Implementation of a constant time big integer library, heavily inspired by crypto-bigint.
The implementations are generic over the size of the integer
package U256 is new Bigints.Uint (256);
package U1024 is new Bigints.Uint (1024);There is also a generic package to deal with modular integers (ie, over a prime field)
P : U256 := ...-- a big prime, like 2^255 - 19
package GF_P is new Bigints.Modular (U256, P);All functions are implemented in constant time, except those with an explicit _Vartime suffix. Overloaded operators are also constant time.
⚠️ The constant time choice primitives likeChoice_From_Condition,Cond_Select,CSwaprely on best-effort optimisation barriers.
The library is formally checked using gnatprove. When contracts are respected, there cannot be any runtime errors.
Some functional contracts try to go a bit further and prove more advanced behaviours (WIP).
Tests are implemented in ./tests/src/. Run them (UNIX only) with
cd tests
./run.sh