Skip to content

Port: Hoist default C backend into separate functions #735

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 11 commits into from
Dec 3, 2025
Merged

Port: Hoist default C backend into separate functions #735

merged 11 commits into from
Dec 3, 2025

Conversation

@willieyz
Copy link
Contributor

@willieyz willieyz commented Nov 24, 2025
edited
Loading

  • Resolves: Port: Hoist default C backend into separate functions #732

  • Purpose: This porting aims to separate the native backend functions into two distinct sets:

    • Fallback C backend functions
    • Native backend functions
      This work is based on the runtime-dispatch changes introduced in PR #607.

  • Steps:

    • For each function improved by runtime dispatch in PR #607.:
      • Separate a additional fallback C backend function from the original implementation.
      • Add a CBMC proof for the C backend function.
      • Update the existing original implementation's CBMC USE_FUNCTION_CONTRACTS with the C backend function.

  • Tests:

    • Run all test scripts with all argument variations under both static ON and static OFF configurations.
    • Run all examples: tests examples.
    • Run all relevant CBMC proofs for each modified or newly added function.

  • The following is the checking table for fallback C backend and native backend:

Original Native C backend
mld_poly_ntt mld_ntt_native mld_poly_ntt_c
mld_poly_invntt_tomont mld_intt_native mld_poly_invntt_tomont_c
mld_polymat_permute_bitrev_to_custom mld_poly_permute_bitrev_to_custom ((void)mat);
/* Nothing to do */
mld_rej_uniform mld_rej_uniform_native mld_rej_uniform_c
mld_rej_eta mld_rej_uniform_eta2_native
mld_rej_uniform_eta4_native		 mld_rej_eta_c
mld_poly_decompose mld_poly_decompose_32_native
mld_poly_decompose_88_native		 mld_poly_decompose_c
mld_poly_caddq mld_poly_caddq_native mld_poly_caddq_c
mld_poly_use_hint mld_poly_use_hint_32_native
mld_poly_use_hint_88_native		 mld_poly_use_hint_c
mld_poly_chknorm mld_poly_chknorm_native mld_poly_chknorm_c
mld_polyz_unpack mld_polyz_unpack_17_native
mld_polyz_unpack_19_native		 mld_polyz_unpack_c
mld_poly_pointwise_montgomery mld_poly_pointwise_montgomery_native mld_poly_pointwise_montgomery_c
mld_polyvecl_pointwise_acc_montgomery mld_polyvecl_pointwise_acc_montgomery_l4_native
mld_polyvecl_pointwise_acc_montgomery_l5_native
mld_polyvecl_pointwise_acc_montgomery_l7_native		 mld_polyvecl_pointwise_acc_montgomery_c
mld_keccakf1600_permute mld_keccak_f1600_x1_native mld_keccakf1600_permute_c
mld_keccakf1600x4_permute mld_keccak_f1600_x2_v84a_asm * 2
mld_keccak_f1600_x4_scalar_v8a_hybrid_asm
mld_keccak_f1600_x4_scalar_v8a_v84a_hybrid_asm		 mld_keccakf1600_permute * 4

@willieyz willieyz force-pushed the hoist-C-separate branch 2 times, most recently from 91847f9 to d869805 Compare November 25, 2025 06:30
@willieyz willieyz marked this pull request as ready for review November 25, 2025 07:32
@willieyz willieyz requested a review from a team as a code owner November 25, 2025 07:32
@willieyz willieyz force-pushed the hoist-C-separate branch 4 times, most recently from 5004349 to 4b5aa71 Compare November 28, 2025 05:38
mkannwischer
mkannwischer requested changes Nov 28, 2025
View reviewed changes
Copy link
Contributor

@mkannwischer mkannwischer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @willieyz. This looks very good!
Two small comments.

@willieyz willieyz force-pushed the hoist-C-separate branch 2 times, most recently from 79e3f3b to ddd184a Compare November 28, 2025 11:18
mkannwischer
mkannwischer approved these changes Dec 1, 2025
View reviewed changes
Copy link
Contributor

@mkannwischer mkannwischer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @willieyz. This looks excellent!
I only found one extra new line that you could still remove.

hanno-becker
hanno-becker reviewed Dec 1, 2025
View reviewed changes
hanno-becker
hanno-becker reviewed Dec 1, 2025
View reviewed changes
hanno-becker
hanno-becker reviewed Dec 1, 2025
View reviewed changes
hanno-becker
hanno-becker reviewed Dec 1, 2025
View reviewed changes
hanno-becker
hanno-becker reviewed Dec 1, 2025
View reviewed changes
This was referenced Dec 2, 2025
Open
Open
@willieyz willieyz force-pushed the hoist-C-separate branch 3 times, most recently from c4aba94 to c9f24dd Compare December 2, 2025 07:57
@willieyz willieyz mentioned this pull request Dec 2, 2025
Draft
mkannwischer
mkannwischer approved these changes Dec 3, 2025
View reviewed changes
Copy link
Contributor

@mkannwischer mkannwischer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the changes @willieyz. LGTM.

@hanno-becker, WDYT?

@willieyz @mkannwischer
Hoist default C backend into separate functions (mld_poly_ntt_c)
aa25aba 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_caddq_c)
ab8246f 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_invntt_tomon…
a21fd43 
…t_c)

Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_pointwise_mo…
e4929ec 
…ntgomery_c)

Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_rej_uniform_c)
c2fa513 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_polyvecl_pointwis…
f2362e2 
…e_acc_montgomery_c)

Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_decompose_c)
bdeeb01 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_use_hint_c)
0e4dbb1 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_polyz_unpack_c)
f907f99 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_rej_eta_c)
c262d71 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
@willieyz @mkannwischer
Hoist default C backend into separate functions(mld_poly_chknorm_c)
088d716 
Signed-off-by: willieyz <willie.zhao@chelpis.com>
hanno-becker
hanno-becker reviewed Dec 3, 2025
View reviewed changes
hanno-becker
hanno-becker reviewed Dec 3, 2025
View reviewed changes
mldsa/src/polyvec.c
Comment on lines +382 to +384
ret = mld_polyvecl_pointwise_acc_montgomery_l4_native(
w->coeffs, (const int32_t(*)[MLDSA_N])u->vec,
(const int32_t(*)[MLDSA_N])v->vec);
Copy link
Contributor

@hanno-becker hanno-becker Dec 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This cast business is not very nice. I wonder if we should modify the native API to streamline this. Not an issue for this PR.

Copy link
Contributor

@mkannwischer mkannwischer Dec 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mlkem-native has

    ret = mlk_polyvec_basemul_acc_montgomery_cached_k2_native(
        r->coeffs, (const int16_t *)a, (const int16_t *)b,
        (const int16_t *)b_cache);

Is that better?

hanno-becker
hanno-becker approved these changes Dec 3, 2025
View reviewed changes
Copy link
Contributor

@hanno-becker hanno-becker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thank you @willieyz !

@mkannwischer mkannwischer merged commit f504c9a into main Dec 3, 2025
328 checks passed
@mkannwischer mkannwischer deleted the hoist-C-separate branch December 3, 2025 05:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mkannwischer mkannwischer mkannwischer approved these changes

@hanno-becker hanno-becker hanno-becker approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Port: Hoist default C backend into separate functions

4 participants

@willieyz @mkannwischer @hanno-becker