apply feedback

Parrot7483 · Parrot7483 · commit 3286475ddfe7 · 2025-08-20T10:25:28.000+02:00
diff --git a/libcrux-intrinsics/src/avx2.rs b/libcrux-intrinsics/src/avx2.rs
@@ -1,5 +1,3 @@
-#![allow(unused_unsafe)]
-
 #[cfg(all(target_arch = "x86", not(hax)))]
 pub use core::arch::x86::*;
 #[cfg(all(target_arch = "x86_64", not(hax)))]
diff --git a/libcrux-sha3/Cargo.toml b/libcrux-sha3/Cargo.toml
@@ -32,7 +32,6 @@ harness = false
 
 [dev-dependencies]
 criterion = "0.7.0"
-hax-lib.workspace = true
 hex = "0.4.3"
 rand = "0.9"
 cavp = { version = "0.0.2", path = "../cavp" }
diff --git a/libcrux-sha3/hax.py b/libcrux-sha3/hax.py
@@ -116,7 +116,7 @@ def __call__(self, parser, args, values, option_string=None) -> None:
             "--interfaces",
             interface_include,
         ]
-        hax_env = {"RUSTFLAGS": "-C debug-assertions=off"}
+        hax_env = {}
         shell(
             cargo_hax_into,
             cwd=".",
diff --git a/libcrux-sha3/src/generic_keccak/xof.rs b/libcrux-sha3/src/generic_keccak/xof.rs
@@ -1,6 +1,6 @@
 use crate::{
     generic_keccak::KeccakState,
-    traits::{Absorb, KeccakItem, Squeeze1},
+    traits::{Absorb, KeccakItem, Squeeze},
 };
 
 /// The internal keccak state that can also buffer inputs to absorb.
@@ -131,28 +131,24 @@ impl<const PARALLEL_LANES: usize, const RATE: usize, STATE: KeccakItem<PARALLEL_
     /// If `consumed > 0` is returned, `self.buf` contains a full block to be
     /// loaded.
     // Note: consciously not inlining this function to avoid using too much stack
-    #[hax_lib::requires(PARALLEL_LANES > 0 && self.buf_len < RATE)]
     pub(crate) fn fill_buffer(&mut self, inputs: &[&[u8]; PARALLEL_LANES]) -> usize {
         let input_len = inputs[0].len();
-
-        // Nothing buffered, buffer full, or no input
-        if self.buf_len == 0 || self.buf_len >= RATE || input_len == 0 {
-            return 0;
-        }
-
-        // Remaining space to complete a full block
-        let need = RATE - self.buf_len;
-        if input_len < need {
-            return 0;
-        }
-
-        let end = RATE; // buf_len + need == RATE
-        #[allow(clippy::needless_range_loop)]
-        for i in 0..PARALLEL_LANES {
-            self.buf[i][self.buf_len..end].copy_from_slice(&inputs[i][..need]);
+        let mut consumed = 0;
+        if self.buf_len > 0 {
+            // There's something buffered internally to consume.
+            if self.buf_len + input_len >= RATE {
+                // We have enough data when combining the internal buffer and
+                // the input.
+                consumed = RATE - self.buf_len;
+
+                #[allow(clippy::needless_range_loop)]
+                for i in 0..PARALLEL_LANES {
+                    self.buf[i][self.buf_len..].copy_from_slice(&inputs[i][..consumed]);
+                }
+                self.buf_len += consumed;
+            }
         }
-        self.buf_len = end;
-        need
+        consumed
     }
 
     /// Absorb a final block.
@@ -187,7 +183,7 @@ impl<const RATE: usize, STATE: KeccakItem<1>> KeccakXofState<1, RATE, STATE> {
     #[inline(always)]
     pub(crate) fn squeeze(&mut self, out: &mut [u8])
     where
-        KeccakState<1, STATE>: Squeeze1<STATE>,
+        KeccakState<1, STATE>: Squeeze<STATE>,
     {
         if self.sponge {
             // If we called `squeeze` before, call f1600 first.
diff --git a/libcrux-sha3/src/simd/portable.rs b/libcrux-sha3/src/simd/portable.rs
@@ -5,7 +5,7 @@ use crate::{generic_keccak::KeccakState, traits::*};
 #[inline(always)]
 fn rotate_left<const LEFT: i32, const RIGHT: i32>(x: u64) -> u64 {
     debug_assert!(LEFT + RIGHT == 64);
-    u64::rotate_left(x, LEFT as u32)
+    x.rotate_left(LEFT as u32)
 }
 
 #[inline(always)]
@@ -142,7 +142,7 @@ impl Absorb<1> for KeccakState<1, u64> {
     }
 }
 
-impl Squeeze1<u64> for KeccakState<1, u64> {
+impl Squeeze<u64> for KeccakState<1, u64> {
     fn squeeze<const RATE: usize>(&self, out: &mut [u8], start: usize, len: usize) {
         store_block::<RATE>(&self.st, out, start, len);
     }
diff --git a/libcrux-sha3/src/traits.rs b/libcrux-sha3/src/traits.rs
@@ -74,7 +74,7 @@ pub(crate) trait Absorb<const N: usize> {
 #[hax_lib::fstar::replace(
     interface,
     "
-class t_Squeeze1 (v_Self: Type0) (v_T: Type0) = {
+class t_Squeeze (v_Self: Type0) (v_T: Type0) = {
   f_squeeze_pre:v_RATE: usize -> v_Self -> t_Slice u8 -> usize -> usize -> Type0;
   f_squeeze_post:v_RATE: usize -> v_Self -> t_Slice u8 -> usize -> usize -> t_Slice u8 -> Type0;
   f_squeeze:v_RATE: usize -> x0: v_Self -> x1: t_Slice u8 -> x2: usize -> x3: usize
@@ -84,10 +84,14 @@ class t_Squeeze1 (v_Self: Type0) (v_T: Type0) = {
 }
 "
 )]
-pub(crate) trait Squeeze1<T: KeccakItem<1>> {
+pub(crate) trait Squeeze<T: KeccakItem<1>> {
     fn squeeze<const RATE: usize>(&self, out: &mut [u8], start: usize, len: usize);
 }
 
+// TODO: Renaming the squeeze functions of the Squeeze2 and Squeeze4 Trait is currently
+// necessary because F* will not find the correct pre conditions otherwise. This is
+// most likely fixed when doing full type checking.
+
 /// Trait to squeeze bytes out of the state.
 ///
 /// Note that this is implemented for each platform (1, 2, 4) because hax can't

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,3 @@`
`1`		`-#![allow(unused_unsafe)]`
`2`		`-`
`3`	`1`	`#[cfg(all(target_arch = "x86", not(hax)))]`
`4`	`2`	`pub use core::arch::x86::*;`
`5`	`3`	`#[cfg(all(target_arch = "x86_64", not(hax)))]`
Original file line number	Diff line number	Diff line change
`@@ -116,7 +116,7 @@ def __call__(self, parser, args, values, option_string=None) -> None:`
`116`	`116`	`"--interfaces",`
`117`	`117`	`interface_include,`
`118`	`118`	`]`
`119`		`- hax_env = {"RUSTFLAGS": "-C debug-assertions=off"}`
	`119`	`+ hax_env = {}`
`120`	`120`	`shell(`
`121`	`121`	`cargo_hax_into,`
`122`	`122`	`cwd=".",`
Original file line number	Diff line number	Diff line change
`@@ -5,7 +5,7 @@ use crate::{generic_keccak::KeccakState, traits::*};`
`5`	`5`	`#[inline(always)]`
`6`	`6`	`fn rotate_left<const LEFT: i32, const RIGHT: i32>(x: u64) -> u64 {`
`7`	`7`	`debug_assert!(LEFT + RIGHT == 64);`
`8`		`- u64::rotate_left(x, LEFT as u32)`
	`8`	`+ x.rotate_left(LEFT as u32)`
`9`	`9`	`}`
`10`	`10`
`11`	`11`	`#[inline(always)]`
`@@ -142,7 +142,7 @@ impl Absorb<1> for KeccakState<1, u64> {`
`142`	`142`	`}`
`143`	`143`	`}`
`144`	`144`
`145`		`-impl Squeeze1<u64> for KeccakState<1, u64> {`
	`145`	`+impl Squeeze<u64> for KeccakState<1, u64> {`
`146`	`146`	`fn squeeze<const RATE: usize>(&self, out: &mut [u8], start: usize, len: usize) {`
`147`	`147`	`store_block::<RATE>(&self.st, out, start, len);`
`148`	`148`	`}`
Original file line number	Diff line number	Diff line change
`@@ -74,7 +74,7 @@ pub(crate) trait Absorb<const N: usize> {`
`74`	`74`	`#[hax_lib::fstar::replace(`
`75`	`75`	`interface,`
`76`	`76`	`"`
`77`		`-class t_Squeeze1 (v_Self: Type0) (v_T: Type0) = {`
	`77`	`+class t_Squeeze (v_Self: Type0) (v_T: Type0) = {`
`78`	`78`	`f_squeeze_pre:v_RATE: usize -> v_Self -> t_Slice u8 -> usize -> usize -> Type0;`
`79`	`79`	`f_squeeze_post:v_RATE: usize -> v_Self -> t_Slice u8 -> usize -> usize -> t_Slice u8 -> Type0;`
`80`	`80`	`f_squeeze:v_RATE: usize -> x0: v_Self -> x1: t_Slice u8 -> x2: usize -> x3: usize`
`@@ -84,10 +84,14 @@ class t_Squeeze1 (v_Self: Type0) (v_T: Type0) = {`
`84`	`84`	`}`
`85`	`85`	`"`
`86`	`86`	`)]`
`87`		`-pub(crate) trait Squeeze1<T: KeccakItem<1>> {`
	`87`	`+pub(crate) trait Squeeze<T: KeccakItem<1>> {`
`88`	`88`	`fn squeeze<const RATE: usize>(&self, out: &mut [u8], start: usize, len: usize);`
`89`	`89`	`}`
`90`	`90`
	`91`	`+// TODO: Renaming the squeeze functions of the Squeeze2 and Squeeze4 Trait is currently`
	`92`	`+// necessary because F* will not find the correct pre conditions otherwise. This is`
	`93`	`+// most likely fixed when doing full type checking.`
	`94`	`+`
`91`	`95`	`/// Trait to squeeze bytes out of the state.`
`92`	`96`	`///`
`93`	`97`	`/// Note that this is implemented for each platform (1, 2, 4) because hax can't`