Readme: Add note that verify.c must not be compiled using LTO

Signed-off-by: Hanno Becker <[email protected]>
pq-code-package · Nov 21, 2024 · 27e932e · 27e932e
1 parent 7f356ea
commit 27e932e
Showing 1 changed file with 13 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -21,6 +21,19 @@ to be readable and micro-optimization deferred to automated tooling such as
 implementations for which the C-code is verified to be free of undefined behaviour, and where all assembly is
 functionally verified.
 
+### Intended use
+
+**mlkem-native** is currently intended to be used as a code package, where source files of **mlkem-native**
+are imported into a consuming project's source tree and built using that project's build system. The build system
+provided in this repository is for experimental and development purposes only.
+
+#### Secure Compilation
+
+**mlkem-native** includes functions that are susceptible to compiler-induced variable-time code when inlined into
+their call-sites. Those functions are contained in [`mlkem/verify.c`](mlkem/verify.c). To ensure secure compilation, you
+MUST NOT enable link time optimization (LTO) for `mlkem/verify.c`. To the best of our knowledge, it is safe to compile
+the rest of the source tree with LTO.
+
 ### Current state
 
 **mlkem-native** is work in progress. **WE DO NOT CURRENTLY RECOMMEND RELYING ON THIS LIBRARY IN A PRODUCTION