Skip to content

bsc-loca/PQCUARK

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
includes/pqcuark-common
includes/pqcuark-common
 
 
interface
interface
 
 
patches
patches
 
 
rtl
rtl
 
 
schemes
schemes
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
filelist.f
filelist.f
 
 

Repository files navigation

PQCUARK

PQCUARK is a set of hardware accelerators and toolchain support for post-quantum cryptography (PQC) on RISC-V. This repo aggregates RTL, scheme submodules, the binutils patch workflow, and a Sargantana simulation environment.

Related paper: https://eprint.iacr.org/2025/2178

Index

Overview

Main flow:

  1. Generate and build the RISC-V toolchain with PQCUARK opcodes.
  2. Build ML-KEM or ML-DSA binaries.
  3. Run them on the Sargantana simulator (Verilator).

Repository structure

  • interface/ RISC-V interfaces for BFU/Keccak.
  • rtl/ RTL for PQCUARK-NTT and PQCUARK-Keccak.
  • includes/ shared RTL utilities (submodule pqcuark-common).
  • schemes/ scheme submodules (ML-KEM and ML-DSA).
  • toolchain/ local clones of riscv-gnu-toolchain and PQCUARK binutils.
  • patches/ generated patches (binutils and Sargantana).
  • scripts/ toolchain/Sargantana/run helpers.
  • filelist.f RTL file list for simulation/lint.

Prerequisites

  • Git access to the remote repositories.
  • Usual riscv-gnu-toolchain build dependencies.
  • Verilator and dependencies for core_tile (Sargantana).

Generate the PQCUARK toolchain

The toolchain target clones riscv-gnu-toolchain, generates the opcode patch from the PQCUARK binutils fork, and builds the toolchain with a local prefix.

make toolchain

The toolchain is installed at:

toolchain/gcc-pqcuark

Set GCC_PQCUARK to build the schemes (use the helper script):

source schemes/ml-kem/set-env.sh
# or
source schemes/ml-dsa/set-env.sh

Build scheme binaries

Default binaries (PQCUARK):

make ml-kem-bin
make ml-dsa-bin

Output binaries:

  • schemes/ml-kem/out/test_kyber512_pqcuark
  • schemes/ml-dsa/out/test_dilithium2_pqcuark

Override test and configuration via variables:

make ml-kem-bin ML_KEM_TEST=test_kyber768 ML_KEM_CONF=pqcuark
make ml-dsa-bin ML_DSA_TEST=test_dilithium3 ML_DSA_CONF=pqcuark

All supported variations:

# ML-KEM tests (ML_KEM_TEST)
test_kyber512 | test_kyber768 | test_kyber1024
test_speed512 | test_speed768 | test_speed1024

# ML-KEM configurations (ML_KEM_CONF)
nist | pqrv_rv64im | pqrv_rv64imb | pqcuark

# ML-DSA tests (ML_DSA_TEST)
test_dilithium2 | test_dilithium3 | test_dilithium5
test_speed2 | test_speed3 | test_speed5

# ML-DSA configurations (ML_DSA_CONF)
nist | pqrv_rv64im | pqrv_rv64imb | pqcuark

Run binaries on Sargantana (Verilator)

Full flow initializes Sargantana, builds the simulator, and runs a default binary (kyber512_pqcuark, dilithium2_pqcuark):

make verilator-ml-kem
make verilator-ml-dsa

To run a specific binary, pass the same variables to the Verilator targets (they build and then execute the matching output binary name out/<test>_<conf>):

make verilator-ml-kem ML_KEM_TEST=test_kyber768 ML_KEM_CONF=pqcuark
make verilator-ml-dsa ML_DSA_TEST=test_dilithium3 ML_DSA_CONF=pqcuark

Useful RUN_VERILATOR_OPTS flags (forwarded to scripts/run_verilator.sh):

RUN_VERILATOR_OPTS="-w -d" make verilator-ml-kem

Flags:

  • -w generate a VCD waveform under output/waves/.
  • -d dump a signature file under output/signature/.
  • -k generate a Konata trace under output/konata/.
  • -s run Spike reference execution (requires SPIKE_PATH).
  • -c run cosimulation (DefaultConfig-sim-cosim binary).
  • -a "<args>" append extra arguments to the Verilator invocation.

If you only need to prepare Sargantana or the simulator:

make sargantana-init
make core-sim

Cleanup

make clean

Individual targets:

make clean-toolchain
make clean-sargantana
make schemes-clean

Notes

License

Copyright 2026 Barcelona Supercomputing Center (BSC)

Licensed under the Solderpad Hardware License v 2.1 (the "License"); you may not use this file except in compliance with the License, or, at your option, the Apache License version 2.0. You may obtain a copy of the License at

https://solderpad.org/licenses/SHL-2.1/

Unless required by applicable law or agreed to in writing, any work distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

About

PQCUARK is a set of hardware accelerator components and toolchain support for post-quantum cryptography (PQC) on RISC-V. This repository aggregates RTL blocks (NTT BFU and Keccak), scheme submodules, and a Makefile workflow to generate/apply custom binutils opcode patches.

Resources

Readme

License

View license
Activity
Custom properties

Stars

8 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages