mirror of
https://github.com/python/cpython.git
synced 2025-12-08 06:10:17 +00:00
0a97427ee5
A new extension module, `_hmac`, now exposes the HACL* HMAC (formally verified) implementation. The HACL* implementation is used as a fallback implementation when the OpenSSL implementation of HMAC is not available or disabled. For now, only named hash algorithms are recognized and SIMD support provided by HACL* for the BLAKE2 hash functions is not yet used.
29 lines
1 KiB
Markdown
29 lines
1 KiB
Markdown
# Algorithm implementations used by the `hashlib` module.
|
|
|
|
This code comes from the
|
|
[HACL\*](https://github.com/hacl-star/hacl-star/) project.
|
|
|
|
HACL\* is a cryptographic library that has been formally verified for memory
|
|
safety, functional correctness, and secret independence.
|
|
|
|
## Updating HACL*
|
|
|
|
Use the [refresh.sh](refresh.sh) script in this directory to pull in a new
|
|
upstream code version. The upstream git hash used for the most recent code
|
|
pull is recorded in the script. Modify the script as needed to bring in more
|
|
if changes are needed based on upstream code refactoring.
|
|
|
|
Never manually edit HACL\* files. Always add transformation shell code to the
|
|
`refresh.sh` script to perform any necessary edits. If there are serious code
|
|
changes needed, work with the upstream repository.
|
|
|
|
## Local files
|
|
|
|
* [python_hacl_namespaces.h](python_hacl_namespaces.h)
|
|
* [README.md](README.md)
|
|
* [refresh.sh](refresh.sh)
|
|
|
|
## ACKS
|
|
|
|
* Jonathan Protzenko aka [@msprotz on Github](https://github.com/msprotz)
|
|
contributed our HACL\* based builtin code.
|