Skip to content

liboqs 0.14.0 #229690

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
BrewTestBot merged 2 commits into from
Jul 10, 2025
Merged

liboqs 0.14.0 #229690

BrewTestBot merged 2 commits into from
Jul 10, 2025

Conversation

@BrewTestBot
Copy link
Contributor

@BrewTestBot BrewTestBot commented Jul 10, 2025

Created by brew bump

Created with brew bump-formula-pr.

Details

release notes 
liboqs version 0.14.0
=====================

About


The Open Quantum Safe (OQS) project has the goal of developing and prototyping quantum-resistant cryptography.  More information on OQS can be found on our website: https://openquantumsafe.org/ and on Github at https://github.com/open-quantum-safe/.


liboqs is an open source C library for quantum-resistant cryptographic algorithms.  Details about liboqs can be found in README.md.  See in particular limitations on intended use.


liboqs can be used with the following Open Quantum Safe application integrations:



Several demos are available for using the above libraries in applications, including Apache, Chromium, curl, haproxy, nginx, and Wireshark.


liboqs can also be used in the following programming languages via language-specific wrappers:



Release notes


This is version 0.14.0 of liboqs. It was released on July 10, 2025.


This release contains a security fix for secret-dependent branching in HQC. It introduces support for SNOVA, a NIST Additional Signatures Round 2 candidate, and a new optimized implementation of SHA3 using AVX-512VL instructions. Additionally, this is the first liboqs release to include the stable 1.0.0 version of PQ Code Package's mlkem-native.


This release also introduces a number of improvements to testing and infrastructure. The OQS project is now publishing benchmarking data on https://openquantumsafe.org/benchmarking and code coverage data on https://coveralls.io/github/open-quantum-safe/liboqs.


Deprecation notice


This will be the last release of liboqs to include Dilithium (that is, the NIST Round 3 version of Dilithium, prior to its standardization by NIST as ML-DSA in FIPS 204). Applications should switch to ML-DSA (FIPS 204). Please contact us if you have any concerns.


Security issues


    

  • CVE-2025-52473: Disabled compiler optimizations for HQC to avoid secret-dependent branches. Thank you to Zhenzhi Lai and Zhiyuan Zhang from from the University of Melbourne and the Max Planck Institute for Security and Privacy for identifying the issue.
    • 



What's New


This release continues from the 0.13.0 release of liboqs.


Key encapsulation mechanisms


    

  • HQC: Disabled compiler optimizations to avoid secret-dependent branching in certain configurations. HQC remains disabled by default.
    • 

  • ML-KEM: Updated the default ML-KEM implementation to PQCP's mlkem-native v1.0.0.
    • 



Digital signature schemes


    

  • New API: added an API function to check if a signature scheme supports signing with a context string.
    • 

  • SNOVA: added SNOVA from NIST Additional Signature Schemes Round 2.
    • 



Other changes


    

  • Added an AVX512VL-optimized backend for SHA3.
    • 

  • Improved memory management throughout the codebase.
    • 





Detailed changelog


What's Changed



New Contributors



Full Changelog: open-quantum-safe/liboqs@0.13.0...0.14.0

View the full release notes at https://github.com/open-quantum-safe/liboqs/releases/tag/0.14.0.

@github-actions github-actions bot added the bump-formula-pr PR was created using `brew bump-formula-pr` label Jul 10, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Jul 10, 2025

🤖 An automated task has requested bottles to be published to this PR.

Caution

Please do not push to this PR branch before the bottle commits have been pushed, as this results in a state that is difficult to recover from. If you need to resolve a merge conflict, please use a merge commit. Do not force-push to this PR branch.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Jul 10, 2025
@BrewTestBot BrewTestBot enabled auto-merge July 10, 2025 20:29
@BrewTestBot BrewTestBot added this pull request to the merge queue Jul 10, 2025
Merged via the queue into main with commit 108a8bc Jul 10, 2025
18 checks passed
@BrewTestBot BrewTestBot deleted the bump-liboqs-0.14.0 branch July 10, 2025 20:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stefanb stefanb stefanb approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@BrewTestBot @stefanb