Skip to content

Commit 38e7de7

Browse files
cschutijsercschutijser
committed
Merge branch 'sqisign'
2 parents d0b2cb7 + 2556ded commit 38e7de7

File tree

1 file changed

+12
-6
lines changed

1 file changed

+12
-6
lines changed

Dockerfile

Lines changed: 12 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -34,8 +34,8 @@ RUN apt-get install -y autoconf pkgconf libtool liburcu-dev libcap-dev libuv1-de
3434
RUN wget https://github.com/openssl/openssl/releases/download/openssl-3.4.0/openssl-3.4.0.tar.gz && tar xzf openssl-3.4.0.tar.gz
3535
RUN cd openssl-3.4.0 && ./Configure --openssldir=/opt/openssl --prefix=/opt/openssl && make -j$(nproc) && make install
3636

37-
RUN git clone https://github.com/open-quantum-safe/liboqs.git liboqs
38-
RUN git clone https://github.com/open-quantum-safe/oqs-provider.git oqs-provider
37+
RUN git clone https://github.com/SIDN/liboqs
38+
RUN git clone https://github.com/SIDN/oqs-provider
3939
RUN git clone https://github.com/SIDN/OQS-bind.git
4040

4141
ENV PATH="/opt/openssl/bin:$PATH"
@@ -45,13 +45,15 @@ ENV liboqs_DIR="$OPENSSL_ROOT_DIR"
4545

4646
# Build liboqs and install in /app/liboqs-bin
4747

48-
RUN cd liboqs && git checkout 0.13.0
49-
RUN cmake -S liboqs -B liboqs/build -DBUILD_SHARED_LIBS=ON -DCMAKE_INSTALL_PREFIX=$liboqs_DIR -DOQS_BUILD_ONLY_LIB=ON
48+
RUN cd liboqs && git checkout 85e6927ca15f6a998dee7a0c3ceaf657432632ba # wip-sqisign
49+
RUN cmake -S liboqs -B liboqs/build -DBUILD_SHARED_LIBS=ON -DCMAKE_INSTALL_PREFIX=$liboqs_DIR
5050
RUN cmake --build liboqs/build --parallel $(nproc)
5151
RUN cmake --build liboqs/build --target install
52+
# Basic sanity test to verify if algorithm's integration in liboqs works
53+
RUN ./liboqs/build/tests/test_sig sqisign-1
5254

5355
# Build liboqs to /app/oqsprovider-bin
54-
RUN cd oqs-provider && git checkout 0.9.0
56+
RUN cd oqs-provider && git checkout cedcdf34416faf7cc9495438ea06c6df264da444 # wip-sqisign
5557
RUN cd oqs-provider && cmake -S . -B _build
5658
RUN cd oqs-provider && cmake --build _build
5759
RUN cd oqs-provider && cmake --install _build
@@ -61,7 +63,7 @@ ENV OPENSSL_CONF=/opt/pqc-openssl.cnf
6163

6264
RUN (test -f /opt/openssl/lib64/ossl-modules/oqsprovider.so && sed -i /opt/pqc-openssl.cnf -e 's#/opt/openssl/lib#/opt/openssl/lib64#g') || :
6365

64-
RUN cd OQS-bind && git checkout 2aeb0420392282d062feeb6831ae885d08ce2b6c
66+
RUN cd OQS-bind && git checkout acd32406f844bdc65d269eab0a9a23ed0024fd79 # sqisign
6567
ADD patches/falcon-unpadded.patch /OQS-bind/falcon-unpadded.patch
6668
RUN cd OQS-bind && git apply --ignore-space-change --ignore-whitespace falcon-unpadded.patch
6769
RUN cd OQS-bind && autoreconf -fi
@@ -84,5 +86,9 @@ RUN rm -rf /liboqs
8486
RUN mkdir /var/cache/bind
8587
ADD named.conf /usr/local/etc/named.conf
8688

89+
# Do some tests to verify functionality
90+
RUN dnssec-keygen -a SQISIGN1 example.nl
91+
RUN dnssec-keygen -a SQISIGN1 -f KSK example.nl
92+
8793
CMD named -g
8894
#ENTRYPOINT /OQS-bind/bin/dnssec/dnssec-signzone

0 commit comments

Comments
 (0)