The existing correctness proof for the Jasmin compiler fails to cover non-termination and probabilistic computation—critical aspects in cryptographic implementations—thus hindering its trusted deployment in post-quantum cryptography. Method: We develop, for the first time within the Rocq proof framework, a formal verification framework preserving cryptographic security. We introduce Relational Hoare Logic (RHL) and integrate it with denotational semantics based on interaction trees to rigorously verify all 25 frontend compilation phases. Contribution/Results: We are the first to formally model and prove core cryptographic security properties—including IND-CCA—in a compiler verification setting. Moreover, we establish security equivalence preservation under both probabilistic and non-terminating executions. This work delivers the first end-to-end formal guarantee for efficient, verifiably secure implementations of post-quantum cryptographic algorithms.

Jasmin is a programming and verification framework for developing efficient, formally verified, cryptographic implementations. A main component of the framework is the Jasmin compiler, which empowers programmers to write efficient implementations of state-of-the-art cryptographic primitives, including post-quantum cryptographic standards. The Jasmin compiler is proven functionally correct in the Rocq prover. However, this functional correctness statement does not apply to nonterminating or probabilistic computations, which are essential features in cryptography. In this paper, we significantly enhance the guarantees of the compiler by showing, in the Rocq prover, that its front-end (25 out of 30 passes) preserves cryptographic security. To this end, we first define a Relational Hoare Logic tailored for compiler correctness proofs. We prove the soundness of our logic w.r.t. a new denotational semantics of Jasmin programs based on interaction trees. Secondly, we use our program logic to prove the functional correctness of the (unmodified) Jasmin compiler w.r.t. said semantics. Lastly, we formalize cryptographic security -- focusing on IND-CCA -- with interaction trees and prove that the Jasmin compiler preserves cryptographic security.