36,6 @@ inputs:
   kat:
     description: Determine whether to run kat test or not
     default: "true"
-  nistkat:
-    description: Determine whether to run nistkat test or not
-    default: "true"
   acvp:
     description: Determine whether to run acvp test or not
     default: "true"
@@ -61,7 +58,6 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}
       - name: Cross x86_64 Tests
@@ -79,7 +75,6 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}
       - name: Cross aarch64 Tests
@@ -97,7 +92,6 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}
       - name: Cross ppc64le Tests
@@ -115,7 +109,6 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}
       - name: Cross aarch64_be Tests
@@ -133,7 +126,6 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}
       - name: Cross riscv64 Tests
@@ -151,6 +143,5 @@ runs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.func }}
           kat: ${{ inputs.kat }}
-          nistkat: ${{ inputs.nistkat }}
           acvp: ${{ inputs.acvp }}
           examples: ${{ inputs.examples }}

.github/workflows/cbmc.yml

@@ -26,7 +26,6 @@ jobs:
       verbose: true
       functest: true
       kattest: false
-      nistkattest: false
       acvptest: false
       cbmc: true
       cbmc_mldsa_mode: 2
@@ -49,7 +48,6 @@ jobs:
       verbose: true
       functest: true
       kattest: false
-      nistkattest: false
       acvptest: false
       cbmc: true
       cbmc_mldsa_mode: 3
@@ -72,7 +70,6 @@ jobs:
       verbose: true
       functest: true
       kattest: false
-      nistkattest: false
       acvptest: false
       cbmc: true
       cbmc_mldsa_mode: 5

.github/workflows/ci.yml

@@ -248,7 +248,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}
@@ -262,7 +261,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}
@@ -276,7 +274,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}
@@ -290,7 +287,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}
@@ -305,7 +301,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}
@@ -320,7 +315,6 @@ jobs:
           gh_token: ${{ secrets.GITHUB_TOKEN }}
           compile_mode: native
           func: true
-          nistkat: false
           kat: false
           acvp: false
           examples: ${{ matrix.compiler.examples }}

.github/workflows/ci_ec2_reusable.yml

@@ -46,9 +46,6 @@ on:
       kattest:
         type: boolean
         default: true
-      nistkattest:
-        type: boolean
-        default: true
       acvptest:
         type: boolean
         default: true
@@ -170,7 +167,6 @@ jobs:
           opt: ${{ inputs.opt }}
           func: ${{ inputs.functest }}
           kat: ${{ inputs.kattest }}
-          nistkat: ${{ inputs.nistkattest }}
           acvp: ${{ inputs.acvptest }}
       - name: CBMC
         if: ${{ inputs.cbmc && (success() || failure()) }}

LICENSE

@@ -36,75 +36,6 @@ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
 
-Licenses for support code
--------------------------
-
-The code in test/nistrng/rng.c is derived from code provided by NIST
-and governed by the following terms of use:
-
-```
-NIST-developed software is provided by NIST as a public service. You may
-use, copy, and distribute copies of the software in any medium, provided
-that you keep intact this entire notice. You may improve, modify, and
-create derivative works of the software or any portion of the software, and
-you may copy and distribute such modifications or works. Modified works
-should carry a notice stating that you changed the software and should note
-the date and nature of any such change. Please explicitly acknowledge the
-National Institute of Standards and Technology as the source of the
-software.
-
-NIST-developed software is expressly provided "AS IS." NIST MAKES NO
-WARRANTY OF ANY KIND, EXPRESS, IMPLIED, IN FACT, OR ARISING BY OPERATION OF
-LAW, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND
-DATA ACCURACY. NIST NEITHER REPRESENTS NOR WARRANTS THAT THE OPERATION OF
-THE SOFTWARE WILL BE UNINTERRUPTED OR ERROR-FREE, OR THAT ANY DEFECTS WILL
-BE CORRECTED. NIST DOES NOT WARRANT OR MAKE ANY REPRESENTATIONS REGARDING
-THE USE OF THE SOFTWARE OR THE RESULTS THEREOF, INCLUDING BUT NOT LIMITED
-TO THE CORRECTNESS, ACCURACY, RELIABILITY, OR USEFULNESS OF THE SOFTWARE.
-
-You are solely responsible for determining the appropriateness of using and
-distributing the software and you assume all risks associated with its use,
-including but not limited to the risks and costs of program errors,
-compliance with applicable laws, damage to or loss of data, programs or
-equipment, and the unavailability or interruption of operation. This
-software is not intended to be used in any situation where a failure could
-cause risk of injury or damage to property. The software developed by NIST
-employees is not subject to copyright protection within the United
-States.
-```
-
-The code in test/nistrng/aes.* is derived from code in BearSSL
-and carries the MIT license. It is only used for testing purposes.
-
-```
-Copyright (c) The mlkem-native project authors
-Copyright (c) The mldsa-native project authors
-Copyright (c) 2016 Thomas Pornin <[email protected]>
-
-SPDX-License-Identifier: MIT
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
-BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
-ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
-CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
-```
-
 The code in test/notrandombytes/* is derived from
 https://cr.yp.to/papers.html#surf and licensed under
 LicenseRef-PD-hp OR CC0-1.0 OR 0BSD OR MIT-0 OR MIT.

META.yml

@@ -9,18 +9,15 @@ implementations:
     length-secret-key: 2560
     length-signature: 2420
     kat-sha256: 9d4ae4ea0c1b56f96650838c7425cc2167a0754643b79a93bee28cb039ac2fc2
-    nistkat-sha256: 9a196e7fb32fbc93757dc2d8dc1924460eab66303c0c08aeb8b798fb8d8f8cf3
   - name: ML-DSA-65
     claimed-nist-level: 3
     length-public-key: 1952
     length-secret-key: 4032
     length-signature: 3309
     kat-sha256: b66d7de88a3bec2d7cf171a7a1198f6de47384e2a1dd3bf7d07432316a9a40f8
-    nistkat-sha256: 7cb96242eac9907a55b5c84c202f0ebd552419c50b2e986dc2e28f07ecebf072
   - name: ML-DSA-87
     claimed-nist-level: 5
     length-public-key: 2592
     length-secret-key: 4896
     length-signature: 4627
     kat-sha256: 93029142bf62f67ae3df0d31c2fccf8c9fa1e61ab388048e1b3faeb9451a61ce
-    nistkat-sha256: 4537905d2aabcf302fab2f242baed293459ecda7c230e6a67063b02c7e2840ed

Makefile

@@ -2,14 +2,14 @@
 # Copyright (c) The mldsa-native project authors
 # SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
 
-.PHONY: func kat nistkat acvp \
-	func_44 kat_44 nistkat_44 acvp_44 \
-	func_65 kat_65 nistkat_65 acvp_65 \
-	func_87 kat_87 nistkat_87 acvp_87 \
-	run_func run_kat run_nistkat run_acvp \
-	run_func_44 run_kat_44 run_nistkat_44 \
-	run_func_65 run_kat_65 run_nistkat_65 \
-	run_func_87 run_kat_87 run_nistkat_87 \
+.PHONY: func kat acvp \
+	func_44 kat_44 acvp_44 \
+	func_65 kat_65 acvp_65 \
+	func_87 kat_87 acvp_87 \
+	run_func run_kat run_acvp \
+	run_func_44 run_kat_44 \
+	run_func_65 run_kat_65 \
+	run_func_87 run_kat_87 \
 	bench_44 bench_65 bench_87 bench \
 	run_bench_44 run_bench_65 run_bench_87 run_bench \
 	bench_components_44 bench_components_65 bench_components_87 bench_components \
@@ -28,10 +28,10 @@ include test/mk/rules.mk
 
 quickcheck: test
 
-build: func nistkat kat acvp
+build: func kat acvp
 	$(Q)echo "  Everything builds fine!"
 
-test: run_kat run_nistkat run_func run_acvp
+test: run_kat run_func run_acvp
 	$(Q)echo "  Everything checks fine!"
 
 run_kat_44: kat_44
@@ -42,14 +42,6 @@ run_kat_87: kat_87
 	$(W) $(MLDSA87_DIR)/bin/gen_KAT87 | sha256sum | cut -d " " -f 1 | xargs ./META.sh ML-DSA-87  kat-sha256
 run_kat: run_kat_44 run_kat_65 run_kat_87
 
-run_nistkat_44: nistkat_44
-	$(W) $(MLDSA44_DIR)/bin/gen_NISTKAT44 | sha256sum | cut -d " " -f 1 | xargs ./META.sh ML-DSA-44  nistkat-sha256
-run_nistkat_65: nistkat_65
-	$(W) $(MLDSA65_DIR)/bin/gen_NISTKAT65 | sha256sum | cut -d " " -f 1 | xargs ./META.sh ML-DSA-65  nistkat-sha256
-run_nistkat_87: nistkat_87
-	$(W) $(MLDSA87_DIR)/bin/gen_NISTKAT87 | sha256sum | cut -d " " -f 1 | xargs ./META.sh ML-DSA-87  nistkat-sha256
-run_nistkat: run_nistkat_44 run_nistkat_65 run_nistkat_87
-
 run_func_44: func_44
 	$(W) $(MLDSA44_DIR)/bin/test_mldsa44
 run_func_65: func_65
@@ -69,14 +61,6 @@ func_87: $(MLDSA87_DIR)/bin/test_mldsa87
 	$(Q)echo "  FUNC       ML-DSA-87:  $^"
 func: func_44 func_65 func_87
 
-nistkat_44: $(MLDSA44_DIR)/bin/gen_NISTKAT44
-	$(Q)echo "  NISTKAT    ML-DSA-44:   $^"
-nistkat_65: $(MLDSA65_DIR)/bin/gen_NISTKAT65
-	$(Q)echo "  NISTKAT    ML-DSA-65:   $^"
-nistkat_87: $(MLDSA87_DIR)/bin/gen_NISTKAT87
-	$(Q)echo "  NISTKAT    ML-DSA-87:  $^"
-nistkat: nistkat_44 nistkat_65 nistkat_87
-
 kat_44: $(MLDSA44_DIR)/bin/gen_KAT44
 	$(Q)echo "  KAT        ML-DSA-44:   $^"
 kat_65: $(MLDSA65_DIR)/bin/gen_KAT65