The goal of this project is to provide a Coq model of the Semantics of the Cryptol language.
Cryptol is Galois' specification language for cryptography. Cryptol has a variety of uses:
- Write cryptography in a style that looks like offical specs (RFCs, Standards etc...)
- Allow for reasoning about properties of cryptography through connections to SMT solvers
- Prove correctness of C and Java programs with SAW
Simply stated, Cryptol shows the correctness of cryptography. By presenting a formal semantics we will
- Give confidence that programs that look correct have the expected meaning in cryptol
- Open the door to a huge range of analysis, including cryptographic properties of the sort proved in FCF
- Take a necessary step on the road to verifying SAW
- Create a point to anchor trust for verified compilation of Cryptol to a variety of hardware
- src: contains the main development
- HMAC: contains files related to verification of equivalence between cryptol HMAC and the HMAC spec from FCF
- SHA256: contains files related to verification of equivalence between cryptol SHA256 and FCF SHA256 spec (unfinished)
- OTP: contains files related to the verification of a cryptol implmentation of One Time Pad (good first example)
- verif: contains various interesting other proofs
- examples: example cryptol and microcryptol files to target
- script: A script to generate makefiles, called by configure
WARNING: This project is its infancy, and under active development.
- Coq 8.6
- Z3 (dependency of Cryptol)
- Haskell Platform (dependency of Cryptol)
- Make sure the version of cryptol you are running is as new or newer than this commit
- Clone and enter this repository
cd cryptol-semantics./configuremake
NOTE: make will only build the coq files in the src directory. In order to build everything, use make verif. When building everything, it is recommended that you build in parallel using make -jN for some appropriate N.
- Use cryptol to load your favorite cryptol program:
cryptol <filename> - In the interactive prompt type
:extract-coqto print out an AST of every current top level declaration - Copy the output and paste it as the right hand side of a variable declaration in Coq
- Use the
eager_eval_exprrelation to construct arguments that your terms evaluate to what you want