Skip to content

Commit

Permalink
Removed H-related axiom
Browse files Browse the repository at this point in the history
  • Loading branch information
@mbbarbosa-lectures
mbbarbosa-lectures committed Apr 5, 2024
1 parent 3b2e937 commit 0fd1d9b
Showing 1 changed file with 6 additions and 2 deletions.
8 changes: 6 additions & 2 deletions proof/spec/MLKEMSecurity.ec
View file
Original file line number Diff line number Diff line change
Expand Up @@ -230,11 +230,15 @@ module MLKEM_PRGs = {

}.

op H : W8.t Array32.t -> polymat.
op H(rho : W8.t Array32.t) : polymat = invnttm (sampleA rho).

(* This fixes the definition of H in terms of the MLKEM spec *)
axiom H_sem _seed :
lemma H_sem _seed :
phoare [ Hmodule.sampleA : sd = _seed ==> res = nttm (H _seed) ] = 1%r.
proof.
proc*; call (sampleA_sem _seed).
by auto => />; rewrite /H nttmK.
qed.

op prg_kg_inner(coins : W8.t Array32.t) : W8.t Array32.t * polyvec * polyvec =
((G_coins coins).`1,
Expand Down

0 comments on commit 0fd1d9b

Please sign in to comment.