0c847bcbe7
Apply Gilles suggestion to fix the problem with make on the CI when everest is enabled, i.e. use $(THIRDPARTY_DIR) instead of a fuzz specific hack involving $(THIRDPARTY_INCLUDES) Signed-off-by: Paul Elliott <paul.elliott@arm.com> |
||
|---|---|---|
| .. | ||
| include/everest | ||
| library | ||
| .gitignore | ||
| CMakeLists.txt | ||
| Makefile.inc | ||
| README.md | ||
The files in this directory stem from Project Everest and are distributed under the Apache 2.0 license.
This is a formally verified implementation of Curve25519-based handshakes. The C code is automatically derived from the (verified) original implementation in the F* language by KreMLin. In addition to the improved safety and security of the implementation, it is also significantly faster than the default implementation of Curve25519 in mbedTLS.
The caveat is that not all platforms are supported, although the version in everest/library/legacy should work on most systems. The main issue is that some platforms do not provide a 128-bit integer type and KreMLin therefore has to use additional (also verified) code to simulate them, resulting in less of a performance gain overall. Explicitly supported platforms are currently x86 and x86_64 using gcc or clang, and Visual C (2010 and later).