add gadgets to API surface, UInt32, UInt64, implement rot32 #1259
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ghtShift, and bitwise AND operations on UInt64 values using Gadgets module The Gadgets module provides implementations for bitwise XOR, NOT, rotate, leftShift, rightShift, and bitwise AND operations on UInt64 values. These operations are useful for performing bitwise operations on UInt64 values in a circuit. The following operations have been added: - `xor(x: UInt64)`: Performs a bitwise XOR operation between the current UInt64 value and the provided UInt64 value `x`. Returns a new UInt64 value representing the result of the XOR operation. - `not(checked = true)`: Performs a bitwise NOT operation on the current UInt64 value. If the `checked` parameter is set to `true`, the operation is implemented using the `Gadgets.xor` gadget with a second argument as an all one bitmask of the same length. If the `checked` parameter is set to `false`, the operation is implemented as a subtraction of the input from the all one bitmask. Returns a new UInt64 value representing the result of the NOT operation. - `rotate(direction: 'left' | 'right' = 'left')`: Performs a bitwise rotation operation on the current UInt64 value. The `direction` parameter determines the direction of the rotation, with `'left'` indicating a left rotation and `'right'` indicating a right rotation. Returns a new UInt64 value representing the result of the rotation operation. - `leftShift()`: Performs a bitwise left shift operation on the current UInt64 value. Returns a new UInt64 value representing the result of the left shift operation. - `rightShift()`: Performs a bitwise right shift operation on the current UInt64 value. Returns a new UInt64 value representing the result of the right shift operation. - `and(x: UInt64)`: Performs a bitwise AND operation between the current UInt64 value and the provided UInt64 value `x`. Returns a new UInt64 value representing the result of the AND operation. These operations provide additional functionality for working with UInt64 values in circuits.
…to 'bits' to improve clarity feat(int.ts): add documentation for the rotate, leftShift, rightShift, and and methods to improve code understanding and usage
… 'from' method instead of direct instantiation to improve clarity and consistency feat(int.ts): add support for bitwise XOR operation on UInt32 elements to perform XOR operation between two UInt32 elements feat(int.ts): add support for bitwise NOT operation on UInt32 elements to perform bitwise negation of a UInt32 element feat(int.ts): add support for rotation operation on UInt32 elements to perform left and right rotation of bits in a UInt32 element feat(int.ts): add support for left shift operation on UInt32 elements to perform left shift of bits in a UInt32 element feat(int.ts): add support for right shift operation on UInt32 elements to perform right shift of bits in a UInt32 element feat(int.ts): add support for bitwise AND operation on UInt32 elements to perform AND operation between two UInt32 elements
Trivo25
commented
Nov 22, 2023
Trivo25
commented
Nov 22, 2023
Comment on lines
+887
to
891
| let xMinusYFits = Gadgets.isInRangeN(UInt32.NUM_BITS, xMinusY); | ||
| let yMinusXFits = Gadgets.isInRangeN(UInt32.NUM_BITS, yMinusX); | ||
| xMinusYFits.or(yMinusXFits).assertEquals(true); | ||
| // x <= y if y - x fits in 64 bits | ||
| return yMinusXFits; |
There was a problem hiding this comment.
this code proves that yMinusXFits is the boolean that indicates whether yMinusX in [0, 2^64).
note that it's not just returning Gadgets.isInRangeN(UInt32.NUM_BITS, yMinusX), which it could if the gadget would do what it promises.
the code here, by doing xMinusYFits.or(yMinusXFits).assertEquals(true), anchors the case that yMinusXFits = false to a specific other case (namely, xMinusYFits = true) in which we can definitely know that yMinusX can't be in range.
Comment on lines
+109
to
+112
| * Checks whether the input value is in the range [0, 2^n). `n` must be a multiple of 16. | ||
| * | ||
| * This function proves that the provided field element can be represented with `n` bits. | ||
| * If the field element exceeds `n` bits, `Bool(false)` is returned and `Bool(true)` otherwise. |
There was a problem hiding this comment.
this is misleading, because it only proves that the result is in range if the return value of isInRangeN() is true. It doesn't prove that the result is not in range if the return value is false.
See my comment on where this is used: #1259 (comment)
So maybe better to rephrase the doccomment, or frame it as a helper function for now. I can follow up with some code that actually proves the full thing, which I think would also make the UInt64 comparison cheaper (currently the comparison calls rangeCheckHelper twice, but it can be done with one call)
mitschabaude
approved these changes
Nov 29, 2023
mitschabaude
reviewed
Dec 4, 2023
|
Created a follow-up issue that doesn't need to be addressed here: #1286 |
barriebyron
reviewed
Dec 5, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
divMod32andaddMod32rotation32usingdivMod32rangeCheckHelperinto a gadgetleftShift32based ondivMod32closes #958 #962 #1010