Lib.rs

Cryptographyaws-lc-rs
#bindings #aws #aws-security #fips #aws-lc #validate

sys aws-lc-fips-sys

AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. This is the FIPS validated version of AWS-LC.

by Sean McGrail, aws, crypto-alg, justsmth

24 releases (12 breaking)

0.12.7 Apr 3, 2024
0.12.5 Mar 8, 2024
0.11.2 Nov 20, 2023
0.9.1 Jul 10, 2023
0.0.1 Nov 10, 2022

#532 in Cryptography

Download history 1110/week @ 2024-01-02 632/week @ 2024-01-09 630/week @ 2024-01-16 1253/week @ 2024-01-23 11169/week @ 2024-01-30 19720/week @ 2024-02-06 19159/week @ 2024-02-13 15199/week @ 2024-02-20 14903/week @ 2024-02-27 16471/week @ 2024-03-05 18536/week @ 2024-03-12 18638/week @ 2024-03-19 10126/week @ 2024-03-26 17667/week @ 2024-04-02 14754/week @ 2024-04-09 15620/week @ 2024-04-16

60,826 downloads per month
Used in 14 crates (via aws-lc-rs)

ISC AND (Apache-2.0 OR ISC) AND OpenSSL

41MB
1M SLoC

GNU Style Assembly 490K SLoC // 0.0% comments Rust 365K SLoC // 0.0% comments C 86K SLoC // 0.2% comments C++ 81K SLoC // 0.1% comments Perl 80K SLoC // 0.1% comments Assembly 71K SLoC // 0.0% comments Go 50K SLoC // 0.1% comments Bitbake 8K SLoC Batch 38 SLoC

aws-lc-fips-sys

crates.io GitHub

Autogenerated low-level AWS-LC FIPS bindings for the Rust programming language. We do not recommend directly relying on these bindings.

Documentation.

FIPS

This crate provides bindings to AWS-LC-FIPS 2.x, which has completed FIPS validation testing by an accredited lab and has been submitted to NIST for certification. The static build of AWS-LC-FIPS is used.

Supported Targets
x86_64-unknown-linux-gnu
aarch64-unknown-linux-gnu

Refer to the NIST Cryptographic Module Validation Program's Modules In Progress List for the latest status of the static or dynamic AWS-LC Cryptographic Module. A complete list of supported operating environments will be made available in the vendor security policy once the validation certificate has been issued. We will also update our release notes and documentation to reflect any changes in FIPS certification status.

Release Support

This crate pulls in the source code of the latest AWS-LC FIPS branch to build with it. Bindings for platforms we officially support are pre-generated. The platforms which aws-lc-fips-sys builds on is limited to the platforms where the AWS-LC FIPS static build is supported.

Pregenerated Bindings Availability

CPU OS
x86-64 Linux
arm-64 Linux

Tested AWS-LC FIPS Build Environments

aws-lc-fips-sys currently relies on the AWS-LC FIPS static build, please see our CI documentation at AWS-LC.

Build Prerequisites

Since this crate builds AWS-LC as a native library, all build tools needed to build AWS-LC are applicable to aws-lc-fips-sys as well. This includes Go and Perl, which are hard dependencies for the AWS-LC FIPS build.

Building AWS-LC

If you use a different build combination for FIPS and would like us to support it, please open an issue to us at AWS-LC.

Security Notification Process

If you discover a potential security issue in AWS-LC or aws-lc-fips-sys, we ask that you notify AWS Security via our vulnerability reporting page. Please do not create a public GitHub issue.

If you package or distribute aws-lc-fips-sys, or use aws-lc-fips-sys as part of a large multi-user service, you may be eligible for pre-notification of future aws-lc-fips-sys releases. Please contact aws-lc-pre-notifications@amazon.com.

Contribution

See contributing file at AWS-LC

Licensing

See license at AWS-LC

Dependencies