Barretenberg: src/barretenberg/numeric/uintx/uintx.test.cpp Source File

#include "./uintx.hpp"

#include "../random/engine.hpp"

#include "./uintx_impl.hpp"

#include "barretenberg/numeric/uint256/uint256.hpp"

#include <gtest/gtest.h>


using namespace bb;


// Explicit instantiation of barrett_reduction for the test-only 1024-bit modulus.

namespace bb::numeric {

constexpr uint512_t TEST_MODULUS(uint256_t{ "0x04689e957a1242c84a50189c6d96cadca602072d09eac1013b5458a2275d69b1" },

                                 uint256_t{ "0x0925c4b8763cbf9c599a6f7c0348d21cb00b85511637560626edfa5c34c6b38d" });

template std::pair<uint1024_t, uint1024_t> uintx<uint512_t>::barrett_reduction<TEST_MODULUS>() const;

} // namespace bb::numeric


namespace {

auto& engine = numeric::get_debug_randomness();

} // namespace


TEST(uintx, BarrettReduction512)

{

    uint512_t x = engine.get_random_uint512();


    static constexpr uint64_t modulus_0 = 0x3C208C16D87CFD47UL;

    static constexpr uint64_t modulus_1 = 0x97816a916871ca8dUL;

    static constexpr uint64_t modulus_2 = 0xb85045b68181585dUL;

    static constexpr uint64_t modulus_3 = 0x30644e72e131a029UL;

    constexpr uint256_t modulus(modulus_0, modulus_1, modulus_2, modulus_3);


    const auto [quotient_result, remainder_result] = x.barrett_reduction<modulus>();

    const auto [quotient_expected, remainder_expected] = x.divmod_base(uint512_t(modulus));

    EXPECT_EQ(quotient_result, quotient_expected);

    EXPECT_EQ(remainder_result, remainder_expected);

}


TEST(uintx, BarrettReduction1024)

{

    uint1024_t x = engine.get_random_uint1024();


    constexpr uint256_t modulus_lo{ "0x04689e957a1242c84a50189c6d96cadca602072d09eac1013b5458a2275d69b1" };

    constexpr uint256_t modulus_hi{ "0x0925c4b8763cbf9c599a6f7c0348d21cb00b85511637560626edfa5c34c6b38d" };

    constexpr uint512_t modulus{ modulus_lo, modulus_hi };


    const auto [quotient_result, remainder_result] = x.barrett_reduction<modulus>();

    const auto [quotient_expected, remainder_expected] = x.divmod_base(uint1024_t(modulus));

    EXPECT_EQ(quotient_result, quotient_expected);

    EXPECT_EQ(remainder_result, remainder_expected);

}


TEST(uintx, GetBit)

{

    constexpr uint256_t lo{ 0b0110011001110010011001100111001001100110011100100110011001110011,

                            0b1001011101101010101010100100101101101001001010010101110101010111,

                            0b0101010010010101111100001011011010101010110101110110110111010101,

                            0b0101011010101010100010001000101011010101010101010010000100000000 };


    constexpr uint256_t hi{ 0b0110011001110010011001100111001001100110011100100110011001110011,

                            0b1001011101101010101010100100101101101001001010010101110101010111,

                            0b0101010010010101111100001011011010101010110101110110110111010101,

                            0b0101011010101010100010001000101011010101010101010010000100000000 };


    constexpr uint1024_t a(uint512_t(lo, hi), uint512_t(lo, hi));

    uint1024_t res(0);

    for (size_t i = 0; i < 1024; ++i) {

        res += a.get_bit(i) ? (uint1024_t(1) << i) : 0;

    }


    EXPECT_EQ(a, res);

}


TEST(uintx, Mul)

{

    uint1024_t a = engine.get_random_uint1024();

    uint1024_t b = engine.get_random_uint1024();


    uint1024_t c = (a + b) * (a + b);

    uint1024_t d = (a * a) + (b * b) + (a * b) + (a * b);

    EXPECT_EQ(c, d);

}


TEST(uintx, DivAndMod)

{

    for (size_t i = 0; i < 256; ++i) {

        uint1024_t a = engine.get_random_uint1024();

        uint1024_t b = engine.get_random_uint1024();


        uint1024_t q = a / b;

        uint1024_t r = a % b;


        uint1024_t c = q * b + r;

        EXPECT_EQ(c, a);

    }


    uint1024_t b = engine.get_random_uint1024();

    uint1024_t a = 0;

    // Since we have an ASSERT in div_mod now we have to use EXPECT_DEATH

    // but we don't want to use it, so we skip the division by zero check


    // b = a;

    auto q = a / b;

    auto r = a % b;


    EXPECT_EQ(q, uint1024_t(0));

    EXPECT_EQ(r, uint1024_t(0));

}


// We should not be depending on ecc in numeric.


TEST(uintx, DISABLEDMulmod)

{

    /*

        fq a = fq::random_element();

        fq b = fq::random_element();

        // fq a_converted = a.from_montgomery_form();

        // fq b_converted = b.from_montgomery_form();

        uint256_t a_uint =

            uint256_t(a); // { a_converted.data[0], a_converted.data[1], a_converted.data[2], a_converted.data[3] };

        uint256_t b_uint =

            uint256_t(b); // { b_converted.data[0], b_converted.data[1], b_converted.data[2], b_converted.data[3] };

        uint256_t modulus_uint{ bb::Bn254FqParams::modulus_0,

                                Bn254FqParams::modulus_1,

                                Bn254FqParams::modulus_2,

                                Bn254FqParams::modulus_3 };

        uint1024_t a_uintx = uint1024_t(uint512_t(a_uint));

        uint1024_t b_uintx = uint1024_t(uint512_t(b_uint));

        uint1024_t modulus_uintx = uint1024_t(uint512_t(modulus_uint));


        const auto [quotient, remainder] = (a_uintx * b_uintx).divmod(modulus_uintx);


        // fq expected_a = a_converted.to_montgomery_form();

        // fq expected_b = b_converted.to_montgomery_form();

        fq expected = (a * b).from_montgomery_form();


        EXPECT_EQ(remainder.lo.lo.data[0], expected.data[0]);

        EXPECT_EQ(remainder.lo.lo.data[1], expected.data[1]);

        EXPECT_EQ(remainder.lo.lo.data[2], expected.data[2]);

        EXPECT_EQ(remainder.lo.lo.data[3], expected.data[3]);


        const auto rhs = (quotient * modulus_uintx) + remainder;

        const auto lhs = a_uintx * b_uintx;

        EXPECT_EQ(lhs, rhs);

    */

}


TEST(uintx, Sub)

{

    uint1024_t a = engine.get_random_uint1024();

    uint1024_t b = engine.get_random_uint1024();


    uint1024_t c = (a - b) * (a + b);

    uint1024_t d = (a * a) - (b * b);


    EXPECT_EQ(c, d);


    uint1024_t e = 0;

    e = e - 1;


    EXPECT_EQ(e.lo.lo.data[0], UINT64_MAX);

    EXPECT_EQ(e.lo.lo.data[1], UINT64_MAX);

    EXPECT_EQ(e.lo.lo.data[2], UINT64_MAX);

    EXPECT_EQ(e.lo.lo.data[3], UINT64_MAX);

    EXPECT_EQ(e.lo.hi.data[0], UINT64_MAX);

    EXPECT_EQ(e.lo.hi.data[1], UINT64_MAX);

    EXPECT_EQ(e.lo.hi.data[2], UINT64_MAX);

    EXPECT_EQ(e.lo.hi.data[3], UINT64_MAX);

    EXPECT_EQ(e.hi.lo.data[0], UINT64_MAX);

    EXPECT_EQ(e.hi.lo.data[1], UINT64_MAX);

    EXPECT_EQ(e.hi.lo.data[2], UINT64_MAX);

    EXPECT_EQ(e.hi.lo.data[3], UINT64_MAX);

    EXPECT_EQ(e.hi.hi.data[0], UINT64_MAX);

    EXPECT_EQ(e.hi.hi.data[1], UINT64_MAX);

    EXPECT_EQ(e.hi.hi.data[2], UINT64_MAX);

    EXPECT_EQ(e.hi.hi.data[3], UINT64_MAX);

}


TEST(uintx, And)

{

    uint1024_t a = engine.get_random_uint1024();

    uint1024_t b = engine.get_random_uint1024();


    uint1024_t c = a & b;


    EXPECT_EQ(c.lo, a.lo & b.lo);

    EXPECT_EQ(c.hi, a.hi & b.hi);

}


TEST(uintx, Or)

{

    uint1024_t a = engine.get_random_uint1024();

    uint1024_t b = engine.get_random_uint1024();


    uint1024_t c = a | b;


    EXPECT_EQ(c.lo, a.lo | b.lo);

    EXPECT_EQ(c.hi, a.hi | b.hi);

}


TEST(uintx, Xor)

{

    uint1024_t a = engine.get_random_uint1024();

    uint1024_t b = engine.get_random_uint1024();


    uint1024_t c = a ^ b;


    EXPECT_EQ(c.lo, a.lo ^ b.lo);

    EXPECT_EQ(c.hi, a.hi ^ b.hi);

}


TEST(uintx, BitNot)

{

    uint1024_t a = engine.get_random_uint1024();


    uint1024_t c = ~a;


    EXPECT_EQ(c.lo, ~a.lo);

    EXPECT_EQ(c.hi, ~a.hi);

}


TEST(uintx, LogicNot)

{

    uint1024_t a(1);


    bool b = !a;


    EXPECT_EQ(b, false);


    uint1024_t c(0);


    EXPECT_EQ(!c, true);

}


TEST(uintx, NotEqual)

{

    uint1024_t a(1);

    uint1024_t b(1);

    EXPECT_EQ(a != b, false);


    a = uint1024_t(0);

    EXPECT_EQ(a != b, true);

}


// We should not be depending on ecc in numeric.


TEST(uintx, DISABLEDInvmod)

{

    /*

    uint256_t prime_lo = prime_256;

    uint1024_t prime = uint1024_t(uint512_t(prime_lo));

    uint256_t target_lo = engine.get_random_uint256();

    uint1024_t target = uint1024_t(uint512_t(target_lo));

    uint256_t inverse = uint256_t(uint512_t(target.invmod(prime)));


    uint256_t expected = uint256_t(fr(target_lo).invert());

    EXPECT_EQ(inverse, expected);

    */

}


TEST(uintx, InvmodRegressionCheck)

{

    const std::array<uint8_t, 64> _a = { 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x28, 0x0D, 0x6A, 0x2B, 0x19, 0x52,

                                         0x2D, 0xF7, 0xAF, 0xC7, 0x95, 0x68, 0x22, 0xD7, 0xF2, 0x21, 0xA3, 0x00, 0x00,

                                         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,

                                         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,

                                         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };


    const std::array<uint8_t, 64> _b = { 0xFF, 0x00, 0xFF, 0xFF, 0x00, 0xFF, 0xFF, 0xFF, 0xFF, 0x5D, 0x32, 0xDA, 0x10,

                                         0x4F, 0x1D, 0xD6, 0xCA, 0x50, 0x56, 0x11, 0x18, 0x18, 0xC2, 0xD4, 0x6C, 0x70,

                                         0x60, 0xD9, 0xB8, 0xFA, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,

                                         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xE2, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,

                                         0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0x01, 0xFF, 0xFF, 0xFF, 0xFF };


    const std::array<uint8_t, 64> expected_result = {

        0x9F, 0x2F, 0xAA, 0x7B, 0xD7, 0x5A, 0x99, 0x56, 0x04, 0x68, 0x6C, 0x9D, 0xD8, 0x47, 0x6B, 0x52,

        0xF0, 0x10, 0xD2, 0xA8, 0x62, 0x96, 0x60, 0x68, 0xBE, 0x18, 0x21, 0xA1, 0xCA, 0x6F, 0x41, 0x9C,

        0x37, 0x42, 0x2F, 0xA3, 0x1B, 0x41, 0x7B, 0xAA, 0xEE, 0x6D, 0x9E, 0x03, 0x78, 0x71, 0xEF, 0xCF,

        0x90, 0x85, 0xEF, 0x17, 0x59, 0xC4, 0xEE, 0x24, 0x80, 0xDE, 0x7A, 0x58, 0xA5, 0x42, 0x8F, 0x97,

    };


    std::array<uint8_t, 64> _res;


    uint512_t a;

    uint512_t b;


    memcpy(a.lo.data, &_a[0], 32);

    memcpy(a.hi.data, &_a[0] + 32, 32);


    memcpy(b.lo.data, &_b[0], 32);

    memcpy(b.hi.data, &_b[0] + 32, 32);

    const auto res = a.invmod(b);

    memcpy(&_res[0], res.lo.data, 32);

    memcpy(&_res[0] + 32, res.hi.data, 32);


    EXPECT_EQ(memcmp(&_res[0], &expected_result[0], sizeof(expected_result)), 0);

}


TEST(uintx, DISABLEDRInv)

{

    /*

    uint512_t r{ 0, 1 };

    // -(1/q) mod r

    uint512_t q{ -prime_256, 0 };

    uint256_t q_inv = q.invmod(r).lo;

    uint64_t result = q_inv.data[0];

    EXPECT_EQ(result, Bn254FrParams::r_inv);

    */

}


TEST(uintx, Slice)

{

    // Construct a uint512_t with known lo and hi halves

    uint256_t lo_val(1, 2, 3, 4);

    uint256_t hi_val(5, 6, 7, 8);

    uint512_t val(lo_val, hi_val);


    // Slice the lower 256 bits

    uint512_t lower = val.slice(0, 256);

    EXPECT_EQ(lower.lo, lo_val);

    EXPECT_EQ(lower.hi, uint256_t(0));


    // Slice the upper 256 bits

    uint512_t upper = val.slice(256, 512);

    EXPECT_EQ(upper.lo, hi_val);

    EXPECT_EQ(upper.hi, uint256_t(0));


    // Slice a sub-limb range within lo

    uint512_t small_slice = val.slice(0, 64);

    EXPECT_EQ(static_cast<uint64_t>(small_slice), uint64_t(1));


    // Slice crossing the lo/hi boundary

    uint512_t cross_boundary = val.slice(128, 384);

    // Should get bits [128..256) from lo (limbs 2,3) and bits [256..384) from hi (limbs 0,1)

    uint512_t expected_cross(uint256_t(3, 4, 5, 6));

    EXPECT_EQ(cross_boundary, expected_cross);


    // Full-width slice should return the original value

    EXPECT_EQ(val.slice(0, 512), val);

}


TEST(uintx, BarrettReductionRegression)

{

    // Test specific modulus and self values that may cause issues

    constexpr uint256_t modulus{ "0xffffffff00000001000000000000000000000000ffffffffffffffffffffffff" };


    // Test case 1: self = 0xffffffff0000000000000000000000000000000000000000003a000000000000

    // This is a 256-bit value, so we need to construct it as a single uint256_t

    constexpr uint256_t self_value{ "0xffffffff0000000000000000000000000000000000000000003a000000000000" };

    uint512_t self(self_value);

    self = self << 256;

    const auto [quotient_result, remainder_result] = self.barrett_reduction<modulus>();

    const auto [quotient_expected, remainder_expected] = self.divmod_base(uint512_t(modulus));

    EXPECT_EQ(quotient_result, quotient_expected);

    EXPECT_EQ(remainder_result, remainder_expected);

}


bb::numeric::RNG::get_random_uint512
uint512_t get_random_uint512()
Definition engine.hpp:38

bb::numeric::RNG::get_random_uint1024
uint1024_t get_random_uint1024()
Definition engine.hpp:46

bb::numeric::uint256_t
Definition uint256.hpp:32

bb::numeric::uintx< uint256_t >

bb::numeric::uintx::slice
constexpr uintx slice(const uint64_t start, const uint64_t end) const
Definition uintx.hpp:81

bb::numeric::uintx::hi
base_uint hi
Definition uintx.hpp:272

bb::numeric::uintx::lo
base_uint lo
Definition uintx.hpp:271

bb::numeric::uintx::divmod_base
std::pair< uintx, uintx > divmod_base(const uintx &b) const
Definition uintx_impl.hpp:13

bb::numeric::uintx::barrett_reduction
std::pair< uintx, uintx > barrett_reduction() const

a
FF a
Definition field_gt.test.cpp:52

b
FF b
Definition field_gt.test.cpp:53

expected_result
bool expected_result
Definition field_gt.test.cpp:54

engine
numeric::RNG & engine
Definition eccvm_transcript.test.cpp:285

bb::numeric
Definition field2_declarations.hpp:12

bb::numeric::TEST_MODULUS
constexpr uint512_t TEST_MODULUS(uint256_t{ "0x04689e957a1242c84a50189c6d96cadca602072d09eac1013b5458a2275d69b1" }, uint256_t{ "0x0925c4b8763cbf9c599a6f7c0348d21cb00b85511637560626edfa5c34c6b38d" })

bb::numeric::uint512_t
uintx< uint256_t > uint512_t
Definition uintx.hpp:306

bb::numeric::get_debug_randomness
RNG & get_debug_randomness(bool reset, std::uint_fast64_t seed)
Definition engine.cpp:217

bb::numeric::uint1024_t
uintx< uint512_t > uint1024_t
Definition uintx.hpp:308

bb
Entry point for Barretenberg command-line interface.
Definition api.hpp:5

bb::TEST
TEST(BoomerangMegaCircuitBuilder, BasicCircuit)
Definition graph_description_megacircuitbuilder.test.cpp:22

std::get
constexpr decltype(auto) get(::tuplet::tuple< T... > &&t) noexcept
Definition tuple.hpp:13

bb::field::data
uint64_t data[4]
Definition field_declarations.hpp:232

uint256.hpp

uintx.hpp

uintx_impl.hpp