fiat cryptography #178
Comments
MSoegtropIMC
added
needs: maintainer agreement
|
@JasonGross : can you please comment on this request? Would you agree to the inclusion? |
|
I think the main bottleneck is that if we include fiat-crypto, we'd also need to include coq-rewriter and coq-coqutil. Neither of these have non-dev packages. I'm willing to make such packages, but I'm not sure that coq-rewriter is sufficiently well-written to be included in the platform (especially under so general a name as "rewriter"), and coqutil at the very least might require a better description than "Coq library for tactics, basic definitions, sets, maps". |
|
I haven't looked at coqutil closely enough, but how big is the overlap
with stdpp. Some of the goals seem similar, at least wrt basic
definitions, sets, maps.
…On Mon, Jan 17, 2022 at 8:51 PM Jason Gross ***@***.***> wrote:
I think the main bottleneck is that if we include fiat-crypto, we'd also need to include coq-rewriter and coq-coqutil. Neither of these have non-dev packages. I'm willing to make such packages, but I'm not sure that coq-rewriter is sufficiently well-written to be included in the platform (especially under so general a name as "rewriter"), and coqutil at the very least might require a better description than "Coq library for tactics, basic definitions, sets, maps".
—
Reply to this email directly, view it on GitHub, or unsubscribe.
Triage notifications on the go with GitHub Mobile for iOS or Android.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
|
cc @samuelgruetter @andres-erbsen about coqutil vs stdpp |
|
I would expect significant conceptual overlap without any drop-in compatibility between coqutil and stdpp. At the very least, both seem to overlap the coq standard library to a significant extent. |
|
Another consideration for including coqutil in the coq platform is that I don't use the coq platform or opam, and I don't think @samuelgruetter does either. I see that @JasonGross has volunteered to create packages, but reading the coq platform charter gave me a sense that more active maintenance would be expected, and I don't know how to predict how our choices in coqutil would work out for coq platform users. As far as I'm concerned, you'all are welcome to include coqutil in the coq platform, and reading the list of other packages does not make me feel like there is a clear quality standard that coqutil does not meet, but please judge carefully whether including it would actually do the potential users a favor given the respective development and release models (or lack thereof). |
|
The idea behind Coq Platform is not so much that we guarantee that everything included meets content wise the highest design quality standards. A certain technical quality is guaranteed by using Coq, of course. The things should be useful and one main consideration is that if something is included and users base their work on a package, they should be able to rely on that they don't have to factor it out with the next Coq Release. Also we expect that the API of a package is reasonably stable. There is an "extended" content level, though, where no such guarantees are given. This is for packages where the authors want to see what resonance they get. |
|
I think coqutil and rewriter are fine for the extended content level (fiat-crypto also makes no strong guaranties about its API, or alternatively we consider the fully stable API to be the generated binaries, and I've been at least making an effort to identify changes in more intermediate APIs in releases lately). Is there a way to tag opam packages as more-or-less experimental / unguaranteed? |
The main issue for including coqutil (even in the extended level) would be if there is no one committing to make timely releases when new Coq versions are released. |
Can't we take for granted that whoever is volunteering to maintain fiat-crypto is also volunteering to maintain its closely related (almost internal) dependencies such as coqutil? Or am I misunderstanding your remark? (Perhaps you were considering the situation where coqutil would be integrated but not fiat-crypto?) |
|
That does make sense to me. As long as the person that volunteers confirms that this would work. |
|
@JasonGross , @andres-erbsen, @spitters : so how shall we proceed? If you say that the API of fiat-crypto is not very stable I am not sure if it is useful as a base for other peoples work. Even the packages in "extended" are intended to be useful as base for derived work. Would you consider fiat-crypto as "leaf" in a project derivation tree? I could btw. not find an opam package for it, so it is hard for me to judge if other work already depends on it. |
MSoegtropIMC
added
postponed to next release
needs: discussion
I'm happy to make nominal releases of coqutil and rewriter.
I think this is a question for @spitters , though there's the additional issue that I think the newest work building on fiat-crypto is about the bedrock2/rupicola part, which is currently not even in the dev package because bedrock2 moves too quickly and rupicola too slowly to have good opam packages. I've been trying to make some progress on this at coq/opam#2115, but am lacking debugging time. |
I can make non-dev packages of fiat-crypto, coqutil, and the rewriter, though it might take me a couple days. (Someone else should also feel free to make the packages ... should I make releases of each of the projects first?) |
|
@spitters : can you say a few words on the intended usage of fiat-crypto for derived work - essentially your vision about it? From the description of @JasonGross I am not sure if it would be the right move to include fiat-crypto in Coq Platform now. @JasonGross : how do you see the outlook? Is it so that the APIs of fiat-crypto will stabilize in say a year, or is using fiat-cyrpto more like landing a helicopter on a sheet of paper flying in the air for the next few years?
Assuming we decide it is a good idea to include fiat-crypto, yes - Coq Platform has a strict "releases only" policy - we do some minor patching from time to time, but a tag is a must have. I would also prefer if you would review the meta information in the dev opam package (description ...) and do the first release of the opam packages. |
|
@spitters will get the chance to answer in more detail, but his team is already relying on fiat-crypto for derived work. See an example paper here: https://eprint.iacr.org/2021/549.pdf |
|
We're using fiat with my PhD-students in https://github.com/AU-COBRA/AUCurves, which also depends on bedrock2. |
|
The non-bedrock2 API of Fiat Crypto is essentially stable, mostly due to lack of developer time to work on it. The bedrock2/rupicola part is still under more-or-less active development. I guess if the non-dev packages are tagged, I can just tag a release at the relevant compatible commit each time Coq is released, and so the non-dev / platform version could include rupicola and bedrock2 and all the bells and whistles. |
|
I've created tags for all the dependencies, I'll try to create opam packages soon |
|
I've created #178 |
|
I guess you mean coq/opam#2137. |
|
@andres-erbsen : so one should use |
|
I think you need to do |
|
Btw.: I need a smoke test file for each of these packages: |
|
@JasonGross : a new tag would be nice - I can take your change as local patch until it is there. |
@MSoegtropIMC What do you mean by smoke test file? Is what I said at #178 (comment) not sufficient for rewriter and fiat-crypto?
|
|
@JasonGross : I prefer example files which exist in the projects, but I can take these lines. Also I would like to have one file for each project. But for packages in the extended level it is not a strict requirement (there are currently no exceptions, though). |
|
Well actually there are a few exceptions already ... but still I would like to have smoke test files. The smoke test proved useful quite frequently already. |
|
@JasonGross : an editorial note: the bedrock2 opam package says "A verified compiler targeting RISC-V from this language exists but is not yet on opam." As far as I understand this does exist in opam now. |
|
Here are some fast-ish non-leaf files form the other developments: |
|
@andres-erbsen as per
I think we're supposed to suggest short scripts that are not things that are installed. Are you suggesting just @MSoegtropIMC coq/opam#2341 should hopefully work. Once merged, the 0.0.15 version of fiat-crypto should automatically require the correct version of bedrock2. |
|
Hmm, I thought we wanted existing files.
|
|
Ah, I missed that, thanks! |
|
Good smoke test files for rewriter: https://github.com/mit-plv/rewriter/blob/master/src/Rewriter/Demo.v (12s) or https://github.com/mit-plv/rewriter/blob/master/src/Rewriter/Rewriter/Examples.v (54s) The |
|
Thanks! I think the 46s are fine for a large project like fiat-crypto. For rewriter I will take the Demo.v. file. For the others I will test the files suggested by Andres. I can patch the requires on copy (quite a few projects need this). |
|
The suggested tests are all fine (and don't require patching of Require statements). I will do tests on Linux and Windows and then merge. Thanks a lot for the support! |
* Add stacksize warnings to avoid confusion c.f. coq/platform#178 (comment) * Alternative check stack limit * Use printf rather than echo as per #1407 (comment)
|
There is one more issue: bedrock2 does not compile in 32 bit Windows - as far as I understand some 128 bit C stuff: For the time being I will solve this by excluding fiat-crypto in 32 bit Windows, but it might be worthwhile to fix it. For Coq 32 bit Windows is not completely obsolete, because it needs only about half the amount of memory which also makes it faster (better cache utilization). Since memory is an issue with Coq especially on laptops, even some researchers prefer the 32 bit Windows version. Otherwise everything is fine except that Coq Platform CI now again touches the 6h limit on Windows. Coq Platform meanwhile has an option to exclude or individually select "large packages" and I will put fiat-crypto and its dependencies in this group. Do you have a good name for fiat-crypto and its dependencies? IMHO it is not adequate to treat bedrock2 as fiat-crypto dependency in package selection. Well, these questions are one pagers anyway, so I will include the list of packages (but make them selectable only as one set), but a better name would be nice. How about MIT-SW since as far as I understand this is the majority of the SW oriented tools of the MIT Coq group(s). |
|
I created mit-plv/bedrock2@1c9f0ed which I hope will fix the 32-bit issue. The build-times of these repositories are indeed annoying. I'm sorry about that. Is that timeout a blocker for anything? I agree that grouping all these packages under the name of any one of them would not be fair, but I'm not sure what a better presentation would be -- riscv-coq isn't even clearly about software on its own. Perhaps the closest existing categorization is that all of these projects started in the MIT PLV ("programming languages and verification") group. Is the information that would appear in this page somewhere in the repository so that I could pass it by other maintainers of these projects? |
|
Please update to coq-fiat-crypto.0.0.17 once coq/opam#2353 is merged |
* Add stacksize warnings to avoid confusion c.f. coq/platform#178 (comment) * Alternative check stack limit * Use printf rather than echo as per #1407 (comment)
|
I updated fiat-crypto to version 0.0.17 in the 2022.09.1 prep branch. |
|
FTR: the update of fiat-crypto required these updates of dependencies: Since this is all in the extended level I would say a more formal process is not required and I take your request to update fiat-crypto as request to update the dependencies as well. |
As requested at #28 opening an issue tracking:
mit-plv/fiat-crypto#925
The text was updated successfully, but these errors were encountered: