Merge pull request #691 from pq-code-package/unsigned

Use unsigned rather than unsigned int everywhere

Author: hanno-becker

mlkem/fips202/keccakf1600.c

@@ -29,7 +29,7 @@
 /* End of static namespacing */
 
 void KeccakF1600_StateExtractBytes(uint64_t *state, unsigned char *data,
-                                   unsigned int offset, unsigned int length)
+                                   unsigned offset, unsigned length)
 {
   unsigned i;
 #if defined(SYS_LITTLE_ENDIAN)
@@ -50,7 +50,7 @@ void KeccakF1600_StateExtractBytes(uint64_t *state, unsigned char *data,
 }
 
 void KeccakF1600_StateXORBytes(uint64_t *state, const unsigned char *data,
-                               unsigned int offset, unsigned int length)
+                               unsigned offset, unsigned length)
 {
   unsigned i;
 #if defined(SYS_LITTLE_ENDIAN)
@@ -73,8 +73,8 @@ void KeccakF1600_StateXORBytes(uint64_t *state, const unsigned char *data,
 
 void KeccakF1600x4_StateExtractBytes(uint64_t *state, unsigned char *data0,
                                      unsigned char *data1, unsigned char *data2,
-                                     unsigned char *data3, unsigned int offset,
-                                     unsigned int length)
+                                     unsigned char *data3, unsigned offset,
+                                     unsigned length)
 {
   KeccakF1600_StateExtractBytes(state + KECCAK_LANES * 0, data0, offset,
                                 length);
@@ -89,8 +89,8 @@ void KeccakF1600x4_StateExtractBytes(uint64_t *state, unsigned char *data0,
 void KeccakF1600x4_StateXORBytes(uint64_t *state, const unsigned char *data0,
                                  const unsigned char *data1,
                                  const unsigned char *data2,
-                                 const unsigned char *data3,
-                                 unsigned int offset, unsigned int length)
+                                 const unsigned char *data3, unsigned offset,
+                                 unsigned length)
 {
   KeccakF1600_StateXORBytes(state + KECCAK_LANES * 0, data0, offset, length);
   KeccakF1600_StateXORBytes(state + KECCAK_LANES * 1, data1, offset, length);

mlkem/fips202/keccakf1600.h

@@ -19,7 +19,7 @@
 #define KeccakF1600_StateExtractBytes \
   MLKEM_NAMESPACE(KeccakF1600_StateExtractBytes)
 void KeccakF1600_StateExtractBytes(uint64_t *state, unsigned char *data,
-                                   unsigned int offset, unsigned int length)
+                                   unsigned offset, unsigned length)
 __contract__(
     requires(0 <= offset && offset <= KECCAK_LANES * sizeof(uint64_t) &&
 	     0 <= length && length <= KECCAK_LANES * sizeof(uint64_t) - offset)
@@ -30,7 +30,7 @@ __contract__(
 
 #define KeccakF1600_StateXORBytes MLKEM_NAMESPACE(KeccakF1600_StateXORBytes)
 void KeccakF1600_StateXORBytes(uint64_t *state, const unsigned char *data,
-                               unsigned int offset, unsigned int length)
+                               unsigned offset, unsigned length)
 __contract__(
     requires(0 <= offset && offset <= KECCAK_LANES * sizeof(uint64_t) &&
 	     0 <= length && length <= KECCAK_LANES * sizeof(uint64_t) - offset)
@@ -43,8 +43,8 @@ __contract__(
   MLKEM_NAMESPACE(KeccakF1600x4_StateExtractBytes)
 void KeccakF1600x4_StateExtractBytes(uint64_t *state, unsigned char *data0,
                                      unsigned char *data1, unsigned char *data2,
-                                     unsigned char *data3, unsigned int offset,
-                                     unsigned int length)
+                                     unsigned char *data3, unsigned offset,
+                                     unsigned length)
 __contract__(
     requires(0 <= offset && offset <= KECCAK_LANES * sizeof(uint64_t) &&
 	     0 <= length && length <= KECCAK_LANES * sizeof(uint64_t) - offset)
@@ -63,8 +63,8 @@ __contract__(
 void KeccakF1600x4_StateXORBytes(uint64_t *state, const unsigned char *data0,
                                  const unsigned char *data1,
                                  const unsigned char *data2,
-                                 const unsigned char *data3,
-                                 unsigned int offset, unsigned int length)
+                                 const unsigned char *data3, unsigned offset,
+                                 unsigned length)
 __contract__(
     requires(0 <= offset && offset <= KECCAK_LANES * sizeof(uint64_t) &&
 	     0 <= length && length <= KECCAK_LANES * sizeof(uint64_t) - offset)

mlkem/native/aarch64/src/arith_native_aarch64.h

@@ -42,8 +42,8 @@ void intt_asm_clean(int16_t *, const int16_t *, const int16_t *);
 void intt_asm_opt(int16_t *, const int16_t *, const int16_t *);
 
 #define rej_uniform_asm_clean MLKEM_NAMESPACE(rej_uniform_asm_clean)
-unsigned int rej_uniform_asm_clean(int16_t *r, const uint8_t *buf,
-                                   unsigned int buflen, const uint8_t *table);
+unsigned rej_uniform_asm_clean(int16_t *r, const uint8_t *buf, unsigned buflen,
+                               const uint8_t *table);
 
 #define poly_reduce_asm_clean MLKEM_NAMESPACE(poly_reduce_asm_clean)
 void poly_reduce_asm_clean(int16_t *);

mlkem/native/aarch64/src/clean_impl.h

@@ -64,8 +64,8 @@ static INLINE void poly_tobytes_native(uint8_t r[MLKEM_POLYBYTES],
   poly_tobytes_asm_clean(r, a);
 }
 
-static INLINE int rej_uniform_native(int16_t *r, unsigned int len,
-                                     const uint8_t *buf, unsigned int buflen)
+static INLINE int rej_uniform_native(int16_t *r, unsigned len,
+                                     const uint8_t *buf, unsigned buflen)
 {
   if (len != MLKEM_N || buflen % 24 != 0)
   {

mlkem/native/aarch64/src/opt_impl.h

@@ -65,8 +65,8 @@ static INLINE void poly_tobytes_native(uint8_t r[MLKEM_POLYBYTES],
   poly_tobytes_asm_opt(r, a);
 }
 
-static INLINE int rej_uniform_native(int16_t *r, unsigned int len,
-                                     const uint8_t *buf, unsigned int buflen)
+static INLINE int rej_uniform_native(int16_t *r, unsigned len,
+                                     const uint8_t *buf, unsigned buflen)
 {
   if (len != MLKEM_N || buflen % 24 != 0)
   {

mlkem/native/aarch64/src/rej_uniform_asm_clean.S

@@ -13,7 +13,7 @@
  *                                     16-bit coefficients.
  *              - const uint8_t *buf:  pointer to input buffer
  *                                     (assumed to be uniform random bytes)
- *              - unsigned int buflen: length of input buffer in bytes.
+ *              - unsigned buflen:     length of input buffer in bytes.
  *                                     Must be a multiple of 24.
  *
  * Returns number of sampled 16-bit integers (at most MLKEM_N).

mlkem/native/api.h

@@ -314,18 +314,18 @@ __contract__(
  *              uniform random integers mod q
  *
  * Arguments:   - int16_t *r:          pointer to output buffer
- *              - unsigned int len:    requested number of 16-bit integers
+ *              - unsigned len:        requested number of 16-bit integers
  *                                     (uniform mod q).
  *              - const uint8_t *buf:  pointer to input buffer
  *                                     (assumed to be uniform random bytes)
- *              - unsigned int buflen: length of input buffer in bytes.
+ *              - unsigned buflen:     length of input buffer in bytes.
  *
  * Return -1 if the native implementation does not support the input lengths.
  * Otherwise, returns non-negative number of sampled 16-bit integers (at most
  * len).
  **************************************************/
-static INLINE int rej_uniform_native(int16_t *r, unsigned int len,
-                                     const uint8_t *buf, unsigned int buflen)
+static INLINE int rej_uniform_native(int16_t *r, unsigned len,
+                                     const uint8_t *buf, unsigned buflen)
 __contract__(
   requires(len <= 4096 && buflen <= 4096 && buflen % 3 == 0)
   requires(memory_no_alias(r, sizeof(int16_t) * len))

mlkem/native/x86_64/src/arith_native_x86_64.h

@@ -16,7 +16,7 @@
   (3 * 168) /* REJ_UNIFORM_AVX_BUFLEN * SHAKE128_RATE */
 
 #define rej_uniform_avx2 MLKEM_NAMESPACE(rej_uniform_avx2)
-unsigned int rej_uniform_avx2(int16_t *r, const uint8_t *buf);
+unsigned rej_uniform_avx2(int16_t *r, const uint8_t *buf);
 
 #define rej_uniform_table MLKEM_NAMESPACE(rej_uniform_table)
 extern const uint8_t rej_uniform_table[256][8];

mlkem/native/x86_64/src/default_impl.h

@@ -32,8 +32,8 @@ static INLINE void poly_permute_bitrev_to_custom(int16_t data[MLKEM_N])
   nttunpack_avx2((__m256i *)(data), qdata.vec);
 }
 
-static INLINE int rej_uniform_native(int16_t *r, unsigned int len,
-                                     const uint8_t *buf, unsigned int buflen)
+static INLINE int rej_uniform_native(int16_t *r, unsigned len,
+                                     const uint8_t *buf, unsigned buflen)
 {
   /* AVX2 implementation assumes specific buffer lengths */
   if (len != MLKEM_N || buflen != REJ_UNIFORM_AVX_BUFLEN)

mlkem/native/x86_64/src/rej_uniform_avx2.c

@@ -18,9 +18,9 @@
 #include "arith_native_x86_64.h"
 #include "consts.h"
 
-unsigned int rej_uniform_avx2(int16_t *RESTRICT r, const uint8_t *buf)
+unsigned rej_uniform_avx2(int16_t *RESTRICT r, const uint8_t *buf)
 {
-  unsigned int ctr, pos;
+  unsigned ctr, pos;
   uint16_t val0, val1;
   uint32_t good;
   const __m256i bound =

mlkem/sampling.c

@@ -22,9 +22,8 @@
 #define load24_littleendian MLKEM_NAMESPACE(load24_littleendian)
 /* End of static namespacing */
 
-static unsigned int rej_uniform_scalar(int16_t *r, unsigned int target,
-                                       unsigned int offset, const uint8_t *buf,
-                                       unsigned int buflen)
+static unsigned rej_uniform_scalar(int16_t *r, unsigned target, unsigned offset,
+                                   const uint8_t *buf, unsigned buflen)
 __contract__(
   requires(offset <= target && target <= 4096 && buflen <= 4096 && buflen % 3 == 0)
   requires(memory_no_alias(r, sizeof(int16_t) * target))
@@ -35,7 +34,7 @@ __contract__(
   ensures(array_bound(r, 0, return_value, 0, MLKEM_Q))
 )
 {
-  unsigned int ctr, pos;
+  unsigned ctr, pos;
   uint16_t val0, val1;
 
   debug_assert_bound(r, offset, 0, MLKEM_Q);
@@ -73,15 +72,15 @@ __contract__(
  *              uniform random integers mod q
  *
  * Arguments:   - int16_t *r:          pointer to output buffer
- *              - unsigned int target: requested number of 16-bit integers
+ *              - unsigned target:     requested number of 16-bit integers
  *                                     (uniform mod q).
  *                                     Must be <= 4096.
- *              - unsigned int offset: number of 16-bit integers that have
+ *              - unsigned offset:     number of 16-bit integers that have
  *                                     already been sampled.
  *                                     Must be <= target.
  *              - const uint8_t *buf:  pointer to input buffer
  *                                     (assumed to be uniform random bytes)
- *              - unsigned int buflen: length of input buffer in bytes
+ *              - unsigned buflen:     length of input buffer in bytes
  *                                     Must be <= 4096.
  *                                     Must be a multiple of 3.
  *
@@ -102,9 +101,8 @@ __contract__(
  * buffer. This avoids shifting the buffer base in the caller, which appears
  * tricky to reason about.
  */
-static unsigned int rej_uniform(int16_t *r, unsigned int target,
-                                unsigned int offset, const uint8_t *buf,
-                                unsigned int buflen)
+static unsigned rej_uniform(int16_t *r, unsigned target, unsigned offset,
+                            const uint8_t *buf, unsigned buflen)
 __contract__(
   requires(offset <= target && target <= 4096 && buflen <= 4096 && buflen % 3 == 0)
   requires(memory_no_alias(r, sizeof(int16_t) * target))
@@ -146,9 +144,9 @@ void poly_rej_uniform_x4(poly *vec, uint8_t *seed[4])
   uint8_t buf3[MLKEM_GEN_MATRIX_NBLOCKS * XOF_RATE];
 
   /* Tracks the number of coefficients we have already sampled */
-  unsigned int ctr[KECCAK_WAY];
+  unsigned ctr[KECCAK_WAY];
   xof_x4_ctx statex;
-  unsigned int buflen;
+  unsigned buflen;
 
   /* seed is MLKEM_SYMBYTES + 2 bytes long, but padded to MLKEM_SYMBYTES + 16 */
   xof_x4_init(&statex);
@@ -199,7 +197,7 @@ void poly_rej_uniform(poly *entry, uint8_t seed[MLKEM_SYMBYTES + 2])
 {
   xof_ctx state;
   uint8_t buf[MLKEM_GEN_MATRIX_NBLOCKS * XOF_RATE];
-  unsigned int ctr, buflen;
+  unsigned ctr, buflen;
 
   xof_init(&state);
   xof_absorb(&state, seed, MLKEM_SYMBYTES + 2);

proofs/cbmc/KeccakF1600_StateExtractBytes/KeccakF1600_StateExtractBytes_harness.c

@@ -8,7 +8,7 @@ void harness(void)
 {
   uint64_t *state;
   unsigned char *data;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600_StateExtractBytes(state, data, offset, length);
 }

proofs/cbmc/KeccakF1600_StateExtractBytes_BE/KeccakF1600_StateExtractBytes_be_harness.c

@@ -8,7 +8,7 @@ void harness(void)
 {
   uint64_t *state;
   unsigned char *data;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600_StateExtractBytes(state, data, offset, length);
 }

proofs/cbmc/KeccakF1600_StateXORBytes/KeccakF1600_StateXORBytes_harness.c

@@ -8,7 +8,7 @@ void harness(void)
 {
   uint64_t *state;
   const unsigned char *data;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600_StateXORBytes(state, data, offset, length);
 }

proofs/cbmc/KeccakF1600_StateXORBytes_BE/KeccakF1600_StateXORBytes_be_harness.c

@@ -8,7 +8,7 @@ void harness(void)
 {
   uint64_t *state;
   const unsigned char *data;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600_StateXORBytes(state, data, offset, length);
 }

proofs/cbmc/KeccakF1600x4_StateExtractBytes/KeccakF1600x4_StateExtractBytes_harness.c

@@ -8,8 +8,8 @@ void harness(void)
 {
   uint64_t *state;
   unsigned char *data0, *data1, *data2, *data3;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600x4_StateExtractBytes(state, data0, data1, data2, data3, offset,
                                   length);
 }

proofs/cbmc/KeccakF1600x4_StateXORBytes/KeccakF1600x4_StateXORBytes_harness.c

@@ -8,8 +8,8 @@ void harness(void)
 {
   uint64_t *state;
   const unsigned char *data0, *data1, *data2, *data3;
-  unsigned int offset;
-  unsigned int length;
+  unsigned offset;
+  unsigned length;
   KeccakF1600x4_StateXORBytes(state, data0, data1, data2, data3, offset,
                               length);
 }

proofs/cbmc/rej_uniform/rej_uniform_harness.c

@@ -6,12 +6,12 @@
 #include "cbmc.h"
 
 #define rej_uniform MLKEM_NAMESPACE(rej_uniform)
-unsigned int rej_uniform(int16_t *r, unsigned int target, unsigned int offset,
-                         const uint8_t *buf, unsigned int buflen);
+unsigned rej_uniform(int16_t *r, unsigned target, unsigned offset,
+                     const uint8_t *buf, unsigned buflen);
 
 void harness(void)
 {
-  unsigned int target, offset, inlen;
+  unsigned target, offset, inlen;
   int16_t *r;
   uint8_t *buf;
 

proofs/cbmc/rej_uniform_native/rej_uniform_native_harness.c

@@ -6,12 +6,12 @@
 #include "cbmc.h"
 
 #define rej_uniform MLKEM_NAMESPACE(rej_uniform)
-unsigned int rej_uniform(int16_t *r, unsigned int target, unsigned int offset,
-                         const uint8_t *buf, unsigned int buflen);
+unsigned rej_uniform(int16_t *r, unsigned target, unsigned offset,
+                     const uint8_t *buf, unsigned buflen);
 
 void harness(void)
 {
-  unsigned int target, offset, inlen;
+  unsigned target, offset, inlen;
   int16_t *r;
   uint8_t *buf;
 

proofs/cbmc/rej_uniform_scalar/rej_uniform_scalar_harness.c

@@ -5,13 +5,12 @@
 #include "sampling.h"
 
 #define rej_uniform_scalar MLKEM_NAMESPACE(rej_uniform_scalar)
-unsigned int rej_uniform_scalar(int16_t *r, unsigned int target,
-                                unsigned int offset, const uint8_t *buf,
-                                unsigned int buflen);
+unsigned rej_uniform_scalar(int16_t *r, unsigned target, unsigned offset,
+                            const uint8_t *buf, unsigned buflen);
 
 void harness(void)
 {
-  unsigned int target, offset, inlen;
+  unsigned target, offset, inlen;
   int16_t *r;
   uint8_t *buf;
 

test/bench_components_mlkem.c

@@ -62,7 +62,7 @@ static int bench(void)
   uint8_t nonce0 = 0, nonce1 = 1, nonce2 = 2, nonce3 = 3;
   uint64_t cyc[NTESTS];
 
-  unsigned int i, j;
+  unsigned i, j;
   uint64_t t0, t1;
 
   BENCH("keccak-f1600-x1", KeccakF1600_StatePermute(data0))

test/bench_mlkem.c

@@ -55,7 +55,7 @@ static int bench(void)
   unsigned char kg_rand[2 * CRYPTO_BYTES], enc_rand[CRYPTO_BYTES];
   uint64_t cycles_kg[NTESTS], cycles_enc[NTESTS], cycles_dec[NTESTS];
 
-  unsigned int i, j;
+  unsigned i, j;
   uint64_t t0, t1;
 
 

test/gen_KAT.c

@@ -23,7 +23,7 @@ static void print_hex(const char *label, const uint8_t *data, size_t size)
 
 int main(void)
 {
-  unsigned int i;
+  unsigned i;
   ALIGN uint8_t coins[3 * CRYPTO_SYMBYTES];
   ALIGN uint8_t pk[CRYPTO_PUBLICKEYBYTES];
   ALIGN uint8_t sk[CRYPTO_SECRETKEYBYTES];

test/hal/hal.c

@@ -167,7 +167,7 @@ uint64_t get_cyclecounter(void)
   F(uint32_t, kpc_get_counter_count, uint32_t) \
   F(uint32_t, kpc_get_config_count, uint32_t)  \
   F(int, kperf_sample_get, int *)              \
-  F(int, kpc_get_thread_counters, int, unsigned int, void *)
+  F(int, kpc_get_thread_counters, int, unsigned, void *)
 
 #define F(ret, name, ...)              \
   typedef ret name##proc(__VA_ARGS__); \