Question 1

How do I use SPARKNaCl in a C project?

Accepted Answer

Currently, there is no official C API wrapper—it's a known TBD item in the README. You would need to write your own bindings or use Ada interfacing techniques, which can be complex without SPARK toolchain familiarity.

Question 2

Is SPARKNaCl more secure than Libsodium?

Accepted Answer

SPARKNaCl offers formal verification for type safety and correctness, providing higher assurance against common vulnerabilities like buffer overflows. However, Libsodium has a broader ecosystem and more algorithms, so security depends on your need for verified code versus feature breadth.

Question 3

What tools are needed to verify SPARKNaCl proofs?

Accepted Answer

You need GNAT and SPARK tools (like GNATprove) from AdaCore, specifically versions compatible with SPARK 2014. The README mentions using GNAT Community 2020/2021 or FSF GNAT 11.2.1, with proof engines CVC4 and Z3.

Question 4

How does SPARKNaCl performance compare to TweetNaCl?

Accepted Answer

Performance is competitive but varies: optimizations have improved speed, yet some parts like Salsa20 lack full analysis. The README notes performance tuning results, with trade-offs at different optimization levels (e.g., -O0 vs. -O1).

Question 5

Can SPARKNaCl run on embedded systems like Arduino?

Accepted Answer

Yes, due to its zero-footprint runtime compatibility, it can run on bare-metal targets. However, you'll need a GNAT cross-compiler for the specific architecture (e.g., RISC-V as used in testing) and handle PRNG integration yourself.

Question 6

What cryptographic algorithms does SPARKNaCl support?

Accepted Answer

It supports NaCl's core algorithms (e.g., Curve25519, Salsa20) plus extensions like ChaCha20, SHA-256, HMAC, HKDF, and AEAD, as detailed in the Key Features and June 2022 updates in the README.

Question 7

How to add a new algorithm to SPARKNaCl?

Accepted Answer

You would need to write it in SPARK 2014, adhere to the library's style with contracts and comments, and use GNATprove for verification. The process is complex and requires expertise in formal methods, as shown in the RFSB509 contribution example.

spark-nacl

What is spark-nacl?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions