Spencer Wilson
Spencer Wilson
I managed to reproduce this very rare verification error in CROSS-RDSDPG-128-small. I'm still looking for the root cause but I can confirm that it seems totally unrelated to the new...
In line with [FIPS 205](https://csrc.nist.gov/pubs/fips/205/final). We have support for Round 3 SPHINCS+, but nothing more recent. Our current upstream source is https://github.com/sphincs/sphincsplus via PQClean, so we should find out their...
Originally discussed in https://github.com/open-quantum-safe/liboqs/pull/1908#pullrequestreview-2264063600. This could ensure that workflow files are tested before they're deployed and also help with open-quantum-safe/tsc#5.
Travis CI builds have been failing with no output for some time now. Pinging @bhess, who I believe maintains the Travis setup.
In several places throughout the codebase, `memset` is being used instead of `OQS_MEM_CLEANSE`. When the data being reset is secret, this is undesirable, as a compiler may optimize out the...
To prevent issues similar to #1862. @trailofbits used the following query to detect #1862: ```ql import cpp from FunctionCall call, Function f where f = call.getTarget() and // function name...
This would prevent new instances of #1866 from being introduced into the codebase. Suggested by @trailofbits in Week 1 of their audit of `liboqs`.
This isn't something to change in this PR, but something I noticed just from looking at this code during review. Now that we have the ability to set callbacks, could...
We have two `liboqs` APIs: the public one, exposed to users via `oqs.h`, and the internal one, used for non-exposed common code (e.g., SHA3). We should document this API split...