fix(hmac-sha256): compute PHash and AHash concurrently (#969)

--------- Co-authored-by: th4s <th4s@metavoid.xyz>
2026-01-07 22:03:58 -05:00 · 2025-08-21 09:41:59 +03:00
parent afd8f44261
commit 5034366c72
1 changed files with 6 additions and 5 deletions
--- a/crates/components/hmac-sha256/src/prf/function/reduced.rs
+++ b/crates/components/hmac-sha256/src/prf/function/reduced.rs
@@ -40,7 +40,6 @@ enum PrfState {
        inner_partial: [u32; 8],
        a_output: DecodeFutureTyped<BitVec, [u8; 32]>,
    },
-    FinishLastP,
    Done,
 }

@@ -137,16 +136,18 @@ impl PrfFunction {
                assign_inner_local(vm, p.inner_local, *inner_partial, &msg)?;

                if *iter == self.iterations {
-                    self.state = PrfState::FinishLastP;
+                    self.state = PrfState::Done;
                } else {
                    self.state = PrfState::ComputeA {
                        iter: *iter + 1,
                        inner_partial: *inner_partial,
                        msg: output.to_vec(),
-                    }
-                };
+                    };
+                    // We recurse, so that this PHash and the next AHash could
+                    // be computed in a single VM execute call.
+                    self.flush(vm)?;
+                }
            }
-            PrfState::FinishLastP => self.state = PrfState::Done,
            _ => (),
        }