From 9e9eaf87d047d265449a5271e52cc1ceddc21278 Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Mon, 19 Feb 2024 12:48:43 +0100
Subject: [PATCH 1/7] feat(kyber/F*): serialize: introduce `BitVecEq`

---
 proofs/fstar/extraction-edited/BitVecEq.fst   |  12 +
 proofs/fstar/extraction-edited/BitVecEq.fsti  | 294 ++++++++++++++++++
 .../Libcrux.Kem.Kyber.Serialize.fst           |  11 +-
 .../Libcrux.Kem.Kyber.Serialize.fsti          |  38 +--
 4 files changed, 331 insertions(+), 24 deletions(-)
 create mode 100644 proofs/fstar/extraction-edited/BitVecEq.fst
 create mode 100644 proofs/fstar/extraction-edited/BitVecEq.fsti

diff --git a/proofs/fstar/extraction-edited/BitVecEq.fst b/proofs/fstar/extraction-edited/BitVecEq.fst
new file mode 100644
index 00000000..c89f2fe3
--- /dev/null
+++ b/proofs/fstar/extraction-edited/BitVecEq.fst
@@ -0,0 +1,12 @@
+module BitVecEq
+
+open Core
+open FStar.Mul
+open FStar.FunctionalExtensionality
+
+let bit_vec_equal #n bv1 bv2 = forall i. bv1 i == bv2 i
+
+let bit_vec_equal_intro bv1 bv2 = ()
+let bit_vec_equal_elim bv1 bv2 = assert (feq bv1 bv2)
+
+
diff --git a/proofs/fstar/extraction-edited/BitVecEq.fsti b/proofs/fstar/extraction-edited/BitVecEq.fsti
new file mode 100644
index 00000000..13c9a227
--- /dev/null
+++ b/proofs/fstar/extraction-edited/BitVecEq.fsti
@@ -0,0 +1,294 @@
+module BitVecEq
+#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
+open Core
+open FStar.Mul
+open MkSeq
+open FStar.FunctionalExtensionality
+
+val bit_vec_equal (#n: nat) (bv1 bv2: bit_vec n): Type0
+val bit_vec_equal_intro (#n: nat) (bv1 bv2: bit_vec n)
+  : Lemma (requires forall i. bv1 i == bv2 i)
+          (ensures bit_vec_equal bv1 bv2)
+val bit_vec_equal_elim (#n: nat) (bv1 bv2: bit_vec n)
+  : Lemma (requires bit_vec_equal #n bv1 bv2)
+          (ensures bv1 == bv2)
+          [SMTPat (bit_vec_equal #n bv1 bv2)]
+
+let bit_vec_equal_intro_principle ()
+  : Lemma (forall n (bv1 bv2: bit_vec n). (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2)
+  = introduce forall n (bv1 bv2: bit_vec n). _
+    with introduce (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2
+         with _. bit_vec_equal_intro #n bv1 bv2
+  
+let bit_vec_equal_elim_principle ()
+  : Lemma (forall n (bv1 bv2: bit_vec n). bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i))
+  = introduce forall n (bv1 bv2: bit_vec n). _
+    with introduce bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i)
+         with _. bit_vec_equal_elim #n bv1 bv2
+
+let bit_vec_equal_trivial (bv1 bv2: bit_vec 0): Lemma (bv1 == bv2) 
+    [SMTPat (eq2 #(bit_vec 0) bv1 bv2)]
+  = bit_vec_equal_intro bv1 bv2
+
+let bit_vec_sub #n (bv: bit_vec n) (start: nat) (len: nat {start + len <= n})
+  : bit_vec len
+  = on (i: nat {i < len})
+       (fun i -> bv (start + i))
+
+let bit_vec_equal_trivial_sub_smtpat (bv1: bit_vec 'n)
+  : Lemma (forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2)
+    [SMTPat (bit_vec_sub bv1 0 0)]
+  = introduce forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2
+    with bit_vec_equal_trivial (bit_vec_sub bv1 0 0) bv2
+
+unfold let retype #a #b (#_:unit{a == b})
+  (x: a): b
+  = x
+
+let bit_vec_sub_all_lemma #n (bv: bit_vec n)
+  : Lemma (bit_vec_sub bv 0 n == bv)
+          [SMTPat (bit_vec_sub bv 0 n)]
+  = bit_vec_equal_intro (bit_vec_sub bv 0 n) bv
+
+let int_t_array_bitwise_eq'
+       #t1 #t2 #n1 #n2
+       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
+       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+     = bit_vec_equal (bit_vec_of_int_t_array arr1 d1)
+                     (retype (bit_vec_of_int_t_array arr2 d2))
+
+let int_t_array_bitwise_eq
+       #t1 #t2 #n1 #n2
+       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
+       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+     =  bit_vec_of_int_t_array arr1 d1
+     == bit_vec_of_int_t_array arr2 d2
+
+// let get_bit_intro ()
+//   : Lemma (forall (#n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
+//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
+//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth)))
+//   = introduce forall (n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
+//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
+//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth))
+//     with get_bit_intro #n x nth
+
+#push-options "--fuel 0 --ifuel 0 --z3rlimit 80"
+/// Rewrite a `bit_vec_of_int_t_array (Seq.slice arr ...)` into a `bit_vec_sub ...`
+let int_t_seq_slice_to_bv_sub_lemma #t #n 
+  (arr: t_Array (int_t t) n)
+  (start: nat) (len: usize {start + v len <= v n})
+  (d: num_bits t) 
+  : Lemma ( bit_vec_of_int_t_array (Seq.slice arr start (start + v len) <: t_Array _ len) d
+     `bit_vec_equal` bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))
+   [SMTPat (bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))]
+  = let bv1 = bit_vec_of_int_t_array #_ #len (Seq.slice arr start (start + v len)) d in
+    let bv2 = bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d) in
+    introduce forall i. bv1 i == bv2 i 
+    with ( Seq.lemma_index_slice arr start (start + v len) (i / d);
+           Math.Lemmas.lemma_div_plus i start d;
+           Math.Lemmas.lemma_mod_plus i start d);
+    bit_vec_equal_intro bv1 bv2
+
+#push-options "--split_queries always"
+let int_t_eq_seq_slice_bv_sub_lemma #t #n1 #n2
+  (arr1: t_Array (int_t t) n1) (arr2: t_Array (int_t t) n2)  (d: num_bits t)
+  (start1 start2: nat) (len: nat {start1 + len <= v n1 /\ start2 + len <= v n2})
+  : Lemma (requires Seq.slice arr1 start1 (start1 + len) == Seq.slice arr2 start2 (start2 + len))
+          (ensures  bit_vec_equal
+                       (bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d))
+                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))
+          [SMTPat ((bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d)) ==
+                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))]
+  = let len = sz len in
+    int_t_seq_slice_to_bv_sub_lemma arr1 start1 len d;
+    int_t_seq_slice_to_bv_sub_lemma arr2 start2 len d;
+    // bit_vec_equal_elim_principle ();
+    bit_vec_equal_intro_principle ()
+#pop-options
+
+let bit_vec_equal_extend #n1 #n2
+  (bv1: bit_vec n1) (bv2: bit_vec n2) (start1 start2: nat)
+  (len1: nat)
+  (len2: nat { start1 + len1 + len2 <= n1 /\ start2 + len1 + len2 <= n2})
+  : Lemma 
+    (requires 
+       bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1
+     /\ bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)
+    (ensures bit_vec_sub bv1 start1 (len1+len2) == bit_vec_sub bv2 start2 (len1+len2))
+    // [SMTPat (bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1);
+    //  SMTPat ()
+    // ]
+     // SMTPat (bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)]
+  = let left1 = bit_vec_sub bv1 start1 len1 in
+    let left2 = bit_vec_sub bv2 start2 len1 in
+    let right1 = bit_vec_sub bv1 (start1 + len1) len2 in
+    let right2 = bit_vec_sub bv2 (start2 + len1) len2 in
+    // ()
+    // bit_vec_equal_elim left1  left2 ;
+    // bit_vec_equal_elim right1 right2;
+    let entire1 = bit_vec_sub bv1 start1 (len1 + len2) in
+    let entire2 = bit_vec_sub bv2 start2 (len1 + len2) in
+    assert (forall (i:nat). i < len1 ==> left1 i == left2 i);
+    assert (forall (i:nat). i < len2 ==> right1 i == right2 i);
+    introduce forall (i:nat). i < len1 + len2 ==> entire1 i == entire2 i
+    with introduce i < len1 + len2 ==> entire1 i == entire2 i
+         with _. if i < len1 then assert (left1 i == left2 i)
+                             else assert (entire1 i == right1 (i - len1));
+    bit_vec_equal_intro entire1 entire2
+#pop-options
+
+// let bit_vec_equal_trans (#n: nat) (bv1 bv2 bv3: bit_vec n)
+//   : Lemma (requires bv1 `bit_vec_equal` bv2 /\ bv2 `bit_vec_equal` bv3)
+//           (ensures  bv1 `bit_vec_equal` bv3)
+//   = bit_vec_equal_elim_principle ();
+//     bit_vec_equal_intro_principle ()
+
+(*
+let int_arr_bitwise_eq_range
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+       (d2: num_bits t2)
+       (offset1 offset2: nat)
+       (bits: nat {
+           offset1 + bits <= v n1 * d1
+         /\ offset2 + bits <= v n2 * d2
+       })
+     = bit_vec_equal #bits (fun i -> bit_vec_of_int_t_array arr1 d1 (i + offset1))
+     = forall (k: nat). k < bits ==>
+          bit_vec_of_int_t_array arr1 d1 (offset1 + k) 
+       == bit_vec_of_int_t_array arr2 d2 (offset2 + k)
+
+let int_arr_bitwise_eq_range_comm
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+       (d2: num_bits t2)
+       (offset1 offset2: nat)
+       (bits: nat {
+           offset1 + bits <= v n1 * d1
+         /\ offset2 + bits <= v n2 * d2
+       })
+    : Lemma (requires int_arr_bitwise_eq_range arr1 d1 arr2 d2 offset1 offset2 bits)
+            (ensures int_arr_bitwise_eq_range arr2 d2 arr1 d1 offset2 offset1 bits)
+    = ()
+
+// kill that function in favor of range
+let int_arr_bitwise_eq_up_to
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+       (max: nat {max <= v n1 * d1})
+     
+     = forall i. i < max
+       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+
+let int_arr_bitwise_eq_
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+     = int_arr_bitwise_eq_up_to arr1 d1 arr2 d2 (v n1 * d1)
+
+// move to fsti
+let bit_vec_equal #n (bv1 bv2: bit_vec n)
+  = forall i. i < n ==> bv1 i == bv2 i
+
+let int_arr_bitwise_eq
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+     = forall i. i < v n1 * d1
+       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+
+let int_arr_bitwise_eq_range_transitivity
+       #t1 #t2 #t3 #n1 #n2 #n3
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+       (d2: num_bits t2)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement3: int_t t3 -> Type0)
+       (arr3: t_Array (x: int_t t3 {refinement3 x}) n3)
+       (d3: num_bits t3)
+       (offset1 offset2 offset3: nat)
+       (bits: nat {
+           offset1 + bits <= v n1 * d1
+         /\ offset2 + bits <= v n2 * d2
+         /\ offset3 + bits <= v n3 * d3
+       })
+   : Lemma 
+     (requires int_arr_bitwise_eq_range #t1 #t2 #n1 #n2 arr1 d1 arr2 d2 offset1 offset2 bits
+             /\ int_arr_bitwise_eq_range #t2 #t3 #n2 #n3 arr2 d2 arr3 d3 offset2 offset3 bits)
+     (ensures  int_arr_bitwise_eq_range #t1 #t3 #n1 #n3 arr1 d1 arr3 d3 offset1 offset3 bits)
+   = ()
+
+
+let int_arr_bitwise_eq_range_intro
+       #t1 #t2 #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+       (d1: num_bits t1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+   : Lemma 
+     (requires int_arr_bitwise_eq arr1 d1 arr2 d2)
+     (ensures int_arr_bitwise_eq_range arr1 d1 arr2 d2 0 0 (v n1 * d1))
+   = admit ()
+
+let int_arr_bitwise_eq_range_intro_eq_slice
+       #t #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t -> Type0)
+       (arr1: t_Array (x: int_t t {refinement x}) n1)
+       (arr2: t_Array (x: int_t t {refinement x}) n2)
+       (d: num_bits t)
+       (offset1 offset2: nat)
+       (n: nat {offset1 + n < v n1 /\ offset2 + n < v n2})
+       (bits: nat {
+           offset1 + bits <= v n1 * d
+         /\ offset2 + bits <= v n2 * d
+         /\ bits <= n * d
+       })
+   : Lemma (requires Seq.slice arr1 offset1 (offset1 + n) == Seq.slice arr2 offset2 (offset2 + n))
+           (ensures int_arr_bitwise_eq_range arr1 d arr2 d offset1 offset2 bits)
+ = admit ()
+ 
+let int_arr_bitwise_eq_range_intro_eq
+       #t #n1 #n2
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t -> Type0)
+       (arr1: t_Array (x: int_t t {refinement1 x}) n1)
+       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t -> Type0)
+       (arr2: t_Array (x: int_t t {refinement2 x}) n2)
+       (d: num_bits t)
+       (n_offset1 n_offset2: nat)
+       (n: nat {n_offset1 + n <= v n1 /\ n_offset2 + n <= v n2})
+       // (offset1 offset2: nat)
+       (bits: nat {
+           n_offset1 * d + bits <= v n1 * d
+         /\ n_offset2 * d + bits <= v n2 * d
+         /\ bits <= n * d
+       })
+   : Lemma (requires forall (i: nat). i < n ==> Seq.index arr1 (i + n_offset1) == Seq.index arr2 (i + n_offset2))
+           (ensures int_arr_bitwise_eq_range arr1 d arr2 d (n_offset1 * d) (n_offset2 * d) bits)
+ = admit ()
+*)
diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
index dc7a4fa7..11c3a8e4 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
@@ -6,8 +6,9 @@ open FStar.Mul
 open Libcrux.Kem.Kyber.Arithmetic
 
 open MkSeq
+open BitVecEq
 
-#push-options "--z3rlimit 80"
+#push-options "--z3rlimit 180"
 [@@"opaque_to_smt"]
 let compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32) =
   let coef1:u8 = cast (coefficient1 &. 255l <: i32) <: u8 in
@@ -24,6 +25,7 @@ let compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficien
     (cast ((coefficient3 >>! 4l <: i32) &. 63l <: i32) <: u8)
   in
   let coef5:u8 = cast ((coefficient4 >>! 2l <: i32) &. 255l <: i32) <: u8 in
+  bit_vec_equal_intro_principle ();
   coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 #pop-options
 
@@ -63,6 +65,7 @@ let compress_coefficients_11_
     (cast (coefficient7 >>! 6l <: i32) <: u8)
   in
   let coef11:u8 = cast (coefficient8 >>! 3l <: i32) <: u8 in
+  bit_vec_equal_intro_principle ();
   coef1, coef2, coef3, coef4, coef5, coef6, coef7, coef8, coef9, coef10, coef11
   <:
   (u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8)
@@ -79,6 +82,7 @@ let compress_coefficients_3_ coefficient1 coefficient2 =
     u8
   in
   let coef3:u8 = cast ((coefficient2 >>! 4l <: u16) &. 255us <: u16) <: u8 in
+  bit_vec_equal_intro_principle ();
   coef1, coef2, coef3 <: (u8 & u8 & u8) 
 #pop-options
 
@@ -98,6 +102,7 @@ let compress_coefficients_5_
     (coefficient5 >>! 4l <: u8)
   in
   let coef5:u8 = (coefficient8 <<! 3l <: u8) |. (coefficient7 >>! 2l <: u8) in
+  bit_vec_equal_intro_principle ();
   coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 #pop-options
 
@@ -112,6 +117,7 @@ let decompress_coefficients_10_ byte2 byte1 byte3 byte4 byte5 =
   lemma_get_bit_bounded' coefficient2 10;
   lemma_get_bit_bounded' coefficient3 10;
   lemma_get_bit_bounded' coefficient4 10;
+  bit_vec_equal_intro_principle ();
   coefficient1, coefficient2, coefficient3, coefficient4
 #pop-options
 
@@ -131,6 +137,7 @@ let decompress_coefficients_11_
   in
   let coefficient7:i32 = ((byte10 &. 31l <: i32) <<! 6l <: i32) |. (byte9 >>! 2l <: i32) in
   let coefficient8:i32 = (byte11 <<! 3l <: i32) |. (byte10 >>! 5l <: i32) in
+  bit_vec_equal_intro_principle ();
   lemma_get_bit_bounded' coefficient1 11;
   lemma_get_bit_bounded' coefficient2 11;
   lemma_get_bit_bounded' coefficient3 11;
@@ -156,6 +163,7 @@ let decompress_coefficients_4_ byte =
   let coefficient2:i32 = cast ((byte >>! 4l <: u8) &. 15uy <: u8) <: i32 in
   lemma_get_bit_bounded' coefficient1 4;
   lemma_get_bit_bounded' coefficient2 4;
+  bit_vec_equal_intro_principle ();
   coefficient1, coefficient2
 #pop-options
 
@@ -170,6 +178,7 @@ let decompress_coefficients_5_ byte1 byte2 byte3 byte4 byte5 =
   let coefficient6:i32 = (byte4 >>! 1l <: i32) &. 31l in
   let coefficient7:i32 = ((byte5 &. 7l <: i32) <<! 2l <: i32) |. (byte4 >>! 6l <: i32) in
   let coefficient8:i32 = byte5 >>! 3l in
+  bit_vec_equal_intro_principle ();
   lemma_get_bit_bounded' coefficient1 5;
   lemma_get_bit_bounded' coefficient2 5;
   lemma_get_bit_bounded' coefficient3 5;
diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
index df3b6b7e..a65a336a 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
@@ -3,21 +3,13 @@ module Libcrux.Kem.Kyber.Serialize
 open Core
 open FStar.Mul
 open MkSeq
-
-let int_arr_bitwise_eq
-       #t1 #t2 #n1 #n2
-       (arr1: t_Array (int_t t1) n1)
-       (d1: num_bits t1)
-       (arr2: t_Array (x: int_t t2) n2)
-       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
-     = forall i. i < v n1 * d1
-       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+open BitVecEq
 
 val compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32)
-    : Prims.Pure (u8 & u8 & u8 & u8 & u8) 
+    : Prims.Pure (u8 & u8 & u8 & u8 & u8)
       (requires True)
       (ensures fun tuple ->
-         int_arr_bitwise_eq
+         int_t_array_bitwise_eq'
                 (create4 (coefficient1, coefficient2, coefficient3, coefficient4)) 10
                 (create5 tuple) 8
       )
@@ -28,7 +20,7 @@ val compress_coefficients_11_
     : Prims.Pure (u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8)
       (requires True)
       (ensures fun tuple ->
-         int_arr_bitwise_eq
+         int_t_array_bitwise_eq'
                 (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 11
                 (create11 tuple) 8
       )
@@ -37,7 +29,7 @@ val compress_coefficients_3_ (coefficient1 coefficient2: int_t_d u16_inttype 12)
     : Prims.Pure (u8 & u8 & u8)
     (requires True)
     (ensures fun tuple ->
-       int_arr_bitwise_eq
+       int_t_array_bitwise_eq'
               (create2 (coefficient1, coefficient2)) 12
               (create3 tuple) 8
     )
@@ -47,7 +39,7 @@ val compress_coefficients_5_
     : Prims.Pure (u8 & u8 & u8 & u8 & u8)
       (requires True)
       (ensures fun tuple ->
-         int_arr_bitwise_eq
+         int_t_array_bitwise_eq'
                 (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 5
                 (create5 tuple) 8
       )
@@ -57,7 +49,7 @@ val decompress_coefficients_10_ (byte2 byte1 byte3 byte4 byte5: int_t_d i32_intt
     : Prims.Pure (i32_d 10 & i32_d 10 & i32_d 10 & i32_d 10)
       (requires True)
       (ensures fun (r1, r2, r3, r4) ->
-         int_arr_bitwise_eq
+         int_t_array_bitwise_eq'
                 (create5 (byte1, byte2, byte3, byte4, byte5)) 8
                 (create4 #i32 (r1, r2, r3, r4)) 10
       )
@@ -67,27 +59,27 @@ val decompress_coefficients_11_
     : Prims.Pure (i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11)
       (requires True)
       (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
-         int_arr_bitwise_eq
-                (create11 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
-                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
+         int_t_array_bitwise_eq'
+                (create11 #i32 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
+                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
       )
 
 val decompress_coefficients_4_ (byte: u8)
     : Prims.Pure (i32_d 4 & i32_d 4)
       (requires True)
       (ensures fun (r1, r2) ->
-         int_arr_bitwise_eq
+         int_t_array_bitwise_eq'
                 (create1 byte) 8
-                (create2 (r1, r2)) 4
+                (create2 #i32 (r1, r2)) 4
       )
 
 val decompress_coefficients_5_ (byte1 byte2 byte3 byte4 byte5: int_t_d i32_inttype 8)
     : Prims.Pure (i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5)
       (requires True)
       (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
-         int_arr_bitwise_eq
-                (create5 (byte1, byte2, byte3, byte4, byte5)) 8
-                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
+         int_t_array_bitwise_eq'
+                (create5 #i32 (byte1, byte2, byte3, byte4, byte5)) 8
+                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
       )
 
 val compress_then_serialize_10_

From d2779174c8d7c7e3799cedc2b4f5c5077b16c090 Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Mon, 19 Feb 2024 12:49:59 +0100
Subject: [PATCH 2/7] feat(kyber/F*): proof for
 `serialize_uncompress_ring_element`

---
 .../Libcrux.Kem.Kyber.Serialize.fst           | 108 ++++++++++++------
 .../Libcrux.Kem.Kyber.Serialize.fsti          |   5 +-
 2 files changed, 75 insertions(+), 38 deletions(-)

diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
index 11c3a8e4..1ff10373 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
@@ -1345,45 +1345,79 @@ let deserialize_to_uncompressed_ring_element (serialized: t_Slice u8) =
   re
 #pop-options
 
-#push-options "--z3rlimit 100"
-let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement) =
-  let serialized:t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
-  let serialized:t_Array u8 (sz 384) =
-    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ #(fun _ _ -> True)
-      (Rust_primitives.unsize re.Libcrux.Kem.Kyber.Arithmetic.f_coefficients)
+module A = Libcrux.Kem.Kyber.Arithmetic
+
+[@@"opaque_to_smt"]
+let update3 #n (s: t_Array 't n) (offset: usize {v offset + 3 <= v n}) (i0 i1 i2: 't)
+  : s': t_Array 't n { Seq.index s' (v offset +  0) == i0
+                    /\ Seq.index s' (v offset +  1) == i1
+                    /\ Seq.index s' (v offset +  2) == i2
+                    /\ (forall i. (i < v offset \/ i >= v offset + 3) ==> Seq.index s' i == Seq.index s i) }
+ = let open Rust_primitives.Hax.Monomorphized_update_at in
+    let s = update_at_usize s  offset           i0 in
+    let s = update_at_usize s (offset +! sz  1) i1 in
+    update_at_usize s (offset +! sz  2) i2
+
+let slice_map_lemma #t #u #n (f: t -> u) (arr: t_Array t n)
+  (start: nat) (len: nat {start + len <= v n})
+  : Lemma (  Seq.slice (Spec.Kyber.map' f arr) start (start + len)
+          == Spec.Kyber.map' f (Seq.slice arr start (start + len))
+          )
+  = let f_arr = Spec.Kyber.map' f arr in
+    let lhs = Seq.slice f_arr start (start + len) in
+    let rhs = Spec.Kyber.map' f (Seq.slice arr start (start + len)) in
+    introduce forall i. Seq.index lhs i == Seq.index rhs i
+    with (
+      Seq.lemma_index_slice f_arr start (start + len) i;
+      Seq.lemma_index_slice   arr start (start + len) i;
+      let sz_i_start, sz_i = sz (i + start), sz i in
+      assert (Seq.index f_arr (v sz_i_start) == f (Seq.index arr (v (sz_i_start))));
+      assert (Seq.index rhs (v sz_i) == f (Seq.index (Seq.slice arr start (start + len)) (v sz_i)))
+    );
+    assert (Seq.equal lhs rhs)
+
+#push-options "--z3rlimit 2800 --fuel 0 --ifuel 0 --retry 0 --split_queries no"
+let serialize_uncompressed_ring_element re =
+  let serialized: t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
+  let max = v (sz 384) * 8 in
+  assert (max == 256 * 12 /\ max == 384 * 8 /\ 128 * 2 * 12 == max);
+  assert (128 == v (length re.f_coefficients /! (sz 2)));
+  let serialized =
+    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ 
+      #(fun serialized i -> 
+        let i = v i in
+        i <= 128 /\ (
+            let limit = i * 2 * 12 in
+            let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
+            bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 limit
+         == bit_vec_sub (bit_vec_of_int_t_array coefficients 12) 0 limit)
+      )
+      (re.A.f_coefficients <: t_Array _ (sz 256))
       (sz 2)
       serialized
-      (fun serialized temp_1_ ->
-          let serialized:t_Array u8 (sz 384) = serialized in
-          let i, coefficients:(usize & t_Array (Libcrux.Kem.Kyber.Arithmetic.i32_b (v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS - 1)) (sz 2)) = temp_1_ in
-          assert (v i < 128);
-          let coefficient1:u16 =
-            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32)
-          in
-          let coefficient2:u16 =
-            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 1 ] <: i32)
-          in
-          let coef1, coef2, coef3:(u8 & u8 & u8) =
-            compress_coefficients_3_ coefficient1 coefficient2
-          in
-          assert_spinoff (3 * v i + 3 <= 384);
-          assert_spinoff (range (v (sz 3) * v i) usize_inttype);
-          let serialized:t_Array u8 (sz 384) =
-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
-              (sz 3 *! i <: usize)
-              coef1
-          in
-          let serialized:t_Array u8 (sz 384) =
-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
-              ((sz 3 *! i <: usize) +! sz 1 <: usize)
-              coef2
-          in
-          let serialized:t_Array u8 (sz 384) =
-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
-              ((sz 3 *! i <: usize) +! sz 2 <: usize)
-              coef3
-          in
-          serialized)
+      (fun serialized it -> let i, coefficients = it in
+
+    let coefficient1 = A.to_unsigned_representative (coefficients.[ sz 0 ] <: i32) in
+    let coefficient2 = A.to_unsigned_representative (coefficients.[ sz 1 ] <: i32) in
+    let (coef1, coef2, coef3) = compress_coefficients_3_ coefficient1 coefficient2 in
+    let j = sz 3 *! i in
+    let serialized' = update3 serialized j coef1 coef2 coef3 in
+    assert (      Seq.slice serialized' (v j) (v j + 3)
+      `Seq.equal` Seq.slice (create3 (coef1, coef2, coef3)) 0 3);
+    bit_vec_equal_intro 
+        (let coefficients: t_Array _ (sz 2) = Spec.Kyber.map' to_unsigned_representative coefficients in
+         bit_vec_of_int_t_array coefficients 12)
+        (retype (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) (3 * v i * 8) (3 * 8)));
+    let full_coefficients: t_Array u16 (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
+    slice_map_lemma #_ #u16 to_unsigned_representative re.f_coefficients (v i * 2) 2;
+    bit_vec_equal_intro
+        (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) 0 (v i * 2 * 12))
+        (bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 (v i * 2 * 12));
+    bit_vec_equal_extend (bit_vec_of_int_t_array serialized' 8)
+                         (bit_vec_of_int_t_array full_coefficients 12)
+                         0 0 (v i * 2 * 12) (3 * 8);
+    serialized' <: t_Array u8 (sz 384))
   in
   serialized
 #pop-options
+
diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
index a65a336a..11e00399 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
@@ -183,4 +183,7 @@ val deserialize_to_uncompressed_ring_element (serialized: t_Slice u8)
 val serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement)
     : Pure (t_Array u8 (sz 384))
       (requires True)
-      (ensures (fun res -> True))
+      (ensures (fun res ->
+        let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative re.f_coefficients in
+        int_t_array_bitwise_eq res 8 coefficients 12
+      ))

From f7ecf28a3d9b5506236edbf4aa388c79152ae946 Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Tue, 20 Feb 2024 07:30:12 +0100
Subject: [PATCH 3/7] fix(kyber/F*): spec, force subtype on bit vectors

---
 proofs/fstar/extraction-edited/Spec.Kyber.fst | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/proofs/fstar/extraction-edited/Spec.Kyber.fst b/proofs/fstar/extraction-edited/Spec.Kyber.fst
index 39adaec8..ba35d385 100644
--- a/proofs/fstar/extraction-edited/Spec.Kyber.fst
+++ b/proofs/fstar/extraction-edited/Spec.Kyber.fst
@@ -176,12 +176,15 @@ let bytes_to_bits (#bytes: usize) (r: t_Array u8 bytes)
          (ensures fun f -> (forall i. bit_vec_of_int_t_array r 8 i == f i))
   = bit_vec_of_int_t_array r 8
 
+unfold let retype_bit_vector #a #b (#_:unit{a == b}) (x: a): b = x
+
 let byte_encode (d: dT) (coefficients: polynomial): t_Array u8 (sz (32 * d))
-  = bits_to_bytes #(sz (32 * d)) (bit_vec_of_nat_array coefficients d)
+  = bits_to_bytes #(sz (32 * d))
+       (retype_bit_vector (bit_vec_of_nat_array coefficients d))
 
 let byte_decode (d: dT) (coefficients: t_Array u8 (sz (32 * d))): polynomial
   = let bv = bit_vec_of_int_t_array coefficients 8 in
-    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d bv in
+    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d (retype_bit_vector bv) in
     let p = map' (fun (x: nat) -> x % v v_FIELD_MODULUS <: nat) arr in
     introduce forall i. Seq.index p i < v v_FIELD_MODULUS
     with assert (Seq.index p i == Seq.index p (v (sz i)));

From 9b6e1e54512651ef4cea679f1b42592ac18abbfc Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Tue, 20 Feb 2024 09:11:30 +0100
Subject: [PATCH 4/7] feat(kyber/F*): utilitary functions

---
 .../Libcrux.Kem.Kyber.Arithmetic.fsti                 | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti
index 6cf0c1f1..8c68772f 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti
@@ -57,6 +57,11 @@ let int_to_spec_fe (m:int) : Spec.Kyber.field_element =
       m_v + v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS
     else m_v
 
+let wf_fe_to_spec_fe (m: wfFieldElement): Spec.Kyber.field_element =
+  if v m < 0
+  then v m + v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS
+  else v m
+
 let to_spec_fe (m:i32) : Spec.Kyber.field_element = 
     int_to_spec_fe (v m)
 
@@ -182,6 +187,12 @@ val down_cast_vector_b (#v_K:usize) (#b1:nat) (#b2:nat{b2 <= b1 /\ b1 < pow2_31}
 
 let op_String_Access #t #l (a:t_Array t l) (i:usize{v i < v l}) : t = a.[i]
 
+let wf_poly_to_spec_poly (re: wfPolynomialRingElement): Spec.Kyber.polynomial =
+    let p = Spec.Kyber.map' (fun x -> wf_fe_to_spec_fe x <: nat) re.f_coefficients in
+    introduce forall i. Seq.index p i < v Spec.Kyber.v_FIELD_MODULUS
+    with assert (Seq.index p i == Seq.index p (v (sz i)));
+    p
+
 let to_spec_poly (m:t_PolynomialRingElement) : (Spec.Kyber.polynomial) =
     let p = createi #nat (sz 256) (fun i -> to_spec_fe (m.f_coefficients.[i])) in
     assert (forall i. Seq.index p i = to_spec_fe (m.f_coefficients.[sz i]));

From 056d0cb3d2efcca4b2cf173ad69c77d42e2d06bd Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Tue, 20 Feb 2024 10:46:39 +0100
Subject: [PATCH 5/7] fix(kyber/fstar): tweak some `Artihmetic.fst` proofs &
 rlimit

---
 .../Libcrux.Kem.Kyber.Arithmetic.fst               | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst
index 5139b2d7..2fd3d9ff 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst
@@ -38,7 +38,7 @@ let sub_i32_b #b1 #b2 x y =
 let cast_i32_b #b1 #b2 x =
   x <: i32_b b2 
 
-#push-options "--ifuel 0 --z3rlimit 150"
+#push-options "--ifuel 0 --z3rlimit 250"
 let shr_i32_b #b #t x y =
   let r = (x <: i32) >>! y in
   assert (v r == v x / pow2 (v y));
@@ -78,8 +78,16 @@ let shr_i32_b #b #t x y =
         r <: i32_b (nat_div_ceil b (pow2 (v y))))
 #pop-options
 
-let v_BARRETT_R: i64 = 1L <<! v_BARRETT_SHIFT
-let v_MONTGOMERY_R: i32 = 1l <<! v_MONTGOMERY_SHIFT
+let v_BARRETT_R: i64 =
+  let result = 1L <<! v_BARRETT_SHIFT in
+  assert_norm (result == mk_int (67108864 @%. Lib.IntTypes.S64));
+  result
+
+let v_MONTGOMERY_R =
+  let result: i32 = 1l <<! v_MONTGOMERY_SHIFT in
+  assert_norm (result == mk_int (65536 @%. Lib.IntTypes.S32));
+  result
+
 let v_MONTGOMERY_R_INV = 
   assert_norm((v 169l * pow2 16) % 3329 == 1);
   169l

From 3886944e7d55a4aed03684a3667f2de952c42df9 Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Tue, 20 Feb 2024 09:11:12 +0100
Subject: [PATCH 6/7] chore(kyber/F*): bump rlimits

---
 .../fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
index 1ff10373..0ffa9438 100644
--- a/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
+++ b/proofs/fstar/extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
@@ -8,7 +8,7 @@ open Libcrux.Kem.Kyber.Arithmetic
 open MkSeq
 open BitVecEq
 
-#push-options "--z3rlimit 180"
+#push-options "--z3rlimit 480  --split_queries always"
 [@@"opaque_to_smt"]
 let compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32) =
   let coef1:u8 = cast (coefficient1 &. 255l <: i32) <: u8 in
@@ -86,7 +86,7 @@ let compress_coefficients_3_ coefficient1 coefficient2 =
   coef1, coef2, coef3 <: (u8 & u8 & u8) 
 #pop-options
 
-#push-options "--z3rlimit 60 --split_queries always"
+#push-options "--z3rlimit 160 --split_queries always"
 [@@"opaque_to_smt"]
 let compress_coefficients_5_
       coefficient2 coefficient1 coefficient4 coefficient3 coefficient5 coefficient7 coefficient6 coefficient8

From d686389af5fa7931639273e374fc60965374b7b5 Mon Sep 17 00:00:00 2001
From: Lucas Franceschino <lucas.franceschino@inria.fr>
Date: Mon, 19 Feb 2024 12:50:46 +0100
Subject: [PATCH 7/7] chore(kyber/F*): patches and hints

---
 proofs/fstar/extraction-edited.patch          |  757 ++++--
 .../.hints/BitVecEq.fsti.hints                |  911 +++++++
 .../.hints/Core.Array.fst.hints               |    2 +-
 .../.hints/Core.Convert.fst.hints             |    6 +-
 .../Core.Iter.Adapters.Enumerate.fst.hints    |    2 +-
 .../Core.Iter.Adapters.Step_by.fst.hints      |    2 +-
 .../.hints/Core.Iter.fsti.hints               |    4 +-
 .../.hints/Core.Num.fsti.hints                |   35 +-
 .../.hints/Core.Ops.Index.fst.hints           |    2 +-
 .../.hints/Core.Ops.Range.fsti.hints          |   30 +-
 .../.hints/Core.Ops.fst.hints                 |    2 +-
 .../.hints/Core.Option.fst.hints              |    8 +-
 .../.hints/Core.Panicking.fst.hints           |    4 +-
 .../.hints/Core.Result.fst.hints              |   23 +-
 .../.hints/Core.Slice.fsti.hints              |    6 +-
 .../.hints/Hax_lib.fst.hints                  |    4 +-
 .../.hints/Lib.IntTypes.fsti.hints            |  139 +-
 .../.hints/Libcrux.Digest.fsti.hints          |    6 +-
 .../Libcrux.Kem.Kyber.Arithmetic.fst.hints    |  697 +++---
 .../Libcrux.Kem.Kyber.Arithmetic.fsti.hints   |  265 +-
 .../Libcrux.Kem.Kyber.Compress.fst.hints      |  128 +-
 .../Libcrux.Kem.Kyber.Compress.fsti.hints     |    4 +-
 ...crux.Kem.Kyber.Constant_time_ops.fst.hints |   41 +-
 ...rux.Kem.Kyber.Constant_time_ops.fsti.hints |    4 +-
 .../Libcrux.Kem.Kyber.Constants.fsti.hints    |   16 +-
 ...Libcrux.Kem.Kyber.Hash_functions.fst.hints |  118 +-
 ...ibcrux.Kem.Kyber.Hash_functions.fsti.hints |   21 +-
 .../Libcrux.Kem.Kyber.Ind_cpa.fst.hints       | 1146 ++++-----
 .../Libcrux.Kem.Kyber.Ind_cpa.fsti.hints      |  107 +-
 .../Libcrux.Kem.Kyber.Kyber1024.fst.hints     |   93 +-
 .../Libcrux.Kem.Kyber.Kyber1024.fsti.hints    |   69 +-
 .../Libcrux.Kem.Kyber.Kyber512.fst.hints      |   90 +-
 .../Libcrux.Kem.Kyber.Kyber512.fsti.hints     |   81 +-
 .../Libcrux.Kem.Kyber.Kyber768.fst.hints      |  103 +-
 .../Libcrux.Kem.Kyber.Kyber768.fsti.hints     |   60 +-
 .../.hints/Libcrux.Kem.Kyber.Matrix.fst.hints |  129 +-
 .../Libcrux.Kem.Kyber.Matrix.fsti.hints       |   10 +-
 .../.hints/Libcrux.Kem.Kyber.Ntt.fst.hints    | 1124 ++-------
 .../.hints/Libcrux.Kem.Kyber.Ntt.fsti.hints   |   12 +-
 .../Libcrux.Kem.Kyber.Sampling.fst.hints      |   54 +-
 .../Libcrux.Kem.Kyber.Sampling.fsti.hints     |    8 +-
 .../Libcrux.Kem.Kyber.Serialize.fst.hints     | 2126 ++++++++++++-----
 .../Libcrux.Kem.Kyber.Serialize.fsti.hints    |  100 +-
 .../.hints/Libcrux.Kem.Kyber.Types.fst.hints  |   20 +-
 .../.hints/Libcrux.Kem.Kyber.fst.hints        |  304 +--
 .../.hints/Libcrux.Kem.Kyber.fsti.hints       |   14 +-
 .../Libcrux_platform.Platform.fsti.hints      |    1 +
 .../.hints/Libcrux_platform.fsti.hints        |    1 -
 .../extraction-edited/.hints/MkSeq.fst.hints  |   39 +-
 .../.hints/Rust_primitives.Arrays.fsti.hints  |  162 +-
 .../Rust_primitives.BitVectors.fsti.hints     |  131 +-
 ...ves.Hax.Monomorphized_update_at.fsti.hints |   10 +-
 .../.hints/Rust_primitives.Hax.fst.hints      |   17 +-
 .../Rust_primitives.Integers.fsti.hints       |  148 +-
 .../Rust_primitives.Iterators.fsti.hints      |   60 +-
 .../.hints/Rust_primitives.fst.hints          |   25 +-
 .../.hints/Spec.Kyber.fst.hints               | 1727 +++++--------
 .../fstar/extraction-secret-independent.patch |  769 ++++--
 58 files changed, 6548 insertions(+), 5429 deletions(-)
 create mode 100644 proofs/fstar/extraction-edited/.hints/BitVecEq.fsti.hints
 create mode 100644 proofs/fstar/extraction-edited/.hints/Libcrux_platform.Platform.fsti.hints
 delete mode 100644 proofs/fstar/extraction-edited/.hints/Libcrux_platform.fsti.hints

diff --git a/proofs/fstar/extraction-edited.patch b/proofs/fstar/extraction-edited.patch
index 5857621e..b828a0d7 100644
--- a/proofs/fstar/extraction-edited.patch
+++ b/proofs/fstar/extraction-edited.patch
@@ -1,5 +1,319 @@
+diff -ruN extraction/BitVecEq.fst extraction-edited/BitVecEq.fst
+--- extraction/BitVecEq.fst	1970-01-01 01:00:00.000000000 +0100
++++ extraction-edited/BitVecEq.fst	2024-02-20 10:46:13.853093120 +0100
+@@ -0,0 +1,12 @@
++module BitVecEq
++
++open Core
++open FStar.Mul
++open FStar.FunctionalExtensionality
++
++let bit_vec_equal #n bv1 bv2 = forall i. bv1 i == bv2 i
++
++let bit_vec_equal_intro bv1 bv2 = ()
++let bit_vec_equal_elim bv1 bv2 = assert (feq bv1 bv2)
++
++
+diff -ruN extraction/BitVecEq.fsti extraction-edited/BitVecEq.fsti
+--- extraction/BitVecEq.fsti	1970-01-01 01:00:00.000000000 +0100
++++ extraction-edited/BitVecEq.fsti	2024-02-20 10:46:13.894092295 +0100
+@@ -0,0 +1,294 @@
++module BitVecEq
++#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
++open Core
++open FStar.Mul
++open MkSeq
++open FStar.FunctionalExtensionality
++
++val bit_vec_equal (#n: nat) (bv1 bv2: bit_vec n): Type0
++val bit_vec_equal_intro (#n: nat) (bv1 bv2: bit_vec n)
++  : Lemma (requires forall i. bv1 i == bv2 i)
++          (ensures bit_vec_equal bv1 bv2)
++val bit_vec_equal_elim (#n: nat) (bv1 bv2: bit_vec n)
++  : Lemma (requires bit_vec_equal #n bv1 bv2)
++          (ensures bv1 == bv2)
++          [SMTPat (bit_vec_equal #n bv1 bv2)]
++
++let bit_vec_equal_intro_principle ()
++  : Lemma (forall n (bv1 bv2: bit_vec n). (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2)
++  = introduce forall n (bv1 bv2: bit_vec n). _
++    with introduce (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2
++         with _. bit_vec_equal_intro #n bv1 bv2
++  
++let bit_vec_equal_elim_principle ()
++  : Lemma (forall n (bv1 bv2: bit_vec n). bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i))
++  = introduce forall n (bv1 bv2: bit_vec n). _
++    with introduce bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i)
++         with _. bit_vec_equal_elim #n bv1 bv2
++
++let bit_vec_equal_trivial (bv1 bv2: bit_vec 0): Lemma (bv1 == bv2) 
++    [SMTPat (eq2 #(bit_vec 0) bv1 bv2)]
++  = bit_vec_equal_intro bv1 bv2
++
++let bit_vec_sub #n (bv: bit_vec n) (start: nat) (len: nat {start + len <= n})
++  : bit_vec len
++  = on (i: nat {i < len})
++       (fun i -> bv (start + i))
++
++let bit_vec_equal_trivial_sub_smtpat (bv1: bit_vec 'n)
++  : Lemma (forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2)
++    [SMTPat (bit_vec_sub bv1 0 0)]
++  = introduce forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2
++    with bit_vec_equal_trivial (bit_vec_sub bv1 0 0) bv2
++
++unfold let retype #a #b (#_:unit{a == b})
++  (x: a): b
++  = x
++
++let bit_vec_sub_all_lemma #n (bv: bit_vec n)
++  : Lemma (bit_vec_sub bv 0 n == bv)
++          [SMTPat (bit_vec_sub bv 0 n)]
++  = bit_vec_equal_intro (bit_vec_sub bv 0 n) bv
++
++let int_t_array_bitwise_eq'
++       #t1 #t2 #n1 #n2
++       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
++       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++     = bit_vec_equal (bit_vec_of_int_t_array arr1 d1)
++                     (retype (bit_vec_of_int_t_array arr2 d2))
++
++let int_t_array_bitwise_eq
++       #t1 #t2 #n1 #n2
++       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
++       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++     =  bit_vec_of_int_t_array arr1 d1
++     == bit_vec_of_int_t_array arr2 d2
++
++// let get_bit_intro ()
++//   : Lemma (forall (#n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
++//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
++//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth)))
++//   = introduce forall (n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
++//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
++//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth))
++//     with get_bit_intro #n x nth
++
++#push-options "--fuel 0 --ifuel 0 --z3rlimit 80"
++/// Rewrite a `bit_vec_of_int_t_array (Seq.slice arr ...)` into a `bit_vec_sub ...`
++let int_t_seq_slice_to_bv_sub_lemma #t #n 
++  (arr: t_Array (int_t t) n)
++  (start: nat) (len: usize {start + v len <= v n})
++  (d: num_bits t) 
++  : Lemma ( bit_vec_of_int_t_array (Seq.slice arr start (start + v len) <: t_Array _ len) d
++     `bit_vec_equal` bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))
++   [SMTPat (bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))]
++  = let bv1 = bit_vec_of_int_t_array #_ #len (Seq.slice arr start (start + v len)) d in
++    let bv2 = bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d) in
++    introduce forall i. bv1 i == bv2 i 
++    with ( Seq.lemma_index_slice arr start (start + v len) (i / d);
++           Math.Lemmas.lemma_div_plus i start d;
++           Math.Lemmas.lemma_mod_plus i start d);
++    bit_vec_equal_intro bv1 bv2
++
++#push-options "--split_queries always"
++let int_t_eq_seq_slice_bv_sub_lemma #t #n1 #n2
++  (arr1: t_Array (int_t t) n1) (arr2: t_Array (int_t t) n2)  (d: num_bits t)
++  (start1 start2: nat) (len: nat {start1 + len <= v n1 /\ start2 + len <= v n2})
++  : Lemma (requires Seq.slice arr1 start1 (start1 + len) == Seq.slice arr2 start2 (start2 + len))
++          (ensures  bit_vec_equal
++                       (bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d))
++                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))
++          [SMTPat ((bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d)) ==
++                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))]
++  = let len = sz len in
++    int_t_seq_slice_to_bv_sub_lemma arr1 start1 len d;
++    int_t_seq_slice_to_bv_sub_lemma arr2 start2 len d;
++    // bit_vec_equal_elim_principle ();
++    bit_vec_equal_intro_principle ()
++#pop-options
++
++let bit_vec_equal_extend #n1 #n2
++  (bv1: bit_vec n1) (bv2: bit_vec n2) (start1 start2: nat)
++  (len1: nat)
++  (len2: nat { start1 + len1 + len2 <= n1 /\ start2 + len1 + len2 <= n2})
++  : Lemma 
++    (requires 
++       bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1
++     /\ bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)
++    (ensures bit_vec_sub bv1 start1 (len1+len2) == bit_vec_sub bv2 start2 (len1+len2))
++    // [SMTPat (bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1);
++    //  SMTPat ()
++    // ]
++     // SMTPat (bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)]
++  = let left1 = bit_vec_sub bv1 start1 len1 in
++    let left2 = bit_vec_sub bv2 start2 len1 in
++    let right1 = bit_vec_sub bv1 (start1 + len1) len2 in
++    let right2 = bit_vec_sub bv2 (start2 + len1) len2 in
++    // ()
++    // bit_vec_equal_elim left1  left2 ;
++    // bit_vec_equal_elim right1 right2;
++    let entire1 = bit_vec_sub bv1 start1 (len1 + len2) in
++    let entire2 = bit_vec_sub bv2 start2 (len1 + len2) in
++    assert (forall (i:nat). i < len1 ==> left1 i == left2 i);
++    assert (forall (i:nat). i < len2 ==> right1 i == right2 i);
++    introduce forall (i:nat). i < len1 + len2 ==> entire1 i == entire2 i
++    with introduce i < len1 + len2 ==> entire1 i == entire2 i
++         with _. if i < len1 then assert (left1 i == left2 i)
++                             else assert (entire1 i == right1 (i - len1));
++    bit_vec_equal_intro entire1 entire2
++#pop-options
++
++// let bit_vec_equal_trans (#n: nat) (bv1 bv2 bv3: bit_vec n)
++//   : Lemma (requires bv1 `bit_vec_equal` bv2 /\ bv2 `bit_vec_equal` bv3)
++//           (ensures  bv1 `bit_vec_equal` bv3)
++//   = bit_vec_equal_elim_principle ();
++//     bit_vec_equal_intro_principle ()
++
++(*
++let int_arr_bitwise_eq_range
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
++       (d2: num_bits t2)
++       (offset1 offset2: nat)
++       (bits: nat {
++           offset1 + bits <= v n1 * d1
++         /\ offset2 + bits <= v n2 * d2
++       })
++     = bit_vec_equal #bits (fun i -> bit_vec_of_int_t_array arr1 d1 (i + offset1))
++     = forall (k: nat). k < bits ==>
++          bit_vec_of_int_t_array arr1 d1 (offset1 + k) 
++       == bit_vec_of_int_t_array arr2 d2 (offset2 + k)
++
++let int_arr_bitwise_eq_range_comm
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
++       (d2: num_bits t2)
++       (offset1 offset2: nat)
++       (bits: nat {
++           offset1 + bits <= v n1 * d1
++         /\ offset2 + bits <= v n2 * d2
++       })
++    : Lemma (requires int_arr_bitwise_eq_range arr1 d1 arr2 d2 offset1 offset2 bits)
++            (ensures int_arr_bitwise_eq_range arr2 d2 arr1 d1 offset2 offset1 bits)
++    = ()
++
++// kill that function in favor of range
++let int_arr_bitwise_eq_up_to
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
++       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++       (max: nat {max <= v n1 * d1})
++     
++     = forall i. i < max
++       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
++
++let int_arr_bitwise_eq_
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
++       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++     = int_arr_bitwise_eq_up_to arr1 d1 arr2 d2 (v n1 * d1)
++
++// move to fsti
++let bit_vec_equal #n (bv1 bv2: bit_vec n)
++  = forall i. i < n ==> bv1 i == bv2 i
++
++let int_arr_bitwise_eq
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
++       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++     = forall i. i < v n1 * d1
++       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
++
++let int_arr_bitwise_eq_range_transitivity
++       #t1 #t2 #t3 #n1 #n2 #n3
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
++       (d2: num_bits t2)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement3: int_t t3 -> Type0)
++       (arr3: t_Array (x: int_t t3 {refinement3 x}) n3)
++       (d3: num_bits t3)
++       (offset1 offset2 offset3: nat)
++       (bits: nat {
++           offset1 + bits <= v n1 * d1
++         /\ offset2 + bits <= v n2 * d2
++         /\ offset3 + bits <= v n3 * d3
++       })
++   : Lemma 
++     (requires int_arr_bitwise_eq_range #t1 #t2 #n1 #n2 arr1 d1 arr2 d2 offset1 offset2 bits
++             /\ int_arr_bitwise_eq_range #t2 #t3 #n2 #n3 arr2 d2 arr3 d3 offset2 offset3 bits)
++     (ensures  int_arr_bitwise_eq_range #t1 #t3 #n1 #n3 arr1 d1 arr3 d3 offset1 offset3 bits)
++   = ()
++
++
++let int_arr_bitwise_eq_range_intro
++       #t1 #t2 #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
++       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
++       (d1: num_bits t1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
++       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
++       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
++   : Lemma 
++     (requires int_arr_bitwise_eq arr1 d1 arr2 d2)
++     (ensures int_arr_bitwise_eq_range arr1 d1 arr2 d2 0 0 (v n1 * d1))
++   = admit ()
++
++let int_arr_bitwise_eq_range_intro_eq_slice
++       #t #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t -> Type0)
++       (arr1: t_Array (x: int_t t {refinement x}) n1)
++       (arr2: t_Array (x: int_t t {refinement x}) n2)
++       (d: num_bits t)
++       (offset1 offset2: nat)
++       (n: nat {offset1 + n < v n1 /\ offset2 + n < v n2})
++       (bits: nat {
++           offset1 + bits <= v n1 * d
++         /\ offset2 + bits <= v n2 * d
++         /\ bits <= n * d
++       })
++   : Lemma (requires Seq.slice arr1 offset1 (offset1 + n) == Seq.slice arr2 offset2 (offset2 + n))
++           (ensures int_arr_bitwise_eq_range arr1 d arr2 d offset1 offset2 bits)
++ = admit ()
++ 
++let int_arr_bitwise_eq_range_intro_eq
++       #t #n1 #n2
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t -> Type0)
++       (arr1: t_Array (x: int_t t {refinement1 x}) n1)
++       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t -> Type0)
++       (arr2: t_Array (x: int_t t {refinement2 x}) n2)
++       (d: num_bits t)
++       (n_offset1 n_offset2: nat)
++       (n: nat {n_offset1 + n <= v n1 /\ n_offset2 + n <= v n2})
++       // (offset1 offset2: nat)
++       (bits: nat {
++           n_offset1 * d + bits <= v n1 * d
++         /\ n_offset2 * d + bits <= v n2 * d
++         /\ bits <= n * d
++       })
++   : Lemma (requires forall (i: nat). i < n ==> Seq.index arr1 (i + n_offset1) == Seq.index arr2 (i + n_offset2))
++           (ensures int_arr_bitwise_eq_range arr1 d arr2 d (n_offset1 * d) (n_offset2 * d) bits)
++ = admit ()
++*)
 diff -ruN extraction/Libcrux.Digest.fst extraction-edited/Libcrux.Digest.fst
---- extraction/Libcrux.Digest.fst	2024-02-06 13:56:02.927572316 +0100
+--- extraction/Libcrux.Digest.fst	2024-02-20 10:46:13.825093683 +0100
 +++ extraction-edited/Libcrux.Digest.fst	1970-01-01 01:00:00.000000000 +0100
 @@ -1,48 +0,0 @@
 -module Libcrux.Digest
@@ -51,8 +365,8 @@ diff -ruN extraction/Libcrux.Digest.fst extraction-edited/Libcrux.Digest.fst
 -  then shake128x4_256_ v_LEN data0 data1 data2 data3
 -  else shake128x4_portable v_LEN data0 data1 data2 data3
 diff -ruN extraction/Libcrux.Digest.fsti extraction-edited/Libcrux.Digest.fsti
---- extraction/Libcrux.Digest.fsti	2024-02-06 13:56:02.900572481 +0100
-+++ extraction-edited/Libcrux.Digest.fsti	2024-02-06 13:56:02.959572122 +0100
+--- extraction/Libcrux.Digest.fsti	2024-02-20 10:46:13.815093884 +0100
++++ extraction-edited/Libcrux.Digest.fsti	2024-02-20 10:46:13.890092375 +0100
 @@ -3,6 +3,11 @@
  open Core
  open FStar.Mul
@@ -79,7 +393,7 @@ diff -ruN extraction/Libcrux.Digest.fsti extraction-edited/Libcrux.Digest.fsti
      : Prims.Pure (t_Array u8 v_LEN & t_Array u8 v_LEN & t_Array u8 v_LEN & t_Array u8 v_LEN)
 diff -ruN extraction/Libcrux.Kem.fst extraction-edited/Libcrux.Kem.fst
 --- extraction/Libcrux.Kem.fst	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-edited/Libcrux.Kem.fst	2024-02-06 13:56:02.975572024 +0100
++++ extraction-edited/Libcrux.Kem.fst	2024-02-20 10:46:13.879092596 +0100
 @@ -0,0 +1,6 @@
 +module Libcrux.Kem
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -88,9 +402,9 @@ diff -ruN extraction/Libcrux.Kem.fst extraction-edited/Libcrux.Kem.fst
 +
 +
 diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst
---- extraction/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-06 13:56:02.906572444 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-06 13:56:02.969572061 +0100
-@@ -1,81 +1,356 @@
+--- extraction/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-20 10:46:13.828093623 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-20 10:46:13.874092697 +0100
+@@ -1,81 +1,364 @@
  module Libcrux.Kem.Kyber.Arithmetic
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
@@ -133,7 +447,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.
 +let cast_i32_b #b1 #b2 x =
 +  x <: i32_b b2 
 +
-+#push-options "--ifuel 0 --z3rlimit 150"
++#push-options "--ifuel 0 --z3rlimit 250"
 +let shr_i32_b #b #t x y =
 +  let r = (x <: i32) >>! y in
 +  assert (v r == v x / pow2 (v y));
@@ -173,8 +487,16 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.
 +        r <: i32_b (nat_div_ceil b (pow2 (v y))))
 +#pop-options
 +
-+let v_BARRETT_R: i64 = 1L <<! v_BARRETT_SHIFT
-+let v_MONTGOMERY_R: i32 = 1l <<! v_MONTGOMERY_SHIFT
++let v_BARRETT_R: i64 =
++  let result = 1L <<! v_BARRETT_SHIFT in
++  assert_norm (result == mk_int (67108864 @%. Lib.IntTypes.S64));
++  result
++
++let v_MONTGOMERY_R =
++  let result: i32 = 1l <<! v_MONTGOMERY_SHIFT in
++  assert_norm (result == mk_int (65536 @%. Lib.IntTypes.S32));
++  result
++
 +let v_MONTGOMERY_R_INV = 
 +  assert_norm((v 169l * pow2 16) % 3329 == 1);
 +  169l
@@ -370,7 +692,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.
 +let derefine_matrix_b #v_K #b x =
 +  let r = createi v_K (fun i -> derefine_vector_b #v_K #b x.[i]) in
 +  r
-+
+ 
+-let add_to_ring_element (v_K: usize) (lhs rhs: t_PolynomialRingElement) =
 +let cast_poly_b #b1 #b2 x =
 +  let r = createi (sz 256) (fun i -> (x.f_coefficients.[i] <: i32_b b2)) in
 +  let res = {f_coefficients = r} in
@@ -383,8 +706,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.
 +  eq_intro dx dr;
 +  assert(Seq.equal dx dr);
 +  res
- 
--let add_to_ring_element (v_K: usize) (lhs rhs: t_PolynomialRingElement) =
++
 +let cast_vector_b #v_K #b1 #b2 x =
 +  let r = createi v_K (fun i -> cast_poly_b #b1 #b2 x.[i]) in
 +  let dx = derefine_vector_b x in
@@ -487,8 +809,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fst extraction-edited/Libcrux.
 +  
 + 
 diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti
---- extraction/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-06 13:56:02.910572420 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-06 13:56:02.972572043 +0100
+--- extraction/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-20 10:46:13.805094086 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-20 10:46:13.856093059 +0100
 @@ -3,10 +3,32 @@
  open Core
  open FStar.Mul
@@ -522,7 +844,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-edited/Libcrux
  let t_FieldElementTimesMontgomeryR = i32
  
  unfold
-@@ -16,119 +38,211 @@
+@@ -16,119 +38,222 @@
  
  let v_BARRETT_SHIFT: i64 = 26L
  
@@ -551,6 +873,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-edited/Libcrux
 -val get_n_least_significant_bits (n: u8) (value: u32)
 -    : Prims.Pure u32
 -      (requires n =. 4uy || n =. 5uy || n =. 10uy || n =. 11uy || n =. v_MONTGOMERY_SHIFT)
++let wf_fe_to_spec_fe (m: wfFieldElement): Spec.Kyber.field_element =
++  if v m < 0
++  then v m + v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS
++  else v m
++
 +let to_spec_fe (m:i32) : Spec.Kyber.field_element = 
 +    int_to_spec_fe (v m)
 +
@@ -715,6 +1042,12 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-edited/Libcrux
 +
 +let op_String_Access #t #l (a:t_Array t l) (i:usize{v i < v l}) : t = a.[i]
 +
++let wf_poly_to_spec_poly (re: wfPolynomialRingElement): Spec.Kyber.polynomial =
++    let p = Spec.Kyber.map' (fun x -> wf_fe_to_spec_fe x <: nat) re.f_coefficients in
++    introduce forall i. Seq.index p i < v Spec.Kyber.v_FIELD_MODULUS
++    with assert (Seq.index p i == Seq.index p (v (sz i)));
++    p
++
 +let to_spec_poly (m:t_PolynomialRingElement) : (Spec.Kyber.polynomial) =
 +    let p = createi #nat (sz 256) (fun i -> to_spec_fe (m.f_coefficients.[i])) in
 +    assert (forall i. Seq.index p i = to_spec_fe (m.f_coefficients.[sz i]));
@@ -828,8 +1161,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-edited/Libcrux
 -                <:
 -                bool))
 diff -ruN extraction/Libcrux.Kem.Kyber.Compress.fst extraction-edited/Libcrux.Kem.Kyber.Compress.fst
---- extraction/Libcrux.Kem.Kyber.Compress.fst	2024-02-06 13:56:02.932572286 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Compress.fst	2024-02-06 13:56:02.960572116 +0100
+--- extraction/Libcrux.Kem.Kyber.Compress.fst	2024-02-20 10:46:13.810093985 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Compress.fst	2024-02-20 10:46:13.847093240 +0100
 @@ -1,39 +1,79 @@
  module Libcrux.Kem.Kyber.Compress
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -933,8 +1266,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Compress.fst extraction-edited/Libcrux.Ke
 +  res <: Libcrux.Kem.Kyber.Arithmetic.i32_b 3328
 +#pop-options
 diff -ruN extraction/Libcrux.Kem.Kyber.Compress.fsti extraction-edited/Libcrux.Kem.Kyber.Compress.fsti
---- extraction/Libcrux.Kem.Kyber.Compress.fsti	2024-02-06 13:56:02.895572511 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Compress.fsti	2024-02-06 13:56:02.970572055 +0100
+--- extraction/Libcrux.Kem.Kyber.Compress.fsti	2024-02-20 10:46:13.794094307 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Compress.fsti	2024-02-20 10:46:13.886092456 +0100
 @@ -3,8 +3,19 @@
  open Core
  open FStar.Mul
@@ -1000,8 +1333,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Compress.fsti extraction-edited/Libcrux.K
 +      (requires fe =. 0l || fe =. 1l) 
 +      (fun result -> v result >= 0 /\ v result < 3329)
 diff -ruN extraction/Libcrux.Kem.Kyber.Constant_time_ops.fst extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst
---- extraction/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-06 13:56:02.923572341 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-06 13:56:02.956572140 +0100
+--- extraction/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-20 10:46:13.829093603 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-20 10:46:13.860092979 +0100
 @@ -4,56 +4,163 @@
  open FStar.Mul
  
@@ -1187,8 +1520,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Constant_time_ops.fst extraction-edited/L
 +  )
 +#pop-options
 diff -ruN extraction/Libcrux.Kem.Kyber.Constant_time_ops.fsti extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti
---- extraction/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-06 13:56:02.903572462 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-06 13:56:02.955572146 +0100
+--- extraction/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-20 10:46:13.827093643 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-20 10:46:13.876092657 +0100
 @@ -20,7 +20,8 @@
  
  val compare_ciphertexts_in_constant_time (v_CIPHERTEXT_SIZE: usize) (lhs rhs: t_Slice u8)
@@ -1220,8 +1553,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Constant_time_ops.fsti extraction-edited/
 +          Hax_lib.implies (selector =. 0uy <: bool) (fun _ -> result =. lhs <: bool) &&
 +          Hax_lib.implies (selector <>. 0uy <: bool) (fun _ -> result =. rhs <: bool))
 diff -ruN extraction/Libcrux.Kem.Kyber.fst extraction-edited/Libcrux.Kem.Kyber.fst
---- extraction/Libcrux.Kem.Kyber.fst	2024-02-06 13:56:02.934572274 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.fst	2024-02-06 13:56:02.940572237 +0100
+--- extraction/Libcrux.Kem.Kyber.fst	2024-02-20 10:46:13.795094287 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.fst	2024-02-20 10:46:13.851093160 +0100
 @@ -1,12 +1,29 @@
  module Libcrux.Kem.Kyber
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -1495,8 +1828,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.fst extraction-edited/Libcrux.Kem.Kyber.f
      (Core.Convert.f_into public_key <: Libcrux.Kem.Kyber.Types.t_MlKemPublicKey v_PUBLIC_KEY_SIZE)
 +
 diff -ruN extraction/Libcrux.Kem.Kyber.fsti extraction-edited/Libcrux.Kem.Kyber.fsti
---- extraction/Libcrux.Kem.Kyber.fsti	2024-02-06 13:56:02.902572469 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.fsti	2024-02-06 13:56:02.962572103 +0100
+--- extraction/Libcrux.Kem.Kyber.fsti	2024-02-20 10:46:13.819093804 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.fsti	2024-02-20 10:46:13.888092415 +0100
 @@ -10,36 +10,84 @@
    Libcrux.Kem.Kyber.Constants.v_CPA_PKE_KEY_GENERATION_SEED_SIZE +!
    Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE
@@ -1597,8 +1930,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.fsti extraction-edited/Libcrux.Kem.Kyber.
 +      (ensures (fun kp -> 
 +                (kp.f_sk.f_value,kp.f_pk.f_value) == Spec.Kyber.ind_cca_generate_keypair p randomness))
 diff -ruN extraction/Libcrux.Kem.Kyber.Hash_functions.fst extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst
---- extraction/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-06 13:56:02.931572292 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-06 13:56:02.965572085 +0100
+--- extraction/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-20 10:46:13.831093562 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-20 10:46:13.858093019 +0100
 @@ -3,13 +3,23 @@
  open Core
  open FStar.Mul
@@ -1651,8 +1984,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Hash_functions.fst extraction-edited/Libc
 +  admit(); // We assume that shake128x4 correctly implements XOFx4
 +  out 
 diff -ruN extraction/Libcrux.Kem.Kyber.Hash_functions.fsti extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti
---- extraction/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-06 13:56:02.891572535 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-06 13:56:02.966572079 +0100
+--- extraction/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-20 10:46:13.791094367 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-20 10:46:13.893092315 +0100
 @@ -3,12 +3,17 @@
  open Core
  open FStar.Mul
@@ -1678,8 +2011,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Hash_functions.fsti extraction-edited/Lib
 +          (ensures (fun res ->
 +            (forall i. i < v v_K ==> Seq.index res i == Spec.Kyber.v_XOF (sz 840) (Seq.index input i))))
 diff -ruN extraction/Libcrux.Kem.Kyber.Ind_cpa.fst extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst
---- extraction/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-06 13:56:02.928572310 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-06 13:56:02.944572213 +0100
+--- extraction/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-20 10:46:13.797094247 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-20 10:46:13.891092355 +0100
 @@ -1,5 +1,5 @@
  module Libcrux.Kem.Kyber.Ind_cpa
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -2390,8 +2723,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Ind_cpa.fst extraction-edited/Libcrux.Kem
 +  res
 + 
 diff -ruN extraction/Libcrux.Kem.Kyber.Ind_cpa.fsti extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti
---- extraction/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-06 13:56:02.907572438 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-06 13:56:02.982571982 +0100
+--- extraction/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-20 10:46:13.834093502 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-20 10:46:13.881092556 +0100
 @@ -1,80 +1,151 @@
  module Libcrux.Kem.Kyber.Ind_cpa
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -2593,8 +2926,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Ind_cpa.fsti extraction-edited/Libcrux.Ke
 + 
 +    
 diff -ruN extraction/Libcrux.Kem.Kyber.Kyber1024.fst extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst
---- extraction/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-06 13:56:02.921572353 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-06 13:56:02.942572225 +0100
+--- extraction/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-20 10:46:13.821093764 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-20 10:46:13.842093341 +0100
 @@ -7,19 +7,19 @@
        (secret_key: Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey (sz 3168))
        (ciphertext: Libcrux.Kem.Kyber.Types.t_MlKemCiphertext (sz 1568))
@@ -2628,8 +2961,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Kyber1024.fst extraction-edited/Libcrux.K
      (sz 3168)
      (sz 1568)
 diff -ruN extraction/Libcrux.Kem.Kyber.Kyber512.fst extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst
---- extraction/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-06 13:56:02.913572402 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-06 13:56:02.948572189 +0100
+--- extraction/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-20 10:46:13.789094408 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-20 10:46:13.863092918 +0100
 @@ -7,19 +7,19 @@
        (secret_key: Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey (sz 1632))
        (ciphertext: Libcrux.Kem.Kyber.Types.t_MlKemCiphertext (sz 768))
@@ -2663,8 +2996,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Kyber512.fst extraction-edited/Libcrux.Ke
      (sz 1632)
      (sz 800)
 diff -ruN extraction/Libcrux.Kem.Kyber.Kyber768.fst extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst
---- extraction/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-06 13:56:02.917572377 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-06 13:56:02.938572249 +0100
+--- extraction/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-20 10:46:13.792094347 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-20 10:46:13.861092959 +0100
 @@ -7,19 +7,19 @@
        (secret_key: Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey (sz 2400))
        (ciphertext: Libcrux.Kem.Kyber.Types.t_MlKemCiphertext (sz 1088))
@@ -2698,8 +3031,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Kyber768.fst extraction-edited/Libcrux.Ke
      (sz 2400)
      (sz 1184)
 diff -ruN extraction/Libcrux.Kem.Kyber.Kyber768.fsti extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti
---- extraction/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-06 13:56:02.912572408 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-06 13:56:02.953572158 +0100
+--- extraction/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-20 10:46:13.813093925 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-20 10:46:13.850093180 +0100
 @@ -74,14 +74,15 @@
  val decapsulate
        (secret_key: Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey (sz 2400))
@@ -2725,8 +3058,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Kyber768.fsti extraction-edited/Libcrux.K
 -      (fun _ -> Prims.l_True)
 +      (ensures (fun kp -> (kp.f_sk.f_value,kp.f_pk.f_value) == Spec.Kyber.kyber768_generate_keypair randomness))
 diff -ruN extraction/Libcrux.Kem.Kyber.Matrix.fst extraction-edited/Libcrux.Kem.Kyber.Matrix.fst
---- extraction/Libcrux.Kem.Kyber.Matrix.fst	2024-02-06 13:56:02.930572298 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Matrix.fst	2024-02-06 13:56:02.976572018 +0100
+--- extraction/Libcrux.Kem.Kyber.Matrix.fst	2024-02-20 10:46:13.800094186 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Matrix.fst	2024-02-20 10:46:13.897092234 +0100
 @@ -3,192 +3,188 @@
  open Core
  open FStar.Mul
@@ -3517,8 +3850,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Matrix.fst extraction-edited/Libcrux.Kem.
 +  admit(); //P-F
    v_A_transpose
 diff -ruN extraction/Libcrux.Kem.Kyber.Matrix.fsti extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti
---- extraction/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-06 13:56:02.920572359 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-06 13:56:02.963572097 +0100
+--- extraction/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-20 10:46:13.807094045 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-20 10:46:13.880092576 +0100
 @@ -3,39 +3,71 @@
  open Core
  open FStar.Mul
@@ -3621,8 +3954,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Matrix.fsti extraction-edited/Libcrux.Kem
 +        if transpose then Libcrux.Kem.Kyber.Arithmetic.to_spec_matrix_b #p res == matrix_A
 +        else Libcrux.Kem.Kyber.Arithmetic.to_spec_matrix_b #p res == Spec.Kyber.matrix_transpose matrix_A)
 diff -ruN extraction/Libcrux.Kem.Kyber.Ntt.fst extraction-edited/Libcrux.Kem.Kyber.Ntt.fst
---- extraction/Libcrux.Kem.Kyber.Ntt.fst	2024-02-06 13:56:02.925572328 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Ntt.fst	2024-02-06 13:56:02.941572231 +0100
+--- extraction/Libcrux.Kem.Kyber.Ntt.fst	2024-02-20 10:46:13.809094005 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Ntt.fst	2024-02-20 10:46:13.855093079 +0100
 @@ -1,56 +1,130 @@
  module Libcrux.Kem.Kyber.Ntt
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -4553,8 +4886,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Ntt.fst extraction-edited/Libcrux.Kem.Kyb
 +  down_cast_poly_b #(8*3328) #3328 re 
 +#pop-options
 diff -ruN extraction/Libcrux.Kem.Kyber.Ntt.fsti extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti
---- extraction/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-06 13:56:02.899572487 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-06 13:56:02.945572207 +0100
+--- extraction/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-20 10:46:13.812093945 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-20 10:46:13.838093421 +0100
 @@ -2,223 +2,80 @@
  #set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
  open Core
@@ -4847,8 +5180,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Ntt.fsti extraction-edited/Libcrux.Kem.Ky
 +      (ensures fun _ -> True)
 +
 diff -ruN extraction/Libcrux.Kem.Kyber.Sampling.fst extraction-edited/Libcrux.Kem.Kyber.Sampling.fst
---- extraction/Libcrux.Kem.Kyber.Sampling.fst	2024-02-06 13:56:02.909572426 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Sampling.fst	2024-02-06 13:56:02.980571994 +0100
+--- extraction/Libcrux.Kem.Kyber.Sampling.fst	2024-02-20 10:46:13.832093542 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Sampling.fst	2024-02-20 10:46:13.887092436 +0100
 @@ -3,27 +3,34 @@
  open Core
  open FStar.Mul
@@ -5261,8 +5594,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Sampling.fst extraction-edited/Libcrux.Ke
 +  out 
 +#pop-options
 diff -ruN extraction/Libcrux.Kem.Kyber.Sampling.fsti extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti
---- extraction/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-06 13:56:02.905572450 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-06 13:56:02.983571976 +0100
+--- extraction/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-20 10:46:13.803094126 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-20 10:46:13.895092274 +0100
 @@ -3,77 +3,37 @@
  open Core
  open FStar.Mul
@@ -5363,9 +5696,9 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Sampling.fsti extraction-edited/Libcrux.K
 +//      (ensures fun result -> (forall i. v (result.f_coefficients.[i]) >= 0))
 +      
 diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.Kem.Kyber.Serialize.fst
---- extraction/Libcrux.Kem.Kyber.Serialize.fst	2024-02-06 13:56:02.914572395 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Serialize.fst	2024-02-06 13:56:02.952572164 +0100
-@@ -1,8 +1,14 @@
+--- extraction/Libcrux.Kem.Kyber.Serialize.fst	2024-02-20 10:46:13.818093824 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Serialize.fst	2024-02-20 10:46:13.845093281 +0100
+@@ -1,8 +1,15 @@
  module Libcrux.Kem.Kyber.Serialize
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
 +#set-options "--fuel 0 --ifuel 0 --z3rlimit 50 --retry 3"
@@ -5375,15 +5708,18 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 +open Libcrux.Kem.Kyber.Arithmetic
 +
 +open MkSeq
++open BitVecEq
 +
-+#push-options "--z3rlimit 80"
++#push-options "--z3rlimit 480  --split_queries always"
 +[@@"opaque_to_smt"]
  let compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32) =
    let coef1:u8 = cast (coefficient1 &. 255l <: i32) <: u8 in
    let coef2:u8 =
-@@ -19,11 +25,12 @@
+@@ -18,12 +25,14 @@
+     (cast ((coefficient3 >>! 4l <: i32) &. 63l <: i32) <: u8)
    in
    let coef5:u8 = cast ((coefficient4 >>! 2l <: i32) &. 255l <: i32) <: u8 in
++  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 +#pop-options
  
@@ -5397,7 +5733,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    let coef1:u8 = cast (coefficient1 <: i32) <: u8 in
    let coef2:u8 =
      ((cast (coefficient2 &. 31l <: i32) <: u8) <<! 3l <: u8) |.
-@@ -59,21 +66,27 @@
+@@ -56,24 +65,32 @@
+     (cast (coefficient7 >>! 6l <: i32) <: u8)
+   in
+   let coef11:u8 = cast (coefficient8 >>! 3l <: i32) <: u8 in
++  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5, coef6, coef7, coef8, coef9, coef10, coef11
    <:
    (u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8)
@@ -5416,10 +5756,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    in
    let coef3:u8 = cast ((coefficient2 >>! 4l <: u16) &. 255us <: u16) <: u8 in
 -  coef1, coef2, coef3 <: (u8 & u8 & u8)
++  bit_vec_equal_intro_principle ();
 +  coef1, coef2, coef3 <: (u8 & u8 & u8) 
 +#pop-options
  
-+#push-options "--z3rlimit 60 --split_queries always"
++#push-options "--z3rlimit 160 --split_queries always"
 +[@@"opaque_to_smt"]
  let compress_coefficients_5_
 -      (coefficient2 coefficient1 coefficient4 coefficient3 coefficient5 coefficient7 coefficient6 coefficient8:
@@ -5430,9 +5771,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    let coef1:u8 = ((coefficient2 &. 7uy <: u8) <<! 5l <: u8) |. coefficient1 in
    let coef2:u8 =
      (((coefficient4 &. 1uy <: u8) <<! 7l <: u8) |. (coefficient3 <<! 2l <: u8) <: u8) |.
-@@ -86,17 +99,26 @@
+@@ -85,18 +102,29 @@
+     (coefficient5 >>! 4l <: u8)
    in
    let coef5:u8 = (coefficient8 <<! 3l <: u8) |. (coefficient7 >>! 2l <: u8) in
++  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 +#pop-options
  
@@ -5449,6 +5792,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 +  lemma_get_bit_bounded' coefficient2 10;
 +  lemma_get_bit_bounded' coefficient3 10;
 +  lemma_get_bit_bounded' coefficient4 10;
++  bit_vec_equal_intro_principle ();
 +  coefficient1, coefficient2, coefficient3, coefficient4
 +#pop-options
  
@@ -5461,10 +5805,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    let coefficient1:i32 = ((byte2 &. 7l <: i32) <<! 8l <: i32) |. byte1 in
    let coefficient2:i32 = ((byte3 &. 63l <: i32) <<! 5l <: i32) |. (byte2 >>! 3l <: i32) in
    let coefficient3:i32 =
-@@ -109,6 +131,14 @@
+@@ -109,6 +137,15 @@
    in
    let coefficient7:i32 = ((byte10 &. 31l <: i32) <<! 6l <: i32) |. (byte9 >>! 2l <: i32) in
    let coefficient8:i32 = (byte11 <<! 3l <: i32) |. (byte10 >>! 5l <: i32) in
++  bit_vec_equal_intro_principle ();
 +  lemma_get_bit_bounded' coefficient1 11;
 +  lemma_get_bit_bounded' coefficient2 11;
 +  lemma_get_bit_bounded' coefficient3 11;
@@ -5476,7 +5821,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    coefficient1,
    coefficient2,
    coefficient3,
-@@ -117,15 +147,21 @@
+@@ -117,15 +154,22 @@
    coefficient6,
    coefficient7,
    coefficient8
@@ -5495,6 +5840,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 -let decompress_coefficients_5_ (byte1 byte2 byte3 byte4 byte5: i32) =
 +  lemma_get_bit_bounded' coefficient1 4;
 +  lemma_get_bit_bounded' coefficient2 4;
++  bit_vec_equal_intro_principle ();
 +  coefficient1, coefficient2
 +#pop-options
 +
@@ -5504,10 +5850,11 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    let coefficient1:i32 = byte1 &. 31l in
    let coefficient2:i32 = ((byte2 &. 3l <: i32) <<! 3l <: i32) |. (byte1 >>! 5l <: i32) in
    let coefficient3:i32 = (byte2 >>! 2l <: i32) &. 31l in
-@@ -134,6 +170,14 @@
+@@ -134,6 +178,15 @@
    let coefficient6:i32 = (byte4 >>! 1l <: i32) &. 31l in
    let coefficient7:i32 = ((byte5 &. 7l <: i32) <<! 2l <: i32) |. (byte4 >>! 6l <: i32) in
    let coefficient8:i32 = byte5 >>! 3l in
++  bit_vec_equal_intro_principle ();
 +  lemma_get_bit_bounded' coefficient1 5;
 +  lemma_get_bit_bounded' coefficient2 5;
 +  lemma_get_bit_bounded' coefficient3 5;
@@ -5519,14 +5866,14 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    coefficient1,
    coefficient2,
    coefficient3,
-@@ -142,31 +186,54 @@
+@@ -142,31 +195,54 @@
    coefficient6,
    coefficient7,
    coefficient8
 -  <:
 -  (i32 & i32 & i32 & i32 & i32 & i32 & i32 & i32)
 +#pop-options
-+
+ 
 +let cast_bound_lemma 
 +  #t #u
 +  (n: int_t t) 
@@ -5551,7 +5898,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 +  = Math.Lemmas.pow2_plus 8 8;
 +    Math.Lemmas.pow2_le_compat 32 16
 +#pop-options
- 
++
 +#restart-solver
 +
 +#push-options "--fuel 0 --ifuel 1 --query_stats --z3rlimit 100"
@@ -5593,7 +5940,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let coefficient1:i32 =
              Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 10uy
                (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32
-@@ -226,79 +293,96 @@
+@@ -226,79 +302,96 @@
            serialized)
    in
    serialized
@@ -5714,7 +6061,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 11uy
                (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 7 ] <: i32
                    )
-@@ -324,6 +408,8 @@
+@@ -324,6 +417,8 @@
                coefficient7
                coefficient8
            in
@@ -5723,7 +6070,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let serialized:t_Array u8 v_OUT_LEN =
              Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
                (sz 11 *! i <: usize)
-@@ -382,29 +468,20 @@
+@@ -382,29 +477,20 @@
            serialized)
    in
    serialized
@@ -5761,7 +6108,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let coefficient1:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 4uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ]
-@@ -439,27 +516,20 @@
+@@ -439,27 +525,20 @@
    serialized
  
  let compress_then_serialize_5_
@@ -5798,7 +6145,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let coefficient1:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 5uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ]
-@@ -544,6 +614,14 @@
+@@ -544,6 +623,14 @@
              <:
              u8
            in
@@ -5813,7 +6160,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let coefficient8:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 5uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 7 ]
-@@ -566,6 +644,8 @@
+@@ -566,6 +653,8 @@
                coefficient6
                coefficient8
            in
@@ -5822,7 +6169,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let serialized:t_Array u8 v_OUT_LEN =
              Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
                (sz 5 *! i <: usize)
-@@ -595,35 +675,24 @@
+@@ -595,35 +684,24 @@
    in
    serialized
  
@@ -5868,7 +6215,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
                  let coefficient:u16 =
                    Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative coefficient
                  in
-@@ -636,27 +705,35 @@
+@@ -636,27 +714,35 @@
            <:
            t_Array u8 (sz 32))
    in
@@ -5913,7 +6260,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    match cast (v_COMPRESSION_FACTOR <: usize) <: u32 with
    | 4ul -> compress_then_serialize_4_ v_OUT_LEN re
    | 5ul -> compress_then_serialize_5_ v_OUT_LEN re
-@@ -665,32 +742,49 @@
+@@ -665,32 +751,49 @@
  
          <:
          Rust_primitives.Hax.t_Never)
@@ -5982,7 +6329,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -698,14 +792,12 @@
+@@ -698,14 +801,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 4 *! i <: usize)
@@ -6000,7 +6347,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -713,14 +805,12 @@
+@@ -713,14 +814,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 1 <: usize)
@@ -6018,7 +6365,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -728,14 +818,12 @@
+@@ -728,14 +827,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 2 <: usize)
@@ -6036,7 +6383,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -743,44 +831,43 @@
+@@ -743,44 +840,43 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 3 <: usize)
@@ -6107,7 +6454,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let
            coefficient1,
            coefficient2,
-@@ -789,11 +876,21 @@
+@@ -789,11 +885,21 @@
            coefficient5,
            coefficient6,
            coefficient7,
@@ -6131,7 +6478,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -801,14 +898,12 @@
+@@ -801,14 +907,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 8 *! i <: usize)
@@ -6149,7 +6496,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -816,14 +911,12 @@
+@@ -816,14 +920,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 1 <: usize)
@@ -6167,7 +6514,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -831,14 +924,12 @@
+@@ -831,14 +933,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 2 <: usize)
@@ -6185,7 +6532,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -846,14 +937,12 @@
+@@ -846,14 +946,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 3 <: usize)
@@ -6203,7 +6550,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -861,14 +950,12 @@
+@@ -861,14 +959,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 4 <: usize)
@@ -6221,7 +6568,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -876,14 +963,12 @@
+@@ -876,14 +972,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 5 <: usize)
@@ -6239,7 +6586,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -891,14 +976,12 @@
+@@ -891,14 +985,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 6 <: usize)
@@ -6257,7 +6604,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -906,35 +989,33 @@
+@@ -906,35 +998,33 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 7 <: usize)
@@ -6308,7 +6655,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -947,9 +1028,9 @@
+@@ -947,9 +1037,9 @@
                    i32)
              }
              <:
@@ -6320,7 +6667,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -962,33 +1043,32 @@
+@@ -962,33 +1052,32 @@
                    i32)
              }
              <:
@@ -6371,7 +6718,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let
            coefficient1,
            coefficient2,
-@@ -997,10 +1077,25 @@
+@@ -997,10 +1086,25 @@
            coefficient5,
            coefficient6,
            coefficient7,
@@ -6399,7 +6746,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1008,14 +1103,12 @@
+@@ -1008,14 +1112,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 8 *! i <: usize)
@@ -6417,7 +6764,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1023,14 +1116,12 @@
+@@ -1023,14 +1125,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 1 <: usize)
@@ -6435,7 +6782,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1038,14 +1129,12 @@
+@@ -1038,14 +1138,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 2 <: usize)
@@ -6453,7 +6800,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1053,14 +1142,12 @@
+@@ -1053,14 +1151,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 3 <: usize)
@@ -6471,7 +6818,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1068,14 +1155,12 @@
+@@ -1068,14 +1164,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 4 <: usize)
@@ -6489,7 +6836,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1083,14 +1168,12 @@
+@@ -1083,14 +1177,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 5 <: usize)
@@ -6507,7 +6854,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1098,14 +1181,12 @@
+@@ -1098,14 +1190,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 6 <: usize)
@@ -6525,7 +6872,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1113,33 +1194,27 @@
+@@ -1113,33 +1203,27 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 7 <: usize)
@@ -6569,7 +6916,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
            let i, byte:(usize & u8) = temp_1_ in
            Core.Iter.Traits.Iterator.f_fold (Core.Iter.Traits.Collect.f_into_iter ({
                      Core.Ops.Range.f_start = sz 0;
-@@ -1151,10 +1226,11 @@
+@@ -1151,10 +1235,11 @@
                Core.Ops.Range.t_Range usize)
              re
              (fun re j ->
@@ -6583,7 +6930,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
                    {
                      re with
                      Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1168,19 +1244,20 @@
+@@ -1168,19 +1253,20 @@
                          i32)
                    }
                    <:
@@ -6610,7 +6957,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    match cast (v_COMPRESSION_FACTOR <: usize) <: u32 with
    | 10ul -> deserialize_then_decompress_10_ serialized
    | 11ul -> deserialize_then_decompress_11_ serialized
-@@ -1190,11 +1267,11 @@
+@@ -1190,11 +1276,11 @@
          <:
          Rust_primitives.Hax.t_Never)
  
@@ -6626,7 +6973,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
    match cast (v_COMPRESSION_FACTOR <: usize) <: u32 with
    | 4ul -> deserialize_then_decompress_4_ serialized
    | 5ul -> deserialize_then_decompress_5_ serialized
-@@ -1203,27 +1280,32 @@
+@@ -1203,27 +1289,32 @@
  
          <:
          Rust_primitives.Hax.t_Never)
@@ -6675,7 +7022,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1231,12 +1313,12 @@
+@@ -1231,12 +1322,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 2 *! i <: usize)
@@ -6691,7 +7038,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1244,34 +1326,28 @@
+@@ -1244,58 +1335,89 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 2 *! i <: usize) +! sz 1 <: usize)
@@ -6708,10 +7055,8 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 +#pop-options
  
 -let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement) =
-+#push-options "--z3rlimit 100"
-+let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement) =
-   let serialized:t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
-   let serialized:t_Array u8 (sz 384) =
+-  let serialized:t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
+-  let serialized:t_Array u8 (sz 384) =
 -    Core.Iter.Traits.Iterator.f_fold (Core.Iter.Traits.Collect.f_into_iter (Core.Iter.Traits.Iterator.f_enumerate
 -              (Core.Slice.impl__chunks_exact (Rust_primitives.unsize re
 -                        .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
@@ -6724,56 +7069,126 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fst extraction-edited/Libcrux.K
 -            Core.Iter.Adapters.Enumerate.t_Enumerate (Core.Slice.Iter.t_ChunksExact i32))
 -        <:
 -        Core.Iter.Adapters.Enumerate.t_Enumerate (Core.Slice.Iter.t_ChunksExact i32))
-+    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ #(fun _ _ -> True)
-+      (Rust_primitives.unsize re.Libcrux.Kem.Kyber.Arithmetic.f_coefficients)
++module A = Libcrux.Kem.Kyber.Arithmetic
++
++[@@"opaque_to_smt"]
++let update3 #n (s: t_Array 't n) (offset: usize {v offset + 3 <= v n}) (i0 i1 i2: 't)
++  : s': t_Array 't n { Seq.index s' (v offset +  0) == i0
++                    /\ Seq.index s' (v offset +  1) == i1
++                    /\ Seq.index s' (v offset +  2) == i2
++                    /\ (forall i. (i < v offset \/ i >= v offset + 3) ==> Seq.index s' i == Seq.index s i) }
++ = let open Rust_primitives.Hax.Monomorphized_update_at in
++    let s = update_at_usize s  offset           i0 in
++    let s = update_at_usize s (offset +! sz  1) i1 in
++    update_at_usize s (offset +! sz  2) i2
++
++let slice_map_lemma #t #u #n (f: t -> u) (arr: t_Array t n)
++  (start: nat) (len: nat {start + len <= v n})
++  : Lemma (  Seq.slice (Spec.Kyber.map' f arr) start (start + len)
++          == Spec.Kyber.map' f (Seq.slice arr start (start + len))
++          )
++  = let f_arr = Spec.Kyber.map' f arr in
++    let lhs = Seq.slice f_arr start (start + len) in
++    let rhs = Spec.Kyber.map' f (Seq.slice arr start (start + len)) in
++    introduce forall i. Seq.index lhs i == Seq.index rhs i
++    with (
++      Seq.lemma_index_slice f_arr start (start + len) i;
++      Seq.lemma_index_slice   arr start (start + len) i;
++      let sz_i_start, sz_i = sz (i + start), sz i in
++      assert (Seq.index f_arr (v sz_i_start) == f (Seq.index arr (v (sz_i_start))));
++      assert (Seq.index rhs (v sz_i) == f (Seq.index (Seq.slice arr start (start + len)) (v sz_i)))
++    );
++    assert (Seq.equal lhs rhs)
++
++#push-options "--z3rlimit 2800 --fuel 0 --ifuel 0 --retry 0 --split_queries no"
++let serialize_uncompressed_ring_element re =
++  let serialized: t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
++  let max = v (sz 384) * 8 in
++  assert (max == 256 * 12 /\ max == 384 * 8 /\ 128 * 2 * 12 == max);
++  assert (128 == v (length re.f_coefficients /! (sz 2)));
++  let serialized =
++    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ 
++      #(fun serialized i -> 
++        let i = v i in
++        i <= 128 /\ (
++            let limit = i * 2 * 12 in
++            let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
++            bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 limit
++         == bit_vec_sub (bit_vec_of_int_t_array coefficients 12) 0 limit)
++      )
++      (re.A.f_coefficients <: t_Array _ (sz 256))
 +      (sz 2)
        serialized
-       (fun serialized temp_1_ ->
-           let serialized:t_Array u8 (sz 384) = serialized in
+-      (fun serialized temp_1_ ->
+-          let serialized:t_Array u8 (sz 384) = serialized in
 -          let i, coefficients:(usize & t_Slice i32) = temp_1_ in
-+          let i, coefficients:(usize & t_Array (Libcrux.Kem.Kyber.Arithmetic.i32_b (v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS - 1)) (sz 2)) = temp_1_ in
-+          assert (v i < 128);
-           let coefficient1:u16 =
-             Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32)
-           in
-@@ -1281,6 +1357,8 @@
-           let coef1, coef2, coef3:(u8 & u8 & u8) =
-             compress_coefficients_3_ coefficient1 coefficient2
-           in
-+          assert_spinoff (3 * v i + 3 <= 384);
-+          assert_spinoff (range (v (sz 3) * v i) usize_inttype);
-           let serialized:t_Array u8 (sz 384) =
-             Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
-               (sz 3 *! i <: usize)
-@@ -1299,3 +1377,4 @@
-           serialized)
+-          let coefficient1:u16 =
+-            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32)
+-          in
+-          let coefficient2:u16 =
+-            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 1 ] <: i32)
+-          in
+-          let coef1, coef2, coef3:(u8 & u8 & u8) =
+-            compress_coefficients_3_ coefficient1 coefficient2
+-          in
+-          let serialized:t_Array u8 (sz 384) =
+-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
+-              (sz 3 *! i <: usize)
+-              coef1
+-          in
+-          let serialized:t_Array u8 (sz 384) =
+-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
+-              ((sz 3 *! i <: usize) +! sz 1 <: usize)
+-              coef2
+-          in
+-          let serialized:t_Array u8 (sz 384) =
+-            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
+-              ((sz 3 *! i <: usize) +! sz 2 <: usize)
+-              coef3
+-          in
+-          serialized)
++      (fun serialized it -> let i, coefficients = it in
++
++    let coefficient1 = A.to_unsigned_representative (coefficients.[ sz 0 ] <: i32) in
++    let coefficient2 = A.to_unsigned_representative (coefficients.[ sz 1 ] <: i32) in
++    let (coef1, coef2, coef3) = compress_coefficients_3_ coefficient1 coefficient2 in
++    let j = sz 3 *! i in
++    let serialized' = update3 serialized j coef1 coef2 coef3 in
++    assert (      Seq.slice serialized' (v j) (v j + 3)
++      `Seq.equal` Seq.slice (create3 (coef1, coef2, coef3)) 0 3);
++    bit_vec_equal_intro 
++        (let coefficients: t_Array _ (sz 2) = Spec.Kyber.map' to_unsigned_representative coefficients in
++         bit_vec_of_int_t_array coefficients 12)
++        (retype (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) (3 * v i * 8) (3 * 8)));
++    let full_coefficients: t_Array u16 (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
++    slice_map_lemma #_ #u16 to_unsigned_representative re.f_coefficients (v i * 2) 2;
++    bit_vec_equal_intro
++        (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) 0 (v i * 2 * 12))
++        (bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 (v i * 2 * 12));
++    bit_vec_equal_extend (bit_vec_of_int_t_array serialized' 8)
++                         (bit_vec_of_int_t_array full_coefficients 12)
++                         0 0 (v i * 2 * 12) (3 * 8);
++    serialized' <: t_Array u8 (sz 384))
    in
    serialized
 +#pop-options
++
 diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti
---- extraction/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-06 13:56:02.916572383 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-06 13:56:02.958572128 +0100
-@@ -2,118 +2,193 @@
+--- extraction/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-20 10:46:13.798094227 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-20 10:46:13.883092516 +0100
+@@ -2,118 +2,188 @@
  #set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
  open Core
  open FStar.Mul
 +open MkSeq
-+
-+let int_arr_bitwise_eq
-+       #t1 #t2 #n1 #n2
-+       (arr1: t_Array (int_t t1) n1)
-+       (d1: num_bits t1)
-+       (arr2: t_Array (x: int_t t2) n2)
-+       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
-+     = forall i. i < v n1 * d1
-+       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
++open BitVecEq
  
  val compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32)
 -    : Prims.Pure (u8 & u8 & u8 & u8 & u8) Prims.l_True (fun _ -> Prims.l_True)
-+    : Prims.Pure (u8 & u8 & u8 & u8 & u8) 
++    : Prims.Pure (u8 & u8 & u8 & u8 & u8)
 +      (requires True)
 +      (ensures fun tuple ->
-+         int_arr_bitwise_eq
++         int_t_array_bitwise_eq'
 +                (create4 (coefficient1, coefficient2, coefficient3, coefficient4)) 10
 +                (create5 tuple) 8
 +      )
@@ -6790,7 +7205,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 -    : Prims.Pure (u8 & u8 & u8) Prims.l_True (fun _ -> Prims.l_True)
 +      (requires True)
 +      (ensures fun tuple ->
-+         int_arr_bitwise_eq
++         int_t_array_bitwise_eq'
 +                (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 11
 +                (create11 tuple) 8
 +      )
@@ -6799,7 +7214,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +    : Prims.Pure (u8 & u8 & u8)
 +    (requires True)
 +    (ensures fun tuple ->
-+       int_arr_bitwise_eq
++       int_t_array_bitwise_eq'
 +              (create2 (coefficient1, coefficient2)) 12
 +              (create3 tuple) 8
 +    )
@@ -6815,7 +7230,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +    : Prims.Pure (u8 & u8 & u8 & u8 & u8)
 +      (requires True)
 +      (ensures fun tuple ->
-+         int_arr_bitwise_eq
++         int_t_array_bitwise_eq'
 +                (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 5
 +                (create5 tuple) 8
 +      )
@@ -6825,7 +7240,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +    : Prims.Pure (i32_d 10 & i32_d 10 & i32_d 10 & i32_d 10)
 +      (requires True)
 +      (ensures fun (r1, r2, r3, r4) ->
-+         int_arr_bitwise_eq
++         int_t_array_bitwise_eq'
 +                (create5 (byte1, byte2, byte3, byte4, byte5)) 8
 +                (create4 #i32 (r1, r2, r3, r4)) 10
 +      )
@@ -6839,9 +7254,9 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +    : Prims.Pure (i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11)
 +      (requires True)
 +      (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
-+         int_arr_bitwise_eq
-+                (create11 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
-+                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
++         int_t_array_bitwise_eq'
++                (create11 #i32 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
++                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
 +      )
  
  val decompress_coefficients_4_ (byte: u8)
@@ -6854,18 +7269,18 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +    : Prims.Pure (i32_d 4 & i32_d 4)
 +      (requires True)
 +      (ensures fun (r1, r2) ->
-+         int_arr_bitwise_eq
++         int_t_array_bitwise_eq'
 +                (create1 byte) 8
-+                (create2 (r1, r2)) 4
++                (create2 #i32 (r1, r2)) 4
 +      )
 +
 +val decompress_coefficients_5_ (byte1 byte2 byte3 byte4 byte5: int_t_d i32_inttype 8)
 +    : Prims.Pure (i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5)
 +      (requires True)
 +      (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
-+         int_arr_bitwise_eq
-+                (create5 (byte1, byte2, byte3, byte4, byte5)) 8
-+                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
++         int_t_array_bitwise_eq'
++                (create5 #i32 (byte1, byte2, byte3, byte4, byte5)) 8
++                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
 +      )
  
  val compress_then_serialize_10_
@@ -7013,10 +7428,13 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Serialize.fsti extraction-edited/Libcrux.
 +val serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement)
 +    : Pure (t_Array u8 (sz 384))
 +      (requires True)
-+      (ensures (fun res -> True))
++      (ensures (fun res ->
++        let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative re.f_coefficients in
++        int_t_array_bitwise_eq res 8 coefficients 12
++      ))
 diff -ruN extraction/Libcrux.Kem.Kyber.Types.fst extraction-edited/Libcrux.Kem.Kyber.Types.fst
---- extraction/Libcrux.Kem.Kyber.Types.fst	2024-02-06 13:56:02.924572335 +0100
-+++ extraction-edited/Libcrux.Kem.Kyber.Types.fst	2024-02-06 13:56:02.951572170 +0100
+--- extraction/Libcrux.Kem.Kyber.Types.fst	2024-02-20 10:46:13.801094166 +0100
++++ extraction-edited/Libcrux.Kem.Kyber.Types.fst	2024-02-20 10:46:13.877092637 +0100
 @@ -50,7 +50,9 @@
  let impl_6__len (v_SIZE: usize) (self: t_MlKemCiphertext v_SIZE) : usize = v_SIZE
  
@@ -7052,7 +7470,7 @@ diff -ruN extraction/Libcrux.Kem.Kyber.Types.fst extraction-edited/Libcrux.Kem.K
  type t_MlKemKeyPair (v_PRIVATE_KEY_SIZE: usize) (v_PUBLIC_KEY_SIZE: usize) = {
 diff -ruN extraction/Libcrux_platform.Platform.fsti extraction-edited/Libcrux_platform.Platform.fsti
 --- extraction/Libcrux_platform.Platform.fsti	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-edited/Libcrux_platform.Platform.fsti	2024-02-06 13:56:02.949572182 +0100
++++ extraction-edited/Libcrux_platform.Platform.fsti	2024-02-20 10:46:13.873092717 +0100
 @@ -0,0 +1,20 @@
 +module Libcrux_platform.Platform
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -7076,7 +7494,7 @@ diff -ruN extraction/Libcrux_platform.Platform.fsti extraction-edited/Libcrux_pl
 +val simd128_support: Prims.unit -> Prims.Pure bool Prims.l_True (fun _ -> Prims.l_True)
 diff -ruN extraction/MkSeq.fst extraction-edited/MkSeq.fst
 --- extraction/MkSeq.fst	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-edited/MkSeq.fst	2024-02-06 13:56:02.973572036 +0100
++++ extraction-edited/MkSeq.fst	2024-02-20 10:46:13.841093361 +0100
 @@ -0,0 +1,91 @@
 +module MkSeq
 +open Core
@@ -7171,8 +7589,8 @@ diff -ruN extraction/MkSeq.fst extraction-edited/MkSeq.fst
 +%splice[] (init 13 (fun i -> create_gen_tac (i + 1)))
 diff -ruN extraction/Spec.Kyber.fst extraction-edited/Spec.Kyber.fst
 --- extraction/Spec.Kyber.fst	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-edited/Spec.Kyber.fst	2024-02-06 13:56:02.967572073 +0100
-@@ -0,0 +1,430 @@
++++ extraction-edited/Spec.Kyber.fst	2024-02-20 10:46:13.884092496 +0100
+@@ -0,0 +1,433 @@
 +module Spec.Kyber
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
 +open Core
@@ -7351,12 +7769,15 @@ diff -ruN extraction/Spec.Kyber.fst extraction-edited/Spec.Kyber.fst
 +         (ensures fun f -> (forall i. bit_vec_of_int_t_array r 8 i == f i))
 +  = bit_vec_of_int_t_array r 8
 +
++unfold let retype_bit_vector #a #b (#_:unit{a == b}) (x: a): b = x
++
 +let byte_encode (d: dT) (coefficients: polynomial): t_Array u8 (sz (32 * d))
-+  = bits_to_bytes #(sz (32 * d)) (bit_vec_of_nat_array coefficients d)
++  = bits_to_bytes #(sz (32 * d))
++       (retype_bit_vector (bit_vec_of_nat_array coefficients d))
 +
 +let byte_decode (d: dT) (coefficients: t_Array u8 (sz (32 * d))): polynomial
 +  = let bv = bit_vec_of_int_t_array coefficients 8 in
-+    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d bv in
++    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d (retype_bit_vector bv) in
 +    let p = map' (fun (x: nat) -> x % v v_FIELD_MODULUS <: nat) arr in
 +    introduce forall i. Seq.index p i < v v_FIELD_MODULUS
 +    with assert (Seq.index p i == Seq.index p (v (sz i)));
diff --git a/proofs/fstar/extraction-edited/.hints/BitVecEq.fsti.hints b/proofs/fstar/extraction-edited/.hints/BitVecEq.fsti.hints
new file mode 100644
index 00000000..8cf143c6
--- /dev/null
+++ b/proofs/fstar/extraction-edited/.hints/BitVecEq.fsti.hints
@@ -0,0 +1,911 @@
+[
+  "����{��ٝ�,���z�",
+  [
+    [
+      "BitVecEq.bit_vec_equal_intro",
+      1,
+      0,
+      1,
+      [ "@query" ],
+      0,
+      "59286762d349f5b9996787df0af368ff"
+    ],
+    [
+      "BitVecEq.bit_vec_equal_intro_principle",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_4930c2a3b9ed81b19c4163bc5d944ade",
+        "refinement_interpretation_Tm_refine_5ea27f29671734c284c74b54ac71be4c"
+      ],
+      0,
+      "3d0c51c3f21387d10ee3aa036bd8db3f"
+    ],
+    [
+      "BitVecEq.bit_vec_equal_elim_principle",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.squash",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "refinement_interpretation_Tm_refine_2de20c066034c13bf76e9c0b94f4806c",
+        "refinement_interpretation_Tm_refine_f7508cd976fab894dc1e01a7483287a6"
+      ],
+      0,
+      "fb4df4d22434569a63b52b3218e8f855"
+    ],
+    [
+      "BitVecEq.bit_vec_equal_trivial",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat", "int_typing",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_c9b1a93dc7180dbdeb887c6ba6a0bb06"
+      ],
+      0,
+      "a5dee7de8b06e3799cab7df1effbcf3b"
+    ],
+    [
+      "BitVecEq.bit_vec_sub",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "int_inversion", "primitive_Prims.op_Addition",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_6f684e27d6af9965634108bcfe981953",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c"
+      ],
+      0,
+      "71775bf4907d2e9a78fd031450e8c8b8"
+    ],
+    [
+      "BitVecEq.bit_vec_equal_trivial_sub_smtpat",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_c5efe95b1f250c44fbd9d953d94aff03"
+      ],
+      0,
+      "05922fc60aa639c5fdae7ff386e6afb1"
+    ],
+    [
+      "BitVecEq.retype",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212"
+      ],
+      0,
+      "16f3278bdf9a68771f24f37804da3c34"
+    ],
+    [
+      "BitVecEq.bit_vec_sub_all_lemma",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "BitVecEq_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bc2eac05cff1f96671b35103fe52da33",
+        "equation_BitVecEq.bit_vec_sub",
+        "equation_FStar.FunctionalExtensionality.feq", "equation_Prims.nat",
+        "function_token_typing_BitVecEq.bit_vec_sub", "int_inversion",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "interpretation_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_kinding_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "typing_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "typing_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f"
+      ],
+      0,
+      "5e840c192bca659cc1bf0712abcb1518"
+    ],
+    [
+      "BitVecEq.int_t_array_bitwise_eq'",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.int_t",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_4e3dded9bf4fcf599168cbb137ff3724",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_FStar.Seq.Base.length",
+        "typing_Rust_primitives.Integers.int_t",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
+      ],
+      0,
+      "0ba66af0f657c91b2cc8a74a30e60f05"
+    ],
+    [
+      "BitVecEq.int_t_array_bitwise_eq",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_4e3dded9bf4fcf599168cbb137ff3724"
+      ],
+      0,
+      "85a311e3e1961e4f078860f8115a4e4e"
+    ],
+    [
+      "BitVecEq.int_t_seq_slice_to_bv_sub_lemma",
+      1,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "BitVecEq_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bc2eac05cff1f96671b35103fe52da33",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "constructor_distinct_Tm_unit", "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_BitVecEq.bit_vec_sub",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_BitVecEq.bit_vec_sub",
+        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "interpretation_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_Division", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_24f4f435390b85ef53b462142b1f7860",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_411ffd57ad68e57f0f549a869f83f1d6",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_92d34a673e14e6ea367dc49dbb252256",
+        "refinement_interpretation_Tm_refine_a20118601b41317c98322924cd2f10c3",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.int_t",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
+        "typing_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "typing_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "typing_tok_Lib.IntTypes.PUB@tok"
+      ],
+      0,
+      "ef738c7466342befcd8b3034bfffae5c"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      1,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "30858238a464e5c4ad0717a6f6c18cc8"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      2,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "ae4a6a72282782af80c5cdf5eba27264"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      3,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.int_t",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
+      ],
+      0,
+      "47b98f832e2fbb8e465077c8e85f8d45"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      4,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "7f1a73a0b63defe94e6fd819bb8a9322"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      5,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "5906e3ef95f02a54636fa0b5ad4ebe2c"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      6,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.int_t",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
+      ],
+      0,
+      "6420ceb33586fff6632de715ba4c8a62"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      7,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition",
+        "refinement_interpretation_Tm_refine_24f4f435390b85ef53b462142b1f7860",
+        "refinement_interpretation_Tm_refine_53c655668b35152fbbd9a7948c262451",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "15bc552eec8074539add83fd6fd6860d"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      8,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "eabfb42b4b25d271ac9e25fc5087db07"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      9,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.int_t",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
+      ],
+      0,
+      "a3594ab47cfb3172b83525084cd15aa0"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      10,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition",
+        "refinement_interpretation_Tm_refine_24f4f435390b85ef53b462142b1f7860",
+        "refinement_interpretation_Tm_refine_53c655668b35152fbbd9a7948c262451",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "3e4a3b84589bbad98942a5ff49b35d85"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      11,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "primitive_Prims.op_Addition", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "45cf555c20c371deb335e95c4fa385e4"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      12,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.int_t",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
+      ],
+      0,
+      "a62605948d6dc81aacd2f3b35e8a8086"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      13,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "cb51082c08944ddb750bf5986bee2436"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      14,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_24f4f435390b85ef53b462142b1f7860",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_53c655668b35152fbbd9a7948c262451",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
+      ],
+      0,
+      "ef0d0901ecceaebdfd9c2dc671838624"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      15,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "5dc44008c007807c1865c9864404c3b2"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      16,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_90b5d2df39645a4835173a203da069e4"
+      ],
+      0,
+      "11484adb2bfd480f49799a588c6c2089"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      17,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "constructor_distinct_Tm_unit", "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_inversion",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_31a363db8a0a0025827fe2225dc592af",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_90b5d2df39645a4835173a203da069e4",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "3c9bcb87d09adc01578b5c138f6953f4"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      18,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_Addition",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_90b5d2df39645a4835173a203da069e4",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
+      ],
+      0,
+      "43e11403c8477940124f71b6c9bd6eac"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      19,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
+      ],
+      0,
+      "d8dd5ea9e5ad6ee14ab9df1fbff54b2f"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      20,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.nat",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_90b5d2df39645a4835173a203da069e4"
+      ],
+      0,
+      "f81fd4ebba605222fa35e0f95ad9968f"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      21,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_0e343cf55140f06ee7dbebe608047cd8",
+        "refinement_interpretation_Tm_refine_24f4f435390b85ef53b462142b1f7860",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_31a363db8a0a0025827fe2225dc592af",
+        "refinement_interpretation_Tm_refine_53c655668b35152fbbd9a7948c262451",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_90b5d2df39645a4835173a203da069e4",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "7889c89b1c0a2b405d736c0ef8eac088"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      22,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_Addition",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_953cac121c861a9a313e2dea9b773cf6",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
+      ],
+      0,
+      "d43c1e98741782237557ac46f9ee39a6"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      23,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_5280d0c4b9b990118f9152d1c5b93f3b",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "45d878fc2a402454f4ce4a8270753833"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      24,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_5280d0c4b9b990118f9152d1c5b93f3b",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "d80a0f4aeab61c20bef4845a3dca55cd"
+    ],
+    [
+      "BitVecEq.int_t_eq_seq_slice_bv_sub_lemma",
+      25,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "BitVecEq_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bc2eac05cff1f96671b35103fe52da33",
+        "bool_inversion", "bool_typing", "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_BitVecEq.bit_vec_sub",
+        "equation_FStar.FunctionalExtensionality.is_restricted",
+        "equation_FStar.FunctionalExtensionality.restricted_t",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.bit_vec",
+        "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "lemma_BitVecEq.int_t_seq_slice_to_bv_sub_lemma",
+        "lemma_FStar.FunctionalExtensionality.extensionality",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_00de8574249a7ce53dacab309b687d50",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_5280d0c4b9b990118f9152d1c5b93f3b",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_7e4a6c5999db731b5d17d0418dfeea3e",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a20118601b41317c98322924cd2f10c3",
+        "refinement_interpretation_Tm_refine_a4ae132d343ce75906bf7050ccfe68b4",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_kinding_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Seq.Base.length", "typing_FStar.Seq.Base.slice",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "typing_Rust_primitives.Integers.int_t",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "typing_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "unit_inversion"
+      ],
+      0,
+      "6213700a8a1c881dd848638983196926"
+    ],
+    [
+      "BitVecEq.bit_vec_equal_extend",
+      1,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "BitVecEq_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bc2eac05cff1f96671b35103fe52da33",
+        "b2t_def", "bool_inversion", "equation_BitVecEq.bit_vec_sub",
+        "equation_FStar.FunctionalExtensionality.feq", "equation_Prims.nat",
+        "equation_Prims.squash", "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.unsigned",
+        "function_token_typing_BitVecEq.bit_vec_sub", "int_inversion",
+        "int_typing",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "interpretation_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_LessThan",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_266ea895698ef1c2c11479e2e605454e",
+        "refinement_interpretation_Tm_refine_2de20c066034c13bf76e9c0b94f4806c",
+        "refinement_interpretation_Tm_refine_4a7c44b5dbcd095a37f95c3335e2f0ea",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_6f684e27d6af9965634108bcfe981953",
+        "refinement_interpretation_Tm_refine_b9fb9a93e440aa2badbbdac025f74343",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_kinding_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "typing_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f"
+      ],
+      0,
+      "381db8a80993f6e8254bf0eee19b774c"
+    ]
+  ]
+]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Array.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Array.fst.hints
index e781a8d3..f585cd28 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Array.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Array.fst.hints
@@ -20,7 +20,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "61d19e21e5ba401ccd51fac8dd4dc1bb"
+      "c86718181e1e8d01f7209e7c2a75f48f"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Convert.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Convert.fst.hints
index f684cf7a..83935c0f 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Convert.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Convert.fst.hints
@@ -40,7 +40,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "89069ae0acc72a78e2efa55464713004"
+      "d99065ab1cecc1f4e429ca3f1178b733"
     ],
     [
       "Core.Convert.impl_6_refined",
@@ -71,7 +71,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2e69cb8f79fbe8510f2c581d195eb17e"
+      "820c7d9e75762bc2bddd4d373dcc524a"
     ],
     [
       "Core.Convert.integer_into",
@@ -93,7 +93,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "4a75fc2edb3ec33d8d7d9232b2b0a9c1"
+      "2042829462f72cebdcb44987cae88e04"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Enumerate.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Enumerate.fst.hints
index a38e3a7e..44236fb4 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Enumerate.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Enumerate.fst.hints
@@ -23,7 +23,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6385868cd0d0e2d5436d295085d9ece7"
+      "01184cffc5ee0606003bb72c54bfe157"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Step_by.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Step_by.fst.hints
index 20508edf..367df809 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Step_by.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Iter.Adapters.Step_by.fst.hints
@@ -23,7 +23,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cd17466b7eba81a3ad18f29a54ecdcfa"
+      "706694a0e0e6c2c02dc3b1a4e942410e"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Iter.fsti.hints b/proofs/fstar/extraction-edited/.hints/Core.Iter.fsti.hints
index f861fff9..c57c41a6 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Iter.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Iter.fsti.hints
@@ -43,7 +43,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5e67dd92d9e724f630d50532cb4f36b6"
+      "66a9932a69b20c4a8f98d17fd83e53d6"
     ],
     [
       "Core.Iter.iterator_array_contains",
@@ -64,7 +64,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "9b3a6eac4d2d790e261dc9a792d7115c"
+      "e4c9913d7800c1eaa00ba7c16917f402"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Num.fsti.hints b/proofs/fstar/extraction-edited/.hints/Core.Num.fsti.hints
index a1f76878..fe4a4b87 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Num.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Num.fsti.hints
@@ -8,7 +8,7 @@
       1,
       [ "@query", "equation_Rust_primitives.Integers.i32_inttype" ],
       0,
-      "49c30328cc62eb103e966138f7d6bc4c"
+      "1a6141588a98f6a13327acb76aefcdf7"
     ],
     [
       "Core.Num.impl__u32__from_le_bytes",
@@ -47,7 +47,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d81dfb79264e3e188fbd87697cc43338"
+      "b90a3012ce103b8f88b68a00a16caca3"
     ],
     [
       "Core.Num.impl__u32__from_be_bytes",
@@ -86,7 +86,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "aeb67c6090d6b471aa2b210a53a97b4d"
+      "55f8274f6b74b3aa0127595734423f8f"
     ],
     [
       "Core.Num.impl__u32__to_le_bytes",
@@ -125,7 +125,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0ce9b8888a37d21a25e81a5a5c4bfe6e"
+      "5fe96e8ef6e2a1d99064e86fd374fdfe"
     ],
     [
       "Core.Num.impl__u32__to_be_bytes",
@@ -164,7 +164,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7f04f9ea22cd0a14da00914f8d408fcf"
+      "259ad4b001842d020242998aaac5d6d7"
     ],
     [
       "Core.Num.impl__u64__from_le_bytes",
@@ -203,7 +203,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c93947dab1fb3013cff8cad6b52b3c9c"
+      "e08e2ac36362ada4f519d369291b14c7"
     ],
     [
       "Core.Num.impl__u64__from_be_bytes",
@@ -242,7 +242,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6a4e7bb9ec276bef8b1d210371d17790"
+      "182240cd37bb5ddba594ab5dcfe7f385"
     ],
     [
       "Core.Num.impl__u64__to_le_bytes",
@@ -281,7 +281,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "56167e58dc1efe630d223cd100c10899"
+      "f8492a1bfc04f6abac0940aab21fde92"
     ],
     [
       "Core.Num.impl__u64__to_be_bytes",
@@ -320,7 +320,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "903d9cc70ccbdfb98677bb2c9338bd37"
+      "88c2d9763fd89800abe716f80102f178"
     ],
     [
       "Core.Num.impl__u128__from_le_bytes",
@@ -359,7 +359,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "db8393219f7f9368ad04f51fda9d4439"
+      "887b154a5d2cae46f088e6a6d6b5eb42"
     ],
     [
       "Core.Num.impl__u128__from_be_bytes",
@@ -398,7 +398,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e94c37e3e522f5b3f7d584eb358af67f"
+      "083e5e94e244f346dd1119176f10360f"
     ],
     [
       "Core.Num.impl__u128__to_le_bytes",
@@ -437,7 +437,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "15582e3fdf25975b9f64604ea6865777"
+      "0bd722eb7ee7a8f48106504fe46393ca"
     ],
     [
       "Core.Num.impl__u128__to_be_bytes",
@@ -476,7 +476,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "948bf2141fe892e8e60b3930afd99afa"
+      "9ad536f1aa71edd5edf1fc9d4c865041"
     ],
     [
       "Core.Num.impl__u16__pow",
@@ -530,7 +530,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "f81005b265bd0f2c8a69c3a58ef3957f"
+      "f0d9ee449fb2d70bd4c2ef2a69699e89"
     ],
     [
       "Core.Num.impl__u32__pow",
@@ -579,7 +579,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "66242ac093c2f011ce65faa03ae6c3d1"
+      "188ce25bae866baa7924954c732c7e30"
     ],
     [
       "Core.Num.impl__i32__pow",
@@ -623,8 +623,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Integers.range",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
@@ -632,7 +631,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "ee1449dfadf27251393f073b2b5a9b3b"
+      "f7921d8f289ecc4a100c8c4d629bc166"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Ops.Index.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Ops.Index.fst.hints
index 325ce74c..0494e842 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Ops.Index.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Ops.Index.fst.hints
@@ -1 +1 @@
-[ "���B��Qtq�u���V\u0004", [] ]
\ No newline at end of file
+[ "IT�\"�֤�S+I�`���", [] ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Ops.Range.fsti.hints b/proofs/fstar/extraction-edited/.hints/Core.Ops.Range.fsti.hints
index 90584d74..8ea71d53 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Ops.Range.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Ops.Range.fsti.hints
@@ -8,7 +8,7 @@
       1,
       [ "@query" ],
       0,
-      "2f1c4ebd64b4ef2de2bf8ead9ea5fbd5"
+      "44802066e80e4c98fe0a5522fa8d77fc"
     ],
     [
       "Core.Ops.Range.t_RangeFrom",
@@ -17,7 +17,7 @@
       1,
       [ "@query" ],
       0,
-      "1c8410e9fff6969980b1c779dc7a0d0e"
+      "cbf8164fc30162c1d873ea3690811a50"
     ],
     [
       "Core.Ops.Range.t_Range",
@@ -26,7 +26,7 @@
       1,
       [ "@query" ],
       0,
-      "97054f685c7336ede743fd1deab8e3b7"
+      "73f8d83e4d7ace78f9bb275b6ada4c6b"
     ],
     [
       "Core.Ops.Range.fold_range'",
@@ -113,7 +113,7 @@
         "well-founded-ordering-on-nat"
       ],
       0,
-      "004d04f9ceb5b61d57ad4936af6b6f8e"
+      "afbc273a622a53b6b9e90bab13313c65"
     ],
     [
       "Core.Ops.Range.iterator_range",
@@ -146,7 +146,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "6f470bc2d150339f7391d9c6ccee779c"
+      "59671aa05874272d4ee72812d3550023"
     ],
     [
       "Core.Ops.Range.impl_index_range_slice",
@@ -195,7 +195,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "922ce28a5109ef85001234f7492a0dd7"
+      "003fe8264515ab8b0ef4ba55335b87bd"
     ],
     [
       "Core.Ops.Range.impl_index_range_to_slice",
@@ -243,7 +243,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "7cb344bf8fc7ef9338622f5691294604"
+      "85f3152a14fd46cde8c2e6e48e6c0192"
     ],
     [
       "Core.Ops.Range.impl_index_range_from_slice",
@@ -285,7 +285,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "cadfa962a493ca1f875624c5bb8081e9"
+      "3e98e6c80e1781977669d9d104d3dfcc"
     ],
     [
       "Core.Ops.Range.impl_range_index_array",
@@ -306,7 +306,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "96d0f32e631ac69972d6d9ad7aefabcf"
+      "2f2f0c3904069e1dfada5bd6852fe37c"
     ],
     [
       "Core.Ops.Range.impl_range_to_index_array",
@@ -327,7 +327,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "f69ff4da52b25e1566b624876409c9c8"
+      "030a540e8763c6ff54660532fc151a01"
     ],
     [
       "Core.Ops.Range.impl_range_from_index_array",
@@ -348,7 +348,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "71c1bfa7f48d8b4b2d92bd3231c7f2bc"
+      "3c62c0577dff57fb3b9e6210bd5d4e1f"
     ],
     [
       "Core.Ops.Range.impl_range_full_index_array",
@@ -369,7 +369,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "d162d4e11cb4daead2ee7c3d5687931c"
+      "d9901e0ec1592849572a39f7583f5c56"
     ],
     [
       "Core.Ops.Range.update_at_tc_array_range",
@@ -386,7 +386,7 @@
         "token_correspondence_Core.Ops.Index.in_range"
       ],
       0,
-      "8b243bdeabb6cac5ba23598c9c69e978"
+      "91c133608a751b616967f9ef3254331b"
     ],
     [
       "Core.Ops.Range.update_at_tc_array_range_to",
@@ -403,7 +403,7 @@
         "token_correspondence_Core.Ops.Index.in_range"
       ],
       0,
-      "31da2a6b84cfee9dd11aac73eb824c46"
+      "8194aa85d51d0296cfa3c14059e8a592"
     ],
     [
       "Core.Ops.Range.update_at_tc_array_range_from",
@@ -420,7 +420,7 @@
         "token_correspondence_Core.Ops.Index.in_range"
       ],
       0,
-      "007bbd2a56f1b36601ce100c74d40e60"
+      "9b9bfff4e9780936c49455895a70726e"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Ops.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Ops.fst.hints
index 279d79d0..2add45cc 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Ops.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Ops.fst.hints
@@ -15,7 +15,7 @@
         "token_correspondence_Core.Ops.Index.in_range"
       ],
       0,
-      "3cd847f4f421eb1541c8febade998a71"
+      "37bba1d678031983b3fa984afca61e02"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Option.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Option.fst.hints
index 4259ee6c..a1fd717b 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Option.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Option.fst.hints
@@ -1,5 +1,5 @@
 [
-  "\u001d$\u0001��������8\u001e�\\�",
+  "��b����W\\\u001b��<�I�",
   [
     [
       "Core.Option.t_Option",
@@ -8,7 +8,7 @@
       1,
       [ "@query" ],
       0,
-      "e1c0eebad655a2e72d5a76604727e69f"
+      "5037ddeb2e0bae33c5343b784b1246ac"
     ],
     [
       "Core.Option.__proj__Option_Some__item___0",
@@ -20,7 +20,7 @@
         "refinement_interpretation_Tm_refine_8bd1c29d2c4ea486afa014610f999aad"
       ],
       0,
-      "78663749a43eeb328c127832c93f034d"
+      "5b222d1f55c4ec2458237966ff38d864"
     ],
     [
       "Core.Option.impl__and_then",
@@ -35,7 +35,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "beea137ff48a566463793bd9bb673b5a"
+      "7a9fa3987701d538c523ccb7c999429a"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Panicking.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Panicking.fst.hints
index e196757d..581df2b9 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Panicking.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Panicking.fst.hints
@@ -11,7 +11,7 @@
         "refinement_interpretation_Tm_refine_f1ecc6ab6882a651504f328937700647"
       ],
       0,
-      "924b83b2aead9f8e444ff57052e45f51"
+      "f1f87358c6a34e603c47609cf59ffe75"
     ],
     [
       "Core.Panicking.assert_failed",
@@ -23,7 +23,7 @@
         "refinement_interpretation_Tm_refine_f1ecc6ab6882a651504f328937700647"
       ],
       0,
-      "d81c70fbf19b0ef9df144ad56f85efe8"
+      "af4f75b30f1db0881c2fe51689b8705e"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Result.fst.hints b/proofs/fstar/extraction-edited/.hints/Core.Result.fst.hints
index 7a81d919..3d3a7442 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Result.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Result.fst.hints
@@ -1,5 +1,5 @@
 [
-  "\u0001�!pƥgД!\\�%���",
+  "�(zP2J���\u0014!O��,^",
   [
     [
       "Core.Result.t_Result",
@@ -8,7 +8,7 @@
       1,
       [ "@query" ],
       0,
-      "d4ea713f07cead2467950257f47f8ba0"
+      "a9390f1e9ffccaace183c018feefa3bf"
     ],
     [
       "Core.Result.__proj__Result_Ok__item__v",
@@ -20,7 +20,7 @@
         "refinement_interpretation_Tm_refine_3ef50004145708f7faa55478b042784f"
       ],
       0,
-      "61ccc61f12c86c89a84ad866a1cdc949"
+      "2bb89d51724e1a748a97e4f3c266bb62"
     ],
     [
       "Core.Result.__proj__Result_Err__item___0",
@@ -32,7 +32,22 @@
         "refinement_interpretation_Tm_refine_ad2cd3db184f75cfdd234980c2ed5525"
       ],
       0,
-      "39488b85c02c91c43e07c4142d8edf44"
+      "ec9bd53180243874091deedc57785cfe"
+    ],
+    [
+      "Core.Result.impl__map_err",
+      1,
+      2,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "disc_equation_Core.Result.Result_Err",
+        "disc_equation_Core.Result.Result_Ok",
+        "fuel_guarded_inversion_Core.Result.t_Result",
+        "projection_inverse_BoxBool_proj_0"
+      ],
+      0,
+      "60f3c34969ecb5e461b20b53cf76f5c5"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Core.Slice.fsti.hints b/proofs/fstar/extraction-edited/.hints/Core.Slice.fsti.hints
index 8c6e1a70..eb68ea59 100644
--- a/proofs/fstar/extraction-edited/.hints/Core.Slice.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Core.Slice.fsti.hints
@@ -24,7 +24,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2ecafa008f2f525a567808b0f1eca422"
+      "1a821768cedd37f43ae827de81350d99"
     ],
     [
       "Core.Slice.impl__index",
@@ -60,7 +60,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "a39df50fe9c45397bb404857a043c1bd"
+      "36b03d3c78b49dfc7463410b176d4824"
     ],
     [
       "Core.Slice.impl__split_at",
@@ -91,7 +91,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "7aec227efb354eab03d11cc724433a92"
+      "abbb4c51ee43d246e81df3f6dc290399"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Hax_lib.fst.hints b/proofs/fstar/extraction-edited/.hints/Hax_lib.fst.hints
index 8595694a..ff462226 100644
--- a/proofs/fstar/extraction-edited/.hints/Hax_lib.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Hax_lib.fst.hints
@@ -8,7 +8,7 @@
       1,
       [ "@query" ],
       0,
-      "589bf454e491a9433d30a33d8b94a211"
+      "284ec7342d4a6ab47ece04f9dab50037"
     ],
     [
       "Hax_lib.implies",
@@ -17,7 +17,7 @@
       1,
       [ "@query" ],
       0,
-      "5d945bc5fca223dd77657255f1ba0a4a"
+      "14a118abb18fcdb1b38c1064f348633a"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Lib.IntTypes.fsti.hints b/proofs/fstar/extraction-edited/.hints/Lib.IntTypes.fsti.hints
index 635ac9c8..958dfc23 100644
--- a/proofs/fstar/extraction-edited/.hints/Lib.IntTypes.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Lib.IntTypes.fsti.hints
@@ -17,7 +17,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "92d73c3289e4a7f48b6132345bff3307"
+      "b35e0f4d672f9d8c4ee7d82bfe60741d"
     ],
     [
       "Lib.IntTypes.bits",
@@ -35,7 +35,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "47df5bdd75d0fcdc8cf2e69f583b7656"
+      "475529065a10b82f624e3b4a92a18c55"
     ],
     [
       "Lib.IntTypes.modulus",
@@ -48,7 +48,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "c15329abf5f8bacf05f6c1788ade4cb0"
+      "2542ee1111a8ca9a6853c574b87483aa"
     ],
     [
       "Lib.IntTypes.maxint",
@@ -62,7 +62,7 @@
         "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "3a51b7ea3a2aa688303b3be3575341b7"
+      "fef88ba875825ec51813450ee3260b50"
     ],
     [
       "Lib.IntTypes.minint",
@@ -76,7 +76,7 @@
         "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "b09e29abe891656682d2434a0c5aeb35"
+      "a23300e3c3f251f60956d0b3154f006f"
     ],
     [
       "Lib.IntTypes.pub_int_t",
@@ -94,7 +94,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "75b12ff7a0831baf3bf6e99f35221aa4"
+      "18f368c9e6d4b29c3d6a76a04d120897"
     ],
     [
       "Lib.IntTypes.pub_int_v",
@@ -150,7 +150,7 @@
         "typing_tok_Lib.IntTypes.U1@tok"
       ],
       0,
-      "d6ff1044fc108624c677006216a26c66"
+      "c428c5c3a6070702642e2757c5b2a43a"
     ],
     [
       "Lib.IntTypes.int_t",
@@ -164,7 +164,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "44fe6e139307488b4640b2c84b51fdf8"
+      "edbf626818e2cfa97c0c32e55773a51e"
     ],
     [
       "Lib.IntTypes.v",
@@ -182,7 +182,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "db2c60745d4fc05fa255164b7f4f310c"
+      "13c90a5026db4116639dcfece0b1ac69"
     ],
     [
       "Lib.IntTypes.u128",
@@ -191,7 +191,7 @@
       1,
       [ "@query" ],
       0,
-      "e843cb69631504836b1604da16c09157"
+      "7701225da1e6a44104d185f9a0686c5b"
     ],
     [
       "Lib.IntTypes.i128",
@@ -200,7 +200,7 @@
       1,
       [ "@query" ],
       0,
-      "fbea0796f0737ba1483b1ae7f43c1b73"
+      "fad43eed92744f99b87365f175875172"
     ],
     [
       "Lib.IntTypes.size",
@@ -216,7 +216,7 @@
         "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "457a43a5804903dde25ed99932a4189c"
+      "d23a72df140d51da4a20a3866f191f28"
     ],
     [
       "Lib.IntTypes.byte",
@@ -237,7 +237,7 @@
         "typing_Lib.IntTypes.bits", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "ae665fee8afd86ac8ade7d64d8bcfedd"
+      "80918a14c6793262a507ef4bd91a371f"
     ],
     [
       "Lib.IntTypes.byte_v",
@@ -257,7 +257,7 @@
         "typing_Lib.IntTypes.bits", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "615b58a0a3e45d5f7d37147f3715386d"
+      "2563bb34e1371746485d327a20617792"
     ],
     [
       "Lib.IntTypes.size_to_uint64",
@@ -283,7 +283,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "af3549a5940497ff2fd7e5de47e53789"
+      "ffa6cfb82ccc718fb56b634738398e19"
     ],
     [
       "Lib.IntTypes.op_At_Percent_Dot",
@@ -301,7 +301,7 @@
         "typing_Lib.IntTypes.bits"
       ],
       0,
-      "e9ee58af9ec5bcaaa65b03138a9a5939"
+      "98570f9876711469b022d0c01b521741"
     ],
     [
       "Lib.IntTypes.to_u1",
@@ -315,7 +315,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "4d5e6e5c5e56a3196554b83d9150ea83"
+      "dbfe2bdfd17496b87232a257e6a8df07"
     ],
     [
       "Lib.IntTypes.to_u8",
@@ -329,7 +329,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "6435e0063026866820fbbbc3de2176d0"
+      "4dcafee02c29fe012eadcb2271515bb9"
     ],
     [
       "Lib.IntTypes.to_i8",
@@ -343,7 +343,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "05da232b8d7a6743a187e03e398033cd"
+      "214b1024fa42efab6c77f05a533e393b"
     ],
     [
       "Lib.IntTypes.to_u16",
@@ -357,7 +357,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "05d58e6a2a716ae1f00fddc4b85ba9df"
+      "8acb72f51b7d45ce3cb55ac93e5e2b7a"
     ],
     [
       "Lib.IntTypes.to_i16",
@@ -371,7 +371,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "778e3b6451cd436d39fa88eaf86280b3"
+      "de7131064b2ec7d500092f18defa13bf"
     ],
     [
       "Lib.IntTypes.to_u32",
@@ -385,7 +385,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "59b8815d1489f225fa468a0cc4ed22a8"
+      "bfb5cdd7b49fb364fd44692405feacf5"
     ],
     [
       "Lib.IntTypes.to_i32",
@@ -399,7 +399,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "76a7c9d369b6b5e46e98f5296eb6acea"
+      "1d2f35664e90c4e3b6a9e6d885d92326"
     ],
     [
       "Lib.IntTypes.to_u64",
@@ -413,7 +413,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "50031414cf4f352acd80cb2df0be864b"
+      "343810ab564c27f612d2f80a5f06f96b"
     ],
     [
       "Lib.IntTypes.to_i64",
@@ -427,7 +427,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "d76a012033138e1771a6da846e0e3a70"
+      "80678819f9fbf4d7cbee55c128d98e2e"
     ],
     [
       "Lib.IntTypes.to_u128",
@@ -441,7 +441,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "fae20eb853fef510bbcf5e8efd4fc826"
+      "aeb4e881e63bbb5804e1247a4edb07ca"
     ],
     [
       "Lib.IntTypes.to_i128",
@@ -455,7 +455,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "0ed3ef39aac509ba07923a7aea2c4597"
+      "e626269e6f316e5258f9049c7ed7f484"
     ],
     [
       "Lib.IntTypes.ones_v",
@@ -473,7 +473,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "b287e5ec7549caca5c4704af40fc4a45"
+      "6ef4ea7bf7797e84285342a832aa6b70"
     ],
     [
       "Lib.IntTypes.logxor_lemma",
@@ -516,7 +516,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "dd8a643dfd903d018465a673df6fce35"
+      "066fd158f59cde36bbc3e26617aeae59"
     ],
     [
       "Lib.IntTypes.logxor_v",
@@ -558,7 +558,7 @@
         "typing_FStar.Int.fits", "typing_Lib.IntTypes.uu___is_S8"
       ],
       0,
-      "07a98042baf038a973ec7d76374922d1"
+      "493fe0bfd592d3ed3efa5011adb88557"
     ],
     [
       "Lib.IntTypes.logand_v",
@@ -600,7 +600,7 @@
         "typing_FStar.Int.fits", "typing_Lib.IntTypes.uu___is_S8"
       ],
       0,
-      "1b2fc0f8448b3be77232018f9ec6e397"
+      "1c31606549e8a143ae84f4302adc627d"
     ],
     [
       "Lib.IntTypes.logand_mask",
@@ -613,7 +613,7 @@
         "refinement_interpretation_Tm_refine_812109ba662576a3f745174092d33c56"
       ],
       0,
-      "daaacfd071550ff919fca3f779fbcc76"
+      "bbb8fc041266a46aa15d25622cc03beb"
     ],
     [
       "Lib.IntTypes.logor_disjoint",
@@ -622,7 +622,7 @@
       1,
       [ "@query" ],
       0,
-      "42470ad36d39f5a9712687300748a435"
+      "050f61e19c2fb513224c3550ccbd4481"
     ],
     [
       "Lib.IntTypes.logor_v",
@@ -664,7 +664,7 @@
         "typing_FStar.Int.fits", "typing_Lib.IntTypes.uu___is_S8"
       ],
       0,
-      "13f9aeb8ce92f1d1a9b4fcbbdc28c5ad"
+      "1ac9f1102be0cc75d985f12558f62d16"
     ],
     [
       "Lib.IntTypes.lognot_v",
@@ -706,7 +706,7 @@
         "typing_Lib.IntTypes.uu___is_S8"
       ],
       0,
-      "eca6e257e18fdd275c0a944ddcab42dd"
+      "07a7281e0bf568336b3089f916061738"
     ],
     [
       "Lib.IntTypes.shift_right_lemma",
@@ -726,7 +726,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "021361dedf10463f5379bfc8650e9de4"
+      "a80bf94693a4c82434c3a37de3f6c473"
     ],
     [
       "Lib.IntTypes.shift_left",
@@ -746,7 +746,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "bcc111e416e6b1b6e9ebb35db234c265"
+      "c11a970225fd696f9dcd24e5b3257d92"
     ],
     [
       "Lib.IntTypes.shift_left_lemma",
@@ -767,7 +767,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "87035fc868acb1d1b65fe83f01095b9a"
+      "2157f8a8b461b58352201fa7e39f7087"
     ],
     [
       "Lib.IntTypes.shift_right_i",
@@ -779,7 +779,7 @@
         "refinement_interpretation_Tm_refine_33026181614126bf2f989b87912ad69b"
       ],
       0,
-      "300457047e83076bac6827b36b178776"
+      "5027ce804a8daca09ae6d08227af48d5"
     ],
     [
       "Lib.IntTypes.shift_right_i",
@@ -791,7 +791,7 @@
         "refinement_interpretation_Tm_refine_33026181614126bf2f989b87912ad69b"
       ],
       0,
-      "034f673072a5d08c4e8ec44e3a4fec90"
+      "032e39a5181331eb1759f526032d74bc"
     ],
     [
       "Lib.IntTypes.shift_left_i",
@@ -803,7 +803,7 @@
         "refinement_interpretation_Tm_refine_33026181614126bf2f989b87912ad69b"
       ],
       0,
-      "d434ac787bd71ed31e6452797cefadb5"
+      "09a44f0e0e4ff0ecd8bf15974604d8a2"
     ],
     [
       "Lib.IntTypes.shift_left_i",
@@ -815,7 +815,7 @@
         "refinement_interpretation_Tm_refine_33026181614126bf2f989b87912ad69b"
       ],
       0,
-      "72c494f5a08883a009fbc6c46d660713"
+      "11244634b1a325f383770c7c0de4fcfa"
     ],
     [
       "Lib.IntTypes.rotate_right_i",
@@ -827,7 +827,7 @@
         "refinement_interpretation_Tm_refine_fe1f2b0fb92318a15c076125042e53a3"
       ],
       0,
-      "2171a2938a7f7501e9087864aa304e31"
+      "73c7136e047cac418f98bff61cba37b4"
     ],
     [
       "Lib.IntTypes.rotate_right_i",
@@ -839,7 +839,7 @@
         "refinement_interpretation_Tm_refine_fe1f2b0fb92318a15c076125042e53a3"
       ],
       0,
-      "3c233d1d449c68ca641b568501c7f3a8"
+      "e63d29fa59e5a35eaa5b60c0ab0cbac7"
     ],
     [
       "Lib.IntTypes.rotate_left_i",
@@ -851,7 +851,7 @@
         "refinement_interpretation_Tm_refine_fe1f2b0fb92318a15c076125042e53a3"
       ],
       0,
-      "592ca2cb15bfab15a0bcefae7a2df80e"
+      "d6a9ca63ff5c89edcb144046798f5c36"
     ],
     [
       "Lib.IntTypes.rotate_left_i",
@@ -863,26 +863,13 @@
         "refinement_interpretation_Tm_refine_fe1f2b0fb92318a15c076125042e53a3"
       ],
       0,
-      "0d33dbcfc44a32a331b83fc6d4398b18"
+      "0b2d1bfeea29e537c73e5d09352997ad"
     ],
     [
       "Lib.IntTypes.mod_mask",
       1,
       1,
       1,
-      [
-        "@query", "constructor_distinct_Lib.IntTypes.U32",
-        "equality_tok_Lib.IntTypes.U32@tok", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned"
-      ],
-      0,
-      "377f50f66bb310a966fa197a2b843a33"
-    ],
-    [
-      "Lib.IntTypes.mod_mask",
-      2,
-      1,
-      1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented",
@@ -895,13 +882,12 @@
         "equation_Lib.IntTypes.op_At_Percent_Dot",
         "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.shiftval",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.abs", "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Prims.nat", "equation_Prims.pos",
         "equation_with_fuel_Prims.pow2.fuel_instrumented",
         "fuel_guarded_inversion_Lib.IntTypes.inttype", "int_inversion",
-        "int_typing", "lemma_FStar.Int.pow2_values",
-        "lemma_FStar.UInt.pow2_values", "lemma_Lib.IntTypes.pow2_127",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4", "primitive_Prims.op_GreaterThanOrEqual",
+        "int_typing", "lemma_FStar.UInt.pow2_values",
+        "lemma_Lib.IntTypes.pow2_127", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
         "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxInt_proj_0",
@@ -917,7 +903,20 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "cfcc7d79db9f5b127b7962962e1bafcf"
+      "f76accd14ba00f5b7d5001486c8a9197"
+    ],
+    [
+      "Lib.IntTypes.mod_mask",
+      2,
+      1,
+      1,
+      [
+        "@query", "constructor_distinct_Lib.IntTypes.U32",
+        "equality_tok_Lib.IntTypes.U32@tok", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned"
+      ],
+      0,
+      "ab45fa4a6b53fd183709aa79290b29da"
     ],
     [
       "Lib.IntTypes.mod_mask_lemma",
@@ -944,7 +943,7 @@
         "typing_FStar.UInt32.v"
       ],
       0,
-      "650fef0e5b73d91afe016da1d14a5ec1"
+      "55ed83b0f3d4c17c09e52f1ced24bbcd"
     ],
     [
       "Lib.IntTypes.div",
@@ -953,7 +952,7 @@
       1,
       [ "@query" ],
       0,
-      "b3a08cbcfa7db04a95db80c4ff20c89b"
+      "ea216d4b61a0bf861dbcf87ec1d01a8b"
     ],
     [
       "Lib.IntTypes.div_lemma",
@@ -965,7 +964,7 @@
         "refinement_interpretation_Tm_refine_e450d0eda8ec6ce5c9eff42d01f0e81a"
       ],
       0,
-      "0d44ab529ce69959c6ce4825ab82bb01"
+      "420f58d8ab764f2d4a510899fdb6cc8d"
     ],
     [
       "Lib.IntTypes.mod",
@@ -974,7 +973,7 @@
       1,
       [ "@query" ],
       0,
-      "2c1dc2e72a3a4320adcc8d0318e01a7a"
+      "8d684881ac2386bebe053243ca86dd43"
     ],
     [
       "Lib.IntTypes.mod_lemma",
@@ -1020,7 +1019,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "ed713402952a5854310c51facb6b853c"
+      "47019f08e607827340d55eb5fd81aca0"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Digest.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Digest.fsti.hints
index 127b68aa..7a7dcceb 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Digest.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Digest.fsti.hints
@@ -21,6 +21,7 @@
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
@@ -37,7 +38,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e4a1ec4a0933a6ab327ce13cb1e28b39"
+      "f26a2e49f56d40250df1e2f9476b7b48"
     ],
     [
       "Libcrux.Digest.sha3_512_",
@@ -59,6 +60,7 @@
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
@@ -75,7 +77,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a9427a29acec1cff0c0e43e404dde6c1"
+      "a0647846f179226d784258d07151d326"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fst.hints
index dc25904a..777d92c5 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fst.hints
@@ -1,5 +1,5 @@
 [
-  "�U�\u001d����Z �7\u0004�,\u0014",
+  "�\u0010nc�T��\u0012R�����\\",
   [
     [
       "Libcrux.Kem.Kyber.Arithmetic.nat_div_ceil",
@@ -24,7 +24,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c713cbbbb08ab2796186f613cd2acdde"
+      "26fe895b7c35cd003c3a960c1bf2c4fa"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.lemma_mul_i32_range",
@@ -35,7 +35,8 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "Prims_pretyping_ae567c2fb75be05905677af440075565", "bool_inversion",
-        "bool_typing", "constructor_distinct_Lib.IntTypes.S16",
+        "bool_typing", "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -46,8 +47,11 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Math.Lib.abs",
-        "equation_Lib.IntTypes.bits",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Math.Lib.abs",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Prims.abs", "equation_Prims.nat",
@@ -74,7 +78,6 @@
         "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_2faecbd312c19a78779b10b7aa95b8ba",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_5b706f1316bc4c0722dc2171363a324f",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
@@ -88,7 +91,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "2b071abe38b7aab8d2772a2cf8fd952e"
+      "ce3d2a386bb577f3d642980297c49ba4"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.lemma_add_i32_range",
@@ -128,7 +131,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "a14011af67fb02e178e401fe958de7d2"
+      "06de0d144f5dd33029d93e736ac5f7ed"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mul_i32_b",
@@ -136,33 +139,17 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.S32",
-        "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.unsigned",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
+        "@MaxIFuel_assumption", "@query",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
+        "equation_Prims.nat", "int_inversion", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_8010082049ab889e29a1f64071b0bbe8",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "refinement_interpretation_Tm_refine_8010082049ab889e29a1f64071b0bbe8"
       ],
       0,
-      "f4869bf394b8a85fd4d64c78c4f64b4e"
+      "096c8dc55512545aeb24f272da6e80a8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mul_i32_b",
@@ -200,7 +187,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5bfc47ca0342021d91d1753ae6b4c68d"
+      "d7d06652c030c21e97e614ee17f1834d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_i32_b",
@@ -214,7 +201,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "6f0b4ae3fea8a0615b4aabee0c03aa70"
+      "5079ef0237751fe05839baecf3f2406f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_i32_b",
@@ -252,7 +239,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "402086613126a727512317ebb5e3e305"
+      "577ecc6a785441e3478bb9fb7dd1934d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.sub_i32_b",
@@ -266,7 +253,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "fcc18fa49c5c323aa680301816762627"
+      "52dd29d1492beedf0560ec7b57697b57"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.sub_i32_b",
@@ -307,7 +294,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c13e1e992227918cb8f2fff8aaf83faa"
+      "a48aa4408e9fc5564ef5d4ee12e1ea1f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.cast_i32_b",
@@ -323,7 +310,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "79d4084f3fb7aed8e8e3bf1730bb907e"
+      "18444e21f2c3a7579e1bfb152db58592"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.shr_i32_b",
@@ -335,7 +322,7 @@
         "refinement_interpretation_Tm_refine_1e068ce857e1bf578a12a06697989d54"
       ],
       0,
-      "1024ea26880575dc7a47a263ced15cf9"
+      "6d4746cb2547995e05192a7a61af1604"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.shr_i32_b",
@@ -346,7 +333,8 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "Prims_pretyping_ae567c2fb75be05905677af440075565", "bool_inversion",
-        "constructor_distinct_Lib.IntTypes.S32",
+        "bool_typing", "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U1",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_Lib.IntTypes.bits",
@@ -367,7 +355,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v",
         "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing", "lemma_FStar.UInt.pow2_values",
+        "int_inversion", "int_typing", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -385,12 +374,14 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.unsigned",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8ad0381d8719d4afdeb58c2d201c3475"
+      "a976a703aab35e13f8d54dc60cf1bf0b"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
@@ -399,7 +390,7 @@
       1,
       [ "@query" ],
       0,
-      "6b67040906a0c762e69e605cd6606366"
+      "26c4998a4cd55120e0c1e421362a1a5d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
@@ -428,7 +419,7 @@
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
         "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_SHIFT",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Integers.bits",
@@ -459,17 +450,17 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_Lib.IntTypes.pub_int_v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_SHIFT",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_tok_Lib.IntTypes.S64@tok"
       ],
       0,
-      "d8a74122dbae22b49d6c6ba7e547ebcb"
+      "0b3101262ff244e8e30390e90dd10104"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
@@ -478,7 +469,7 @@
       1,
       [ "@query" ],
       0,
-      "c1d788101000e06c402f1a87b8f957ce"
+      "869d7869390c0d245d3413a2202f4ef9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
@@ -488,7 +479,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
+        "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.U8",
@@ -516,17 +508,18 @@
         "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
-        "lemma_FStar.UInt8.vu_inv",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_Prims.__cache_version_number__",
+        "int_inversion", "int_typing", "lemma_FStar.Int32.uv_inv",
+        "lemma_FStar.Int32.vu_inv", "lemma_FStar.UInt8.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
+        "primitive_Prims.op_GreaterThanOrEqual",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Modulus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -540,7 +533,6 @@
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_SHIFT",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.modulus",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -549,7 +541,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "8aa0329ed17057d25a038e18b9c135c3"
+      "34e44cfac809b96d913ecf1982ffd31f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R_INV",
@@ -583,7 +575,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "cad581d463c9f16e61e04c9a987a0af2"
+      "0ce7badea2ca472e02b54edd66073d83"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.int_to_spec_fe",
@@ -625,7 +617,62 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6fe054f2444a882dfc1f49e2f36cfc29"
+      "9e5c13f2d871085aa0cfe6de68ead46e"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Arithmetic.wf_fe_to_spec_fe",
+      1,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.v_FIELD_MODULUS", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "d158413bd49bea11c11a8b7cd2b0b7de"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -637,7 +684,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "e5718b71b048b19ace12cc50d73cb365"
+      "8452d81c004e29f481cacc26feae3e02"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -649,7 +696,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "6cbfe17e4c34c21ba22f8d87389121a3"
+      "762c68910758cb3c7b614caed02b1403"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -665,7 +712,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "1c224b73f574f50fb0779a6b8779ae5f"
+      "aabb0487d0d2aa4a127b94dfadf4e136"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -681,7 +728,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "1e236255081752fee29a3c036fc7be78"
+      "9c4b04bc460e800b7d1c2b64c2c176ef"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -693,7 +740,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "a098e7b4875824031671e3fa9e651fd5"
+      "a7e01e96e5b74473982fc9121ae3183c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -705,7 +752,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "07450f728a37f619c7c5f07172cce2ef"
+      "87b1bed680b5a7206f0aa5619f56efd3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -721,7 +768,7 @@
         "refinement_interpretation_Tm_refine_c1a7d9a33f6eb5e647f30c5da8bd80df"
       ],
       0,
-      "7c0447f5a74cb2b205366cfe60e0ca99"
+      "bd57a3f9fa60003d92ca48aaac879cf1"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -737,7 +784,7 @@
         "refinement_interpretation_Tm_refine_c1a7d9a33f6eb5e647f30c5da8bd80df"
       ],
       0,
-      "a0a5faeff861e658b4d2c4713f57ac3b"
+      "d3b6a43da59b185fc4a5a08022e8b89b"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -754,7 +801,7 @@
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167"
       ],
       0,
-      "3531bc72a9bfa75225ddc02ca4e1ac08"
+      "eb52440c0a93a33f8ff1954f0425d388"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -766,7 +813,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "fd64f1611e6ebd902d1775f5af0bde52"
+      "a28e3e77af4f45586439b10968be1d2e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -778,7 +825,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "7af89119d71592714e41c9371e146bc4"
+      "78c9412893ef0672d6cf1d58a979b6a2"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -790,7 +837,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "588f09026aaf480febb3c86ff77a407c"
+      "adff14073cc77a56f7a2d1e952c35c7d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -805,7 +852,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "2cf9d547e0f4eaabcde72466e39cc2e1"
+      "686f157c916db34bf838225013801419"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -841,8 +888,9 @@
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.UInt32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.UInt.pow2_values", "lemma_FStar.UInt32.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
@@ -852,7 +900,6 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_2fb07467973203ab74a1e903d3d29f60",
-        "refinement_interpretation_Tm_refine_456b84c18ac29e6b940ba25902afa9fa",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
@@ -872,7 +919,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "67665b706d4ec6bbc4060e0fbb13e04b"
+      "14130634487a42f85333a7529bfa6beb"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -884,7 +931,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "5b4fb86c4fe0e345967c87f4f50231a2"
+      "76010ce8f47c35ea5a32a13ac261d123"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -896,7 +943,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "f68dba0763a883f379cd7dae8f022ecc"
+      "7f45a84fabee1c92d8d2f9b65ea3f684"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -924,9 +971,9 @@
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.Int.pow2_values", "lemma_FStar.UInt.pow2_values",
-        "lemma_FStar.UInt32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.Int.pow2_values", "lemma_FStar.UInt32.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
@@ -944,11 +991,11 @@
         "refinement_interpretation_Tm_refine_c1a7d9a33f6eb5e647f30c5da8bd80df",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.bits", "typing_Rust_primitives.Integers.bits",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Rust_primitives.Integers.bits",
+        "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "e4a241292333c7977e87895fc8463bd3"
+      "e5777278aefba20adb70add46e2bb18d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -960,7 +1007,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "9d65bba629e4b3b9b260ae6529e43afe"
+      "62cb6d30324ed050c11699ce168fa441"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -989,9 +1036,8 @@
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.Int.pow2_values", "lemma_FStar.UInt32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.UInt32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_GreaterThan",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
@@ -1000,6 +1046,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_2ff13a3e8f8a7017d4901bbac8041bac",
+        "refinement_interpretation_Tm_refine_43386fe1fe73a595f6a26a3f7c26044c",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
@@ -1015,7 +1062,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "4ebb3ee5758f03534255fe81fd3dc618"
+      "f184092671b4a2a77fff7bd8a0aa8d52"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1040,7 +1087,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "f1b88bd3d0b72d26d04f56186bfb18b4"
+      "a6b4bced90f392680bd134371cdaf353"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1072,7 +1119,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "f3ca54e4aadde62da32827c414e3098d"
+      "f1c7e34d675305a76e9126fe4d27df69"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1084,7 +1131,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "52da516bcf84fa9bb1dadef8b880746e"
+      "b8a764d20807a5d736aa792b275006e8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1097,7 +1144,7 @@
         "refinement_interpretation_Tm_refine_e3fe9b7b2b1f21f6c8f47835047505be"
       ],
       0,
-      "b7c9034886bd80b31e7065e2d74a0155"
+      "aca5b50d89cdfb8c76fd7939cf494da1"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1112,7 +1159,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "55f688a95d26be5db7a6ccdecea5d547"
+      "5ffc81756b62a06c1a4cb978684b5419"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1124,7 +1171,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "7b3316cf77780349a2223ba2bd1a3429"
+      "beba00451f38cc0a1de7ffccecc0a7bc"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1136,7 +1183,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "d0e61982b1c2038bb2bcd94bcf1cd01f"
+      "0bf7d459c59f14b4c5449ba9a7bf27b8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1170,13 +1217,11 @@
         "lemma_FStar.UInt32.uv_inv",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_2fb07467973203ab74a1e903d3d29f60",
-        "refinement_interpretation_Tm_refine_2ff13a3e8f8a7017d4901bbac8041bac",
         "refinement_interpretation_Tm_refine_43386fe1fe73a595f6a26a3f7c26044c",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_80c447f0437d95bc8a415c8c22b2aaff",
@@ -1190,7 +1235,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "614e0e3dc05c3e5fba435f34f2676452"
+      "c221b19ecda5ce0a32367d55224d633b"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1215,7 +1260,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "f8db1f9cb926293cbc966c940072f291"
+      "156452c164fcb82df7e7a73eec2e7e14"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1264,7 +1309,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "aacd1674f790d5cdd30b9799ae96bcd9"
+      "ae0ee7d40b0aa5371328451bad8198bb"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1276,7 +1321,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "0ce0958bbc72ad69eaebe6b20819d710"
+      "4a5da5d76534980354447b0634a4fd33"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1291,7 +1336,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "b493fa9993a8f89d664a7ea357699b84"
+      "2dde5f6a1ea15b9b61bb65ae305a558a"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1316,7 +1361,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "aad8a6610a6739cc589498e4b169e4ee"
+      "2128ed0f99a76da127cb42119318e3e3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1329,7 +1374,7 @@
         "refinement_interpretation_Tm_refine_fb1c28ee85d5f1790627f05ada419592"
       ],
       0,
-      "0a8c3faec3be44ae52bf35846ffc6e86"
+      "f34b287e3285981ae69827e394074e16"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1354,7 +1399,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "12c23269833abbaaf219f0675205bf16"
+      "7f34198cc5f22b8dbcc1b7a7e640c53e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1366,7 +1411,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "70039299a04688c20b9888a4a3402184"
+      "c60562e57c70a1d72bf730a9b05d6d9c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1381,7 +1426,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "03135a16915ed491fcafc17efddec6b5"
+      "b6fbe7002911f5b067ad12192c1dad9d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1406,7 +1451,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "b63b22c4161438762911782c94f355ae"
+      "7be0597ad7748c50b2bbd5a56e38b50a"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1446,7 +1491,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "59e242f1415a8fe37adfb0280085d392"
+      "42fa617dc3fdbb71c3cf93a91d659e46"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1458,7 +1503,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "ff47c262efb74d2ac9900e60a5978c76"
+      "245b01a2c5b2fdc1fe7ac76f50df91f6"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1471,7 +1516,7 @@
         "refinement_interpretation_Tm_refine_91328468f4440a8bf8d3581ecc377b34"
       ],
       0,
-      "dcf5f34120c2c624657322e935a478f7"
+      "db3e6d7ab62ab27c9cae456f3a2a101e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1486,7 +1531,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "6316cfb2d48cdfec7a9c9198a8324adf"
+      "418fd683f101c5e35b29043f13291172"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1511,7 +1556,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "75fd114683c8a239ef2bc72b2f3e5f46"
+      "bcf3ba92b1bb97f79e64404aca10c492"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1524,7 +1569,7 @@
         "refinement_interpretation_Tm_refine_fb1c28ee85d5f1790627f05ada419592"
       ],
       0,
-      "2b8409222fbf75dcba4e935ec2cad983"
+      "4427e2d18a59c137c2c6f6faed68af0b"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1536,7 +1581,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "44d2f271acee30ec32a54e6f9218cecf"
+      "f43a3af7937b94f47b33b17c90fd7174"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1551,7 +1596,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "7089cd578ac6fe5bb6cfee95b93ff856"
+      "d82f38c56bd6e0724ad9f6f941d3e581"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1564,7 +1609,7 @@
         "refinement_interpretation_Tm_refine_bb48eb6c77e49e9cd30a94dbf9b2ae7e"
       ],
       0,
-      "7b8faf38bbdd2bef419fd7d6b2fef15c"
+      "4ed36bd2976f44167f51ae0b5230be62"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1589,7 +1634,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "b8a8fe0a488a83ea2a3dbafda2981be9"
+      "7e31ac3f147eb30ce94ec0994c784810"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1601,7 +1646,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "80f0d433045f939e933354f350f372ac"
+      "d26d33698604d05f5b652f1f963ed374"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1616,7 +1661,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "dba7cf6626f621b5b54686c1758fcdd6"
+      "f134b3d32c713f4a6691fb89e238c32d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1641,7 +1686,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "b8319573240099dfb88d45641c4a9f77"
+      "5911d79d996fa0fb0d0bd14fe000cad9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1654,7 +1699,7 @@
         "refinement_interpretation_Tm_refine_fb1c28ee85d5f1790627f05ada419592"
       ],
       0,
-      "a5b414c7e4a82584166230b8c37e7b8c"
+      "a297ebca18f99802e3c359d1f7d0480f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1666,7 +1711,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "d64dbdd040db708df7456d78c3437dba"
+      "18ef9980c6e94bf95cb777dfb76b2b13"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1681,7 +1726,7 @@
         "refinement_interpretation_Tm_refine_806a87d48cb3833a16a9f7d4f6750785"
       ],
       0,
-      "a78781c875c235f8809fe60d56d36543"
+      "bb1eced6b7c628354c93e73e9836ca89"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1694,7 +1739,7 @@
         "refinement_interpretation_Tm_refine_bb48eb6c77e49e9cd30a94dbf9b2ae7e"
       ],
       0,
-      "4150c0b9deff41362af329a5e74aec8a"
+      "a5a3fd2f425a383daef91b32abcec152"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1720,7 +1765,7 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0"
       ],
       0,
-      "1113248b5be79e779cbe67e69cb3c29e"
+      "7fb9a25c949922cb3698fcb50b478020"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1733,7 +1778,7 @@
         "equation_Rust_primitives.Integers.u32_inttype"
       ],
       0,
-      "6eca115c46ec734c991aaa864182cde7"
+      "c7b52e943a5857c44470663c271ac1f6"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1772,7 +1817,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "55a26c9e6a7688b3d3cddd753b3166cd"
+      "0ef73b6af81e557a517851cbfb9d535f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1784,7 +1829,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "a72394a67a32a373d84b1f7f014ec317"
+      "52dc3b578fbf65b9887937182f80a2dc"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1796,7 +1841,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "80b32acd17063022faa7f07f14a4530c"
+      "3e07f12a12abcc9200a0a5e132bb4033"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1840,7 +1885,7 @@
         "typing_FStar.UInt32.v", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "c87dbe3124eccd934a401dee0ba40398"
+      "1417d5e138988508a95bb6113e554c30"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1852,7 +1897,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "9d12807b80d52f8bdb97ea308eafa403"
+      "8e4e50ac7f284dadb91da6987c309941"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1864,7 +1909,7 @@
         "refinement_interpretation_Tm_refine_456b84c18ac29e6b940ba25902afa9fa"
       ],
       0,
-      "1c76021310b842db6c25ad7f236de778"
+      "9ad39b68b46990b907fc217eadd5895f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1875,56 +1920,38 @@
         "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.UInt.fits",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.UInt.min_int",
+        "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.UInt32.vu_inv", "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThan",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
         "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
-        "refinement_interpretation_Tm_refine_2fb07467973203ab74a1e903d3d29f60",
         "refinement_interpretation_Tm_refine_38e5ead592f018c5e2b671e5b1df38a6",
         "refinement_interpretation_Tm_refine_43386fe1fe73a595f6a26a3f7c26044c",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_80c447f0437d95bc8a415c8c22b2aaff",
         "refinement_interpretation_Tm_refine_a64483c1efbc8f8e5865b44303b72b4b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ae4ad67316a677f516c67f09b0e8b963",
-        "refinement_interpretation_Tm_refine_bb48eb6c77e49e9cd30a94dbf9b2ae7e",
         "refinement_interpretation_Tm_refine_e9fd75cceaaeb3c4516e200cfb4bee15",
-        "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "refinement_interpretation_Tm_refine_fb1c28ee85d5f1790627f05ada419592",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "91e50da34f5dd2de98340e6b88ac96ef"
+      "f343cd595977063c9a08b1573d636883"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1936,7 +1963,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "e90ccc23a3c903faff8297dac986f7a4"
+      "c0c0c599899439ee86a585cf443c6347"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1948,7 +1975,7 @@
         "refinement_interpretation_Tm_refine_456b84c18ac29e6b940ba25902afa9fa"
       ],
       0,
-      "894a34986fa33a91c4825054608372ad"
+      "f2720fa445ed1d30afc0f1e266d5e06c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1960,7 +1987,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "6d3b275ee3848c2ba23fb68116e36394"
+      "3b10bf19d067a3f9c05803c24df499ac"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1975,7 +2002,7 @@
         "refinement_interpretation_Tm_refine_456b84c18ac29e6b940ba25902afa9fa"
       ],
       0,
-      "1628109349f287d23ec62e0ad223feb1"
+      "783747509a500a3683c79e63130e5567"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -1993,7 +2020,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "7896ea655708ea36904c1acaf91e6b25"
+      "41642f5ff85e17a005077447088d1ff7"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -2002,7 +2029,7 @@
       1,
       [ "@query" ],
       0,
-      "b87593b57b80ceafd1c36d42e8ad21f1"
+      "e56c6a436a24201c2d8f435d8a2ec6c9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -2014,7 +2041,7 @@
         "refinement_interpretation_Tm_refine_654a196bc9f685aac047ab4dd7c22761"
       ],
       0,
-      "eda474aa87c3593cc317fa19ff19c314"
+      "fd695cfb4acc6a1f298583362f67e240"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -2031,7 +2058,7 @@
         "refinement_interpretation_Tm_refine_948ff553951d7fa3b6aa3bceb324368e"
       ],
       0,
-      "092210a92ab8b86f5795d688d71095c9"
+      "7b049ebe33d60b5a56af1200c86cbdb9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -2052,7 +2079,7 @@
         "refinement_interpretation_Tm_refine_948ff553951d7fa3b6aa3bceb324368e"
       ],
       0,
-      "e147ac2f086aeab36bc06cfd945331fe"
+      "0ac380b6450e4d5de358716f3930ba4d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -2067,7 +2094,7 @@
         "refinement_interpretation_Tm_refine_e52b4600b58a10f95ba9a5252b69d191"
       ],
       0,
-      "402b22d4b4dd1360db67259e7e994492"
+      "1804c66223b398b6ae107582f25855e6"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_post",
@@ -2106,7 +2133,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7f3ebda1a285b1512e7ac5688a019be7"
+      "08723deed866999a58390315e12cffb3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_post",
@@ -2119,7 +2146,7 @@
         "refinement_interpretation_Tm_refine_da29c9b9e29d9389ae9376ed75fe59eb"
       ],
       0,
-      "91d1ac53c85a03db18b1a71633fc7151"
+      "8a29a086349d71e9cd1fd7f61361fd40"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_reduce",
@@ -2140,7 +2167,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "9b967047b521d10b82c28a14d20df466"
+      "f4ef000808c05309f2cfb18be29ac57a"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_reduce",
@@ -2171,9 +2198,10 @@
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.barrett_post",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
@@ -2235,7 +2263,8 @@
         "token_correspondence_Core.Convert.f_from",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int64.v", "typing_Lib.IntTypes.v",
+        "typing_FStar.Int64.v", "typing_Lib.IntTypes.bits",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.modulus",
@@ -2248,7 +2277,7 @@
         "typing_tok_Lib.IntTypes.S64@tok"
       ],
       0,
-      "d53bee42c633de34a172103ced4a0fd6"
+      "106c55b6698475cb17642d7733cab3fe"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_reduce",
@@ -2256,96 +2285,20 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S64",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.S64@tok", "equation_Core.Convert.f_from",
-        "equation_Core.Convert.integer_into", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.barrett_post",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_MULTIPLIER",
+        "@MaxIFuel_assumption", "@query",
+        "equality_tok_Lib.IntTypes.S64@tok",
         "equation_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_SHIFT",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.cast",
-        "equation_Rust_primitives.Integers.cast_mod",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.i64",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.op_At_Percent",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_right",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.cast",
-        "equation_Rust_primitives.cast_tc_integers",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_72f48fcc9d60c06731d9c4abb4f9ff9d",
-        "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
-        "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
-        "interpretation_Tm_abs_db8cd405d3f0871788b1d0edf4fda3fa",
-        "lemma_FStar.Int32.vu_inv", "lemma_FStar.Int64.vu_inv",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
+        "equation_Rust_primitives.Integers.v", "int_typing",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Convert.Mkt_From_f_from",
-        "projection_inverse_Rust_primitives.Mkcast_tc_cast",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_81e7ac04fa2afbc21cde2ad84d87ec7b",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "token_correspondence_Core.Convert.f_from",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int64.v", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.modulus",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.S64@tok"
+        "typing_Prims.pow2"
       ],
       0,
-      "ead67240c5d98f47a1b8bd4725b3828e"
+      "70d22e6bd9723b2de2bf49f8916c98dc"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_post",
@@ -2385,7 +2338,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0488a53731e079ea71f22f25fb84fbc6"
+      "4e43fa304ae74e02c3ce6e3a8f7846cf"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_reduce",
@@ -2406,7 +2359,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "88c4d26ae79bec774a468a4ff3c07846"
+      "53a9da61272dab22b1174c8061e31d10"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_reduce",
@@ -2526,7 +2479,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "731f52822869b096bff47f717ad289a8"
+      "c5782a1cd14b9390334d3ea0824ee4a0"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_multiply_sfe_by_fer",
@@ -2534,45 +2487,29 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S32",
+        "@MaxIFuel_assumption", "@query",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
         "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_Addition", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_b852afd5cc42ad4c59e84a5679aed464",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "typing_Prims.pow2"
       ],
       0,
-      "530afe72039738e8170d51489f6d5496"
+      "108a86c6e7b16848285704824faa19f8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_multiply_sfe_by_fer",
@@ -2589,7 +2526,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "d5af988d7e206a1ddb4a3ef460a7e8c1"
+      "e4a16f1477803404911db3de339d119c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_standard_domain",
@@ -2663,7 +2600,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "4166cc120c7a36150947a488e8011039"
+      "c39707c710e0bf0d97db35dbddea8f6b"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_standard_domain",
@@ -2723,7 +2660,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7720994fd87a6b77659123db8c788ed0"
+      "6e7b192b386eddcb7285cef9145a7fb9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative",
@@ -2743,7 +2680,7 @@
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167"
       ],
       0,
-      "96281451a962f9575aad039120e54ded"
+      "e4fa7073e3ba76407d20f258ca99b284"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative",
@@ -2777,9 +2714,9 @@
         "equation_Libcrux.Kem.Kyber.Arithmetic.to_spec_fe",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.BitVectors.bit_num",
         "equation_Rust_primitives.BitVectors.bounded",
         "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.BitVectors.num_bits",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.cast_mod",
@@ -2850,7 +2787,7 @@
         "typing_tok_Lib.IntTypes.U16@tok"
       ],
       0,
-      "db77305ff01764984debd260dad5a7ff"
+      "a85154089022d90bdcbd910ece8c110d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -2888,7 +2825,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5cbcfe99c04ba25a86346a3198156449"
+      "266bfbe663e91bccf21a3bc12cbf01ab"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -2926,7 +2863,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c6f2ad761759226dfe536f3422e92386"
+      "1348d84187f0ae4f110be3aa3d4b6f64"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -2951,7 +2888,7 @@
         "typing_FStar.Int32.t"
       ],
       0,
-      "93f42185e67a52afd42bd06ae91367b4"
+      "d0c85dc7074577170fec9e3b18aabf11"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
@@ -2989,7 +2926,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cbff0de15ff21cf54afe61b95d215866"
+      "ba89f704096f972237846075d1781c71"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
@@ -3027,7 +2964,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "48857a8ec85e3789ac0add31b0357ae3"
+      "d412ece3416ceb88c4a60102d1b5df43"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -3065,7 +3002,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e3f0d4f128373624b427cda0f862583d"
+      "fa4c65e10f80d9f5ec98cc1aa6924a14"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -3103,7 +3040,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "168e2e0521552521503ac9e347cbac1b"
+      "5da6cd663766909d04cd16173d3d9615"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -3131,7 +3068,7 @@
         "typing_FStar.Int32.t", "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b"
       ],
       0,
-      "0c432974af2bc158dfe538538036c4cd"
+      "4aeb512133f7a98129bb88cd1ea27d6d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
@@ -3169,7 +3106,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a8b0a94dd34689acde5f8511b467cc0e"
+      "c17538491eb58185686493d6055781dc"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
@@ -3207,7 +3144,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d00f8ad635c32b9941523c77407b8db1"
+      "093a3281bacc469d648de6930d81dad6"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
@@ -3258,7 +3195,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "32f895d8e2ec541edb4e72f68279eea9"
+      "8b50a4526240a02839b39635e00f11f4"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
@@ -3337,7 +3274,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7ace6fd794f4a755d84a33c9926fd6dc"
+      "6a31d39d5afa685e00ae7913fc9398b0"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
@@ -3461,7 +3398,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "d225d1b893a07de5263ed39566a63dda"
+      "fbe8967d782c56f20ab8534949da8ab9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_vector_b",
@@ -3505,7 +3442,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "afd9554f114b3991057ba65d0d787c45"
+      "a01e5b5eee31aa20ebb6fd6dd2a77791"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_matrix_b",
@@ -3539,7 +3476,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "acbb142718c98eacb70c580d5ebb59f2"
+      "f02f565534eb7a771ffdf8905d469f13"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_matrix_b",
@@ -3583,7 +3520,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "cd311be76645fb4c864407d647b9e20a"
+      "cef8f41b79a11b6b7782771ba6a2055a"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
@@ -3767,7 +3704,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "b811137ab566b15fe555fd57b7f0cffb"
+      "784a0f9e07b5650e0f52020ed400a5c5"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.cast_vector_b",
@@ -3811,7 +3748,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "bdd77febfbef10a2156d86b3367e26ba"
+      "7ac8d713ee8f41b743daeb2e58b3598f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.cast_vector_b",
@@ -3888,7 +3825,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "b2ac5bb7b40bc7c4fd29b5b4c6ecab30"
+      "b5871a9479704ecfedd5d645f12a89ba"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.poly_range",
@@ -3973,16 +3910,10 @@
       1,
       [
         "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
-        "bool_typing", "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equation_Core.Ops.Index.in_range", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equation_Core.Ops.Index.in_range", "equation_Lib.IntTypes.v",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Hax.impl__index",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
@@ -3996,20 +3927,15 @@
         "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "token_correspondence_Core.Ops.Index.in_range",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "c7757f2d71ba503f092209dc7d0d01ea"
+      "7622f2ebcdab087c7ac22c2c38357601"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.down_cast_poly_b",
@@ -4194,7 +4120,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "74ad31bdefcf94090464d5da70566341"
+      "9c953a6415ec2c40834a3c869f1e87a2"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.down_cast_vector_b",
@@ -4238,7 +4164,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "0821e393b82f4cb53bda2644220d5985"
+      "2c3ba86c1c80770abf8221e32820f2ca"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.down_cast_vector_b",
@@ -4317,7 +4243,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "7a6609e272104f0edbf8c440a5c0af56"
+      "c6049b07ec8bbb8f4b8bc37ce04d158f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
@@ -4363,7 +4289,102 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5ad71b58f1d0a5a9add19256470e7bd0"
+      "fa1e81e61e44b6a3b346f76b5367eabe"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Arithmetic.wf_poly_to_spec_poly",
+      1,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lt",
+        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.field_element", "equation_Spec.Kyber.map_",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
+        "int_inversion", "int_typing",
+        "interpretation_Tm_abs_1109ec8a6e71e35977bc79a4f4e881c1",
+        "interpretation_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThan",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Subtraction",
+        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5cc1cca606a548adee39e38a44999096",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
+        "refinement_interpretation_Tm_refine_9a09b8d60f882fd21b3c7c5705154313",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_ae469914d5988438c11021add0845e82",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_d17b88cb161e2dcda7d74cf193d2fcb7",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "refinement_kinding_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "typing_FStar.Seq.Base.index", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.wf_fe_to_spec_fe",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "b9abe5ef3a403d4e30e0e5bbef074dce"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_poly",
@@ -4442,7 +4463,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "6c210f157fbd8c3422ae66f05053ac9a"
+      "03d00959f2d33e8e231b685c50136146"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_poly",
@@ -4517,7 +4538,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "687097300fb30df04a827ec6df0135dc"
+      "9f67d796c46eada117d9bc2cf543bbff"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_vector",
@@ -4530,7 +4551,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "2ebc687f60fd579b104de49684cfd192"
+      "3b01603caf6d7c38c93fbebb2369fc1c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_vector",
@@ -4543,7 +4564,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "0cc941ee109251fd475b95cd1ef70b34"
+      "e36c0046054cbc3e37cb0dd21238f19f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_matrix",
@@ -4556,7 +4577,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "e75a552887d757e2c57a484c56b2c77f"
+      "d0451cb1da5b51e4f903229d12d3c497"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_matrix",
@@ -4569,7 +4590,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "9c3cebd7ebabd180cdc4f5a0ad8e2c9b"
+      "a2ea9e7fc4b758d06597274505efddc3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
@@ -4636,7 +4657,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c508878c2ad4eef2b7e3300c10e69ee3"
+      "714b583f5997da2785db132ff76d6810"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_to_ring_element",
@@ -4677,7 +4698,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "574d73ff3be07757e270cfe5be7b5666"
+      "9af503f79e32486ebdb96e71a9776fe3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_to_ring_element",
@@ -4746,7 +4767,6 @@
         "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
         "lemma_FStar.Seq.Base.lemma_index_upd1",
         "lemma_FStar.Seq.Base.lemma_index_upd2",
-        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -4800,10 +4820,11 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "fe2d3ad411794c2092e385c8766ec441"
+      "cfbc6f1913ce078c058c08b6e570dbe5"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fsti.hints
index 3ce38785..a32c40ed 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Arithmetic.fsti.hints
@@ -1,5 +1,5 @@
 [
-  "�\u001c�x�:��xĨ�\u0006\u0013�",
+  "V���\u00159�\u0014Y��W\u007fjKe",
   [
     [
       "Libcrux.Kem.Kyber.Arithmetic.nat_div_ceil",
@@ -24,7 +24,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "01297ad398c51282483e0a8ba2e424ba"
+      "cb8058fcc815ebfb07bef678c2752d06"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mul_i32_b",
@@ -35,13 +35,13 @@
         "@MaxIFuel_assumption", "@query",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Prims.nat", "int_inversion", "primitive_Prims.op_Minus",
+        "equation_Prims.nat", "primitive_Prims.op_Minus",
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "103275ba39dd176dc43db8b80ebfa0d4"
+      "1ef9e400a21be1bd2bbcf92f05b12330"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_i32_b",
@@ -55,7 +55,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "25bf04c8f0561223612be7b0b98775ce"
+      "dab917937971b3da0f2fbb7c384053f4"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.sub_i32_b",
@@ -69,7 +69,7 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2"
       ],
       0,
-      "24a0bb0f34539ed17314f865b93d0020"
+      "b8af5552c332151172fdc2b31b071b23"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.shr_i32_b",
@@ -81,7 +81,7 @@
         "refinement_interpretation_Tm_refine_1e068ce857e1bf578a12a06697989d54"
       ],
       0,
-      "3056413e4cf0c4ec369c322abec3adb2"
+      "e939d890b754d3cc44dc5799bd91f564"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
@@ -90,7 +90,7 @@
       1,
       [ "@query" ],
       0,
-      "3f44946d03a7d703e8e4ec6c6ae0afab"
+      "e2530c571a04422cf7e3bf621ef95b97"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
@@ -99,7 +99,7 @@
       1,
       [ "@query" ],
       0,
-      "acd1bc3a416c6adab03a32314602f767"
+      "8739bbf985d3a60af13b34fc5559f86e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.int_to_spec_fe",
@@ -154,7 +154,62 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "10658499425bee6a815d56d2f08df182"
+      "d6c937a73b530be9ea229f79d2713bbb"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Arithmetic.wf_fe_to_spec_fe",
+      1,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.v_FIELD_MODULUS", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "80b12bc6f1a32fd0a41b442dd305ff74"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.get_n_least_significant_bits",
@@ -180,7 +235,7 @@
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167"
       ],
       0,
-      "d376838e4acfd3722041bfcaf753d38c"
+      "9ae29d11c59374dd5a079b8923d38748"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_post",
@@ -221,7 +276,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cf824ebbfc45e7cb14cdff455dc4c8fb"
+      "fee476e5244d80d784c3100b3ae67e10"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.barrett_reduce",
@@ -240,7 +295,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "3a8c7807a939f88d3292820b6af62b55"
+      "8d51751639290d27edc6875c3c0ace30"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_post",
@@ -281,7 +336,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7a694d2529b5ec2dc32af94e18d1b0a2"
+      "fdbdb67b9b0a28371408aecd3ca65854"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_reduce",
@@ -301,7 +356,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "ab21a0441b38ecd60d0a1649dd9a669e"
+      "e5fe93f660ba64f9ea5e53ed7f522a36"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.montgomery_multiply_sfe_by_fer",
@@ -309,24 +364,37 @@
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.unsigned",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
+        "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_Addition", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_b852afd5cc42ad4c59e84a5679aed464",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
-        "typing_Prims.pow2"
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "60fc949fe1a08427856ff69952b003ab"
+      "2c0c8517a0fda1c2c1ce7ea2474fc2f5"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_standard_domain",
@@ -388,7 +456,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "f2535e59918b61531ba45d59dce6c1ea"
+      "56be0d2f19aeca6ccd5bbb866e2953a4"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative",
@@ -408,7 +476,7 @@
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167"
       ],
       0,
-      "5cc401d2f781996a940307094b647af1"
+      "033ffaa29ad2dd645cb6f10a9456ad6c"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -446,7 +514,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "33337a68281a3936d8e3614c4b13bb70"
+      "2320f2a95457280fd70eb365e29aee8e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -484,7 +552,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "50a4368041f7f50ab19e5c14b8770444"
+      "d119b525fd7f06fbdb287027dc132ef5"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
@@ -509,7 +577,7 @@
         "typing_FStar.Int32.t"
       ],
       0,
-      "35e6e2f8f84b682abde079dbd3fb86ca"
+      "1e629e6f700221e87104f12c568e0160"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
@@ -547,7 +615,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "84560ec8227cfc652acf302eef511d3f"
+      "b12ba5f00adaedd51a0c29c2519bdd81"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
@@ -585,7 +653,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "91911df1f9a6caff06ff16dc63f4668d"
+      "fd2bac72cce70ed53cf541e4f894a4e9"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -623,7 +691,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "32473d1fc3fe5abfb6b1c5a8ffd4bd44"
+      "ee90d2b037424d4b9878dbe976a39de5"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -661,7 +729,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3bd1611ae456ae9ad6571f97edae32f4"
+      "f5a3758747c5a96d1981ab248a63e2ee"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
@@ -689,7 +757,7 @@
         "typing_FStar.Int32.t", "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b"
       ],
       0,
-      "ffb6d5d613020c00c9bf61b5a2863a10"
+      "9bccc49f187defb0f4d2131e5e6cc3a0"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
@@ -727,7 +795,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8c24004c91c8665d149dcd1e763eff11"
+      "11248effc9d09b705146c3bd18c5aad8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
@@ -765,7 +833,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "73a20dd54474f09681f371af939bfc47"
+      "cb074a5b3c29076668e300483970fb4d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
@@ -816,7 +884,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e0e24ee8e32df73468e23a126bb85c7a"
+      "7e2a1ce079d1fc8363ed8f74263dc05e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
@@ -895,7 +963,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "128e6b361d9c33dfa17d395a2bf24ab5"
+      "df677167f0bb4a396da7f4d9bac0571f"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_vector_b",
@@ -929,7 +997,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4e03df896c726cba833df83c43b2694d"
+      "7824bca05bccc7a755a805718e1fe2a6"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.derefine_matrix_b",
@@ -963,7 +1031,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "40feaf922425f8059e41ff3cd80b4d21"
+      "9118f06211ab0a91e70b3a1c6f22827e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
@@ -1086,7 +1154,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "6447e93bd8915dd979f824d68e804210"
+      "16f079ceca5a91035f2913f4e9d58d71"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.poly_range",
@@ -1207,7 +1275,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8964a3caca88328ec7e635fa61bae670"
+      "63623b4fc5037b3f9bef9d8316a58d98"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.down_cast_poly_b",
@@ -1331,7 +1399,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7da15a5a319526c809d6f329ed3f32e2"
+      "0d3053368f066b6f3f4e7a4ed65cbee3"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
@@ -1377,7 +1445,102 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "70cbc89a9dbe9e16474c56497dcf3f60"
+      "c34acd96896b4f076b3131ce32faf124"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Arithmetic.wf_poly_to_spec_poly",
+      1,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lt",
+        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.field_element", "equation_Spec.Kyber.map_",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
+        "int_inversion", "int_typing",
+        "interpretation_Tm_abs_1109ec8a6e71e35977bc79a4f4e881c1",
+        "interpretation_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThan",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Subtraction",
+        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5cc1cca606a548adee39e38a44999096",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
+        "refinement_interpretation_Tm_refine_9a09b8d60f882fd21b3c7c5705154313",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_ae469914d5988438c11021add0845e82",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_d17b88cb161e2dcda7d74cf193d2fcb7",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "refinement_kinding_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "typing_FStar.Seq.Base.index", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.wf_fe_to_spec_fe",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "ac0fbef5655f90e56ccd9571d00acffb"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_poly",
@@ -1456,7 +1619,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "48cf33adf1e09ef7d2c7a1f87ef222d9"
+      "4bbc2ff7df90fe1bd20a7deac1df0db0"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_poly",
@@ -1531,7 +1694,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c87bfbd3b40ab3c46cabbf26756f11aa"
+      "4dd81aae8bc7e04d4a3fd8a301aeb9af"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_vector",
@@ -1544,7 +1707,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "b4b1b5c629c5ce2a3cbca924c3357e06"
+      "9481cc30994f63c87b853a208c03bff8"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_vector",
@@ -1557,7 +1720,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "5a5610f9ca6d01c2553b26433b992da3"
+      "46df6638900040adf780925aa53d150d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.to_spec_matrix",
@@ -1570,7 +1733,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "3f9690879e3f5c167882512b36086a87"
+      "dc38b92000691d9565bc50bf01f9703e"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.mont_to_spec_matrix",
@@ -1583,7 +1746,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "07233c7a48d353620c10c9994d178f99"
+      "d941d9ce9c2e7924a2fc2636a1166dd1"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
@@ -1650,7 +1813,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "f8959490a01da319d5a771ed8591206e"
+      "25a2d7070e82177050ffde5cb0a3dc8d"
     ],
     [
       "Libcrux.Kem.Kyber.Arithmetic.add_to_ring_element",
@@ -1691,7 +1854,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5efbdc435636eb14b4582ed5949d60d0"
+      "d41baeebbc69b5597b5881b9f0e07065"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fst.hints
index a2cb017d..9dd09573 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fst.hints
@@ -9,6 +9,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Integers_interpretation_Tm_arrow_4ac73db9b2bd1181853b9fcf60c33770",
+        "Rust_primitives.Integers_interpretation_Tm_arrow_7a5d768bded5f8087f971c398655b1d6",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S128",
@@ -25,13 +27,12 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.eqtype",
-        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_FStar.UInt.max_int", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.cast_mod",
         "equation_Rust_primitives.Integers.gte",
@@ -58,6 +59,8 @@
         "equation_Rust_primitives.cast",
         "equation_Rust_primitives.cast_tc_integers",
         "function_token_typing_Prims.int",
+        "function_token_typing_Rust_primitives.Integers.logand",
+        "function_token_typing_Rust_primitives.Integers.shift_right",
         "haseqTm_refine_a6d4eccfb2603ce5e66d6162c32df2b0", "int_inversion",
         "int_typing",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
@@ -79,13 +82,13 @@
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_3d5525dd50da96925771e0566aa2cb99",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_441a659042e0c889f6d2f989d53366ca",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_627e9f1cc724efa294bbc10092665eb4",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_aa4ec56b818d43ab6673ae30be60bfb3",
+        "refinement_interpretation_Tm_refine_b6bcbb06a5db915e32e14484401ff450",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d69050b835e1841692408ef034578471",
@@ -97,12 +100,14 @@
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.logand",
-        "typing_Rust_primitives.Integers.lognot",
+        "typing_Rust_primitives.Integers.logxor",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
+        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.shift_right",
+        "typing_Rust_primitives.Integers.sub",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
@@ -112,7 +117,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "9a13bc10c97ddb98d679a2ac9999f0cc"
+      "580e347df5d51dda6a7b08f047f51a68"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient",
@@ -134,7 +139,7 @@
         "refinement_interpretation_Tm_refine_d52c8280671922ccb8dd394e8746776f"
       ],
       0,
-      "14db1e69b3b2efd4fcd06a5a588a3764"
+      "7ae1d2309907527ebab46a93d21d734d"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient",
@@ -241,7 +246,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "45b28cb73b040b63924af203ad2d0d0f"
+      "1decc7de081c45353c7b292ea459324a"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.decompress_ciphertext_coefficient",
@@ -303,7 +308,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "77a19947ef2029ad4a16bd2569cbc0d6"
+      "4aa74076402a8e991ac97de3ad9d9680"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.decompress_ciphertext_coefficient",
@@ -360,7 +365,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_FStar.Int32.vu_inv", "lemma_FStar.UInt32.vu_inv",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_127",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -379,7 +385,6 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_e477cd5567f25e8e57e00f0185fa1ab0",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_FStar.UInt.fits",
@@ -388,7 +393,6 @@
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.modulus",
-        "typing_Rust_primitives.Integers.mul",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -398,7 +402,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "4e58f59645938724eca35ad10a9904af"
+      "7be2088138a0919bddffb1dc0d5d1ba3"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.decompress_ciphertext_coefficient",
@@ -410,87 +414,42 @@
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
-        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
-        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.BitVectors.bounded",
-        "equation_Rust_primitives.BitVectors.int_t_d",
-        "equation_Rust_primitives.Integers.add",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.UInt.fits",
+        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
+        "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.cast",
-        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.shift_right",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.Int32.vu_inv", "lemma_FStar.UInt32.vu_inv",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_4",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.UInt8.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Division",
-        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThan",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
+        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_1896583600abe7c45780fa9268536bbd",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_FStar.Int.fits", "typing_FStar.UInt.fits",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.modulus",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_FStar.UInt.fits", "typing_Lib.IntTypes.bits",
+        "typing_Lib.IntTypes.v", "typing_tok_Lib.IntTypes.PUB@tok",
+        "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "5c6e16947678ad8183f2eb2535fa6537"
+      "b3ff2dee5083b5062fe010dc226b7bb5"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.decompress_message_coefficient",
@@ -509,9 +468,10 @@
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -531,8 +491,8 @@
         "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.Integers.zero", "int_inversion",
-        "int_typing", "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
+        "equation_Rust_primitives.Integers.zero", "int_typing",
+        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -560,7 +520,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "93ba2fc92d5526bb3729443c341f523e"
+      "0601f98bd1d2dbd42b52911b63b5a525"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fsti.hints
index 60f28b9c..871c3d76 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Compress.fsti.hints
@@ -21,7 +21,7 @@
         "refinement_interpretation_Tm_refine_d52c8280671922ccb8dd394e8746776f"
       ],
       0,
-      "4e6b444d3b7e8e928fa12ba1a1286ecd"
+      "4bfb94d2c2c5190b0cf19feba82a11e0"
     ],
     [
       "Libcrux.Kem.Kyber.Compress.decompress_ciphertext_coefficient",
@@ -85,7 +85,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "187d178c2877ab9c3b3e2d89ca0c6709"
+      "437e506c37e8cdd162c63f4b9fcdd6bc"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fst.hints
index 385db763..2ef2c16f 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fst.hints
@@ -84,6 +84,8 @@
         "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
         "typing_FStar.UInt8.t", "typing_Prims.pow2",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.cast_mod",
+        "typing_Rust_primitives.Integers.lognot",
         "typing_Rust_primitives.Integers.maxint",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
@@ -96,7 +98,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "bc417ca8e8a7d928f5138881eb800548"
+      "f5aaac81393bd85c4059b07d98f65cad"
     ],
     [
       "Libcrux.Kem.Kyber.Constant_time_ops.compare_ciphertexts_in_constant_time",
@@ -120,7 +122,7 @@
         "typing_FStar.UInt8.t"
       ],
       0,
-      "59dbebc2615dc38c2c0279d74e341efc"
+      "1361205da7d6b4370b287a152b2d03fd"
     ],
     [
       "Libcrux.Kem.Kyber.Constant_time_ops.compare_ciphertexts_in_constant_time",
@@ -144,12 +146,11 @@
         "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
         "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.eqtype", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.eqtype",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
@@ -159,7 +160,6 @@
         "equation_Rust_primitives.Integers.lt",
         "equation_Rust_primitives.Integers.lte",
         "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -223,6 +223,7 @@
         "typing_FStar.Seq.Base.length", "typing_FStar.Seq.Base.slice",
         "typing_FStar.UInt.fits", "typing_FStar.UInt8.t",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.lt",
         "typing_Rust_primitives.Integers.minint",
@@ -233,7 +234,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "ab82d074731dd60693ecc4589f0b83a6"
+      "2c9755918d3bb96ec9655e497fcec71a"
     ],
     [
       "Libcrux.Kem.Kyber.Constant_time_ops.select_shared_secret_in_constant_time",
@@ -282,7 +283,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f0e0c12b79b791710fc35136896180c7"
+      "45fd18e7a9a42672ad461f36b5c75f84"
     ],
     [
       "Libcrux.Kem.Kyber.Constant_time_ops.select_shared_secret_in_constant_time",
@@ -303,7 +304,6 @@
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U16@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
@@ -391,7 +391,7 @@
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_25c72d704900d626b30894312c325451",
+        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
         "refinement_interpretation_Tm_refine_3e451401036abbbcd0e047b54d5d14fc",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
         "refinement_interpretation_Tm_refine_45d042023a6c411a073523e2875322ee",
@@ -419,14 +419,15 @@
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Core.Ops.op_Tilde_Dot",
-        "typing_FStar.Seq.Base.length", "typing_FStar.UInt.fits",
-        "typing_FStar.UInt16.v", "typing_FStar.UInt8.t",
-        "typing_FStar.UInt8.uint_to_t", "typing_Lib.IntTypes.bits",
+        "typing_FStar.Int.fits", "typing_FStar.Seq.Base.length",
+        "typing_FStar.UInt.fits", "typing_FStar.UInt16.v",
+        "typing_FStar.UInt8.t", "typing_Lib.IntTypes.bits",
         "typing_Lib.IntTypes.maxint", "typing_Lib.IntTypes.minint",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constant_time_ops.is_non_zero",
         "typing_Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
         "typing_Prims.pow2", "typing_Rust_primitives.Hax.repeat",
+        "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.lt",
@@ -437,12 +438,12 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U16@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U16@tok",
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
+        "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "ada2e0df6ee0135ccc977606f5c96ab4"
+      "3d17d99c2f133d71577825cc346e8291"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fsti.hints
index 118f78f3..d113ce53 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constant_time_ops.fsti.hints
@@ -23,7 +23,7 @@
         "typing_FStar.UInt8.t"
       ],
       0,
-      "37ca4f977a5be8bedd3a755f659cdf4d"
+      "55e9c8a00a0e328bc514c3d90be9aa60"
     ],
     [
       "Libcrux.Kem.Kyber.Constant_time_ops.select_shared_secret_in_constant_time",
@@ -72,7 +72,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a276b4eba673a5f0c2570d0c2e5e35cc"
+      "3b8d829478a3939959c6e542cecbd5df"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constants.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constants.fsti.hints
index 8182b398..341c6e96 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constants.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Constants.fsti.hints
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cd55d763bf35d6201491f6ba83117133"
+      "9762043eab21e782d058b2ea520da9d3"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
@@ -75,7 +75,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a0d1aa74fa55e8e7123b58fbf3534cb3"
+      "d5a62700445881b5a98a31ed66cd9220"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
@@ -120,7 +120,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f2781672e7dc9d8a8b5452a4f65b3981"
+      "b62759ef5d138f74b7dda5615f1b1c39"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
@@ -163,7 +163,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "86f1671a6db23ac5c9405747cdd89af0"
+      "170e51abceca7a7cfeaf97c06fa36790"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
@@ -201,7 +201,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "b6821c6c135dbcf19d8afcbd501b519c"
+      "26b367ec269e3cecb18129e9ff7bf658"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
@@ -239,7 +239,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "73c133b455d89fe11981a3ef46673d53"
+      "bf10bec3940035737c27f06bf3853be0"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_REJECTION_SAMPLING_SEED_SIZE",
@@ -283,7 +283,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "75a4c9c799e821a9926365fa73c5115b"
+      "f2f8d985df366c2a60de161c5192ea72"
     ],
     [
       "Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
@@ -321,7 +321,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "245d8b7a5fc678931a1c52fb5a6618d9"
+      "290844e6c6b59dc88d5abfd3ac38b2e2"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fst.hints
index 8587f90c..58e2e766 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fst.hints
@@ -1,5 +1,5 @@
 [
-  "�s�^D'�+��$\u0005$�ӿ",
+  "\u0019�^�L���\u0004<�\u000b\u0000�E",
   [
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_G",
@@ -38,7 +38,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f903dde1194a19eb8f58aad69d38e28d"
+      "94d8ac92e13f2f77c9672a5597b44618"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_G",
@@ -76,7 +76,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c294982b143142880515113a584f47a8"
+      "8485c9de3ba8702701f4baf3b0dca0d9"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_H",
@@ -115,7 +115,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "254ff6580d8a9cc20246f1725a34b37a"
+      "d1280e60adcea4d9048ef9e3a0f68f71"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_H",
@@ -153,7 +153,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "37cfc7388d840e80135794d8b491930f"
+      "3e480b42b16185bdef0a5df2631c6b5e"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_XOFx4",
@@ -164,10 +164,10 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
@@ -175,8 +175,10 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -184,27 +186,32 @@
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_08498cea04a0f3a2ce07b51f7fb25503",
         "refinement_interpretation_Tm_refine_2fd4771e88c092fc7448eea81fa77811",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "c0526891dbd1d762087bbb1beb3a9954"
+      "e72130c80e704f274f76cd0f149298ac"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_XOFx4",
@@ -214,7 +221,6 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Prims_pretyping_f537159ed795b314b4e58c260361ae86", "b2t_def",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -237,9 +243,11 @@
         "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
         "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Arrays.length",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Hax.impl__index",
         "equation_Rust_primitives.Integers.bits",
@@ -259,9 +267,8 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
         "equation_Rust_primitives.cast",
-        "equation_Rust_primitives.cast_tc_integers",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing",
+        "equation_Rust_primitives.cast_tc_integers", "int_inversion",
+        "int_typing",
         "interpretation_Tm_abs_29c790849abcf444c15b4351363d1b40",
         "interpretation_Tm_abs_412e363c41d2c7d31f96c2685c7138f2",
         "interpretation_Tm_abs_43f231abb4a58902146ee87bdacad696",
@@ -275,8 +282,7 @@
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_GreaterThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_GreaterThanOrEqual",
         "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Modulus", "primitive_Prims.op_Negation",
         "primitive_Prims.op_Subtraction",
@@ -309,8 +315,8 @@
         "token_correspondence_Core.Ops.op_Tilde_Dot",
         "token_correspondence_Prims.op_Negation",
         "token_correspondence_Rust_primitives.cast",
-        "typing_FStar.UInt.fits", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_FStar.UInt.fits", "typing_Lib.IntTypes.pub_int_v",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.modulus",
@@ -322,7 +328,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "50ae8f48857befd1e307f8ac52daea1a"
+      "f2d06f81e65db4aad88114458b0891ef"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_XOFx4",
@@ -332,87 +338,43 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_f537159ed795b314b4e58c260361ae86", "b2t_def",
-        "bool_inversion", "bool_typing",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equation_Core.Iter.Traits.Collect.f_into_iter",
-        "equation_Core.Ops.Index.in_range",
-        "equation_Core.Ops.Range.iterator_range",
-        "equation_Core.Ops.negation_for_bool",
-        "equation_Core.Ops.op_Tilde_Dot", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Hax.impl__index",
-        "equation_Rust_primitives.Integers.bits",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "interpretation_Tm_abs_29c790849abcf444c15b4351363d1b40",
-        "interpretation_Tm_abs_412e363c41d2c7d31f96c2685c7138f2",
-        "interpretation_Tm_abs_43f231abb4a58902146ee87bdacad696",
-        "interpretation_Tm_abs_4da4c2420140680c2bf4358d0bc52b3f",
-        "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
-        "interpretation_Tm_abs_d027d0a4a67962b5384e61b6f46c3b21",
-        "l_and-interp", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Negation", "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Iter.Traits.Iterator.Mkiterator_f_Item",
-        "proj_equation_Core.Iter.Traits.Iterator.Mkiterator_f_contains",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Iter.Traits.Collect.Mkinto_iterator_f_IntoIter",
-        "projection_inverse_Core.Iter.Traits.Collect.Mkinto_iterator_f_into_iter",
-        "projection_inverse_Core.Iter.Traits.Iterator.Mkiterator_f_Item",
-        "projection_inverse_Core.Iter.Traits.Iterator.Mkiterator_f_contains",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
-        "projection_inverse_Core.Ops.Mknegation_tc_op_Tilde_Dot",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "refinement_interpretation_Tm_refine_08126773a0ec43652fb7d75527aeafb2",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_08498cea04a0f3a2ce07b51f7fb25503",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "token_correspondence_Core.Iter.Traits.Collect.f_into_iter",
-        "token_correspondence_Core.Iter.Traits.Iterator.__proj__Mkiterator__item__f_contains",
-        "token_correspondence_Core.Ops.Index.in_range",
-        "token_correspondence_Core.Ops.op_Tilde_Dot",
-        "token_correspondence_Prims.op_Negation", "typing_Lib.IntTypes.v",
+        "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3c65b82758866123e527b49708301225"
+      "510c76e929cede1be3f3c087c9b6f8a6"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fsti.hints
index 4df967cf..572d5656 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Hash_functions.fsti.hints
@@ -38,7 +38,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3b38e5dff49343ecb478aee650fc44e0"
+      "54fa6d553c47b94081b9ba22a4aa3a0c"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_H",
@@ -77,7 +77,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "1ca78024596c7532ead28a2eebf4deaa"
+      "1454a4c360a82ba2990c64fe2c727d06"
     ],
     [
       "Libcrux.Kem.Kyber.Hash_functions.v_XOFx4",
@@ -88,10 +88,10 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
@@ -99,8 +99,10 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -108,27 +110,32 @@
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_08498cea04a0f3a2ce07b51f7fb25503",
         "refinement_interpretation_Tm_refine_2fd4771e88c092fc7448eea81fa77811",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "7f4df5bc894d0fab7f174fd9505829e9"
+      "dcb8c5a113fa7cdf0a31321f02eaee0d"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fst.hints
index 33ba90f6..5dda4091 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fst.hints
@@ -47,7 +47,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "da43ca89a092c69433fe709d734b913e"
+      "4d23ad6ec1514aef095a2623a87647e1"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.into_padded_array",
@@ -140,7 +140,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "625715c3c2edc11e162a2d6fc0fca42d"
+      "3c8290c69164c2ab3fa5be025e8b1ff9"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.acc_t",
@@ -181,7 +181,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "af9659a98e7ca158daab74e0c97c3411"
+      "cffeb995ce316338a954cd49954be6f1"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.wfZero",
@@ -193,7 +193,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a0b5f3a76f65ea4ba8673cf5a6f64ce2"
+      "3bbb28cbf0abdcff08a4e270b3611bd4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.etaZero",
@@ -219,7 +219,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6c5009fbb05119d197852906d3485d20"
+      "9af167bd2484fc6b49f79ef0361f66b6"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
@@ -303,7 +303,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "6073a68f2aa57e3be8ef24b9960041c8"
+      "76691f001a255ab6b0b5645883cad252"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
@@ -413,7 +413,7 @@
         "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "f4e91cb6a22eb7840d5fa16e2eb65c16"
+      "e3e561f43a78a7cabd69752ae3122daa"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
@@ -423,107 +423,34 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple3",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Core.Slice.impl__len",
-        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
-        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
-        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.gte",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.u8_inttype",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_FStar.Pervasives.Native.tuple3",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__2",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__3",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_303f3ed7da7fa515960d4d09b7f6f790",
-        "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.UInt8.t", "typing_Lib.IntTypes.bits",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.gte",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c5ac1a280db4a9677338f0a82a8be4fd"
+      "c615893ec5ffc71e01510cb38e463ad2"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd_then_ntt",
@@ -533,7 +460,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
+        "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -551,12 +479,13 @@
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
@@ -572,8 +501,9 @@
         "equation_Rust_primitives.Integers.v",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_FStar.Int32.vu_inv",
+        "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Prims.__cache_version_number__",
+        "int_inversion", "int_typing", "lemma_FStar.Int32.vu_inv",
         "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -584,6 +514,7 @@
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_6429d8e304d352f05a83669146e6cacf",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
@@ -592,8 +523,7 @@
         "refinement_interpretation_Tm_refine_d4027175170ef1ba257f27664168c6e2",
         "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -603,7 +533,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "07879433e5e3784d3789399838f33b6a"
+      "1e5803cf6abc13ca85e4169de15a82f4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd_then_ntt",
@@ -624,7 +554,6 @@
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "data_elim_FStar.Pervasives.Native.Mktuple3",
-        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
@@ -646,7 +575,6 @@
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.gte",
-        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lt",
@@ -667,7 +595,6 @@
         "equation_Spec.Kyber.v_ETA1_RANDOMNESS_SIZE",
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_FStar.Pervasives.Native.tuple3",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
         "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
         "int_typing",
         "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
@@ -701,7 +628,6 @@
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d9709c468a55d1c148eb4fc0d0233e6f",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
@@ -709,22 +635,18 @@
         "token_correspondence_Rust_primitives.unsize",
         "typing_FStar.UInt.fits", "typing_FStar.UInt8.t",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_ETA2",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "dd69684c17b895d3b6519df29c252efd"
+      "e55fc4399558864823ce4dacc3f1cfe3"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd_then_ntt",
@@ -734,9 +656,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -744,106 +664,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple3",
-        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Core.Slice.impl__len",
-        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
-        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
-        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
-        "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.gte",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.u8_inttype",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_ETA1_RANDOMNESS_SIZE",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_FStar.Pervasives.Native.tuple3",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
-        "int_typing",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__2",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__3",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "refinement_interpretation_Tm_refine_303f3ed7da7fa515960d4d09b7f6f790",
-        "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_6429d8e304d352f05a83669146e6cacf",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d9709c468a55d1c148eb4fc0d0233e6f",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
-        "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.UInt.fits", "typing_FStar.UInt8.t",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.gte",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0e8f83ac826b666af7ee802cef99d55c"
+      "1e4cff0201e9deb7894cf3ac78d60009"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.compress_then_serialize_u",
@@ -907,7 +748,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e778ac7a69fa85166ddfb35f37663352"
+      "c0ce452d8e09e4e84c2383d4b0eb9c79"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.compress_then_serialize_u",
@@ -977,7 +818,10 @@
         "equation_Rust_primitives.array_to_slice_unsize",
         "equation_Rust_primitives.unsize", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.valid_params",
+        "equation_Spec.Kyber.v_C1_SIZE",
+        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
+        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Prims.__cache_version_number__",
@@ -1035,12 +879,13 @@
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
+        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "80625b900ed599dfa9595932c9edf4eb"
+      "24e2ba666da39f317f2339d6ecc00d49"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1090,7 +935,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "70ac600a2715913f7fa995edd348de64"
+      "b9147adbe5c0ce257630f92b7920c085"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1104,7 +949,7 @@
         "refinement_interpretation_Tm_refine_257ddf45d97229b8c327236723913127"
       ],
       0,
-      "d59301300b664a2146104d72a3517c97"
+      "f822cc58e6376a9a1a2fcf97f82cd5df"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1125,7 +970,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fab06f39e39fd72b76f0a4c3e70f4bfa"
+      "4a900db89b75677a1b6f4297ff0adf7c"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1146,7 +991,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6b4c142aac1bf62ea7e132dbe14de3b6"
+      "32c1c20993552a264931089954e6c722"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1183,7 +1028,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "9ab29f28b97ba50a3b642ab662cff3e1"
+      "851ba6e8f9d2caa7650dc50bb92f7859"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1217,7 +1062,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "191c2feb4b1f3a0dc085fcbbc95fd457"
+      "5040b47855deabe98af7707eaf8e0055"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1273,7 +1118,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "8613bd5dd45bc2209fcfc18aa2e879a7"
+      "be94fb6ccc17ccf5e42c376db9571a14"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1282,8 +1127,7 @@
       1,
       [
         "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
-        "bool_typing", "constructor_distinct_Lib.IntTypes.S32",
-        "equality_tok_Lib.IntTypes.U8@tok",
+        "bool_typing", "equality_tok_Lib.IntTypes.U8@tok",
         "equation_Core.Ops.Index.f_index",
         "equation_Core.Ops.Index.in_range",
         "equation_Core.Ops.Range.impl_index_range_to_slice",
@@ -1353,7 +1197,7 @@
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE"
       ],
       0,
-      "3b2192d4f3014e2bad131b9ada257e07"
+      "855904a21f7b22b384d2ad9108b48fd4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1372,11 +1216,15 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
@@ -1385,28 +1233,35 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
+        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
+        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
+        "equation_Spec.Kyber.valid_params",
+        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
+        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
         "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bf40e610c32e14a3d663fc274afbf5a9",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Spec.Kyber.v_C1_BLOCK_SIZE",
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
+        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
+        "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "d76e1a1ff6c0b0fd05d1e95083985e07"
+      "556cc14d144bc2038e7413240fc7552e"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1446,7 +1301,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "159c48570ff8965fbc89413a97fa91e1"
+      "5448a2b7f23ed3bac80647aa09c104d5"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1496,7 +1351,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "aeaabaa0a402e0501270a2bff4ba78db"
+      "2e3b3b2598197a52b329988da65bf221"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1551,7 +1406,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "716f9ce887cd2b527b0ebcc1e75208f6"
+      "66e0ba97d0265ae13a9a0bff896d9e3d"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1570,13 +1425,15 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.div",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
@@ -1589,7 +1446,7 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.valid_params", "int_inversion", "int_typing",
+        "equation_Spec.Kyber.valid_params", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
@@ -1601,23 +1458,23 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bf40e610c32e14a3d663fc274afbf5a9",
         "refinement_interpretation_Tm_refine_d8836626372248741cc7d6582bd93782",
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "5e478a595818edce1130d086a451564f"
+      "92155b051e9f8ef5a15ef0e31852177d"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1630,7 +1487,7 @@
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5"
       ],
       0,
-      "0bab061f84e44e1a2c91dcf94b6e9771"
+      "c42cdbdc555d0709906d05c639e1675c"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1650,15 +1507,13 @@
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok",
         "equation_Core.Ops.Range.impl_index_range_to_slice",
         "equation_Core.Ops.Range.impl_range_to_index_array",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Prims.nonzero",
-        "equation_Rust_primitives.Arrays.length",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
@@ -1667,7 +1522,6 @@
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
@@ -1676,7 +1530,7 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.valid_params",
+        "equation_Spec.Kyber.v_C2_SIZE", "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Prims.__cache_version_number__",
         "function_token_typing_Rust_primitives.Integers.u8", "int_inversion",
@@ -1688,16 +1542,17 @@
         "primitive_Prims.op_Subtraction",
         "proj_equation_Core.Ops.Index.Mkt_Index_f_Output",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_Core.Ops.Index.Mkt_Index_f_Output",
-        "refinement_interpretation_Tm_refine_0766302b68bb44ab7aff8c4d8be0b46f",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_157e850f1e9d871f026114e5e258ee5b",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_2e68eda577cdf0178587ec036ef9d838",
         "refinement_interpretation_Tm_refine_3c4cd2150cd81734c22bec1482ed9b1e",
+        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_5a8283617c705d6efb56e42ade090de5",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
@@ -1705,7 +1560,6 @@
         "refinement_interpretation_Tm_refine_bf40e610c32e14a3d663fc274afbf5a9",
         "refinement_interpretation_Tm_refine_d657049734f4b26ad593ec14b9cdd5b3",
         "refinement_interpretation_Tm_refine_d8836626372248741cc7d6582bd93782",
-        "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_FStar.Seq.Base.length",
         "typing_Rust_primitives.Integers.bits",
@@ -1713,11 +1567,11 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_Spec.Kyber.v_C2_SIZE", "typing_Spec.Kyber.valid_params",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "4fe56364588bd70ee1e1414a9aab6396"
+      "7c8e4a1fb0082fbe3203368cd9f3bdd4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1729,7 +1583,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "4bf2338cb530bd7f552e73bd8084f89c"
+      "6bb4f8237ae77bf810dd87849b09aa29"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1738,7 +1592,7 @@
       1,
       [ "@query", "b2t_def" ],
       0,
-      "e0fb936e8aaaae828bf1a95fa5f51596"
+      "0981223244a1c37930efedab4dd9d45c"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1781,7 +1635,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "04d8e76b32aef519dace6cb2d3349899"
+      "645269e3f2f511ea91b9225f543e67b2"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1794,7 +1648,7 @@
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5"
       ],
       0,
-      "75ba0ba598af487f48740c81234fdbe0"
+      "1ceed2ad16d94fd29fd49c871710f9aa"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1806,6 +1660,7 @@
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
@@ -1816,14 +1671,11 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.nonzero", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.gte",
+        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
@@ -1837,13 +1689,12 @@
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
         "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
         "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_0766302b68bb44ab7aff8c4d8be0b46f",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -1857,7 +1708,9 @@
         "refinement_interpretation_Tm_refine_d8836626372248741cc7d6582bd93782",
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
+        "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
@@ -1865,7 +1718,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "1033042ab07b08e6ec2682aacc734473"
+      "82484985026d9366777478e8dd8e4486"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1879,7 +1732,7 @@
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5"
       ],
       0,
-      "31824a62b7deffa7162fa71cc7dfbf7b"
+      "575789cef6b5d083062e8d8f714aa738"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1894,7 +1747,7 @@
         "typing_Rust_primitives.Hax.repeat"
       ],
       0,
-      "8cef6c517759f37920b8f2410a9eefd8"
+      "52862c1247ac9e23b339260939eb6fd5"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -1908,22 +1761,82 @@
         "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5"
       ],
       0,
-      "f389ffebfcac401ff70921fadc8c9ec6"
+      "3d642ffcd10f41b93d9c22caff0a469f"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
       24,
       0,
       1,
-      [ "@query" ],
-      0,
-      "081f9498286ff0847504465cb74d0380"
-    ],
-    [
+      [
+        "@MaxIFuel_assumption", "@query", "equation_Prims.pos",
+        "refinement_interpretation_Tm_refine_123d3f2a6ebc208c38f7459190d0bed8",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5",
+        "refinement_interpretation_Tm_refine_fc6288bfb0b62302ffeb8e7a6904ca9c"
+      ],
+      0,
+      "8dd95e68061238f604c59c44622d0a12"
+    ],
+    [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
       25,
       0,
       1,
+      [
+        "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
+        "equation_Prims.pos", "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Modulus", "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_e33ef3e91a65929af022db19081d1ff5",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "935e6103b90edd0828f5a0da45159237"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
+      26,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "b2t_def",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.div",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.u8",
+        "primitive_Prims.op_LessThan", "projection_inverse_BoxBool_proj_0",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_123d3f2a6ebc208c38f7459190d0bed8",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_5f17bcf83b3fb372e54fdcee35f86e1f"
+      ],
+      0,
+      "c600a7928d3c84cc7b5e28f32ebdaa34"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
+      27,
+      0,
+      1,
+      [ "@query" ],
+      0,
+      "f1a685029689c45400bcb149319ebc3c"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
+      28,
+      0,
+      1,
       [
         "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
         "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.maxint",
@@ -1952,11 +1865,11 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "d3a99c24cd635f28f1e409af07ac0b8d"
+      "ee0760d0f0498432ef76a9f99387e13e"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      26,
+      29,
       0,
       1,
       [
@@ -1979,6 +1892,8 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.valid_params",
+        "function_token_typing_Rust_primitives.Integers.u8",
+        "function_token_typing_Rust_primitives.Integers.usize",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
@@ -1988,7 +1903,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_102e3e2ffae46eb544d4497226c91fb5",
         "refinement_interpretation_Tm_refine_123d3f2a6ebc208c38f7459190d0bed8",
-        "refinement_interpretation_Tm_refine_5793a44a550e77acd1321e067ab7e8d8",
+        "refinement_interpretation_Tm_refine_262d24f71da14fa26e5d80576ff35b6d",
         "refinement_interpretation_Tm_refine_5a8283617c705d6efb56e42ade090de5",
         "refinement_interpretation_Tm_refine_5f17bcf83b3fb372e54fdcee35f86e1f",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
@@ -1998,18 +1913,21 @@
         "refinement_interpretation_Tm_refine_e2e762f87b9fab3208089befe760c551",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e9fd75cceaaeb3c4516e200cfb4bee15",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
+        "refinement_interpretation_Tm_refine_ebcd6d395397cc299dbfc3b9e02b1ea8",
+        "typing_FStar.Pervasives.Native.fst", "typing_Lib.IntTypes.v",
+        "typing_Rust_primitives.Arrays.t_Array",
+        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "212122fc98638ab7cd623408fe84cf17"
+      "ac7873cbdc8374e42ccc8217640a0a12"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      27,
+      30,
       0,
       1,
       [
@@ -2036,11 +1954,11 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "ab78e0777fae5443a81370c7b3bb9088"
+      "0067354ef7c6cae4b30a6a886a951488"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      28,
+      31,
       0,
       1,
       [
@@ -2058,11 +1976,11 @@
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE"
       ],
       0,
-      "d6431369c3746572740895b8f7559ec0"
+      "85df4b3819bd2eaf46a7ffe5ec430b08"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      29,
+      32,
       0,
       1,
       [
@@ -2080,11 +1998,11 @@
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE"
       ],
       0,
-      "d11c111c2a82bf5fcf296682133fe7ba"
+      "c11dd52721f90db9131a576fc8a3f46a"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      30,
+      33,
       0,
       1,
       [
@@ -2135,11 +2053,11 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "da46d49c2488ab5eba319b71497f3e78"
+      "c03c9818fc2cf737e6541b50c75eb5c7"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      31,
+      34,
       0,
       1,
       [
@@ -2160,11 +2078,11 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "c8a5a295324d1c88ef01b142067d014b"
+      "610739c89e73a2647f6fad677754a463"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      32,
+      35,
       0,
       1,
       [
@@ -2177,11 +2095,11 @@
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688"
       ],
       0,
-      "ed8fbee28890b3955cd5862b17fe6e69"
+      "71c1f748cb15682cc6d7af5effa79eec"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      33,
+      36,
       0,
       1,
       [
@@ -2192,16 +2110,16 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_123d3f2a6ebc208c38f7459190d0bed8",
-        "refinement_interpretation_Tm_refine_5793a44a550e77acd1321e067ab7e8d8",
         "refinement_interpretation_Tm_refine_6c05b962c93007578b1f366e509d39dd",
-        "refinement_interpretation_Tm_refine_e2e762f87b9fab3208089befe760c551"
+        "refinement_interpretation_Tm_refine_e2e762f87b9fab3208089befe760c551",
+        "refinement_interpretation_Tm_refine_ebcd6d395397cc299dbfc3b9e02b1ea8"
       ],
       0,
-      "21bfa797972e9740b7fb6682f39c4479"
+      "b961b68a304e03d87c3b1ca5c5670f7d"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      34,
+      37,
       0,
       1,
       [
@@ -2224,11 +2142,11 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "035b41aa417e52072419a82e20cd146b"
+      "c8f8312ead85e66ad2c1239df3b39cfa"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      35,
+      38,
       0,
       1,
       [
@@ -2240,11 +2158,11 @@
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
       ],
       0,
-      "7ae020fb05f75527dd193ba3a757cbfc"
+      "ce2d893fa2c9f7583b77b38cd5d7a203"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      36,
+      39,
       0,
       1,
       [
@@ -2263,11 +2181,11 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "8a9cefbf0be51983c32615bfa232a789"
+      "130f9af2030693e0fa085e873808ddbf"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      37,
+      40,
       0,
       1,
       [
@@ -2275,19 +2193,19 @@
         "refinement_interpretation_Tm_refine_1780e3e3423d75725ae206b5df95a0a6"
       ],
       0,
-      "ba0315fca2cfba34e366e44edf0c4bd8"
+      "a4d4783e8adc34468067a701ac725079"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
-      38,
+      41,
       0,
       1,
       [
         "@MaxIFuel_assumption", "@query",
-        "refinement_interpretation_Tm_refine_bb4a6fcea4effb263c4c9aec6fa6b2f7"
+        "refinement_interpretation_Tm_refine_93fb9e1bf1ae5c8bee720bcd2dbb8bc9"
       ],
       0,
-      "0867b757b967805316cd7438f66d3620"
+      "85be3caf409b5306422673189a8492d9"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_public_key",
@@ -2297,22 +2215,26 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S32",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -2322,32 +2244,35 @@
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Prims.__cache_version_number__", "int_typing",
+        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
         "lemma_FStar.Int32.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
+        "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_5c7a8ecadec3819edb097b2d5f1a6d30",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.unsigned",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "typing_Spec.Kyber.valid_params"
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
+        "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "497143b5d457a91e0daa084966d2ed2e"
+      "13485117687adeb15038d989eca5ace4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_public_key",
@@ -2357,8 +2282,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
+        "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
@@ -2368,28 +2292,23 @@
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Pervasives.Native.fst", "equation_Lib.IntTypes.bits",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_FStar.Pervasives.Native.fst",
+        "equation_FStar.UInt.max_int", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.div",
-        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
@@ -2410,38 +2329,37 @@
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
-        "int_inversion", "int_typing", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.v_injective",
+        "function_token_typing_Rust_primitives.Integers.usize",
+        "int_inversion", "int_typing", "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_Division",
         "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_FStar.Pervasives.Native.Mktuple2__1",
         "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_feb7e834582289fbd89a200bfbc499b9",
-        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
+        "refinement_interpretation_Tm_refine_f370b7bc691b475fe8729dc511b40eb1",
+        "typing_FStar.Pervasives.Native.fst", "typing_FStar.Seq.Base.length",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Libcrux.Kem.Kyber.Ind_cpa.wfZero",
+        "typing_Rust_primitives.Arrays.t_Array",
         "typing_Rust_primitives.Hax.repeat",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -2449,11 +2367,10 @@
         "typing_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "b9a0647fb76acc77386b4333bd0c235d"
+      "92559814b3dfbc87e886af464b92a581"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_public_key",
@@ -2461,28 +2378,23 @@
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
+        "@MaxIFuel_assumption", "@query",
         "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE"
       ],
       0,
-      "40c54474e13b3239cd5eb2ae973fa930"
+      "b21c167b7aab7984641131f65595fcb5"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2532,7 +2444,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "ba0bf8947cac02d6bc2c8707d4eaee86"
+      "79202ae1eb1a068f4527118879bf17aa"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2546,7 +2458,7 @@
         "refinement_interpretation_Tm_refine_04d1a41375cb265cfbd8785ad22877c0"
       ],
       0,
-      "d03400f0db79a6cae8deb9fe72bce567"
+      "3cea211e8cd3f102d3f4d1c321931874"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2583,7 +2495,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cbc7150b7a0abfe387db7849b3cff87b"
+      "19abc59e8d5964839d708f45ef8b91e9"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2637,7 +2549,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "2ff4f68bbeaaf86c1c21dc6ebf75c7d2"
+      "f55dfa18dedfe5eeaf8b25f9e72030f2"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2649,7 +2561,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "22dcb1fe112d7636820641a354b54e76"
+      "d27ec3313777bf5fe65265ab0ca45907"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2658,7 +2570,7 @@
       1,
       [ "@query", "b2t_def" ],
       0,
-      "d7812957ccc2a4a4755995101c642432"
+      "be6b77e22ca7526a96ebf86b43dd9591"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2695,7 +2607,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ab85f4b771b5ef611553ff86e9a9ef15"
+      "e2bde24e142e52f4e97e966abd069bb0"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2718,9 +2630,9 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
         "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -2738,10 +2650,9 @@
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
@@ -2750,7 +2661,6 @@
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_3c2321b362f4959d6b365af065dec404",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_80fe7060a0bda510a663a8a75b424076",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
@@ -2759,6 +2669,7 @@
         "refinement_interpretation_Tm_refine_b1f6a4be83d420945bc389bb80ce5827",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec",
+        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_Lib.IntTypes.v",
@@ -2768,11 +2679,12 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "263fe5e7c22a4b896190cbfe943c12d9"
+      "27402fc30d3e98b5baeba80c654f2fae"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2784,7 +2696,7 @@
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec"
       ],
       0,
-      "2b81f27201ddfa07ea4aafd15f1057e4"
+      "62942767c23afe003d6e1a668fe854ec"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2799,7 +2711,7 @@
         "typing_Rust_primitives.Hax.repeat"
       ],
       0,
-      "ec39ff3dd30b473d2a2018b6b65e8f9e"
+      "2a15471d962418f533d1f9a897867454"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2811,16 +2723,20 @@
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec"
       ],
       0,
-      "4fab31c8e7ae47628500b187114450bc"
+      "095d5620739e5c6077448c206f148b0a"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
       12,
       0,
       1,
-      [ "@query" ],
+      [
+        "@MaxIFuel_assumption", "@query", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_2d6483de55b07bdeb440f10d9eb4d60c",
+        "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec"
+      ],
       0,
-      "6f2cba6e7395944de205511c2847e33d"
+      "66cafe69be086862e7149f1489dde66d"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -2828,43 +2744,89 @@
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "9c3675434d62fda1568ca9a750c3ca20"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
+      14,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "b2t_def",
         "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Rust_primitives.Arrays.t_Slice",
+        "equation_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.u8",
+        "primitive_Prims.op_LessThan", "projection_inverse_BoxBool_proj_0",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178"
+      ],
+      0,
+      "1b92ff28ce82d10f04aca44703bdc022"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
+      15,
+      0,
+      1,
+      [ "@query" ],
+      0,
+      "c81ca7cb023adcae8001478f13fd0a99"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
+      16,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.u8",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
-        "primitive_Prims.op_LessThanOrEqual",
+        "equation_Rust_primitives.Integers.usize",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_80fe7060a0bda510a663a8a75b424076",
-        "refinement_interpretation_Tm_refine_ac78135e7c4904c448ce333a35a13716",
+        "refinement_interpretation_Tm_refine_0f9322c78299b04ab1d7d20014330e35",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec",
-        "refinement_interpretation_Tm_refine_db58f5326219eb771889c7b12cd17f30",
-        "refinement_interpretation_Tm_refine_feb7e834582289fbd89a200bfbc499b9",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "3822477447c0a0fabcbea7cb2d02020f"
+      "9fd1822af18ae380c95bf741fb679fc9"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      14,
+      17,
       0,
       1,
       [
         "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_FStar.Pervasives.Native.fst", "equation_Lib.IntTypes.v",
+        "equation_FStar.Pervasives.Native.fst",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.int_t",
@@ -2880,6 +2842,8 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.valid_params",
+        "function_token_typing_Rust_primitives.Integers.u8",
+        "function_token_typing_Rust_primitives.Integers.usize",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_Division",
@@ -2890,6 +2854,7 @@
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_102e3e2ffae46eb544d4497226c91fb5",
         "refinement_interpretation_Tm_refine_80fe7060a0bda510a663a8a75b424076",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ac78135e7c4904c448ce333a35a13716",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
@@ -2897,18 +2862,22 @@
         "refinement_interpretation_Tm_refine_db58f5326219eb771889c7b12cd17f30",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e9fd75cceaaeb3c4516e200cfb4bee15",
-        "refinement_interpretation_Tm_refine_feb7e834582289fbd89a200bfbc499b9",
+        "refinement_interpretation_Tm_refine_f370b7bc691b475fe8729dc511b40eb1",
+        "typing_FStar.Pervasives.Native.fst", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
+        "typing_Rust_primitives.Arrays.t_Array",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.valid_params"
+        "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "c9b250f666d30050204472d90a3b10d1"
+      "715f2c52f9d69ae11d406c577dbc9671"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      15,
+      18,
       0,
       1,
       [
@@ -2927,33 +2896,35 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "a0e5510bbec67baebf9ce4c8effe6812"
+      "692bf60083a475583077443056d7d756"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      16,
+      19,
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.u8",
-        "primitive_Prims.op_Division", "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "@MaxIFuel_assumption", "@query",
+        "equation_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
+        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.usize",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
         "refinement_interpretation_Tm_refine_2d6483de55b07bdeb440f10d9eb4d60c",
-        "refinement_interpretation_Tm_refine_80fe7060a0bda510a663a8a75b424076",
-        "refinement_interpretation_Tm_refine_ac78135e7c4904c448ce333a35a13716",
-        "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec",
-        "refinement_interpretation_Tm_refine_db58f5326219eb771889c7b12cd17f30",
-        "refinement_interpretation_Tm_refine_feb7e834582289fbd89a200bfbc499b9"
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "947e9d4ef940281fc477f58387d3d861"
+      "fb0ab767d4984db2cb5f2ba5e71cbcf6"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      17,
+      20,
       0,
       1,
       [
@@ -2969,11 +2940,11 @@
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec"
       ],
       0,
-      "cca1e4e3024042c16dc520e423a8c504"
+      "ddbe091422beb92b40743b251d3a0871"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      18,
+      21,
       0,
       1,
       [
@@ -2992,14 +2963,14 @@
         "refinement_interpretation_Tm_refine_ac78135e7c4904c448ce333a35a13716",
         "refinement_interpretation_Tm_refine_d0dc20bdedceec60adaee00b6c4072ec",
         "refinement_interpretation_Tm_refine_db58f5326219eb771889c7b12cd17f30",
-        "refinement_interpretation_Tm_refine_feb7e834582289fbd89a200bfbc499b9"
+        "refinement_interpretation_Tm_refine_f370b7bc691b475fe8729dc511b40eb1"
       ],
       0,
-      "2491cb7ff1d13a6f8a5f4eed04560ee3"
+      "d698069577e30469249bbcf8aa09be68"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      19,
+      22,
       0,
       1,
       [
@@ -3018,11 +2989,11 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "451bdf5170331bf4c315a3c28d9726e8"
+      "489d98a92da8926cbc382f3978d6843b"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      20,
+      23,
       0,
       1,
       [
@@ -3030,19 +3001,19 @@
         "refinement_interpretation_Tm_refine_91aef11d36a5ef4d927e7ba47e560947"
       ],
       0,
-      "0cbb9d948aec4357d23c2ac7ef64121f"
+      "5d64dc5d1b18c9169fe3b7bd30d9d01d"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
-      21,
+      24,
       0,
       1,
       [
         "@MaxIFuel_assumption", "@query",
-        "refinement_interpretation_Tm_refine_584f0eb673831c31e84c27dd07e5ce0a"
+        "refinement_interpretation_Tm_refine_309460ec23e8baa46fd34dc9044dc979"
       ],
       0,
-      "54fca479d3d5f502e65b63fccb156621"
+      "57c86facbfa119e9deeee755da8ee7ca"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.decrypt",
@@ -3102,7 +3073,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "08b95bd6574d60aa3070901644d611b7"
+      "af7162f47608728fd9cf2005bd743c2a"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.decrypt",
@@ -3112,7 +3083,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
+        "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -3135,10 +3106,8 @@
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
@@ -3170,8 +3139,7 @@
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
         "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t",
-        "function_token_typing_Rust_primitives.Integers.u8", "int_inversion",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
         "int_typing",
         "interpretation_Tm_abs_0956da15530cc0f64a16a4548bf6da82",
         "interpretation_Tm_abs_0cb90ffdaac009e5428b856a53fc2c98",
@@ -3179,8 +3147,7 @@
         "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
         "interpretation_Tm_abs_c383c10040deb921f8edacb536247c52",
         "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "l_and-interp", "lemma_FStar.Int32.vu_inv",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "l_and-interp", "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_FStar.Seq.Properties.slice_is_empty",
         "lemma_FStar.Seq.Properties.slice_length",
         "lemma_Rust_primitives.Integers.pow2_values",
@@ -3208,7 +3175,6 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_b361ba8089a6e963921008d537e799a1",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
@@ -3219,27 +3185,22 @@
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
-        "typing_FStar.Int.fits", "typing_FStar.Int32.v",
-        "typing_FStar.Seq.Base.length", "typing_FStar.Seq.Base.slice",
-        "typing_Lib.IntTypes.v",
+        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.length",
         "typing_Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Libcrux.Kem.Kyber.Ind_cpa.wfZero", "typing_Prims.pow2",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_C1_SIZE",
         "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "e9a397de1221b775e22110013f9cc668"
+      "53121e8ba3512a1198761f8261f3cded"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.encrypt",
@@ -3269,7 +3230,6 @@
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.eqtype", "equation_Prims.nat",
         "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
@@ -3284,29 +3244,22 @@
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_Lib.IntTypes.byte_t",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_06f8f7de1651c53367cf78432452b45b",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_893727470b388b710b86f7566ccc689d",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_FStar.Seq.Base.length", "typing_FStar.UInt32.t",
         "typing_FStar.UInt64.t", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -3315,11 +3268,10 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "284b9b7f8fe10db52f19495c44a924b2"
+      "ce6866cbf47b421d3fd7c761e0f067aa"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.encrypt",
@@ -3329,8 +3281,10 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
-        "bool_inversion", "bool_typing",
+        "FStar.Sealed_interpretation_Tm_arrow_6980332764c4493a7b0df5c02f7aefbe",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565",
+        "Rust_primitives_interpretation_Tm_arrow_0dc9533934fadb6b25c05502d946f2d2",
+        "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -3340,7 +3294,9 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_typing_intro_Core.Ops.Range.Mkt_Range@tok",
+        "data_elim_FStar.Pervasives.Native.Mktuple3",
+        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
+        "data_elim_Rust_primitives.Mkunsize_tc",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
@@ -3368,15 +3324,16 @@
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Libcrux.Kem.Kyber.Arithmetic.to_spec_poly_b",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Libcrux.Kem.Kyber.Ind_cpa.compress_then_serialize_u",
         "equation_Libcrux.Kem.Kyber.Ind_cpa.into_padded_array",
         "equation_Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
+        "equation_Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd_then_ntt",
         "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.slice",
         "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Hax.repeat",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
@@ -3407,10 +3364,10 @@
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.Integers.usize",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_0cb90ffdaac009e5428b856a53fc2c98",
         "interpretation_Tm_abs_4bb6412701dfeac9ce6df5500b93361d",
@@ -3423,6 +3380,7 @@
         "interpretation_Tm_abs_f8f66a0d95ba9bd5e7d77f6d4806c3ff",
         "l_and-interp", "lemma_FStar.Seq.Base.lemma_create_len",
         "lemma_FStar.Seq.Base.lemma_eq_elim",
+        "lemma_FStar.Seq.Base.lemma_eq_intro",
         "lemma_FStar.Seq.Base.lemma_index_app1",
         "lemma_FStar.Seq.Base.lemma_index_app2",
         "lemma_FStar.Seq.Base.lemma_index_create",
@@ -3430,12 +3388,8 @@
         "lemma_FStar.Seq.Base.lemma_index_upd1",
         "lemma_FStar.Seq.Base.lemma_index_upd2",
         "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_FStar.Seq.Properties.slice_is_empty",
-        "lemma_FStar.Seq.Properties.slice_length",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.v_injective",
-        "lemma_Rust_primitives.Arrays.eq_intro",
+        "lemma_FStar.Seq.Base.lemma_len_slice", "lemma_FStar.UInt8.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -3448,7 +3402,6 @@
         "proj_equation_Core.Ops.Index.Mkt_Index_in_range",
         "proj_equation_Core.Ops.Range.Mkt_RangeFrom_f_start",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_Core.Ops.Index.Mkt_Index_f_Output",
@@ -3467,31 +3420,34 @@
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_2bae5e7fa45527dab43cccba13c834be",
-        "refinement_interpretation_Tm_refine_331c14d442c5ee89a4fce6ea305c920f",
         "refinement_interpretation_Tm_refine_35a0739c434508f48d0bb1d5cd5df9e8",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_4639d389381bee5cf8cf77b7a6585074",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
+        "refinement_interpretation_Tm_refine_4c7a3e67d6e49e55853e46baa0a96b49",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_6105c7ce460aee61a34bed3fa4b1ad68",
         "refinement_interpretation_Tm_refine_6429d8e304d352f05a83669146e6cacf",
+        "refinement_interpretation_Tm_refine_6922a3ea497d18a6298404694de57096",
+        "refinement_interpretation_Tm_refine_769d89d2adb5ba14177e537ed06ba341",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_7ab4c08e82642b7b946f13776623927e",
         "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_869cd00b9b08aea538452a3807ad489e",
+        "refinement_interpretation_Tm_refine_943a9db6fa247c14bae589c16a6247db",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ac201cf927190d39c033967b63cb957b",
-        "refinement_interpretation_Tm_refine_b361ba8089a6e963921008d537e799a1",
-        "refinement_interpretation_Tm_refine_b913a3f691ca99086652e0a655e72f17",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_bf333b56f611b2f0fd0272ff3b9465b1",
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
+        "refinement_interpretation_Tm_refine_df39062c63978e2744bc40e21040ce6c",
         "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_e55fc76a33bf8813139a9d80be113ddd",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
         "token_correspondence_Core.Ops.Index.f_index",
@@ -3499,31 +3455,40 @@
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Rust_primitives.unsize",
         "typing_FStar.Int32.v", "typing_FStar.Seq.Base.append",
-        "typing_FStar.Seq.Base.create", "typing_FStar.Seq.Base.empty",
-        "typing_FStar.Seq.Base.length", "typing_FStar.Seq.Base.upd",
+        "typing_FStar.Seq.Base.create", "typing_FStar.Seq.Base.length",
         "typing_FStar.UInt32.t", "typing_FStar.UInt64.t",
-        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Arrays.length",
-        "typing_Rust_primitives.Hax.Monomorphized_update_at.update_at_range",
-        "typing_Rust_primitives.Hax.repeat",
+        "typing_Libcrux.Kem.Kyber.Hash_functions.v_PRF",
+        "typing_Libcrux.Kem.Kyber.Ind_cpa.compress_then_serialize_u",
+        "typing_Libcrux.Kem.Kyber.Ind_cpa.into_padded_array",
+        "typing_Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
+        "typing_Libcrux.Kem.Kyber.Matrix.compute_vector_u",
+        "typing_Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution",
+        "typing_Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_message",
+        "typing_Prims.pow2",
+        "typing_Rust_primitives.Hax.Monomorphized_update_at.update_at_usize",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Rust_primitives.array_to_slice_unsize",
+        "typing_Spec.Kyber.v_C1_SIZE", "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
+        "typing_Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Spec.Kyber.valid_params",
+        "typing_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
+        "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "c8f5ae3f61bc06c56f249acc1fe83e86"
+      "a48ba4bb0f9c276daa8732414aac5b96"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.encrypt",
@@ -3533,9 +3498,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -3543,179 +3506,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Core.Array.impl_23__as_slice",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.Index.in_range",
-        "equation_Core.Ops.Range.impl_index_range_from_slice",
-        "equation_Core.Ops.Range.impl_range_from_index_array",
-        "equation_Core.Ops.op_String_Access",
-        "equation_Core.Slice.impl__copy_from_slice",
-        "equation_Core.Slice.impl__len", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.size",
-        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
-        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
-        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.to_spec_poly_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Ind_cpa.wfZero", "equation_Prims.eqtype",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.slice",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.u8_inttype",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize",
-        "equation_Spec.Kyber.ind_cpa_encrypt", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.sample_poly_cbd",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
-        "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t",
-        "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
-        "function_token_typing_Rust_primitives.Integers.u8", "int_inversion",
-        "int_typing",
-        "interpretation_Tm_abs_0cb90ffdaac009e5428b856a53fc2c98",
-        "interpretation_Tm_abs_4bb6412701dfeac9ce6df5500b93361d",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
-        "interpretation_Tm_abs_c383c10040deb921f8edacb536247c52",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "l_and-interp", "lemma_FStar.Seq.Base.lemma_create_len",
-        "lemma_FStar.Seq.Base.lemma_eq_elim",
-        "lemma_FStar.Seq.Base.lemma_eq_intro",
-        "lemma_FStar.Seq.Base.lemma_index_app1",
-        "lemma_FStar.Seq.Base.lemma_index_app2",
-        "lemma_FStar.Seq.Base.lemma_index_create",
-        "lemma_FStar.Seq.Base.lemma_index_slice",
-        "lemma_FStar.Seq.Base.lemma_index_upd1",
-        "lemma_FStar.Seq.Base.lemma_index_upd2",
-        "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice", "lemma_FStar.UInt8.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Index.Mkt_Index_f_Output",
-        "proj_equation_Core.Ops.Index.Mkt_Index_in_range",
-        "proj_equation_Core.Ops.Range.Mkt_RangeFrom_f_start",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_Output",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
-        "projection_inverse_Core.Ops.Range.Mkt_RangeFrom_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__2",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple3__3",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0a1fc74b53c69a41eceb9d7368f73b62",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_35a0739c434508f48d0bb1d5cd5df9e8",
-        "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_4aa066355e9384aa98eb2ace9b0d012f",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_ac201cf927190d39c033967b63cb957b",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
-        "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
-        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
-        "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.Index.in_range",
-        "token_correspondence_Core.Ops.op_String_Access",
-        "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.append",
-        "typing_FStar.Seq.Base.create", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.upd", "typing_FStar.UInt32.t",
-        "typing_FStar.UInt64.t", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Libcrux.Kem.Kyber.Ind_cpa.wfZero", "typing_Prims.pow2",
-        "typing_Rust_primitives.Arrays.slice",
-        "typing_Rust_primitives.Arrays.split",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "77238b0e820d43f8fc5091a0350f8989"
+      "9dba11cdb7f09b3c9cd7188470743cfd"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_secret_key",
@@ -3769,7 +3580,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "88b52ce4bac79b35f04274e7107064dc"
+      "ce3358d2a9c89ee9e43bbdc1669e5759"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_secret_key",
@@ -3779,7 +3590,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
+        "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -3794,11 +3606,9 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Core.Ops.Index.f_index",
         "equation_Core.Ops.Index.in_range",
         "equation_Core.Ops.Range.impl_index_range_slice",
         "equation_Core.Ops.Range.impl_range_index_array",
-        "equation_Core.Ops.op_String_Access",
         "equation_Core.Slice.impl__copy_from_slice",
         "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
         "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
@@ -3807,10 +3617,9 @@
         "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
         "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
@@ -3826,7 +3635,6 @@
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
@@ -3843,22 +3651,20 @@
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
+        "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "function_token_typing_Prims.__cache_version_number__",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_3fed82ae903d42e820576b470eb7bc5b",
-        "interpretation_Tm_abs_572e0e093c6cc78cd0d8e5493e04bc44",
         "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_b3488160bd206c09ce676bc441b5de6a",
         "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
         "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
         "interpretation_Tm_abs_fa65ac303f30fcb41df8f1fc6e9818e3",
-        "l_and-interp", "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Lib.IntTypes.pow2_3",
+        "l_and-interp", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -3866,16 +3672,15 @@
         "primitive_Prims.op_BarBar", "primitive_Prims.op_Division",
         "primitive_Prims.op_Equality",
         "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Index.Mkt_Index_f_index",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Core.Ops.Index.Mkt_Index_in_range",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
         "proj_equation_FStar.Pervasives.Native.Mktuple2__1",
+        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
         "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
@@ -3885,27 +3690,22 @@
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b913a3f691ca99086652e0a655e72f17",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_d91142390c6c387fb0ead558066ab16a",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
-        "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__f_index",
         "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
-        "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
-        "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.empty",
-        "typing_FStar.Seq.Base.length", "typing_FStar.UInt.fits",
-        "typing_FStar.UInt8.uint_to_t", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
+        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.length",
+        "typing_FStar.UInt.fits", "typing_FStar.UInt8.uint_to_t",
+        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_BYTES_PER_RING_ELEMENT",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Prims.pow2", "typing_Rust_primitives.Hax.repeat",
         "typing_Rust_primitives.Integers.bits",
@@ -3914,13 +3714,14 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.__proj__Mkparams___item__v_ETA2",
         "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "a6b5d2e73fc35cba4c9ca114f551b27f"
+      "a4a4dee071e021634c46b53087cd5cc2"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_public_key",
@@ -3990,7 +3791,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e2e635b4993d2b3dae78ea32d46ea63c"
+      "91218ab30fb5d141b9047260563998f6"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_public_key",
@@ -4055,7 +3856,6 @@
         "equation_Rust_primitives.unsize", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t",
@@ -4117,7 +3917,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "7ca8aed66295b623e7ee5ca9e6fa461c"
+      "aaf87fc836cfdef5ba5e05e87ff873dd"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.generate_keypair",
@@ -4154,7 +3954,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6fad83cf153c9eb4aff9383090c44ec1"
+      "8d290b304964f5f019ea2477baba0487"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.generate_keypair",
@@ -4179,20 +3979,24 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.UInt.fits",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
+        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
@@ -4209,26 +4013,27 @@
         "equation_Rust_primitives.array_to_slice_unsize",
         "equation_Rust_primitives.unsize",
         "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.params",
+        "equation_Spec.Kyber.params", "equation_Spec.Kyber.polynomial",
         "equation_Spec.Kyber.t_KyberCPAPrivateKey",
         "equation_Spec.Kyber.t_KyberPublicKey",
         "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.valid_params",
+        "equation_Spec.Kyber.valid_params", "equation_Spec.Kyber.vector",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Prims.__cache_version_number__",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
         "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "lemma_FStar.UInt8.vu_inv", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_FStar.Int32.vu_inv", "lemma_FStar.UInt8.vu_inv",
+        "lemma_Lib.IntTypes.pow2_3",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
         "primitive_Prims.op_Subtraction",
         "proj_equation_Rust_primitives.Mkunsize_tc_output",
         "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
@@ -4247,12 +4052,15 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "token_correspondence_Rust_primitives.unsize",
         "typing_Core.Slice.impl__split_at", "typing_FStar.Seq.Base.length",
         "typing_FStar.UInt.fits", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.to_spec_vector_b",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
@@ -4263,10 +4071,10 @@
         "typing_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.U64@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "33e136bcaed47a28245109faf1279485"
+      "dc36df0633a912013f41c1e0727d5fa0"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fsti.hints
index c5e37c92..4bd3dc29 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ind_cpa.fsti.hints
@@ -47,7 +47,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5006f6124b8426f45fcd5df3bc299225"
+      "a4cb9f27d58be0a1deee636190ba94e7"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd",
@@ -132,7 +132,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "a5e373fdb05860be1068e6465139f1d5"
+      "e76e24563042297fd3a2f8ee7c080175"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.sample_vector_cbd_then_ntt",
@@ -181,8 +181,9 @@
         "equation_Rust_primitives.Integers.v",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_FStar.Int32.vu_inv", "lemma_FStar.Seq.Base.lemma_len_slice",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
+        "int_typing", "lemma_FStar.Int32.vu_inv",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
@@ -198,7 +199,7 @@
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d4027175170ef1ba257f27664168c6e2",
-        "typing_Lib.IntTypes.v",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
@@ -211,7 +212,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "e1ef7ec34729bdc19a28e0a741466490"
+      "2496f5a1ae851796f50a31edd535475c"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.compress_then_serialize_u",
@@ -275,7 +276,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8377bb17f4db4789aa7cbdfcc111ab62"
+      "7ed81ab18bd865fe4ec565d416b3d0ff"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_then_decompress_u",
@@ -311,8 +312,9 @@
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_C2_SIZE", "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_FStar.Int32.vu_inv", "lemma_FStar.Seq.Base.lemma_len_slice",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
+        "int_typing", "lemma_FStar.Int32.vu_inv",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_LessThanOrEqual",
@@ -333,6 +335,7 @@
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
+        "typing_FStar.Seq.Base.length",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -343,7 +346,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "70f478b043bf16b68acb51f1c7462686"
+      "d18daef8101bef7ed0297ce6455e724a"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_public_key",
@@ -353,26 +356,22 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S32",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
+        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -382,35 +381,32 @@
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
+        "fuel_guarded_inversion_Spec.Kyber.params_",
+        "function_token_typing_Prims.__cache_version_number__", "int_typing",
         "lemma_FStar.Int32.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_5c7a8ecadec3819edb097b2d5f1a6d30",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "2e40adc4f4ca8a9c7cb16031fd4247e1"
+      "c95eea33fa1d2eb56e2693114eb95067"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.deserialize_secret_key",
@@ -420,26 +416,25 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S32",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -451,30 +446,31 @@
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
+        "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Prims.__cache_version_number__", "int_typing",
         "lemma_FStar.Int32.vu_inv",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_04d1a41375cb265cfbd8785ad22877c0",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_FStar.Seq.Base.length",
+        "typing_FStar.Seq.Base.length", "typing_Prims.pow2",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "e53fe41aaa5aef0b34cbfddf30a41579"
+      "e82b1d4ed829e0c2fd1fbf878abb11a2"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.decrypt",
@@ -534,7 +530,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6d109b1651a2dd22408b810c4c398c60"
+      "86456dcf25fb350f6fe9e07a44e20227"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.encrypt",
@@ -564,7 +560,6 @@
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.eqtype", "equation_Prims.nat",
         "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
@@ -579,29 +574,22 @@
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_Lib.IntTypes.byte_t",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_06f8f7de1651c53367cf78432452b45b",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_893727470b388b710b86f7566ccc689d",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_FStar.Seq.Base.length", "typing_FStar.UInt32.t",
         "typing_FStar.UInt64.t", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -610,11 +598,10 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "51d1632864b118423db394bfb99f1b6c"
+      "d2cd2078daaf025a99416081afadaf36"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_secret_key",
@@ -668,7 +655,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "580ba4a8879880fc8e571b2b452f8a5d"
+      "eb08e0e26d282a0928c4696107740fb6"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.serialize_public_key",
@@ -738,7 +725,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d6a5ca0df3a5a1a975db51ba2c2be7a2"
+      "98164d89b45793748e72d30619d1feb4"
     ],
     [
       "Libcrux.Kem.Kyber.Ind_cpa.generate_keypair",
@@ -775,7 +762,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "68125962b2fcab9280ae74ae0020fc84"
+      "8d45138182daed9e659062e8f3a76a30"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fst.hints
index 816f70cb..ec49ed49 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fst.hints
@@ -40,7 +40,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "78e129bf5f3478abb940256924cc3cbc"
+      "fa911e655a9161b2edc8f6595caab218"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA1_RANDOMNESS_SIZE",
@@ -94,7 +94,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4e7176376a2bc110b212bb1a024dd225"
+      "a7038552615b2bbe07105da70a8d9396"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA2",
@@ -135,7 +135,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "66db108efdfb3653bfa8e8ed7bd820e6"
+      "65aa5b9a31e3af8f79b50e3660412886"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA2_RANDOMNESS_SIZE",
@@ -159,7 +159,7 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_ETA2", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -189,7 +189,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4f80d4f465a53fda2c72178dd651b3cc"
+      "382cee85fe5b4bd7032e3be3ca1b9d0f"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_RANK_1024_",
@@ -228,7 +228,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0e69bf6d2ef9da491a5ba3e57bd3ed39"
+      "d0e3f8ea03b370d6cd783d61fd62e024"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_SECRET_KEY_SIZE_1024_",
@@ -288,7 +288,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "6d1d7e57c30c0ea399cbf0ceb3857fdc"
+      "054ea9dc44989560cf012853130e5237"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_RANKED_BYTES_PER_RING_ELEMENT_1024_",
@@ -344,10 +344,10 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "834eef48ce86e0bdc7de43efccc53bed"
+      "f4652ca5244eacf3fe0db13754dec75c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_T_AS_NTT_ENCODED_SIZE_1024_",
@@ -407,7 +407,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "fb79ad7435fd46bedb548df3fd82e973"
+      "65bd45cfed3999cf6e9a20b956235aaf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_PUBLIC_KEY_SIZE_1024_",
@@ -472,7 +472,7 @@
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE"
       ],
       0,
-      "1e318a87d27f4cd0fe72736dd139621e"
+      "1dd5b7395542489cd5df81bdeb4c4290"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_SECRET_KEY_SIZE_1024_",
@@ -494,10 +494,9 @@
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_PUBLIC_KEY_SIZE_1024_",
@@ -739,7 +738,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "25b7d8ded931d1afc171d981785a0ff5"
+      "b7593580bfc1e4f41056d74a31f554bf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C1_BLOCK_SIZE_1024_",
@@ -796,7 +795,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "97a5703a18fa42eef843be7e1d0df1db"
+      "9a3a1a99c17487a5cb65be2e9ef2f136"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C1_SIZE_1024_",
@@ -863,7 +862,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "05fc8d7016d8b613e802e28a58c7b899"
+      "25d233480d67124dccbd9a70150e01e0"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_V_COMPRESSION_FACTOR_1024_",
@@ -902,7 +901,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "68377566a65eb5dec67209b781743319"
+      "07fdc3d98c5ff6345dbc3120761de3c2"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C2_SIZE_1024_",
@@ -959,13 +958,13 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "698a468454603e0c40bf3b33345285cc"
+      "2620837b9b25392e66fcde13bf7c5a81"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_CIPHERTEXT_SIZE_1024_",
       1,
-      4,
       2,
+      1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented",
@@ -991,8 +990,7 @@
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_RANK_1024_",
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_U_COMPRESSION_FACTOR_1024_",
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_V_COMPRESSION_FACTOR_1024_",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.div",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -1004,9 +1002,7 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_inversion",
-        "int_typing", "lemma_FStar.UInt.pow2_values",
+        "equation_Rust_primitives.Integers.v", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -1015,20 +1011,14 @@
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_e477cd5567f25e8e57e00f0185fa1ab0",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C1_BLOCK_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C1_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C2_SIZE_1024_",
-        "typing_Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_U_COMPRESSION_FACTOR_1024_",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.mul",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -1036,7 +1026,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "8e75b2a570fe04f75b84a5512ffae950"
+      "efc301963bc0e30dfe7677e73588fe77"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -1113,7 +1103,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "f8e567531bf2e739a87b23ae774c44d0"
+      "f2c49e26706b27d995762a0db689e470"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024Ciphertext",
@@ -1152,7 +1142,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "479b9d93a50195d8c45d944aefd98e98"
+      "fde4f15dded3a9f1db5a7db6278aa028"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024PrivateKey",
@@ -1191,7 +1181,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5bfd78b653be59a05d542c713a72dabf"
+      "193627fc5542aa7374307468edb7c483"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024PublicKey",
@@ -1230,7 +1220,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "032df8253b267fcc85985b40ed5af314"
+      "1b8a97bbd5a4083f0b4d4c17cda9ae21"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.decapsulate",
@@ -1268,7 +1258,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c70645443fd72d823b363570cf76a35b"
+      "e97a0e7699e8dfd13b71c6b6538b1dcd"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.decapsulate",
@@ -1322,6 +1312,7 @@
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE", "int_inversion",
         "int_typing", "lemma_Lib.IntTypes.v_injective",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -1372,7 +1363,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "76b7cfc73af4f01b73a6ae23f08b73da"
+      "d285732c7eaa75e13768f11dee88eea5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.decapsulate",
@@ -1410,7 +1401,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "38e257f721ebd35ca23be674a2ca2e4d"
+      "5f8011ba5d6ebd2a1dccbc9c2824d353"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.encapsulate",
@@ -1448,7 +1439,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "13e90e36d1fef167946a872f1ba8e88d"
+      "9c62249bf5c14f9c643cf308ab65feba"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.encapsulate",
@@ -1543,7 +1534,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "f7ea437e6e4d7927b600fb627f9664ab"
+      "171d381e758502c46d22382094fdf491"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.encapsulate",
@@ -1581,7 +1572,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "33d5df21e025f3c9fff81b7fa841d90f"
+      "102a21021012fac5ad3c4334cc02a466"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.validate_public_key",
@@ -1619,7 +1610,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d1ede83859086691b9a16a411b57fdbb"
+      "7fcb4274ab10f5e77907821ce725d04a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.validate_public_key",
@@ -1660,7 +1651,8 @@
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemPublicKey",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
+        "int_inversion", "int_typing",
+        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
@@ -1685,7 +1677,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "e7c8a0251e86a4253c75c95614d12dea"
+      "b261d181c187a5cfe11b530e56b95774"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.validate_public_key",
@@ -1723,7 +1715,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "66c0abb97253999f357e8b5305febc83"
+      "c63842593b6e86460b5b50bfdc664f87"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.generate_key_pair",
@@ -1762,7 +1754,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "1c038829a4d895189a02533b6b9aefec"
+      "e95015da934188999dc664d898b30bb7"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.generate_key_pair",
@@ -1810,7 +1802,6 @@
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -1841,7 +1832,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "11af345ba124f0bbd674d05efa2b05ad"
+      "d51fd3bc81abe408273f127fa95b9018"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.generate_key_pair",
@@ -1879,7 +1870,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "aa260f6f5951fb1fe889b09814a34872"
+      "65bef865586d4b11a4c77ac66ececd4b"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fsti.hints
index 469a0ad4..f8d67dc8 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber1024.fsti.hints
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2249e830ae4b670fda8dbf37d6485956"
+      "2037c137c0404f211a56d084149ebd03"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA1_RANDOMNESS_SIZE",
@@ -83,7 +83,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "a946d6c37f71050fc6f3278c677f0200"
+      "fe07fd62c11577031ef653d9d5bcd96b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA2",
@@ -121,7 +121,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "53f95417a7c9633551d916c870843a9e"
+      "5520186ba814901df02d4f981244284a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_ETA2_RANDOMNESS_SIZE",
@@ -167,7 +167,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "40f59fe655a10c3c852571ad90f2af75"
+      "44d19db9dea3bc05d4369b4878b3f632"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_RANK_1024_",
@@ -205,7 +205,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e693971a6b95ff2230a945bb8d6d1464"
+      "72b15d841cf00a279a0d883b0a5c7a3b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_SECRET_KEY_SIZE_1024_",
@@ -263,7 +263,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "4e33dff60c438dfb48665e6d3a08ac89"
+      "5fab3369876fccc45becdb42a09b1eb5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_RANKED_BYTES_PER_RING_ELEMENT_1024_",
@@ -321,7 +321,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "1cc264cbd77750cf3ca07619352a39c6"
+      "dc66a2bd9d5bcddce6b5c3136ab2a381"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_T_AS_NTT_ENCODED_SIZE_1024_",
@@ -379,7 +379,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "0119da61b34392f7052490349abf7bf6"
+      "fd1b63dc77854f65dbb7d52e2d48d246"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_PUBLIC_KEY_SIZE_1024_",
@@ -400,8 +400,8 @@
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber1024.v_RANK_1024_",
@@ -442,7 +442,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "da13d2b47e43feac2de5b50412720587"
+      "078604a974ef0e29671e2ba98a175d73"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_SECRET_KEY_SIZE_1024_",
@@ -457,21 +457,16 @@
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U128",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Libcrux.Digest.Algorithm_Sha3_256_",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Libcrux.Digest.Algorithm_Sha3_256_@tok",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.min_int",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Digest.digest_size",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
@@ -493,7 +488,7 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -509,7 +504,6 @@
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "typing_Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_PUBLIC_KEY_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_SECRET_KEY_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_RANK_1024_",
@@ -519,11 +513,10 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "aa3cbe6d167530ee19a0f904e8925906"
+      "872c4e2e805cb84b449ce566401577d6"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_U_COMPRESSION_FACTOR_1024_",
@@ -561,7 +554,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "10c13f903a712b3d6338ff161e261e83"
+      "853ca3f4fca6c33e32e936e0040dd1d1"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C1_BLOCK_SIZE_1024_",
@@ -617,7 +610,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "1a2e2608bea7c15840651bf2b1e05e25"
+      "fb5c01f20734353eeca6451d098923c3"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C1_SIZE_1024_",
@@ -683,7 +676,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "bd7b8670d3e569015820286226eef9e4"
+      "a532d2b827c670b990eba6ca95670b12"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_V_COMPRESSION_FACTOR_1024_",
@@ -721,7 +714,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "eb35de52ad5250a37bb3d2638a14d182"
+      "7ca1b273ab0add6cd6c28186a19839fa"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_C2_SIZE_1024_",
@@ -777,7 +770,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4d654bc3a80e723d6dc36c4a40abe940"
+      "c0573f125fc1de45f7ad5d63c8a2e79c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_CIPHERTEXT_SIZE_1024_",
@@ -844,7 +837,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "60d9728c3b968664f8995c768830de7b"
+      "753992db8b86e873737ac8ab8d1e32e7"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -902,13 +895,17 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_e477cd5567f25e8e57e00f0185fa1ab0",
         "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "typing_Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C1_BLOCK_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C1_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_C2_SIZE_1024_",
         "typing_Libcrux.Kem.Kyber.Kyber1024.v_CPA_PKE_CIPHERTEXT_SIZE_1024_",
+        "typing_Libcrux.Kem.Kyber.Kyber1024.v_VECTOR_U_COMPRESSION_FACTOR_1024_",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.mul",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -916,7 +913,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "1ff4aac236c20eefddf70ebd3a963da4"
+      "79a569375881a7d8df4f2aee6bbe803d"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024Ciphertext",
@@ -954,7 +951,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a316e08fcdab714f2d266351ec5e999d"
+      "d3fb18b05c545acbd2e0f214e22dd9e5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024PrivateKey",
@@ -992,7 +989,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6f347f49c7e5a9eb9b7d812f20a91aa3"
+      "e66fde02dc106d0ebe9247ca7132de4d"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.t_MlKem1024PublicKey",
@@ -1030,7 +1027,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d83c12310ddccad161beb13146eb5e6a"
+      "94739f04ec9ff28eef452be8c4dccd6c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.decapsulate",
@@ -1068,7 +1065,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "afbb15ac5099a3a858a0e89dd052a5f4"
+      "2e3f09bc181d34cd87a265b42d5e2738"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.encapsulate",
@@ -1106,7 +1103,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bdadae452e9442d7f9f7cd59e0cda9bf"
+      "7c1135495cf56801d2f11b313816f5aa"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.validate_public_key",
@@ -1144,7 +1141,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a86e4fb5b2ab4a1c838040a2ea4572ee"
+      "276a6e3d1ccc873e030b1b3b2bfcb36e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber1024.generate_key_pair",
@@ -1183,7 +1180,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c88d1a8c49b439508444459c3091655f"
+      "8468694835b93b867fc3b579d4ac5199"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fst.hints
index 1a7edbfd..68894726 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fst.hints
@@ -40,7 +40,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8467777ddf1eb6f0bf345444d26e206a"
+      "ef289c342fba43ff4e6cadd4eab353f2"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA1_RANDOMNESS_SIZE",
@@ -94,7 +94,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "234ee5d8d5a3d2ab6819d7d2b7792fb9"
+      "4f3d7c681ffea9aa8f6fb1618d00aa8e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA2",
@@ -135,7 +135,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5162227bee4561bbd5c9c11657c66c5e"
+      "66f6dbfb0c964c24863c732d859f6f1a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA2_RANDOMNESS_SIZE",
@@ -189,7 +189,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "a8dde6e098b5638577b12c612581f0fa"
+      "dc5b30429750cc62a3e214c11923dbfc"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -230,7 +230,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c8f820e6c1d24e31befc36e2646633ea"
+      "96b7a57465b4793e5fa8356c47b6c90e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_SECRET_KEY_SIZE_512_",
@@ -294,7 +294,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "e83be925e57ce4c240076d9bc8455458"
+      "445c85c124941acb3c06098bc3e4d9cf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_RANKED_BYTES_PER_RING_ELEMENT_512_",
@@ -317,8 +317,9 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -348,17 +349,17 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.maxint", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "dad40eae2a9f51d42103cdc041f71942"
+      "0b338f7d35dd471d5f9e371e21856a15"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_T_AS_NTT_ENCODED_SIZE_512_",
@@ -422,7 +423,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "386548e63dfdec5cbb5ab61b069b3161"
+      "2c33b5c70c029ff55c23ae7f8b61081a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_PUBLIC_KEY_SIZE_512_",
@@ -487,7 +488,7 @@
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE"
       ],
       0,
-      "5e22cdf16e3585dadd256de92b60a934"
+      "5e52c6e5d2d852028be88d5b10934dd5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_SECRET_KEY_SIZE_512_",
@@ -756,7 +757,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3cef0380206bc3395fa53bef8b5609af"
+      "a7128c49140cc5eba83bf666e0293f64"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C1_BLOCK_SIZE_512_",
@@ -813,7 +814,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "43e89f34ffc1faad4aa27580799277ea"
+      "ecc6068019b056fd7b6ac5e9b3e6159e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C1_SIZE_512_",
@@ -884,7 +885,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "ce8bc1050dfdd429250a46bb956e476d"
+      "bf323fa739802611fa24de80b0d5faa1"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_VECTOR_V_COMPRESSION_FACTOR_512_",
@@ -923,7 +924,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "82c9ab7eb61c18d2e29b3f5eb5d15727"
+      "05b5f29d0b41cd2f2ba623473cc18c97"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C2_SIZE_512_",
@@ -980,7 +981,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "864129b458b1f07318d23479c53881b5"
+      "79a919fac52aa30b7a7dba01b1ef8f13"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_CIPHERTEXT_SIZE_512_",
@@ -1053,7 +1054,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "b92d6455024a26f9c905aed52b20c6bc"
+      "ff6d539f1ad4ca4c8e53a68dd26fe96d"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -1131,7 +1132,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "ee88b94dd2d8bcf077e7a786f81a0283"
+      "9e02f16412cb0e9d32bc4c0b378206ee"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512Ciphertext",
@@ -1170,7 +1171,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "87d4a108fcebfd274ad658d9b11eca96"
+      "39f4600b75c1c64d73658861dda2f41b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512PrivateKey",
@@ -1209,7 +1210,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ff56745227fb87a87d97388773fb8554"
+      "5e6c0b88c254baf1d6f4c62b665d61f8"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512PublicKey",
@@ -1248,7 +1249,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "48f177f0705ae36e3e41f3ea4d9b04e1"
+      "b1d57d030fd65c1baa84a9d5898d1132"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.decapsulate",
@@ -1286,7 +1287,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7810e1f5edfb3a2014e7d4e37b80412c"
+      "9c563a2e1ecfa2cd9a04aef59f54b6d4"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.decapsulate",
@@ -1311,10 +1312,8 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -1371,13 +1370,12 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_769d89d2adb5ba14177e537ed06ba341",
         "refinement_interpretation_Tm_refine_790ef91134217408f1ba2895d20e36c7",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
+        "typing_FStar.Seq.Base.length",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -1395,7 +1393,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "def845d27109648d0d430ac5a56f0a4a"
+      "3ed7245a6877d252c2a562ee0c81b489"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.decapsulate",
@@ -1433,7 +1431,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "66639f78f55526b37bc4eba31180d8d8"
+      "75491fb62be628b579d9d17ec21eb415"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.encapsulate",
@@ -1472,7 +1470,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f90a40826309d7d2bfd434d530f02030"
+      "b84ab5f9b1eff188ffba156cc58ebad9"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.encapsulate",
@@ -1561,10 +1559,11 @@
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE"
+        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "cfe0a9a1231e575a33429db9db17c825"
+      "4783628bbc4a8df985e9fff63acade38"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.encapsulate",
@@ -1602,7 +1601,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "88c9f39a776302f85fde2e5b91f4e46e"
+      "f7e1bf32ca90ba77225c2c75d71cc607"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.validate_public_key",
@@ -1641,7 +1640,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e0355768eb782f82cc6e59bcde8abb87"
+      "a4b0034d56c304b35b320fc0f61fdf3c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.validate_public_key",
@@ -1698,7 +1697,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "ecf1d31a45afdb000d90a2569ad81741"
+      "a270f180665815ca266c474d7039d3bc"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.validate_public_key",
@@ -1736,7 +1735,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "906c5397e285a9cc3077ed37df77bda2"
+      "930e285c13515bafd2b025a398330e6f"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.generate_key_pair",
@@ -1775,7 +1774,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "15be009ae7396794435d380d9260007a"
+      "93d5e81bf3df2b1208e95ca431a4e1d4"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.generate_key_pair",
@@ -1812,6 +1811,7 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
         "equation_Spec.Kyber.kyber512_params",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
@@ -1822,9 +1822,8 @@
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_Rust_primitives.Integers.pow2_values",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
+        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
@@ -1845,12 +1844,13 @@
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.kyber512_params",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "40e485cfcf21b05760d89d3090e19fea"
+      "2a5fe051fc4585ed7e3386bdd539c58d"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.generate_key_pair",
@@ -1888,7 +1888,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bc5d7d855ba0c6f7259c923c590af66c"
+      "8a28b787ce2e03ff3235b685a61f4398"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fsti.hints
index 66a27a74..dcefa031 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber512.fsti.hints
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2059fc9d54ef7fce8c38a15217b1302e"
+      "aa28ca3ba0c0009eecc02d1dceb2ec5e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA1_RANDOMNESS_SIZE",
@@ -83,7 +83,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "42f3829c911a6b16824bdb3abea3da81"
+      "1bdfd7a89d46b81604025a9193268cee"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA2",
@@ -121,7 +121,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "eb50ba8a170d208307957c1091fe6851"
+      "79d123607fd036ff08a4001075b295e4"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_ETA2_RANDOMNESS_SIZE",
@@ -167,7 +167,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "24742d8c943bdc6a1d162d810058aad2"
+      "3f05a363be0bc2d36fc119be71f51830"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -205,7 +205,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ef60323351388849180ee455c54730dc"
+      "f26bf512211510641fa970a7d37a632f"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_SECRET_KEY_SIZE_512_",
@@ -263,7 +263,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "a4cf1e5378be46df00093ce550d2c4a4"
+      "b515bf25406a4c439a68cc69393cf8fc"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_RANKED_BYTES_PER_RING_ELEMENT_512_",
@@ -285,9 +285,8 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -313,17 +312,17 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_BITS_PER_RING_ELEMENT",
-        "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4921f13ac06c624fbf1601d7cfb65eb9"
+      "49ef2ff89570c37e8b89c182952c0ccd"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_T_AS_NTT_ENCODED_SIZE_512_",
@@ -361,7 +360,6 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "int_typing",
-        "lemma_FStar.UInt.pow2_values",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
@@ -382,7 +380,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "e51f55354b49361f5036e5520e5dc2a6"
+      "118b0af46c08ec09187a936d68adfa55"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_PUBLIC_KEY_SIZE_512_",
@@ -403,8 +401,8 @@
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -445,7 +443,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "9926fe48196dce5eef75f03fd4b39e10"
+      "d64b411de9fd11e2e1cf446c8619cecb"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_SECRET_KEY_SIZE_512_",
@@ -460,21 +458,17 @@
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U128",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Libcrux.Digest.Algorithm_Sha3_256_",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Libcrux.Digest.Algorithm_Sha3_256_@tok",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Digest.digest_size",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
@@ -496,7 +490,7 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -512,7 +506,6 @@
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "typing_Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
         "typing_Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_PUBLIC_KEY_SIZE_512_",
         "typing_Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_SECRET_KEY_SIZE_512_",
         "typing_Libcrux.Kem.Kyber.Kyber512.v_RANK_512_",
@@ -525,7 +518,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "a403bb899cfe1ae6d121882ca8ac5a81"
+      "1b40ed0db9f76d535e20cbe7e2bb4ef9"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_VECTOR_U_COMPRESSION_FACTOR_512_",
@@ -563,7 +556,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6b68f8ac94dad9040d0fb163bb96848e"
+      "df9ea312db95e13283915b3ba6d05507"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C1_BLOCK_SIZE_512_",
@@ -619,7 +612,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "e64c0e48357767f8d689727a423a475a"
+      "444b3eaf21144531d1e9ddcdda405510"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C1_SIZE_512_",
@@ -685,7 +678,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "5c7c929cffc46b18c87a2f52566f95eb"
+      "192296a2eab44d253758a94d4b9d51f0"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_VECTOR_V_COMPRESSION_FACTOR_512_",
@@ -723,7 +716,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6f4c81735d1fabb5214fbe9e8c4a432e"
+      "09b3fa3f1b21c0ab1e80115b7dbaecc6"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_C2_SIZE_512_",
@@ -779,7 +772,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "83efefe9627657884d76c88048abf348"
+      "b3efe75bd59f7ae30c6dc8a52ace32b2"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_CPA_PKE_CIPHERTEXT_SIZE_512_",
@@ -846,7 +839,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "d842caa35c4c9f524b4459d3d2fa8a6a"
+      "17038d410e1ce23aee13e989fa042b29"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -922,7 +915,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "350fe093d581bd0e37966fc61c2ddd35"
+      "afceff4e83ec52e3b9bb931eaadaa957"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512Ciphertext",
@@ -960,7 +953,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5b0d76a1d59509f1e2cecbe951444e4f"
+      "377e660d006660532a305316e2d28819"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512PrivateKey",
@@ -998,7 +991,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e9a974aba70b69ffe85deefab7b6413d"
+      "86c9462ca306b83d7bf7565d08c05e07"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.t_MlKem512PublicKey",
@@ -1036,7 +1029,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2691225036d5e57f59a2eac269aee5a9"
+      "54feb55636f92fd43acba6e08a16f815"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.decapsulate",
@@ -1074,7 +1067,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "847665a9fb39a3126e159dd312e8a859"
+      "fb7b2d5d0fa4072c88aff143d285c534"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.encapsulate",
@@ -1113,7 +1106,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "78edefda3b13817b627c345d50d9e9e7"
+      "9374314aec339f2797bd930e57a75654"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.validate_public_key",
@@ -1152,7 +1145,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "122e4f20a5bb8c2b7f272f5dd1e703b9"
+      "84c3c6270485b99dad8a3c97db2858fa"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber512.generate_key_pair",
@@ -1191,7 +1184,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0db7c1b848a09c48a0d9ad2a1966b98f"
+      "7fd7d0b409d14c14011ee665fdf1a90a"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fst.hints
index d7fb7a30..11f9d0c6 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fst.hints
@@ -40,7 +40,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "78e129bf5f3478abb940256924cc3cbc"
+      "fa911e655a9161b2edc8f6595caab218"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA1_RANDOMNESS_SIZE",
@@ -94,7 +94,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "18c02ee58e46a757e65f3cf0e2a91f16"
+      "0a0b335800d117b1af02ba009a5d67b2"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA2",
@@ -135,7 +135,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c88b52b77c788357c286de761a755f8c"
+      "4dc43d41c8b9c8f302fc8aa080854f54"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA2_RANDOMNESS_SIZE",
@@ -159,7 +159,7 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Kyber768.v_ETA2", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -189,7 +189,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "20465e3342075bc7100292655e635937"
+      "a236fadf2c28392dc8143dababa47e42"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_RANK_768_",
@@ -230,7 +230,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d5dc8d1ac02892d956b5cc1cdc21a697"
+      "03a0a9556afd04c367e8dd1dab050d59"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_SECRET_KEY_SIZE_768_",
@@ -293,7 +293,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "25d93e4705f73454c83b5bcf82c43da9"
+      "550e7e6574f0466f502871d01e9028cf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_RANKED_BYTES_PER_RING_ELEMENT_768_",
@@ -353,7 +353,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "8b33b70732780d3f1f3eae1f44ae7771"
+      "cf7585d95b3cd8e7300da959a5392edf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_T_AS_NTT_ENCODED_SIZE_768_",
@@ -416,7 +416,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "6ae4236898852674cdba0d0501c8456e"
+      "b3e66401fe320c2deec5524695e3dbd4"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_PUBLIC_KEY_SIZE_768_",
@@ -455,7 +455,9 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
+        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -475,10 +477,11 @@
         "typing_Rust_primitives.Integers.mul",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE"
       ],
       0,
-      "ba7ab5472aa795e8d374f3ab3a711856"
+      "817f7267d950e25260626f536aa65a4e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_SECRET_KEY_SIZE_768_",
@@ -500,9 +503,10 @@
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_PUBLIC_KEY_SIZE_768_",
@@ -600,8 +604,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_typing",
-        "lemma_Rust_primitives.Integers.pow2_values",
+        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_inversion",
+        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_Division", "primitive_Prims.op_LessThanOrEqual",
@@ -653,9 +657,8 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
@@ -748,7 +751,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7633bfaae97e5241c810d9e701db5e76"
+      "c65872a82e6cedce2e339aaf7bb29755"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C1_BLOCK_SIZE_768_",
@@ -805,7 +808,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "2be05125e17a8fe182203cf60edfde3f"
+      "1ea0f68d0ef161eae59edaeb18c32c3e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C1_SIZE_768_",
@@ -876,7 +879,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "3f24a4b8c45befa475f974c97cc64e26"
+      "c2eec3b30adf5b206bf620c7ab5d7808"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_VECTOR_V_COMPRESSION_FACTOR_768_",
@@ -915,7 +918,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ca2f1fcef6f0ad2d5f4e72f86d93e87a"
+      "88d6fea7a183b5f4e3b0f8d26eb19c59"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C2_SIZE_768_",
@@ -952,8 +955,7 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "int_typing",
-        "lemma_FStar.UInt.pow2_values", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
@@ -974,7 +976,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "628aede4dc396ff7978af28992f6be5b"
+      "0219c108b135a7cf31943d9b1941150b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_CIPHERTEXT_SIZE_768_",
@@ -1031,15 +1033,11 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_e477cd5567f25e8e57e00f0185fa1ab0",
         "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "typing_Libcrux.Kem.Kyber.Kyber768.v_C1_BLOCK_SIZE_768_",
         "typing_Libcrux.Kem.Kyber.Kyber768.v_C1_SIZE_768_",
         "typing_Libcrux.Kem.Kyber.Kyber768.v_C2_SIZE_768_",
-        "typing_Libcrux.Kem.Kyber.Kyber768.v_VECTOR_U_COMPRESSION_FACTOR_768_",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.mul",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -1047,7 +1045,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "b27edfbbe60af5dcb01a5bc34cb144e6"
+      "ffe33a9d9b3bc044495613d095d5a266"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -1095,8 +1093,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
+        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_typing",
+        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_Division", "primitive_Prims.op_LessThanOrEqual",
@@ -1125,7 +1123,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "5ad62a486c725c5e54b2b1e8bb9fda48"
+      "4579b5f484897f00a3e2bcb4fe96c54b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768Ciphertext",
@@ -1164,7 +1162,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2191e4e488030b38fe6509cf5cacb787"
+      "c2e7e2773624db5d7224547737fb728e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768PrivateKey",
@@ -1203,7 +1201,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "4303ff3ebf0247a1466c21057577e71f"
+      "97bb528a1717bb14fd056a4586aa1c1c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768PublicKey",
@@ -1242,7 +1240,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "71675047e6e1d17ce86d87993c638c7a"
+      "1f7742e203ecbd68e35cbb26de8e0923"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.decapsulate",
@@ -1280,7 +1278,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "84a6f1782f8720e57121d3f03ef14d7c"
+      "ab2eda1f71cb75a618412c01db2a2b2c"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.decapsulate",
@@ -1422,7 +1420,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "469cb3d6550af50065b90aecaba6e54e"
+      "36ca8d053761bf6c596cd063326d4ebd"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.encapsulate",
@@ -1461,7 +1459,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "675447d9f6d2fafb968391e5a385cd4a"
+      "2cf17f8cd82510b3b957c3dcea79928d"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.encapsulate",
@@ -1480,13 +1478,11 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Lib.IntTypes.byte_t", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -1560,7 +1556,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "51c4d88c72588f2fc0f1aeb0031c4282"
+      "5ceccf8743d623776d37a39fe4660bf1"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.encapsulate",
@@ -1598,7 +1594,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "b12d5926af5c357620646db7b260f0f2"
+      "1b1ac2552b2ca62a2e3f5544767341fc"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.validate_public_key",
@@ -1636,7 +1632,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c2599af5521e7378037077c39d1a2026"
+      "1966c75b64b40b6aa910b70292b9ee02"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.validate_public_key",
@@ -1693,7 +1689,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "cfc7f73554042962b8613431c282099c"
+      "71f7e6f708874bd773af04f341fc6b83"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.validate_public_key",
@@ -1731,7 +1727,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "71a78c19e7d95ed70773c19cd00caed8"
+      "ade1776fb6834fcf6a9a1468cc760acf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.generate_key_pair",
@@ -1770,7 +1766,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "713599452147ec5dded149ff95f25fac"
+      "a396d1be632cca6b45bbc9c75721ac77"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.generate_key_pair",
@@ -1819,7 +1815,6 @@
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -1847,7 +1842,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "bcfda6bbdd4688c3f4247c2052aea576"
+      "3f13b93a5b4a75b97cbb1fa12f8b583a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.generate_key_pair",
@@ -1885,7 +1880,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "30648106e9609ee3ce22b6d368f96484"
+      "5db38641e826ab25a6149d20d46f3e34"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fsti.hints
index 4207ac58..39b305ee 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Kyber768.fsti.hints
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cb3b7594f3b2bf4e512787bc7e330110"
+      "1f3083f96d622c100784e10455348017"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA1_RANDOMNESS_SIZE",
@@ -82,7 +82,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e58a10233f63531a2ecc8dce1341a5e8"
+      "f8ab1d6f9a8d57169a6af1d2e68298ab"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA2",
@@ -120,7 +120,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "4ff237fe793f113e68e8971ebf89a918"
+      "0925c018f998e8d66581b4a0aba786e5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_ETA2_RANDOMNESS_SIZE",
@@ -168,7 +168,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fde97c215f2857d2091d20efbdc12f32"
+      "12574bebce6a914cad2c7f267184128b"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_RANK_768_",
@@ -206,7 +206,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8bee650efca1352289352e55c13ba253"
+      "aecd8db0d9fcc3bde1b2aa253c7357f3"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_SECRET_KEY_SIZE_768_",
@@ -264,7 +264,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "6eb034cd122834a0a8a64be60f0e0732"
+      "6702ff55442ae71efe43540865fae908"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_RANKED_BYTES_PER_RING_ELEMENT_768_",
@@ -322,7 +322,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "348020aca07ef27b36b0ac86600215ed"
+      "c7055c4b7e5097a5659b930bfb035f79"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_T_AS_NTT_ENCODED_SIZE_768_",
@@ -381,7 +381,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "2d98daf25874b0fecd096156c28558dc"
+      "f16d70817e8098063bc15ff8d07d3668"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_PUBLIC_KEY_SIZE_768_",
@@ -444,7 +444,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "58327b5fb6391ef419b92de5cd16fc00"
+      "0baf14e54d83f3fa80ccf5e26d31971a"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_SECRET_KEY_SIZE_768_",
@@ -459,20 +459,16 @@
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U128",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Libcrux.Digest.Algorithm_Sha3_256_",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Libcrux.Digest.Algorithm_Sha3_256_@tok",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Libcrux.Digest.digest_size",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_BITS_PER_COEFFICIENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
@@ -526,7 +522,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "186385fbda6275da2e8993f85d1ce76c"
+      "d06cfc470701408d10fa5169955ea476"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_VECTOR_U_COMPRESSION_FACTOR_768_",
@@ -564,7 +560,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c943858848615a19ae2c190b79784deb"
+      "645d7b1742165605a2cf1ce801486b9f"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C1_BLOCK_SIZE_768_",
@@ -620,7 +616,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "2f76a8ce9e42012306d7575e81383e8b"
+      "c5ee15a91df683df0d00f33a9aad43e5"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C1_SIZE_768_",
@@ -686,7 +682,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "2fb2a1e421af3f17d95b8f51785c9367"
+      "10e32b59c2d843d12932e2a50e0ddeaa"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_VECTOR_V_COMPRESSION_FACTOR_768_",
@@ -724,7 +720,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2631b839e4b78917c58065d8657c6c93"
+      "487aead8715355ca6daf45c3dae3fe4e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_C2_SIZE_768_",
@@ -780,7 +776,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "17527ebc1ffbcf53d7c0a74badf56dde"
+      "29bae7d797f8cd1d9570f1667dc2d54e"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_CPA_PKE_CIPHERTEXT_SIZE_768_",
@@ -851,7 +847,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "1dc56ec77996be68719656342922ceae"
+      "3a78111269963980162a3f9359eff976"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -927,7 +923,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "3d04dea9b49c742cb3b55bffc8ff18ef"
+      "31e38faa2a471da2393c63bd751e7121"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768Ciphertext",
@@ -965,7 +961,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ced332388599bd6d26bcd345215c802d"
+      "2016c1e3a013773b8076ce113f3c5fb4"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768PrivateKey",
@@ -1003,7 +999,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "68ef42acdc22b87256cf5321a97621cc"
+      "19c4e5cb4729d986d0f75ab38f0c7614"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.t_MlKem768PublicKey",
@@ -1041,7 +1037,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fedda70c671ada6e3549b414f37df298"
+      "34a71009f00e701d0de5d02c706a0346"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.decapsulate",
@@ -1079,7 +1075,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2a7157ff514557b7e990c9b131a0f8be"
+      "1441a4742b683f6a4dd7459fefdaad92"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.encapsulate",
@@ -1118,7 +1114,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "94c3ff64640e052bd5f8e39cd54469fc"
+      "f34bf6e4abc7cdc866713c96f7e5decf"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.validate_public_key",
@@ -1156,7 +1152,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d2b9a2cb402190884d24579f3fde0b04"
+      "cf22d672141450d6003bd7b8b888ac03"
     ],
     [
       "Libcrux.Kem.Kyber.Kyber768.generate_key_pair",
@@ -1195,7 +1191,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "dc7e590822d7ae03b6b5960f683d3db8"
+      "16be7edca2089a4bc7dbdca36138ae68"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fst.hints
index 32b25f4c..dc6a2429 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fst.hints
@@ -60,7 +60,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "3d8e0616ee2b066ba8b92dbc4bf67abe"
+      "e18a266364cafc600bd67e8b06ad6bea"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_As_plus_e",
@@ -118,7 +118,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "b08d39a03f3a672aaec892e8271212ee"
+      "b690e0138ca1f494c19bc33eaed45918"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_As_plus_e",
@@ -175,7 +175,6 @@
         "equation_Rust_primitives.Hax.repeat",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.gte",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -198,7 +197,6 @@
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.Integers.usize",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_43f231abb4a58902146ee87bdacad696",
         "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
@@ -268,11 +266,9 @@
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
-        "typing_FStar.Int32.v",
-        "typing_FStar.Pervasives.Native.__proj__Mktuple2__item___1",
-        "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Base.length",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.pub_int_v",
-        "typing_Lib.IntTypes.v",
+        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.index",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.bits",
+        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_vector_b",
@@ -297,7 +293,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "909ada2966f294e0058e3b21b5e58d32"
+      "60388885aa4b9cd307424e85517904d8"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_message",
@@ -344,7 +340,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "434debc05c39f3b54eea8df82277ca4c"
+      "9feb2b3d149b7fd914569a6f28ca21ee"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_message",
@@ -457,7 +453,6 @@
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "refinement_interpretation_Tm_refine_22ddafcc8fb0243d073e045b66379871",
         "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
@@ -510,7 +505,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "c0bd5f710096b2b8673d089ba5df6faf"
+      "0f229081c319e0c037a35d014230510b"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_ring_element_v",
@@ -557,7 +552,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "ac59d88c3b9a84400d889fe684f8c35d"
+      "55c10cdb3128bca720a2ddfd7a06234a"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_ring_element_v",
@@ -723,7 +718,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "2b1b93415b9c8bc2bcd5625ae17496f7"
+      "8ac670f7aa1419c4edb2f40c7f1e7c80"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_vector_u",
@@ -770,7 +765,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "11d4e93576f916524673912d65ecc74c"
+      "af1b2b74b64ee0a1df6b306205aba36d"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_vector_u",
@@ -780,8 +775,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Core.Ops_interpretation_Tm_arrow_3699e8fdd24695614057bb72105d9242",
-        "Core.Ops_interpretation_Tm_arrow_6c1403cef27e6ea8601e566035b2eff2",
+        "Libcrux.Kem.Kyber.Arithmetic_pretyping_6c8e29ff3e1140b8d618bf5156b86de0",
+        "Libcrux.Kem.Kyber.Arithmetic_pretyping_f261e02eb813803697f4ffc12f4f949d",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.Hax_interpretation_Tm_arrow_77de5982ed6885d94da0664a4a3face8",
         "b2t_def", "bool_inversion", "bool_typing",
@@ -850,11 +845,10 @@
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement",
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
         "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Core.Ops.op_String_Access",
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfFieldElement",
         "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.Integers.usize",
+        "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_43f231abb4a58902146ee87bdacad696",
         "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
@@ -920,16 +914,15 @@
         "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e68177b68b2101ed4fd5e6438909d115",
-        "refinement_interpretation_Tm_refine_f303dfb13dcafd11f81b25d2ba3ca9da",
+        "refinement_interpretation_Tm_refine_efef75a7273bf9f8f712b7d4975155c9",
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
-        "typing_FStar.Int32.v",
-        "typing_FStar.Pervasives.Native.__proj__Mktuple2__item___1",
-        "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Base.length",
-        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
+        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.index",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.pub_int_v",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
         "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
@@ -941,12 +934,9 @@
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_BARRETT_R",
         "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Arrays.t_Array",
-        "typing_Rust_primitives.Hax.impl__index",
-        "typing_Rust_primitives.Hax.repeat",
+        "typing_Prims.pow2", "typing_Rust_primitives.Hax.repeat",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -959,7 +949,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "83b87a84f42519b4d118fccc0753dea3"
+      "e71143c7a3ea75616cd14a530e94be2b"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.sample_matrix_A",
@@ -1038,7 +1028,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "58508f1c9381835fb49322858fa45634"
+      "d2c06c8f4486703086793a608f5a33af"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.sample_matrix_A",
@@ -1137,7 +1127,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "d656ae27dae275b4a54a939f5737be9b"
+      "89565ab72dfc88c5da467596a7eda21d"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.sample_matrix_A",
@@ -1147,9 +1137,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -1157,84 +1145,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Core.Iter.Traits.Collect.f_into_iter",
-        "equation_Core.Ops.Range.iterator_range", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
-        "interpretation_Tm_abs_29c790849abcf444c15b4351363d1b40",
-        "interpretation_Tm_abs_412e363c41d2c7d31f96c2685c7138f2",
-        "interpretation_Tm_abs_4da4c2420140680c2bf4358d0bc52b3f",
-        "l_and-interp", "lemma_FStar.Int32.vu_inv",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Iter.Traits.Iterator.Mkiterator_f_contains",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Iter.Traits.Collect.Mkinto_iterator_f_IntoIter",
-        "projection_inverse_Core.Iter.Traits.Collect.Mkinto_iterator_f_into_iter",
-        "projection_inverse_Core.Iter.Traits.Iterator.Mkiterator_f_contains",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "refinement_interpretation_Tm_refine_08126773a0ec43652fb7d75527aeafb2",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "token_correspondence_Core.Iter.Traits.Collect.f_into_iter",
-        "token_correspondence_Core.Iter.Traits.Iterator.__proj__Mkiterator__item__f_contains",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_ETA2",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "ac4465523f8530122ddd6646bf5c05ae"
+      "fbcc2532fe58c03f417ff43e3c604bce"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fsti.hints
index db8da04d..33d6b7ad 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Matrix.fsti.hints
@@ -57,7 +57,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "7713e9badd2d8da11c14fcacf3da8e4b"
+      "4ab43bdd65a49a68ed91bd0cc04406ba"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_message",
@@ -76,7 +76,7 @@
         "refinement_interpretation_Tm_refine_91f3e355a68e029a1d9c76dc5b383c7e"
       ],
       0,
-      "8f313b9a9655a40f4cd1ebbce7c1aee4"
+      "62d306e18418cd72f42eeffa709fca77"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_ring_element_v",
@@ -95,7 +95,7 @@
         "refinement_interpretation_Tm_refine_91f3e355a68e029a1d9c76dc5b383c7e"
       ],
       0,
-      "9eba19310c9d753b6256a2244442bf41"
+      "5f3834c7deaeecf9baba712114fea2e9"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.compute_vector_u",
@@ -142,7 +142,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "f21b3ed6111658bec88ba9a16f90c16f"
+      "0a14a8ce22ba378c2a8a2c44cf5ac3a4"
     ],
     [
       "Libcrux.Kem.Kyber.Matrix.sample_matrix_A",
@@ -221,7 +221,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "9b5d3cd7ec143bb24d5901468e5d212a"
+      "8c43efdc43f98ea1d8fa04cbe6478620"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fst.hints
index e4a1ee29..892b1558 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fst.hints
@@ -73,7 +73,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "9a552b5592beace7090cfd72b5e470b5"
+      "df6ccfd331328c87c23f6718df28d8c3"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.v_ZETAS_TIMES_MONTGOMERY_R",
@@ -164,7 +164,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "da5864e2b5e411a1932c437cf4e568bb"
+      "a666a73717c4e57160bee28948cd97cd"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_multiply_binomials",
@@ -229,7 +229,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "cd1a03593dbf3f30ea60ca1910d95e64"
+      "d6d11f0018bae24dbb8f070af9088487"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.mul_zeta_red",
@@ -251,7 +251,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c2f8719077b0e8cf45374be709e91ddb"
+      "c7e4c92e43ec38eb7bec3bd498610303"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.mul_zeta_red",
@@ -275,9 +275,7 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.Int.fits",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
@@ -293,8 +291,6 @@
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Libcrux.Kem.Kyber.Ntt.v_ZETAS_TIMES_MONTGOMERY_R",
         "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Hax.impl__index",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
@@ -310,12 +306,10 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
         "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
+        "int_inversion", "int_typing", "lemma_FStar.Int32.uv_inv",
+        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -325,7 +319,6 @@
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
         "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
@@ -341,8 +334,6 @@
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_dadee4515473017568390482327a5b06",
         "refinement_interpretation_Tm_refine_f8174c18c56fd6df717c2f2a2413c1d6",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_FStar.UInt32.t",
         "typing_FStar.UInt64.t", "typing_Lib.IntTypes.v",
@@ -357,7 +348,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "1169bdbcb1ad548c72b4be84025137e0"
+      "09018e1d55725a528c3badc327092ca4"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.mul_zeta_red",
@@ -365,105 +356,21 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.nat_div_ceil",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Ntt.v_ZETAS_TIMES_MONTGOMERY_R",
-        "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Hax.impl__index",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.maxint",
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
+        "equation_Rust_primitives.Integers.unsigned", "int_inversion",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
-        "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
-        "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8df96e43ae266c076dc3f473846d2cdc",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_a98b317897b1e4c2837553dddb4b95a2",
         "refinement_interpretation_Tm_refine_b094c95ff178317720d7295ce1fdcbef",
-        "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_dadee4515473017568390482327a5b06",
         "refinement_interpretation_Tm_refine_f8174c18c56fd6df717c2f2a2413c1d6",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.op_String_Access",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_FStar.Int.fits", "typing_FStar.UInt32.t",
-        "typing_FStar.UInt64.t", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Libcrux.Kem.Kyber.Ntt.v_ZETAS_TIMES_MONTGOMERY_R",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "4923b60c55aa43f301a0c3527ee1edf9"
+      "224e3607b7fa3092b0d1b7d2bc9b4980"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.lemma_zeta_decr",
@@ -492,7 +399,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "e134a8b13d31f7f383b1a580e64616c9"
+      "7cf6c69f4dbbd53b010a84431a063362"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.lemma_zeta_decr",
@@ -541,7 +448,6 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bd12496cf074f4dd150ab28907177efc",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_Lib.IntTypes.v", "typing_Prims.pow2",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
@@ -550,7 +456,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "bd348cb0bc19a0858d31093f730334c1"
+      "bc4abd30aabc2b38f7869d84094c7b62"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
@@ -568,7 +474,7 @@
         "refinement_interpretation_Tm_refine_f8174c18c56fd6df717c2f2a2413c1d6"
       ],
       0,
-      "67ce7023e1d0d57d818fe2d01656c964"
+      "daae32a00af1e39869f535e2f76b1c6e"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
@@ -579,7 +485,6 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
@@ -593,17 +498,19 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.UInt.max_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Core.Ops.op_String_Access", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
         "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Hax.impl__index",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
@@ -637,18 +544,18 @@
         "lemma_FStar.Int.pow2_values",
         "lemma_FStar.Seq.Base.lemma_index_upd2", "lemma_Lib.IntTypes.pow2_2",
         "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_Division",
         "primitive_Prims.op_GreaterThanOrEqual",
         "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
         "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
+        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_f_coefficients",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
@@ -657,7 +564,7 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_43453cb4d924052da16edc30727cedb1",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
@@ -683,12 +590,11 @@
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_end",
         "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_start",
-        "typing_Lib.IntTypes.v",
+        "typing_FStar.Seq.Base.upd", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.add",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
@@ -701,22 +607,48 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "c44ec9da292de9bb7c2421e2533a12a7"
+      "95133df37bea26e64726c42359b4098a"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
       3,
       0,
       0,
+      [
+        "@query", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxInt_proj_0"
+      ],
+      0,
+      "6487ffab0f041a145e0ff9af6348cedb"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "primitive_Prims.op_Multiply",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1"
+      ],
+      0,
+      "4f7465844342eb007c14ebb57502d82b"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
+      2,
+      0,
+      1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_493aa8484c8c31598cec836935a2442d",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_76c9e9995bd70bc3724550f5fea835da",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_c11aee678f081d9d23de2709fd621b70",
+        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_20f40d9ee1256a2a68373ae4ecd3f1d7",
+        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_cc42e9585ff647700033da40cc9a7026",
+        "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.Iterators_interpretation_Tm_arrow_3eb481ea9c18f8e60186c8a373e66673",
         "Rust_primitives.Iterators_interpretation_Tm_arrow_983b3ba85e9317f2f487483cb7071e8b",
-        "bool_inversion", "bool_typing",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
@@ -725,143 +657,125 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
+        "data_elim_FStar.Pervasives.Native.Mktuple2",
+        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
+        "data_typing_intro_Core.Ops.Range.Mkt_Range@tok",
+        "data_typing_intro_FStar.Pervasives.Native.Mktuple2@tok",
+        "eq2-interp", "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.UInt.max_int",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.size_t",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
         "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
         "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
+        "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.logical", "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Hax.impl__index",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
+        "equation_Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
+        "equation_Prims.eq2", "equation_Prims.logical", "equation_Prims.nat",
+        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.div",
-        "equation_Rust_primitives.Integers.gte",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
         "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_Lib.IntTypes.size_t",
+        "function_token_typing_Prims.__cache_version_number__",
         "function_token_typing_Rust_primitives.Integers.usize",
         "int_inversion", "int_typing",
-        "interpretation_Tm_abs_10a3d39846585a4b3803d4efb00fa9be",
-        "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
-        "interpretation_Tm_abs_cd29f8dc0c2885a00537612193cb4d50",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "kinding_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b@tok",
-        "l_and-interp", "l_quant_interp_0732d98303b0147912d17794f726b6e5",
-        "l_quant_interp_5a0004e0ad1449062cce666ecffa1adc",
-        "l_quant_interp_b3b0c01cc1e9c8c155c93c9f421d96c9",
-        "l_quant_interp_d5bf36b416a3dbc75bdbc595aeb3aa5a",
-        "lemma_FStar.Seq.Base.lemma_index_upd2", "lemma_Lib.IntTypes.pow2_2",
+        "interpretation_Tm_abs_6dff373001dc1d906d6042062048722d",
+        "interpretation_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
+        "kinding_FStar.Pervasives.Native.tuple2@tok", "l_and-interp",
+        "l_quant_interp_3524d72b7e55c1565267a3ae64984311",
+        "l_quant_interp_f40cf458c0341f143affa4bb088a3ae2",
+        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
         "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Lib.IntTypes.v_injective",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
         "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_0a1fc74b53c69a41eceb9d7368f73b62",
         "refinement_interpretation_Tm_refine_1774adebc4a11b344df7bc2ecbb2e9b4",
         "refinement_interpretation_Tm_refine_1cc075782412c91ec7de7e656d2b474e",
-        "refinement_interpretation_Tm_refine_26c006c7778f616c4df7b77b3cb01b96",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_interpretation_Tm_refine_3073dbb1695e5d5c87e62d3770f0bf8b",
         "refinement_interpretation_Tm_refine_3399a824ff354d64b8173aab366396cb",
-        "refinement_interpretation_Tm_refine_43453cb4d924052da16edc30727cedb1",
         "refinement_interpretation_Tm_refine_45f1c8700346b4c5f08a6246edcd69b1",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_4aa066355e9384aa98eb2ace9b0d012f",
+        "refinement_interpretation_Tm_refine_4bb22e36e30d68c2db3a3c9c632a2fcd",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_72aa4e9a333138ff40ac71e01700883b",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_acb0d54889ee3635bf5bc34b8b07580d",
-        "refinement_interpretation_Tm_refine_b094c95ff178317720d7295ce1fdcbef",
         "refinement_interpretation_Tm_refine_b44d5c1f88f048774ee7f4587bf43549",
-        "refinement_interpretation_Tm_refine_b55456d17f7702005ad46ac39eb6ff1f",
         "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
         "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c6e59d564177cec47542202264fb74df",
-        "refinement_interpretation_Tm_refine_c943115eee9824e31978d2201ce69912",
-        "refinement_interpretation_Tm_refine_cdb746ef12ad546404e15996fdd7203c",
-        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_c525f4bc3aa418afe0bd65cc4d0f6cd8",
         "refinement_interpretation_Tm_refine_db34f85ef93bcb2d34b943688dde22bb",
-        "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
-        "refinement_interpretation_Tm_refine_f8174c18c56fd6df717c2f2a2413c1d6",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_end",
         "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_start",
         "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.div",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.lt",
         "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
+        "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Rust_primitives.Iterators.foldi_range",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Tm_abs_cd29f8dc0c2885a00537612193cb4d50",
+        "typing_Tm_abs_6dff373001dc1d906d6042062048722d",
+        "typing_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "28761dd3fd28c4d54874beb44426ae51"
+      "3972a9ddbba4b466ffbc6a4c71ab2d10"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
-      1,
+      3,
       0,
       1,
       [
@@ -870,292 +784,11 @@
         "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1"
       ],
       0,
-      "df9c7a5ca544504cc050a88a390b1efa"
+      "5b9b03005d5fb7e6eea4f9598a9e5777"
     ],
     [
-      "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
-      2,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_20f40d9ee1256a2a68373ae4ecd3f1d7",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_cc42e9585ff647700033da40cc9a7026",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_3eb481ea9c18f8e60186c8a373e66673",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_983b3ba85e9317f2f487483cb7071e8b",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
-        "data_typing_intro_Core.Ops.Range.Mkt_Range@tok",
-        "data_typing_intro_FStar.Pervasives.Native.Mktuple2@tok",
-        "eq2-interp", "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.UInt.max_int", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.size_t",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
-        "equation_Prims.eq2", "equation_Prims.logical", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.div",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
-        "function_token_typing_Lib.IntTypes.size_t",
-        "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.Integers.usize",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_6dff373001dc1d906d6042062048722d",
-        "interpretation_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
-        "kinding_FStar.Pervasives.Native.tuple2@tok", "l_and-interp",
-        "l_quant_interp_3524d72b7e55c1565267a3ae64984311",
-        "l_quant_interp_f40cf458c0341f143affa4bb088a3ae2",
-        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
-        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "refinement_interpretation_Tm_refine_0a1fc74b53c69a41eceb9d7368f73b62",
-        "refinement_interpretation_Tm_refine_1774adebc4a11b344df7bc2ecbb2e9b4",
-        "refinement_interpretation_Tm_refine_1cc075782412c91ec7de7e656d2b474e",
-        "refinement_interpretation_Tm_refine_3073dbb1695e5d5c87e62d3770f0bf8b",
-        "refinement_interpretation_Tm_refine_3399a824ff354d64b8173aab366396cb",
-        "refinement_interpretation_Tm_refine_45f1c8700346b4c5f08a6246edcd69b1",
-        "refinement_interpretation_Tm_refine_4aa066355e9384aa98eb2ace9b0d012f",
-        "refinement_interpretation_Tm_refine_4bb22e36e30d68c2db3a3c9c632a2fcd",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_72aa4e9a333138ff40ac71e01700883b",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b44d5c1f88f048774ee7f4587bf43549",
-        "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
-        "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_c525f4bc3aa418afe0bd65cc4d0f6cd8",
-        "refinement_interpretation_Tm_refine_db34f85ef93bcb2d34b943688dde22bb",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.div",
-        "typing_Rust_primitives.Integers.gte",
-        "typing_Rust_primitives.Integers.lt",
-        "typing_Rust_primitives.Integers.lte",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Rust_primitives.Iterators.foldi_range",
-        "typing_Tm_abs_6dff373001dc1d906d6042062048722d",
-        "typing_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
-      ],
-      0,
-      "a7a954e0a3a0b1c4d4287ee57e13744c"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
-      3,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_20f40d9ee1256a2a68373ae4ecd3f1d7",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_cc42e9585ff647700033da40cc9a7026",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_3eb481ea9c18f8e60186c8a373e66673",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_983b3ba85e9317f2f487483cb7071e8b",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
-        "data_typing_intro_Core.Ops.Range.Mkt_Range@tok",
-        "data_typing_intro_FStar.Pervasives.Native.Mktuple2@tok",
-        "eq2-interp", "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.size_t", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_COEFFICIENTS_IN_RING_ELEMENT",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
-        "equation_Prims.eq2", "equation_Prims.logical", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.div",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
-        "function_token_typing_Lib.IntTypes.size_t",
-        "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.Integers.usize",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_6dff373001dc1d906d6042062048722d",
-        "interpretation_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
-        "kinding_FStar.Pervasives.Native.tuple2@tok", "l_and-interp",
-        "l_quant_interp_3524d72b7e55c1565267a3ae64984311",
-        "l_quant_interp_f40cf458c0341f143affa4bb088a3ae2",
-        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
-        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_f_coefficients",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "refinement_interpretation_Tm_refine_0a1fc74b53c69a41eceb9d7368f73b62",
-        "refinement_interpretation_Tm_refine_1774adebc4a11b344df7bc2ecbb2e9b4",
-        "refinement_interpretation_Tm_refine_1cc075782412c91ec7de7e656d2b474e",
-        "refinement_interpretation_Tm_refine_3073dbb1695e5d5c87e62d3770f0bf8b",
-        "refinement_interpretation_Tm_refine_3399a824ff354d64b8173aab366396cb",
-        "refinement_interpretation_Tm_refine_45f1c8700346b4c5f08a6246edcd69b1",
-        "refinement_interpretation_Tm_refine_4aa066355e9384aa98eb2ace9b0d012f",
-        "refinement_interpretation_Tm_refine_4bb22e36e30d68c2db3a3c9c632a2fcd",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_72aa4e9a333138ff40ac71e01700883b",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b44d5c1f88f048774ee7f4587bf43549",
-        "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
-        "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_c525f4bc3aa418afe0bd65cc4d0f6cd8",
-        "refinement_interpretation_Tm_refine_db34f85ef93bcb2d34b943688dde22bb",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_end",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement__item__f_coefficients",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.cast_poly_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.div",
-        "typing_Rust_primitives.Integers.gte",
-        "typing_Rust_primitives.Integers.lt",
-        "typing_Rust_primitives.Integers.lte",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Rust_primitives.Iterators.foldi_range",
-        "typing_Tm_abs_6dff373001dc1d906d6042062048722d",
-        "typing_Tm_abs_ef39b3242808b90baaf8441dcc8c7e36",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok"
-      ],
-      0,
-      "468e4807111852aa767400ca86a64eaf"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Ntt.mul_zeta_red2",
-      1,
+      "Libcrux.Kem.Kyber.Ntt.mul_zeta_red2",
+      1,
       0,
       1,
       [
@@ -1170,101 +803,13 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2500c3ff8d0dbc5ec2324fcb21a15a6c"
+      "4d89b9db2fb70db2d6df2bf1be4eaeac"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.mul_zeta_red2",
       2,
       0,
       1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "b2t_def",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.nat_div_ceil",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
-        "refinement_interpretation_Tm_refine_4dec773fe9b7ed3c95b1326ceaa3ab75",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3",
-        "refinement_interpretation_Tm_refine_dadee4515473017568390482327a5b06",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_FStar.Int.fits", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
-      ],
-      0,
-      "ec108fb9cb231444286157706ec1bb42"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Ntt.mul_zeta_red2",
-      3,
-      0,
-      1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
@@ -1304,248 +849,90 @@
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
-        "refinement_interpretation_Tm_refine_4dec773fe9b7ed3c95b1326ceaa3ab75",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3",
-        "refinement_interpretation_Tm_refine_dadee4515473017568390482327a5b06",
-        "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
-      ],
-      0,
-      "ed7bcd85131ab26f9ff6c7bae39bc0d7"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
-      1,
-      0,
-      0,
-      [
-        "@MaxIFuel_assumption", "@query",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.v",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_0958ecb529068e0c597be1e8c0b332e7",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
-        "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3"
-      ],
-      0,
-      "ac1c38ebfbc5440237acfaad4beb1419"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
-      2,
-      0,
-      0,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_6b574e907f7e629d541dba716cf842c8",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_d261ac4a865360e5423e441478620aa5",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_e459e54a957e11470f0dae0b667e53fe",
-        "Libcrux.Kem.Kyber.Ntt_interpretation_Tm_arrow_ec16ca589400ddab2e4dc33550b57e9e",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_3eb481ea9c18f8e60186c8a373e66673",
-        "Rust_primitives.Iterators_interpretation_Tm_arrow_983b3ba85e9317f2f487483cb7071e8b",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "data_typing_intro_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b@tok",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.pow2_31",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Ntt.mul_zeta_red2", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Hax.impl__index",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.div",
-        "equation_Rust_primitives.Integers.gte",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.modulus",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_left",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
-        "function_token_typing_Rust_primitives.Integers.usize",
-        "int_inversion", "int_typing",
-        "interpretation_Tm_abs_270ada60bfef4b2b4637b8e7dfa256e9",
-        "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
-        "interpretation_Tm_abs_99f3c02610693e81d614723104d77c28",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "kinding_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b@tok",
-        "l_and-interp", "l_quant_interp_2d1e48269a3bfc46924a64aa24c65441",
-        "l_quant_interp_8adb376c57f5ba6d816784eaa3aec8ec",
-        "l_quant_interp_9229f3ec7efe6449082b5b465532a55f",
-        "l_quant_interp_f6f5d988ac86313e18fdfdb63844e0b7",
-        "lemma_FStar.Int.pow2_values", "lemma_FStar.Int32.vu_inv",
-        "lemma_FStar.Seq.Base.lemma_index_upd2", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_Prims.__cache_version_number__",
+        "int_inversion", "int_typing", "lemma_FStar.Int32.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
-        "proj_equation_Core.Ops.Range.Mkt_Range_f_start",
-        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
+        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0958ecb529068e0c597be1e8c0b332e7",
-        "refinement_interpretation_Tm_refine_1774adebc4a11b344df7bc2ecbb2e9b4",
-        "refinement_interpretation_Tm_refine_1cc075782412c91ec7de7e656d2b474e",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_3073dbb1695e5d5c87e62d3770f0bf8b",
+        "refinement_interpretation_Tm_refine_3062f7cc617d10a50c0935cbe1373469",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
-        "refinement_interpretation_Tm_refine_3399a824ff354d64b8173aab366396cb",
-        "refinement_interpretation_Tm_refine_3c83aab0f3ed58858f3edd0aef5b02c6",
-        "refinement_interpretation_Tm_refine_3feb4186f64b0773dea35af0afb6f3ea",
-        "refinement_interpretation_Tm_refine_45f1c8700346b4c5f08a6246edcd69b1",
         "refinement_interpretation_Tm_refine_4dec773fe9b7ed3c95b1326ceaa3ab75",
-        "refinement_interpretation_Tm_refine_51327043faa516b5685376abdec710bd",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_64d867a2413c4d634f87fcc53fdd1fae",
         "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
-        "refinement_interpretation_Tm_refine_72aa4e9a333138ff40ac71e01700883b",
-        "refinement_interpretation_Tm_refine_76fe0a5f9f84ad272d74fac166aa55fe",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_7ab4c08e82642b7b946f13776623927e",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_85f37737fcaee5faaf970c3740562c64",
-        "refinement_interpretation_Tm_refine_8ecf99b1cfd2713dd412eccfdc2ae3e7",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_a8dbbf15b8d53fa1d8c3021449bbf7b6",
-        "refinement_interpretation_Tm_refine_b1bbc26c188ac642e23787f17d05a6d8",
-        "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3",
-        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
         "refinement_interpretation_Tm_refine_dadee4515473017568390482327a5b06",
-        "refinement_interpretation_Tm_refine_db34f85ef93bcb2d34b943688dde22bb",
-        "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
-        "refinement_interpretation_Tm_refine_e01cc15d0a06443a7c241193033ff5d0",
-        "refinement_interpretation_Tm_refine_f19379f9495f73ef08ae00f02cadf0d4",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_end",
-        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_start",
-        "typing_FStar.Seq.Base.upd", "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.add_i32_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
-        "typing_Libcrux.Kem.Kyber.Arithmetic.sub_i32_b",
+        "typing_FStar.Int.fits", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Arithmetic.v_MONTGOMERY_R",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Libcrux.Kem.Kyber.Ntt.mul_zeta_red2", "typing_Prims.pow2",
-        "typing_Rust_primitives.Hax.Monomorphized_update_at.update_at_usize",
-        "typing_Rust_primitives.Integers.add",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.gte",
-        "typing_Rust_primitives.Integers.lt",
-        "typing_Rust_primitives.Integers.lte",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Rust_primitives.Iterators.foldi_range",
-        "typing_Tm_abs_270ada60bfef4b2b4637b8e7dfa256e9",
-        "typing_Tm_abs_99f3c02610693e81d614723104d77c28",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "afb1782245859f832384a3886c105feb"
+      "1596a97c9f421c2a5c0abf2e53754be4"
     ],
     [
-      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
+      "Libcrux.Kem.Kyber.Ntt.mul_zeta_red2",
       3,
       0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.unsigned",
+        "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "66084eae94b70e8515e8780f100e2e0c"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
+      1,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.v",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_0958ecb529068e0c597be1e8c0b332e7",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_6d2a49e79155844e6a44ebd281e78342",
+        "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3"
+      ],
+      0,
+      "336a3c2857216fceb13fde7d51f2b917"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
+      2,
+      0,
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
@@ -1574,7 +961,7 @@
         "equation_Core.Ops.op_String_Access", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.maxint",
+        "equation_FStar.UInt.min_int", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
         "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v",
@@ -1613,6 +1000,7 @@
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_Rust_primitives.Integers.usize",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_270ada60bfef4b2b4637b8e7dfa256e9",
         "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
@@ -1623,10 +1011,9 @@
         "l_quant_interp_8adb376c57f5ba6d816784eaa3aec8ec",
         "l_quant_interp_9229f3ec7efe6449082b5b465532a55f",
         "l_quant_interp_f6f5d988ac86313e18fdfdb63844e0b7",
-        "lemma_FStar.Int.pow2_values", "lemma_FStar.Int32.vu_inv",
-        "lemma_FStar.Seq.Base.lemma_index_upd2", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
+        "lemma_FStar.Int32.vu_inv", "lemma_FStar.Seq.Base.lemma_index_upd2",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4", "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -1679,6 +1066,8 @@
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_Prims.pow2.fuel_instrumented",
+        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_end",
+        "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_start",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
@@ -1686,6 +1075,7 @@
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.lt",
+        "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
@@ -1700,7 +1090,19 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "31a0447c0bfdd7742890bd10a4fbea3a"
+      "4113be72a090572cff437a041c6753dd"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
+      3,
+      0,
+      0,
+      [
+        "@query", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxInt_proj_0"
+      ],
+      0,
+      "47b2ae98de19b2d534f2b2aa03e0fe74"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3_",
@@ -1716,7 +1118,7 @@
         "refinement_interpretation_Tm_refine_9a2bee04172a2f8c14b17f79602284fb"
       ],
       0,
-      "2a7a30a67562dd3ff346eb03d1bd3293"
+      "7ff47292bd8a795aef983d5b902649c3"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3_",
@@ -1784,7 +1186,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "3fabf4e0052a1e2e23b84e602e3deb1b"
+      "336589d802f9a04b24b57debb55d9877"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3_",
@@ -1792,67 +1194,11 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
-        "lemma_FStar.Int32.vu_inv",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_76fe0a5f9f84ad272d74fac166aa55fe",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_9a2bee04172a2f8c14b17f79602284fb",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "@query", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f2db496c82a2ec40f0d8be8fc0851a3b"
+      "83af1178d35bc540b8c4c3f76260cb07"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3328_",
@@ -1868,7 +1214,7 @@
         "refinement_interpretation_Tm_refine_298356af413859d3c4b76a94198c2329"
       ],
       0,
-      "690056f1be9133d2dc5d3917054d464b"
+      "d8b31423ddc62591c2659683ba386531"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3328_",
@@ -1937,7 +1283,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "06b9c4231d734ecfe9531e242412c766"
+      "98859f7c6766e4cb484021e1c6b2f843"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3328_",
@@ -1945,68 +1291,11 @@
       0,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
-        "lemma_FStar.Int32.vu_inv",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "refinement_interpretation_Tm_refine_298356af413859d3c4b76a94198c2329",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_76fe0a5f9f84ad272d74fac166aa55fe",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_f10d9518a75d6adcaee3453a23814005",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "@query", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "754b615fffe85f5a2d75c8445c9e75ee"
+      "5d39d9b422e7d3e9ac524ddcb15c0419"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_binomially_sampled_ring_element",
@@ -2134,9 +1423,10 @@
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
+        "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
         "typing_FStar.Int32.v", "typing_FStar.Seq.Base.upd",
-        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
@@ -2151,10 +1441,10 @@
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.S64@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.S64@tok"
       ],
       0,
-      "dca392376e9bb82af5855e54db66c28f"
+      "d4160e861ae63638433a0a6e4506f718"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_multiply",
@@ -2193,6 +1483,7 @@
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.div",
@@ -2220,9 +1511,11 @@
         "l_and-interp", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_LessThan",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Division",
+        "primitive_Prims.op_GreaterThanOrEqual",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Core.Iter.Traits.Iterator.Mkiterator_f_Item",
         "proj_equation_Core.Iter.Traits.Iterator.Mkiterator_f_contains",
         "proj_equation_Core.Ops.Range.Mkt_Range_f_end",
@@ -2236,6 +1529,7 @@
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -2259,7 +1553,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d5dc4767d1c8f8c9614a25907ff85ec5"
+      "95f277a31826cd42d02b81984351a0e9"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_vector_u",
@@ -2380,7 +1674,7 @@
         "typing_tok_Lib.IntTypes.S64@tok"
       ],
       0,
-      "e871b91775da1ced48406ca5bb8b1c0b"
+      "5cf2f93aaf9dce39e57269633e1698f4"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fsti.hints
index 6432b42a..b46995b5 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Ntt.fsti.hints
@@ -54,7 +54,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "0656eedea17b61f9459a8d1c487b9670"
+      "f74b9a9b129db336b6e6c4da68147bf3"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_at_layer",
@@ -72,7 +72,7 @@
         "refinement_interpretation_Tm_refine_f8174c18c56fd6df717c2f2a2413c1d6"
       ],
       0,
-      "8a907047eb0ae557a4de92e8102ce069"
+      "bbe8d4d2c840adcbc9f7f7259c58d87e"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.invert_ntt_montgomery",
@@ -85,7 +85,7 @@
         "refinement_interpretation_Tm_refine_b96c3a91ffd08381895b0572c92ca1f1"
       ],
       0,
-      "718374f4a3d783c003356c6713095835"
+      "0f9eaf26af28bc05e00a7705da7b4a8e"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer",
@@ -104,7 +104,7 @@
         "refinement_interpretation_Tm_refine_d19e07791df93b4105608038d77338a3"
       ],
       0,
-      "36574a55dcb7fc250a73d3ed59ceae06"
+      "3853aaa67ab11acaafe1dd35ce8d64a8"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3_",
@@ -120,7 +120,7 @@
         "refinement_interpretation_Tm_refine_9a2bee04172a2f8c14b17f79602284fb"
       ],
       0,
-      "f4f4162a3fa84a19447ca4c25a808122"
+      "7035ebb6e37dcbcef3c5a2bfa2bb2cb5"
     ],
     [
       "Libcrux.Kem.Kyber.Ntt.ntt_at_layer_3328_",
@@ -136,7 +136,7 @@
         "refinement_interpretation_Tm_refine_298356af413859d3c4b76a94198c2329"
       ],
       0,
-      "a355e3e936f657e12e9c795df423f208"
+      "ac9f00344c5480954a5e5c697753b25f"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fst.hints
index ec212c90..00dc2b29 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fst.hints
@@ -68,7 +68,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "4b9a5f4f2a3436492b218d92fe590568"
+      "bd72fd3b0228f97d9d593cd446343b86"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution_2_",
@@ -155,8 +155,9 @@
         "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Lib.IntTypes.size_t",
-        "function_token_typing_Rust_primitives.Integers.u8", "int_inversion",
-        "int_typing",
+        "function_token_typing_Rust_primitives.Integers.u8",
+        "function_token_typing_Rust_primitives.Integers.usize",
+        "int_inversion", "int_typing",
         "interpretation_Tm_abs_43f231abb4a58902146ee87bdacad696",
         "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
@@ -186,9 +187,9 @@
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
-        "refinement_interpretation_Tm_refine_048a1f6eaff4b0587bda0341cac41528",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0b44ee12d4fd210b612aa9cb7348d076",
         "refinement_interpretation_Tm_refine_0ea1fba779ad5718e28476faeef94d56",
@@ -206,6 +207,7 @@
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
+        "refinement_interpretation_Tm_refine_fd1859ded4a9879b7230ee7e17d5fde7",
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
@@ -213,6 +215,7 @@
         "typing_Core.Ops.Range.__proj__Mkt_Range__item__f_start",
         "typing_Core.Slice.impl__len", "typing_FStar.Int.fits",
         "typing_FStar.Int32.int_to_t", "typing_FStar.Int32.v",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple2__item___1",
         "typing_FStar.Seq.Base.length", "typing_FStar.UInt.fits",
         "typing_FStar.UInt32.uint_to_t", "typing_Lib.IntTypes.bits",
         "typing_Lib.IntTypes.v",
@@ -221,6 +224,7 @@
         "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.t_Array",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.logand",
@@ -238,7 +242,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "bdc8ee52f4a617102fc19ab5a00bd4f2"
+      "3fd0e46b067588bdbd643201f1c17901"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution_3_",
@@ -308,7 +312,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8affa8ea0f42d22d1972afd861f61eee"
+      "8b158f91fe4e819784a62cdec49b96ff"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution_3_",
@@ -387,8 +391,6 @@
         "equation_Rust_primitives.Integers.v",
         "equation_Rust_primitives.cast",
         "equation_Rust_primitives.cast_tc_integers",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "fuel_guarded_inversion_FStar.Pervasives.Native.tuple2",
         "function_token_typing_Lib.IntTypes.byte_t",
         "function_token_typing_Rust_primitives.Integers.u8",
@@ -423,6 +425,7 @@
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
         "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
@@ -435,12 +438,12 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_b47292eb54355fc909afac68653faef7",
         "refinement_interpretation_Tm_refine_b576f09784d790ce06644f00d7b5f1a4",
+        "refinement_interpretation_Tm_refine_ba67f791f7f33677f5a46de63a986b1d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bdd7380083de28248928ea9a422f56d3",
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
-        "refinement_interpretation_Tm_refine_e7f63df644568e6d209d985baf736b12",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
@@ -448,7 +451,6 @@
         "token_correspondence_Rust_primitives.cast",
         "typing_Core.Slice.impl__len", "typing_FStar.Int.fits",
         "typing_FStar.Int32.int_to_t", "typing_FStar.Int32.v",
-        "typing_FStar.Pervasives.Native.__proj__Mktuple2__item___1",
         "typing_FStar.Pervasives.Native.fst", "typing_FStar.Seq.Base.index",
         "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.bits",
         "typing_Lib.IntTypes.v",
@@ -461,18 +463,17 @@
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.gte",
         "typing_Rust_primitives.Integers.minint",
+        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
-        "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "25b218b70a7d8fc4f7fafcc6a21b323f"
+      "1c2c26cafc5bcabeada7063eff02fa37"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution",
@@ -542,7 +543,7 @@
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "8ecf675d07bba97c0469ca1371d09cac"
+      "d65a4747785a204940020a612556ef00"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution",
@@ -632,7 +633,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "8a75e86760a9df92daad5b29ac7cff12"
+      "08cec147752d5c5662df03b4543cc2f9"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_uniform_distribution",
@@ -670,7 +671,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "33e38f3f4a95dcffec7ec4da711235f1"
+      "b93547bc4dac2203e802560c3a6352b8"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_uniform_distribution",
@@ -706,11 +707,11 @@
         "equation_Core.Ops.op_Tilde_Dot", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_range",
         "equation_Libcrux.Kem.Kyber.Arithmetic.impl__PolynomialRingElement__ZERO",
@@ -801,6 +802,7 @@
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Core.Ops.op_String_Access",
@@ -810,8 +812,8 @@
         "typing_FStar.Int32.int_to_t", "typing_FStar.Int32.v",
         "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Base.length",
         "typing_FStar.UInt32.t", "typing_FStar.UInt64.t",
-        "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.pub_int_v",
-        "typing_Lib.IntTypes.v",
+        "typing_FStar.UInt8.v", "typing_Lib.IntTypes.bits",
+        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Arithmetic.__proj__Mkt_PolynomialRingElement_b__item__f_coefficients",
         "typing_Libcrux.Kem.Kyber.Arithmetic.derefine_poly_b",
         "typing_Libcrux.Kem.Kyber.Arithmetic.i32_b",
@@ -828,7 +830,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "43b1ba79af4ceb5785b49685ed036eb5"
+      "373280bcf0c9a44438a332b4f3f939c1"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_uniform_distribution",
@@ -866,7 +868,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "88329f438f8243f2e8579dad3ec0544f"
+      "2ca46235f7542376b02343ce85f3979b"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fsti.hints
index 6a0af682..d1f83ff6 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Sampling.fsti.hints
@@ -68,7 +68,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "abd9f88c600b40c27737a70b3b095557"
+      "73b87d0ff6776801f31c6410a9284f3d"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution_3_",
@@ -137,7 +137,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "57ac32a52afdc721076d3cddcbf0eca4"
+      "38e8df119f1612dd981e2a0868adada4"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_binomial_distribution",
@@ -206,7 +206,7 @@
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "acb535c340684d259cd23480c7f32470"
+      "3ee95151140d92acbb7303a40bebe1e4"
     ],
     [
       "Libcrux.Kem.Kyber.Sampling.sample_from_uniform_distribution",
@@ -244,7 +244,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a43b1c203f2fc5aadd645c3c6750f2ce"
+      "d02926f827af69aba9c4b3fc3ffe3d0d"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fst.hints
index 08e00262..bc9f8608 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fst.hints
@@ -1,91 +1,728 @@
 [
-  "[1\u001d-p\u001a69��5z\u00106��",
+  "P��;\u001d�����\u000b�'g̘",
   [
     [
-      "Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
       1,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "1402323d26e76507d8c2cee48c2b1c91"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
       2,
-      1,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_44201b8bf5ccc7e968a18ca7310ba133",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "1d1bd8f6bd63fe5326bb43f67b233772"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      3,
+      0,
+      0,
+      [
+        "@query", "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits",
+        "projection_inverse_BoxInt_proj_0"
+      ],
+      0,
+      "355271c6090580ff131426c102a71cd2"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      4,
+      0,
+      0,
+      [
+        "@query", "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits",
+        "projection_inverse_BoxInt_proj_0"
+      ],
+      0,
+      "5f7ae90e620b960e79d99901af4b1da0"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      5,
+      0,
+      0,
+      [
+        "@query", "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits"
+      ],
+      0,
+      "3133a255d849806014791364c8ae3e91"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      6,
+      0,
+      0,
+      [
+        "@query", "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits"
+      ],
+      0,
+      "b9686e79554480fbee3971e4669d8fbe"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      7,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query", "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.u8",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_c027c94faca3e6aa9b762b564f7f938f",
+        "refinement_interpretation_Tm_refine_c1d982405116c5a796b88aa338935cae",
+        "refinement_interpretation_Tm_refine_fd0534dae74a1a03c82c48538de4b46a"
+      ],
+      0,
+      "b684d86a8240fd4b9ba809c67c127ecf"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      8,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "4e6d1fc070689a9c2d058daf847a5669"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      9,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "f51c0e52a3339a67c3903ea06cb162d0"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      10,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U8@tok"
+      ],
+      0,
+      "110bce1c4ee7166c79a7393171649d2a"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      11,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U8@tok"
+      ],
+      0,
+      "2c609daf549f06d9886158408974f746"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      12,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "b233970f0eee253c9a7bc1e2091f686d"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      13,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "b6afb8378dddbcfd0a0e0ba00d395898"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      14,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_3eead44499bc1a4bab90ea31986676a8",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "a961c41245724c11d770849a141351ab"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      15,
+      0,
+      0,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "9a422b099037b1d6ba9b0a3f936ad5b3"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      16,
+      0,
+      0,
       [
         "@MaxIFuel_assumption", "@query",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a"
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
+        "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540"
       ],
       0,
-      "5bfee229a8ab2003ca8d0ab2c9f354be"
+      "41926f4933a2c9dcb8001cbdc0912406"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
-      1,
+      17,
       0,
       0,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
+        "bool_typing", "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
+        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
+        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "equation_Rust_primitives.Integers.v", "int_typing",
+        "lemma_FStar.Int32.vu_inv", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Lib.IntTypes.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "typing_Prims.pow2", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "2a9ddecd64f31c9ead1099ce34a1f800"
+      "666387d6a6440994a26b97060a25034e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
-      2,
+      18,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_3eead44499bc1a4bab90ea31986676a8",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
+      ],
+      0,
+      "eeced23728a8dc459eeb79caa3a986ba"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      19,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_3eead44499bc1a4bab90ea31986676a8",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
+      ],
+      0,
+      "8d0579ffb9a754b55a370d4e80069fd2"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      20,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_419b1775f24baeb387c2580680f5fe32",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
+      ],
+      0,
+      "5663fdf0a9456fbc982da84713696cf7"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      21,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
+        "equation_Rust_primitives.Integers.bits",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_419b1775f24baeb387c2580680f5fe32",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
+      ],
+      0,
+      "150f0a3d9d1a4a694bdf1dd12b222dec"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
+      22,
       0,
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_1d6030b706650e3a060c2ca2b45a05f6",
         "MkSeq_interpretation_Tm_arrow_5765cf80a31e12b6cf9294aa374986ee",
         "MkSeq_interpretation_Tm_arrow_699c8dd73beae55d251f2f1ab7800f43",
         "MkSeq_interpretation_Tm_arrow_e442f892c16c57046d950f2b719665a5",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -106,31 +743,31 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Seq.Properties.createL",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create4", "equation_MkSeq.create5",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "equation_Rust_primitives.BitVectors.num_bits",
         "equation_Rust_primitives.Integers.bit",
         "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.cast_mod",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.modulus",
+        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
@@ -144,16 +781,17 @@
         "function_token_typing_MkSeq.create4",
         "function_token_typing_MkSeq.create5",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_01047fdcbb61cf2007b500a679b4ec74",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_a9b198e31fde8a384087b8239a5e2e08",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
-        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
         "lemma_Rust_primitives.Integers.get_bit_and",
         "lemma_Rust_primitives.Integers.get_bit_cast",
@@ -196,54 +834,86 @@
         "projection_inverse_Prims.Cons_hd",
         "projection_inverse_Prims.Cons_tl",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
         "refinement_interpretation_Tm_refine_286427dbaf4bc739efc8cef99cb6b0da",
         "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_30c29e23dfee1129f9f2499ea8c15af6",
+        "refinement_interpretation_Tm_refine_3d151b0a23df1f098f84b6f71d443cf3",
+        "refinement_interpretation_Tm_refine_3d9448f2f007f0945e3363feaea82a3c",
+        "refinement_interpretation_Tm_refine_3e0ccdc7721f6b4a1397798c47efe1c1",
+        "refinement_interpretation_Tm_refine_3e784db3bdad4de0311e04419a4febbe",
+        "refinement_interpretation_Tm_refine_3eead44499bc1a4bab90ea31986676a8",
+        "refinement_interpretation_Tm_refine_419b1775f24baeb387c2580680f5fe32",
+        "refinement_interpretation_Tm_refine_44d4cb0d655bd1f3ec38f493910a5643",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_59a487833a9f076b7dbf672b414d797b",
+        "refinement_interpretation_Tm_refine_5a08964af645d88b0a5c116b2e5acbdb",
+        "refinement_interpretation_Tm_refine_5fa05ebf849f5d025355371ba76fb2f0",
+        "refinement_interpretation_Tm_refine_611c43cb26fd400d6f6c93b90c2da1fe",
         "refinement_interpretation_Tm_refine_627e9f1cc724efa294bbc10092665eb4",
+        "refinement_interpretation_Tm_refine_6907424a012413a2240b5ce1bb826eb7",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_7ca9a852c1b40505509111d5316aa484",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_862ec0f9e499261c77500576f3887cf9",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
+        "refinement_interpretation_Tm_refine_953da30970919759f2d49862fde53ed7",
+        "refinement_interpretation_Tm_refine_a09eb509ee64eb1eae7b36234085d82d",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_a863b558306d9c95bf61dd49d4ebba99",
+        "refinement_interpretation_Tm_refine_b49ed480a57fd9de37a0448ba0915982",
+        "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540",
+        "refinement_interpretation_Tm_refine_b9a7d46f1fe2f537b4c852058c5774d1",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
-        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_cf9a0e2cb9c86a209ec9d3239fb40dab",
         "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
+        "refinement_interpretation_Tm_refine_d6270f1640f51555674a0de1a5c1363c",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_db6928a833d3e4e71e51295d54d70297",
+        "refinement_interpretation_Tm_refine_e1b985b6167687a7b65d94d2f236e5a8",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "refinement_interpretation_Tm_refine_fc12799aca7afdfe7dbfd8172fc58a83",
+        "refinement_interpretation_Tm_refine_fdcbf9e1a2f84a51c454a888f0f29b86",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create4",
         "token_correspondence_MkSeq.create5",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int32.int_to_t", "typing_FStar.List.Tot.Base.length",
-        "typing_FStar.Pervasives.Native.__proj__Mktuple5__item___1",
-        "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Properties.createL",
+        "token_correspondence_Rust_primitives.cast",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
+        "typing_FStar.List.Tot.Base.length", "typing_FStar.Seq.Base.index",
+        "typing_FStar.Seq.Properties.createL",
         "typing_FStar.Seq.Properties.seq_of_list",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.cast_mod",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
         "typing_Rust_primitives.Integers.maxint",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
+        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "1f44217a9fa13bfd21b37bd82be95c3a"
+      "1b0c3f555599c8ec99cf9ea389f4f730"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -258,7 +928,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "ef9064277efcc428d44301df5438593c"
+      "0c9c1a7c61f327c7b0d27dc8d4f93e6f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -273,7 +943,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8f73c84ce71169506fd73b7e694bf9a4"
+      "04b9bcf6068a99949dcef5be1ab69a1c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -288,7 +958,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "430475e62b05373b39a2708f207f7ac6"
+      "6aa9986e15140e79484f18a59ce2c44e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -303,7 +973,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "1d4f9f10157c527152a9fe4b958d7922"
+      "3bd27146f720887cecd47c866038c1ad"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -318,7 +988,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "202d163b1e81acd158e6cc7aa38b051e"
+      "8524fb404516565b3747bb22086b6e3a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -333,7 +1003,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "9de9bc4f0b727e74d702fa4967eae1c5"
+      "7fe53b2745ed333f0d26567ab88ae9fb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -348,7 +1018,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f43909e79080b8c25c6b12137eb69183"
+      "b51d2e8cc9d8791fbee5fdfc2f06c7e3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -363,7 +1033,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8a61f152cca35b4aff0d0bf3d7d9f44f"
+      "b299ac3106be4c6136a414db6da42aff"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -378,7 +1048,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f0e15557e1e80ef3c260c65529252c27"
+      "d2ca0c5920aae3443852ce2aaf75bf87"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -393,7 +1063,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "efaa46bc0bc26522a5f71ab8bd589aae"
+      "9ebf5b8e2eb2a27dd3d0676645aaadc7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -408,7 +1078,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "5bb22e35b63a9b05e645bc884519a05e"
+      "2d0ee2bca976c949232b5bfef89360e3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -423,7 +1093,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f1c8e7621b7c54e82888c5ba98611e5c"
+      "1c51ae7232379fd8044141c4cad0d09c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -438,7 +1108,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "7420785c3f1936faee0f678247afb42c"
+      "38714d1d02d0feded43548005b12f0e3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -453,7 +1123,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "50098f7917b7e64304d7ea4cad4fe3c5"
+      "942a42a06abedc1d16aa58b1b307fb2b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -468,7 +1138,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f1069ce9696f9de56b4cf53ff2a7a2b0"
+      "56e896889c5785549c75da9016985cf4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -483,7 +1153,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "fb9b6539c88032bc7ea09022912e6aa8"
+      "b7f6bac1bedc35d3f39b82d3760f4623"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -521,7 +1191,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6f7b8492d06e00cb16fdc5ac5b48f524"
+      "3e516483cfcbf21ed330b1253d3311a3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -547,7 +1217,7 @@
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.unsigned", "int_typing",
+        "equation_Rust_primitives.Integers.unsigned",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
@@ -558,12 +1228,11 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d4c33b60b5cb9e9edeb93bbdb292e1b9"
+      "4b02911865ea8e06268d2b4802b6c8d0"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -578,7 +1247,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "fe61b21064ef3b49db00c7633249e994"
+      "aa323fb36c927bd0c897efae460c7942"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -593,7 +1262,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "e702069226d4165fef1880f3d74ce53f"
+      "796e57ad5abbe1e06115d3c89013f748"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -606,7 +1275,7 @@
         "equation_Rust_primitives.Integers.bits"
       ],
       0,
-      "c55f2b531cfd24be5316aaf5038ec6fa"
+      "cd6a7c07d23dc977d14b081f2e0b68c4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -619,7 +1288,7 @@
         "equation_Rust_primitives.Integers.bits"
       ],
       0,
-      "d4401199aff03607fa2d4cb04d5dc246"
+      "0bfc8f82969ec0625f444ae4e5a99be8"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -640,7 +1309,7 @@
         "refinement_interpretation_Tm_refine_a17f0f6ecfa442a79ff1a1721abb0913"
       ],
       0,
-      "4bffe109cf9a0839a1aa6f8769015324"
+      "6939cd2db1730263bc6accf9388e8b91"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -656,7 +1325,7 @@
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167"
       ],
       0,
-      "2766c511b2208ff82be8b928917e7533"
+      "4b18bcd091bcdb99305117def7c4ba6f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -674,13 +1343,17 @@
         "equality_tok_Lib.IntTypes.S32@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
         "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.i32",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.bounded",
+        "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -694,10 +1367,11 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "typing_FStar.Int32.v", "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -706,7 +1380,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d1b8aec4cfc045076e388bd40d3455d7"
+      "58599b8a0f80b4c738b779ff155ef7a9"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -762,7 +1436,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "eca61a0d310802d1a78158e4804524d6"
+      "8cecdb67b1480581509033d0f6f74a7b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -788,7 +1462,6 @@
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -800,10 +1473,8 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_4343572884852621525146ad32d770e7",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
@@ -818,7 +1489,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "6fc4b4f6da02f9b86e4377fec4245c40"
+      "48a04230e0497cfa96037d5dfc7b3964"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -875,7 +1546,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "4ff79fdb4176cf1d34a856e2a8c2798a"
+      "e25a71e11809c7a8ca12cc1b0a302c7a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -930,7 +1601,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8a6e1155f749a6554923eb25d0aaa656"
+      "507355474b23a0c405067f891c58191a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -957,6 +1628,7 @@
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
@@ -968,7 +1640,9 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_565dea648c13f0b691a90a9878e327b2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
@@ -982,7 +1656,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5cbd7081e32b998023e110a9f618832f"
+      "72d8b56483c974b2d523eec8c1640a38"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1021,11 +1695,11 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_565dea648c13f0b691a90a9878e327b2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "typing_Lib.IntTypes.v",
@@ -1037,7 +1711,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "9ced40a36e9bacc82772091852b58db4"
+      "45374d146b75b39d5a8dc69d59270294"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1065,7 +1739,6 @@
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
@@ -1076,10 +1749,8 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_4343572884852621525146ad32d770e7",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
@@ -1092,7 +1763,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "2bb2440c44a54abd59856dcaeedfe4a8"
+      "74769f318dea105f1283fe0d6d014969"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1147,7 +1818,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d0c5ad3afcdfc899a8f6f2a960407652"
+      "78c5371988b4b45b2f9909d20756cbd5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1202,7 +1873,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "505cd5e8b63dda21ba38b89ce468e019"
+      "3366dba02064a835aa17ef5ed752dd84"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1257,7 +1928,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "96e8335d109e45d871c9ea626cd20b32"
+      "6280ba8e17b949d630094e4a1513cde9"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1312,7 +1983,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "92fcc1e4ed186cbb11e428a77a3fdb30"
+      "5d56c213a00ebc698a93faefaba19406"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1367,7 +2038,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e748cd272ac471c09d3d94224a108727"
+      "26bc1f90fd9f69f6e16cf06b7f0d3cd0"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1422,7 +2093,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "2f0eeaaacaf56af41a31a6b446d32648"
+      "faea6a8558e833bc0cd2727aa581a7e1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1450,6 +2121,7 @@
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
@@ -1460,8 +2132,10 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_4343572884852621525146ad32d770e7",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
@@ -1474,7 +2148,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e85af70c76bf067a28bc40e38aa1a2e1"
+      "c07d8939ce3f311a8354359a930da20e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1529,7 +2203,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "9cce378ff5bf81e7fa31dfb8c66a2ce8"
+      "0115a1fd548b77ee941ab9d1c83d9895"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1557,7 +2231,6 @@
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
@@ -1568,10 +2241,8 @@
         "primitive_Prims.op_Minus", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_4343572884852621525146ad32d770e7",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
@@ -1584,7 +2255,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8230a512d5df52b83699f930a5378030"
+      "5c883de46fb037491dc2177a244307ee"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1639,7 +2310,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c829378b5925c663f488e3242f6a6a16"
+      "bc907374d9230c0c0ad4f3e21e1192e5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1652,7 +2323,7 @@
         "refinement_interpretation_Tm_refine_87abc91468d73e26e0a719524f400cdf"
       ],
       0,
-      "d56c69cfc15d1cf9e5dc76d688c82d7e"
+      "9ab838571c38d6a38b3e010657d7a20c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1701,7 +2372,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "6ac625da9209363b53a3e6ffb6293788"
+      "de2cdd98b88274542ffd496086b2054a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1714,7 +2385,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "66fbd057f980dd3876d0e22b894a5006"
+      "e0d12a476041b15ac3fa90e9fb571c87"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1734,7 +2405,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "be5cd1d0c2ef7be6ef57d9cf4f6a46b7"
+      "c4dfd51a8127bbd530250a75e284cab2"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1747,7 +2418,7 @@
         "refinement_interpretation_Tm_refine_a5dbf40b319f5394aeaa892d914adf92"
       ],
       0,
-      "8959df49fcbde62a283f8cbb44001a69"
+      "5cc63f496350cd711e8598996593c654"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1767,7 +2438,7 @@
         "refinement_interpretation_Tm_refine_a5dbf40b319f5394aeaa892d914adf92"
       ],
       0,
-      "3a4994b3bcc94397275784a9a4f3015a"
+      "8d80ea9cf2d0d942aa0557cdb48725b0"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1780,7 +2451,7 @@
         "refinement_interpretation_Tm_refine_565dea648c13f0b691a90a9878e327b2"
       ],
       0,
-      "8e0927a84883a1c16f65ebcb7d0def1e"
+      "7e1066ba079fff0b80102fe6f795d6e8"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1829,7 +2500,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "78b78f2782baf708a68c5bbaf1fe5cd3"
+      "bffc64afba208e4ca8f040b969bc481a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1884,7 +2555,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7dcb03733ca73c0ff5f6ea27a388f899"
+      "b54739c92619473ce3e77a80e2e87c59"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1912,6 +2583,7 @@
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
@@ -1923,7 +2595,9 @@
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_565dea648c13f0b691a90a9878e327b2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a5dbf40b319f5394aeaa892d914adf92",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
@@ -1936,7 +2610,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "1ed3265ca005118a754e82af956e17a0"
+      "af57bbbdeb9abe0c2db980c9f71893a5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1949,7 +2623,7 @@
         "refinement_interpretation_Tm_refine_565dea648c13f0b691a90a9878e327b2"
       ],
       0,
-      "06bb87edc2dff7f403e4aa14590864da"
+      "740c0717df6f192507d1dbe4da86387c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -1998,7 +2672,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "3e5de3daa693afd20dacee7f72583120"
+      "caadde97d198ede4cf7743c874ceb47b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2011,7 +2685,7 @@
         "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540"
       ],
       0,
-      "9107069fb04be2ae486e99fd59a95f3c"
+      "c9f502900396601034939b7e4df3d964"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2031,7 +2705,7 @@
         "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540"
       ],
       0,
-      "08ca219b9137063734dfbe0000f00faf"
+      "865e968125a07fb10fed83ca2b733c07"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2044,7 +2718,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "727182373196ee23302ddb4e652cdda8"
+      "70fac182b2dfe3e84594d8d5d9f1c8f1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2064,7 +2738,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "30345f15f4a163309ebda88f3b07f86a"
+      "4c92fe7cda3c80abf99b8ce7179797d3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2075,13 +2749,15 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_717aefd263af03778bf5280255ca3463",
         "MkSeq_interpretation_Tm_arrow_7693d425f96a86b3e8b38c2b733466ad",
         "MkSeq_interpretation_Tm_arrow_94eb21ba87bdc77086081163b2f023fb",
         "MkSeq_interpretation_Tm_arrow_f1a046d707407a6beea1d709dbd892ee",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -2093,6 +2769,7 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "constructor_distinct_Prims.Cons",
         "data_typing_intro_FStar.Pervasives.Native.Mktuple8@tok",
         "data_typing_intro_Prims.Cons@tok",
         "data_typing_intro_Prims.Nil@tok",
@@ -2101,23 +2778,22 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Seq.Properties.createL",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
         "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
         "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create11", "equation_MkSeq.create8",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "equation_Rust_primitives.BitVectors.bounded",
         "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.BitVectors.num_bits",
         "equation_Rust_primitives.Integers.bit",
@@ -2133,7 +2809,6 @@
         "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.shift_right",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
@@ -2145,17 +2820,19 @@
         "function_token_typing_MkSeq.create11",
         "function_token_typing_MkSeq.create8",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_5d1f1121943425d1164086288c912b04",
         "interpretation_Tm_abs_6f1366ec70f1fe6744a49f18394a6936",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
         "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
         "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4", "lemma_Lib.IntTypes.v_injective",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
@@ -2166,10 +2843,10 @@
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_LessThan",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_FStar.Pervasives.Native.Mktuple11__1",
         "proj_equation_FStar.Pervasives.Native.Mktuple11__10",
         "proj_equation_FStar.Pervasives.Native.Mktuple11__11",
@@ -2215,6 +2892,9 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple8__8",
         "projection_inverse_FStar.Pervasives.Native.Some_a",
         "projection_inverse_FStar.Pervasives.Native.Some_v",
+        "projection_inverse_Prims.Cons_a",
+        "projection_inverse_Prims.Cons_hd",
+        "projection_inverse_Prims.Cons_tl",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_03288e8cad3d11e26a62a263d75b4cb9",
         "refinement_interpretation_Tm_refine_0900f6d27eee08e6b24699af33bdd980",
@@ -2222,11 +2902,13 @@
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_11870ecdbf94b736ee77231f548a9943",
         "refinement_interpretation_Tm_refine_11bd00882981a11bde2b7488a120fea3",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1630095134d496251f9dbee10f563351",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
         "refinement_interpretation_Tm_refine_25a3ac62ce8d1d795628b758d48abad1",
         "refinement_interpretation_Tm_refine_285d5ca95815dcb9fcec0ae13da5f30c",
         "refinement_interpretation_Tm_refine_286427dbaf4bc739efc8cef99cb6b0da",
+        "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_2ee346c1eabb13d94765973c56f410f8",
         "refinement_interpretation_Tm_refine_3012dc4a62607a165775ce6122df6b27",
@@ -2269,9 +2951,6 @@
         "refinement_interpretation_Tm_refine_ba3ae1397b04de427236e18542bae86d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_bf2fa1226f2c9a0f6671df3e80ddcb8e",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
-        "refinement_interpretation_Tm_refine_c1419d1febcb2d125cd78bbe8260ab31",
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_c39edbde6953594c41fd1ce1133b8e6e",
@@ -2279,28 +2958,36 @@
         "refinement_interpretation_Tm_refine_ca28d5a9fd928a4002e977c9cc61e296",
         "refinement_interpretation_Tm_refine_ccb6abb297b6c79c39e84f08226dd6c3",
         "refinement_interpretation_Tm_refine_cfa4dd8d4f1012e862eb49b075f3d16b",
+        "refinement_interpretation_Tm_refine_d1b59a73120693be9b1d9e58e5dcd062",
         "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
         "refinement_interpretation_Tm_refine_d68e2a22146ea24e1807d51a848a0b8b",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_e1b985b6167687a7b65d94d2f236e5a8",
         "refinement_interpretation_Tm_refine_e672d1c32eac49ff2db7742f4921105c",
         "refinement_interpretation_Tm_refine_e8d0d19737b852e0424d986f2eb513ec",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_eead4c247585281c2f0a33403df1567c",
         "refinement_interpretation_Tm_refine_eff85ef0cb51f33c35f89baf7adbb28d",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "refinement_interpretation_Tm_refine_f84c8bac306d3c0d8a4e6993bcf115a1",
         "refinement_interpretation_Tm_refine_f90cf9578b44d0a863a7e4e273361944",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create11",
         "token_correspondence_MkSeq.create8",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int32.int_to_t", "typing_FStar.Seq.Base.index",
+        "token_correspondence_Rust_primitives.cast",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
+        "typing_FStar.List.Tot.Base.length", "typing_FStar.Seq.Base.index",
         "typing_FStar.Seq.Base.length",
+        "typing_FStar.Seq.Properties.createL",
         "typing_FStar.Seq.Properties.seq_of_list",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.maxint",
         "typing_Lib.IntTypes.minint", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
+        "typing_Prims.pow2",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
@@ -2311,12 +2998,14 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "145ee6f450b9d5102eb92a0ca32507a9"
+      "12a302be4383f37d6248fcee2b2894bb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2331,7 +3020,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "77e77cd2b02c00fc981dd0d4416dd59e"
+      "1b2a01ba32f85ec317f5565d4ef72a3c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2346,7 +3035,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "84192e501310ef9deb3b9a20da31cdf3"
+      "d559addf080a6cb4a0384629cbbeef6f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2361,7 +3050,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "9f0a00961b96984ef09b65c51d62602f"
+      "9bf03dd0c1061bfebff3fab5920ba301"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2376,7 +3065,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8e325249a9c51735de64d446c7e90417"
+      "521a6391f9b071a9152fc31860e3eea1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2391,7 +3080,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "96f548d4d5683ecfcc3359fd15d1ba78"
+      "fb231e6e811badec04d76d6069df5644"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2406,7 +3095,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f4c6ba7ad402311c3532b2d2426acf71"
+      "8ce573a69f1a9a7ecc8ec118af2288ae"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2421,7 +3110,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "86af2b92dae933e855f0f260039cea53"
+      "1bf322c1f21a827a3c66d65629626f64"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2436,7 +3125,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8450183188b9b357444bcac3d90f3452"
+      "cf7d874dbdbe17a1ef4249c8814502d5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2451,7 +3140,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "c2227ef882fad8a307f9c5d575aee471"
+      "18b8407def944b8708d8c78cf35df896"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2466,7 +3155,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "fa0295da189e6f320467768437749e60"
+      "f7bbe00c763d529a62541cdec98f0a70"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2481,7 +3170,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "2d3f9243eb6b67456f45b618fe29ec72"
+      "04546f8bf0c901b69ade8b053b6565d3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2496,7 +3185,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "89ebbd7dd74912936c0dcf6f6e82b892"
+      "d9b36a4e786a50943a0bc215719f44eb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2511,7 +3200,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "52f787e7a3a6870f3752b5df7f8f3041"
+      "ce1b051677d7b767cdf8632e1b9dd228"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2526,7 +3215,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "c5cd338a20e2fc029dca0b9973542f28"
+      "94cac1f1110b4f6d1fa61711ee3a755b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2541,7 +3230,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "b653f2d865e7863ae3b81b70fc9c26fc"
+      "e3a4208b2da638529bfdba855ae06e2b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -2556,7 +3245,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "44426c17a92733b349d2423af5c93659"
+      "e3c647a640a67d4c9c0227c174df9b65"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_3_",
@@ -2617,7 +3306,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "df3edb445482035eccfa96a7b2538b63"
+      "e0320f0a1f7d0c6fc41e922ceb1be39e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_3_",
@@ -2628,20 +3317,21 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_14835084a7628a594896379e5ea411ad",
         "MkSeq_interpretation_Tm_arrow_18d3dcbafa1048d6377074186f5f2afd",
         "MkSeq_interpretation_Tm_arrow_aa50555711d6286cfd8dc185000aafab",
         "MkSeq_interpretation_Tm_arrow_c2fe76a834cdd44d7fa52cb0da696f35",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
+        "constructor_distinct_BoxInt",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S128",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S64",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
@@ -2657,23 +3347,22 @@
         "equality_tok_Lib.IntTypes.U16@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL", "equation_FStar.UInt.fits",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.minint",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Seq.Properties.createL",
+        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
+        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
         "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.pub_uint16", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.pub_uint16", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create2", "equation_MkSeq.create3",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.BitVectors.num_bits",
@@ -2686,7 +3375,6 @@
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.signed",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u16",
         "equation_Rust_primitives.Integers.u16_inttype",
@@ -2701,16 +3389,16 @@
         "function_token_typing_MkSeq.create2",
         "function_token_typing_MkSeq.create3",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_24b32bebd3485ad76e228d3f32e635f7",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_7e380eba0c9ae2d800a389eb46d8c442",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
         "lemma_FStar.Int32.vu_inv",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_u16",
-        "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_u32",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
         "lemma_Rust_primitives.Integers.get_bit_cast",
@@ -2741,10 +3429,9 @@
         "projection_inverse_FStar.Pervasives.Native.Some_v",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_0eeab4d5f73e78a17240ba8a60788298",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
-        "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
-        "refinement_interpretation_Tm_refine_4adc867dedc8116424e7854032f7976a",
         "refinement_interpretation_Tm_refine_4c9fc7a376083f6cefabf973925fed40",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -2756,24 +3443,27 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
-        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d261778ce6a448bd4ab7bd9f494cdb2e",
         "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "refinement_interpretation_Tm_refine_f2a41cd0b7a1b87e64e4bdabfc823091",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create2",
         "token_correspondence_MkSeq.create3",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int32.int_to_t", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Properties.createL",
+        "token_correspondence_Rust_primitives.cast",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
+        "typing_FStar.List.Tot.Base.length",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple3__item___1",
         "typing_FStar.Seq.Properties.seq_of_list", "typing_FStar.UInt.fits",
         "typing_FStar.UInt16.uint_to_t", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
+        "typing_Prims.pow2",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
         "typing_Rust_primitives.Integers.maxint",
@@ -2784,12 +3474,14 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U16@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "9fa845801d6a324ba0e819acc6bb9350"
+      "fc840ca0c0f1978677429b89a8ee027a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_3_",
@@ -2805,7 +3497,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "7aeeeb3f57d86106f92ec89d1ed04fa5"
+      "96fd546eecb343f5e0df462674b59a60"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2820,7 +3512,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "4b853ad03cb4391e7f77eaceef0b15ba"
+      "9efba804f3e68e878c8f6c1aec3dff99"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2835,7 +3527,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "93a3b9cb4f4e36453a08faff6d516331"
+      "917d6d28e6fe824d4f0cd5a25ee1e6b3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2850,7 +3542,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "1a98d8ef7c8a39f31d07c7ab1e99a069"
+      "1149af1c377d8ba5e8da1273b8c56a4e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2865,7 +3557,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "9020e8e15aa14aabf78d4ceccf2a7976"
+      "639871b2a879b0b7b6649e5835b219fb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2880,7 +3572,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a820627d546f728f00c0bb8743f17f3c"
+      "83c8a0afa9abcce69a51700eda9c696f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2895,7 +3587,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "abb21039b606ead241036a094034cfcc"
+      "04473a1ae2c109ffbdb1c7a1015ca015"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2910,7 +3602,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "b0c9d172da349f8abbe7dd19f3c7c5de"
+      "d8cf5f22d84c91cd53aa93caa4cc31cc"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2925,7 +3617,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "9b9a08ae973233995729d1c2cd1df4d6"
+      "0cd4fb445a8685d2f00ae9e2f6f29e74"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2940,7 +3632,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "2b25d9b9a0545fe682d6574fc713b6ed"
+      "9f399323bde86ba2734e6c270ba2ea5d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2955,7 +3647,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "c2936f328f073fa027fea535f77fb224"
+      "503398cfb1b32d3a8d8a9659729240a3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2970,7 +3662,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "42c2be59d89f81ec2132f03e6e7fc605"
+      "e7a385ecbca41033d1d79b3564ae6268"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -2985,7 +3677,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "da3c111b20cac03f8e39e8b15373c5e5"
+      "49e838e0e5d26e0da59abaab36eab75e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3000,7 +3692,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "6dc4a086d64070011dde16ab474232d7"
+      "1ed43c212434e195820679ee7dd13869"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3015,7 +3707,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "d07a62be32b82d121fbc10b09ad38309"
+      "2362f5d13ab77b1f4a51a94576753b7d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3030,7 +3722,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "7ff667b9da679d9751d5a333c4339faa"
+      "5fb5333dc985f9888df15427fa34cc7e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3045,7 +3737,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a049c97404891614d4f1d55039d98ebc"
+      "788dc8e8a996f11ed60253a863223cf1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3083,7 +3775,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c00c96b23119d1b97c7173d8f1db6734"
+      "898ab5bfaacd806ff4496c0869a1e1de"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3108,7 +3800,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "1a75323aa8bdf45e52649114ee8272bf"
+      "ba4cc24c6983d5537c34d8d7cc58cf4f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3123,7 +3815,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "d61e2fee4bd6cf3a438236f2a7a75f6c"
+      "10410b19690f1bc7b798328a04b172f5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3138,7 +3830,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "cb588c91952a29c6615f6c568b622fb6"
+      "4729ac700cb24cf3ff8e6a08fadbf57e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3151,7 +3843,7 @@
         "equation_Rust_primitives.Integers.bits"
       ],
       0,
-      "3da634f79e7adaab622d81aada6aeceb"
+      "97c251b093344106475f6c642dd95613"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3164,7 +3856,7 @@
         "equation_Rust_primitives.Integers.bits"
       ],
       0,
-      "8d81232ed23afd0058844f07811ad249"
+      "b68985b3dc56ff938d8295000a650cff"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3185,7 +3877,7 @@
         "refinement_interpretation_Tm_refine_fd0534dae74a1a03c82c48538de4b46a"
       ],
       0,
-      "633a970bbf867aaae94e6384fece5c91"
+      "6d49dcd1a509b521fa454d5dd33dd0ce"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3237,7 +3929,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "ca92eac84d92d58ba7c8f0bb53bb4072"
+      "355ba8a70641d72ca3b08bafe6e7f8b4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3290,7 +3982,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "99e74bed0f634f204bd08a860e1faa9b"
+      "9588b76938682270afb357707dd05846"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3343,7 +4035,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "62bfbc713c95f2f24982006631ddf02b"
+      "aa1c8e4310a8fd091ea9a81ad68c5581"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3396,7 +4088,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "0f8eed1b4cc4e9d08861958c05dceac5"
+      "8f9d2b809a0b84d20bc10545db8c5ebb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3451,7 +4143,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "bc3d4f8c0584b4cbde97b19fd806808c"
+      "70f842ea436306873dc7e628b2e8b58b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3507,7 +4199,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "e9d0e71cc3cf7ca3c7f06bdedbef0d18"
+      "3201bdb3efd78b353cb373ebf1b826d1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3562,7 +4254,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "b748cb2f58b6ec900abc24d941133819"
+      "f594d5b7f9bae0e91d0f3d1e428873be"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3618,7 +4310,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "84c96e87f8cf51430612e30ed897369d"
+      "ba8769ca4b23280f663c527e9252e837"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3673,7 +4365,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5bd3b5052b17101f33b2d3ea32155bca"
+      "9865c8af59d520388194fe2bc79b13ef"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3728,7 +4420,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "efcafdf697b0d497eee4b7e1d68b92de"
+      "30e4c2a2c1dd72dd17059e3f0ce0df8f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3783,7 +4475,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "cdb4b2aa3698a367868d0135ce2db8e7"
+      "7a98f5ff8f521a6b56368bc50da26289"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3839,7 +4531,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "78617710561d1ad96e68e8263866829b"
+      "e5a944f19b307b961f39d719a7d1315b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3894,7 +4586,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "25ad6e0ea35f7c61d5ece4164f281270"
+      "32a32d6844fd2b03ba826d0383f6fd3c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3949,7 +4641,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "6cba5ef894491237a485cb7934f2f51e"
+      "e8aa7bb20b14eef9b50ce3f43a3bb2cf"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3962,7 +4654,7 @@
         "refinement_interpretation_Tm_refine_a5dbf40b319f5394aeaa892d914adf92"
       ],
       0,
-      "6c79b08ec33632bfb9551684438e667f"
+      "04fa376bc61a87af037c9ccb9f2afad2"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3975,7 +4667,7 @@
         "refinement_interpretation_Tm_refine_a5dbf40b319f5394aeaa892d914adf92"
       ],
       0,
-      "20676078d59aeb4bcf9ee31b0753376c"
+      "b772dc5b8643a659522b14ea5dd35e36"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -3988,7 +4680,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "48cc829a132e6eaf4379c514fe6e974d"
+      "6ec1d6c90f04f43ff2697ceaf7e05cdd"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4002,7 +4694,7 @@
         "refinement_interpretation_Tm_refine_8806d22c5428ef45066c60c7edd7684e"
       ],
       0,
-      "b710d9ae541fc261f6b1dadee0108923"
+      "2f9b040193bd1fb577676ded83fc4e82"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4015,7 +4707,7 @@
         "refinement_interpretation_Tm_refine_4ba98237d50cf0c214103cdb69cef042"
       ],
       0,
-      "85675edf4646e493fad315fee4c2c25a"
+      "d67acf9d9b19f21a7e3a52319b5891c9"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4028,7 +4720,7 @@
         "refinement_interpretation_Tm_refine_4ba98237d50cf0c214103cdb69cef042"
       ],
       0,
-      "248f77e7f23203f272a1e91be4cd5a4d"
+      "ee68d224e31baba7713792bc9c494afa"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4041,7 +4733,7 @@
         "refinement_interpretation_Tm_refine_4ba98237d50cf0c214103cdb69cef042"
       ],
       0,
-      "349d50414102c1381f5fe1fcea6ddb3f"
+      "0b74ad2db1362523e7054f6a744bcd6d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4054,7 +4746,7 @@
         "refinement_interpretation_Tm_refine_4ba98237d50cf0c214103cdb69cef042"
       ],
       0,
-      "38af375ba394ccaf3c9a551c8aec1fc8"
+      "81605f643a1d26a873dd964cf5eebf1b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4065,12 +4757,15 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_1d6030b706650e3a060c2ca2b45a05f6",
         "MkSeq_interpretation_Tm_arrow_94eb21ba87bdc77086081163b2f023fb",
         "MkSeq_interpretation_Tm_arrow_e442f892c16c57046d950f2b719665a5",
         "MkSeq_interpretation_Tm_arrow_f1a046d707407a6beea1d709dbd892ee",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -4084,7 +4779,6 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Prims.Cons",
         "data_typing_intro_FStar.Pervasives.Native.Mktuple8@tok",
         "data_typing_intro_Prims.Cons@tok",
         "data_typing_intro_Prims.Nil@tok",
@@ -4093,19 +4787,20 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL", "equation_FStar.UInt.fits",
-        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
-        "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Seq.Properties.createL",
+        "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
+        "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create5", "equation_MkSeq.create8",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
@@ -4134,11 +4829,13 @@
         "function_token_typing_Prims.__cache_version_number__",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_01047fdcbb61cf2007b500a679b4ec74",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_5d1f1121943425d1164086288c912b04",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
         "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
         "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
-        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_u8",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
@@ -4148,10 +4845,10 @@
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Division", "primitive_Prims.op_LessThan",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__1",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__2",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__3",
@@ -4185,14 +4882,12 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple8__8",
         "projection_inverse_FStar.Pervasives.Native.Some_a",
         "projection_inverse_FStar.Pervasives.Native.Some_v",
-        "projection_inverse_Prims.Cons_a",
-        "projection_inverse_Prims.Cons_hd",
-        "projection_inverse_Prims.Cons_tl",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
+        "refinement_interpretation_Tm_refine_1752416e58ac0b71f95a4be9b66f8f80",
         "refinement_interpretation_Tm_refine_1c5286c19e2dc27f1052618432c91d6f",
         "refinement_interpretation_Tm_refine_1fc9aea01d7aff49f16425d06e0bcadf",
         "refinement_interpretation_Tm_refine_25c72d704900d626b30894312c325451",
-        "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_2ee346c1eabb13d94765973c56f410f8",
         "refinement_interpretation_Tm_refine_348668412ebc92437d7b3fa54735669f",
@@ -4203,7 +4898,6 @@
         "refinement_interpretation_Tm_refine_419b1775f24baeb387c2580680f5fe32",
         "refinement_interpretation_Tm_refine_43032d78c0d9c973ee6a4ea3963d6299",
         "refinement_interpretation_Tm_refine_4343572884852621525146ad32d770e7",
-        "refinement_interpretation_Tm_refine_442733b909b4d11ce4c302b61b2687f8",
         "refinement_interpretation_Tm_refine_4ba98237d50cf0c214103cdb69cef042",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -4230,27 +4924,31 @@
         "refinement_interpretation_Tm_refine_b7df399fd91a8773e998b4f6c4d95540",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
         "refinement_interpretation_Tm_refine_c12fc4a64d0fd6897144bd1bac678a85",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_ccb6abb297b6c79c39e84f08226dd6c3",
         "refinement_interpretation_Tm_refine_d0dc508d17665f6bbe9cb605f6b0691c",
         "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_e1b985b6167687a7b65d94d2f236e5a8",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "refinement_interpretation_Tm_refine_f3460d78bd6a4448da852b8e0439abd1",
         "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create5",
         "token_correspondence_MkSeq.create8",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "typing_FStar.List.Tot.Base.length", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Properties.createL",
+        "token_correspondence_Prims.pow2.fuel_instrumented",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Base.length",
         "typing_FStar.Seq.Properties.seq_of_list", "typing_FStar.UInt.fits",
         "typing_FStar.UInt8.uint_to_t", "typing_Lib.IntTypes.minint",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
+        "typing_Prims.pow2",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
         "typing_Rust_primitives.Integers.mk_int",
@@ -4259,13 +4957,14 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "fddd79df2964e6e5a29cacda8fe6911e"
+      "60a61197695394700161deb689373afb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4280,7 +4979,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "fadf9d2131b18475e488b28d501c3680"
+      "b3d6d8304ee69d4fcc43ef26ecc3998a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4295,7 +4994,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "295829a9976fb8ae0c86d39cd9155d9f"
+      "7423adbd7d84f60d74b53f133d0c3241"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4310,7 +5009,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a8f5aeae34ba3daa1b8ea9bd84062e6a"
+      "c98e6db5ff133a02597373eb6c42ecb2"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4325,7 +5024,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8cc55a285936fbdf1e4ea0c2769055c3"
+      "c6aedfcf9d1116938e0fde298d8f0c27"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4340,7 +5039,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "b259233f3cd2053f5eea550de10e4ba8"
+      "1b282d2c08bfc5a59e318715a23d5b27"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4355,7 +5054,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "494fefa7e91e8c9601561b324c622ca6"
+      "b822130c3725de4ecfb1a75e77d344a6"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4370,7 +5069,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "f7d3d01b48e25f2447fe25282c26da8f"
+      "5648121b3f6cf003c90e9cd65a06036e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4385,7 +5084,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "e8d6e2541f319b006e8da575f1b431b0"
+      "a1b78d37bf2046fcc35dd7eb61158c84"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4400,7 +5099,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a0eab548f00869bc03f1b39197d5013b"
+      "3d15b6b77af8f5d92fee7651c354ba0e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4415,7 +5114,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "d920e261d3280b91062d3f5b72891157"
+      "6581c53d915e89c7dc9ff58d91b98df2"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4430,7 +5129,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "0b600713a6969fbc97b400ae22fdfbd1"
+      "fa313c979435d2b309b115b1f18669a5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4445,7 +5144,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "4bb9698d04c57070989132e0159764d0"
+      "db25cf5ce0ea0c947e8a5f6a27f0a0b1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4460,7 +5159,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "8a6b0f654fe63d9a6502b0f057e48185"
+      "02509c69e40053069d4dc0a07ab24111"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4475,7 +5174,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "a51ca5a395babfc80745d8b64523f05d"
+      "b2847fe1fd3e9f500008777380fdc613"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4490,7 +5189,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "96c2db0d12d7fe0e9f299762489d9126"
+      "1104a159d3f51e6a5c0791a5947a84b4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -4505,7 +5204,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "6ba0a79a94875f061798d599456593b5"
+      "9e6b7fb2768249db0df8168a71d7a338"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_10_",
@@ -4563,7 +5262,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "33b0660d3bd89d293d0814e11e02a2d3"
+      "47590c0062cfd7871cdf17512d88c487"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_10_",
@@ -4572,15 +5271,17 @@
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_1d6030b706650e3a060c2ca2b45a05f6",
         "MkSeq_interpretation_Tm_arrow_5765cf80a31e12b6cf9294aa374986ee",
         "MkSeq_interpretation_Tm_arrow_699c8dd73beae55d251f2f1ab7800f43",
         "MkSeq_interpretation_Tm_arrow_e442f892c16c57046d950f2b719665a5",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
         "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -4600,17 +5301,17 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.FunctionalExtensionality.restricted_t",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Seq.Properties.createL",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
         "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create4", "equation_MkSeq.create5",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
@@ -4636,19 +5337,24 @@
         "function_token_typing_MkSeq.create4",
         "function_token_typing_MkSeq.create5",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_01047fdcbb61cf2007b500a679b4ec74",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_a9b198e31fde8a384087b8239a5e2e08",
-        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
         "lemma_Rust_primitives.Integers.get_bit_or",
         "lemma_Rust_primitives.Integers.get_bit_shl",
         "lemma_Rust_primitives.Integers.get_bit_shr",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -4681,6 +5387,7 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple5__5",
         "projection_inverse_FStar.Pervasives.Native.Some_a",
         "projection_inverse_FStar.Pervasives.Native.Some_v",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
         "refinement_interpretation_Tm_refine_286427dbaf4bc739efc8cef99cb6b0da",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
@@ -4688,13 +5395,13 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_627e9f1cc724efa294bbc10092665eb4",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_7e4a6c5999db731b5d17d0418dfeea3e",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_a863b558306d9c95bf61dd49d4ebba99",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
@@ -4702,13 +5409,15 @@
         "refinement_interpretation_Tm_refine_f386e1ee441210481fca177647b8d6bc",
         "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "refinement_interpretation_Tm_refine_fc12799aca7afdfe7dbfd8172fc58a83",
+        "refinement_kinding_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create4",
-        "token_correspondence_MkSeq.create5",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
-        "typing_FStar.Int32.v", "typing_FStar.List.Tot.Base.length",
+        "token_correspondence_MkSeq.create5", "typing_FStar.Int.fits",
+        "typing_FStar.Int32.int_to_t", "typing_FStar.Int32.v",
+        "typing_FStar.List.Tot.Base.length",
         "typing_FStar.Seq.Properties.seq_of_list", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
@@ -4719,12 +5428,13 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "fb30d16d84ea1d10528d61e523ed2f8d"
+      "7aab16939dbe679998224b87ae71afb5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_10_",
@@ -4739,7 +5449,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "cef7e70b1363b7b1dfbc45ad88a22fcb"
+      "74c13f738c7126a6963ff91813b385cb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_11_",
@@ -4763,7 +5473,8 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
@@ -4783,6 +5494,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -4795,7 +5507,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8bd64ae94fac407fd582b5af9de54459"
+      "195ad3eff731a51bec867e5a16bbee90"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_11_",
@@ -4804,13 +5516,17 @@
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_717aefd263af03778bf5280255ca3463",
         "MkSeq_interpretation_Tm_arrow_7693d425f96a86b3e8b38c2b733466ad",
         "MkSeq_interpretation_Tm_arrow_94eb21ba87bdc77086081163b2f023fb",
         "MkSeq_interpretation_Tm_arrow_f1a046d707407a6beea1d709dbd892ee",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -4831,17 +5547,20 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.FunctionalExtensionality.restricted_t",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create11", "equation_MkSeq.create8",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.BitVectors.num_bits",
@@ -4865,11 +5584,15 @@
         "function_token_typing_Prims.__cache_version_number__",
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_5d1f1121943425d1164086288c912b04",
         "interpretation_Tm_abs_6f1366ec70f1fe6744a49f18394a6936",
-        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
-        "lemma_Lib.IntTypes.pow2_4",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_4",
+        "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
@@ -4931,6 +5654,7 @@
         "projection_inverse_Prims.Cons_a",
         "projection_inverse_Prims.Cons_hd",
         "projection_inverse_Prims.Cons_tl",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
         "refinement_interpretation_Tm_refine_286427dbaf4bc739efc8cef99cb6b0da",
         "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
@@ -4939,25 +5663,26 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_627e9f1cc724efa294bbc10092665eb4",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_7e4a6c5999db731b5d17d0418dfeea3e",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ba3ae1397b04de427236e18542bae86d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_ccb6abb297b6c79c39e84f08226dd6c3",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f386e1ee441210481fca177647b8d6bc",
         "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create11",
-        "token_correspondence_MkSeq.create8",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
-        "typing_FStar.List.Tot.Base.length",
+        "token_correspondence_MkSeq.create8", "typing_FStar.Int.fits",
+        "typing_FStar.Int32.int_to_t", "typing_FStar.List.Tot.Base.length",
         "typing_FStar.Seq.Properties.createL", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
@@ -4968,12 +5693,13 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "97cef87f86a7ce3034bb196683b01898"
+      "f1bfefedfb5acbc3e37e463ee8c4d9c7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_11_",
@@ -4988,7 +5714,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "ebaef0cc9eb3188a0086bb50576381bd"
+      "5f06eedfdffaddb5a10c655306b28024"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_4_",
@@ -5014,6 +5740,7 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
@@ -5035,6 +5762,7 @@
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -5047,7 +5775,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c4f419ea0c86d574b89142b96a331751"
+      "2a34e141ab83c91adda624c96dc93969"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_4_",
@@ -5056,16 +5784,17 @@
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "FStar.Sealed_interpretation_Tm_arrow_6980332764c4493a7b0df5c02f7aefbe",
+        "FStar.Classical_interpretation_Tm_arrow_6980332764c4493a7b0df5c02f7aefbe",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_14835084a7628a594896379e5ea411ad",
         "MkSeq_interpretation_Tm_arrow_4936cb3ae75b071093de3c4fdb6a1778",
         "MkSeq_interpretation_Tm_arrow_a8cce9f06a7eff5740f6bae57e839f6b",
         "MkSeq_interpretation_Tm_arrow_aa50555711d6286cfd8dc185000aafab",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "Rust_primitives_interpretation_Tm_arrow_f41a2414a22e10a5d3d0356941703414",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
@@ -5088,10 +5817,12 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.Seq.Properties.createL", "equation_FStar.UInt.fits",
+        "equality_tok_Lib.IntTypes.U8@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.UInt.fits",
         "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
         "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
@@ -5100,24 +5831,20 @@
         "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create1", "equation_MkSeq.create2",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.BitVectors.num_bits",
         "equation_Rust_primitives.Integers.bit",
         "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.cast_mod",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.op_At_Percent_Dot",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.signed",
@@ -5133,17 +5860,17 @@
         "function_token_typing_MkSeq.create1",
         "function_token_typing_MkSeq.create2",
         "function_token_typing_Prims.__cache_version_number__",
-        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_7e380eba0c9ae2d800a389eb46d8c442",
         "interpretation_Tm_abs_94ab8e03f2df430f87d9d1fec48fd1f1",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
-        "lemma_FStar.Int32.uv_inv", "lemma_FStar.Int32.vu_inv",
-        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_3", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_u8",
         "lemma_Rust_primitives.Integers.get_bit_and",
         "lemma_Rust_primitives.Integers.get_bit_cast",
@@ -5166,6 +5893,7 @@
         "projection_inverse_FStar.Pervasives.Native.Some_a",
         "projection_inverse_FStar.Pervasives.Native.Some_v",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1fc9aea01d7aff49f16425d06e0bcadf",
         "refinement_interpretation_Tm_refine_25c72d704900d626b30894312c325451",
         "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
@@ -5182,43 +5910,42 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
-        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
-        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "refinement_interpretation_Tm_refine_f3460d78bd6a4448da852b8e0439abd1",
         "refinement_interpretation_Tm_refine_f386e1ee441210481fca177647b8d6bc",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create1",
         "token_correspondence_MkSeq.create2",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
-        "typing_FStar.Int32.int_to_t", "typing_FStar.Seq.Base.index",
-        "typing_FStar.Seq.Properties.createL",
-        "typing_FStar.Seq.Properties.seq_of_list", "typing_FStar.UInt.fits",
+        "token_correspondence_Rust_primitives.cast",
+        "typing_FStar.FunctionalExtensionality.on_domain",
+        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
+        "typing_FStar.Seq.Properties.createL", "typing_FStar.UInt.fits",
         "typing_FStar.UInt8.uint_to_t", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Rust_primitives.cast_tc_integers",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok",
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "f8dd783c6278aac23a87c1a4a8598589"
+      "18c053530347191b31a0695b51b58f39"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_5_",
@@ -5242,7 +5969,8 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
@@ -5253,7 +5981,7 @@
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
@@ -5262,6 +5990,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -5274,7 +6003,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "9056c79d5ff608b4b111e7a61cbd8806"
+      "6ad544248339a7e94bd9368881cbc47b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_5_",
@@ -5284,12 +6013,15 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
         "MkSeq_interpretation_Tm_arrow_1d6030b706650e3a060c2ca2b45a05f6",
         "MkSeq_interpretation_Tm_arrow_94eb21ba87bdc77086081163b2f023fb",
         "MkSeq_interpretation_Tm_arrow_e442f892c16c57046d950f2b719665a5",
         "MkSeq_interpretation_Tm_arrow_f1a046d707407a6beea1d709dbd892ee",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
         "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_FStar.Pervasives.Native.Some",
         "constructor_distinct_Lib.IntTypes.PUB",
@@ -5301,23 +6033,29 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "constructor_distinct_Prims.Cons",
         "data_typing_intro_FStar.Pervasives.Native.Mktuple5@tok",
         "data_typing_intro_FStar.Pervasives.Native.Mktuple8@tok",
+        "data_typing_intro_Prims.Cons@tok",
+        "data_typing_intro_Prims.Nil@tok",
         "disc_equation_FStar.Pervasives.Native.Some",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.FunctionalExtensionality.restricted_t",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
         "equation_MkSeq.create5", "equation_MkSeq.create8",
         "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.bit_vec",
         "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.BitVectors.num_bits",
@@ -5342,9 +6080,13 @@
         "function_token_typing_Rust_primitives.Integers.i32",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_01047fdcbb61cf2007b500a679b4ec74",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "interpretation_Tm_abs_5d1f1121943425d1164086288c912b04",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
         "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
+        "lemma_Lib.IntTypes.pow2_4", "lemma_Lib.IntTypes.v_injective",
         "lemma_Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
         "lemma_Rust_primitives.BitVectors.lemma_get_bit_bounded",
         "lemma_Rust_primitives.Integers.get_bit_and",
@@ -5354,10 +6096,10 @@
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_LessThan",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
-        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Division", "primitive_Prims.op_Equality",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Minus", "primitive_Prims.op_Modulus",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__1",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__2",
         "proj_equation_FStar.Pervasives.Native.Mktuple5__3",
@@ -5391,31 +6133,40 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple8__8",
         "projection_inverse_FStar.Pervasives.Native.Some_a",
         "projection_inverse_FStar.Pervasives.Native.Some_v",
+        "projection_inverse_Prims.Cons_a",
+        "projection_inverse_Prims.Cons_hd",
+        "projection_inverse_Prims.Cons_tl",
+        "refinement_interpretation_Tm_refine_15f0687264c581284bdf37108526e858",
         "refinement_interpretation_Tm_refine_1e6b47a616fd98d0104838f8e23c690d",
         "refinement_interpretation_Tm_refine_286427dbaf4bc739efc8cef99cb6b0da",
+        "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_627e9f1cc724efa294bbc10092665eb4",
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
+        "refinement_interpretation_Tm_refine_7e4a6c5999db731b5d17d0418dfeea3e",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_a863b558306d9c95bf61dd49d4ebba99",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_ccb6abb297b6c79c39e84f08226dd6c3",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f386e1ee441210481fca177647b8d6bc",
         "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
         "token_correspondence_MkSeq.create5",
-        "token_correspondence_MkSeq.create8",
-        "token_correspondence_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
-        "typing_FStar.Int.fits", "typing_FStar.Int32.int_to_t",
+        "token_correspondence_MkSeq.create8", "typing_FStar.Int.fits",
+        "typing_FStar.Int32.int_to_t", "typing_FStar.List.Tot.Base.length",
+        "typing_FStar.Seq.Base.index", "typing_FStar.Seq.Properties.createL",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.get_bit",
         "typing_Rust_primitives.Integers.logand",
@@ -5426,12 +6177,13 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "c7c2b980978a0e678deebaa0b88242f7"
+      "333a7e01ffb02be3bd68d7a722c73540"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_5_",
@@ -5446,7 +6198,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "48f07cda9af30e4bf837082fba929e7f"
+      "7c4ff4ed14054f1b789777f01115c9ea"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.cast_bound_lemma",
@@ -5477,13 +6229,18 @@
         "equation_Rust_primitives.Integers.v",
         "equation_Rust_primitives.cast",
         "equation_Rust_primitives.cast_tc_integers", "int_inversion",
+        "int_typing",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
         "lemma_FStar.Int.pow2_values", "lemma_FStar.UInt.pow2_values",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
+        "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Modulus", "projection_inverse_BoxBool_proj_0",
+        "primitive_Prims.op_Modulus", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
@@ -5493,6 +6250,7 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "token_correspondence_Prims.pow2.fuel_instrumented",
         "token_correspondence_Rust_primitives.cast", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.modulus",
@@ -5502,7 +6260,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "dba123aeda444135035d8313b6e6f12e"
+      "7cba1e326b1512fa96fec5148ef0e14d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.int_t_d_cast_lemma",
@@ -5513,21 +6271,12 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S128",
-        "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S64",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
         "constructor_distinct_Tm_unit", "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S128@tok",
+        "equality_tok_Lib.IntTypes.S16@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.min_int",
+        "equality_tok_Lib.IntTypes.S64@tok", "equation_FStar.Int.max_int",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
         "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
         "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
@@ -5579,16 +6328,17 @@
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "token_correspondence_Rust_primitives.cast", "typing_Lib.IntTypes.v",
         "typing_Prims.pow2", "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S128@tok", "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_tok_Lib.IntTypes.S128@tok",
+        "typing_tok_Lib.IntTypes.S16@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.S64@tok"
       ],
       0,
-      "2f7edab3860c3c7526c68f1edc097912"
+      "96a96cf745d09c252e2133b76d9dc1a0"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.mul_in_range",
@@ -5626,7 +6376,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8807349aff2f1cdddcb77fe89763f4c4"
+      "e455d6c7e37497cdcf42e2cbf07cf0dd"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_10_",
@@ -5718,11 +6468,11 @@
         "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
-        "refinement_interpretation_Tm_refine_a21ea137a8463fd90e99d77530c868a2",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_a863b558306d9c95bf61dd49d4ebba99",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_d24bdf430c3230ee7cf80a155c244fec",
         "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_MkSeq.create5",
@@ -5740,7 +6490,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "75ba814b7f7f5d23bd494a88828bf1e4"
+      "1a77ead49607b69be09058015b90c414"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.update5",
@@ -5796,7 +6546,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d90d68c2eabcfb4c6746993af95b074b"
+      "5bb46a1eddfe68b258509a7b774b404b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_11_",
@@ -5806,7 +6556,6 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "FStar.Seq.Base_pretyping_7efa52b424e80c83ad68a652aa3561e4",
         "MkSeq_interpretation_Tm_arrow_717aefd263af03778bf5280255ca3463",
         "MkSeq_interpretation_Tm_arrow_7693d425f96a86b3e8b38c2b733466ad",
         "b2t_def", "bool_inversion", "bool_typing",
@@ -5827,7 +6576,9 @@
         "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
         "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -5881,6 +6632,7 @@
         "projection_inverse_Rust_primitives.Mkunsize_tc_output",
         "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_167ef714932ec832fb671890fc3eee6c",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -5891,7 +6643,7 @@
         "refinement_interpretation_Tm_refine_ba3ae1397b04de427236e18542bae86d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_cba05f24e5883cf8687838e7bf74655a",
+        "refinement_interpretation_Tm_refine_ea12733250d21970b7d0bd8011a82b37",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_MkSeq.create11",
         "token_correspondence_Rust_primitives.unsize",
@@ -5905,7 +6657,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c90b69204600adb912f9b6c3edcd923a"
+      "b44607948305b8233a9085c594793902"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_11_",
@@ -5917,7 +6669,7 @@
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "0eaa80158a0ec987d9edd654d3e94903"
+      "bc17d5f39124086b7a8dbf43b42606cb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_11_",
@@ -5938,6 +6690,7 @@
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
@@ -5948,25 +6701,23 @@
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Multiply", "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "refinement_interpretation_Tm_refine_0dad9f14443cac3d119e26b37bea27c8",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_0f6e6287f7056ebec0f4b190ee6aee48",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_70d312c8ec0b8643a1f0f5f003ab915a",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ba3ae1397b04de427236e18542bae86d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bb900e70c3cf1979f4313dcf06d0580a",
-        "refinement_interpretation_Tm_refine_cba05f24e5883cf8687838e7bf74655a",
         "token_correspondence_MkSeq.create11", "typing_Lib.IntTypes.v",
         "typing_MkSeq.create11", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "08d9b65d9f1df85d2a652587cd27ea44"
+      "46626c4e5fccf14a5b6daee7b9be6780"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_4_",
@@ -6054,9 +6805,9 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_acc8361adfd7a8e7e62d32502083a849",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_deebe8518c81a8dc6a0b26027a047597",
         "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "token_correspondence_Prims.pow2.fuel_instrumented",
@@ -6073,7 +6824,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "8dd296a293d5608a81c7c783a0ad276d"
+      "2c18a7f71f8a9371321b25d5984a6cab"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_5_",
@@ -6104,9 +6855,10 @@
         "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
         "equation_FStar.UInt.size", "equation_FStar.UInt.uint_t",
         "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
         "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -6156,6 +6908,7 @@
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Rust_primitives.Mkunsize_tc_output",
         "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
@@ -6169,8 +6922,8 @@
         "refinement_interpretation_Tm_refine_ba559583f03418e2290fb59e93afccb0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_cba05f24e5883cf8687838e7bf74655a",
         "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
+        "refinement_interpretation_Tm_refine_ea12733250d21970b7d0bd8011a82b37",
         "refinement_interpretation_Tm_refine_f13070840248fced9d9d60d77bdae3ec",
         "refinement_kinding_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "token_correspondence_Rust_primitives.unsize",
@@ -6186,7 +6939,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "7715cec768ba9a01845881f407d7ba39"
+      "9e61c7dfa014e1dfdef45fb6e81da5e3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_5_",
@@ -6198,7 +6951,7 @@
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "187644a9afce10e1b6f7bf4c4a09683c"
+      "386b75e2c04fe8fafc06ce16c499742a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_5_",
@@ -6219,6 +6972,7 @@
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
@@ -6229,26 +6983,24 @@
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Multiply", "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "refinement_interpretation_Tm_refine_0dad9f14443cac3d119e26b37bea27c8",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_17842b692fc36ec40a803769d235f928",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_8165a1265edb39cf86f751ce4c9cff51",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_a863b558306d9c95bf61dd49d4ebba99",
         "refinement_interpretation_Tm_refine_ba559583f03418e2290fb59e93afccb0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_cba05f24e5883cf8687838e7bf74655a",
         "refinement_interpretation_Tm_refine_db55e97d0480135110368473524eef5f",
         "token_correspondence_MkSeq.create5", "typing_Lib.IntTypes.v",
         "typing_MkSeq.create5", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "964f0cfc54e00d3b27f62ba4fef4cdeb"
+      "cfd0281c2b4983f797d2c24ae71722cb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_message",
@@ -6309,7 +7061,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "a095f48211b207d8591380609c2ef9a6"
+      "263c273767a8bc503be96b1a17571e6b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_message",
@@ -6379,11 +7131,12 @@
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "refinement_interpretation_Tm_refine_0fcd7f44f1dcbccd19bd6e593cf1ac0f",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_59d416e7476fb7105d7fb8177838e036",
+        "refinement_interpretation_Tm_refine_745a9e06e89f2281a7f58d9584f6c5e1",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
@@ -6402,7 +7155,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "10ff56be773885efe799e45e4dce5497"
+      "462f73da8ba9f6deb5db7510bccd0a71"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_ring_element_u",
@@ -6413,20 +7166,20 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
         "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
+        "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U32",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.cast_mod",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.modulus",
         "equation_Rust_primitives.Integers.op_At_Percent_Dot",
@@ -6447,11 +7200,13 @@
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_66a922cd7d39fe76a3ef56268cd7c086",
         "refinement_interpretation_Tm_refine_6dd2f55c8872fb0160e8109d9e59245f",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "token_correspondence_Rust_primitives.cast", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
+        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -6459,7 +7214,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "3294c879993cfa05e55501f3bcda62ac"
+      "e05787e8740aab4e57a6dd39f1fe4c6d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_ring_element_v",
@@ -6525,7 +7280,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "bec8a0232e8e980f44ba1d328ee36b1a"
+      "4485b30675aa0307365a74fb0ac36251"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_ring_element_v",
@@ -6549,12 +7304,10 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Prims.pos",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.cast_mod",
         "equation_Rust_primitives.Integers.int_t",
@@ -6579,7 +7332,6 @@
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
         "lemma_FStar.UInt32.uv_inv", "lemma_FStar.UInt64.uv_inv",
-        "lemma_Lib.IntTypes.pow2_2",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
@@ -6591,7 +7343,6 @@
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_66a922cd7d39fe76a3ef56268cd7c086",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_920ec30579342d4ea166ddfb1de07e1d",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
@@ -6601,7 +7352,6 @@
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.modulus",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.u32_inttype",
@@ -6614,7 +7364,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "de821d6691d997a8b8f8ae398de11bd7"
+      "ea47c43c65702e51e1a1aaf6fe48f584"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_ring_element_v",
@@ -6646,6 +7396,7 @@
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
+        "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
@@ -6654,13 +7405,15 @@
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_FStar.UInt32.t", "typing_FStar.UInt64.t",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "c11fef81eac31f0ed1d29dc29f4acf26"
+      "ed21f6ddfe59274df19fbc4304d524f3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_10_",
@@ -6739,6 +7492,7 @@
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_21d27d2f2f46739a127d95f7f7f62330",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
@@ -6750,7 +7504,6 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_e6ef524d6a5a77dc89b1adad6b429993",
         "token_correspondence_Rust_primitives.cast",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -6766,7 +7519,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "978653ff1df925aa6e4122da52439af1"
+      "c03c0a481c02c724d2a093f319e207f7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_10_",
@@ -6778,7 +7531,7 @@
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "0536b63c114f3d3d5b9f9b70878b7cee"
+      "1be6f9bf53a6bf558b2cef4b0e83494c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_10_",
@@ -6791,7 +7544,6 @@
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
@@ -6812,17 +7564,13 @@
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_8e275cfa492c73f52b5f32fd4e8a7155",
         "refinement_interpretation_Tm_refine_a6a572f238903178c35ad6eada2dbaf3",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b77e896f5c637b09a41ab629a923186d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_e6ef524d6a5a77dc89b1adad6b429993",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Rust_primitives.Integers.range",
@@ -6832,7 +7580,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "ef238ea24d0797ef4bebb1b3104aba22"
+      "b354035ef9e1bfcbd21b5400bb8d6ffb"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_11_",
@@ -6889,7 +7637,8 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
         "equation_Rust_primitives.cast",
-        "equation_Rust_primitives.cast_tc_integers", "int_typing",
+        "equation_Rust_primitives.cast_tc_integers", "int_inversion",
+        "int_typing",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
         "lemma_FStar.Int32.vu_inv", "lemma_Lib.IntTypes.pow2_2",
@@ -6909,6 +7658,7 @@
         "projection_inverse_Rust_primitives.Mkcast_tc_cast",
         "refinement_interpretation_Tm_refine_0668f3e468d1f693fc2b86558447fb99",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_11721d1dcf491e41703401b18f511feb",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -6918,7 +7668,6 @@
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_e845cca53ad19c4347b13715739da90e",
         "token_correspondence_Rust_primitives.cast",
         "typing_Lib.IntTypes.bits", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
@@ -6934,7 +7683,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "3042d10b84bd4ea5010900c70dc4c1f6"
+      "6b103c0915a517de160264d69eb254d7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_11_",
@@ -6948,7 +7697,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "50c6d3e4f8470af4cf22921cf94ac068"
+      "c9b5a3a9a5da99789f1c33249b5110a3"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_11_",
@@ -6959,7 +7708,6 @@
         "@MaxIFuel_assumption", "@query", "b2t_def", "bool_inversion",
         "bool_typing", "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.v",
-        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -6978,17 +7726,13 @@
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "refinement_interpretation_Tm_refine_0668f3e468d1f693fc2b86558447fb99",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
         "refinement_interpretation_Tm_refine_87f064b0f53d2badbd3cb9c5985c4c46",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b38b8a86dd143130555f373754659a27",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d8836626372248741cc7d6582bd93782",
-        "refinement_interpretation_Tm_refine_e845cca53ad19c4347b13715739da90e",
         "refinement_interpretation_Tm_refine_ebd4fd466e5ab18d8fff88f813473279",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -6996,7 +7740,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "282d1f2491bd479478bb80fee8ba4bda"
+      "208bb866a78d1d390d255bf899b80101"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_4_",
@@ -7085,14 +7829,11 @@
         "refinement_interpretation_Tm_refine_a3e240df9966608d534d4eb5b3d03108",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "token_correspondence_MkSeq.create1",
         "token_correspondence_MkSeq.create2", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.i32_inttype",
-        "typing_Rust_primitives.Integers.int_t",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -7101,7 +7842,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "82090095d8e854d381553d531535ab4e"
+      "69a3886a7f01eab17be0582aec9c8997"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_4_",
@@ -7113,7 +7854,7 @@
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "2e982e71b39b16a59b0319df542061b4"
+      "890138e8328e7dfd54c1973d3670fc5c"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_4_",
@@ -7123,6 +7864,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "MkSeq_interpretation_Tm_arrow_4936cb3ae75b071093de3c4fdb6a1778",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
@@ -7137,10 +7879,13 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Slice",
+        "equation_MkSeq.create1", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
@@ -7154,7 +7899,9 @@
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
+        "interpretation_Tm_abs_94ab8e03f2df430f87d9d1fec48fd1f1",
         "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -7163,8 +7910,11 @@
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_16da91e8e8e81b1e3e5f34f47ddac61a",
+        "refinement_interpretation_Tm_refine_3ca3b5d3bb9dd23942633e4e33942d2c",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a3e240df9966608d534d4eb5b3d03108",
@@ -7172,9 +7922,9 @@
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c3df9cc460905cf277bb991d449b4987",
         "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
-        "typing_Lib.IntTypes.v",
+        "token_correspondence_MkSeq.create1", "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_MkSeq.create1", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
@@ -7183,7 +7933,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d69cb5b61f12503d29f1c54e9d2d465f"
+      "334abd96756541aae6b64293b0153a80"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_5_",
@@ -7282,6 +8032,7 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple8__8",
         "projection_inverse_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_21d27d2f2f46739a127d95f7f7f62330",
         "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
@@ -7297,7 +8048,6 @@
         "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_ccb6abb297b6c79c39e84f08226dd6c3",
-        "refinement_interpretation_Tm_refine_e6ef524d6a5a77dc89b1adad6b429993",
         "token_correspondence_Core.Ops.Index.f_index",
         "token_correspondence_Core.Ops.op_String_Access",
         "token_correspondence_MkSeq.create8",
@@ -7319,7 +8069,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "df176aed98634f9118ebe45ca29940ae"
+      "1876b55b1b631f5ff3eb31889adbb645"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_5_",
@@ -7331,7 +8081,7 @@
         "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "5ecc4f8801f752a0720a643558e80f7c"
+      "96def4a947cca094aa88456541d184a4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_5_",
@@ -7366,7 +8116,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "32932983168b048833c36a539d80798f"
+      "e538cc6c98f41c18a06c8ad881283745"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_message",
@@ -7427,7 +8177,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "354357c2182183e8fa52475a363e696c"
+      "f93934b614ab0c30b5c2ca7f2ead40d2"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_message",
@@ -7580,7 +8330,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "8ff29e06fc8b72ab40f77c9d8cbf33b1"
+      "2025b3654783ebf2ba85b4787acd215d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_message",
@@ -7618,7 +8368,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8f02856689e8a34d554dc7885bdf0512"
+      "83c96a1cd7915a53b5fdd2a5c264b005"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_u",
@@ -7665,7 +8415,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "5c0a5ae3f348d384d7b0fbd5c90a6426"
+      "cb78adfef4795435c369e0c1cd694eb7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_u",
@@ -7733,7 +8483,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "6a623bd2728609253c558ef837d862cf"
+      "78d7949ccfe5646aedb5300ae770a7c5"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_v",
@@ -7791,7 +8541,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "2ad6bfbf55509f218d102ff778613a77"
+      "0cc8452d4a4eeb5b77cc6b59c817346d"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_v",
@@ -7811,13 +8561,15 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.size",
         "equation_FStar.UInt.fits", "equation_FStar.UInt.max_int",
         "equation_FStar.UInt.min_int", "equation_FStar.UInt.size",
         "equation_FStar.UInt.uint_t", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
@@ -7844,7 +8596,8 @@
         "equation_Rust_primitives.cast",
         "equation_Rust_primitives.cast_tc_integers",
         "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
+        "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Rust_primitives.Integers.u8", "int_typing",
         "interpretation_Tm_abs_ae766fa8f90eec5b65a4f6b3f797525e",
         "interpretation_Tm_abs_b5528c6af917e15cd2e1d2f497d4f1b1",
         "lemma_FStar.UInt32.uv_inv", "lemma_FStar.UInt32.vu_inv",
@@ -7872,17 +8625,20 @@
         "typing_FStar.Seq.Base.length", "typing_FStar.UInt32.uint_to_t",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.cast_mod",
         "typing_Rust_primitives.Integers.op_At_Percent_Dot",
+        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
-        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok"
+        "typing_tok_Lib.IntTypes.S32@tok", "typing_tok_Lib.IntTypes.U32@tok",
+        "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "3ac7d30bb8ab23cbb973689172461cfe"
+      "1849552afedf21826b851cdd81d3a8d4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_to_uncompressed_ring_element",
@@ -7989,10 +8745,10 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_ba67f791f7f33677f5a46de63a986b1d",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bedf734497c97006b6f701c7647a9cc6",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_e7f63df644568e6d209d985baf736b12",
         "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
         "refinement_interpretation_Tm_refine_f386e1ee441210481fca177647b8d6bc",
         "token_correspondence_Rust_primitives.cast", "typing_FStar.Int.fits",
@@ -8012,56 +8768,149 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "b3e66353dadc420c34c301ad1021727e"
+      "ee4ef75c7a35274982c94637a4707bbc"
     ],
     [
-      "Libcrux.Kem.Kyber.Serialize.serialize_uncompressed_ring_element",
+      "Libcrux.Kem.Kyber.Serialize.update3",
       1,
       0,
       0,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.add",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
+        "lemma_FStar.Seq.Base.lemma_index_upd1",
+        "lemma_FStar.Seq.Base.lemma_index_upd2",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_331c14d442c5ee89a4fce6ea305c920f",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_df81b3f17797c6f405c1dbb191651292",
+        "refinement_interpretation_Tm_refine_f6cd8636182c49269a343526ca0cea07",
+        "refinement_interpretation_Tm_refine_f98e6bf01968fd895f292e727f0d75ee",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
+      ],
+      0,
+      "2fd87cb114ca4ee036449dc5652704df"
+    ],
+    [
+      "Libcrux.Kem.Kyber.Serialize.slice_map_lemma",
+      1,
+      0,
+      0,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "bool_inversion", "bool_typing", "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lt",
+        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.map_",
+        "int_inversion",
+        "interpretation_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "lemma_FStar.Seq.Base.lemma_eq_elim",
+        "lemma_FStar.Seq.Base.lemma_eq_intro",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5cb97e877c4f74f430b035b68f5e5def",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
+        "refinement_interpretation_Tm_refine_9a09b8d60f882fd21b3c7c5705154313",
+        "refinement_interpretation_Tm_refine_9cbf23a40dd493ebfd5888f5d047f611",
+        "refinement_interpretation_Tm_refine_a68deb146d199acf5e0d0ccb7f05c1e7",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Rust_primitives.Integers.bits",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "refinement_interpretation_Tm_refine_fc3a2cd5f1a0f8d51caf301ef74d5727",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "b79da56a2a28195526d18e4714b066f7"
+      "278fb6febf1dbc3d9fe0cbe2e6265c6f"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.serialize_uncompressed_ring_element",
-      2,
+      1,
       0,
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "MkSeq_interpretation_Tm_arrow_18d3dcbafa1048d6377074186f5f2afd",
-        "MkSeq_interpretation_Tm_arrow_c2fe76a834cdd44d7fa52cb0da696f35",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
@@ -8080,19 +8929,14 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_FStar.UInt.min_int", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v",
+        "equation_Lib.IntTypes.pub_uint16", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
-        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_MkSeq.create3", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.BitVectors.int_t_d",
-        "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
@@ -8100,150 +8944,250 @@
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u16",
         "equation_Rust_primitives.Integers.u16_inttype",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
-        "function_token_typing_Lib.IntTypes.byte_t",
-        "function_token_typing_MkSeq.create3", "int_typing",
-        "interpretation_Tm_abs_24b32bebd3485ad76e228d3f32e635f7",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
+        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.map_",
+        "function_token_typing_Lib.IntTypes.pub_uint16", "int_typing",
         "lemma_FStar.Int32.vu_inv",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Division", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Minus", "primitive_Prims.op_Multiply",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "refinement_interpretation_Tm_refine_0eeab4d5f73e78a17240ba8a60788298",
-        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_9646800d9b76afb2dc402d323458a8c8",
-        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "token_correspondence_MkSeq.create3",
-        "token_correspondence_Rust_primitives.unsize",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
         "typing_Lib.IntTypes.v",
         "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "06f343cc330d8ce02584ffb6c71f184c"
-    ],
-    [
-      "Libcrux.Kem.Kyber.Serialize.serialize_uncompressed_ring_element",
-      3,
-      0,
-      0,
-      [
-        "@query", "b2t_def", "primitive_Prims.op_Addition",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_Multiply",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0"
-      ],
-      0,
-      "f806a6e63afe1d9c435fb1580834826f"
+      "3d7daa1f241c7ce09a8f1711170ef5cf"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.serialize_uncompressed_ring_element",
-      4,
+      2,
       0,
       0,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_FStar.List.Tot.Base.length.fuel_instrumented",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "BitVecEq_interpretation_Tm_arrow_b4ead33e06e21b401ac39ed9ccd66716",
+        "FStar.FunctionalExtensionality_interpretation_Tm_arrow_a7d5cc170be69663c495e8582d2bc62a",
+        "MkSeq_interpretation_Tm_arrow_14835084a7628a594896379e5ea411ad",
+        "MkSeq_interpretation_Tm_arrow_18d3dcbafa1048d6377074186f5f2afd",
+        "MkSeq_interpretation_Tm_arrow_aa50555711d6286cfd8dc185000aafab",
         "MkSeq_interpretation_Tm_arrow_c2fe76a834cdd44d7fa52cb0da696f35",
+        "Prims_interpretation_Tm_arrow_2eaa01e78f73e9bab5d0955fc1a662da",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_174abaca43ba34e0abfa0271a1b94446",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bc2eac05cff1f96671b35103fe52da33",
+        "Rust_primitives.BitVectors_interpretation_Tm_arrow_bee60607ac45923beb97c3e371c44d68",
         "b2t_def", "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.PUB",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "data_typing_intro_FStar.Pervasives.Native.Mktuple2@tok",
+        "data_typing_intro_Prims.Cons@tok",
+        "data_typing_intro_Prims.Nil@tok",
         "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U16@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v", "equation_MkSeq.create3",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_BitVecEq.bit_vec_sub",
+        "equation_BitVecEq.int_t_array_bitwise_eq",
+        "equation_BitVecEq.int_t_array_bitwise_eq_",
+        "equation_Core.Ops.Index.f_index",
+        "equation_Core.Ops.op_String_Access",
+        "equation_FStar.FunctionalExtensionality.feq",
+        "equation_FStar.Int.fits", "equation_FStar.Int.int_t",
+        "equation_FStar.Int.max_int", "equation_FStar.Int.min_int",
+        "equation_FStar.Int.size", "equation_FStar.Pervasives.Native.fst",
+        "equation_FStar.Seq.Properties.createL",
+        "equation_FStar.UInt.max_int", "equation_FStar.UInt.min_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.pub_int_v",
+        "equation_Lib.IntTypes.pub_uint16", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.i32_b",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.op_String_Access",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_MkSeq.create2", "equation_MkSeq.create3",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Hax.impl__index",
+        "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.div",
+        "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lt",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.u16",
+        "equation_Rust_primitives.Integers.u16_inttype",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
+        "equation_Rust_primitives.Iterators.nth_chunk_of",
+        "equation_Spec.Kyber.map_",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_BitVecEq.bit_vec_sub",
         "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Lib.IntTypes.pub_uint16",
+        "function_token_typing_Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative",
+        "function_token_typing_MkSeq.create2",
+        "function_token_typing_MkSeq.create3",
+        "function_token_typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
+        "function_token_typing_Rust_primitives.Integers.usize",
+        "int_inversion", "int_typing",
+        "interpretation_Tm_abs_0ce045133c37014f50d62d7dc349251d",
         "interpretation_Tm_abs_24b32bebd3485ad76e228d3f32e635f7",
+        "interpretation_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
+        "interpretation_Tm_abs_728d89c88efb5ca300c33d72c2fc2b54",
+        "interpretation_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "interpretation_Tm_abs_7e380eba0c9ae2d800a389eb46d8c442",
+        "interpretation_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "interpretation_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
+        "lemma_BitVecEq.bit_vec_equal_elim",
+        "lemma_BitVecEq.bit_vec_equal_trivial_sub_smtpat",
+        "lemma_BitVecEq.bit_vec_sub_all_lemma",
+        "lemma_BitVecEq.int_t_seq_slice_to_bv_sub_lemma",
+        "lemma_FStar.FunctionalExtensionality.feq_on_domain",
+        "lemma_FStar.Int32.vu_inv", "lemma_FStar.Seq.Base.lemma_eq_elim",
+        "lemma_FStar.Seq.Base.lemma_eq_intro",
+        "lemma_FStar.Seq.Base.lemma_index_slice",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_FStar.Seq.Properties.slice_length",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Division", "primitive_Prims.op_LessThan",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Minus",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "proj_equation_FStar.Pervasives.Native.Mktuple2__1",
+        "proj_equation_FStar.Pervasives.Native.Mktuple2__2",
+        "proj_equation_FStar.Pervasives.Native.Mktuple3__1",
+        "proj_equation_FStar.Pervasives.Native.Mktuple3__2",
+        "proj_equation_FStar.Pervasives.Native.Mktuple3__3",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "refinement_interpretation_Tm_refine_045feaff96c939e73ccd5d7de8e4a488",
-        "refinement_interpretation_Tm_refine_076b73e195751dd168bd1aca2fcea6bb",
-        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple3__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple3__2",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple3__3",
+        "refinement_interpretation_Tm_refine_080226ea2c812d8749d89e551288b8c5",
+        "refinement_interpretation_Tm_refine_0a5f448c5b6bc437e6cb3cedf234862e",
         "refinement_interpretation_Tm_refine_0eeab4d5f73e78a17240ba8a60788298",
-        "refinement_interpretation_Tm_refine_102e3e2ffae46eb544d4497226c91fb5",
-        "refinement_interpretation_Tm_refine_3ba9bbe88a78f6325f92e4596392dc5e",
-        "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
-        "refinement_interpretation_Tm_refine_52f6eb74a0664d049be954954738272f",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_29f54a8a92d732b7f4111928d707db68",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
+        "refinement_interpretation_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_interpretation_Tm_refine_35a0739c434508f48d0bb1d5cd5df9e8",
+        "refinement_interpretation_Tm_refine_3ad47bca3cc317d7f084ff997a19398d",
+        "refinement_interpretation_Tm_refine_3ef81bda7f60e225cb4e26bd4be4cac3",
+        "refinement_interpretation_Tm_refine_4c9fc7a376083f6cefabf973925fed40",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_9646800d9b76afb2dc402d323458a8c8",
+        "refinement_interpretation_Tm_refine_6f684e27d6af9965634108bcfe981953",
+        "refinement_interpretation_Tm_refine_780f289b55c6f0afd42ef20742a8d620",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
+        "refinement_interpretation_Tm_refine_9086d23b3104cba00528fd2183761c27",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
+        "refinement_interpretation_Tm_refine_9a09b8d60f882fd21b3c7c5705154313",
+        "refinement_interpretation_Tm_refine_a20118601b41317c98322924cd2f10c3",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_b5966a7fa6f44c89fe0e5692e9043c64",
+        "refinement_interpretation_Tm_refine_b5e93d63edf0099558131c2d4c7fc8fc",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_cd6187432a2b3066b26cf79527654433",
-        "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
-        "refinement_interpretation_Tm_refine_e9fd75cceaaeb3c4516e200cfb4bee15",
-        "refinement_interpretation_Tm_refine_f2993b0cbeef1e5b93834b9e179274f9",
-        "refinement_interpretation_Tm_refine_f805a828f315b5406827bf9bbde964c1",
-        "token_correspondence_MkSeq.create3", "typing_MkSeq.create3",
+        "refinement_interpretation_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
+        "refinement_interpretation_Tm_refine_d2d1ea66f2b3a92c2deb42edcbb784ce",
+        "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
+        "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "refinement_kinding_Tm_refine_32e93499afd73d81ad9a03adc385e67f",
+        "refinement_kinding_Tm_refine_c1424615841f28cac7fc34e92b7ff33c",
+        "refinement_kinding_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "token_correspondence_Core.Ops.Index.f_index",
+        "token_correspondence_Core.Ops.op_String_Access",
+        "token_correspondence_MkSeq.create2",
+        "token_correspondence_MkSeq.create3", "typing_BitVecEq.bit_vec_sub",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple2__item___1",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple3__item___1",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple3__item___2",
+        "typing_FStar.Pervasives.Native.__proj__Mktuple3__item___3",
+        "typing_FStar.Seq.Properties.createL",
+        "typing_FStar.Seq.Properties.seq_of_list",
+        "typing_Lib.IntTypes.pub_int_v", "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.t_Array",
+        "typing_Rust_primitives.BitVectors.bit_vec_of_int_t_array",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_0ce045133c37014f50d62d7dc349251d",
+        "typing_Tm_abs_352966ba8c3fcfe6f9dc92662e02fbff",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_Tm_abs_eb4b4f6028ac67b168b96720ea22e2fc",
+        "typing_Tm_abs_eb643fbfbab7ef908ba32052bb948a4f",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok",
+        "typing_tok_Lib.IntTypes.U16@tok", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "683b53244dd6604a7c24d322f391eb92"
+      "23041e34ca8c2586ef8c96f635acd513"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fsti.hints
index ce691dda..b4b4733b 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Serialize.fsti.hints
@@ -1,18 +1,6 @@
 [
-  "�@��N�\fnt'ٔ��t\u0012",
+  "p�\\fR���C���0�*",
   [
-    [
-      "Libcrux.Kem.Kyber.Serialize.int_arr_bitwise_eq",
-      1,
-      0,
-      1,
-      [
-        "@MaxIFuel_assumption", "@query",
-        "refinement_interpretation_Tm_refine_c088daa4a5eac181331aa22c1694881a"
-      ],
-      0,
-      "22ba0612e5430e2f88a8ac6691be7bb2"
-    ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_10_",
       1,
@@ -68,7 +56,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "6970c473eb35bbc86b83fa87f8050598"
+      "fc49819fb1f20913b6aad19c10c535ba"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_11_",
@@ -126,7 +114,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "b0679e911cd929811652614230f9ff0a"
+      "0d15fb1ddc0eb3c4db94b6652cfdb2e4"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_3_",
@@ -187,7 +175,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "d293c613eae390e6768de85c77bd1e77"
+      "f12dfa6ac6a8d87b82d3a826d91073d7"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_coefficients_5_",
@@ -230,7 +218,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e91546ead68bf093f6a5d146ee49726b"
+      "98667cb5d26d9a39090509d7a741ef29"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_10_",
@@ -288,7 +276,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "bf84cfe5887c96b94dada84e68371b54"
+      "d43e54a67dc2fd75b053de426f96dfe6"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_11_",
@@ -312,7 +300,8 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
@@ -332,6 +321,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -344,7 +334,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "6f1347797f10c12af4689b1fe0d1a77e"
+      "7d44b7d27e4e3d181b05c7bf2547518b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_4_",
@@ -370,6 +360,7 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.int_t_d",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
@@ -391,6 +382,7 @@
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -403,7 +395,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "4f45e54db197a2a7050d00166cb0d8b0"
+      "bcf6ecd2d3a8b3d014dba776fd78e92e"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.decompress_coefficients_5_",
@@ -427,7 +419,8 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.BitVectors.int_t_d",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.i32",
         "equation_Rust_primitives.Integers.i32_inttype",
         "equation_Rust_primitives.Integers.int_t",
@@ -447,6 +440,7 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_96eaf149ca660c51799b17b0997d1167",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Lib.IntTypes.v",
@@ -459,7 +453,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "3d82aa320a8663516cef4d11fb081c15"
+      "79946ff5d65c450e4403329f7e2fd7d1"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_message",
@@ -500,7 +494,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2aaef48693417dd53b97674eda0b2572"
+      "2f2ea799a39af5e42216ec74448bcc04"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.compress_then_serialize_ring_element_v",
@@ -566,7 +560,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c96a5ba7debbe63986324c8ad57b7b8e"
+      "d1ab1ce43cfc0d919554bb530186d2bf"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_message",
@@ -627,7 +621,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "c8465652b8cea75c9794f2c25986019b"
+      "c3e6759ccb081fd7ca7760f694526647"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_u",
@@ -674,7 +668,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "f0aad7978b72668902311767df97841d"
+      "481c9a2833727434149b9271d7011e9b"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.deserialize_then_decompress_ring_element_v",
@@ -713,7 +707,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f66950a0fa86a562251194a54d4ef205"
+      "db5b8f21b31b3aa1519e53c07cb78b7a"
     ],
     [
       "Libcrux.Kem.Kyber.Serialize.serialize_uncompressed_ring_element",
@@ -723,7 +717,10 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -731,27 +728,62 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "data_elim_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.S32@tok",
+        "equality_tok_Lib.IntTypes.U16@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_uint16",
+        "equation_Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement",
+        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
+        "equation_Rust_primitives.Integers.u16_inttype",
         "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.map_",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement_b",
+        "function_token_typing_Lib.IntTypes.pub_uint16", "int_typing",
         "lemma_Rust_primitives.Integers.pow2_values",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "proj_equation_Libcrux.Kem.Kyber.Arithmetic.Mkt_PolynomialRingElement_b_f_coefficients",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "typing_Lib.IntTypes.v",
+        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
+        "typing_Rust_primitives.Arrays.createi",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
+        "typing_Rust_primitives.Integers.usize_inttype",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "a9325ae41bc8947f712f46194637203f"
+      "18873e0608d5b758747acabebc240a35"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Types.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Types.fst.hints
index a546b7ea..094ebda9 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Types.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.Types.fst.hints
@@ -23,7 +23,7 @@
         "typing_FStar.UInt8.t"
       ],
       0,
-      "328ccf0e044c543f5a868a23868b18e9"
+      "610b7e7b01b002a158d706be53e79498"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_5",
@@ -52,7 +52,7 @@
         "typing_Tm_abs_fc413d795e9c18d46bf344f13a23c593"
       ],
       0,
-      "ecdc4594c3a8b38ee9d6488dfa8bc3bf"
+      "a2af16b0f816deaaf1d40f950f012e33"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_6__split_at",
@@ -105,7 +105,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "130a7d35eb5200f2d764fc0ffcef9ea4"
+      "6582b2b4d897b5e882efa19aa2605665"
     ],
     [
       "Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey",
@@ -129,7 +129,7 @@
         "typing_FStar.UInt8.t"
       ],
       0,
-      "8e7870ab25753aef08d923446396f5d7"
+      "df4f3b15b9a886235f1309f1da87c2e1"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_11",
@@ -158,7 +158,7 @@
         "typing_Tm_abs_fc413d795e9c18d46bf344f13a23c593"
       ],
       0,
-      "ac35c73d135622ff68842b703a3ce0c7"
+      "181efc9defdec05ba60fccdfd52b3e9b"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_12__split_at",
@@ -211,7 +211,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "9ad57ae006129d323014466e0ad61c68"
+      "29b4bf4233a60128bb2efa349c541f27"
     ],
     [
       "Libcrux.Kem.Kyber.Types.t_MlKemPublicKey",
@@ -235,7 +235,7 @@
         "typing_FStar.UInt8.t"
       ],
       0,
-      "7475c3c1a9e7587f3583088d50405b8f"
+      "c8e8bb3628a59f590a610b0ee2840c49"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_17",
@@ -264,7 +264,7 @@
         "typing_Tm_abs_fc413d795e9c18d46bf344f13a23c593"
       ],
       0,
-      "3c73c8b0b78b42a81ebe7758eeaab70e"
+      "e8017e50940e192cfed713330bb67e03"
     ],
     [
       "Libcrux.Kem.Kyber.Types.impl_18__split_at",
@@ -317,7 +317,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "b8fe59f675434b00a43f334826082185"
+      "ee0c430647509b7786f95341c534833e"
     ],
     [
       "Libcrux.Kem.Kyber.Types.t_MlKemKeyPair",
@@ -332,7 +332,7 @@
         "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemPublicKey"
       ],
       0,
-      "3a12a26e7bb889d1adbaea17db931fb7"
+      "a53fa0aeb4f0b8aca00150b4727a2c57"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fst.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fst.hints
index 5beb0853..73b5dbc6 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fst.hints
@@ -39,7 +39,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6be4b5f0252b800ac411288eb0008b95"
+      "5f78ac7b65f2bff00578ca336e4c2b88"
     ],
     [
       "Libcrux.Kem.Kyber.v_KEY_GENERATION_SEED_SIZE",
@@ -101,7 +101,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "4615ff38e1820bf88a3ae7196294b70e"
+      "48a0b22fb449a5574748c4661dac75eb"
     ],
     [
       "Libcrux.Kem.Kyber.update_at_range_lemma",
@@ -173,7 +173,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "b1e84745b56bf13d8b8fad5116329349"
+      "47eb5f92680ad824f15ec315690d6215"
     ],
     [
       "Libcrux.Kem.Kyber.serialize_kem_secret_key",
@@ -189,18 +189,15 @@
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U128",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Libcrux.Digest.Algorithm_Sha3_256_",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok",
-        "equality_tok_Libcrux.Digest.Algorithm_Sha3_256_@tok",
         "equation_Core.Ops.Index.in_range",
         "equation_Core.Ops.Range.impl_index_range_slice",
         "equation_Core.Ops.Range.impl_range_index_array",
@@ -213,7 +210,6 @@
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
         "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Digest.digest_size",
         "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.concat",
@@ -284,6 +280,7 @@
         "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
         "refinement_interpretation_Tm_refine_331c14d442c5ee89a4fce6ea305c920f",
         "refinement_interpretation_Tm_refine_35a0739c434508f48d0bb1d5cd5df9e8",
+        "refinement_interpretation_Tm_refine_393c47017f313fd46105ab871d21f994",
         "refinement_interpretation_Tm_refine_4639d389381bee5cf8cf77b7a6585074",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
@@ -291,13 +288,13 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_8e225234fe5d971652ec3c68ba1abc2e",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_a8b8ce82aa512fe82521200c7486fcf4",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
         "refinement_interpretation_Tm_refine_d83f8da8ef6c1cb9f71d1465c1bb1c55",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
+        "refinement_interpretation_Tm_refine_e5af995bdd8abf81f73637212d6f9d7b",
         "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
         "token_correspondence_Core.Ops.Index.in_range",
         "token_correspondence_Rust_primitives.unsize",
@@ -319,7 +316,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "15cd4309d6689580302de0595c52488e"
+      "85cbf88cac9c8933286ce174e4accd1b"
     ],
     [
       "Libcrux.Kem.Kyber.decapsulate",
@@ -353,8 +350,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_KyberCiphertext",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_KyberPrivateKey",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemCiphertext",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
@@ -373,7 +370,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "87ffb5879e37b3c06cc08b2c4b4f1ce0"
+      "c830d8223026869d0cf24dc552daf700"
     ],
     [
       "Libcrux.Kem.Kyber.decapsulate",
@@ -559,7 +556,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "7fc015d58d5c1baea067181bdfa1e7dd"
+      "0a201c68148cce95cd97e0430a73be51"
     ],
     [
       "Libcrux.Kem.Kyber.encapsulate",
@@ -606,7 +603,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bcf9b65a50bb42498a095b71fbcdea4e"
+      "b82c91c15a38b0576fbd5e4b9602d52a"
     ],
     [
       "Libcrux.Kem.Kyber.encapsulate",
@@ -765,7 +762,7 @@
         "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "893917412cd0b64011704d2e089a36f9"
+      "ee206a2254b166b65432820eb8d38fc7"
     ],
     [
       "Libcrux.Kem.Kyber.encapsulate",
@@ -775,159 +772,35 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Core.Array_pretyping_452a2008417cf175d4b3928fdb38d4d2",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Core.Result.Result_Ok",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U128",
         "constructor_distinct_Lib.IntTypes.U16",
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "constructor_distinct_Libcrux.Digest.Algorithm_Sha3_256_",
-        "data_elim_Libcrux.Kem.Kyber.Types.Mkt_KyberPublicKey",
-        "disc_equation_Core.Result.Result_Ok",
-        "equality_tok_Core.Array.TryFromSliceError@tok",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok",
-        "equality_tok_Libcrux.Digest.Algorithm_Sha3_256_@tok",
-        "equation_Core.Clone.clone_all", "equation_Core.Clone.f_clone",
-        "equation_Core.Convert.f_from", "equation_Core.Convert.f_into",
-        "equation_Core.Convert.f_try_into", "equation_Core.Convert.impl_6",
-        "equation_Core.Convert.into_from_from",
-        "equation_Core.Ops.Index.in_range",
-        "equation_Core.Ops.Range.impl_index_range_from_slice",
-        "equation_Core.Ops.Range.impl_range_from_index_array",
-        "equation_Core.Result.impl__unwrap",
-        "equation_Core.Slice.impl__copy_from_slice",
-        "equation_Core.Slice.impl__len", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v", "equation_Libcrux.Digest.digest_size",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Constants.v_H_DIGEST_SIZE",
-        "equation_Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE",
-        "equation_Libcrux.Kem.Kyber.Types.impl_18__as_slice",
-        "equation_Libcrux.Kem.Kyber.Types.impl_3", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.slice",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize",
-        "equation_Spec.Kyber.ind_cca_encapsulate",
-        "equation_Spec.Kyber.t_KyberCiphertext",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_KyberPublicKey",
-        "int_typing",
-        "interpretation_Tm_abs_06a3905348d584bb1a3419bf1d50f728",
-        "interpretation_Tm_abs_13d076882bd1335519e03f36214a448b",
-        "interpretation_Tm_abs_34b58233e1255b6eba3ce7c341357779",
-        "interpretation_Tm_abs_4bb6412701dfeac9ce6df5500b93361d",
-        "interpretation_Tm_abs_65ca3503e4f90241c7f6a4464be9e9ad",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_99a4114d073ad5d8baa4a916e7f78dd4",
-        "interpretation_Tm_abs_a5c83a391084b3d9146ba51c53498493",
-        "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
-        "interpretation_Tm_abs_c383c10040deb921f8edacb536247c52",
-        "interpretation_Tm_abs_db8cd405d3f0871788b1d0edf4fda3fa",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "interpretation_Tm_abs_fc413d795e9c18d46bf344f13a23c593",
-        "l_and-interp", "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Index.Mkt_Index_in_range",
-        "proj_equation_Core.Ops.Range.Mkt_RangeFrom_f_start",
-        "proj_equation_Core.Result.Result_Ok_v",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberCiphertext_f_value",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberPublicKey_f_value",
-        "proj_equation_Rust_primitives.Mkunsize_tc_output",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Clone.Mkt_Clone_f_clone",
-        "projection_inverse_Core.Convert.Mkt_From_f_from",
-        "projection_inverse_Core.Convert.Mkt_Into_f_into",
-        "projection_inverse_Core.Convert.Mktry_into_tc_f_Error",
-        "projection_inverse_Core.Convert.Mktry_into_tc_f_try_into",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
-        "projection_inverse_Core.Ops.Range.Mkt_RangeFrom_f_start",
-        "projection_inverse_Core.Result.Result_Ok_e",
-        "projection_inverse_Core.Result.Result_Ok_t",
-        "projection_inverse_Core.Result.Result_Ok_v",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Libcrux.Kem.Kyber.Types.Mkt_KyberCiphertext_f_value",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_output",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA2",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "token_correspondence_Core.Clone.f_clone",
-        "token_correspondence_Core.Convert.f_from",
-        "token_correspondence_Core.Convert.f_into",
-        "token_correspondence_Core.Convert.f_try_into",
-        "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
-        "token_correspondence_Core.Ops.Index.in_range",
-        "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.Int32.v",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Core.Array.TryFromSliceError@tok",
-        "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bbb6b63d610b9b6d78de6d2bcb696a91"
+      "a23b8463ed1eeb0d8aad5c153c39b1cc"
     ],
     [
       "Libcrux.Kem.Kyber.validate_public_key",
@@ -1051,7 +924,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "949995bc0e6adfa3fd871c10099bf228"
+      "63b8b651a13a818f1c56f1779cb66637"
     ],
     [
       "Libcrux.Kem.Kyber.generate_keypair",
@@ -1099,7 +972,7 @@
         "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE"
       ],
       0,
-      "9407f1771f52667f1f28c692c0a9c912"
+      "e72afc61924403dc41d97f390d4a5bff"
     ],
     [
       "Libcrux.Kem.Kyber.generate_keypair",
@@ -1270,7 +1143,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "23e03913bbf91d4de7e3d825ec7282ac"
+      "376d9010537f8766b5342c634d34ba56"
     ],
     [
       "Libcrux.Kem.Kyber.generate_keypair",
@@ -1280,10 +1153,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Rust_primitives_interpretation_Tm_arrow_0dc9533934fadb6b25c05502d946f2d2",
-        "b2t_def", "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.PUB",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -1291,147 +1161,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.S32@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Core.Clone.clone_all",
-        "equation_Core.Clone.f_clone", "equation_Core.Convert.f_from",
-        "equation_Core.Convert.f_into",
-        "equation_Core.Convert.into_from_from",
-        "equation_Core.Ops.Index.f_index",
-        "equation_Core.Ops.Index.in_range",
-        "equation_Core.Ops.Range.impl_index_range_from_slice",
-        "equation_Core.Ops.Range.impl_index_range_slice",
-        "equation_Core.Ops.Range.impl_range_from_index_array",
-        "equation_Core.Ops.Range.impl_range_index_array",
-        "equation_Core.Ops.op_String_Access", "equation_FStar.Int.fits",
-        "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
-        "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.byte_t",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.v",
-        "equation_Libcrux.Kem.Kyber.Constants.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "equation_Libcrux.Kem.Kyber.Types.impl_15",
-        "equation_Libcrux.Kem.Kyber.Types.impl_9",
-        "equation_Libcrux.Kem.Kyber.Types.impl__from", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.i32",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lt",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Rust_primitives.array_to_slice_unsize",
-        "equation_Rust_primitives.unsize",
-        "equation_Spec.Kyber.ind_cca_generate_keypair",
-        "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.t_KyberPrivateKey",
-        "equation_Spec.Kyber.t_KyberPublicKey",
-        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_",
-        "function_token_typing_Lib.IntTypes.byte_t",
-        "interpretation_Tm_abs_0956da15530cc0f64a16a4548bf6da82",
-        "interpretation_Tm_abs_0cb90ffdaac009e5428b856a53fc2c98",
-        "interpretation_Tm_abs_34b58233e1255b6eba3ce7c341357779",
-        "interpretation_Tm_abs_3fed82ae903d42e820576b470eb7bc5b",
-        "interpretation_Tm_abs_4bb6412701dfeac9ce6df5500b93361d",
-        "interpretation_Tm_abs_572e0e093c6cc78cd0d8e5493e04bc44",
-        "interpretation_Tm_abs_65ca3503e4f90241c7f6a4464be9e9ad",
-        "interpretation_Tm_abs_6cab4c958b14168c478c0b7bfda6a19a",
-        "interpretation_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "interpretation_Tm_abs_99a4114d073ad5d8baa4a916e7f78dd4",
-        "interpretation_Tm_abs_a5c83a391084b3d9146ba51c53498493",
-        "interpretation_Tm_abs_b3488160bd206c09ce676bc441b5de6a",
-        "interpretation_Tm_abs_bc0ae3740b8cfb7a7b7143f61a432dbc",
-        "interpretation_Tm_abs_c383c10040deb921f8edacb536247c52",
-        "interpretation_Tm_abs_cb14670c07acc28b02280bd91ed2f358",
-        "interpretation_Tm_abs_db8cd405d3f0871788b1d0edf4fda3fa",
-        "interpretation_Tm_abs_efab849ed2b09d0ecb6a8d3f4d35f6d2",
-        "interpretation_Tm_abs_f5770e15f23008f76908f7a623d8cb34",
-        "interpretation_Tm_abs_fa65ac303f30fcb41df8f1fc6e9818e3",
-        "l_and-interp", "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_Equality",
-        "primitive_Prims.op_GreaterThanOrEqual",
-        "primitive_Prims.op_LessThan", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Core.Ops.Index.Mkt_Index_f_Output",
-        "proj_equation_Core.Ops.Index.Mkt_Index_f_index",
-        "proj_equation_Core.Ops.Index.Mkt_Index_in_range",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberKeyPair_f_pk",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberKeyPair_f_sk",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberPrivateKey_f_value",
-        "proj_equation_Libcrux.Kem.Kyber.Types.Mkt_KyberPublicKey_f_value",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Core.Clone.Mkt_Clone_f_clone",
-        "projection_inverse_Core.Convert.Mkt_From_f_from",
-        "projection_inverse_Core.Convert.Mkt_Into_f_into",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_Output",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_f_index",
-        "projection_inverse_Core.Ops.Index.Mkt_Index_in_range",
-        "projection_inverse_Core.Ops.Range.Mkt_RangeFrom_f_start",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_end",
-        "projection_inverse_Core.Ops.Range.Mkt_Range_f_start",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Libcrux.Kem.Kyber.Types.Mkt_KyberKeyPair_f_pk",
-        "projection_inverse_Libcrux.Kem.Kyber.Types.Mkt_KyberKeyPair_f_sk",
-        "projection_inverse_Libcrux.Kem.Kyber.Types.Mkt_KyberPrivateKey_f_value",
-        "projection_inverse_Libcrux.Kem.Kyber.Types.Mkt_KyberPublicKey_f_value",
-        "projection_inverse_Rust_primitives.Mkunsize_tc_unsize",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
-        "refinement_interpretation_Tm_refine_d2b7a44d1c8ca8e58166045d25c3c829",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "token_correspondence_Core.Clone.f_clone",
-        "token_correspondence_Core.Convert.f_from",
-        "token_correspondence_Core.Convert.f_into",
-        "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__f_index",
-        "token_correspondence_Core.Ops.Index.__proj__Mkt_Index__item__in_range",
-        "token_correspondence_Core.Ops.Index.f_index",
-        "token_correspondence_Core.Ops.Index.in_range",
-        "token_correspondence_Core.Ops.op_String_Access",
-        "token_correspondence_Rust_primitives.unsize",
-        "typing_FStar.Int32.v", "typing_FStar.Seq.Base.length",
-        "typing_Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS",
-        "typing_Libcrux.Kem.Kyber.Hash_functions.v_H",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_G",
-        "typing_Spec.Kyber.valid_params",
-        "typing_Tm_abs_94963984a705f03fe78dd8ccd37a8094",
-        "typing_tok_Lib.IntTypes.S32@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3ba64c4d26178817ebaba53aaa8161c7"
+      "1867b8b84ae8ab46c01096eea3365f01"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fsti.hints
index 37e4056d..84d86712 100644
--- a/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux.Kem.Kyber.fsti.hints
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "339d059b77bed5df3c5ea27989342081"
+      "a5f6269e63f99d90893496d94d62309e"
     ],
     [
       "Libcrux.Kem.Kyber.v_KEY_GENERATION_SEED_SIZE",
@@ -93,7 +93,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "add4f031d5bf86ec3509600a50720113"
+      "c26c279123fcfb27b233a2e00973a73e"
     ],
     [
       "Libcrux.Kem.Kyber.decapsulate",
@@ -127,8 +127,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_KyberCiphertext",
-        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_KyberPrivateKey",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemCiphertext",
+        "fuel_guarded_inversion_Libcrux.Kem.Kyber.Types.t_MlKemPrivateKey",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
@@ -147,7 +147,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7e0798aa22f5d07f05dfced5b7d84e69"
+      "582a6c24ef717826c9331b0b91044063"
     ],
     [
       "Libcrux.Kem.Kyber.encapsulate",
@@ -194,7 +194,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0a05fce68a356ec56b15e5334b7adc8a"
+      "0995fd37fb7fdfa8dc1bcfd168f31a08"
     ],
     [
       "Libcrux.Kem.Kyber.generate_keypair",
@@ -242,7 +242,7 @@
         "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE"
       ],
       0,
-      "215c675e488f5851e7eea7f327d4f4b0"
+      "2e37e753e204cd57ff2b84aeebfc84dd"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux_platform.Platform.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux_platform.Platform.fsti.hints
new file mode 100644
index 00000000..56578291
--- /dev/null
+++ b/proofs/fstar/extraction-edited/.hints/Libcrux_platform.Platform.fsti.hints
@@ -0,0 +1 @@
+[ "A|1��\n�Ӝ.3B�q\u0015\n", [] ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Libcrux_platform.fsti.hints b/proofs/fstar/extraction-edited/.hints/Libcrux_platform.fsti.hints
deleted file mode 100644
index 090305e2..00000000
--- a/proofs/fstar/extraction-edited/.hints/Libcrux_platform.fsti.hints
+++ /dev/null
@@ -1 +0,0 @@
-[ "?�w����LnE��� T", [] ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/MkSeq.fst.hints b/proofs/fstar/extraction-edited/.hints/MkSeq.fst.hints
index cb5ce6a1..92b22b31 100644
--- a/proofs/fstar/extraction-edited/.hints/MkSeq.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/MkSeq.fst.hints
@@ -19,7 +19,7 @@
         "refinement_interpretation_Tm_refine_7e0b9b2dbca36eab00de093c1b701c6d"
       ],
       0,
-      "90cb02dda4573d5a3a871f57e0a37af5"
+      "84864fc9b6262f1fcf768750c944c883"
     ],
     [
       "MkSeq.create_gen_tac",
@@ -47,7 +47,7 @@
         "projection_inverse_FStar.Stubs.Tactics.Result.Success_v"
       ],
       0,
-      "9b9097ed2d37e278705fa69d2286b418"
+      "d141b1d7c219b5f7d148768f8e8b5ebe"
     ],
     [
       "MkSeq.34841",
@@ -61,7 +61,7 @@
         "refinement_interpretation_Tm_refine_84e0a185004ae7041a2a188c5530a17d"
       ],
       0,
-      "0e2cec6876d823a7e4f2b6452e16c0b1"
+      "891051efc2c4039ddcf14da1120be9f5"
     ],
     [
       "MkSeq.create1",
@@ -114,7 +114,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "939ee4cfdece06dceec9408d69ea970d"
+      "6ffcd962b7accaeea377c4d845ac7440"
     ],
     [
       "MkSeq.create2",
@@ -174,7 +174,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "74c459377e97ab820288c4d1ccfef01a"
+      "cee2835e2ed743ad825246a1e16dcd78"
     ],
     [
       "MkSeq.create3",
@@ -234,7 +234,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7688af50eb3e943fd6246094c8933a22"
+      "ef7656433a8120f6ce9e3fc4e12863fb"
     ],
     [
       "MkSeq.create4",
@@ -259,7 +259,8 @@
         "constructor_distinct_Prims.Cons", "constructor_distinct_Prims.Nil",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
@@ -280,18 +281,20 @@
         "projection_inverse_Prims.Cons_hd",
         "refinement_interpretation_Tm_refine_228acefbe94b025aa1fbeb58cbbe2fcd",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_bf2fa1226f2c9a0f6671df3e80ddcb8e",
         "refinement_interpretation_Tm_refine_c4e3a92f9bd1d01a07e4fb66c5de2e7e",
-        "true_interp", "typing_FStar.Seq.Base.length",
+        "token_correspondence_Prims.pow2.fuel_instrumented", "true_interp",
+        "typing_FStar.Seq.Base.length",
         "typing_FStar.Seq.Properties.seq_to_list",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "53e2845661bf65d39440f585d9166e3b"
+      "06827bb085646d9ae802963613d01065"
     ],
     [
       "MkSeq.create5",
@@ -351,7 +354,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "08f20f13d7446efe41a3ce66f79089ca"
+      "d6bdf833ca658b45c8f3879e1b2ab2bf"
     ],
     [
       "MkSeq.create6",
@@ -411,7 +414,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8a8cfd5b45bc83c818d86c37ae28841b"
+      "efda2dec278fb3c85c5e77de7420be29"
     ],
     [
       "MkSeq.create7",
@@ -473,7 +476,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "b9f80a181955c13cc3ab540562a0a480"
+      "61528e3f1dde7231698846ddd7a718bd"
     ],
     [
       "MkSeq.create8",
@@ -533,7 +536,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d84d5dec0a49ca20e806dee676e5536a"
+      "d0788ddff9e92975f22b2fbddc9c91ed"
     ],
     [
       "MkSeq.create9",
@@ -593,7 +596,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a278919e574e98cd23832042d15fefa7"
+      "6925c82a8854a26c62a354cb3150dc15"
     ],
     [
       "MkSeq.create10",
@@ -653,7 +656,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c159496a3bbbd116135d1925a96d95d4"
+      "ee66ab658be24dbc34e0ccaa66c5db7d"
     ],
     [
       "MkSeq.create11",
@@ -713,7 +716,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e0db6e62b429b6c25524b0e5dbcbb359"
+      "56f8da17e1aa9780e7f0fdb3dd30b69c"
     ],
     [
       "MkSeq.create12",
@@ -773,7 +776,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "04bd826533d8f0a4234cae760de3dc6e"
+      "18afaf537960767540b14641468bad9a"
     ],
     [
       "MkSeq.create13",
@@ -833,7 +836,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d352b63f53db5933a8a5641fc6d99947"
+      "6e93387a6e01995d1d325088a74618cd"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Arrays.fsti.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Arrays.fsti.hints
index fb690f1b..55fd0181 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Arrays.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Arrays.fsti.hints
@@ -100,7 +100,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7991c8c921ef982021127531ee26c442"
+      "35a873065da5eaa4fe9c3f4154167cc0"
     ],
     [
       "Rust_primitives.Arrays.map",
@@ -324,7 +324,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "93f5af4021ca48acbe963c8a194f6508"
+      "db0be0007c8a872da98c8ec28ddc0c6f"
     ],
     [
       "Rust_primitives.Arrays.eq_intro",
@@ -353,6 +353,7 @@
         "equation_Rust_primitives.Arrays.slice",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
+        "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
         "equation_Rust_primitives.Integers.max_usize",
@@ -365,12 +366,12 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_FStar.Seq.Base.lemma_eq_elim",
+        "lemma_FStar.Seq.Base.lemma_eq_intro",
         "lemma_FStar.Seq.Base.lemma_index_app1",
         "lemma_FStar.Seq.Base.lemma_index_app2",
         "lemma_FStar.Seq.Base.lemma_index_slice",
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Arrays.eq_intro",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -381,9 +382,8 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_331c14d442c5ee89a4fce6ea305c920f",
         "refinement_interpretation_Tm_refine_35a0739c434508f48d0bb1d5cd5df9e8",
-        "refinement_interpretation_Tm_refine_4639d389381bee5cf8cf77b7a6585074",
+        "refinement_interpretation_Tm_refine_4fd9944cf5fafd0c6df525d4b59132a8",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
@@ -401,10 +401,11 @@
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "eae1d4e8799f5d1e5eef7ba507a8a888"
+      "dd4cda3013a0deb9a9d707653b1789f5"
     ],
     [
       "Rust_primitives.Arrays.lemma_slice_append",
@@ -443,7 +444,6 @@
         "lemma_FStar.Seq.Base.lemma_index_slice",
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual",
@@ -474,11 +474,10 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "45ff5c5045c89c940e1a22098aed99ef"
+      "4c3aa69eae92998e07c2945517b96432"
     ],
     [
       "Rust_primitives.Arrays.lemma_slice_append_3",
@@ -486,22 +485,13 @@
       2,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented",
-        "@fuel_irrelevance_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.concat",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.concat",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.slice",
         "equation_Rust_primitives.Arrays.t_Array",
@@ -529,7 +519,6 @@
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
-        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual",
@@ -545,7 +534,6 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_ac201cf927190d39c033967b63cb957b",
-        "refinement_interpretation_Tm_refine_b6bcbb06a5db915e32e14484401ff450",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_c1e381e9e18ec49d6ea0edbd1f299771",
         "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
@@ -554,19 +542,17 @@
         "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
         "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Arrays.slice",
-        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sub",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "cf2366878e07ac94f43f78dcd8559d21"
+      "39afcfffcbdd6c9fafa602768c7671e8"
     ],
     [
       "Rust_primitives.Arrays.lemma_slice_append_4",
@@ -784,11 +770,14 @@
       1,
       [
         "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.t_Slice",
+        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned",
+        "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
@@ -802,18 +791,18 @@
         "primitive_Prims.op_LessThanOrEqual",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_28704633277f63d4c4b2ee0fce0ac1c3",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_66a0b8451c573a4f8b1fb8460f04f4cc",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_FStar.Seq.Base.length",
-        "typing_Rust_primitives.Arrays.length",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
       "2ac7be425c86ead44ec2c40d46a9dca4"
@@ -1283,34 +1272,32 @@
       1,
       [
         "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.v",
+        "equality_tok_Lib.IntTypes.PUB@tok",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Integers.add",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Subtraction",
-        "projection_inverse_BoxBool_proj_0",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_5143b1355b3f3c0cbd8c1ce321d68d9a",
         "refinement_interpretation_Tm_refine_563e807f726321bf8d677dec19d38d64",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_aa0f7ecfbf7c7b4f8cb33111940db75e",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_ebc4c047a684a02aadbe2d63f7c18aaf",
-        "typing_Rust_primitives.Arrays.length",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
       "979d9569b3e2a29fc68b621ae7aa4b87"
@@ -1650,32 +1637,31 @@
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.v",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
+        "equation_Rust_primitives.Integers.v", "int_typing",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_5143b1355b3f3c0cbd8c1ce321d68d9a",
         "refinement_interpretation_Tm_refine_563e807f726321bf8d677dec19d38d64",
         "refinement_interpretation_Tm_refine_77af39e147aa9b109113982a3b1f1659",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_aa0f7ecfbf7c7b4f8cb33111940db75e",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
       "9694250cf2dbf37a01e438b9d369afe6"
@@ -2071,14 +2057,11 @@
       1,
       [
         "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
@@ -2092,18 +2075,18 @@
         "primitive_Prims.op_LessThanOrEqual",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_28704633277f63d4c4b2ee0fce0ac1c3",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_4bb8998fe69acc99b21e814adae749a3",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_66a0b8451c573a4f8b1fb8460f04f4cc",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
+        "typing_FStar.Seq.Base.length",
+        "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
       "f3869cd98c7c11325180bc06670c530e"
@@ -3323,43 +3306,51 @@
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
+        "equation_Rust_primitives.Integers.lte",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "int_typing",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212",
         "refinement_interpretation_Tm_refine_114992c05c3d475e4ca2bf28b604c546",
+        "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
         "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
         "refinement_interpretation_Tm_refine_266b4fda6d614b2f68ed350409222d56",
         "refinement_interpretation_Tm_refine_3b8533b4319a67b2b132ee51329cb0c9",
         "refinement_interpretation_Tm_refine_5211f0d2ae449f41e761866156e8e4d8",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_b017613b19fa7f1d848a8e10b9eedb3f",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_FStar.Seq.Base.length",
+        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
+        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Arrays.slice",
         "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
       "78bea81ce7576e88b2ee56de7617b023"
@@ -3580,7 +3571,6 @@
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_FStar.Seq.Base.length",
         "typing_Rust_primitives.Arrays.length",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -3607,28 +3597,18 @@
       2,
       1,
       [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented",
-        "@fuel_irrelevance_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565", "bool_inversion",
-        "bool_typing", "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.concat",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.concat",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.slice",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
@@ -3641,15 +3621,13 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "function_token_typing_Prims.__cache_version_number__",
-        "int_inversion", "int_typing", "lemma_FStar.Seq.Base.lemma_eq_intro",
+        "equation_Rust_primitives.Integers.v", "int_inversion", "int_typing",
+        "lemma_FStar.Seq.Base.lemma_eq_intro",
         "lemma_FStar.Seq.Base.lemma_index_app1",
         "lemma_FStar.Seq.Base.lemma_index_app2",
         "lemma_FStar.Seq.Base.lemma_index_slice",
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual",
@@ -3677,16 +3655,12 @@
         "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Arrays.slice",
         "typing_Rust_primitives.Integers.add",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
       "3e8c0889b23cedf4fd2b079c280aed18"
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.BitVectors.fsti.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.BitVectors.fsti.hints
index 5f11908e..c668da4c 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.BitVectors.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.BitVectors.fsti.hints
@@ -1,5 +1,5 @@
 [
-  "�{^-�B���fC�����",
+  "����VzkF\u0014Ϋோ�d",
   [
     [
       "Rust_primitives.BitVectors.lemma_get_bit_bounded",
@@ -8,7 +8,7 @@
       1,
       [ "@query" ],
       0,
-      "b249de638d32e70cd1f54a3fe1567610"
+      "0a170c795c8db955e43fad68845929bf"
     ],
     [
       "Rust_primitives.BitVectors.bit_vec_of_int_t_array",
@@ -70,38 +70,94 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "d1fefd9ef9dffebc1f34b0fd58c5a23d"
+      "e068858f8e5f35368a7e0b978ec6d6d0"
     ],
     [
-      "Rust_primitives.BitVectors.bit_vec_of_nat_array",
+      "Rust_primitives.BitVectors.bit_vec_of_refined_int_t_array",
       1,
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equation_FStar.UInt.min_int", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.t_Array",
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.UInt.max_int",
+        "equation_FStar.UInt.min_int", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.BitVectors.num_bits",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize", "int_inversion",
+        "equation_Rust_primitives.Integers.usize",
+        "equation_Rust_primitives.Integers.v",
+        "fuel_guarded_inversion_Lib.IntTypes.inttype", "int_inversion",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "projection_inverse_BoxBool_proj_0",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_2b93cc0d2fb3530ccc9d725f3cc7d456",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.v",
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "57254973761a356a91c004c38ae48459"
+      "f4a90a90f5b36638e59ff0c31b90fe56"
+    ],
+    [
+      "Rust_primitives.BitVectors.bit_vec_of_nat_array",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equation_FStar.UInt.min_int", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.unsigned", "int_inversion",
+        "primitive_Prims.op_Division", "primitive_Prims.op_Modulus",
+        "primitive_Prims.op_Multiply", "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_f745638d27656256eab52e67ec987e5a",
+        "refinement_kinding_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "typing_FStar.Seq.Base.length",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "fd05e5b5681296013f874bd9c5134d91"
     ],
     [
       "Rust_primitives.BitVectors.bit_vec_to_int_t_array",
@@ -129,7 +185,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "ae4aeff730479ec2d0937bf139832b88"
+      "23e266051e32ac6e58d083cd40195888"
     ],
     [
       "Rust_primitives.BitVectors.bit_vec_to_nat_array",
@@ -137,28 +193,45 @@
       2,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.inttype",
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented",
+        "@fuel_irrelevance_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.int_t",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "projection_inverse_BoxBool_proj_0",
+        "equation_Rust_primitives.Integers.v",
+        "equation_with_fuel_Prims.pow2.fuel_instrumented", "int_typing",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "5851b98a9513c7a6d7d2265ce4fdcc70"
+      "55ffbff7c64cd7e5e16c7aa017650543"
     ],
     [
       "Rust_primitives.BitVectors.get_bit_pow2_minus_one",
@@ -185,7 +258,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3670af75d9e6d996e142b3bca344cd0e"
+      "0fcc8414c582275ca69243b88e80f752"
     ],
     [
       "Rust_primitives.BitVectors.get_bit_pow2_minus_one_i32",
@@ -219,7 +292,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2335d8ac4029569924ffcacec14939cb"
+      "a5eee167dc62e3aa09663da3424d4380"
     ],
     [
       "Rust_primitives.BitVectors.get_bit_pow2_minus_one_u32",
@@ -261,7 +334,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "e7ff87cd174369ae1d876f5d5837fc08"
+      "66c8273a4524b4b15dc4f7093d2b587e"
     ],
     [
       "Rust_primitives.BitVectors.get_bit_pow2_minus_one_u16",
@@ -304,7 +377,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "19f7d2e69bb46f0a18cf7de938c9e6f4"
+      "4d53be96a2fa6098c2e3cb75e8bd9295"
     ],
     [
       "Rust_primitives.BitVectors.get_bit_pow2_minus_one_u8",
@@ -351,7 +424,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "b93e09d2568cfc4b0a3df4cff16632a4"
+      "f4ee8d99e483dba02a35b089be28e351"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.Monomorphized_update_at.fsti.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.Monomorphized_update_at.fsti.hints
index 206cf352..f491a139 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.Monomorphized_update_at.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.Monomorphized_update_at.fsti.hints
@@ -21,7 +21,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "340a785770c426df86781bda088bc240"
+      "65e5b9dd4d63df37199f7a94466c862c"
     ],
     [
       "Rust_primitives.Hax.Monomorphized_update_at.update_at_range",
@@ -62,7 +62,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d2be905a5c2cab5bc2eabe50fe08ce10"
+      "33a6379d50d01fb079f950160239f51a"
     ],
     [
       "Rust_primitives.Hax.Monomorphized_update_at.update_at_range_to",
@@ -97,7 +97,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "9a72d05a32625a6ab647f9b953c17fc5"
+      "0098bb4142f71147788b38b6005c43dd"
     ],
     [
       "Rust_primitives.Hax.Monomorphized_update_at.update_at_range_from",
@@ -135,7 +135,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "63c5208fdf5f2ad2a1497850f079c16f"
+      "847f9029b6d93e8890c35b1c2c2fc2f1"
     ],
     [
       "Rust_primitives.Hax.Monomorphized_update_at.update_at_range_full",
@@ -144,7 +144,7 @@
       1,
       [ "@query" ],
       0,
-      "46f1a162332b1a0c6f192f1369d0a10f"
+      "0dcfc737b53d48fdc402ade5e9b13476"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.fst.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.fst.hints
index 8898571b..1824881c 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Hax.fst.hints
@@ -8,7 +8,7 @@
       1,
       [ "@query", "equation_Rust_primitives.Hax.t_Never" ],
       0,
-      "84f23dfc7c425034a75bd961784d27ad"
+      "f111fa72f0c6d100e6ca19c2d280c123"
     ],
     [
       "Rust_primitives.Hax.repeat",
@@ -18,24 +18,19 @@
       [
         "@MaxIFuel_assumption", "@query", "bool_inversion",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
         "lemma_FStar.Seq.Base.lemma_create_len", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_LessThanOrEqual",
         "projection_inverse_BoxBool_proj_0",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "1e0fc3069e6d1dc438011e63cf6fd090"
+      "6d853b49d59ded8cacf0384e866d4119"
     ],
     [
       "Rust_primitives.Hax.impl__index",
@@ -53,7 +48,7 @@
         "refinement_interpretation_Tm_refine_a7ed78aa7e3623de595c68512d89c3cc"
       ],
       0,
-      "450c2a04188e174ec8649ce1463f3538"
+      "1f90420ac5af259bf5e982ccf3fdda6d"
     ],
     [
       "Rust_primitives.Hax.update_at_tc_array",
@@ -88,7 +83,7 @@
         "typing_Rust_primitives.Integers.int_t"
       ],
       0,
-      "ca6fac08553c17ad1f045b3beee154fd"
+      "536b4a8a3df6ef682ff858f5976d928a"
     ],
     [
       "Rust_primitives.Hax.op_String_Assignment",
@@ -104,7 +99,7 @@
         "token_correspondence_Rust_primitives.Hax.super_index"
       ],
       0,
-      "9da3944e17ea2b4a6d72460809bc8088"
+      "3eb361a9c4942c4f2a6c9769f689d701"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Integers.fsti.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Integers.fsti.hints
index b7d714c2..3fa7e95a 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Integers.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Integers.fsti.hints
@@ -13,7 +13,7 @@
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f"
       ],
       0,
-      "eb4dc92efef16239a65efb2e655e9e73"
+      "34158af64f93623b1412f2f7f3ecd5bf"
     ],
     [
       "Rust_primitives.Integers.usize_inttype",
@@ -22,7 +22,7 @@
       1,
       [ "@query", "assumption_Lib.IntTypes.inttype__uu___haseq" ],
       0,
-      "3e854fb47a99efb63758ce0901496378"
+      "17acdf290027811439eecd6a460552f6"
     ],
     [
       "Rust_primitives.Integers.isize_inttype",
@@ -31,7 +31,7 @@
       1,
       [ "@query", "assumption_Lib.IntTypes.inttype__uu___haseq" ],
       0,
-      "406f88beb7b795a8865c6f1084f8cee5"
+      "699ce569f2024fa1489859c56e9b3612"
     ],
     [
       "Rust_primitives.Integers.minint",
@@ -46,7 +46,7 @@
         "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "5f509013d7fab7d884ace109fec04c1b"
+      "1a54d7337c6dc322f0b6d9eb4184a4cc"
     ],
     [
       "Rust_primitives.Integers.maxint",
@@ -61,7 +61,7 @@
         "primitive_Prims.op_Subtraction", "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "1801bfccf127ebaa5b1f4f26355adcc8"
+      "c01aea14d9800f17b2db488c3b0328aa"
     ],
     [
       "Rust_primitives.Integers.modulus",
@@ -75,7 +75,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "ad3131a3e2041231f655dd973fb9572b"
+      "3a79fedce08d774d245ec3500f2759a5"
     ],
     [
       "Rust_primitives.Integers.v",
@@ -110,7 +110,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "d4a1a8b14c44a817bdbb27ff5e7f9649"
+      "0dd3b019a08404308a3c9652e67b351b"
     ],
     [
       "Rust_primitives.Integers.mk_int_equiv_lemma",
@@ -170,7 +170,7 @@
         "typing_Rust_primitives.Integers.range"
       ],
       0,
-      "1dc4423777d547c49f30f09e2ded5e27"
+      "c388a5e3686c2fa0bcf19511e56ab7dd"
     ],
     [
       "Rust_primitives.Integers.op_At_Percent",
@@ -179,7 +179,7 @@
       1,
       [ "@query" ],
       0,
-      "34e58f93cbc6741b2130898a6a06fdac"
+      "59b1849a237551a66f76a576f6ac874d"
     ],
     [
       "Rust_primitives.Integers.op_At_Percent_Dot",
@@ -221,7 +221,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c3b0db71f098d57d124c982d468a613a"
+      "d64a2e2a31d35c19b6218df9137e756d"
     ],
     [
       "Rust_primitives.Integers.cast",
@@ -233,7 +233,7 @@
         "refinement_interpretation_Tm_refine_f7bdcac4e1cb3cdad60b628859430273"
       ],
       0,
-      "a37a0c06ceacaa8a8cc85206ef4edb3e"
+      "6842f89caf2ba826df8cccf1d63d7daa"
     ],
     [
       "Rust_primitives.Integers.add_mod_equiv_lemma",
@@ -245,7 +245,7 @@
         "equation_Rust_primitives.Integers.unsigned"
       ],
       0,
-      "2e34991006f4a04d21f9bbda8ecbe5aa"
+      "33e0fa4144faff27494b2a94f6eb4205"
     ],
     [
       "Rust_primitives.Integers.add",
@@ -257,7 +257,7 @@
         "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d"
       ],
       0,
-      "f870d60dd72b1858587ee63c56fac005"
+      "3a5733efb5c0c288aecaf8eed115065c"
     ],
     [
       "Rust_primitives.Integers.add_equiv_lemma",
@@ -287,7 +287,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "759243d45c13a79b3420e0579ff61403"
+      "4e2cc450cb46ad3e10e6ec38caedec43"
     ],
     [
       "Rust_primitives.Integers.incr",
@@ -309,7 +309,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "e276fe10718559d8d2744bd4ae97314c"
+      "5ff7e1b4cae55b0ee5661a3b6a7a8826"
     ],
     [
       "Rust_primitives.Integers.incr_equiv_lemma",
@@ -330,7 +330,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "05d70c55c1ebb4c78171067a69bf39e0"
+      "dc88c2da799e91f7dbbc96de43aa9739"
     ],
     [
       "Rust_primitives.Integers.mul_mod_equiv_lemma",
@@ -342,7 +342,7 @@
         "equation_Rust_primitives.Integers.unsigned"
       ],
       0,
-      "4031eb8d7734cbde6c72e184b7875564"
+      "f0dba855f038af9b474d806485da145f"
     ],
     [
       "Rust_primitives.Integers.mul",
@@ -354,7 +354,7 @@
         "refinement_interpretation_Tm_refine_e477cd5567f25e8e57e00f0185fa1ab0"
       ],
       0,
-      "f9cb0caf58b1e90c3ea7325a190f9569"
+      "7eb3b71ec56f1a810b5245150e77822a"
     ],
     [
       "Rust_primitives.Integers.mul_equiv_lemma",
@@ -388,7 +388,7 @@
         "typing_Rust_primitives.Integers.unsigned"
       ],
       0,
-      "e224396a1db1193aeabfc96ebfbfa395"
+      "3ed0d09f0f43a9a07774df59ea797d7d"
     ],
     [
       "Rust_primitives.Integers.sub_mod_equiv_lemma",
@@ -400,7 +400,7 @@
         "equation_Rust_primitives.Integers.unsigned"
       ],
       0,
-      "803c5336e7cffeba23d0e8d6b50f8b4d"
+      "d0a6ef31d90a59a3052cf14b9b5b6c14"
     ],
     [
       "Rust_primitives.Integers.sub",
@@ -412,7 +412,7 @@
         "refinement_interpretation_Tm_refine_b6bcbb06a5db915e32e14484401ff450"
       ],
       0,
-      "9437ecab8c981a7fb9e8ad332f2c3e71"
+      "8a2f94c9a03190d576ef40faea46a2e7"
     ],
     [
       "Rust_primitives.Integers.sub_equiv_lemma",
@@ -444,7 +444,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "5c9da23337b7e13d7ee0658ce3692764"
+      "4e4f10301b5722377bcc7635ddd115ab"
     ],
     [
       "Rust_primitives.Integers.decr",
@@ -467,7 +467,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "746caffbdf83c298dfdc6ecb06a9b544"
+      "72d7e334ff890729bc62d6a6744c558b"
     ],
     [
       "Rust_primitives.Integers.decr_equiv_lemma",
@@ -483,7 +483,7 @@
         "equation_Rust_primitives.Integers.v"
       ],
       0,
-      "47f248429b5a219403a6b88a36c6e9cf"
+      "851017a52f25ce953f0cf029cf966a0d"
     ],
     [
       "Rust_primitives.Integers.div",
@@ -493,14 +493,10 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.nonzero", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "bool_inversion", "equality_tok_Lib.IntTypes.PUB@tok",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Prims.nonzero",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
@@ -509,7 +505,8 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.v",
         "fuel_guarded_inversion_Lib.IntTypes.inttype", "int_inversion",
-        "lemma_FStar.UInt.pow2_values",
+        "int_typing", "lemma_FStar.UInt.pow2_values",
+        "lemma_Lib.IntTypes.pow2_3",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_AmpAmp", "primitive_Prims.op_Division",
         "primitive_Prims.op_LessThanOrEqual",
@@ -518,17 +515,14 @@
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_0766302b68bb44ab7aff8c4d8be0b46f",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_c525f4bc3aa418afe0bd65cc4d0f6cd8",
-        "refinement_interpretation_Tm_refine_e0b16d74ee3644bd585df5e7938934c6",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.v",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "b2fce4cb9477af9a1e46bdbb7d070cbc"
+      "163ef4014ec393a668e9dd4711496280"
     ],
     [
       "Rust_primitives.Integers.div_equiv_lemma",
@@ -557,7 +551,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bc383f856957efb8f52ea4026cae1329"
+      "010895cf12a494b6be67246ec2a11599"
     ],
     [
       "Rust_primitives.Integers.mod",
@@ -595,7 +589,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "82dd746cd13c978c90be62621de950f5"
+      "c45320d1785877b6829a6f6beacadd12"
     ],
     [
       "Rust_primitives.Integers.mod_equiv_lemma",
@@ -624,7 +618,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c6b1120f68848400d487d401b2fa079b"
+      "2e5baace1eb632321134ac1030e42e6a"
     ],
     [
       "Rust_primitives.Integers.eq",
@@ -639,7 +633,7 @@
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f"
       ],
       0,
-      "9363e8813bfab56ee9f4e300f2ba1270"
+      "f6c260c0ead3436a24a81088df952c22"
     ],
     [
       "Rust_primitives.Integers.ne",
@@ -654,7 +648,7 @@
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f"
       ],
       0,
-      "bdaa8300f6aba7d50877e743b2408995"
+      "59fad99ac2cd8c5ac6407456d9bbad97"
     ],
     [
       "Rust_primitives.Integers.ones",
@@ -681,7 +675,7 @@
         "typing_Prims.pow2"
       ],
       0,
-      "c4fbcffeed3e23d1c24b2414a2092727"
+      "9d2ca5d0829f9e08498fe5e516244864"
     ],
     [
       "Rust_primitives.Integers.zero",
@@ -732,7 +726,7 @@
         "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "7689c205677445745f46f17239cfbdd3"
+      "2c7cc63e9327bdf69f105ef10e9298b9"
     ],
     [
       "Rust_primitives.Integers.lognot_lemma",
@@ -747,7 +741,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "240116b03ef44b2c39ab6a1d226320d1"
+      "fc6974c4c1d2651b2177319c40a92161"
     ],
     [
       "Rust_primitives.Integers.logand_mask_lemma",
@@ -790,7 +784,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "b7f4acec751b8d1cde114f5709ee1a55"
+      "9108b4c786517610506f9b8ed149093c"
     ],
     [
       "Rust_primitives.Integers.shift_right",
@@ -834,7 +828,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "c2b5b50a503e4980482e534bee1ac1fc"
+      "fce633f1cf81a0eb092d2d49bf07dd68"
     ],
     [
       "Rust_primitives.Integers.shift_right_equiv_lemma",
@@ -871,7 +865,7 @@
         "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "67eea83a9c73d0a2fab86047b6f25e8b"
+      "5dbbcb59e920c66b7cc3ae0421ce7a16"
     ],
     [
       "Rust_primitives.Integers.shift_left",
@@ -883,7 +877,7 @@
         "refinement_interpretation_Tm_refine_aa4ec56b818d43ab6673ae30be60bfb3"
       ],
       0,
-      "86dc4b4181abf08da404037fad4eb035"
+      "6c36eda7d9aad076b115f02ec3da5b50"
     ],
     [
       "Rust_primitives.Integers.shift_left_equiv_lemma",
@@ -927,7 +921,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "c68b85eceed278cf24f13972a04be1e1"
+      "de10882698ca31c4214e237c80395779"
     ],
     [
       "Rust_primitives.Integers.rotate_right_equiv_lemma",
@@ -973,7 +967,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "3fe7dd8c84226bc5768212a1013bae48"
+      "f85993d7adb8854a12b2dab8e2db45f4"
     ],
     [
       "Rust_primitives.Integers.rotate_left_equiv_lemma",
@@ -1019,7 +1013,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok"
       ],
       0,
-      "614d27dfa23fdc8e84ac303f16aefed0"
+      "6f8d3319ce8e72613d6d39f49d969989"
     ],
     [
       "Rust_primitives.Integers.abs_int",
@@ -1056,7 +1050,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "16771ddd03afde092aefa2e1ca0afbbd"
+      "faab0fd8734e079be8fa796f27a4c931"
     ],
     [
       "Rust_primitives.Integers.abs_int_equiv_lemma",
@@ -1082,7 +1076,7 @@
         "refinement_interpretation_Tm_refine_d2c362f3dbf8a604c46b01c7b086a5fd"
       ],
       0,
-      "ceee8608233e331e1479bc52725bac43"
+      "af7e969715a82ff74546fd7ae0a1eb0b"
     ],
     [
       "Rust_primitives.Integers.neg",
@@ -1094,7 +1088,7 @@
         "refinement_interpretation_Tm_refine_cde30f0f96bc1d0bd0a76ffdd19aa51d"
       ],
       0,
-      "b812f6a034c014ecbdd7eac9653409f5"
+      "04b45f36e6f5532670760936c12b30f3"
     ],
     [
       "Rust_primitives.Integers.neg_equiv_lemma",
@@ -1119,10 +1113,9 @@
         "disc_equation_Lib.IntTypes.S128",
         "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.eqtype",
-        "equation_Prims.nat", "equation_Prims.pos",
+        "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.eqtype", "equation_Prims.nat", "equation_Prims.pos",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -1153,14 +1146,12 @@
         "token_correspondence_Prims.pow2.fuel_instrumented",
         "typing_FStar.Int16.t", "typing_FStar.Int32.t",
         "typing_FStar.Int64.t", "typing_FStar.Int8.t",
-        "typing_Lib.IntTypes.maxint", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.signed",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.signed",
         "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "bf5d664f9e7cb10bb1e61148a39aa361"
+      "fcc6a804fd3a5a94684f94ad33e2b1f3"
     ],
     [
       "Rust_primitives.Integers.get_bit_nat",
@@ -1172,7 +1163,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "d897020935cbc0f7ca6f87bda9a66279"
+      "30ce1eb0537b2e34e3b973bc84362f9c"
     ],
     [
       "Rust_primitives.Integers.get_bit",
@@ -1191,11 +1182,11 @@
         "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Prims.pos",
-        "equation_Rust_primitives.Integers.bits",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_FStar.Int.min_int",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Prims.pos", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.minint",
@@ -1206,8 +1197,7 @@
         "equation_Rust_primitives.Integers.v",
         "fuel_guarded_inversion_Lib.IntTypes.inttype", "int_inversion",
         "int_typing", "lemma_FStar.UInt.pow2_values",
-        "lemma_Lib.IntTypes.pow2_127", "lemma_Lib.IntTypes.pow2_3",
-        "lemma_Lib.IntTypes.pow2_4",
+        "lemma_Lib.IntTypes.pow2_127", "lemma_Lib.IntTypes.pow2_4",
         "lemma_Rust_primitives.Integers.pow2_values",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_GreaterThanOrEqual",
@@ -1228,7 +1218,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "2f7534ff29db02b56f12181df6f75cec"
+      "22640306d67d64bea98a5f48bb11af66"
     ],
     [
       "Rust_primitives.Integers.bit_or",
@@ -1240,7 +1230,7 @@
         "projection_inverse_BoxInt_proj_0"
       ],
       0,
-      "1332bd99e8258172e91362692008eecc"
+      "259588203145d43e4fc92753187315ab"
     ],
     [
       "Rust_primitives.Integers.get_bit_shl",
@@ -1277,7 +1267,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "6079f7566c5f54953b48b90733643781"
+      "8235e5095a311885eff363c6ba19c51e"
     ],
     [
       "Rust_primitives.Integers.get_bit_shr",
@@ -1331,7 +1321,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "962936c78fa8fa4f0a9f132b80376324"
+      "22be106ed0508d1fb2180e8eb8137fa3"
     ],
     [
       "Rust_primitives.Integers.get_bit_cast",
@@ -1343,7 +1333,7 @@
         "refinement_interpretation_Tm_refine_88efdd300867ffa3b17c1f9bb2f51650"
       ],
       0,
-      "6c1394c2d282f5504c7b22005a163e22"
+      "7d313a9cf6c15da96b13acef38826913"
     ],
     [
       "Rust_primitives.Integers.get_bit_cast_extend",
@@ -1355,7 +1345,7 @@
         "refinement_interpretation_Tm_refine_5a55840b6b1b5362a8022c2461a4e62f"
       ],
       0,
-      "57c669cbd166ad1ff6a983d47e156aac"
+      "4188dcb6249b8378b998f5cd0703aa0d"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Iterators.fsti.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Iterators.fsti.hints
index 34acf4b1..8e60b60b 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.Iterators.fsti.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.Iterators.fsti.hints
@@ -1,5 +1,5 @@
 [
-  "/����Vc0�%+�\u0004\u00032\u001b",
+  "��\"\r�:�\t��#Ѡ��\u0001",
   [
     [
       "Rust_primitives.Iterators.foldi_range",
@@ -10,7 +10,8 @@
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented",
         "@fuel_irrelevance_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "constructor_distinct_Lib.IntTypes.PUB",
+        "bool_inversion", "bool_typing",
+        "constructor_distinct_Lib.IntTypes.PUB",
         "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.int_t", "equation_Lib.IntTypes.maxint",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
@@ -53,7 +54,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "b498584aacd8f34253daff872da18ef7"
+      "27e6e1f720eb2d10efa3b8819e0b7a89"
     ],
     [
       "Rust_primitives.Iterators.foldi_range_step_by",
@@ -93,7 +94,43 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "cad25c405cf69f0258fa8d9a2d03302e"
+      "a9e205e2b38eacd597a3158e7531739c"
+    ],
+    [
+      "Rust_primitives.Iterators.nth_chunk_of",
+      1,
+      2,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query", "bool_inversion",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.unsigned", "int_inversion",
+        "primitive_Prims.op_Addition", "primitive_Prims.op_Division",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_167ef714932ec832fb671890fc3eee6c",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_58c74419d2bc26ef0ef4b9aa914fe0ed",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_FStar.Seq.Base.length",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "b08e438e4fe02ecdd38e8d4d7e6a1a1d"
+    ],
+    [
+      "Rust_primitives.Iterators.nth_chunk_of",
+      2,
+      2,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_167ef714932ec832fb671890fc3eee6c"
+      ],
+      0,
+      "c21650c13983a82ca8be6d0e8d591935"
     ],
     [
       "Rust_primitives.Iterators.foldi_chunks_exact",
@@ -117,7 +154,7 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equation_FStar.Pervasives.Native.fst", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
         "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
         "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
@@ -133,19 +170,18 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_with_fuel_Prims.pow2.fuel_instrumented",
         "function_token_typing_Rust_primitives.Integers.usize",
-        "int_inversion", "int_typing",
-        "lemma_Rust_primitives.Integers.pow2_values",
+        "int_inversion", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_Division", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_312fead453b8d1455a96d41846416689",
+        "refinement_interpretation_Tm_refine_4232f68751df30a07310a58e484e5244",
+        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_595fe4c5b993375d778d294c5f40f7ba",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
@@ -161,7 +197,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "dfede4629ee400c6594058cf407c0c8d"
+      "9d0ce7cb79216110f3d0a8a8b0f7627d"
     ],
     [
       "Rust_primitives.Iterators.foldi_slice",
@@ -202,7 +238,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "220c6edf8927c27d6d73099104c5de8a"
+      "575f10953a1be3f64d550cebf6558efe"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Rust_primitives.fst.hints b/proofs/fstar/extraction-edited/.hints/Rust_primitives.fst.hints
index debe482c..e577ce7f 100644
--- a/proofs/fstar/extraction-edited/.hints/Rust_primitives.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Rust_primitives.fst.hints
@@ -14,7 +14,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "c0f79656219baf407a3f097d50c53ef8"
+      "8996baa06d88104345d20bca82bf5ff5"
     ],
     [
       "Rust_primitives.op_let_Bar",
@@ -29,7 +29,7 @@
         "projection_inverse_BoxBool_proj_0"
       ],
       0,
-      "efd4130c52d455bccbf035bc6ca2deba"
+      "f55c62c05daddc7856598b5d9c8a0348"
     ],
     [
       "Rust_primitives.array_to_slice_unsize",
@@ -37,25 +37,20 @@
       2,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equality_tok_Lib.IntTypes.PUB@tok", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
+        "@MaxIFuel_assumption", "@query",
         "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.unsigned",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "projection_inverse_BoxBool_proj_0",
+        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_tok_Lib.IntTypes.PUB@tok"
+        "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "9023ca5f324a52b5ba8d36753d50d1dc"
+      "3c999fac174a72f151f6232802a38818"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-edited/.hints/Spec.Kyber.fst.hints b/proofs/fstar/extraction-edited/.hints/Spec.Kyber.fst.hints
index 7ba4f902..17ab2903 100644
--- a/proofs/fstar/extraction-edited/.hints/Spec.Kyber.fst.hints
+++ b/proofs/fstar/extraction-edited/.hints/Spec.Kyber.fst.hints
@@ -1,5 +1,5 @@
 [
-  "��E��\u0015j�:r\\\u0018��*R",
+  "v�~���\u0005_�\u0017�@�4\u001eQ",
   [
     [
       "Spec.Kyber.map'",
@@ -37,7 +37,7 @@
         "typing_Rust_primitives.Integers.v"
       ],
       0,
-      "563918d75cf03112af484c36e225fb06"
+      "df81d656f624f4cf4fc78d0b6363ae6e"
     ],
     [
       "Spec.Kyber.flatten",
@@ -47,8 +47,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -91,16 +90,14 @@
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Arrays.t_Array",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "4dd106d8e4f818338169d0ae667c486c"
+      "9a57777f0eed8a57f39c6d47501b270f"
     ],
     [
       "Spec.Kyber.v_BITS_PER_COEFFICIENT",
@@ -138,7 +135,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fe3bcc72fe3e36c87a7c5e8a7ae0c522"
+      "92f546847199e0420d56355e4546a562"
     ],
     [
       "Spec.Kyber.v_COEFFICIENTS_IN_RING_ELEMENT",
@@ -176,7 +173,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "de6452275fc05fb7bb0d5cffa269a3f0"
+      "eb84766b8fbf903bb3beed181d723a22"
     ],
     [
       "Spec.Kyber.v_BITS_PER_RING_ELEMENT",
@@ -214,7 +211,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "081d2b9d72a45dde966da294696a83ab"
+      "468cac3d637cd7943c5da5d8a3ab5e1e"
     ],
     [
       "Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
@@ -252,7 +249,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "028fd96319973b1c3ce350d6ed907152"
+      "d64be3fe9a9ad362c7a0512644dcfeb4"
     ],
     [
       "Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
@@ -290,7 +287,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8ad85039df704f5f40980be8b45cd839"
+      "e526595604b7597ee0b256e1b1a2679a"
     ],
     [
       "Spec.Kyber.v_H_DIGEST_SIZE",
@@ -328,7 +325,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c0c32a932047ffe210ffb8feb5de43d2"
+      "ede69865a543f80bae8f5ada29a4d140"
     ],
     [
       "Spec.Kyber.v_REJECTION_SAMPLING_SEED_SIZE",
@@ -366,7 +363,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "15ce08454ba69ee9d498edd891994335"
+      "ac4ef9f7849a2dc914c9fd57b5441e82"
     ],
     [
       "Spec.Kyber.params_",
@@ -390,7 +387,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "f8d64cf044ee411d04c9fc776a253f53"
+      "73743d1096e464252420d26fe324b4b7"
     ],
     [
       "Spec.Kyber.valid_params",
@@ -438,7 +435,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7a1ece87cc4583534eabb78104162727"
+      "7a5790801c77586900063483b6fa9700"
     ],
     [
       "Spec.Kyber.v_ETA1_RANDOMNESS_SIZE",
@@ -476,7 +473,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6ba60cbdcc33293cd910675c95672f03"
+      "1a43f3daf8d0a00b7112041f79565e46"
     ],
     [
       "Spec.Kyber.v_ETA1_RANDOMNESS_SIZE",
@@ -507,7 +504,8 @@
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Spec.Kyber.params", "equation_Spec.Kyber.valid_params",
+        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
+        "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
         "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -529,7 +527,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "5524413ae6f86083369f0dca9ac8d915"
+      "7fa850412548ead264faba44fef69de6"
     ],
     [
       "Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
@@ -567,7 +565,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c29e20cea80cb641f77a27cce5b58026"
+      "2957fabe2705d28d34425b7a9badb20b"
     ],
     [
       "Spec.Kyber.v_ETA2_RANDOMNESS_SIZE",
@@ -619,7 +617,7 @@
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "9b7c8984eec520ad4ea2fc6c76290fb8"
+      "495f5aae5165d86afb8f312b08e367b7"
     ],
     [
       "Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
@@ -669,7 +667,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "17ee989b8a5ebb6958c1f5bcab028c19"
+      "392b93fb7c88d51b449648e75a80c652"
     ],
     [
       "Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
@@ -725,7 +723,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "db380097992ebd7b9282718b1c680b38"
+      "d7359ac271ea1e78faaf05fc80b0be48"
     ],
     [
       "Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
@@ -775,7 +773,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "356319cb0f689cd7361fdb644c6a0cae"
+      "e47d3618ad966658302d005ad53e9993"
     ],
     [
       "Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
@@ -834,7 +832,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "80abad66e77cee6214b4521575fbe341"
+      "9cd048640821c785acdedba9bdcffc35"
     ],
     [
       "Spec.Kyber.v_SECRET_KEY_SIZE",
@@ -884,7 +882,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fb77106543d154825bbd0d0c7ba0549d"
+      "fffb9ac59cc741652e2fa3781e5b7d2b"
     ],
     [
       "Spec.Kyber.v_SECRET_KEY_SIZE",
@@ -924,7 +922,6 @@
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
         "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
         "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
@@ -953,7 +950,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "4ff0cfde282cb797387c13e3b296cc51"
+      "2d035a7ea37350bd73f30c59ffb7b9c3"
     ],
     [
       "Spec.Kyber.v_C1_BLOCK_SIZE",
@@ -999,7 +996,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "c3d9108313f441cd8c2cac5b6919a031"
+      "265b889440c0bde3aebad9f6463738bc"
     ],
     [
       "Spec.Kyber.v_C1_BLOCK_SIZE",
@@ -1053,7 +1050,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "9b7e1da6ec33f2ff7aaab2f2e2e6b840"
+      "635792c60961aa84a700e83e33be3f99"
     ],
     [
       "Spec.Kyber.v_C1_SIZE",
@@ -1091,7 +1088,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "47dcdcdb43a42f862b79934cc919cdca"
+      "6e20e5f8575e42792a998baa2772df83"
     ],
     [
       "Spec.Kyber.v_C1_SIZE",
@@ -1137,7 +1134,6 @@
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
@@ -1154,7 +1150,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "56cc0eb76165251798a24691a32c4cc6"
+      "276c8b5aed2b961430b7b377a30137d2"
     ],
     [
       "Spec.Kyber.v_C2_SIZE",
@@ -1200,7 +1196,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "28e09053668f66af82eca7662c427b28"
+      "c2dd7230c097659ef36a6af0e30b28c3"
     ],
     [
       "Spec.Kyber.v_C2_SIZE",
@@ -1253,7 +1249,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "eccec17e5d90ae25df0f544629a4b3d7"
+      "485ec6811b6038bc0e06f00140a180fb"
     ],
     [
       "Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
@@ -1293,8 +1289,8 @@
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
         "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_inversion",
-        "int_typing", "lemma_Lib.IntTypes.pow2_2",
+        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
+        "lemma_Lib.IntTypes.pow2_2", "lemma_Lib.IntTypes.pow2_3",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -1314,8 +1310,7 @@
         "refinement_interpretation_Tm_refine_b77b25e8c135a09d249dca3ef071d541",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Lib.IntTypes.maxint", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Integers.bits",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -1324,7 +1319,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "5554ad70e465cc5f557e41233e7f6e17"
+      "89cd5e8164da5a0cfaae1ce0ea7a1584"
     ],
     [
       "Spec.Kyber.v_IMPLICIT_REJECTION_HASH_INPUT_SIZE",
@@ -1346,12 +1341,9 @@
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
@@ -1384,12 +1376,10 @@
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_cd82dadd21d06a8f3440eee5b79fa510",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Lib.IntTypes.maxint", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -1400,11 +1390,10 @@
         "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "1769b30aa1ec6c345d18de931283ba30"
+      "9228ccdda2ba7bf2dc65895fdd7b8fee"
     ],
     [
       "Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
@@ -1450,7 +1439,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5b200508f781999638944b4bb5af4833"
+      "a09365a800869c8f28f11efa7b6e4cc2"
     ],
     [
       "Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
@@ -1509,7 +1498,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "d9f5a1fd9a6a8c66bba117d1f4d813ec"
+      "5e923667b7bf3e0c51286fb8c2932665"
     ],
     [
       "Spec.Kyber.t_Result",
@@ -1518,7 +1507,7 @@
       1,
       [ "@query" ],
       0,
-      "dcd71131f35945f84a09dd1a81b06eb2"
+      "d06c0265229d0d8cc06e7bc038f621ad"
     ],
     [
       "Spec.Kyber.__proj__Ok__item___0",
@@ -1530,7 +1519,7 @@
         "refinement_interpretation_Tm_refine_1b102a22f9e78dd36ce7df9b9f30d4ae"
       ],
       0,
-      "c85c4d950829e368eb14563966ceffd8"
+      "99f6d4cfee25fca14f86b90087809b82"
     ],
     [
       "Spec.Kyber.__proj__Err__item___0",
@@ -1542,7 +1531,7 @@
         "refinement_interpretation_Tm_refine_dec1a26e2d89f644ded10c99d120cfd7"
       ],
       0,
-      "5223c87a2c91008390fd3d49e3a04675"
+      "02422d3ad65ba31be974b3e56567ad0e"
     ],
     [
       "Spec.Kyber.v_G",
@@ -1580,7 +1569,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "16cd973ba99eaaf684f7d386bb72a7dd"
+      "da59a6215d85e4ee56209a7811ea7e10"
     ],
     [
       "Spec.Kyber.v_H",
@@ -1618,7 +1607,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "6041f3c875165e995491c1ab39031fae"
+      "5681486829dc1d30e8f8bf359ee6beb4"
     ],
     [
       "Spec.Kyber.v_J",
@@ -1657,7 +1646,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "7a527ec7aa1d045566988c8ec176270c"
+      "d8c4957417609178d936eac669cf8176"
     ],
     [
       "Spec.Kyber.polynomial",
@@ -1695,7 +1684,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "208a50e66f1940184f27b83999b3f5bb"
+      "07f4f0d9226460d4dc7ac08ac9eac14f"
     ],
     [
       "Spec.Kyber.sample_matrix_A",
@@ -1733,7 +1722,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "a3d4b7fbd708ab7c31af9c1e035a4afb"
+      "5d73a62033bc674f32e14c19cb28f404"
     ],
     [
       "Spec.Kyber.sample_vector_cbd",
@@ -1771,7 +1760,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "0db174bf7058d24efa31f53213ab7656"
+      "2a3702b1c67744f60c8fa26f4a4ddd89"
     ],
     [
       "Spec.Kyber.sample_poly_binomial",
@@ -1825,7 +1814,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "7971177972dcc3abb0fc811f737f82e4"
+      "ca71c4223dc045f838c42144f3d04952"
     ],
     [
       "Spec.Kyber.sample_poly_cbd",
@@ -1863,7 +1852,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "fa71ef61fda89e066f3f91a8c73fff68"
+      "45fff6cafe31b3581f9614f46361a93d"
     ],
     [
       "Spec.Kyber.sample_poly_cbd",
@@ -1927,7 +1916,7 @@
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.U8@tok"
       ],
       0,
-      "89d9cc153c11b5a16d842d16c87fdb99"
+      "a4ed64c0b315fabbd4a989d9a9c5f7d0"
     ],
     [
       "Spec.Kyber.sample_poly_cbd",
@@ -1937,8 +1926,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -1946,52 +1934,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.u8_inttype",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.valid_params",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
-        "lemma_FStar.Seq.Base.lemma_create_len",
-        "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_7be811dccb445fddc98a91947e1fcc35",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.U8@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "806df98a39efce0d02004af1b2f041b8"
+      "3af5da12f62188319e44cf69064e7a92"
     ],
     [
       "Spec.Kyber.sample_vector_cbd_then_ntt",
@@ -2029,7 +1992,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "2cdd009686b77cfaae8f666bd7164134"
+      "a72231be8c1a20af2be2427c433bc166"
     ],
     [
       "Spec.Kyber.compress_d",
@@ -2079,7 +2042,8 @@
         "refinement_interpretation_Tm_refine_c156ecc6eab05d1687a383ef171435eb",
         "refinement_interpretation_Tm_refine_c7359e77cabee15ef712ef8911d37772",
         "token_correspondence_Prims.pow2.fuel_instrumented",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.range",
+        "typing_Lib.IntTypes.v", "typing_Prims.pow2",
+        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
@@ -2087,7 +2051,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "7cc5a578e9b02fbc76118743169b9295"
+      "18c240005cba523622ee159f1121aae7"
     ],
     [
       "Spec.Kyber.bits_to_bytes",
@@ -2097,10 +2061,11 @@
       [
         "@query", "constructor_distinct_Lib.IntTypes.U8",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Rust_primitives.Integers.bits"
+        "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.u8"
       ],
       0,
-      "4d6ed538f08b3e399474fa5ea4d5fbea"
+      "ac3fb4455e99abc071a23f3f2b4ccd3f"
     ],
     [
       "Spec.Kyber.bits_to_bytes",
@@ -2125,7 +2090,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "0aaf6a719e15e8fa8fe165b747b35c1a"
+      "78f8e7e83d8518a50819de420a6559d8"
     ],
     [
       "Spec.Kyber.bytes_to_bits",
@@ -2149,7 +2114,19 @@
         "typing_FStar.Seq.Base.length"
       ],
       0,
-      "3b5b15f15e8a8d309cd7fbbfc5ab9117"
+      "f3e88c35fb58a640e9ed3c18ee9f1125"
+    ],
+    [
+      "Spec.Kyber.retype_bit_vector",
+      1,
+      0,
+      1,
+      [
+        "@MaxIFuel_assumption", "@query",
+        "refinement_interpretation_Tm_refine_0dee8cb03258a67c2f7ec66427696212"
+      ],
+      0,
+      "c9647045d922e2b2b85dee88e6b1b2b0"
     ],
     [
       "Spec.Kyber.byte_encode",
@@ -2193,7 +2170,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "cd89c77c4e38426c0f3a0b4a100c9551"
+      "bde9a14a163667a9c79ea0944764fe8d"
     ],
     [
       "Spec.Kyber.byte_decode",
@@ -2203,7 +2180,6 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Prims_pretyping_ae567c2fb75be05905677af440075565",
         "Rust_primitives.Arrays_interpretation_Tm_arrow_6f5d461f72cbd41f28adedecb28bae4c",
         "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
         "b2t_def", "bool_inversion", "bool_typing",
@@ -2223,11 +2199,15 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_FStar.Int.fits",
         "equation_FStar.Int.int_t", "equation_FStar.Int.max_int",
         "equation_FStar.Int.min_int", "equation_FStar.Int.size",
-        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.pub_int_v",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.nonzero", "equation_Rust_primitives.Arrays.length",
+        "equation_Lib.IntTypes.bits", "equation_Lib.IntTypes.int_t",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.pub_int_t",
+        "equation_Lib.IntTypes.pub_int_v", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.i32",
+        "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lt",
         "equation_Rust_primitives.Integers.max_usize",
@@ -2240,7 +2220,6 @@
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.dT",
         "equation_Spec.Kyber.map_", "equation_Spec.Kyber.v_FIELD_MODULUS",
-        "function_token_typing_Prims.__cache_version_number__",
         "int_inversion", "int_typing",
         "interpretation_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
         "interpretation_Tm_abs_8ce11bfeb5d48b43540f9578371e5215",
@@ -2253,12 +2232,12 @@
         "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "refinement_interpretation_Tm_refine_0766302b68bb44ab7aff8c4d8be0b46f",
         "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
         "refinement_interpretation_Tm_refine_3e0ddd230031376a9f62d83f7bf315fa",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_595e844c6a8d713d4126310ff4b320d4",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_87c84547b1b5a1e7ebe534837a468e34",
         "refinement_interpretation_Tm_refine_9a09b8d60f882fd21b3c7c5705154313",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
@@ -2267,16 +2246,20 @@
         "refinement_interpretation_Tm_refine_e33c335666e99a37054ab9c1bb3d92a9",
         "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
         "refinement_kinding_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "typing_FStar.Int32.v", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Arrays.createi",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4"
+        "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.v_FIELD_MODULUS",
+        "typing_Tm_abs_78dc169a59feec7cb469cb14355db3c4",
+        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.S32@tok"
       ],
       0,
-      "5b2c252d4968bf69f12d5e6a65f97ab5"
+      "df140d4263aaa6f063c7be41ef015c33"
     ],
     [
       "Spec.Kyber.byte_decode",
@@ -2316,7 +2299,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "e6b2e9cd68cdf85b6c04d3803f3c7888"
+      "a44dfc7ee4a6120316fa936b2e7d8e2a"
     ],
     [
       "Spec.Kyber.vector_encode_12",
@@ -2395,7 +2378,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "a0e4d229c5620abf277e61758014bf48"
+      "600f161f7aa234b463c648eb7c504607"
     ],
     [
       "Spec.Kyber.vector_decode_12",
@@ -2468,7 +2451,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "474b9af313418992278767b8db359d26"
+      "23d346bbbd39281a88bf1611412c21ca"
     ],
     [
       "Spec.Kyber.compress_then_byte_encode",
@@ -2536,7 +2519,7 @@
         "typing_tok_Lib.IntTypes.PUB@tok"
       ],
       0,
-      "f8c199190a78c53ab3e8b82636afdc4f"
+      "03fa6b05c72bf3b0ecd112381788d399"
     ],
     [
       "Spec.Kyber.compress_then_encode_u",
@@ -2619,7 +2602,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "28ee901bcabf36ec8baf52e549b3872d"
+      "bf8367a58ac0d3690f446211d2789d1c"
     ],
     [
       "Spec.Kyber.decode_then_decompress_u",
@@ -2706,7 +2689,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "923e81a6658cd034f43ad2791f73ad79"
+      "0c7bb57f706177ca6c8c2de2b2649759"
     ],
     [
       "Spec.Kyber.compress_then_encode_v",
@@ -2760,7 +2743,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "e82673e4e6763ff8cc97ca734d45e90e"
+      "6c900a45ef3546bfca23c0e3a7a72101"
     ],
     [
       "Spec.Kyber.decode_then_decompress_v",
@@ -2814,7 +2797,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "5ab84abee5f6bb88f0bcb7b8e08afe73"
+      "996a6ab59b2b7532b3e48318e10a7a6d"
     ],
     [
       "Spec.Kyber.ind_cpa_generate_keypair",
@@ -2866,6 +2849,7 @@
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
+        "equation_Spec.Kyber.vector_encode_12",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t", "int_typing",
         "lemma_FStar.Seq.Base.lemma_len_append",
@@ -2903,7 +2887,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "181797b67af214a0724129470e5ed177"
+      "60fdfd3b9583b54020d2c2dfd145d491"
     ],
     [
       "Spec.Kyber.ind_cpa_encrypt",
@@ -2929,8 +2913,8 @@
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
         "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.concat",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.concat",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
@@ -2952,7 +2936,7 @@
         "equation_Rust_primitives.Integers.v", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.t_KyberPublicKey",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
+        "equation_Spec.Kyber.v_C1_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
@@ -2976,7 +2960,6 @@
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
@@ -2997,17 +2980,15 @@
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_VECTOR_V_COMPRESSION_FACTOR",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
         "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "76c9a6c3c50b536c1ec34d99229ba154"
+      "2864af9b95673879904cb85a19c956da"
     ],
     [
       "Spec.Kyber.ind_cpa_decrypt",
@@ -3015,11 +2996,20 @@
       0,
       1,
       [
-        "@MaxIFuel_assumption", "@query", "bool_inversion",
-        "equality_tok_Lib.IntTypes.U8@tok",
-        "equation_Rust_primitives.Arrays.length",
+        "@MaxIFuel_assumption", "@query", "bool_inversion", "bool_typing",
+        "data_elim_FStar.Pervasives.Native.Mktuple2",
+        "equality_tok_Lib.IntTypes.PUB@tok",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok",
+        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.byte_t",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
+        "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.lte",
@@ -3028,7 +3018,6 @@
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
@@ -3038,28 +3027,41 @@
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.valid_params",
-        "fuel_guarded_inversion_Spec.Kyber.params_", "int_typing",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "fuel_guarded_inversion_Spec.Kyber.params_",
+        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
+        "int_typing", "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
+        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "primitive_Prims.op_Subtraction",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
+        "typing_FStar.Seq.Base.length", "typing_FStar.Seq.Base.slice",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v", "typing_Spec.Kyber.v_C2_SIZE",
+        "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.__proj__Mkparams___item__v_VECTOR_V_COMPRESSION_FACTOR",
+        "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.valid_params"
+        "typing_Spec.Kyber.valid_params", "typing_tok_Lib.IntTypes.PUB@tok",
+        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "6a05473368fae8968ab3f7e0aa2f13af"
+      "b1ee3f800e3c71fcc355ce7a869e5574"
     ],
     [
       "Spec.Kyber.ind_cca_generate_keypair",
@@ -3100,6 +3102,7 @@
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sub",
@@ -3112,14 +3115,17 @@
         "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.t_KyberCPAPrivateKey",
         "equation_Spec.Kyber.t_KyberPublicKey",
+        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
+        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.valid_params",
+        "equation_Spec.Kyber.vector_encode_12",
         "fuel_guarded_inversion_Spec.Kyber.params_",
         "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
         "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
@@ -3129,7 +3135,7 @@
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
         "primitive_Prims.op_BarBar", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
@@ -3176,7 +3182,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "6600067498353b9190d4652616f440f3"
+      "4be66860616db38ecfd5e932f9820777"
     ],
     [
       "Spec.Kyber.ind_cca_encapsulate",
@@ -3253,7 +3259,7 @@
         "typing_Spec.Kyber.valid_params"
       ],
       0,
-      "8e7c7992789c23f67d1cc5fa0fffbfbd"
+      "8b8f217ccf19b5970d729ea2b5be0601"
     ],
     [
       "Spec.Kyber.ind_cca_decapsulate",
@@ -3281,12 +3287,13 @@
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.int_t",
         "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
         "equation_Lib.IntTypes.pub_int_t", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.eqtype",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.concat",
+        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
+        "equation_Prims.eqtype", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.concat",
         "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.slice",
         "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -3295,6 +3302,7 @@
         "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
         "equation_Rust_primitives.Integers.sub",
@@ -3306,12 +3314,14 @@
         "equation_Spec.Kyber.t_KyberCiphertext",
         "equation_Spec.Kyber.t_KyberPrivateKey",
         "equation_Spec.Kyber.t_KyberSharedSecret",
+        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
+        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
         "equation_Spec.Kyber.valid_params",
@@ -3321,7 +3331,6 @@
         "int_typing", "lemma_FStar.Seq.Base.hasEq_lemma",
         "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_FStar.Seq.Properties.slice_slice",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -3330,15 +3339,16 @@
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
+        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_1ba8fd8bb363097813064c67740b2de5",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_414d0a9f578ab0048252f8c8f552b99f",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
@@ -3349,17 +3359,17 @@
         "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_b554f8ba769a98edc97fa85cc9d2cdb0",
+        "refinement_interpretation_Tm_refine_b6bcbb06a5db915e32e14484401ff450",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d3d07693cd71377864ef84dc97d10ec1",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
         "typing_FStar.Seq.Base.length", "typing_FStar.UInt8.t",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.lte",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sub",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -3375,7 +3385,7 @@
         "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "cdf543c2152c9da06e601722410a13f7"
+      "ea11d68ee787b8cd881efca8b5b71894"
     ],
     [
       "Spec.Kyber.kyber768_params",
@@ -3428,7 +3438,7 @@
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "3814ae54c360f9c7079beb45e61a56f6"
+      "5e0d949c721ff65b4df2321f4cd0f1cf"
     ],
     [
       "Spec.Kyber.kyber768_generate_keypair",
@@ -3496,7 +3506,6 @@
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.vector_encode_12",
         "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
         "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
@@ -3554,7 +3563,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "d160f319eb03d8426ebf4973c9a14c9c"
+      "9f2337eabc8e0a758e7e40e0ebd58a59"
     ],
     [
       "Spec.Kyber.kyber768_generate_keypair",
@@ -3564,6 +3573,49 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "2fedaf938ffb99dbc6ed7524e4464655"
+    ],
+    [
+      "Spec.Kyber.kyber768_encapsulate",
+      1,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
+        "Spec.Kyber_interpretation_Tm_arrow_87603546d227dee2747fa745cc790497",
+        "Spec.Kyber_interpretation_Tm_arrow_d077c2b094ee77ec52c0bdd7967f2dbb",
+        "Spec.Kyber_interpretation_Tm_arrow_f02220bc9cbf8e93bab02df819dff112",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -3578,9 +3630,9 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
         "equation_Rust_primitives.Arrays.concat",
         "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.split",
@@ -3603,26 +3655,23 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.ind_cca_generate_keypair",
-        "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.kyber768_params", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.t_KyberCPAKeyPair",
-        "equation_Spec.Kyber.t_KyberCPAPrivateKey",
-        "equation_Spec.Kyber.t_KyberKeyPair",
-        "equation_Spec.Kyber.t_KyberPrivateKey",
-        "equation_Spec.Kyber.t_KyberPublicKey",
+        "equation_Spec.Kyber.compress_then_encode_u",
+        "equation_Spec.Kyber.compress_then_encode_v",
+        "equation_Spec.Kyber.flatten", "equation_Spec.Kyber.kyber768_params",
+        "equation_Spec.Kyber.params", "equation_Spec.Kyber.polynomial",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
+        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
+        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
+        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "equation_Spec.Kyber.vector", "equation_Spec.Kyber.vector_decode_12",
+        "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Spec.Kyber.compress_then_encode_v",
+        "int_inversion", "int_typing",
+        "lemma_FStar.Seq.Base.lemma_len_append",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -3630,30 +3679,48 @@
         "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
         "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
+        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
+        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
+        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
+        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
+        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
+        "refinement_interpretation_Tm_refine_439f8078285456e69a4492be8a994f60",
+        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
+        "refinement_interpretation_Tm_refine_5ea3e8723d30319eef6f4c2706107a9a",
+        "refinement_interpretation_Tm_refine_7be811dccb445fddc98a91947e1fcc35",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_b017613b19fa7f1d848a8e10b9eedb3f",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
         "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "refinement_interpretation_Tm_refine_f2f124f4ff354f341e763b0410e68fde",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "refinement_kinding_Tm_refine_38049ec672286a814b3fe565274988d5",
+        "token_correspondence_Spec.Kyber.byte_encode",
+        "token_correspondence_Spec.Kyber.compress_then_encode_v",
         "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Arrays.concat",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.length",
         "typing_Rust_primitives.Arrays.slice",
         "typing_Rust_primitives.Arrays.split",
+        "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
@@ -3662,34 +3729,35 @@
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
         "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.compute_As_plus_e",
-        "typing_Spec.Kyber.ind_cpa_generate_keypair",
-        "typing_Spec.Kyber.kyber768_params",
-        "typing_Spec.Kyber.sample_matrix_A",
+        "typing_Spec.Kyber.decode_then_decompress_message",
+        "typing_Spec.Kyber.kyber768_params", "typing_Spec.Kyber.poly_add",
+        "typing_Spec.Kyber.sample_poly_cbd",
         "typing_Spec.Kyber.sample_vector_cbd_then_ntt",
+        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
+        "typing_Spec.Kyber.v_C2_SIZE",
+        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
-        "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Spec.Kyber.vector_encode_12",
+        "typing_Spec.Kyber.vector_dot_product",
+        "typing_Tm_abs_0101aabc80c2620620c59c92a7c67f6d",
+        "typing_Tm_abs_2964a765b2ebb96b7cf921fa54d88c0e",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "0f9b6fb8d8d2a7f047e7782533b2c456"
+      "df2b0f319973a62ca504360c9b99d4da"
     ],
     [
       "Spec.Kyber.kyber768_encapsulate",
-      1,
+      2,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -3697,95 +3765,36 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber768_params", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.kyber768_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "b2f347d928408cdfba152a1d5827e482"
+      "e22180df6bc78b65718a0896e6bb9bfb"
     ],
     [
-      "Spec.Kyber.kyber768_encapsulate",
-      2,
+      "Spec.Kyber.kyber768_decapsulate",
+      1,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
-        "Spec.Kyber_interpretation_Tm_arrow_794151ba5df9fa72ba421de48a76c7c9",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -3795,72 +3804,52 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
         "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
         "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Prims.pos", "equation_Rust_primitives.Arrays.concat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.BitVectors.bit_vec_of_nat_arr",
         "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bit",
         "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.get_bit_nat",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.encode_bytes",
-        "equation_Spec.Kyber.kyber768_params", "equation_Spec.Kyber.params",
+        "equation_Spec.Kyber.kyber768_params",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
+        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing",
-        "interpretation_Tm_abs_1b82a7ab7290b837b0c69aaa8be8e5a6",
-        "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
-        "lemma_Rust_primitives.Integers.pow2_values",
+        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
+        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_inversion",
+        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
@@ -3868,58 +3857,73 @@
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_66c9d2fa8dd4cf0170eca9cd848dc974",
-        "refinement_interpretation_Tm_refine_774ba3f728d91ead8ef40be66c9802e5",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
+        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b017613b19fa7f1d848a8e10b9eedb3f",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
-        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
-        "typing_Prims.pow2", "typing_Rust_primitives.Arrays.concat",
-        "typing_Rust_primitives.Arrays.split",
-        "typing_Rust_primitives.Integers.add",
+        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.lte",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.bits_to_bytes",
-        "typing_Spec.Kyber.compress_then_encode_u",
         "typing_Spec.Kyber.kyber768_params",
-        "typing_Spec.Kyber.matrix_transpose",
-        "typing_Spec.Kyber.matrix_vector_mul",
-        "typing_Spec.Kyber.sample_matrix_A",
-        "typing_Spec.Kyber.sample_vector_cbd",
-        "typing_Spec.Kyber.sample_vector_cbd_then_ntt",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
         "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
+        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
+        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Spec.Kyber.vector_add", "typing_Spec.Kyber.vector_inv_ntt",
-        "typing_Tm_abs_1b82a7ab7290b837b0c69aaa8be8e5a6",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "0eb1ecb88745feefb7b1d051fc435a19"
+      "7fd21be7691985f0f3cecf402e017337"
     ],
     [
       "Spec.Kyber.kyber768_decapsulate",
+      2,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "a13d7f24560b740aef9eb5468da64151"
+    ],
+    [
+      "Spec.Kyber.kyber1024_params",
       1,
       0,
       1,
@@ -3935,93 +3939,52 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber768_params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_inversion",
-        "int_typing", "lemma_Lib.IntTypes.pow2_2",
+        "equation_Spec.Kyber.valid_params",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
+        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
+        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
+        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
+        "projection_inverse_Spec.Kyber.Mkparams__v_ETA2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.kyber768_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "8b7c0d2a07b59efee40210740638424a"
+      "9b060224294cc3007d7dc5332e763237"
     ],
     [
-      "Spec.Kyber.kyber768_decapsulate",
-      2,
+      "Spec.Kyber.kyber1024_generate_keypair",
+      1,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -4031,204 +3994,53 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "data_elim_FStar.Pervasives.Native.Mktuple2",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
+        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
+        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lte",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber768_params",
+        "equation_Spec.Kyber.compute_As_plus_e",
+        "equation_Spec.Kyber.flatten",
+        "equation_Spec.Kyber.ind_cca_generate_keypair",
+        "equation_Spec.Kyber.ind_cpa_generate_keypair",
+        "equation_Spec.Kyber.kyber1024_params", "equation_Spec.Kyber.map_",
+        "equation_Spec.Kyber.polynomial",
+        "equation_Spec.Kyber.sample_vector_cbd_then_ntt",
+        "equation_Spec.Kyber.t_KyberKeyPair",
+        "equation_Spec.Kyber.t_KyberPrivateKey",
+        "equation_Spec.Kyber.t_KyberPublicKey",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
+        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.kyber768_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
-      ],
-      0,
-      "a74e6c06b013012aa4681f90d0e5f6f4"
-    ],
-    [
-      "Spec.Kyber.kyber1024_params",
-      1,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
-        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Spec.Kyber.valid_params",
-        "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA2",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype"
-      ],
-      0,
-      "7d8fe94c4f5d9fad66c634a409dde01e"
-    ],
-    [
-      "Spec.Kyber.kyber1024_generate_keypair",
-      1,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
-        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.compute_As_plus_e",
-        "equation_Spec.Kyber.flatten",
-        "equation_Spec.Kyber.ind_cca_generate_keypair",
-        "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.kyber1024_params", "equation_Spec.Kyber.map_",
-        "equation_Spec.Kyber.polynomial",
-        "equation_Spec.Kyber.sample_vector_cbd_then_ntt",
-        "equation_Spec.Kyber.t_KyberKeyPair",
-        "equation_Spec.Kyber.t_KyberPrivateKey",
-        "equation_Spec.Kyber.t_KyberPublicKey",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
+        "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
         "equation_Spec.Kyber.vector_encode_12",
         "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
         "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
@@ -4285,7 +4097,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "6c6fdef858c0144770772a8859ed18cc"
+      "7fabb64f693ce7735ff2fa2807643ac6"
     ],
     [
       "Spec.Kyber.kyber1024_generate_keypair",
@@ -4295,8 +4107,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -4304,302 +4115,40 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.concat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.ind_cca_generate_keypair",
-        "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.kyber1024_params", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.t_KyberCPAKeyPair",
-        "equation_Spec.Kyber.t_KyberCPAPrivateKey",
-        "equation_Spec.Kyber.t_KyberKeyPair",
-        "equation_Spec.Kyber.t_KyberPrivateKey",
-        "equation_Spec.Kyber.t_KyberPublicKey",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_BarBar", "primitive_Prims.op_Equality",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "refinement_interpretation_Tm_refine_f2f124f4ff354f341e763b0410e68fde",
-        "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Arrays.slice",
-        "typing_Rust_primitives.Arrays.split",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.compute_As_plus_e",
-        "typing_Spec.Kyber.ind_cpa_generate_keypair",
-        "typing_Spec.Kyber.kyber1024_params",
-        "typing_Spec.Kyber.sample_matrix_A",
-        "typing_Spec.Kyber.sample_vector_cbd_then_ntt",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
-        "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Spec.Kyber.vector_encode_12",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
-      ],
-      0,
-      "cabcaf9d45a32a7186d3671f60d840b8"
-    ],
-    [
-      "Spec.Kyber.kyber1024_encapsulate",
-      1,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber1024_params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
-        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_FStar.Seq.Base.length",
-        "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.kyber1024_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
-      ],
-      0,
-      "d340c2ae642b6c5be2d3d6ee1563c5e0"
-    ],
-    [
-      "Spec.Kyber.kyber1024_encapsulate",
-      2,
-      0,
-      1,
-      [
-        "@MaxFuel_assumption", "@MaxIFuel_assumption",
-        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
-        "constructor_distinct_Lib.IntTypes.S32",
-        "constructor_distinct_Lib.IntTypes.S8",
-        "constructor_distinct_Lib.IntTypes.U1",
-        "constructor_distinct_Lib.IntTypes.U16",
-        "constructor_distinct_Lib.IntTypes.U32",
-        "constructor_distinct_Lib.IntTypes.U64",
-        "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
-        "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
-        "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.maxint",
-        "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
-        "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
-        "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber1024_params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
-        "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "projection_inverse_BoxBool_proj_0",
-        "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_FStar.Seq.Base.length",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.mk_int",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.kyber1024_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_tok_Lib.IntTypes.U32@tok", "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "93b26563a5b1657a6a8f535f5183b0a8"
+      "5133057ff40378a2c1f8bda6aa258fa5"
     ],
     [
-      "Spec.Kyber.kyber1024_decapsulate",
+      "Spec.Kyber.kyber1024_encapsulate",
       1,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
+        "Spec.Kyber_interpretation_Tm_arrow_87603546d227dee2747fa745cc790497",
+        "Spec.Kyber_interpretation_Tm_arrow_d077c2b094ee77ec52c0bdd7967f2dbb",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -4609,91 +4158,182 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
+        "data_elim_FStar.Pervasives.Native.Mktuple2",
         "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.concat",
+        "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.split",
+        "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Rust_primitives.Arrays.t_Slice",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.lte",
+        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.range_t",
+        "equation_Rust_primitives.Integers.sub",
         "equation_Rust_primitives.Integers.sz",
         "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber1024_params",
+        "equation_Spec.Kyber.compress_then_encode_u",
+        "equation_Spec.Kyber.compress_then_encode_v",
+        "equation_Spec.Kyber.flatten",
+        "equation_Spec.Kyber.kyber1024_params", "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
+        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
+        "function_token_typing_Lib.IntTypes.byte_t",
+        "function_token_typing_Spec.Kyber.compress_then_encode_v",
+        "int_inversion", "int_typing",
+        "lemma_FStar.Seq.Base.lemma_len_append",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
+        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
+        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_Subtraction",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
+        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
+        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
+        "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
         "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5ea3e8723d30319eef6f4c2706107a9a",
+        "refinement_interpretation_Tm_refine_7be811dccb445fddc98a91947e1fcc35",
+        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
+        "refinement_interpretation_Tm_refine_b017613b19fa7f1d848a8e10b9eedb3f",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
+        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
+        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
+        "token_correspondence_Spec.Kyber.byte_encode",
+        "token_correspondence_Spec.Kyber.compress_then_encode_v",
+        "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
+        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
+        "typing_Rust_primitives.Arrays.concat",
+        "typing_Rust_primitives.Arrays.createi",
+        "typing_Rust_primitives.Arrays.length",
+        "typing_Rust_primitives.Arrays.slice",
+        "typing_Rust_primitives.Arrays.split",
+        "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.lt",
+        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.range",
+        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
+        "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
+        "typing_Spec.Kyber.compress_then_encode_u",
+        "typing_Spec.Kyber.decode_then_decompress_message",
         "typing_Spec.Kyber.kyber1024_params",
+        "typing_Spec.Kyber.matrix_transpose",
+        "typing_Spec.Kyber.matrix_vector_mul", "typing_Spec.Kyber.poly_add",
+        "typing_Spec.Kyber.sample_matrix_A",
+        "typing_Spec.Kyber.sample_poly_cbd",
+        "typing_Spec.Kyber.sample_vector_cbd",
+        "typing_Spec.Kyber.sample_vector_cbd_then_ntt",
         "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
         "typing_Spec.Kyber.v_C2_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
+        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
+        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "typing_Spec.Kyber.vector_add", "typing_Spec.Kyber.vector_decode_12",
+        "typing_Spec.Kyber.vector_dot_product",
+        "typing_Spec.Kyber.vector_inv_ntt",
+        "typing_Tm_abs_0101aabc80c2620620c59c92a7c67f6d",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "08e54d9bf16620714a0dc17b0f1748d2"
+      "b36f21ef4f2a3c7ab5a4da70964e9de9"
     ],
     [
-      "Spec.Kyber.kyber1024_decapsulate",
+      "Spec.Kyber.kyber1024_encapsulate",
       2,
       0,
       1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "a35b8305333972e476af4e8fb14b7fb4"
+    ],
+    [
+      "Spec.Kyber.kyber1024_decapsulate",
+      1,
+      0,
+      1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
@@ -4782,18 +4422,17 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "59c6335eac6be086eec305fb489ea382"
+      "0fb372f27f9e1c62e56fe65720474348"
     ],
     [
-      "Spec.Kyber.kyber512_params",
-      1,
+      "Spec.Kyber.kyber1024_decapsulate",
+      2,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -4809,44 +4448,28 @@
         "equation_Rust_primitives.Integers.minint",
         "equation_Rust_primitives.Integers.range",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Spec.Kyber.valid_params",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
-        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
-        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
-        "projection_inverse_Spec.Kyber.Mkparams__v_ETA2",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "bf3854354b313b6da6f4e4420e79f875"
+      "ba990492bd91c6b7fb4d75ec5826cbff"
     ],
     [
-      "Spec.Kyber.kyber512_generate_keypair",
+      "Spec.Kyber.kyber512_params",
       1,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
-        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -4856,117 +4479,52 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.compute_As_plus_e",
-        "equation_Spec.Kyber.flatten",
-        "equation_Spec.Kyber.ind_cca_generate_keypair",
-        "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.kyber512_params", "equation_Spec.Kyber.map_",
-        "equation_Spec.Kyber.polynomial",
-        "equation_Spec.Kyber.sample_vector_cbd_then_ntt",
-        "equation_Spec.Kyber.t_KyberKeyPair",
-        "equation_Spec.Kyber.t_KyberPrivateKey",
-        "equation_Spec.Kyber.t_KyberPublicKey",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "equation_Spec.Kyber.vector_encode_12",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
+        "equation_Spec.Kyber.valid_params",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_BarBar",
+        "primitive_Prims.op_Equality", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
+        "proj_equation_Spec.Kyber.Mkparams__v_ETA1",
+        "proj_equation_Spec.Kyber.Mkparams__v_ETA2",
         "proj_equation_Spec.Kyber.Mkparams__v_RANK",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__1",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
+        "projection_inverse_Spec.Kyber.Mkparams__v_ETA1",
+        "projection_inverse_Spec.Kyber.Mkparams__v_ETA2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
+        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
+        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_5ea3e8723d30319eef6f4c2706107a9a",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "refinement_interpretation_Tm_refine_f2f124f4ff354f341e763b0410e68fde",
-        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
-        "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Arrays.createi",
-        "typing_Rust_primitives.Arrays.split",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.kyber512_params",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
-        "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Tm_abs_0101aabc80c2620620c59c92a7c67f6d",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "73019953286e3b9281adf436906c3c7f"
+      "644a2962a3ca0b4a65526e51315786b2"
     ],
     [
       "Spec.Kyber.kyber512_generate_keypair",
-      2,
+      1,
       0,
       1,
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -4982,14 +4540,11 @@
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
         "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.concat",
-        "equation_Rust_primitives.Arrays.length",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Prims.nat", "equation_Rust_primitives.Arrays.length",
         "equation_Rust_primitives.Arrays.split",
         "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
         "equation_Rust_primitives.Integers.inttype",
@@ -5006,24 +4561,27 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
+        "equation_Spec.Kyber.compute_As_plus_e",
+        "equation_Spec.Kyber.flatten",
         "equation_Spec.Kyber.ind_cca_generate_keypair",
         "equation_Spec.Kyber.ind_cpa_generate_keypair",
-        "equation_Spec.Kyber.kyber512_params",
-        "equation_Spec.Kyber.t_KyberCPAKeyPair",
-        "equation_Spec.Kyber.t_KyberCPAPrivateKey",
+        "equation_Spec.Kyber.kyber512_params", "equation_Spec.Kyber.map_",
+        "equation_Spec.Kyber.polynomial",
+        "equation_Spec.Kyber.sample_vector_cbd_then_ntt",
         "equation_Spec.Kyber.t_KyberKeyPair",
         "equation_Spec.Kyber.t_KyberPrivateKey",
         "equation_Spec.Kyber.t_KyberPublicKey",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_CPA_PKE_KEY_GENERATION_SEED_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "equation_Spec.Kyber.vector_encode_12",
         "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
         "int_typing", "lemma_FStar.Seq.Base.lemma_len_append",
+        "lemma_FStar.Seq.Base.lemma_len_slice",
         "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
@@ -5037,9 +4595,10 @@
         "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
         "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
         "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_1d1f1ecbbef37067035a7c7f276e4e21",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5ea3e8723d30319eef6f4c2706107a9a",
         "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
@@ -5050,9 +4609,10 @@
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
         "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
         "refinement_interpretation_Tm_refine_f2f124f4ff354f341e763b0410e68fde",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
         "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
         "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Arrays.slice",
+        "typing_Rust_primitives.Arrays.createi",
         "typing_Rust_primitives.Arrays.split",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.minint",
@@ -5060,19 +4620,57 @@
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
         "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.ind_cpa_generate_keypair",
         "typing_Spec.Kyber.kyber512_params",
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_H",
+        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
         "typing_Spec.Kyber.v_KEY_GENERATION_SEED_SIZE",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "typing_Tm_abs_0101aabc80c2620620c59c92a7c67f6d",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "bfb58240116356af730c0fbad139b172"
+      "8d4315fe1df52e9862a993cf767bfb88"
+    ],
+    [
+      "Spec.Kyber.kyber512_generate_keypair",
+      2,
+      0,
+      1,
+      [
+        "@MaxFuel_assumption", "@MaxIFuel_assumption",
+        "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
+        "constructor_distinct_Lib.IntTypes.S32",
+        "constructor_distinct_Lib.IntTypes.S8",
+        "constructor_distinct_Lib.IntTypes.U1",
+        "constructor_distinct_Lib.IntTypes.U16",
+        "constructor_distinct_Lib.IntTypes.U32",
+        "constructor_distinct_Lib.IntTypes.U64",
+        "constructor_distinct_Lib.IntTypes.U8",
+        "equality_tok_Lib.IntTypes.U32@tok",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
+        "equation_Rust_primitives.Integers.inttype",
+        "equation_Rust_primitives.Integers.maxint",
+        "equation_Rust_primitives.Integers.minint",
+        "equation_Rust_primitives.Integers.range",
+        "equation_Rust_primitives.Integers.unsigned",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
+        "projection_inverse_BoxBool_proj_0",
+        "projection_inverse_BoxInt_proj_0",
+        "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
+        "typing_Rust_primitives.Integers.bits",
+        "typing_Rust_primitives.Integers.unsigned",
+        "typing_Rust_primitives.Integers.usize_inttype"
+      ],
+      0,
+      "36d3d6ec475a15ec849ad22c62b924c3"
     ],
     [
       "Spec.Kyber.kyber512_encapsulate",
@@ -5082,6 +4680,8 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
+        "Rust_primitives.Arrays_interpretation_Tm_arrow_de8d1f471f13fc5f0e023de9ccd0e729",
+        "Spec.Kyber_interpretation_Tm_arrow_5b864e552c0ff441929523e016bf2b54",
         "bool_inversion", "bool_typing",
         "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
@@ -5095,10 +4695,11 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.maxint",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.length",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -5113,7 +4714,9 @@
         "equation_Rust_primitives.Integers.unsigned",
         "equation_Rust_primitives.Integers.usize",
         "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber512_params", "equation_Spec.Kyber.params",
+        "equation_Spec.Kyber.compress_then_encode_u",
+        "equation_Spec.Kyber.flatten", "equation_Spec.Kyber.kyber512_params",
+        "equation_Spec.Kyber.params",
         "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
         "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
@@ -5137,18 +4740,22 @@
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
         "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
+        "refinement_interpretation_Tm_refine_0f191a22e875f87cda4aa66ae18cac54",
         "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
         "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
         "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
         "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
+        "refinement_interpretation_Tm_refine_5ea3e8723d30319eef6f4c2706107a9a",
         "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
         "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
         "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
         "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
+        "refinement_interpretation_Tm_refine_fa352a9b1b496f80110c6342c48c06bd",
         "typing_FStar.Seq.Base.length", "typing_Lib.IntTypes.v",
+        "typing_Rust_primitives.Arrays.createi",
         "typing_Rust_primitives.Integers.bits",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
@@ -5162,11 +4769,12 @@
         "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
         "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
+        "typing_Tm_abs_0101aabc80c2620620c59c92a7c67f6d",
         "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "640e1c985fb18208daad745ad445d911"
+      "05ce2b30cdd55fc55ba5f2047795ec85"
     ],
     [
       "Spec.Kyber.kyber512_encapsulate",
@@ -5176,10 +4784,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "Rust_primitives.BitVectors_interpretation_Tm_arrow_a1bbe86a3e470c2690a3539565e2b2c3",
-        "Spec.Kyber_interpretation_Tm_arrow_794151ba5df9fa72ba421de48a76c7c9",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -5187,125 +4792,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "data_elim_FStar.Pervasives.Native.Mktuple2",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.byte_t", "equation_Lib.IntTypes.minint",
-        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
-        "equation_Lib.IntTypes.v", "equation_Prims.nat",
-        "equation_Rust_primitives.Arrays.concat",
-        "equation_Rust_primitives.Arrays.length",
-        "equation_Rust_primitives.Arrays.split",
-        "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Arrays.t_Slice",
-        "equation_Rust_primitives.BitVectors.bit_vec_of_nat_arr",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bit",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.get_bit_nat",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
-        "equation_Rust_primitives.Integers.lte",
-        "equation_Rust_primitives.Integers.max_usize",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sub",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.encode_bytes",
-        "equation_Spec.Kyber.kyber512_params", "equation_Spec.Kyber.params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE",
-        "function_token_typing_Lib.IntTypes.byte_t", "int_inversion",
-        "int_typing",
-        "interpretation_Tm_abs_1b82a7ab7290b837b0c69aaa8be8e5a6",
-        "lemma_FStar.Seq.Base.lemma_len_append",
-        "lemma_FStar.Seq.Base.lemma_len_slice",
-        "lemma_Rust_primitives.Integers.mk_int_v_lemma",
         "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Modulus",
-        "primitive_Prims.op_Multiply", "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
+        "primitive_Prims.op_Subtraction",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_FStar.Pervasives.Native.Mktuple2__2",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_079adb77fdd07c88556550f7147f31e6",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_66c9d2fa8dd4cf0170eca9cd848dc974",
-        "refinement_interpretation_Tm_refine_81407705a0828c2c1b1976675443f647",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
-        "refinement_interpretation_Tm_refine_b017613b19fa7f1d848a8e10b9eedb3f",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d26fa327c2c1ff0a9633e2624291cd2a",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e44c15fb5d8160f1569ee39a0b3d9688",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "refinement_interpretation_Tm_refine_e9d2acd716e976eddb0f03391caae2b5",
-        "refinement_interpretation_Tm_refine_ed95cbcc65ce70ece9e84ad5f1db743e",
-        "typing_FStar.Seq.Base.append", "typing_FStar.Seq.Base.length",
-        "typing_FStar.Seq.Base.slice", "typing_Lib.IntTypes.v",
-        "typing_Rust_primitives.Arrays.concat",
-        "typing_Rust_primitives.Arrays.split",
-        "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.minint",
-        "typing_Rust_primitives.Integers.range",
-        "typing_Rust_primitives.Integers.sz",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Rust_primitives.Integers.v",
-        "typing_Spec.Kyber.__proj__Mkparams___item__v_RANK",
-        "typing_Spec.Kyber.bits_to_bytes",
-        "typing_Spec.Kyber.compress_then_encode_u",
-        "typing_Spec.Kyber.kyber512_params",
-        "typing_Spec.Kyber.matrix_transpose",
-        "typing_Spec.Kyber.matrix_vector_mul",
-        "typing_Spec.Kyber.sample_matrix_A",
-        "typing_Spec.Kyber.sample_vector_cbd",
-        "typing_Spec.Kyber.sample_vector_cbd_then_ntt",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_G", "typing_Spec.Kyber.v_H",
-        "typing_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "typing_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "typing_Spec.Kyber.vector_add", "typing_Spec.Kyber.vector_inv_ntt",
-        "typing_Tm_abs_1b82a7ab7290b837b0c69aaa8be8e5a6",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "905a7a23ff2b3882092b2adc1ac5c292"
+      "62602d7a2d2ba7a1ec33aa40c6162d45"
     ],
     [
       "Spec.Kyber.kyber512_decapsulate",
@@ -5328,9 +4835,10 @@
         "equality_tok_Lib.IntTypes.U32@tok",
         "equality_tok_Lib.IntTypes.U64@tok",
         "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
+        "equation_Lib.IntTypes.maxint", "equation_Lib.IntTypes.minint",
+        "equation_Lib.IntTypes.range", "equation_Lib.IntTypes.unsigned",
+        "equation_Lib.IntTypes.v", "equation_Prims.nat",
+        "equation_Rust_primitives.Arrays.t_Array",
         "equation_Rust_primitives.Integers.add",
         "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.int_t",
@@ -5355,8 +4863,7 @@
         "equation_Spec.Kyber.v_H_DIGEST_SIZE",
         "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
         "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE",
-        "equation_Spec.Kyber.v_T_AS_NTT_ENCODED_SIZE", "int_inversion",
+        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_inversion",
         "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
         "lemma_Rust_primitives.Integers.v_mk_int_lemma",
         "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
@@ -5385,7 +4892,6 @@
         "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
         "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.mk_int",
         "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
         "typing_Rust_primitives.Integers.usize_inttype",
@@ -5402,7 +4908,7 @@
         "typing_tok_Lib.IntTypes.U64@tok"
       ],
       0,
-      "f6efc41945a58401339aa6bca4b6ccc5"
+      "eeeda0d80731c4ffa900bcf9eea0af63"
     ],
     [
       "Spec.Kyber.kyber512_decapsulate",
@@ -5412,8 +4918,7 @@
       [
         "@MaxFuel_assumption", "@MaxIFuel_assumption",
         "@fuel_correspondence_Prims.pow2.fuel_instrumented", "@query",
-        "bool_inversion", "bool_typing",
-        "constructor_distinct_Lib.IntTypes.S16",
+        "bool_inversion", "constructor_distinct_Lib.IntTypes.S16",
         "constructor_distinct_Lib.IntTypes.S32",
         "constructor_distinct_Lib.IntTypes.S8",
         "constructor_distinct_Lib.IntTypes.U1",
@@ -5421,81 +4926,27 @@
         "constructor_distinct_Lib.IntTypes.U32",
         "constructor_distinct_Lib.IntTypes.U64",
         "constructor_distinct_Lib.IntTypes.U8",
-        "equality_tok_Lib.IntTypes.PUB@tok",
         "equality_tok_Lib.IntTypes.U32@tok",
-        "equality_tok_Lib.IntTypes.U64@tok",
-        "equality_tok_Lib.IntTypes.U8@tok", "equation_Lib.IntTypes.bits",
-        "equation_Lib.IntTypes.minint", "equation_Lib.IntTypes.range",
-        "equation_Lib.IntTypes.unsigned", "equation_Lib.IntTypes.v",
-        "equation_Prims.nat", "equation_Rust_primitives.Arrays.t_Array",
-        "equation_Rust_primitives.Integers.add",
-        "equation_Rust_primitives.Integers.bits",
-        "equation_Rust_primitives.Integers.int_t",
+        "equality_tok_Lib.IntTypes.U64@tok", "equation_Lib.IntTypes.bits",
+        "equation_Prims.nat", "equation_Rust_primitives.Integers.bits",
         "equation_Rust_primitives.Integers.inttype",
         "equation_Rust_primitives.Integers.maxint",
         "equation_Rust_primitives.Integers.minint",
-        "equation_Rust_primitives.Integers.mul",
         "equation_Rust_primitives.Integers.range",
-        "equation_Rust_primitives.Integers.range_t",
-        "equation_Rust_primitives.Integers.sz",
-        "equation_Rust_primitives.Integers.u8",
         "equation_Rust_primitives.Integers.unsigned",
-        "equation_Rust_primitives.Integers.usize",
-        "equation_Rust_primitives.Integers.v",
-        "equation_Spec.Kyber.kyber512_params",
-        "equation_Spec.Kyber.v_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_C1_BLOCK_SIZE",
-        "equation_Spec.Kyber.v_C1_SIZE", "equation_Spec.Kyber.v_C2_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "equation_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_H_DIGEST_SIZE",
-        "equation_Spec.Kyber.v_RANKED_BYTES_PER_RING_ELEMENT",
-        "equation_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "equation_Spec.Kyber.v_SHARED_SECRET_SIZE", "int_inversion",
-        "int_typing", "lemma_Rust_primitives.Integers.pow2_values",
-        "lemma_Rust_primitives.Integers.v_mk_int_lemma",
-        "primitive_Prims.op_Addition", "primitive_Prims.op_AmpAmp",
-        "primitive_Prims.op_LessThanOrEqual", "primitive_Prims.op_Multiply",
+        "lemma_Rust_primitives.Integers.pow2_values",
+        "primitive_Prims.op_AmpAmp", "primitive_Prims.op_LessThanOrEqual",
         "primitive_Prims.op_Subtraction",
-        "proj_equation_Spec.Kyber.Mkparams__v_RANK",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "proj_equation_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
         "projection_inverse_BoxBool_proj_0",
         "projection_inverse_BoxInt_proj_0",
-        "projection_inverse_Spec.Kyber.Mkparams__v_RANK",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_U_COMPRESSION_FACTOR",
-        "projection_inverse_Spec.Kyber.Mkparams__v_VECTOR_V_COMPRESSION_FACTOR",
-        "refinement_interpretation_Tm_refine_0e1d8acba93710c332370f20ed925486",
-        "refinement_interpretation_Tm_refine_117f68d1f96cf8c1d2700eebe70084e5",
-        "refinement_interpretation_Tm_refine_221edc532b512849362f091b0318b99d",
-        "refinement_interpretation_Tm_refine_2684b5609986811a544b67627d3f8aa8",
-        "refinement_interpretation_Tm_refine_4c253f027b5d09b5555e1c4f903eeb5c",
-        "refinement_interpretation_Tm_refine_53d7089a905511e9e713c7dbc2f68178",
         "refinement_interpretation_Tm_refine_542f9d4f129664613f2483a6c88bc7c2",
-        "refinement_interpretation_Tm_refine_83845a86f2550cdf941eeb1d9b59602b",
-        "refinement_interpretation_Tm_refine_8fb786f8823478b771d756459ca673ae",
-        "refinement_interpretation_Tm_refine_a6d4eccfb2603ce5e66d6162c32df2b0",
         "refinement_interpretation_Tm_refine_bacb80e693f1faab8ffabcbb77914bec",
-        "refinement_interpretation_Tm_refine_d8958f2388129bdac6873f4cda807036",
-        "refinement_interpretation_Tm_refine_e99b3044abed213f37871149ff318e44",
-        "typing_Lib.IntTypes.v", "typing_Rust_primitives.Integers.add",
         "typing_Rust_primitives.Integers.bits",
-        "typing_Rust_primitives.Integers.range",
         "typing_Rust_primitives.Integers.unsigned",
-        "typing_Rust_primitives.Integers.usize_inttype",
-        "typing_Spec.Kyber.kyber512_params",
-        "typing_Spec.Kyber.v_C1_BLOCK_SIZE", "typing_Spec.Kyber.v_C1_SIZE",
-        "typing_Spec.Kyber.v_C2_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_CIPHERTEXT_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_PUBLIC_KEY_SIZE",
-        "typing_Spec.Kyber.v_CPA_PKE_SECRET_KEY_SIZE",
-        "typing_Spec.Kyber.v_SECRET_KEY_SIZE",
-        "typing_tok_Lib.IntTypes.PUB@tok", "typing_tok_Lib.IntTypes.U32@tok",
-        "typing_tok_Lib.IntTypes.U64@tok"
+        "typing_Rust_primitives.Integers.usize_inttype"
       ],
       0,
-      "5dc9760ecab7b2d031ec559dfcc873b4"
+      "42f270fb628c21ea4899dd7e2779ec53"
     ]
   ]
 ]
\ No newline at end of file
diff --git a/proofs/fstar/extraction-secret-independent.patch b/proofs/fstar/extraction-secret-independent.patch
index c47711e3..11e71ed8 100644
--- a/proofs/fstar/extraction-secret-independent.patch
+++ b/proofs/fstar/extraction-secret-independent.patch
@@ -1,6 +1,320 @@
+diff -ruN extraction-edited/BitVecEq.fst extraction-secret-independent/BitVecEq.fst
+--- extraction-edited/BitVecEq.fst	2024-02-20 10:46:13.853093120 +0100
++++ extraction-secret-independent/BitVecEq.fst	1970-01-01 01:00:00.000000000 +0100
+@@ -1,12 +0,0 @@
+-module BitVecEq
+-
+-open Core
+-open FStar.Mul
+-open FStar.FunctionalExtensionality
+-
+-let bit_vec_equal #n bv1 bv2 = forall i. bv1 i == bv2 i
+-
+-let bit_vec_equal_intro bv1 bv2 = ()
+-let bit_vec_equal_elim bv1 bv2 = assert (feq bv1 bv2)
+-
+-
+diff -ruN extraction-edited/BitVecEq.fsti extraction-secret-independent/BitVecEq.fsti
+--- extraction-edited/BitVecEq.fsti	2024-02-20 10:46:13.894092295 +0100
++++ extraction-secret-independent/BitVecEq.fsti	1970-01-01 01:00:00.000000000 +0100
+@@ -1,294 +0,0 @@
+-module BitVecEq
+-#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
+-open Core
+-open FStar.Mul
+-open MkSeq
+-open FStar.FunctionalExtensionality
+-
+-val bit_vec_equal (#n: nat) (bv1 bv2: bit_vec n): Type0
+-val bit_vec_equal_intro (#n: nat) (bv1 bv2: bit_vec n)
+-  : Lemma (requires forall i. bv1 i == bv2 i)
+-          (ensures bit_vec_equal bv1 bv2)
+-val bit_vec_equal_elim (#n: nat) (bv1 bv2: bit_vec n)
+-  : Lemma (requires bit_vec_equal #n bv1 bv2)
+-          (ensures bv1 == bv2)
+-          [SMTPat (bit_vec_equal #n bv1 bv2)]
+-
+-let bit_vec_equal_intro_principle ()
+-  : Lemma (forall n (bv1 bv2: bit_vec n). (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2)
+-  = introduce forall n (bv1 bv2: bit_vec n). _
+-    with introduce (forall i. bv1 i == bv2 i) ==> bit_vec_equal #n bv1 bv2
+-         with _. bit_vec_equal_intro #n bv1 bv2
+-  
+-let bit_vec_equal_elim_principle ()
+-  : Lemma (forall n (bv1 bv2: bit_vec n). bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i))
+-  = introduce forall n (bv1 bv2: bit_vec n). _
+-    with introduce bit_vec_equal #n bv1 bv2 ==> (forall i. bv1 i == bv2 i)
+-         with _. bit_vec_equal_elim #n bv1 bv2
+-
+-let bit_vec_equal_trivial (bv1 bv2: bit_vec 0): Lemma (bv1 == bv2) 
+-    [SMTPat (eq2 #(bit_vec 0) bv1 bv2)]
+-  = bit_vec_equal_intro bv1 bv2
+-
+-let bit_vec_sub #n (bv: bit_vec n) (start: nat) (len: nat {start + len <= n})
+-  : bit_vec len
+-  = on (i: nat {i < len})
+-       (fun i -> bv (start + i))
+-
+-let bit_vec_equal_trivial_sub_smtpat (bv1: bit_vec 'n)
+-  : Lemma (forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2)
+-    [SMTPat (bit_vec_sub bv1 0 0)]
+-  = introduce forall (bv2: bit_vec 0). bit_vec_sub bv1 0 0 == bv2
+-    with bit_vec_equal_trivial (bit_vec_sub bv1 0 0) bv2
+-
+-unfold let retype #a #b (#_:unit{a == b})
+-  (x: a): b
+-  = x
+-
+-let bit_vec_sub_all_lemma #n (bv: bit_vec n)
+-  : Lemma (bit_vec_sub bv 0 n == bv)
+-          [SMTPat (bit_vec_sub bv 0 n)]
+-  = bit_vec_equal_intro (bit_vec_sub bv 0 n) bv
+-
+-let int_t_array_bitwise_eq'
+-       #t1 #t2 #n1 #n2
+-       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
+-       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-     = bit_vec_equal (bit_vec_of_int_t_array arr1 d1)
+-                     (retype (bit_vec_of_int_t_array arr2 d2))
+-
+-let int_t_array_bitwise_eq
+-       #t1 #t2 #n1 #n2
+-       (arr1: t_Array (int_t t1) n1) (d1: num_bits t1)
+-       (arr2: t_Array (int_t t2) n2) (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-     =  bit_vec_of_int_t_array arr1 d1
+-     == bit_vec_of_int_t_array arr2 d2
+-
+-// let get_bit_intro ()
+-//   : Lemma (forall (#n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
+-//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
+-//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth)))
+-//   = introduce forall (n: inttype) (x: int_t n) (nth: usize {v nth < bits n}). 
+-//              get_bit #n x nth == (  if v x >= 0 then get_bit_nat (v x) (v nth)
+-//                                 else get_bit_nat (pow2 (bits n) + v x) (v nth))
+-//     with get_bit_intro #n x nth
+-
+-#push-options "--fuel 0 --ifuel 0 --z3rlimit 80"
+-/// Rewrite a `bit_vec_of_int_t_array (Seq.slice arr ...)` into a `bit_vec_sub ...`
+-let int_t_seq_slice_to_bv_sub_lemma #t #n 
+-  (arr: t_Array (int_t t) n)
+-  (start: nat) (len: usize {start + v len <= v n})
+-  (d: num_bits t) 
+-  : Lemma ( bit_vec_of_int_t_array (Seq.slice arr start (start + v len) <: t_Array _ len) d
+-     `bit_vec_equal` bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))
+-   [SMTPat (bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d))]
+-  = let bv1 = bit_vec_of_int_t_array #_ #len (Seq.slice arr start (start + v len)) d in
+-    let bv2 = bit_vec_sub (bit_vec_of_int_t_array arr d) (start * d) (v len * d) in
+-    introduce forall i. bv1 i == bv2 i 
+-    with ( Seq.lemma_index_slice arr start (start + v len) (i / d);
+-           Math.Lemmas.lemma_div_plus i start d;
+-           Math.Lemmas.lemma_mod_plus i start d);
+-    bit_vec_equal_intro bv1 bv2
+-
+-#push-options "--split_queries always"
+-let int_t_eq_seq_slice_bv_sub_lemma #t #n1 #n2
+-  (arr1: t_Array (int_t t) n1) (arr2: t_Array (int_t t) n2)  (d: num_bits t)
+-  (start1 start2: nat) (len: nat {start1 + len <= v n1 /\ start2 + len <= v n2})
+-  : Lemma (requires Seq.slice arr1 start1 (start1 + len) == Seq.slice arr2 start2 (start2 + len))
+-          (ensures  bit_vec_equal
+-                       (bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d))
+-                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))
+-          [SMTPat ((bit_vec_sub (bit_vec_of_int_t_array arr1 d) (start1 * d) (len * d)) ==
+-                       (bit_vec_sub (bit_vec_of_int_t_array arr2 d) (start2 * d) (len * d)))]
+-  = let len = sz len in
+-    int_t_seq_slice_to_bv_sub_lemma arr1 start1 len d;
+-    int_t_seq_slice_to_bv_sub_lemma arr2 start2 len d;
+-    // bit_vec_equal_elim_principle ();
+-    bit_vec_equal_intro_principle ()
+-#pop-options
+-
+-let bit_vec_equal_extend #n1 #n2
+-  (bv1: bit_vec n1) (bv2: bit_vec n2) (start1 start2: nat)
+-  (len1: nat)
+-  (len2: nat { start1 + len1 + len2 <= n1 /\ start2 + len1 + len2 <= n2})
+-  : Lemma 
+-    (requires 
+-       bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1
+-     /\ bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)
+-    (ensures bit_vec_sub bv1 start1 (len1+len2) == bit_vec_sub bv2 start2 (len1+len2))
+-    // [SMTPat (bit_vec_sub bv1 start1 len1 == bit_vec_sub bv2 start2 len1);
+-    //  SMTPat ()
+-    // ]
+-     // SMTPat (bit_vec_sub bv1 (start1 + len1) len2 == bit_vec_sub bv2 (start2 + len1) len2)]
+-  = let left1 = bit_vec_sub bv1 start1 len1 in
+-    let left2 = bit_vec_sub bv2 start2 len1 in
+-    let right1 = bit_vec_sub bv1 (start1 + len1) len2 in
+-    let right2 = bit_vec_sub bv2 (start2 + len1) len2 in
+-    // ()
+-    // bit_vec_equal_elim left1  left2 ;
+-    // bit_vec_equal_elim right1 right2;
+-    let entire1 = bit_vec_sub bv1 start1 (len1 + len2) in
+-    let entire2 = bit_vec_sub bv2 start2 (len1 + len2) in
+-    assert (forall (i:nat). i < len1 ==> left1 i == left2 i);
+-    assert (forall (i:nat). i < len2 ==> right1 i == right2 i);
+-    introduce forall (i:nat). i < len1 + len2 ==> entire1 i == entire2 i
+-    with introduce i < len1 + len2 ==> entire1 i == entire2 i
+-         with _. if i < len1 then assert (left1 i == left2 i)
+-                             else assert (entire1 i == right1 (i - len1));
+-    bit_vec_equal_intro entire1 entire2
+-#pop-options
+-
+-// let bit_vec_equal_trans (#n: nat) (bv1 bv2 bv3: bit_vec n)
+-//   : Lemma (requires bv1 `bit_vec_equal` bv2 /\ bv2 `bit_vec_equal` bv3)
+-//           (ensures  bv1 `bit_vec_equal` bv3)
+-//   = bit_vec_equal_elim_principle ();
+-//     bit_vec_equal_intro_principle ()
+-
+-(*
+-let int_arr_bitwise_eq_range
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+-       (d2: num_bits t2)
+-       (offset1 offset2: nat)
+-       (bits: nat {
+-           offset1 + bits <= v n1 * d1
+-         /\ offset2 + bits <= v n2 * d2
+-       })
+-     = bit_vec_equal #bits (fun i -> bit_vec_of_int_t_array arr1 d1 (i + offset1))
+-     = forall (k: nat). k < bits ==>
+-          bit_vec_of_int_t_array arr1 d1 (offset1 + k) 
+-       == bit_vec_of_int_t_array arr2 d2 (offset2 + k)
+-
+-let int_arr_bitwise_eq_range_comm
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+-       (d2: num_bits t2)
+-       (offset1 offset2: nat)
+-       (bits: nat {
+-           offset1 + bits <= v n1 * d1
+-         /\ offset2 + bits <= v n2 * d2
+-       })
+-    : Lemma (requires int_arr_bitwise_eq_range arr1 d1 arr2 d2 offset1 offset2 bits)
+-            (ensures int_arr_bitwise_eq_range arr2 d2 arr1 d1 offset2 offset1 bits)
+-    = ()
+-
+-// kill that function in favor of range
+-let int_arr_bitwise_eq_up_to
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+-       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-       (max: nat {max <= v n1 * d1})
+-     
+-     = forall i. i < max
+-       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+-
+-let int_arr_bitwise_eq_
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+-       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-     = int_arr_bitwise_eq_up_to arr1 d1 arr2 d2 (v n1 * d1)
+-
+-// move to fsti
+-let bit_vec_equal #n (bv1 bv2: bit_vec n)
+-  = forall i. i < n ==> bv1 i == bv2 i
+-
+-let int_arr_bitwise_eq
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+-       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-     = forall i. i < v n1 * d1
+-       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+-
+-let int_arr_bitwise_eq_range_transitivity
+-       #t1 #t2 #t3 #n1 #n2 #n3
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement2 x}) n2)
+-       (d2: num_bits t2)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement3: int_t t3 -> Type0)
+-       (arr3: t_Array (x: int_t t3 {refinement3 x}) n3)
+-       (d3: num_bits t3)
+-       (offset1 offset2 offset3: nat)
+-       (bits: nat {
+-           offset1 + bits <= v n1 * d1
+-         /\ offset2 + bits <= v n2 * d2
+-         /\ offset3 + bits <= v n3 * d3
+-       })
+-   : Lemma 
+-     (requires int_arr_bitwise_eq_range #t1 #t2 #n1 #n2 arr1 d1 arr2 d2 offset1 offset2 bits
+-             /\ int_arr_bitwise_eq_range #t2 #t3 #n2 #n3 arr2 d2 arr3 d3 offset2 offset3 bits)
+-     (ensures  int_arr_bitwise_eq_range #t1 #t3 #n1 #n3 arr1 d1 arr3 d3 offset1 offset3 bits)
+-   = ()
+-
+-
+-let int_arr_bitwise_eq_range_intro
+-       #t1 #t2 #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t1 -> Type0)
+-       (arr1: t_Array (x: int_t t1 {refinement1 x}) n1)
+-       (d1: num_bits t1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t2 -> Type0)
+-       (arr2: t_Array (x: int_t t2 {refinement x}) n2)
+-       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
+-   : Lemma 
+-     (requires int_arr_bitwise_eq arr1 d1 arr2 d2)
+-     (ensures int_arr_bitwise_eq_range arr1 d1 arr2 d2 0 0 (v n1 * d1))
+-   = admit ()
+-
+-let int_arr_bitwise_eq_range_intro_eq_slice
+-       #t #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement: int_t t -> Type0)
+-       (arr1: t_Array (x: int_t t {refinement x}) n1)
+-       (arr2: t_Array (x: int_t t {refinement x}) n2)
+-       (d: num_bits t)
+-       (offset1 offset2: nat)
+-       (n: nat {offset1 + n < v n1 /\ offset2 + n < v n2})
+-       (bits: nat {
+-           offset1 + bits <= v n1 * d
+-         /\ offset2 + bits <= v n2 * d
+-         /\ bits <= n * d
+-       })
+-   : Lemma (requires Seq.slice arr1 offset1 (offset1 + n) == Seq.slice arr2 offset2 (offset2 + n))
+-           (ensures int_arr_bitwise_eq_range arr1 d arr2 d offset1 offset2 bits)
+- = admit ()
+- 
+-let int_arr_bitwise_eq_range_intro_eq
+-       #t #n1 #n2
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement1: int_t t -> Type0)
+-       (arr1: t_Array (x: int_t t {refinement1 x}) n1)
+-       (#[FStar.Tactics.exact (`(fun _ -> True))]refinement2: int_t t -> Type0)
+-       (arr2: t_Array (x: int_t t {refinement2 x}) n2)
+-       (d: num_bits t)
+-       (n_offset1 n_offset2: nat)
+-       (n: nat {n_offset1 + n <= v n1 /\ n_offset2 + n <= v n2})
+-       // (offset1 offset2: nat)
+-       (bits: nat {
+-           n_offset1 * d + bits <= v n1 * d
+-         /\ n_offset2 * d + bits <= v n2 * d
+-         /\ bits <= n * d
+-       })
+-   : Lemma (requires forall (i: nat). i < n ==> Seq.index arr1 (i + n_offset1) == Seq.index arr2 (i + n_offset2))
+-           (ensures int_arr_bitwise_eq_range arr1 d arr2 d (n_offset1 * d) (n_offset2 * d) bits)
+- = admit ()
+-*)
 diff -ruN extraction-edited/Libcrux.Digest.fsti extraction-secret-independent/Libcrux.Digest.fsti
---- extraction-edited/Libcrux.Digest.fsti	2024-02-06 13:56:02.959572122 +0100
-+++ extraction-secret-independent/Libcrux.Digest.fsti	2024-02-06 13:56:03.021571745 +0100
+--- extraction-edited/Libcrux.Digest.fsti	2024-02-20 10:46:13.890092375 +0100
++++ extraction-secret-independent/Libcrux.Digest.fsti	2024-02-20 10:46:13.916091852 +0100
 @@ -1,31 +1,41 @@
  module Libcrux.Digest
  #set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -71,9 +385,9 @@ diff -ruN extraction-edited/Libcrux.Digest.fsti extraction-secret-independent/Li
 +
 +val shake256 (v_LEN: usize) (data: t_Slice u8) : t_Array u8 v_LEN
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fst
---- extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-06 13:56:02.969572061 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-06 13:56:03.033571672 +0100
-@@ -1,356 +1,81 @@
+--- extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-20 10:46:13.874092697 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fst	2024-02-20 10:46:13.944091288 +0100
+@@ -1,364 +1,81 @@
  module Libcrux.Kem.Kyber.Arithmetic
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -115,7 +429,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-i
 -let cast_i32_b #b1 #b2 x =
 -  x <: i32_b b2 
 -
--#push-options "--ifuel 0 --z3rlimit 150"
+-#push-options "--ifuel 0 --z3rlimit 250"
 -let shr_i32_b #b #t x y =
 -  let r = (x <: i32) >>! y in
 -  assert (v r == v x / pow2 (v y));
@@ -155,8 +469,16 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-i
 -        r <: i32_b (nat_div_ceil b (pow2 (v y))))
 -#pop-options
 -
--let v_BARRETT_R: i64 = 1L <<! v_BARRETT_SHIFT
--let v_MONTGOMERY_R: i32 = 1l <<! v_MONTGOMERY_SHIFT
+-let v_BARRETT_R: i64 =
+-  let result = 1L <<! v_BARRETT_SHIFT in
+-  assert_norm (result == mk_int (67108864 @%. Lib.IntTypes.S64));
+-  result
+-
+-let v_MONTGOMERY_R =
+-  let result: i32 = 1l <<! v_MONTGOMERY_SHIFT in
+-  assert_norm (result == mk_int (65536 @%. Lib.IntTypes.S32));
+-  result
+-
 -let v_MONTGOMERY_R_INV = 
 -  assert_norm((v 169l * pow2 16) % 3329 == 1);
 -  169l
@@ -349,7 +671,10 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-i
 -let derefine_matrix_b #v_K #b x =
 -  let r = createi v_K (fun i -> derefine_vector_b #v_K #b x.[i]) in
 -  r
--
++  cast (fe +! (Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS &. (fe >>! 31l <: i32) <: i32) <: i32)
++  <:
++  u16
+ 
 -let cast_poly_b #b1 #b2 x =
 -  let r = createi (sz 256) (fun i -> (x.f_coefficients.[i] <: i32_b b2)) in
 -  let res = {f_coefficients = r} in
@@ -362,10 +687,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-i
 -  eq_intro dx dr;
 -  assert(Seq.equal dx dr);
 -  res
-+  cast (fe +! (Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS &. (fe >>! 31l <: i32) <: i32) <: i32)
-+  <:
-+  u16
- 
+-
 -let cast_vector_b #v_K #b1 #b2 x =
 -  let r = createi v_K (fun i -> cast_poly_b #b1 #b2 x.[i]) in
 -  let dx = derefine_vector_b x in
@@ -469,8 +791,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fst extraction-secret-i
 -  
 - 
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-06 13:56:02.972572043 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-06 13:56:03.024571727 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-20 10:46:13.856093059 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Arithmetic.fsti	2024-02-20 10:46:13.936091449 +0100
 @@ -3,32 +3,10 @@
  open Core
  open FStar.Mul
@@ -504,7 +826,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-secret-
  let t_FieldElementTimesMontgomeryR = i32
  
  unfold
-@@ -36,213 +14,122 @@
+@@ -36,224 +14,122 @@
  
  let v_BARRETT_MULTIPLIER: i64 = 20159L
  
@@ -533,6 +855,11 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-secret-
 -      m_v + v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS
 -    else m_v
 -
+-let wf_fe_to_spec_fe (m: wfFieldElement): Spec.Kyber.field_element =
+-  if v m < 0
+-  then v m + v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS
+-  else v m
+-
 -let to_spec_fe (m:i32) : Spec.Kyber.field_element = 
 -    int_to_spec_fe (v m)
 -
@@ -699,6 +1026,12 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-secret-
 -
 -let op_String_Access #t #l (a:t_Array t l) (i:usize{v i < v l}) : t = a.[i]
 -
+-let wf_poly_to_spec_poly (re: wfPolynomialRingElement): Spec.Kyber.polynomial =
+-    let p = Spec.Kyber.map' (fun x -> wf_fe_to_spec_fe x <: nat) re.f_coefficients in
+-    introduce forall i. Seq.index p i < v Spec.Kyber.v_FIELD_MODULUS
+-    with assert (Seq.index p i == Seq.index p (v (sz i)));
+-    p
+-
 -let to_spec_poly (m:t_PolynomialRingElement) : (Spec.Kyber.polynomial) =
 -    let p = createi #nat (sz 256) (fun i -> to_spec_fe (m.f_coefficients.[i])) in
 -    assert (forall i. Seq.index p i = to_spec_fe (m.f_coefficients.[sz i]));
@@ -816,8 +1149,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Arithmetic.fsti extraction-secret-
 +                <:
 +                bool))
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Compress.fst extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fst
---- extraction-edited/Libcrux.Kem.Kyber.Compress.fst	2024-02-06 13:56:02.960572116 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fst	2024-02-06 13:56:02.989571939 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Compress.fst	2024-02-20 10:46:13.847093240 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fst	2024-02-20 10:46:13.925091671 +0100
 @@ -1,79 +1,39 @@
  module Libcrux.Kem.Kyber.Compress
 -#set-options "--fuel 0 --ifuel 0 --z3rlimit 200"
@@ -922,8 +1255,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Compress.fst extraction-secret-ind
 +  (Core.Ops.Arith.Neg.neg fe <: i32) &.
 +  ((Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS +! 1l <: i32) /! 2l <: i32)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Compress.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Compress.fsti	2024-02-06 13:56:02.970572055 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fsti	2024-02-06 13:56:02.994571909 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Compress.fsti	2024-02-20 10:46:13.886092456 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Compress.fsti	2024-02-20 10:46:13.946091248 +0100
 @@ -3,42 +3,44 @@
  open Core
  open FStar.Mul
@@ -995,8 +1328,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Compress.fsti extraction-secret-in
 -      (fun result -> v result >= 0 /\ v result < 3329)
 +    : Prims.Pure i32 (requires fe =. 0l || fe =. 1l) (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fst
---- extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-06 13:56:02.956572140 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-06 13:56:03.000571872 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-20 10:46:13.860092979 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fst	2024-02-20 10:46:13.908092013 +0100
 @@ -4,163 +4,61 @@
  open FStar.Mul
  
@@ -1185,8 +1518,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fst extraction-s
 -#pop-options
 +  out
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-06 13:56:02.955572146 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-06 13:56:02.993571915 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-20 10:46:13.876092657 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Constant_time_ops.fsti	2024-02-20 10:46:13.939091389 +0100
 @@ -20,26 +20,30 @@
  
  val compare_ciphertexts_in_constant_time (v_CIPHERTEXT_SIZE: usize) (lhs rhs: t_Slice u8)
@@ -1230,7 +1563,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Constant_time_ops.fsti extraction-
 +                result = rhs <: bool))
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Conversions.fst extraction-secret-independent/Libcrux.Kem.Kyber.Conversions.fst
 --- extraction-edited/Libcrux.Kem.Kyber.Conversions.fst	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Conversions.fst	2024-02-06 13:56:02.987571951 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Conversions.fst	2024-02-20 10:46:13.905092073 +0100
 @@ -0,0 +1,87 @@
 +module Libcrux.Kem.Kyber.Conversions
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -1321,8 +1654,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Conversions.fst extraction-secret-
 +  cast (fe +! ((fe >>! 15l <: i32) &. Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS <: i32)) <: u16
 \ Pas de fin de ligne à la fin du fichier
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.fst extraction-secret-independent/Libcrux.Kem.Kyber.fst
---- extraction-edited/Libcrux.Kem.Kyber.fst	2024-02-06 13:56:02.940572237 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.fst	2024-02-06 13:56:02.990571933 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.fst	2024-02-20 10:46:13.851093160 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.fst	2024-02-20 10:46:13.922091731 +0100
 @@ -1,29 +1,12 @@
  module Libcrux.Kem.Kyber
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
@@ -1601,8 +1934,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.fst extraction-secret-independent/
 -
 +    (Core.Convert.f_into public_key <: Libcrux.Kem.Kyber.Types.t_KyberPublicKey v_PUBLIC_KEY_SIZE)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.fsti extraction-secret-independent/Libcrux.Kem.Kyber.fsti
---- extraction-edited/Libcrux.Kem.Kyber.fsti	2024-02-06 13:56:02.962572103 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.fsti	2024-02-06 13:56:03.008571824 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.fsti	2024-02-20 10:46:13.888092415 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.fsti	2024-02-20 10:46:13.930091570 +0100
 @@ -4,90 +4,37 @@
  open FStar.Mul
  
@@ -1711,8 +2044,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.fsti extraction-secret-independent
 +      Prims.l_True
 +      (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fst
---- extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-06 13:56:02.965572085 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-06 13:56:03.005571842 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-20 10:46:13.858093019 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fst	2024-02-20 10:46:13.929091590 +0100
 @@ -3,28 +3,18 @@
  open Core
  open FStar.Mul
@@ -1780,8 +2113,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fst extraction-secr
 -  out 
 +  out
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-06 13:56:02.966572079 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-06 13:56:02.997571890 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-20 10:46:13.893092315 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Hash_functions.fsti	2024-02-20 10:46:13.906092053 +0100
 @@ -3,17 +3,12 @@
  open Core
  open FStar.Mul
@@ -1808,7 +2141,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Hash_functions.fsti extraction-sec
 +    : Prims.Pure (t_Array (t_Array u8 (sz 840)) v_K) Prims.l_True (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Helper.fst extraction-secret-independent/Libcrux.Kem.Kyber.Helper.fst
 --- extraction-edited/Libcrux.Kem.Kyber.Helper.fst	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Helper.fst	2024-02-06 13:56:03.030571690 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Helper.fst	2024-02-20 10:46:13.937091429 +0100
 @@ -0,0 +1,6 @@
 +module Libcrux.Kem.Kyber.Helper
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -1817,8 +2150,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Helper.fst extraction-secret-indep
 +
 +
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fst
---- extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-06 13:56:02.944572213 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-06 13:56:03.028571702 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-20 10:46:13.891092355 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fst	2024-02-20 10:46:13.933091510 +0100
 @@ -1,5 +1,5 @@
  module Libcrux.Kem.Kyber.Ind_cpa
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
@@ -2533,8 +2866,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fst extraction-secret-inde
 -  res
 - 
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-06 13:56:02.982571982 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-06 13:56:03.014571788 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-20 10:46:13.881092556 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Ind_cpa.fsti	2024-02-20 10:46:13.903092113 +0100
 @@ -1,151 +1,80 @@
  module Libcrux.Kem.Kyber.Ind_cpa
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
@@ -2736,8 +3069,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ind_cpa.fsti extraction-secret-ind
 +      Prims.l_True
 +      (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fst
---- extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-06 13:56:02.942572225 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-06 13:56:03.011571806 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-20 10:46:13.842093341 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fst	2024-02-20 10:46:13.914091892 +0100
 @@ -3,37 +3,22 @@
  open Core
  open FStar.Mul
@@ -2786,8 +3119,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fst extraction-secret-in
      (sz 3168)
      (sz 1568)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fsti	2024-02-06 13:56:02.979572000 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fsti	2024-02-06 13:56:03.009571818 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fsti	2024-02-20 10:46:13.844093301 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber1024.fsti	2024-02-20 10:46:13.926091651 +0100
 @@ -63,32 +63,27 @@
    Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE +! v_CPA_PKE_CIPHERTEXT_SIZE_1024_
  
@@ -2833,8 +3166,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber1024.fsti extraction-secret-i
        Prims.l_True
        (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fst
---- extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-06 13:56:02.948572189 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-06 13:56:03.003571854 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-20 10:46:13.863092918 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fst	2024-02-20 10:46:13.949091188 +0100
 @@ -3,37 +3,22 @@
  open Core
  open FStar.Mul
@@ -2883,8 +3216,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber512.fst extraction-secret-ind
      (sz 1632)
      (sz 800)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber512.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Kyber512.fsti	2024-02-06 13:56:02.946572201 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fsti	2024-02-06 13:56:03.012571799 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber512.fsti	2024-02-20 10:46:13.839093401 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber512.fsti	2024-02-20 10:46:13.912091932 +0100
 @@ -63,32 +63,27 @@
    Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE +! v_CPA_PKE_CIPHERTEXT_SIZE_512_
  
@@ -2930,8 +3263,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber512.fsti extraction-secret-in
        Prims.l_True
        (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fst
---- extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-06 13:56:02.938572249 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-06 13:56:03.001571866 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-20 10:46:13.861092959 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fst	2024-02-20 10:46:13.943091308 +0100
 @@ -3,37 +3,22 @@
  open Core
  open FStar.Mul
@@ -2980,8 +3313,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber768.fst extraction-secret-ind
      (sz 2400)
      (sz 1184)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-06 13:56:02.953572158 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-06 13:56:03.017571769 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-20 10:46:13.850093180 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Kyber768.fsti	2024-02-20 10:46:13.918091812 +0100
 @@ -63,33 +63,27 @@
    Libcrux.Kem.Kyber.Constants.v_SHARED_SECRET_SIZE +! v_CPA_PKE_CIPHERTEXT_SIZE_768_
  
@@ -3030,8 +3363,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Kyber768.fsti extraction-secret-in
 -      (ensures (fun kp -> (kp.f_sk.f_value,kp.f_pk.f_value) == Spec.Kyber.kyber768_generate_keypair randomness))
 +      (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Matrix.fst extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fst
---- extraction-edited/Libcrux.Kem.Kyber.Matrix.fst	2024-02-06 13:56:02.976572018 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fst	2024-02-06 13:56:03.025571721 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Matrix.fst	2024-02-20 10:46:13.897092234 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fst	2024-02-20 10:46:13.921091751 +0100
 @@ -3,418 +3,432 @@
  open Core
  open FStar.Mul
@@ -3840,8 +4173,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Matrix.fst extraction-secret-indep
 -  admit(); //P-F
    v_A_transpose
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-06 13:56:02.963572097 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-06 13:56:03.015571781 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-20 10:46:13.880092576 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Matrix.fsti	2024-02-20 10:46:13.940091369 +0100
 @@ -3,71 +3,39 @@
  open Core
  open FStar.Mul
@@ -3944,8 +4277,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Matrix.fsti extraction-secret-inde
 +      Prims.l_True
 +      (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ntt.fst extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fst
---- extraction-edited/Libcrux.Kem.Kyber.Ntt.fst	2024-02-06 13:56:02.941572231 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fst	2024-02-06 13:56:02.998571884 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Ntt.fst	2024-02-20 10:46:13.855093079 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fst	2024-02-20 10:46:13.928091610 +0100
 @@ -1,130 +1,56 @@
  module Libcrux.Kem.Kyber.Ntt
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
@@ -4876,8 +5209,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ntt.fst extraction-secret-independ
 -#pop-options
 +  re
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-06 13:56:02.945572207 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-06 13:56:03.031571684 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-20 10:46:13.838093421 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Ntt.fsti	2024-02-20 10:46:13.947091228 +0100
 @@ -2,80 +2,224 @@
  #set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
  open Core
@@ -5171,8 +5504,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Ntt.fsti extraction-secret-indepen
 +                <:
 +                bool))
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Sampling.fst extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fst
---- extraction-edited/Libcrux.Kem.Kyber.Sampling.fst	2024-02-06 13:56:02.980571994 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fst	2024-02-06 13:56:03.020571751 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Sampling.fst	2024-02-20 10:46:13.887092436 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fst	2024-02-20 10:46:13.902092134 +0100
 @@ -3,34 +3,27 @@
  open Core
  open FStar.Mul
@@ -5609,8 +5942,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Sampling.fst extraction-secret-ind
 -#pop-options
 +  out
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-06 13:56:02.983571976 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-06 13:56:03.007571830 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-20 10:46:13.895092274 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Sampling.fsti	2024-02-20 10:46:13.935091469 +0100
 @@ -3,37 +3,77 @@
  open Core
  open FStar.Mul
@@ -5711,9 +6044,9 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Sampling.fsti extraction-secret-in
 +      Prims.l_True
 +      (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fst
---- extraction-edited/Libcrux.Kem.Kyber.Serialize.fst	2024-02-06 13:56:02.952572164 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fst	2024-02-06 13:56:03.023571733 +0100
-@@ -1,14 +1,8 @@
+--- extraction-edited/Libcrux.Kem.Kyber.Serialize.fst	2024-02-20 10:46:13.845093281 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fst	2024-02-20 10:46:13.919091791 +0100
+@@ -1,15 +1,8 @@
  module Libcrux.Kem.Kyber.Serialize
 -#set-options "--fuel 0 --ifuel 0 --z3rlimit 50 --retry 3"
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
@@ -5723,15 +6056,18 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
 -open Libcrux.Kem.Kyber.Arithmetic
 -
 -open MkSeq
+-open BitVecEq
 -
--#push-options "--z3rlimit 80"
+-#push-options "--z3rlimit 480  --split_queries always"
 -[@@"opaque_to_smt"]
  let compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32) =
    let coef1:u8 = cast (coefficient1 &. 255l <: i32) <: u8 in
    let coef2:u8 =
-@@ -25,12 +19,11 @@
+@@ -25,14 +18,12 @@
+     (cast ((coefficient3 >>! 4l <: i32) &. 63l <: i32) <: u8)
    in
    let coef5:u8 = cast ((coefficient4 >>! 2l <: i32) &. 255l <: i32) <: u8 in
+-  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 -#pop-options
  
@@ -5745,7 +6081,11 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    let coef1:u8 = cast (coefficient1 <: i32) <: u8 in
    let coef2:u8 =
      ((cast (coefficient2 &. 31l <: i32) <: u8) <<! 3l <: u8) |.
-@@ -66,27 +59,21 @@
+@@ -65,32 +56,24 @@
+     (cast (coefficient7 >>! 6l <: i32) <: u8)
+   in
+   let coef11:u8 = cast (coefficient8 >>! 3l <: i32) <: u8 in
+-  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5, coef6, coef7, coef8, coef9, coef10, coef11
    <:
    (u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8)
@@ -5763,11 +6103,12 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
      u8
    in
    let coef3:u8 = cast ((coefficient2 >>! 4l <: u16) &. 255us <: u16) <: u8 in
+-  bit_vec_equal_intro_principle ();
 -  coef1, coef2, coef3 <: (u8 & u8 & u8) 
 -#pop-options
 +  coef1, coef2, coef3 <: (u8 & u8 & u8)
  
--#push-options "--z3rlimit 60 --split_queries always"
+-#push-options "--z3rlimit 160 --split_queries always"
 -[@@"opaque_to_smt"]
  let compress_coefficients_5_
 -      coefficient2 coefficient1 coefficient4 coefficient3 coefficient5 coefficient7 coefficient6 coefficient8
@@ -5778,9 +6119,11 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    let coef1:u8 = ((coefficient2 &. 7uy <: u8) <<! 5l <: u8) |. coefficient1 in
    let coef2:u8 =
      (((coefficient4 &. 1uy <: u8) <<! 7l <: u8) |. (coefficient3 <<! 2l <: u8) <: u8) |.
-@@ -99,26 +86,17 @@
+@@ -102,29 +85,18 @@
+     (coefficient5 >>! 4l <: u8)
    in
    let coef5:u8 = (coefficient8 <<! 3l <: u8) |. (coefficient7 >>! 2l <: u8) in
+-  bit_vec_equal_intro_principle ();
    coef1, coef2, coef3, coef4, coef5 <: (u8 & u8 & u8 & u8 & u8)
 -#pop-options
  
@@ -5796,6 +6139,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
 -  lemma_get_bit_bounded' coefficient2 10;
 -  lemma_get_bit_bounded' coefficient3 10;
 -  lemma_get_bit_bounded' coefficient4 10;
+-  bit_vec_equal_intro_principle ();
 -  coefficient1, coefficient2, coefficient3, coefficient4
 -#pop-options
 +  coefficient1, coefficient2, coefficient3, coefficient4 <: (i32 & i32 & i32 & i32)
@@ -5809,10 +6153,11 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    let coefficient1:i32 = ((byte2 &. 7l <: i32) <<! 8l <: i32) |. byte1 in
    let coefficient2:i32 = ((byte3 &. 63l <: i32) <<! 5l <: i32) |. (byte2 >>! 3l <: i32) in
    let coefficient3:i32 =
-@@ -131,14 +109,6 @@
+@@ -137,15 +109,6 @@
    in
    let coefficient7:i32 = ((byte10 &. 31l <: i32) <<! 6l <: i32) |. (byte9 >>! 2l <: i32) in
    let coefficient8:i32 = (byte11 <<! 3l <: i32) |. (byte10 >>! 5l <: i32) in
+-  bit_vec_equal_intro_principle ();
 -  lemma_get_bit_bounded' coefficient1 11;
 -  lemma_get_bit_bounded' coefficient2 11;
 -  lemma_get_bit_bounded' coefficient3 11;
@@ -5824,7 +6169,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    coefficient1,
    coefficient2,
    coefficient3,
-@@ -147,21 +117,15 @@
+@@ -154,22 +117,15 @@
    coefficient6,
    coefficient7,
    coefficient8
@@ -5840,6 +6185,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    let coefficient2:i32 = cast ((byte >>! 4l <: u8) &. 15uy <: u8) <: i32 in
 -  lemma_get_bit_bounded' coefficient1 4;
 -  lemma_get_bit_bounded' coefficient2 4;
+-  bit_vec_equal_intro_principle ();
 -  coefficient1, coefficient2
 -#pop-options
 -
@@ -5852,10 +6198,11 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    let coefficient1:i32 = byte1 &. 31l in
    let coefficient2:i32 = ((byte2 &. 3l <: i32) <<! 3l <: i32) |. (byte1 >>! 5l <: i32) in
    let coefficient3:i32 = (byte2 >>! 2l <: i32) &. 31l in
-@@ -170,14 +134,6 @@
+@@ -178,15 +134,6 @@
    let coefficient6:i32 = (byte4 >>! 1l <: i32) &. 31l in
    let coefficient7:i32 = ((byte5 &. 7l <: i32) <<! 2l <: i32) |. (byte4 >>! 6l <: i32) in
    let coefficient8:i32 = byte5 >>! 3l in
+-  bit_vec_equal_intro_principle ();
 -  lemma_get_bit_bounded' coefficient1 5;
 -  lemma_get_bit_bounded' coefficient2 5;
 -  lemma_get_bit_bounded' coefficient3 5;
@@ -5867,7 +6214,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    coefficient1,
    coefficient2,
    coefficient3,
-@@ -186,54 +142,31 @@
+@@ -195,54 +142,31 @@
    coefficient6,
    coefficient7,
    coefficient8
@@ -5941,7 +6288,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let coefficient1:i32 =
              Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 10uy
                (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32
-@@ -293,96 +226,79 @@
+@@ -302,96 +226,79 @@
            serialized)
    in
    serialized
@@ -6062,7 +6409,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 11uy
                (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 7 ] <: i32
                    )
-@@ -408,8 +324,6 @@
+@@ -417,8 +324,6 @@
                coefficient7
                coefficient8
            in
@@ -6071,7 +6418,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let serialized:t_Array u8 v_OUT_LEN =
              Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
                (sz 11 *! i <: usize)
-@@ -468,20 +382,29 @@
+@@ -477,20 +382,29 @@
            serialized)
    in
    serialized
@@ -6109,7 +6456,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let coefficient1:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 4uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ]
-@@ -516,20 +439,27 @@
+@@ -525,20 +439,27 @@
    serialized
  
  let compress_then_serialize_5_
@@ -6146,7 +6493,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let coefficient1:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 5uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ]
-@@ -614,14 +544,6 @@
+@@ -623,14 +544,6 @@
              <:
              u8
            in
@@ -6161,7 +6508,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let coefficient8:u8 =
              cast (Libcrux.Kem.Kyber.Compress.compress_ciphertext_coefficient 5uy
                    (Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 7 ]
-@@ -644,8 +566,6 @@
+@@ -653,8 +566,6 @@
                coefficient6
                coefficient8
            in
@@ -6170,7 +6517,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let serialized:t_Array u8 v_OUT_LEN =
              Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
                (sz 5 *! i <: usize)
-@@ -675,24 +595,35 @@
+@@ -684,24 +595,35 @@
    in
    serialized
  
@@ -6216,7 +6563,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
                  let coefficient:u16 =
                    Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative coefficient
                  in
-@@ -705,36 +636,28 @@
+@@ -714,36 +636,28 @@
            <:
            t_Array u8 (sz 32))
    in
@@ -6264,7 +6611,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    | 4ul -> compress_then_serialize_4_ v_OUT_LEN re
    | 5ul -> compress_then_serialize_5_ v_OUT_LEN re
    | _ ->
-@@ -742,49 +665,32 @@
+@@ -751,49 +665,32 @@
  
          <:
          Rust_primitives.Hax.t_Never)
@@ -6333,7 +6680,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -792,12 +698,14 @@
+@@ -801,12 +698,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 4 *! i <: usize)
@@ -6351,7 +6698,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -805,12 +713,14 @@
+@@ -814,12 +713,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 1 <: usize)
@@ -6369,7 +6716,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -818,12 +728,14 @@
+@@ -827,12 +728,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 2 <: usize)
@@ -6387,7 +6734,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -831,43 +743,44 @@
+@@ -840,43 +743,44 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 4 *! i <: usize) +! sz 3 <: usize)
@@ -6458,7 +6805,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let
            coefficient1,
            coefficient2,
-@@ -876,21 +789,11 @@
+@@ -885,21 +789,11 @@
            coefficient5,
            coefficient6,
            coefficient7,
@@ -6482,7 +6829,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -898,12 +801,14 @@
+@@ -907,12 +801,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 8 *! i <: usize)
@@ -6500,7 +6847,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -911,12 +816,14 @@
+@@ -920,12 +816,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 1 <: usize)
@@ -6518,7 +6865,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -924,12 +831,14 @@
+@@ -933,12 +831,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 2 <: usize)
@@ -6536,7 +6883,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -937,12 +846,14 @@
+@@ -946,12 +846,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 3 <: usize)
@@ -6554,7 +6901,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -950,12 +861,14 @@
+@@ -959,12 +861,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 4 <: usize)
@@ -6572,7 +6919,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -963,12 +876,14 @@
+@@ -972,12 +876,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 5 <: usize)
@@ -6590,7 +6937,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -976,12 +891,14 @@
+@@ -985,12 +891,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 6 <: usize)
@@ -6608,7 +6955,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -989,33 +906,35 @@
+@@ -998,33 +906,35 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 7 <: usize)
@@ -6659,7 +7006,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1028,9 +947,9 @@
+@@ -1037,9 +947,9 @@
                    i32)
              }
              <:
@@ -6671,7 +7018,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1043,32 +962,33 @@
+@@ -1052,32 +962,33 @@
                    i32)
              }
              <:
@@ -6722,7 +7069,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let
            coefficient1,
            coefficient2,
-@@ -1077,25 +997,10 @@
+@@ -1086,25 +997,10 @@
            coefficient5,
            coefficient6,
            coefficient7,
@@ -6750,7 +7097,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1103,12 +1008,14 @@
+@@ -1112,12 +1008,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 8 *! i <: usize)
@@ -6768,7 +7115,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1116,12 +1023,14 @@
+@@ -1125,12 +1023,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 1 <: usize)
@@ -6786,7 +7133,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1129,12 +1038,14 @@
+@@ -1138,12 +1038,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 2 <: usize)
@@ -6804,7 +7151,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1142,12 +1053,14 @@
+@@ -1151,12 +1053,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 3 <: usize)
@@ -6822,7 +7169,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1155,12 +1068,14 @@
+@@ -1164,12 +1068,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 4 <: usize)
@@ -6840,7 +7187,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1168,12 +1083,14 @@
+@@ -1177,12 +1083,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 5 <: usize)
@@ -6858,7 +7205,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1181,12 +1098,14 @@
+@@ -1190,12 +1098,14 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 6 <: usize)
@@ -6876,7 +7223,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1194,27 +1113,33 @@
+@@ -1203,27 +1113,33 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 8 *! i <: usize) +! sz 7 <: usize)
@@ -6920,7 +7267,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
            let i, byte:(usize & u8) = temp_1_ in
            Core.Iter.Traits.Iterator.f_fold (Core.Iter.Traits.Collect.f_into_iter ({
                      Core.Ops.Range.f_start = sz 0;
-@@ -1226,11 +1151,10 @@
+@@ -1235,11 +1151,10 @@
                Core.Ops.Range.t_Range usize)
              re
              (fun re j ->
@@ -6934,7 +7281,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
                    {
                      re with
                      Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1244,21 +1168,20 @@
+@@ -1253,21 +1168,20 @@
                          i32)
                    }
                    <:
@@ -6963,7 +7310,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    | 10ul -> deserialize_then_decompress_10_ serialized
    | 11ul -> deserialize_then_decompress_11_ serialized
    | _ ->
-@@ -1267,12 +1190,12 @@
+@@ -1276,12 +1190,12 @@
          <:
          Rust_primitives.Hax.t_Never)
  
@@ -6981,7 +7328,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    | 4ul -> deserialize_then_decompress_4_ serialized
    | 5ul -> deserialize_then_decompress_5_ serialized
    | _ ->
-@@ -1280,32 +1203,27 @@
+@@ -1289,32 +1203,27 @@
  
          <:
          Rust_primitives.Hax.t_Never)
@@ -7030,7 +7377,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1313,12 +1231,12 @@
+@@ -1322,12 +1231,12 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  (sz 2 *! i <: usize)
@@ -7046,7 +7393,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
              {
                re with
                Libcrux.Kem.Kyber.Arithmetic.f_coefficients
-@@ -1326,28 +1244,34 @@
+@@ -1335,89 +1244,58 @@
                Rust_primitives.Hax.Monomorphized_update_at.update_at_usize re
                    .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
                  ((sz 2 *! i <: usize) +! sz 1 <: usize)
@@ -7062,14 +7409,58 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
    re
 -#pop-options
  
--#push-options "--z3rlimit 100"
--let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement) =
-+let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement) =
-   let serialized:t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
-   let serialized:t_Array u8 (sz 384) =
--    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ #(fun _ _ -> True)
--      (Rust_primitives.unsize re.Libcrux.Kem.Kyber.Arithmetic.f_coefficients)
+-module A = Libcrux.Kem.Kyber.Arithmetic
+-
+-[@@"opaque_to_smt"]
+-let update3 #n (s: t_Array 't n) (offset: usize {v offset + 3 <= v n}) (i0 i1 i2: 't)
+-  : s': t_Array 't n { Seq.index s' (v offset +  0) == i0
+-                    /\ Seq.index s' (v offset +  1) == i1
+-                    /\ Seq.index s' (v offset +  2) == i2
+-                    /\ (forall i. (i < v offset \/ i >= v offset + 3) ==> Seq.index s' i == Seq.index s i) }
+- = let open Rust_primitives.Hax.Monomorphized_update_at in
+-    let s = update_at_usize s  offset           i0 in
+-    let s = update_at_usize s (offset +! sz  1) i1 in
+-    update_at_usize s (offset +! sz  2) i2
+-
+-let slice_map_lemma #t #u #n (f: t -> u) (arr: t_Array t n)
+-  (start: nat) (len: nat {start + len <= v n})
+-  : Lemma (  Seq.slice (Spec.Kyber.map' f arr) start (start + len)
+-          == Spec.Kyber.map' f (Seq.slice arr start (start + len))
+-          )
+-  = let f_arr = Spec.Kyber.map' f arr in
+-    let lhs = Seq.slice f_arr start (start + len) in
+-    let rhs = Spec.Kyber.map' f (Seq.slice arr start (start + len)) in
+-    introduce forall i. Seq.index lhs i == Seq.index rhs i
+-    with (
+-      Seq.lemma_index_slice f_arr start (start + len) i;
+-      Seq.lemma_index_slice   arr start (start + len) i;
+-      let sz_i_start, sz_i = sz (i + start), sz i in
+-      assert (Seq.index f_arr (v sz_i_start) == f (Seq.index arr (v (sz_i_start))));
+-      assert (Seq.index rhs (v sz_i) == f (Seq.index (Seq.slice arr start (start + len)) (v sz_i)))
+-    );
+-    assert (Seq.equal lhs rhs)
+-
+-#push-options "--z3rlimit 2800 --fuel 0 --ifuel 0 --retry 0 --split_queries no"
+-let serialize_uncompressed_ring_element re =
+-  let serialized: t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
+-  let max = v (sz 384) * 8 in
+-  assert (max == 256 * 12 /\ max == 384 * 8 /\ 128 * 2 * 12 == max);
+-  assert (128 == v (length re.f_coefficients /! (sz 2)));
+-  let serialized =
+-    Rust_primitives.Iterators.foldi_chunks_exact #_ #_ 
+-      #(fun serialized i -> 
+-        let i = v i in
+-        i <= 128 /\ (
+-            let limit = i * 2 * 12 in
+-            let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
+-            bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 limit
+-         == bit_vec_sub (bit_vec_of_int_t_array coefficients 12) 0 limit)
+-      )
+-      (re.A.f_coefficients <: t_Array _ (sz 256))
 -      (sz 2)
++let serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement) =
++  let serialized:t_Array u8 (sz 384) = Rust_primitives.Hax.repeat 0uy (sz 384) in
++  let serialized:t_Array u8 (sz 384) =
 +    Core.Iter.Traits.Iterator.f_fold (Core.Iter.Traits.Collect.f_into_iter (Core.Iter.Traits.Iterator.f_enumerate
 +              (Core.Slice.impl__chunks_exact (Rust_primitives.unsize re
 +                        .Libcrux.Kem.Kyber.Arithmetic.f_coefficients
@@ -7083,51 +7474,75 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fst extraction-secret-in
 +        <:
 +        Core.Iter.Adapters.Enumerate.t_Enumerate (Core.Slice.Iter.t_ChunksExact i32))
        serialized
-       (fun serialized temp_1_ ->
-           let serialized:t_Array u8 (sz 384) = serialized in
--          let i, coefficients:(usize & t_Array (Libcrux.Kem.Kyber.Arithmetic.i32_b (v Libcrux.Kem.Kyber.Constants.v_FIELD_MODULUS - 1)) (sz 2)) = temp_1_ in
--          assert (v i < 128);
+-      (fun serialized it -> let i, coefficients = it in
+-
+-    let coefficient1 = A.to_unsigned_representative (coefficients.[ sz 0 ] <: i32) in
+-    let coefficient2 = A.to_unsigned_representative (coefficients.[ sz 1 ] <: i32) in
+-    let (coef1, coef2, coef3) = compress_coefficients_3_ coefficient1 coefficient2 in
+-    let j = sz 3 *! i in
+-    let serialized' = update3 serialized j coef1 coef2 coef3 in
+-    assert (      Seq.slice serialized' (v j) (v j + 3)
+-      `Seq.equal` Seq.slice (create3 (coef1, coef2, coef3)) 0 3);
+-    bit_vec_equal_intro 
+-        (let coefficients: t_Array _ (sz 2) = Spec.Kyber.map' to_unsigned_representative coefficients in
+-         bit_vec_of_int_t_array coefficients 12)
+-        (retype (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) (3 * v i * 8) (3 * 8)));
+-    let full_coefficients: t_Array u16 (sz 256) = Spec.Kyber.map' to_unsigned_representative re.f_coefficients in
+-    slice_map_lemma #_ #u16 to_unsigned_representative re.f_coefficients (v i * 2) 2;
+-    bit_vec_equal_intro
+-        (bit_vec_sub (bit_vec_of_int_t_array serialized'   8) 0 (v i * 2 * 12))
+-        (bit_vec_sub (bit_vec_of_int_t_array serialized   8 ) 0 (v i * 2 * 12));
+-    bit_vec_equal_extend (bit_vec_of_int_t_array serialized' 8)
+-                         (bit_vec_of_int_t_array full_coefficients 12)
+-                         0 0 (v i * 2 * 12) (3 * 8);
+-    serialized' <: t_Array u8 (sz 384))
++      (fun serialized temp_1_ ->
++          let serialized:t_Array u8 (sz 384) = serialized in
 +          let i, coefficients:(usize & t_Slice i32) = temp_1_ in
-           let coefficient1:u16 =
-             Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32)
-           in
-@@ -1357,8 +1281,6 @@
-           let coef1, coef2, coef3:(u8 & u8 & u8) =
-             compress_coefficients_3_ coefficient1 coefficient2
-           in
--          assert_spinoff (3 * v i + 3 <= 384);
--          assert_spinoff (range (v (sz 3) * v i) usize_inttype);
-           let serialized:t_Array u8 (sz 384) =
-             Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
-               (sz 3 *! i <: usize)
-@@ -1377,4 +1299,3 @@
-           serialized)
++          let coefficient1:u16 =
++            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 0 ] <: i32)
++          in
++          let coefficient2:u16 =
++            Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative (coefficients.[ sz 1 ] <: i32)
++          in
++          let coef1, coef2, coef3:(u8 & u8 & u8) =
++            compress_coefficients_3_ coefficient1 coefficient2
++          in
++          let serialized:t_Array u8 (sz 384) =
++            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
++              (sz 3 *! i <: usize)
++              coef1
++          in
++          let serialized:t_Array u8 (sz 384) =
++            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
++              ((sz 3 *! i <: usize) +! sz 1 <: usize)
++              coef2
++          in
++          let serialized:t_Array u8 (sz 384) =
++            Rust_primitives.Hax.Monomorphized_update_at.update_at_usize serialized
++              ((sz 3 *! i <: usize) +! sz 2 <: usize)
++              coef3
++          in
++          serialized)
    in
    serialized
 -#pop-options
+-
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fsti
---- extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-06 13:56:02.958572128 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-06 13:56:02.996571897 +0100
-@@ -2,193 +2,118 @@
+--- extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-20 10:46:13.883092516 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Serialize.fsti	2024-02-20 10:46:13.910091973 +0100
+@@ -2,188 +2,118 @@
  #set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
  open Core
  open FStar.Mul
 -open MkSeq
--
--let int_arr_bitwise_eq
--       #t1 #t2 #n1 #n2
--       (arr1: t_Array (int_t t1) n1)
--       (d1: num_bits t1)
--       (arr2: t_Array (x: int_t t2) n2)
--       (d2: num_bits t2 {v n1 * d1 == v n2 * d2})
--     = forall i. i < v n1 * d1
--       ==> bit_vec_of_int_t_array arr1 d1 i == bit_vec_of_int_t_array arr2 d2 i
+-open BitVecEq
  
  val compress_coefficients_10_ (coefficient1 coefficient2 coefficient3 coefficient4: i32)
--    : Prims.Pure (u8 & u8 & u8 & u8 & u8) 
+-    : Prims.Pure (u8 & u8 & u8 & u8 & u8)
 -      (requires True)
 -      (ensures fun tuple ->
--         int_arr_bitwise_eq
+-         int_t_array_bitwise_eq'
 -                (create4 (coefficient1, coefficient2, coefficient3, coefficient4)) 10
 -                (create5 tuple) 8
 -      )
@@ -7140,7 +7555,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
      : Prims.Pure (u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8 & u8)
 -      (requires True)
 -      (ensures fun tuple ->
--         int_arr_bitwise_eq
+-         int_t_array_bitwise_eq'
 -                (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 11
 -                (create11 tuple) 8
 -      )
@@ -7149,7 +7564,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -    : Prims.Pure (u8 & u8 & u8)
 -    (requires True)
 -    (ensures fun tuple ->
--       int_arr_bitwise_eq
+-       int_t_array_bitwise_eq'
 -              (create2 (coefficient1, coefficient2)) 12
 -              (create3 tuple) 8
 -    )
@@ -7164,7 +7579,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -    : Prims.Pure (u8 & u8 & u8 & u8 & u8)
 -      (requires True)
 -      (ensures fun tuple ->
--         int_arr_bitwise_eq
+-         int_t_array_bitwise_eq'
 -                (create8 (coefficient1, coefficient2, coefficient3, coefficient4, coefficient5, coefficient6, coefficient7, coefficient8)) 5
 -                (create5 tuple) 8
 -      )
@@ -7174,7 +7589,7 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -    : Prims.Pure (i32_d 10 & i32_d 10 & i32_d 10 & i32_d 10)
 -      (requires True)
 -      (ensures fun (r1, r2, r3, r4) ->
--         int_arr_bitwise_eq
+-         int_t_array_bitwise_eq'
 -                (create5 (byte1, byte2, byte3, byte4, byte5)) 8
 -                (create4 #i32 (r1, r2, r3, r4)) 10
 -      )
@@ -7190,9 +7605,9 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -    : Prims.Pure (i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11 & i32_d 11)
 -      (requires True)
 -      (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
--         int_arr_bitwise_eq
--                (create11 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
--                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
+-         int_t_array_bitwise_eq'
+-                (create11 #i32 (byte1, byte2, byte3, byte4, byte5, byte6, byte7, byte8, byte9, byte10, byte11)) 8
+-                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 11
 -      )
 +      (byte2 byte1 byte3 byte5 byte4 byte6 byte7 byte9 byte8 byte10 byte11: i32)
 +    : Prims.Pure (i32 & i32 & i32 & i32 & i32 & i32 & i32 & i32)
@@ -7203,18 +7618,18 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -    : Prims.Pure (i32_d 4 & i32_d 4)
 -      (requires True)
 -      (ensures fun (r1, r2) ->
--         int_arr_bitwise_eq
+-         int_t_array_bitwise_eq'
 -                (create1 byte) 8
--                (create2 (r1, r2)) 4
+-                (create2 #i32 (r1, r2)) 4
 -      )
 -
 -val decompress_coefficients_5_ (byte1 byte2 byte3 byte4 byte5: int_t_d i32_inttype 8)
 -    : Prims.Pure (i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5 & i32_d 5)
 -      (requires True)
 -      (ensures fun (r1, r2, r3, r4, r5, r6, r7, r8) ->
--         int_arr_bitwise_eq
--                (create5 (byte1, byte2, byte3, byte4, byte5)) 8
--                (create8 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
+-         int_t_array_bitwise_eq'
+-                (create5 #i32 (byte1, byte2, byte3, byte4, byte5)) 8
+-                (create8 #i32 (r1, r2, r3, r4, r5, r6, r7, r8)) 5
 -      )
 +    : Prims.Pure (i32 & i32) Prims.l_True (fun _ -> Prims.l_True)
 +
@@ -7362,7 +7777,10 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 -val serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.wfPolynomialRingElement)
 -    : Pure (t_Array u8 (sz 384))
 -      (requires True)
--      (ensures (fun res -> True))
+-      (ensures (fun res ->
+-        let coefficients: t_Array _ (sz 256) = Spec.Kyber.map' Libcrux.Kem.Kyber.Arithmetic.to_unsigned_representative re.f_coefficients in
+-        int_t_array_bitwise_eq res 8 coefficients 12
+-      ))
 +    : Prims.Pure Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement
 +      Prims.l_True
 +      (fun _ -> Prims.l_True)
@@ -7370,8 +7788,8 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Serialize.fsti extraction-secret-i
 +val serialize_uncompressed_ring_element (re: Libcrux.Kem.Kyber.Arithmetic.t_PolynomialRingElement)
 +    : Prims.Pure (t_Array u8 (sz 384)) Prims.l_True (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/Libcrux.Kem.Kyber.Types.fst extraction-secret-independent/Libcrux.Kem.Kyber.Types.fst
---- extraction-edited/Libcrux.Kem.Kyber.Types.fst	2024-02-06 13:56:02.951572170 +0100
-+++ extraction-secret-independent/Libcrux.Kem.Kyber.Types.fst	2024-02-06 13:56:03.027571709 +0100
+--- extraction-edited/Libcrux.Kem.Kyber.Types.fst	2024-02-20 10:46:13.877092637 +0100
++++ extraction-secret-independent/Libcrux.Kem.Kyber.Types.fst	2024-02-20 10:46:13.915091872 +0100
 @@ -3,31 +3,31 @@
  open Core
  open FStar.Mul
@@ -7640,14 +8058,14 @@ diff -ruN extraction-edited/Libcrux.Kem.Kyber.Types.fst extraction-secret-indepe
      : t_Array u8 v_PRIVATE_KEY_SIZE = impl_12__as_slice v_PRIVATE_KEY_SIZE self.f_sk
 diff -ruN extraction-edited/Libcrux_platform.fsti extraction-secret-independent/Libcrux_platform.fsti
 --- extraction-edited/Libcrux_platform.fsti	1970-01-01 01:00:00.000000000 +0100
-+++ extraction-secret-independent/Libcrux_platform.fsti	2024-02-06 13:56:02.991571927 +0100
++++ extraction-secret-independent/Libcrux_platform.fsti	2024-02-20 10:46:13.923091711 +0100
 @@ -0,0 +1,4 @@
 +module Libcrux_platform
 +#set-options "--fuel 0 --ifuel 1 --z3rlimit 15"
 +
 +val simd256_support : unit -> bool
 diff -ruN extraction-edited/Libcrux_platform.Platform.fsti extraction-secret-independent/Libcrux_platform.Platform.fsti
---- extraction-edited/Libcrux_platform.Platform.fsti	2024-02-06 13:56:02.949572182 +0100
+--- extraction-edited/Libcrux_platform.Platform.fsti	2024-02-20 10:46:13.873092717 +0100
 +++ extraction-secret-independent/Libcrux_platform.Platform.fsti	1970-01-01 01:00:00.000000000 +0100
 @@ -1,20 +0,0 @@
 -module Libcrux_platform.Platform
@@ -7671,7 +8089,7 @@ diff -ruN extraction-edited/Libcrux_platform.Platform.fsti extraction-secret-ind
 -
 -val simd128_support: Prims.unit -> Prims.Pure bool Prims.l_True (fun _ -> Prims.l_True)
 diff -ruN extraction-edited/MkSeq.fst extraction-secret-independent/MkSeq.fst
---- extraction-edited/MkSeq.fst	2024-02-06 13:56:02.973572036 +0100
+--- extraction-edited/MkSeq.fst	2024-02-20 10:46:13.841093361 +0100
 +++ extraction-secret-independent/MkSeq.fst	1970-01-01 01:00:00.000000000 +0100
 @@ -1,91 +0,0 @@
 -module MkSeq
@@ -7766,9 +8184,9 @@ diff -ruN extraction-edited/MkSeq.fst extraction-secret-independent/MkSeq.fst
 -
 -%splice[] (init 13 (fun i -> create_gen_tac (i + 1)))
 diff -ruN extraction-edited/Spec.Kyber.fst extraction-secret-independent/Spec.Kyber.fst
---- extraction-edited/Spec.Kyber.fst	2024-02-06 13:56:02.967572073 +0100
+--- extraction-edited/Spec.Kyber.fst	2024-02-20 10:46:13.884092496 +0100
 +++ extraction-secret-independent/Spec.Kyber.fst	1970-01-01 01:00:00.000000000 +0100
-@@ -1,430 +0,0 @@
+@@ -1,433 +0,0 @@
 -module Spec.Kyber
 -#set-options "--fuel 0 --ifuel 1 --z3rlimit 100"
 -open Core
@@ -7947,12 +8365,15 @@ diff -ruN extraction-edited/Spec.Kyber.fst extraction-secret-independent/Spec.Ky
 -         (ensures fun f -> (forall i. bit_vec_of_int_t_array r 8 i == f i))
 -  = bit_vec_of_int_t_array r 8
 -
+-unfold let retype_bit_vector #a #b (#_:unit{a == b}) (x: a): b = x
+-
 -let byte_encode (d: dT) (coefficients: polynomial): t_Array u8 (sz (32 * d))
--  = bits_to_bytes #(sz (32 * d)) (bit_vec_of_nat_array coefficients d)
+-  = bits_to_bytes #(sz (32 * d))
+-       (retype_bit_vector (bit_vec_of_nat_array coefficients d))
 -
 -let byte_decode (d: dT) (coefficients: t_Array u8 (sz (32 * d))): polynomial
 -  = let bv = bit_vec_of_int_t_array coefficients 8 in
--    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d bv in
+-    let arr: t_Array nat (sz 256) = bit_vec_to_nat_array d (retype_bit_vector bv) in
 -    let p = map' (fun (x: nat) -> x % v v_FIELD_MODULUS <: nat) arr in
 -    introduce forall i. Seq.index p i < v v_FIELD_MODULUS
 -    with assert (Seq.index p i == Seq.index p (v (sz i)));