package mlkem768

Import Path
	crypto/internal/mlkem768 (on go.dev)

Dependency Relation
	imports 5 packages, and imported by one package

Involved Source Files

	  d mlkem768.go
		Package mlkem768 implements the quantum-resistant key encapsulation method
		ML-KEM (formerly known as Kyber).
		
		Only the recommended ML-KEM-768 parameter set is provided.
		
		The version currently implemented is the one specified by [NIST FIPS 203 ipd],
		with the unintentional transposition of the matrix A reverted to match the
		behavior of [Kyber version 3.0]. Future versions of this package might
		introduce backwards incompatible changes to implement changes to FIPS 203.
Package-Level Type Names (only one)

	/* sort by: alphabet | popularity */
	 type DecapsulationKey (struct)
		A DecapsulationKey is the secret key used to decapsulate a shared key from a
		ciphertext. It includes various precomputed values.

		Fields (only one)
			encryptionKey.A [9]nttElement
				// A[i*k+j] = sampleNTT(ρ, j, i)

		Methods (total 2)
			(*DecapsulationKey) Bytes() []byte
				Bytes returns the extended encoding of the decapsulation key, according to
				FIPS 203 (DRAFT).

			(*DecapsulationKey) EncapsulationKey() []byte
				EncapsulationKey returns the public encapsulation key necessary to produce
				ciphertexts.

		As Outputs Of (at least 3)
			func GenerateKey() (*DecapsulationKey, error)
			func NewKeyFromExtendedEncoding(decapsulationKey []byte) (*DecapsulationKey, error)
			func NewKeyFromSeed(seed []byte) (*DecapsulationKey, error)
		As Inputs Of (at least one exported)
			func Decapsulate(dk *DecapsulationKey, ciphertext []byte) (sharedKey []byte, err error)


Package-Level Functions (total 5)

	 func Decapsulate(dk *DecapsulationKey, ciphertext []byte) (sharedKey []byte, err error)
		Decapsulate generates a shared key from a ciphertext and a decapsulation key.
		If the ciphertext is not valid, Decapsulate returns an error.
		
		The shared key must be kept secret.

	 func Encapsulate(encapsulationKey []byte) (ciphertext, sharedKey []byte, err error)
		Encapsulate generates a shared key and an associated ciphertext from an
		encapsulation key, drawing random bytes from crypto/rand.
		If the encapsulation key is not valid, Encapsulate returns an error.
		
		The shared key must be kept secret.

	 func GenerateKey() (*DecapsulationKey, error)
		GenerateKey generates a new decapsulation key, drawing random bytes from
		crypto/rand. The decapsulation key must be kept secret.

	 func NewKeyFromExtendedEncoding(decapsulationKey []byte) (*DecapsulationKey, error)
		NewKeyFromExtendedEncoding parses a decapsulation key from its FIPS 203
		(DRAFT) extended encoding.

	 func NewKeyFromSeed(seed []byte) (*DecapsulationKey, error)
		NewKeyFromSeed deterministically generates a decapsulation key from a 64-byte
		seed in the "d || z" form. The seed must be uniformly random.


Package-Level Constants (total 5)

	const CiphertextSize = 1088
	const DecapsulationKeySize = 2400
	const EncapsulationKeySize = 1184
	const SeedSize = 64
	const SharedKeySize = 32

The pages are generated with Golds v0.6.9-preview. (GOOS=linux GOARCH=amd64)
Golds is a Go 101 project developed by Tapir Liu.
PR and bug reports are welcome and can be submitted to the issue list.
Please follow @Go100and1 (reachable from the left QR code) to get the latest news of Golds.