Module pqc

zernel::commands

Module pqc 

Source
Expand description

zernel pqc โ€” Post-Quantum Cryptography tools

Provides quantum-resistant cryptographic operations for ML assets:

  • Key generation (ML-KEM + ML-DSA compatible keypairs)
  • Model/checkpoint signing and verification
  • Model/data encryption with PQC key exchange
  • Secure boot chain verification

Uses SHA-256 + AES-256-GCM as the symmetric core, with PQC key encapsulation and signatures wrapping the symmetric keys.

Modulesยง

hex ๐Ÿ”’
Simple hex encoding (avoids adding hex crate dependency).

Structsยง

PqcKeypair ๐Ÿ”’
PQC keypair stored on disk.
PqcSignature ๐Ÿ”’
Signature metadata stored alongside signed files.

Enumsยง

PqcCommands

Constantsยง

KEY_DIR ๐Ÿ”’
ZERNEL_PQC_VERSION ๐Ÿ”’

Functionsยง

collect_files ๐Ÿ”’
generate_key_material ๐Ÿ”’
Generate a cryptographically secure random key.
hash_path ๐Ÿ”’
Hash a file or directory (SHA-256).
key_path ๐Ÿ”’
load_key ๐Ÿ”’
pqc_dir ๐Ÿ”’
run
sign_hash ๐Ÿ”’
Sign a hash with the secret key (HMAC-SHA256).
verify_signature ๐Ÿ”’
Verify a signature.