aws
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/Model/AwsCryptographyDbEncryptionSdkDynamoDbTypes.dfy‎
Lines changed: 1 addition & 1 deletion b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/Model/AwsCryptographyDbEncryptionSdkDynamoDbTypes.dfy‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/Model/DynamoDbEncryption.smithy‎
Lines changed: 2 additions & 2 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/Model/DynamoDbEncryption.smithy‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/Beacon.dfy‎
Lines changed: 14 additions & 14 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/Beacon.dfy‎
Lines changed: 14 additions & 14 deletions
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/CompoundBeacon.dfy‎
Lines changed: 9 additions & 9 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/CompoundBeacon.dfy‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/ConfigToInfo.dfy‎
Lines changed: 20 additions & 27 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/ConfigToInfo.dfy‎
Lines changed: 20 additions & 27 deletions
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/DynamoToStruct.dfy‎
Lines changed: 4 additions & 4 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/DynamoToStruct.dfy‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/FilterExpr.dfy‎
Lines changed: 3 additions & 3 deletions b/‎DynamoDbEncryption/dafny/DynamoDbEncryption/src/FilterExpr.dfy‎
Lines changed: 3 additions & 3 deletions
@@ -17,7 +17,7 @@ module {:extern "software.amazon.cryptography.dbencryptionsdk.dynamodb.internald
   import AwsCryptographyKeyStoreTypes
   import AwsCryptographyPrimitivesTypes
   import ComAmazonawsDynamodbTypes
-    // Generic helpers for verification of mock/unit tests.
+  // Generic helpers for verification of mock/unit tests.
   datatype DafnyCallEvent<I, O> = DafnyCallEvent(input: I, output: O)
 
   // Begin Generated Types
 
@@ -719,7 +719,7 @@ structure SingleKeyStore {
   cacheTTL: Integer,
   @documentation("Provide the Shared Cache for Searchable Encryption.")
   cache : CacheType,
-  @documentation("Partition ID to distinguish Beacon Key Sources writing to a cache. If the Partition ID is the same for two Beacon Key Sources, they can share the same cache entries in the cache.")
+  @documentation("Partition ID to distinguish Beacon Key Sources writing to a Shared cache. If the Partition ID is the same for two Beacon Key Sources, they can share the same cache entries in the Shared cache.")
   partitionId: String
 }
 
@@ -740,7 +740,7 @@ structure MultiKeyStore {
   cacheTTL: Integer,
   @javadoc("Which type of local cache to use.")
   cache : CacheType,
-  @documentation("Partition ID to distinguish Beacon Key Sources writing to a cache. If the Partition ID is the same for two Beacon Key Sources, they can share the same cache entries in the cache.")
+  @documentation("Partition ID to distinguish Beacon Key Sources writing to a Shared cache. If the Partition ID is the same for two Beacon Key Sources, they can share the same cache entries in the Shared cache.")
   partitionId: String
 }
 
 
@@ -236,14 +236,14 @@ module BaseBeacon {
                 //# [AttributeValue](https://docs.aws.amazon.com/amazondynamodb/latest/APIReference/API_AttributeValue.html)
                 //# MUST be type "SS" StringSet.
                 && (ret.value.Some? ==> ret.value.value.SS?)
-                   //= specification/searchable-encryption/beacons.md#value-for-a-set-standard-beacon
-                   //= type=implication
-                   //# * The resulting set MUST NOT contain duplicates.
+                //= specification/searchable-encryption/beacons.md#value-for-a-set-standard-beacon
+                //= type=implication
+                //# * The resulting set MUST NOT contain duplicates.
                 && (ret.value.Some? ==> HasNoDuplicates(ret.value.value.SS))
-                   //= specification/searchable-encryption/beacons.md#asset-initialization
-                   //= type=implication
-                   //# * Writing an item MUST fail if the item contains this beacon's attribute,
-                   //# and that attribute is not of type Set.
+                //= specification/searchable-encryption/beacons.md#asset-initialization
+                //= type=implication
+                //# * Writing an item MUST fail if the item contains this beacon's attribute,
+                //# and that attribute is not of type Set.
                 && var value := TermLoc.TermToAttr(loc, item, None);
                 && (value.Some? && !(value.value.SS? || value.value.NS? || value.value.BS?) ==> ret.Failure?)
     {
@@ -272,14 +272,14 @@ module BaseBeacon {
                 //= type=implication
                 //# * This operation MUST return no value if the associated field does not exist in the record
                 && (bytes.None? ==> ret.value.None?)
-                   //= specification/searchable-encryption/beacons.md#value-for-a-non-set-standard-beacon
-                   //= type=implication
-                   //# * This operation MUST convert the attribute value of the associated field to
-                   //# a sequence of bytes, as per [attribute serialization](../dynamodb-encryption-client/ddb-attribute-serialization.md).
+                //= specification/searchable-encryption/beacons.md#value-for-a-non-set-standard-beacon
+                //= type=implication
+                //# * This operation MUST convert the attribute value of the associated field to
+                //# a sequence of bytes, as per [attribute serialization](../dynamodb-encryption-client/ddb-attribute-serialization.md).
                 && (bytes.Some? ==> ret.value.Some? && hash(bytes.value, key).Success? && ret.value.value == DDB.AttributeValue.S(hash(bytes.value, key).value))
-                   //= specification/searchable-encryption/beacons.md#value-for-a-non-set-standard-beacon
-                   //= type=implication
-                   //# * This operation MUST return the [basicHash](#basichash) of the resulting bytes and the configured [beacon length](#beacon-length).
+                //= specification/searchable-encryption/beacons.md#value-for-a-non-set-standard-beacon
+                //= type=implication
+                //# * This operation MUST return the [basicHash](#basichash) of the resulting bytes and the configured [beacon length](#beacon-length).
                 && (bytes.Some? ==> ret.value.Some? && base.hash(bytes.value, key, length).Success? && ret.value.value == DDB.AttributeValue.S(base.hash(bytes.value, key, length).value))
     {
       var bytes :- VirtToBytes(loc, item, vf);
 
@@ -397,9 +397,9 @@ module CompoundBeacon {
                 //= type=implication
                 //# * If a string is returned, it MUST NOT be empty.
                 && |res.value.value| > 0
-                   //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
-                   //= type=implication
-                   //# * This operation MUST iterate through all constructors, in order, using the first that succeeds.
+                //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
+                //= type=implication
+                //# * This operation MUST iterate through all constructors, in order, using the first that succeeds.
                 && TryConstructors(construct, item, vf, keys).Success?
     {
       TryConstructors(construct, item, vf, keys)
@@ -578,9 +578,9 @@ module CompoundBeacon {
       ensures part.Signed? && ret.Success? ==>
                 && ret.value == part.prefix + data
                 && 0 < |ret.value|
-                   //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
-                   //= type=implication
-                   //# * This operation MUST fail if any plaintext value used in the construction contains the split character.
+                //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
+                //= type=implication
+                //# * This operation MUST fail if any plaintext value used in the construction contains the split character.
                 && split !in data
 
       //= specification/searchable-encryption/beacons.md#part-value-calculation
@@ -593,9 +593,9 @@ module CompoundBeacon {
                 && keys.Keys?
                 && part.beacon.hashStr(data, keys.value).Success?
                 && ret.value == part.prefix + part.beacon.hashStr(data, keys.value).value
-                   //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
-                   //= type=implication
-                   //# * This operation MUST fail if any plaintext value used in the construction contains the split character.
+                //= specification/searchable-encryption/beacons.md#value-for-a-compound-beacon
+                //= type=implication
+                //# * This operation MUST fail if any plaintext value used in the construction contains the split character.
                 && split !in data
     {
       :- Need(split !in data, E("Value '" + data + "' for beacon part " + part.getName() + " contains the split character '" + [split] + "'."));
 
@@ -33,7 +33,6 @@ module SearchConfigToInfo {
   import SE = AwsCryptographyDbEncryptionSdkStructuredEncryptionTypes
   import MPT = AwsCryptographyMaterialProvidersTypes
   import Primitives = AtomicPrimitives
-  import UUID
 
   // convert configured SearchConfig to internal SearchInfo
   method Convert(outer : DynamoDbTableEncryptionConfig)
@@ -165,7 +164,7 @@ module SearchConfigToInfo {
           )
       );
     }
-    if config.single? && config.single.partitionId.Some? {
+    else if config.single? && config.single.partitionId.Some? {
       partitionIdBytes :- UTF8.Encode(config.single.partitionId.value)
       .MapFailure(
         e => Error.DynamoDbEncryptionException(
@@ -174,13 +173,7 @@ module SearchConfigToInfo {
       );
     }
     else {
-      var uuid? := UUID.GenerateUUID();
-
-      var uuid :- uuid?
-      .MapFailure(e => Error.DynamoDbEncryptionException(message := e));
-
-      partitionIdBytes :- UUID.ToByteArray(uuid)
-      .MapFailure(e => Error.DynamoDbEncryptionException(message := e));
+      partitionIdBytes :- I.GeneratePartitionId();
     }
 
     if config.multi? {
@@ -511,10 +504,10 @@ module SearchConfigToInfo {
               //= type=implication
               //# Initialization MUST fail if two standard beacons are configured with the same location.
               && FindBeaconWithThisLocation(converted, loc).None?
-                 //= specification/searchable-encryption/virtual.md#virtual-field-initialization
-                 //= type=implication
-                 //# Initialization MUST fail if a virtual field is defined with only one location,
-                 //# and also a [standard beacon](beacons.md#standard-beacon) is defined with that same location.
+              //= specification/searchable-encryption/virtual.md#virtual-field-initialization
+              //= type=implication
+              //# Initialization MUST fail if a virtual field is defined with only one location,
+              //# and also a [standard beacon](beacons.md#standard-beacon) is defined with that same location.
               && FindVirtualFieldWithThisLocation(virtualFields, {loc}).None?
   {
     if |beacons| == 0 {
@@ -643,10 +636,10 @@ module SearchConfigToInfo {
     //# or is not `signed`.
     ensures
       (&& 0 < |parts|
-          //= specification/searchable-encryption/beacons.md#signed-part-initialization
-          //= type=implication
-          //# If no [terminal location](virtual.md#terminal-location) is provided,
-          //# the `name` MUST be used as the [terminal location](virtual.md#terminal-location).
+       //= specification/searchable-encryption/beacons.md#signed-part-initialization
+       //= type=implication
+       //# If no [terminal location](virtual.md#terminal-location) is provided,
+       //# the `name` MUST be used as the [terminal location](virtual.md#terminal-location).
        && GetLoc(parts[0].name, parts[0].loc).Success?
        && var loc := GetLoc(parts[0].name, parts[0].loc).value;
        && !IsSignOnly(outer, CB.Signed(parts[0].prefix, parts[0].name, loc).loc))
@@ -728,10 +721,10 @@ module SearchConfigToInfo {
     ensures ret.Success? ==>
               && |ret.value| == 1
               && |ret.value[0].parts| == |parts| + |converted|
-                 //= specification/searchable-encryption/beacons.md#default-construction
-                 //= type=implication
-                 //# * This default constructor MUST be all of the signed parts,
-                 //# followed by all the encrypted parts, all parts being required.
+              //= specification/searchable-encryption/beacons.md#default-construction
+              //= type=implication
+              //# * This default constructor MUST be all of the signed parts,
+              //# followed by all the encrypted parts, all parts being required.
               && CB.OrderedParts(allParts, numNon)
               && (forall i | 0 <= i < |ret.value[0].parts| ::
                     && ret.value[0].parts[i].part == allParts[i]
@@ -1116,14 +1109,14 @@ module SearchConfigToInfo {
     ensures ret.Success? && 0 < |names| && data[names[0]].Standard? && data[names[0]].std.share.Some? ==>
               && var share := data[names[0]].std.share.value;
               && IsValidShare(data, names[0], data[names[0]].std.length, share).Success?
-                 //= specification/searchable-encryption/beacons.md#shared-initialization
-                 //= type=implication
-                 //# This name MUST be the name of a previously defined Standard Beacon.
+              //= specification/searchable-encryption/beacons.md#shared-initialization
+              //= type=implication
+              //# This name MUST be the name of a previously defined Standard Beacon.
               && share in data
               && data[share].Standard?
-                 //= specification/searchable-encryption/beacons.md#shared-initialization
-                 //= type=implication
-                 //# This beacon's [length](#beacon-length) MUST be equal to the `other` beacon's [length](#beacon-length).
+              //= specification/searchable-encryption/beacons.md#shared-initialization
+              //= type=implication
+              //# This beacon's [length](#beacon-length) MUST be equal to the `other` beacon's [length](#beacon-length).
               && data[share].std.length == data[names[0]].std.length
   {
     if |names| == 0 then
 
@@ -584,10 +584,10 @@ module DynamoToStruct {
     ensures ret.Success? ==>
               && U32ToBigEndian(|b|).Success?
               && |ret.value| == LENGTH_LEN + |b|
-                 //= specification/dynamodb-encryption-client/ddb-attribute-serialization.md#set-entry-length
-                 //= type=implication
-                 //# Set Entry Length MUST be a big-endian unsigned integer
-                 //# equal to the length of [Set Entry Value](#set-entry-value).
+              //= specification/dynamodb-encryption-client/ddb-attribute-serialization.md#set-entry-length
+              //= type=implication
+              //# Set Entry Length MUST be a big-endian unsigned integer
+              //# equal to the length of [Set Entry Value](#set-entry-value).
               && ret.value[0..LENGTH_LEN] == U32ToBigEndian(|b|).value
               && ret.value[LENGTH_LEN..] == b
   {
 
@@ -1289,9 +1289,9 @@ module DynamoDBFilterExpr {
         a[0] < b[0]
       else
         bIsHighSurrogate
-        // we know aIsHighSurrogate != bIsHighSurrogate and a[0] != b[0]
-        // so if bIsHighSurrogate then a is less
-        // and if aIsHighSurrogate then a is greater
+    // we know aIsHighSurrogate != bIsHighSurrogate and a[0] != b[0]
+    // so if bIsHighSurrogate then a is less
+    // and if aIsHighSurrogate then a is greater
   }
 
   predicate method UnicodeLessOrEqual(a : string, b : string)