Add new example basic_deterministic

This commit:
- Adds the `basic_deterministic` example demonstrating deterministic API usage (without a `randombytes()` implementation).
- Uses only the `crypto_kem_*_derand` functions, no `randombytes()` required.
- Updates the expected key outputs for deterministic entropy inputs (Alice: all 0 input, Bob: all 1 input).

Signed-off-by: willieyz <[email protected]>

Author: willieyz

.github/workflows/base.yml

@@ -227,6 +227,9 @@ jobs:
       - name: basic
         run: |
           CFLAGS="-O0" make run -C examples/basic
+      - name: basic_deterministic
+        run: |
+          CFLAGS="-O0" make run -C examples/basic_deterministic
       - name: bring_your_own_fips202
         run: |
           CFLAGS="-O0" make run -C examples/bring_your_own_fips202

BIBLIOGRAPHY.md

@@ -26,6 +26,7 @@ source code and documentation.
   - National Institute of Standards and Technology
 * URL: https://csrc.nist.gov/projects/cryptographic-module-validation-program/fips-140-3-ig-announcements
 * Referenced from:
+  - [examples/basic_deterministic/mlkem_native/custom_no_randomized_config.h](examples/basic_deterministic/mlkem_native/custom_no_randomized_config.h)
   - [integration/liboqs/config_aarch64.h](integration/liboqs/config_aarch64.h)
   - [integration/liboqs/config_c.h](integration/liboqs/config_c.h)
   - [integration/liboqs/config_x86_64.h](integration/liboqs/config_x86_64.h)

Makefile

@@ -218,6 +218,7 @@ clean:
 	-make clean -C examples/bring_your_own_fips202 >/dev/null
 	-make clean -C examples/custom_backend >/dev/null
 	-make clean -C examples/basic >/dev/null
+	-make clean -C examples/basic_deterministic >/dev/null
 	-make clean -C examples/monolithic_build >/dev/null
 	-make clean -C examples/monolithic_build_native >/dev/null
 	-make clean -C examples/monolithic_build_multilevel >/dev/null

examples/README.md

@@ -8,6 +8,9 @@ This directory contains minimal examples demonstrating how you can use mlkem-nat
 
 See [basic](basic) for a basic example of how to build a single instance of mlkem-native.
 
+## Basic_deterministic
+
+See [basic_deterministic](basic_deterministic) for a basic example of how to build a single instance of mlkem-native without `randombytes()` implementation. This allows users to build mlkem-native using only the deterministic API when randomized functions are not required.
 ## Multi-level build (C only)
 
 See [multilevel_build](multilevel_build) for an example of how to build one instance of mlkem-native per security level,

examples/basic_deterministic/.gitignore

@@ -0,0 +1,3 @@
+# SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
+
+build

examples/basic_deterministic/Makefile

@@ -0,0 +1,96 @@
+# (SPDX-License-Identifier: CC-BY-4.0)
+
+.PHONY: build run clean size
+.DEFAULT_GOAL := all
+
+# Append cross-prefix for cross compilation
+# Remove or ignore for native builds
+CC  ?= gcc
+SIZE ?= size
+# When called from the root Makefile, CROSS_PREFIX has already been added here
+ifeq (,$(findstring $(CROSS_PREFIX),$(CC)))
+CC  := $(CROSS_PREFIX)$(CC)
+endif
+
+ifeq (,$(findstring $(CROSS_PREFIX),$(SIZE)))
+SIZE  := $(CROSS_PREFIX)$(SIZE)
+endif
+
+# Part A:
+#
+# mlkem-native source and header files
+#
+# If you are not concerned about minimizing for a specific backend,
+# you can just include _all_ source files into your build.
+MLK_SOURCE=$(wildcard                    \
+	mlkem_native/mlkem/src/*.c           \
+	mlkem_native/mlkem/src/**/*.c        \
+	mlkem_native/mlkem/src/**/**/*.c     \
+	mlkem_native/mlkem/src/**/**/**/*.c)
+
+# Part B:
+#
+# Your application source code
+APP_SOURCE=$(wildcard *.c)
+
+ALL_SOURCE=$(MLK_SOURCE) $(RNG_SOURCE) $(APP_SOURCE)
+
+BUILD_DIR=build
+BIN=test_binary
+
+CFLAGS := \
+	-Wall \
+	-Wextra \
+	-Werror \
+	-Wmissing-prototypes \
+	-Wshadow \
+	-Werror \
+	-Wpointer-arith \
+	-Wredundant-decls \
+	-Wno-long-long \
+	-Wno-unknown-pragmas \
+	-Wno-unused-command-line-argument \
+	-fomit-frame-pointer \
+	-std=c99 \
+	-pedantic \
+	-MMD \
+	-O3 \
+	-Imlkem_native \
+	$(CFLAGS)
+
+CFLAGS += -DMLK_CONFIG_NAMESPACE_PREFIX=mlkem
+CFLAGS += -DMLK_CONFIG_FILE="\"custom_no_randomized_config.h\""
+
+BINARY_NAME_FULL_512=$(BUILD_DIR)/$(BIN)512
+BINARY_NAME_FULL_768=$(BUILD_DIR)/$(BIN)768
+BINARY_NAME_FULL_1024=$(BUILD_DIR)/$(BIN)1024
+BINARIES_FULL=$(BINARY_NAME_FULL_512) $(BINARY_NAME_FULL_768) $(BINARY_NAME_FULL_1024)
+
+$(BINARY_NAME_FULL_512): CFLAGS += -DMLK_CONFIG_PARAMETER_SET=512
+$(BINARY_NAME_FULL_768): CFLAGS += -DMLK_CONFIG_PARAMETER_SET=768
+$(BINARY_NAME_FULL_1024): CFLAGS += -DMLK_CONFIG_PARAMETER_SET=1024
+
+$(BINARIES_FULL): $(ALL_SOURCE)
+	echo "$@"
+	mkdir -p $(BUILD_DIR)
+	$(CC) $(CFLAGS) $^ -o $@
+
+all: build size
+
+build: $(BINARIES_FULL)
+
+run: $(BINARIES_FULL)
+	$(EXEC_WRAPPER) ./$(BINARY_NAME_FULL_512)
+	$(EXEC_WRAPPER) ./$(BINARY_NAME_FULL_768)
+	$(EXEC_WRAPPER) ./$(BINARY_NAME_FULL_1024)
+
+size: build
+	@echo "=== Size info for $(BINARY_NAME_FULL_512) ==="
+	@$(SIZE) $(BINARY_NAME_FULL_512)
+	@echo "=== Size info for $(BINARY_NAME_FULL_768) ==="
+	@$(SIZE) $(BINARY_NAME_FULL_768)
+	@echo "=== Size info for $(BINARY_NAME_FULL_1024) ==="
+	@$(SIZE) $(BINARY_NAME_FULL_1024)
+
+clean:
+	rm -rf $(BUILD_DIR)

examples/basic_deterministic/README.md

@@ -0,0 +1,17 @@
+[//]: # (SPDX-License-Identifier: CC-BY-4.0)
+
+# Building mlkem-native
+
+This directory contains a minimal example showing how to build **mlkem-native** for use cases only requiring the deterministic key generation and encapsulation APIs (`crypto_kem_keypair_derand` and `crypto_kem_enc_derand`). In that case, no implementation of `randombytes()` has to be provided.
+
+## Components
+
+An application using mlkem-native as-is needs to include the following components:
+
+1. mlkem-native source tree, including [`mlkem/src/`](../../mlkem/src) and [`mlkem/src/fips202/`](../../mlkem/src/fips202).
+2. The application source code
+
+
+## Usage
+
+Build this example with `make build`, run with `make run`.

examples/basic_deterministic/main.c

@@ -0,0 +1,109 @@
+/*
+ * Copyright (c) The mlkem-native project authors
+ * SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
+ */
+
+#include <stdio.h>
+#include <string.h>
+
+/* Import public mlkem-native API
+ *
+ * This requires specifying the parameter set and namespace prefix
+ * used for the build.
+ */
+#define MLK_CONFIG_API_PARAMETER_SET MLK_CONFIG_PARAMETER_SET
+#define MLK_CONFIG_API_NAMESPACE_PREFIX mlkem
+#include "mlkem_native/mlkem/mlkem_native.h"
+
+/* No randombytes needed for deterministic API */
+
+#define CHECK(x)                                              \
+  do                                                          \
+  {                                                           \
+    int rc;                                                   \
+    rc = (x);                                                 \
+    if (!rc)                                                  \
+    {                                                         \
+      fprintf(stderr, "ERROR (%s,%d)\n", __FILE__, __LINE__); \
+      return 1;                                               \
+    }                                                         \
+  } while (0)
+
+int main(void)
+{
+  uint8_t pk[CRYPTO_PUBLICKEYBYTES];
+  uint8_t sk[CRYPTO_SECRETKEYBYTES];
+  uint8_t ct[CRYPTO_CIPHERTEXTBYTES];
+  uint8_t key_a[CRYPTO_BYTES];
+  uint8_t key_b[CRYPTO_BYTES];
+  uint8_t alice_en[2 * MLKEM_SYMBYTES] = {0};
+  uint8_t bob_en[MLKEM_SYMBYTES] = {1};
+
+
+  /* The PCT modifies the PRNG state, so the KAT tests don't work.
+   * We run KAT tests only for disabled PCT.
+   * Expected keys are generated using deterministic entropy:
+   * keypair uses all-zero entropy {0}, enc uses all-one entropy {1} */
+#if !defined(MLK_CONFIG_KEYGEN_PCT)
+#if MLK_CONFIG_PARAMETER_SET == 512
+  const uint8_t expected_key[] = {
+      0x5f, 0x5f, 0x8c, 0xf5, 0x7c, 0x34, 0xd4, 0x68, 0x06, 0xa2, 0xe9,
+      0xc9, 0x28, 0xba, 0x10, 0x5a, 0x46, 0xf2, 0x67, 0x1a, 0xc7, 0x81,
+      0xdf, 0xf1, 0x4a, 0xbb, 0x27, 0xea, 0x46, 0x06, 0x46, 0x3c};
+#elif MLK_CONFIG_PARAMETER_SET == 768
+  const uint8_t expected_key[] = {
+      0x85, 0x21, 0xab, 0xc8, 0x14, 0xc7, 0x67, 0x70, 0x4f, 0xa6, 0x25,
+      0xd9, 0x35, 0x95, 0xd0, 0x03, 0x79, 0xa8, 0xb3, 0x70, 0x35, 0x2c,
+      0xa4, 0xba, 0xb3, 0xa6, 0x82, 0x46, 0x63, 0x0d, 0xb0, 0x8b};
+#elif MLK_CONFIG_PARAMETER_SET == 1024
+  const uint8_t expected_key[] = {
+      0x30, 0x4d, 0xbe, 0x54, 0xd6, 0x6f, 0x80, 0x66, 0xc6, 0xa8, 0x1c,
+      0x6b, 0x36, 0xc4, 0x48, 0x9b, 0xf9, 0xe6, 0x05, 0x79, 0x83, 0x3c,
+      0x4e, 0xdc, 0x8a, 0xc7, 0x92, 0xe5, 0x73, 0x0d, 0xdd, 0x85};
+#endif /* MLK_CONFIG_PARAMETER_SET == 1024 */
+#endif /* !MLK_CONFIG_KEYGEN_PCT */
+
+  /* No randombytes_reset() needed for deterministic API */
+
+  printf("Generating keypair ... ");
+
+  /* Alice generates a public key using deterministic API with all-zero entropy
+   */
+  CHECK(crypto_kem_keypair_derand(pk, sk, alice_en) == 0);
+
+  printf("DONE\n");
+  printf("Encaps... ");
+
+  /* Bob derives a secret key and creates a response using deterministic API
+   * with all-one entropy */
+  CHECK(crypto_kem_enc_derand(ct, key_b, pk, bob_en) == 0);
+
+  printf("DONE\n");
+  printf("Decaps... ");
+
+  /* Alice uses Bobs response to get her shared key */
+  CHECK(crypto_kem_dec(key_a, ct, sk) == 0);
+
+  printf("DONE\n");
+  printf("Compare... ");
+
+  CHECK(memcmp(key_a, key_b, CRYPTO_BYTES) == 0);
+
+  printf("Shared secret: ");
+  {
+    size_t i;
+    for (i = 0; i < sizeof(key_a); i++)
+    {
+      printf("%02x", key_a[i]);
+    }
+  }
+  printf("\n");
+
+  /* Check against hardcoded result to make sure that
+   * we integrated custom FIPS202 correctly */
+  CHECK(memcmp(key_a, expected_key, CRYPTO_BYTES) == 0);
+
+
+  printf("OK\n");
+  return 0;
+}