Skip to content

Commit

Permalink
regen example code
Browse files Browse the repository at this point in the history
  • Loading branch information
@karthikbhargavan
karthikbhargavan committed Feb 18, 2025
1 parent d3e2454 commit 96967d4
Show file tree
Hide file tree
Showing 3 changed files with 237 additions and 235 deletions.
174 changes: 87 additions & 87 deletions examples/chacha20/proofs/fstar/extraction/Chacha20.Hacspec_helper.fst
View file
Original file line number Diff line number Diff line change
@@ -1,85 +1,24 @@
module Chacha20.Hacspec_helper
#set-options "--fuel 0 --ifuel 1 --z3rlimit 40"
#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
open Core
open FStar.Mul

let add_state (state other: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_usize 16) =
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 16)
(fun state temp_1_ ->
let state:t_Array u32 (mk_usize 16) = state in
let _:usize = temp_1_ in
true)
state
(fun state i ->
let state:t_Array u32 (mk_usize 16) = state in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize state
i
(Core.Num.impl__u32__wrapping_add (state.[ i ] <: u32) (other.[ i ] <: u32) <: u32)
<:
t_Array u32 (mk_usize 16))
in
state

let update_array (array: t_Array u8 (mk_usize 64)) (v_val: t_Slice u8) : t_Array u8 (mk_usize 64) =
let _:Prims.unit =
Hax_lib.v_assert (mk_usize 64 >=. (Core.Slice.impl__len #u8 v_val <: usize) <: bool)
in
let array:t_Array u8 (mk_usize 64) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(Core.Slice.impl__len #u8 v_val <: usize)
(fun array temp_1_ ->
let array:t_Array u8 (mk_usize 64) = array in
let _:usize = temp_1_ in
true)
array
(fun array i ->
let array:t_Array u8 (mk_usize 64) = array in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize array i (v_val.[ i ] <: u8)
<:
t_Array u8 (mk_usize 64))
in
array

let xor_state (state other: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_usize 16) =
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 16)
(fun state temp_1_ ->
let state:t_Array u32 (mk_usize 16) = state in
let _:usize = temp_1_ in
true)
state
(fun state i ->
let state:t_Array u32 (mk_usize 16) = state in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize state
i
((state.[ i ] <: u32) ^. (other.[ i ] <: u32) <: u32)
<:
t_Array u32 (mk_usize 16))
in
state

let to_le_u32s_16_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 16) =
let out:t_Array u32 (mk_usize 16) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 16) in
let out:t_Array u32 (mk_usize 16) =
let to_le_u32s_3_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 3) =
let out:t_Array u32 (mk_usize 3) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 3) in
let out:t_Array u32 (mk_usize 3) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 16)
(mk_usize 3)
(fun out temp_1_ ->
let out:t_Array u32 (mk_usize 16) = out in
let out:t_Array u32 (mk_usize 3) = out in
let _:usize = temp_1_ in
true)
out
(fun out i ->
let out:t_Array u32 (mk_usize 16) = out in
let out:t_Array u32 (mk_usize 3) = out in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize out
i
(Core.Num.impl__u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
(Core.Num.impl_u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
#Core.Array.t_TryFromSliceError
(Core.Convert.f_try_into #(t_Slice u8)
#(t_Array u8 (mk_usize 4))
Expand All @@ -101,26 +40,26 @@ let to_le_u32s_16_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 16) =
<:
u32)
<:
t_Array u32 (mk_usize 16))
t_Array u32 (mk_usize 3))
in
out

let to_le_u32s_3_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 3) =
let out:t_Array u32 (mk_usize 3) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 3) in
let out:t_Array u32 (mk_usize 3) =
let to_le_u32s_8_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 8) =
let out:t_Array u32 (mk_usize 8) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 8) in
let out:t_Array u32 (mk_usize 8) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 3)
(mk_usize 8)
(fun out temp_1_ ->
let out:t_Array u32 (mk_usize 3) = out in
let out:t_Array u32 (mk_usize 8) = out in
let _:usize = temp_1_ in
true)
out
(fun out i ->
let out:t_Array u32 (mk_usize 3) = out in
let out:t_Array u32 (mk_usize 8) = out in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize out
i
(Core.Num.impl__u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
(Core.Num.impl_u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
#Core.Array.t_TryFromSliceError
(Core.Convert.f_try_into #(t_Slice u8)
#(t_Array u8 (mk_usize 4))
Expand All @@ -142,26 +81,26 @@ let to_le_u32s_3_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 3) =
<:
u32)
<:
t_Array u32 (mk_usize 3))
t_Array u32 (mk_usize 8))
in
out

let to_le_u32s_8_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 8) =
let out:t_Array u32 (mk_usize 8) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 8) in
let out:t_Array u32 (mk_usize 8) =
let to_le_u32s_16_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 16) =
let out:t_Array u32 (mk_usize 16) = Rust_primitives.Hax.repeat (mk_u32 0) (mk_usize 16) in
let out:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 8)
(mk_usize 16)
(fun out temp_1_ ->
let out:t_Array u32 (mk_usize 8) = out in
let out:t_Array u32 (mk_usize 16) = out in
let _:usize = temp_1_ in
true)
out
(fun out i ->
let out:t_Array u32 (mk_usize 8) = out in
let out:t_Array u32 (mk_usize 16) = out in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize out
i
(Core.Num.impl__u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
(Core.Num.impl_u32__from_le_bytes (Core.Result.impl__unwrap #(t_Array u8 (mk_usize 4))
#Core.Array.t_TryFromSliceError
(Core.Convert.f_try_into #(t_Slice u8)
#(t_Array u8 (mk_usize 4))
Expand All @@ -183,7 +122,7 @@ let to_le_u32s_8_ (bytes: t_Slice u8) : t_Array u32 (mk_usize 8) =
<:
u32)
<:
t_Array u32 (mk_usize 8))
t_Array u32 (mk_usize 16))
in
out

Expand All @@ -200,7 +139,7 @@ let u32s_to_le_bytes (state: t_Array u32 (mk_usize 16)) : t_Array u8 (mk_usize 6
(fun out i ->
let out:t_Array u8 (mk_usize 64) = out in
let i:usize = i in
let tmp:t_Array u8 (mk_usize 4) = Core.Num.impl__u32__to_le_bytes (state.[ i ] <: u32) in
let tmp:t_Array u8 (mk_usize 4) = Core.Num.impl_u32__to_le_bytes (state.[ i ] <: u32) in
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 4)
(fun out temp_1_ ->
Expand All @@ -218,3 +157,64 @@ let u32s_to_le_bytes (state: t_Array u32 (mk_usize 16)) : t_Array u8 (mk_usize 6
t_Array u8 (mk_usize 64)))
in
out

let xor_state (state other: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_usize 16) =
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 16)
(fun state temp_1_ ->
let state:t_Array u32 (mk_usize 16) = state in
let _:usize = temp_1_ in
true)
state
(fun state i ->
let state:t_Array u32 (mk_usize 16) = state in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize state
i
((state.[ i ] <: u32) ^. (other.[ i ] <: u32) <: u32)
<:
t_Array u32 (mk_usize 16))
in
state

let add_state (state other: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_usize 16) =
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(mk_usize 16)
(fun state temp_1_ ->
let state:t_Array u32 (mk_usize 16) = state in
let _:usize = temp_1_ in
true)
state
(fun state i ->
let state:t_Array u32 (mk_usize 16) = state in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize state
i
(Core.Num.impl_u32__wrapping_add (state.[ i ] <: u32) (other.[ i ] <: u32) <: u32)
<:
t_Array u32 (mk_usize 16))
in
state

let update_array (array: t_Array u8 (mk_usize 64)) (v_val: t_Slice u8) : t_Array u8 (mk_usize 64) =
let _:Prims.unit =
Hax_lib.v_assert (mk_usize 64 >=. (Core.Slice.impl__len #u8 v_val <: usize) <: bool)
in
let array:t_Array u8 (mk_usize 64) =
Rust_primitives.Hax.Folds.fold_range (mk_usize 0)
(Core.Slice.impl__len #u8 v_val <: usize)
(fun array temp_1_ ->
let array:t_Array u8 (mk_usize 64) = array in
let _:usize = temp_1_ in
true)
array
(fun array i ->
let array:t_Array u8 (mk_usize 64) = array in
let i:usize = i in
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize array i (v_val.[ i ] <: u8)
<:
t_Array u8 (mk_usize 64))
in
array
86 changes: 44 additions & 42 deletions examples/chacha20/proofs/fstar/extraction/Chacha20.fst
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
module Chacha20
#set-options "--fuel 0 --ifuel 1 --z3rlimit 40"
#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
open Core
open FStar.Mul

Expand All @@ -18,15 +18,15 @@ let chacha20_line
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.update_at state
a
(Core.Num.impl__u32__wrapping_add (state.[ a ] <: u32) (state.[ b ] <: u32) <: u32)
(Core.Num.impl_u32__wrapping_add (state.[ a ] <: u32) (state.[ b ] <: u32) <: u32)
in
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.update_at state d ((state.[ d ] <: u32) ^. (state.[ a ] <: u32) <: u32)
in
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.update_at state
d
(Core.Num.impl__u32__rotate_left (state.[ d ] <: u32) s <: u32)
(Core.Num.impl_u32__rotate_left (state.[ d ] <: u32) s <: u32)
in
state

Expand Down Expand Up @@ -121,9 +121,9 @@ let chacha20_rounds (state: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_usize 1
let _:i32 = temp_1_ in
true)
st
(fun st v__i ->
(fun st e_i ->
let st:t_Array u32 (mk_usize 16) = st in
let v__i:i32 = v__i in
let e_i:i32 = e_i in
chacha20_double_round st <: t_Array u32 (mk_usize 16))
in
st
Expand All @@ -133,11 +133,39 @@ let chacha20_core (ctr: u32) (st0: t_Array u32 (mk_usize 16)) : t_Array u32 (mk_
let state:t_Array u32 (mk_usize 16) =
Rust_primitives.Hax.Monomorphized_update_at.update_at_usize state
(mk_usize 12)
(Core.Num.impl__u32__wrapping_add (state.[ mk_usize 12 ] <: u32) ctr <: u32)
(Core.Num.impl_u32__wrapping_add (state.[ mk_usize 12 ] <: u32) ctr <: u32)
in
let k:t_Array u32 (mk_usize 16) = chacha20_rounds state in
Chacha20.Hacspec_helper.add_state state k

let chacha20_init (key: t_Array u8 (mk_usize 32)) (iv: t_Array u8 (mk_usize 12)) (ctr: u32)
: t_Array u32 (mk_usize 16) =
let (key_u32: t_Array u32 (mk_usize 8)):t_Array u32 (mk_usize 8) =
Chacha20.Hacspec_helper.to_le_u32s_8_ (key <: t_Slice u8)
in
let (iv_u32: t_Array u32 (mk_usize 3)):t_Array u32 (mk_usize 3) =
Chacha20.Hacspec_helper.to_le_u32s_3_ (iv <: t_Slice u8)
in
let list =
[
mk_u32 1634760805; mk_u32 857760878; mk_u32 2036477234; mk_u32 1797285236;
key_u32.[ mk_usize 0 ]; key_u32.[ mk_usize 1 ]; key_u32.[ mk_usize 2 ]; key_u32.[ mk_usize 3 ];
key_u32.[ mk_usize 4 ]; key_u32.[ mk_usize 5 ]; key_u32.[ mk_usize 6 ]; key_u32.[ mk_usize 7 ];
ctr; iv_u32.[ mk_usize 0 ]; iv_u32.[ mk_usize 1 ]; iv_u32.[ mk_usize 2 ]
]
in
FStar.Pervasives.assert_norm (Prims.eq2 (List.Tot.length list) 16);
Rust_primitives.Hax.array_of_list 16 list

let chacha20_key_block (state: t_Array u32 (mk_usize 16)) : t_Array u8 (mk_usize 64) =
let state:t_Array u32 (mk_usize 16) = chacha20_core (mk_u32 0) state in
Chacha20.Hacspec_helper.u32s_to_le_bytes state

let chacha20_key_block0 (key: t_Array u8 (mk_usize 32)) (iv: t_Array u8 (mk_usize 12))
: t_Array u8 (mk_usize 64) =
let state:t_Array u32 (mk_usize 16) = chacha20_init key iv (mk_u32 0) in
chacha20_key_block state

let chacha20_encrypt_block
(st0: t_Array u32 (mk_usize 16))
(ctr: u32)
Expand Down Expand Up @@ -169,34 +197,6 @@ let chacha20_encrypt_last (st0: t_Array u32 (mk_usize 16)) (ctr: u32) (plain: t_
<:
t_Slice u8)

let chacha20_init (key: t_Array u8 (mk_usize 32)) (iv: t_Array u8 (mk_usize 12)) (ctr: u32)
: t_Array u32 (mk_usize 16) =
let (key_u32: t_Array u32 (mk_usize 8)):t_Array u32 (mk_usize 8) =
Chacha20.Hacspec_helper.to_le_u32s_8_ (key <: t_Slice u8)
in
let (iv_u32: t_Array u32 (mk_usize 3)):t_Array u32 (mk_usize 3) =
Chacha20.Hacspec_helper.to_le_u32s_3_ (iv <: t_Slice u8)
in
let list =
[
mk_u32 1634760805; mk_u32 857760878; mk_u32 2036477234; mk_u32 1797285236;
key_u32.[ mk_usize 0 ]; key_u32.[ mk_usize 1 ]; key_u32.[ mk_usize 2 ]; key_u32.[ mk_usize 3 ];
key_u32.[ mk_usize 4 ]; key_u32.[ mk_usize 5 ]; key_u32.[ mk_usize 6 ]; key_u32.[ mk_usize 7 ];
ctr; iv_u32.[ mk_usize 0 ]; iv_u32.[ mk_usize 1 ]; iv_u32.[ mk_usize 2 ]
]
in
FStar.Pervasives.assert_norm (Prims.eq2 (List.Tot.length list) 16);
Rust_primitives.Hax.array_of_list 16 list

let chacha20_key_block (state: t_Array u32 (mk_usize 16)) : t_Array u8 (mk_usize 64) =
let state:t_Array u32 (mk_usize 16) = chacha20_core (mk_u32 0) state in
Chacha20.Hacspec_helper.u32s_to_le_bytes state

let chacha20_key_block0 (key: t_Array u8 (mk_usize 32)) (iv: t_Array u8 (mk_usize 12))
: t_Array u8 (mk_usize 64) =
let state:t_Array u32 (mk_usize 16) = chacha20_init key iv (mk_u32 0) in
chacha20_key_block state

let chacha20_update (st0: t_Array u32 (mk_usize 16)) (m: t_Slice u8)
: Alloc.Vec.t_Vec u8 Alloc.Alloc.t_Global =
let blocks_out:Alloc.Vec.t_Vec u8 Alloc.Alloc.t_Global = Alloc.Vec.impl__new #u8 () in
Expand Down Expand Up @@ -237,10 +237,11 @@ let chacha20_update (st0: t_Array u32 (mk_usize 16)) (m: t_Slice u8)
t_Array u8 (mk_usize 64))
in
let _:Prims.unit =
Hax_lib.v_assume ((Alloc.Vec.impl_1__len #u8 #Alloc.Alloc.t_Global blocks_out <: usize) =.
(i *! mk_usize 64 <: usize)
<:
bool)
Hax_lib.v_assume (b2t
((Alloc.Vec.impl_1__len #u8 #Alloc.Alloc.t_Global blocks_out <: usize) =.
(i *! mk_usize 64 <: usize)
<:
bool))
in
let blocks_out:Alloc.Vec.t_Vec u8 Alloc.Alloc.t_Global =
Alloc.Vec.impl_2__extend_from_slice #u8
Expand All @@ -251,10 +252,11 @@ let chacha20_update (st0: t_Array u32 (mk_usize 16)) (m: t_Slice u8)
blocks_out)
in
let _:Prims.unit =
Hax_lib.v_assume ((Alloc.Vec.impl_1__len #u8 #Alloc.Alloc.t_Global blocks_out <: usize) =.
(num_blocks *! mk_usize 64 <: usize)
<:
bool)
Hax_lib.v_assume (b2t
((Alloc.Vec.impl_1__len #u8 #Alloc.Alloc.t_Global blocks_out <: usize) =.
(num_blocks *! mk_usize 64 <: usize)
<:
bool))
in
let blocks_out:Alloc.Vec.t_Vec u8 Alloc.Alloc.t_Global =
if remainder_len <>. mk_usize 0
Expand Down
Loading

0 comments on commit 96967d4

Please sign in to comment.