From a6fac876e4d879a6116ccbc76e85f697b77ba0c3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?F=C3=A9lix=20Fischer?= <felix91gr@users.noreply.github.com>
Date: Thu, 11 Sep 2025 21:44:35 -0300
Subject: [PATCH] Correct documentation of integer_division_remainder_used

1. Barrett Reduction isn't constant-time, so that was eliminated.
2. The "use instead" example didn't solve the timing attack, so
it was eliminated as well.
3. Added some context and recommendations for the user.
4. Added a timestamp, hoping that whoever reads this in the future
can make a more informed decision in case the docs become obsolete.
---
 .../src/integer_division_remainder_used.rs    | 27 ++++++++++++++-----
 1 file changed, 21 insertions(+), 6 deletions(-)

diff --git a/clippy_lints/src/integer_division_remainder_used.rs b/clippy_lints/src/integer_division_remainder_used.rs
index a1215491b48c..7f394ba6b234 100644
--- a/clippy_lints/src/integer_division_remainder_used.rs
+++ b/clippy_lints/src/integer_division_remainder_used.rs
@@ -12,16 +12,31 @@ declare_clippy_lint! {
     ///
     /// ### Why restrict this?
     /// In cryptographic contexts, division can result in timing sidechannel vulnerabilities,
-    /// and needs to be replaced with constant-time code instead (e.g. Barrett reduction).
+    /// and needs to be replaced with constant-time code instead.
+    ///
+    /// If within its capabilities, the compiler will [optimize away any constant-time implementation](https://eprint.iacr.org/2025/435)
+    /// of an algorithm. This can and does lead to unexpected non-constant execution times outside of
+    /// the user's agency.
+    ///
+    /// The solution to achieve constant-time operation is often to either implement
+    /// a constant-time algorithm in assembly code, or to delegate such operations to a well-known,
+    /// audited and / or certified cryptographic library.
     ///
     /// ### Example
     /// ```no_run
-    /// let my_div = 10 / 2;
-    /// ```
-    /// Use instead:
-    /// ```no_run
-    /// let my_div = 10 >> 1;
+    /// let _ = 10 / 2; // This will run faster because it's a division by a multiple of 2.
+    /// let _ = 10 / 3; // This will run slower than the above.
     /// ```
+    ///
+    /// ### Final Notes
+    ///
+    /// This lint was motivated by the [KyberSlash](https://kyberslash.cr.yp.to/) attack. Be safe out there.
+    ///
+    /// For more information regarding this lint and on how to mitigate division-based timing attacks,
+    /// please check the [last conversation concerning this lint](https://github.com/rust-lang/rust-clippy/pull/15661#issuecomment-3289549360).
+    ///
+    /// This documentation was last updated on September 2025. Bear this in mind if you read this in the
+    /// future, and double-check that this lint is up-to-date for your current security needs.
     #[clippy::version = "1.79.0"]
     pub INTEGER_DIVISION_REMAINDER_USED,
     restriction,