WiP: [kris] R4 Artifacts for ML-DSA (#151)

* [kris] R4 Artifacts for ML-DSA

* Artifacts for ML-DSA
* Update readme.md

* Update artifacts_certs_r4.zip

Author: kriskwiatkowski

providers/kris/artifacts_certs_r4.zip

@@ -2,7 +2,6 @@
 
 #set -x
 source oids.sh
-source source
 
 function check_cert() {
 

providers/kris/default/oids.sh

@@ -0,0 +1,27 @@
+#!/bin/bash
+# set -x
+
+DIR=artifacts
+source oids.sh
+
+gen() {
+   ALG=$1
+   NAME=$2
+   OID=$3
+
+   # Root/TA:
+   mkdir -p ${DIR}
+   # Generate key pair
+   openssl req -x509 -new -newkey ${ALG} -keyout ${DIR}/${NAME}-${OID}_ta_priv.pem -extensions v3_ca -out ${DIR}/${NAME}-${OID}_ta.pem -nodes -subj "/CN=TA anti-atlas (PQShield)"
+   # Also generate cert in DER
+   openssl x509 -in ${DIR}/${NAME}-${OID}_ta.pem -out ${DIR}/${NAME}-${OID}_ta.der -outform DER
+}
+
+# ML-DSA
+gen mldsa44 ml-dsa-44 ${MLDSA_44}
+gen mldsa65 ml-dsa-65 ${MLDSA_65}
+gen mldsa87 ml-dsa-87 ${MLDSA_87}
+
+# Falcon
+gen falcon512 falcon512 ${FALCON_512}
+gen falcon1024 falcon1024 ${FALCON_1024}

providers/kris/default/check_r3.sh providers/kris/scripts/check_r3.sh

@@ -0,0 +1,12 @@
+export MLDSA_44=2.16.840.1.101.3.4.3.17
+export MLDSA_65=2.16.840.1.101.3.4.3.18
+export MLDSA_87=2.16.840.1.101.3.4.3.19
+export MLDSA_44_with_SHA512=2.16.840.1.101.3.4.3.32
+export MLDSA_65_with_SHA512=2.16.840.1.101.3.4.3.33
+export MLDSA_87_with_SHA512=2.16.840.1.101.3.4.3.34
+export FALCON_512=1.3.9999.3.6
+export FALCON_1024=1.3.9999.3.9
+
+export PQSP_OID_MLDSA44=2.16.840.1.101.3.4.3.17
+export PQSP_OID_MLDSA65=2.16.840.1.101.3.4.3.18
+export PQSP_OID_MLDSA87=2.16.840.1.101.3.4.3.19

providers/kris/default/gen.sh providers/kris/scripts/gen.sh

@@ -69,7 +69,7 @@
 * Provider short name: `kris`
 * Company name: PQShield
 * Company website: https://pqshield.com/
-* Implementation: Proprietary
+* Implementation: Proprietary. It's a wrapper that internally uses proprietary ML-DSA implementation.
 
 
 # OpenCA