Skip to content

[WWDC25] Add SHA-3 implementation backed by XKCP #397

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 20 commits into from
Aug 11, 2025
Merged

[WWDC25] Add SHA-3 implementation backed by XKCP #397

merged 20 commits into from
Aug 11, 2025

Conversation

@simonjbeaumont
Copy link
Contributor

@simonjbeaumont simonjbeaumont commented Aug 11, 2025

Motivation

CryptoKit is adding API for SHA-3, which BoringSSL does not support. To maintain API parity, we need to provide a backing implementation. For this, we can use XKCP1, which provides the reference implementation, as well as several optimized solutions, suitable for vendoring into other projects.

Modifications

The following changes have been made in separate commits to help with the review:

  • Add vendor-xkcp.sh script
  • Revendor xkcp#master (heads/master-0-g11297f5)
  • Add CXCKP target with modulemap and umbrella header
  • Add CXKCPTests test target with simple test vectors
  • Add CXKCPShims with function wrappers for macros to call from Swift
  • Remove #if false guard from HashFunctions_SHA3.swift
  • Add SHA-3 implementation backed by libXKCP
  • Add new DigestImplSHA3 platform-specific type alias
  • Remove #if false from DigestsTests.swift to get SHA-3 tests

Result

Swift Crypto provides functioning SHA-3 API.

Notes

This PR is for the wwdc-25 side branch.

Footnotes

  1. https://github.com/XKCP/XKCP

@simonjbeaumont
Add vendor-xkcp.sh script
833dda4
@simonjbeaumont
Revendor xkcp#master (heads/master-0-g11297f5)
f938d7e
@simonjbeaumont
Add CXCKP target with modulemap and umbrella header
532279f
@simonjbeaumont
Add CXKCPTests test target with simple test vectors
a59f707
@simonjbeaumont
Add CXKCPShims with function wrappers for macros to call from Swift
7cbd6b6
@simonjbeaumont
Remove #if false guard from HashFunctions_SHA3.swift
f6bc4cb
@simonjbeaumont
Add SHA-3 implementation backed by libXKCP
f876bdb
@simonjbeaumont
Add new DigestImplSHA3 platform-specific type alias
fb4e268
@simonjbeaumont
Remove #if false from DigestsTests.swift to get SHA-3 tests
907790e
@simonjbeaumont
Add PrivacyInfo.xcprivacy files to new targets
05f0f57
@simonjbeaumont
Add check for buffer size in both BoringSSL and XKCP hash finalize
5180b02
@simonjbeaumont
Update path of vendored-sources.txt output file
d899836
@simonjbeaumont
Revendor xkcp#master (heads/master-0-g11297f5)
5f6e5b3
@simonjbeaumont
Update .unacceptablelanguageignore to exclude Sources/CXKCP/
c2ee39e
@simonjbeaumont
Update .licenseignore to exclude Sources/CXKCP/
5bef2f7
@simonjbeaumont
Update CMake lists
e546473
@simonjbeaumont
Fix formatting
c736b6a
@simonjbeaumont simonjbeaumont added the 🆕 semver/minor Adds new public API. label Aug 11, 2025
@simonjbeaumont simonjbeaumont requested a review from Lukasa August 11, 2025 16:17
@Lukasa Lukasa merged commit d9f3641 into apple:wwdc-25 Aug 11, 2025
29 of 31 checks passed
This was referenced Sep 24, 2025
Closed
Merged
Lukasa added a commit that referenced this pull request Sep 26, 2025
@Lukasa @YourMJK
@simonjbeaumont @rnro @josephnoir @etcwilde @0xTim @gjcairo @glbrntt @Steelskin @wnagrodzki @xtremekforever @aryan-25 @gwynne @3405691582 @ptoffy
Update to WWDC25 release (#417)
431013a 
This change updates Crypto to WWDC25 equivalent code.

Each of these changes were individually merged to the WWDC25 branch.
This includes:

- #359
- #363
- #365
- #367
- #368
- #397
- #403
- #410
- #407
- #401
- #415

---------

Co-authored-by: YourMJK <37852512+YourMJK@users.noreply.github.com>
Co-authored-by: Si Beaumont <beaumont@apple.com>
Co-authored-by: Rick Newton-Rogers <rnro@apple.com>
Co-authored-by: Raphael <josephnoir@users.noreply.github.com>
Co-authored-by: Evan Wilde <ewilde@apple.com>
Co-authored-by: Tim Condon <0xTim@users.noreply.github.com>
Co-authored-by: Gus Cairo <gus.cairo@apple.com>
Co-authored-by: George Barnett <gbarnett@apple.com>
Co-authored-by: Fabrice de Gans <Steelskin@users.noreply.github.com>
Co-authored-by: Wojciech Nagrodzki <278594+wnagrodzki@users.noreply.github.com>
Co-authored-by: Jesse L. Zamora <xtremekforever@gmail.com>
Co-authored-by: aryan-25 <aryan_shah@apple.com>
Co-authored-by: Gwynne Raskind <gwynne@vapor.codes>
Co-authored-by: 3405691582 <dsk@google.com>
Co-authored-by: Paul Toffoloni <69189821+ptoffy@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Lukasa Lukasa Lukasa approved these changes

Assignees

No one assigned

Labels

🆕 semver/minor Adds new public API.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@simonjbeaumont @Lukasa