The source code in this folder implements ML-DSA as defined in FIPS 204 Module-Lattice-Based Digital Signature Standard link.
Source code origin and modifications
The source code was imported from a branch of the official repository of the Crystals-Dilithium team: https://github.com/pq-crystals/dilithium. The code was taken at commit as of 10/29/2024. At the moment, only the reference C implementation is imported.
The code was refactored in this PR by parameterizing all functions that depend on values that are specific to a parameter set, i.e., that directly or indirectly depend on the value of DILITHIUM_MODE. To do this, in params.h we defined a structure that holds those ML-DSA parameters and functions
that initialize a given structure with values corresponding to a parameter set. This structure is then passed to every function that requires it as a function argument. In addition, the following changes were made to the source code in pqcrystals_dilithium_ref_common directory:
randombytes.{h|c}are deleted because we are using the randomness generation functions provided by AWS-LC.sign.c: calls torandombytesfunction is replaced with calls toRAND_bytesand the appropriate header file is included (openssl/rand.h).ntt.c,poly.c,reduce.c,reduce.h: have been modified with a code refactor. The functionfqmulhas been added to bring mode code consistency with Kyber/ML-KEM. See aws#1748 for more details on this change.reduce.c: a small fix to documentation has been made on the bounds ofreduce32.poly.c: a small fix to documentation has been made on the bounds ofpoly_reduce.polyvec.c: a small fix to documentation has been made on the bounds ofpolyveck_reduce.
Testing
The KATs were obtained from https://github.com/post-quantum-cryptography/KAT. They have been modified to insert linebreaks between each test vector set.