pq-code-package
diff --git a/‎.github/workflows/hol_light.yml‎
Lines changed: 18 additions & 0 deletions b/‎.github/workflows/hol_light.yml‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎flake.nix‎
Lines changed: 1 addition & 1 deletion b/‎flake.nix‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎proofs/hol_light/arm/Makefile‎
Lines changed: 11 additions & 1 deletion b/‎proofs/hol_light/arm/Makefile‎
Lines changed: 11 additions & 1 deletion
diff --git a/‎proofs/hol_light/arm/proofs/dump_bytecode.ml‎
Lines changed: 66 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/dump_bytecode.ml‎
Lines changed: 66 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/keccak_f1600_x1_scalar.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/keccak_f1600_x1_scalar.ml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/keccak_f1600_x1_v84a.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/keccak_f1600_x1_v84a.ml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/keccak_f1600_x2_v84a.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/keccak_f1600_x2_v84a.ml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/keccak_f1600_x4_v8a_scalar.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/keccak_f1600_x4_v8a_scalar.ml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/keccak_f1600_x4_v8a_v84a_scalar.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/keccak_f1600_x4_v8a_v84a_scalar.ml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎proofs/hol_light/arm/proofs/mlkem_intt.ml‎
Lines changed: 2 additions & 0 deletions b/‎proofs/hol_light/arm/proofs/mlkem_intt.ml‎
Lines changed: 2 additions & 0 deletions
@@ -32,7 +32,25 @@ concurrency:
   cancel-in-progress: true
 
 jobs:
+  # The proofs also check that the byte code is up to date,
+  # but we use this as a fast path to not even start the proofs
+  # if the byte code needs updating.
+  hol_light_bytecode:
+    name: HOL-Light bytecode check
+    runs-on: pqcp-arm64
+    if: github.repository_owner == 'pq-code-package' && !github.event.pull_request.head.repo.fork
+    steps:
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        with:
+          fetch-depth: 0
+      - uses: ./.github/actions/setup-shell
+        with:
+          gh_token: ${{ secrets.GITHUB_TOKEN }}
+          nix-shell: 'hol_light'
+          script: |
+            autogen --update-hol-light-bytecode --dry-run
   hol_light_proofs:
+    needs: [ hol_light_bytecode ]
     strategy:
       fail-fast: false
       matrix:
 
@@ -84,7 +84,7 @@
 
           devShells.hol_light = util.mkShell {
             packages = builtins.attrValues {
-              inherit (config.packages) hol_light s2n_bignum;
+              inherit (config.packages) linters hol_light s2n_bignum;
             };
           };
           devShells.ci = util.mkShell {
 
@@ -92,6 +92,9 @@ $(OBJ): %.o : %.S
 	cat $< | $(PREPROCESS) | $(SPLIT) | grep -v -E '^\s+.quad\s+0x[0-9a-f]+$$' | $(ASSEMBLE) -o $@ -
 	$(OBJDUMP) $@ | ( ( ! grep --ignore-case -E 'w18|[^0]x18' ) || ( rm $@ ; exit 1 ) )
 	cat $< | $(PREPROCESS) | $(SPLIT) | $(ASSEMBLE) -o $@ -
+	# MacOS may generate relocations in non-text sections that break
+	# the object file parser in HOL-Light
+	strip $@
 
 clean:; rm -f */*.o */*/*.o */*.correct */*.native
 
@@ -115,6 +118,10 @@ BASE?=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
 PROOF_BINS = $(OBJ:.o=.native)
 PROOF_LOGS = $(OBJ:.o=.correct)
 
+# Build precompiled binary for dumping bytecodes
+proofs/dump_bytecode.native: proofs/dump_bytecode.ml $(OBJ)
+	./proofs/build-proof.sh $(BASE)/$< "$(HOLLIGHT)" "$@"
+
 # Build precompiled native binaries of HOL Light proofs
 
 .SECONDEXPANSION:
@@ -135,7 +142,10 @@ run_proofs: build_proofs $(PROOF_LOGS);
 
 proofs: run_proofs ; $(SRC)/tools/count-proofs.sh .
 
-.PHONY: proofs build_proofs run_proofs sematest clean
+dump_bytecode: proofs/dump_bytecode.native
+	./$<
+
+.PHONY: proofs build_proofs run_proofs sematest clean dump_bytecode
 
 # Always run sematest regardless of dependency check
 FORCE: ;
 
@@ -0,0 +1,66 @@
+(*
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT-0
+ *)
+
+needs "arm/proofs/base.ml";;
+
+print_string "=== bytecode start: mlkem/keccak_f1600_x1_v84a.o ===\n";;
+print_literal_from_elf "mlkem/keccak_f1600_x1_v84a.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/keccak_f1600_x1_scalar.o ===\n";;
+print_literal_from_elf "mlkem/keccak_f1600_x1_scalar.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/keccak_f1600_x2_v84a.o ===\n";;
+print_literal_from_elf "mlkem/keccak_f1600_x2_v84a.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/keccak_f1600_x4_v8a_scalar.o \n";;
+print_literal_from_elf "mlkem/keccak_f1600_x4_v8a_scalar.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/keccak_f1600_x4_v8a_v84a_scalar.o ===\n";;
+print_literal_from_elf "mlkem/keccak_f1600_x4_v8a_v84a_scalar.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_intt.o ===============\n";;
+print_literal_from_elf "mlkem/mlkem_intt.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_ntt.o ================\n";;
+print_literal_from_elf "mlkem/mlkem_ntt.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_basemul_acc_montgomery_cached_k2.o ===\n";;
+print_literal_from_elf "mlkem/mlkem_poly_basemul_acc_montgomery_cached_k2.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_basemul_acc_montgomery_cached_k3.o ===\n";;
+print_literal_from_elf "mlkem/mlkem_poly_basemul_acc_montgomery_cached_k3.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_basemul_acc_montgomery_cached_k4.o ===\n";;
+print_literal_from_elf "mlkem/mlkem_poly_basemul_acc_montgomery_cached_k4.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_mulcache_compute.o ===\n";;
+print_literal_from_elf "mlkem/mlkem_poly_mulcache_compute.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_reduce.o ========\n";;
+print_literal_from_elf "mlkem/mlkem_poly_reduce.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_tobytes.o =======\n";;
+print_literal_from_elf "mlkem/mlkem_poly_tobytes.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_poly_tomont.o ========\n";;
+print_literal_from_elf "mlkem/mlkem_poly_tomont.o";;
+print_string "==== bytecode end =====================================\n\n";;
+
+print_string "=== bytecode start: mlkem/mlkem_rej_uniform.o ========\n";;
+print_literal_from_elf "mlkem/mlkem_rej_uniform.o";;
+print_string "==== bytecode end =====================================\n\n";;
@@ -15,6 +15,7 @@ needs "proofs/keccak_spec.ml";;
 
 let keccak_f1600_x1_scalar_mc = define_assert_from_elf
   "keccak_f1600_x1_scalar_mc" "mlkem/keccak_f1600_x1_scalar.o"
+(*** BYTECODE START ***)
 [
   0xd10203ff;       (* arm_SUB SP SP (rvalue (word 128)) *)
   0xa90253f3;       (* arm_STP X19 X20 SP (Immediate_Offset (iword (&32))) *)
@@ -305,6 +306,7 @@ let keccak_f1600_x1_scalar_mc = define_assert_from_elf
   0x910203ff;       (* arm_ADD SP SP (rvalue (word 128)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let KECCAK_F1600_X1_SCALAR_EXEC = ARM_MK_EXEC_RULE keccak_f1600_x1_scalar_mc;;
 
 
@@ -15,6 +15,7 @@ needs "proofs/keccak_spec.ml";;
 
 let keccak_f1600_x1_v84a_mc = define_assert_from_elf
   "keccak_f1600_x1_v84a_mc" "mlkem/keccak_f1600_x1_v84a.o"
+(*** BYTECODE START ***)
 [
   0xd10103ff;       (* arm_SUB SP SP (rvalue (word 64)) *)
   0x6d0027e8;       (* arm_STP D8 D9 SP (Immediate_Offset (iword (&0))) *)
@@ -124,6 +125,7 @@ let keccak_f1600_x1_v84a_mc = define_assert_from_elf
   0x910103ff;       (* arm_ADD SP SP (rvalue (word 64)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let KECCAK_F1600_X1_V84A_EXEC = ARM_MK_EXEC_RULE keccak_f1600_x1_v84a_mc;;
 
 
@@ -15,6 +15,7 @@ needs "proofs/keccak_spec.ml";;
 
 let keccak_f1600_x2_v84a_mc = define_assert_from_elf
   "keccak_f1600_x2_v84a_mc" "mlkem/keccak_f1600_x2_v84a.o"
+(*** BYTECODE START ***)
 [
   0xd10103ff;       (* arm_SUB SP SP (rvalue (word 64)) *)
   0x6d0027e8;       (* arm_STP D8 D9 SP (Immediate_Offset (iword (&0))) *)
@@ -178,6 +179,7 @@ let keccak_f1600_x2_v84a_mc = define_assert_from_elf
   0x910103ff;       (* arm_ADD SP SP (rvalue (word 64)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let KECCAK_F1600_X2_V84A_EXEC = ARM_MK_EXEC_RULE keccak_f1600_x2_v84a_mc;;
 
 
@@ -15,6 +15,7 @@ needs "proofs/keccak_spec.ml";;
 
 let keccak_f1600_x4_v8a_scalar_mc = define_assert_from_elf
   "keccak_f1600_x4_v8a_scalar_mc" "mlkem/keccak_f1600_x4_v8a_scalar.o"
+(*** BYTECODE START ***)
 [
   0xd10383ff;       (* arm_SUB SP SP (rvalue (word 224)) *)
   0xa90353f3;       (* arm_STP X19 X20 SP (Immediate_Offset (iword (&48))) *)
@@ -985,6 +986,7 @@ let keccak_f1600_x4_v8a_scalar_mc = define_assert_from_elf
   0x910383ff;       (* arm_ADD SP SP (rvalue (word 224)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let KECCAK_F1600_X4_V8A_SCALAR_EXEC = ARM_MK_EXEC_RULE keccak_f1600_x4_v8a_scalar_mc;;
 
 
@@ -15,6 +15,7 @@ needs "proofs/keccak_spec.ml";;
 
 let keccak_f1600_x4_v8a_v84a_scalar_mc = define_assert_from_elf
   "keccak_f1600_x4_v8a_v84a_scalar_mc" "mlkem/keccak_f1600_x4_v8a_v84a_scalar.o"
+(*** BYTECODE START ***)
 [
   0xd10383ff;       (* arm_SUB SP SP (rvalue (word 224)) *)
   0xa90353f3;       (* arm_STP X19 X20 SP (Immediate_Offset (iword (&48))) *)
@@ -891,6 +892,7 @@ let keccak_f1600_x4_v8a_v84a_scalar_mc = define_assert_from_elf
   0x910383ff;       (* arm_ADD SP SP (rvalue (word 224)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let KECCAK_F1600_X4_V8A_V84A_SCALAR_EXEC = ARM_MK_EXEC_RULE keccak_f1600_x4_v8a_v84a_scalar_mc;;
 
 
@@ -18,6 +18,7 @@ needs "proofs/mlkem_zetas.ml";;
 
 let mlkem_intt_mc = define_assert_from_elf
  "mlkem_intt_mc" "mlkem/mlkem_intt.o"
+(*** BYTECODE START ***)
 [
   0xd10103ff;       (* arm_SUB SP SP (rvalue (word 64)) *)
   0x6d0027e8;       (* arm_STP D8 D9 SP (Immediate_Offset (iword (&0))) *)
@@ -542,6 +543,7 @@ let mlkem_intt_mc = define_assert_from_elf
   0x910103ff;       (* arm_ADD SP SP (rvalue (word 64)) *)
   0xd65f03c0        (* arm_RET X30 *)
 ];;
+(*** BYTECODE END ***)
 
 let MLKEM_INTT_EXEC = ARM_MK_EXEC_RULE mlkem_intt_mc;;