Allow libcrux to be compiled for no_std (embedded) environments

This allows libcrux to be compiled with the minimal Rust runtime, also known as `no_std`. This is necessary for some highly-constrained code environments, such as embedded devices, kernels, etc., where the full dependency set of the Rust standard library is too large or requires capabilities that do not exist in the target environment. To do this, I added a new Cargo "feature" to the crate, called `std`. This feature is enabled by default. To target a `no_std` environment, you must first disable the default feature, then opt-in to only the features that your target environment needs. The `rand` crate itself currently has a dependency on `std`, so the `rand` feature depends on `std`. If the `rand` crate itself provides a `no_std` environment, then this requirement could be lifted.
cryspen · Jan 26, 2024 · 847c890 · 847c890
1 parent 6e08950
commit 847c890
Show file tree

Hide file tree

Showing 20 changed files with 54 additions and 7 deletions.
diff --git a/Cargo.toml b/Cargo.toml
@@ -73,6 +73,8 @@ wasm-bindgen-test = "0.3"
 
 [features]
 hacspec = []            # TODO: #7 Use specs instead of efficient implementations
-rand = []
+rand = ["std"]          # rand requires std because of std::error::Error
 wasm = ["wasm-bindgen"]
 log = ["dep:log"]
+default = ["std"]
+std = []
diff --git a/src/aead.rs b/src/aead.rs
@@ -15,6 +15,8 @@
 use crate::hacl::aesgcm;
 use crate::hacl::chacha20_poly1305;
 
+use alloc::vec::Vec;
+
 use libcrux_platform::{aes_ni_support, simd128_support, simd256_support};
 
 /// The AEAD Errors.

diff --git a/src/digest.rs b/src/digest.rs
@@ -23,6 +23,7 @@ use crate::hacl::{
 };
 
 use libcrux_platform::{simd128_support, simd256_support};
+use alloc::vec::Vec;
 
 #[derive(Debug)]
 pub enum Error {

diff --git a/src/drbg.rs b/src/drbg.rs
@@ -4,6 +4,8 @@
 
 use crate::hacl::drbg;
 // re-export here for convenience
+use alloc::vec;
+use alloc::vec::Vec;
 pub use rand::{CryptoRng, RngCore};
 
 #[derive(Debug)]
@@ -16,12 +18,23 @@ pub enum Error {
     UnableToGenerate,
 }
 
-impl std::fmt::Display for Error {
-    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
+impl core::fmt::Display for Error {
+    fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
         f.write_fmt(format_args!("{self:?}"))
     }
 }
 
+// The `Error` trait is defined in `core::error::Error` but it is not yet stabilized.
+// See: https://github.com/rust-lang/rust/issues/103765
+//
+// When `core::error::Error` is stablized, this should be changed to `impl core::error::Error`
+// and the #[cfg] should be removed.
+//
+// Because of this, the `rand` feature depends on the `std` feature. The `rand` crate itself
+// necessarily depends on std because it is exporting a type that depends on `std::error::Error`.
+// If `core::error::Error` is stabilized and the `rand` crate moves to it, then no_std becomes
+// viable for both `rand` and this crate.
+#[cfg(feature = "std")]
 impl std::error::Error for Error {}
 
 pub struct Drbg {
@@ -169,6 +182,7 @@ impl Drbg {
 }
 
 /// Implementation of the [`RngCore`] trait for the [`Drbg`].
+#[cfg(feature = "rand")]
 impl RngCore for Drbg {
     fn next_u32(&mut self) -> u32 {
         let mut bytes: [u8; 4] = [0; 4];

diff --git a/src/ecdh.rs b/src/ecdh.rs
@@ -12,6 +12,8 @@
 //! For P256 the portable HACL implementation is used.
 
 use crate::hacl;
+use alloc::string::String;
+use alloc::vec::Vec;
 
 #[derive(Debug, PartialEq, Eq)]
 pub enum LowLevelError {
@@ -47,6 +49,7 @@ pub enum Algorithm {
 
 pub(crate) mod x25519 {
     use rand::{CryptoRng, Rng};
+    use alloc::format;
 
     use super::Error;
 
@@ -231,6 +234,8 @@ pub use x25519::key_gen as x25519_key_gen;
 
 pub(crate) mod p256 {
     use rand::{CryptoRng, Rng};
+    use alloc::format;
+
 
     // P256 we only have in HACL
     use crate::hacl::p256;

diff --git a/src/hacl/aesgcm.rs b/src/hacl/aesgcm.rs
@@ -57,7 +57,7 @@ macro_rules! implement {
             let mut tag = Tag::default();
             hardware_support()?;
             let ok = unsafe {
-                let mut state_ptr: *mut EverCrypt_AEAD_state_s = std::ptr::null_mut();
+                let mut state_ptr: *mut EverCrypt_AEAD_state_s = core::ptr::null_mut();
                 let e = EverCrypt_AEAD_create_in($alg as u8, &mut state_ptr, key.as_ptr() as _);
                 if e != 0 {
                     return Err(Error::EncryptionError);
@@ -99,7 +99,7 @@ macro_rules! implement {
         ) -> Result<(), Error> {
             hardware_support()?;
             let ok = unsafe {
-                let mut state_ptr: *mut EverCrypt_AEAD_state_s = std::ptr::null_mut();
+                let mut state_ptr: *mut EverCrypt_AEAD_state_s = core::ptr::null_mut();
                 let e = EverCrypt_AEAD_create_in($alg as u8, &mut state_ptr, key.as_ptr() as _);
                 if e != 0 {
                     return Err(Error::EncryptionError);

diff --git a/src/hacl/hkdf.rs b/src/hacl/hkdf.rs
@@ -82,6 +82,8 @@ macro_rules! impl_hkdf {
             /// length is not const.
             pub mod vec {
                 use super::super::Error;
+                use alloc::vec::Vec;
+                use alloc::vec;
 
                 /// HKDF expand using the pre-key material `prk` and `info`. The output length
                 /// is defined through the result type.

diff --git a/src/hkdf.rs b/src/hkdf.rs
@@ -1,6 +1,7 @@
 //! HKDF
 //!
 //! This module implements HKDF on SHA 1 and SHA 2 (except for SHA 224).
+use alloc::vec::Vec;
 
 /// The HKDF algorithm defining the used hash function.
 #[derive(Copy, Clone, Debug, PartialEq)]

diff --git a/src/hmac.rs b/src/hmac.rs
@@ -3,6 +3,7 @@
 //! This module implements HMAC on SHA 1 and SHA 2 (except for SHA 224).
 
 use crate::hkdf;
+use alloc::vec::Vec;
 
 /// The HMAC algorithm defining the used hash function.
 #[derive(Copy, Clone, Debug, PartialEq)]

diff --git a/src/hpke/aead.rs b/src/hpke/aead.rs
@@ -34,6 +34,7 @@ use crate::{
     aead::{self, *},
     hmac::tag_size,
 };
+use alloc::vec::Vec;
 
 use super::errors::*;
 

diff --git a/src/hpke/errors.rs b/src/hpke/errors.rs
@@ -94,6 +94,7 @@ pub enum HpkeError {
     /// An opaque error happened in a crypto operation outside of this code.
     CryptoError,
 }
+use alloc::vec::Vec;
 
 /// A [`Result`] type that returns a [`Bytes`] or an [`HpkeError`].
 pub type HpkeBytesResult = Result<Vec<u8>, HpkeError>;

diff --git a/src/hpke/hpke.rs b/src/hpke/hpke.rs
@@ -9,6 +9,9 @@ use super::kem::*;
 
 use super::errors::*;
 
+use alloc::vec::Vec;
+use alloc::vec;
+
 // === Constants ===
 
 ///  A one-byte value indicating the HPKE mode, defined in the following table.

diff --git a/src/hpke/kdf.rs b/src/hpke/kdf.rs
@@ -4,6 +4,8 @@
 use crate::hkdf::Algorithm;
 
 use super::errors::*;
+use alloc::vec::Vec;
+use alloc::vec;
 
 /// ## Key Derivation Functions (KDFs)
 ///

diff --git a/src/hpke/kem.rs b/src/hpke/kem.rs
@@ -7,6 +7,9 @@ use crate::kem::{kyber::KyberKeyPair, kyber768_generate_keypair_derand, *};
 use super::errors::*;
 use super::kdf::*;
 
+use alloc::vec::Vec;
+use alloc::vec;
+
 /// ## Key Encapsulation Mechanisms (KEMs)
 ///
 /// | Value  | KEM                        | Nsecret  | Nenc | Npk  | Nsk  | Auth | Reference               |

diff --git a/src/kem.rs b/src/kem.rs
@@ -1,6 +1,7 @@
 //! # Key Encapsulation Mechanism
 //!
 //! A KEM interface.
+use alloc::vec::Vec;
 
 use rand::{CryptoRng, Rng};
 

diff --git a/src/kem/kyber/ind_cpa.rs b/src/kem/kyber/ind_cpa.rs
@@ -1,4 +1,4 @@
-use std::usize;
+use core::usize;
 
 use super::{
     arithmetic::PolynomialRingElement,

diff --git a/src/lib.rs b/src/lib.rs
@@ -2,7 +2,10 @@
 //!
 //! The unified, formally verified, cryptography library.
 
+#![cfg_attr(all(not(test), not(feature = "std")), no_std)]
+
 pub use libcrux_platform::aes_ni_support;
+extern crate alloc;
 
 // Jasmin
 #[cfg(all(target_arch = "x86_64", any(target_os = "linux", target_os = "macos")))]

diff --git a/src/signature.rs b/src/signature.rs
@@ -9,6 +9,7 @@ use crate::{
     hacl::{self, ed25519, p256},
 };
 use rand::{CryptoRng, Rng, RngCore};
+use alloc::vec::Vec;
 
 use self::rsa_pss::RsaPssSignature;
 
@@ -85,6 +86,8 @@ pub mod rsa_pss {
     };
 
     use super::{DigestAlgorithm, Error};
+    use alloc::vec::Vec;
+    use alloc::vec;
 
     /// A [`Algorithm::RsaPss`] Signature
     #[derive(Debug, Clone, PartialEq, Eq)]

diff --git a/sys/hacl/Cargo.toml b/sys/hacl/Cargo.toml
@@ -21,6 +21,8 @@ bindgen = { version = "0.69", optional = true }
 
 [features]
 bindings = ["bindgen"] # generate fresh bindings
+std = []
+default = ["std"]
 
 [dev-dependencies]
 hex = "0.4.3"

diff --git a/sys/hacl/src/lib.rs b/sys/hacl/src/lib.rs
@@ -1,7 +1,7 @@
 //! # HACL Sys
 //!
 //! Bindings to HACL C code
-
+#![cfg_attr(all(not(test), not(feature = "std")), no_std)]
 #![allow(non_camel_case_types, non_snake_case, non_upper_case_globals)]
 
 // #[cfg(not(target_arch = "wasm32"))]