Skip to content

Impl Div for BoxedUint #366

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tarcieri merged 1 commit into from
Nov 30, 2023
Merged

Impl Div for BoxedUint #366

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
143 changes: 140 additions & 3 deletions src/uint/boxed/div.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,17 @@
//! [`BoxedUint`] division operations.

use crate::{BoxedUint, Limb, NonZero};
use core::ops::{Rem, RemAssign};
use subtle::ConstantTimeEq;
use crate::{BoxedUint, Limb, NonZero, Wrapping};
use core::ops::{Div, DivAssign, Rem, RemAssign};
use subtle::{Choice, ConstantTimeEq, CtOption};

impl BoxedUint {
/// Computes self / rhs, returns the quotient, remainder.
///
/// Variable-time with respect to `rhs`
pub fn div_rem_vartime(&self, rhs: &NonZero<Self>) -> (Self, Self) {
self.div_rem_vartime_unchecked(rhs.as_ref())
}

/// Computes self % rhs, returns the remainder.
///
/// Variable-time with respect to `rhs`.
Expand All @@ -30,6 +37,136 @@ impl BoxedUint {
c = c.shr_vartime(1);
}
}

/// Wrapped division is just normal division i.e. `self` / `rhs`
/// There’s no way wrapping could ever happen.
///
/// This function exists, so that all operations are accounted for in the wrapping operations.
///
/// Panics if `rhs == 0`.
pub fn wrapping_div(&self, rhs: &NonZero<Self>) -> Self {
self.div_rem_vartime(rhs).0
}

/// Perform checked division, returning a [`CtOption`] which `is_some`
/// only if the rhs != 0
pub fn checked_div(&self, rhs: &Self) -> CtOption<Self> {
CtOption::new(self.div_rem_vartime_unchecked(rhs).0, rhs.is_zero())
}

/// Compute divison and remainder without checking `rhs` is zero.
fn div_rem_vartime_unchecked(&self, rhs: &Self) -> (Self, Self) {
debug_assert_eq!(self.bits_precision(), rhs.bits_precision());
let mb = rhs.bits();
let mut bd = self.bits_precision() - mb;
let mut remainder = self.clone();
let mut quotient = Self::zero_with_precision(self.bits_precision());
let mut c = rhs.shl(bd);

loop {
let (mut r, borrow) = remainder.sbb(&c, Limb::ZERO);
let borrow = Choice::from(borrow.0 as u8 & 1);
remainder = Self::conditional_select(&r, &remainder, borrow);
r = &quotient | Self::one();
quotient = Self::conditional_select(&r, &quotient, borrow);
if bd == 0 {
break;
}
bd -= 1;
c = c.shr(1);
quotient = quotient.shl(1);
}

(quotient, remainder)
}
}

impl Div<&NonZero<BoxedUint>> for &BoxedUint {
type Output = BoxedUint;

fn div(self, rhs: &NonZero<BoxedUint>) -> Self::Output {
self.wrapping_div(rhs)
}
}

impl Div<&NonZero<BoxedUint>> for BoxedUint {
type Output = BoxedUint;

fn div(self, rhs: &NonZero<BoxedUint>) -> Self::Output {
self.wrapping_div(rhs)
}
}

impl Div<NonZero<BoxedUint>> for &BoxedUint {
type Output = BoxedUint;

fn div(self, rhs: NonZero<BoxedUint>) -> Self::Output {
self.wrapping_div(&rhs)
}
}

impl Div<NonZero<BoxedUint>> for BoxedUint {
type Output = BoxedUint;

fn div(self, rhs: NonZero<BoxedUint>) -> Self::Output {
self.div_rem_vartime(&rhs).0
}
}

impl DivAssign<&NonZero<BoxedUint>> for BoxedUint {
fn div_assign(&mut self, rhs: &NonZero<BoxedUint>) {
*self = self.wrapping_div(rhs);
}
}

impl DivAssign<NonZero<BoxedUint>> for BoxedUint {
fn div_assign(&mut self, rhs: NonZero<BoxedUint>) {
*self = self.wrapping_div(&rhs);
}
}

impl Div<NonZero<BoxedUint>> for Wrapping<BoxedUint> {
type Output = Wrapping<BoxedUint>;

fn div(self, rhs: NonZero<BoxedUint>) -> Self::Output {
Wrapping(self.0 / rhs)
}
}

impl Div<NonZero<BoxedUint>> for &Wrapping<BoxedUint> {
type Output = Wrapping<BoxedUint>;

fn div(self, rhs: NonZero<BoxedUint>) -> Self::Output {
Wrapping(self.0.wrapping_div(&rhs))
}
}

impl Div<&NonZero<BoxedUint>> for &Wrapping<BoxedUint> {
type Output = Wrapping<BoxedUint>;

fn div(self, rhs: &NonZero<BoxedUint>) -> Self::Output {
Wrapping(self.0.wrapping_div(rhs))
}
}

impl Div<&NonZero<BoxedUint>> for Wrapping<BoxedUint> {
type Output = Wrapping<BoxedUint>;

fn div(self, rhs: &NonZero<BoxedUint>) -> Self::Output {
Wrapping(self.0.wrapping_div(rhs))
}
}

impl DivAssign<&NonZero<BoxedUint>> for Wrapping<BoxedUint> {
fn div_assign(&mut self, rhs: &NonZero<BoxedUint>) {
*self = Wrapping(&self.0 / rhs);
}
}

impl DivAssign<NonZero<BoxedUint>> for Wrapping<BoxedUint> {
fn div_assign(&mut self, rhs: NonZero<BoxedUint>) {
*self /= &rhs;
}
}

impl Rem<&NonZero<BoxedUint>> for &BoxedUint {
Expand Down
16 changes: 16 additions & 0 deletions tests/boxed_uint_proptests.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -87,6 +87,22 @@ proptest! {
}
}

#[test]
fn div_rem((a, mut b) in uint_pair()) {
if b.is_zero().into() {
b = b.wrapping_add(&BoxedUint::one());
}

let a_bi = to_biguint(&a);
let b_bi = to_biguint(&b);
let expected_quotient = &a_bi / &b_bi;
let expected_remainder = a_bi % b_bi;

let (actual_quotient, actual_remainder) = a.div_rem_vartime(&NonZero::new(b).unwrap());
prop_assert_eq!(expected_quotient, to_biguint(&actual_quotient));
prop_assert_eq!(expected_remainder, to_biguint(&actual_remainder));
}

#[test]
fn mod_inv((mut a, mut b) in uint_pair()) {
if a.is_zero().into() {
Expand Down