CBMC: Eliminate proof performance workaround in signing

https://github.com/pq-code-package/mldsa-native/pull/1015 introduced the following workarounds in signing due to proof performance issues:
https://github.com/pq-code-package/mldsa-native/blob/086846b5ec4a1596b55fae00fbebfb2595e80f3d/mldsa/src/sign.c#L673-L681

https://github.com/pq-code-package/mldsa-native/blob/086846b5ec4a1596b55fae00fbebfb2595e80f3d/mldsa/src/sign.c#L705-L708

We should eliminate those workarounds.

	/* TODO: Remove this workaround for CBMC performance issues */
	*t = w0->vec[k];
	mld_poly_sub(t, z);
	mld_poly_reduce(t);

	/* Check that subtracting cs2 does not change high bits of w and low bits
	* do not reveal secret information */
	w0_invalid = mld_poly_chknorm(t, MLDSA_GAMMA2 - MLDSA_BETA);
	w0->vec[k] = *t;

	/* TODO: Remove this workaround for CBMC performance issues */
	*t = w0->vec[k];
	mld_poly_add(t, z);
	w0->vec[k] = *t;

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CBMC: Eliminate proof performance workaround in signing #1026

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CBMC: Eliminate proof performance workaround in signing #1026

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions