plonky2/src/gadgets/arithmetic_u32.rs

use crate::field::extension_field::Extendable;
use crate::field::field_types::RichField;
use crate::gates::arithmetic_u32::U32ArithmeticGate;
use crate::gates::subtraction_u32::U32SubtractionGate;
use crate::iop::target::Target;
use crate::plonk::circuit_builder::CircuitBuilder;

#[derive(Clone, Copy, Debug)]
pub struct U32Target(pub Target);

impl<F: RichField + Extendable<D>, const D: usize> CircuitBuilder<F, D> {
    pub fn add_virtual_u32_target(&mut self) -> U32Target {
        U32Target(self.add_virtual_target())
    }

    pub fn add_virtual_u32_targets(&mut self, n: usize) -> Vec<U32Target> {
        self.add_virtual_targets(n)
            .into_iter()
            .map(U32Target)
            .collect()
    }

    pub fn zero_u32(&mut self) -> U32Target {
        U32Target(self.zero())
    }

    pub fn one_u32(&mut self) -> U32Target {
        U32Target(self.one())
    }

    pub fn connect_u32(&mut self, x: U32Target, y: U32Target) {
        self.connect(x.0, y.0)
    }

    pub fn assert_zero_u32(&mut self, x: U32Target) {
        self.assert_zero(x.0)
    }

    /// Checks for special cases where the value of
    /// `x * y + z`
    /// can be determined without adding a `U32ArithmeticGate`.
    pub fn arithmetic_u32_special_cases(
        &mut self,
        x: U32Target,
        y: U32Target,
        z: U32Target,
    ) -> Option<(U32Target, U32Target)> {
        let x_const = self.target_as_constant(x.0);
        let y_const = self.target_as_constant(y.0);
        let z_const = self.target_as_constant(z.0);

        // If both terms are constant, return their (constant) sum.
        let first_term_const = if let (Some(xx), Some(yy)) = (x_const, y_const) {
            Some(xx * yy)
        } else {
            None
        };

        if let (Some(a), Some(b)) = (first_term_const, z_const) {
            let sum = (a + b).to_canonical_u64();
            let (low, high) = (sum as u32, (sum >> 32) as u32);
            return Some((self.constant_u32(low), self.constant_u32(high)));
        }

        None
    }

    // Returns x * y + z.
    pub fn mul_add_u32(
        &mut self,
        x: U32Target,
        y: U32Target,
        z: U32Target,
    ) -> (U32Target, U32Target) {
        if let Some(result) = self.arithmetic_u32_special_cases(x, y, z) {
            return result;
        }

        let (gate_index, copy) = self.find_u32_arithmetic_gate();

        self.connect(
            Target::wire(
                gate_index,
                U32ArithmeticGate::<F, D>::wire_ith_multiplicand_0(copy),
            ),
            x.0,
        );
        self.connect(
            Target::wire(
                gate_index,
                U32ArithmeticGate::<F, D>::wire_ith_multiplicand_1(copy),
            ),
            y.0,
        );
        self.connect(
            Target::wire(gate_index, U32ArithmeticGate::<F, D>::wire_ith_addend(copy)),
            z.0,
        );

        let output_low = U32Target(Target::wire(
            gate_index,
            U32ArithmeticGate::<F, D>::wire_ith_output_low_half(copy),
        ));
        let output_high = U32Target(Target::wire(
            gate_index,
            U32ArithmeticGate::<F, D>::wire_ith_output_high_half(copy),
        ));

        (output_low, output_high)
    }

    pub fn add_u32(&mut self, a: U32Target, b: U32Target) -> (U32Target, U32Target) {
        let one = self.one_u32();
        self.mul_add_u32(a, one, b)
    }

    pub fn add_many_u32(&mut self, to_add: &[U32Target]) -> (U32Target, U32Target) {
        match to_add.len() {
            0 => (self.zero_u32(), self.zero_u32()),
            1 => (to_add[0], self.zero_u32()),
            2 => self.add_u32(to_add[0], to_add[1]),
            _ => {
                let (mut low, mut carry) = self.add_u32(to_add[0], to_add[1]);
                for i in 2..to_add.len() {
                    let (new_low, new_carry) = self.add_u32(to_add[i], low);
                    let (combined_carry, _zero) = self.add_u32(carry, new_carry);
                    low = new_low;
                    carry = combined_carry;
                }
                (low, carry)
            }
        }
    }

    pub fn mul_u32(&mut self, a: U32Target, b: U32Target) -> (U32Target, U32Target) {
        let zero = self.zero_u32();
        self.mul_add_u32(a, b, zero)
    }

    // Returns x - y - borrow, as a pair (result, borrow), where borrow is 0 or 1 depending on whether borrowing from the next digit is required (iff y + borrow > x).
    pub fn sub_u32(
        &mut self,
        x: U32Target,
        y: U32Target,
        borrow: U32Target,
    ) -> (U32Target, U32Target) {
        let (gate_index, copy) = self.find_u32_subtraction_gate();

        self.connect(
            Target::wire(
                gate_index,
                U32SubtractionGate::<F, D>::wire_ith_input_x(copy),
            ),
            x.0,
        );
        self.connect(
            Target::wire(
                gate_index,
                U32SubtractionGate::<F, D>::wire_ith_input_y(copy),
            ),
            y.0,
        );
        self.connect(
            Target::wire(
                gate_index,
                U32SubtractionGate::<F, D>::wire_ith_input_borrow(copy),
            ),
            borrow.0,
        );

        let output_result = U32Target(Target::wire(
            gate_index,
            U32SubtractionGate::<F, D>::wire_ith_output_result(copy),
        ));
        let output_borrow = U32Target(Target::wire(
            gate_index,
            U32SubtractionGate::<F, D>::wire_ith_output_borrow(copy),
        ));

        (output_result, output_borrow)
    }
}
updates 2021-10-07 09:25:57 -07:00			`use crate::field::extension_field::Extendable;`
fmt 2021-10-12 11:41:52 -07:00			`use crate::field::field_types::RichField;`
BigUint arithmetic, and cleanup 2021-10-15 16:47:29 -07:00			`use crate::gates::arithmetic_u32::U32ArithmeticGate;`
sub 2021-10-14 13:41:51 -07:00			`use crate::gates::subtraction_u32::U32SubtractionGate;`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`use crate::iop::target::Target;`
			`use crate::plonk::circuit_builder::CircuitBuilder;`

some more BigUint arithmetic 2021-10-18 15:04:54 -07:00			`#[derive(Clone, Copy, Debug)]`
merge 2021-11-10 09:53:27 -08:00			`pub struct U32Target(pub Target);`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00
			`impl<F: RichField + Extendable<D>, const D: usize> CircuitBuilder<F, D> {`
comparison gate 2021-10-12 11:41:34 -07:00			`pub fn add_virtual_u32_target(&mut self) -> U32Target {`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`U32Target(self.add_virtual_target())`
			`}`

comparison gate 2021-10-12 11:41:34 -07:00			`pub fn add_virtual_u32_targets(&mut self, n: usize) -> Vec<U32Target> {`
fmt 2021-10-04 14:17:28 -07:00			`self.add_virtual_targets(n)`
updates 2021-10-07 09:25:57 -07:00			`.into_iter()`
fmt 2021-10-04 14:17:28 -07:00			`.map(U32Target)`
			`.collect()`
initial non-native add 2021-10-04 14:17:19 -07:00			`}`

comparison gate 2021-10-12 11:41:34 -07:00			`pub fn zero_u32(&mut self) -> U32Target {`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`U32Target(self.zero())`
			`}`

comparison gate 2021-10-12 11:41:34 -07:00			`pub fn one_u32(&mut self) -> U32Target {`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`U32Target(self.one())`
			`}`

some more BigUint arithmetic 2021-10-18 15:04:54 -07:00			`pub fn connect_u32(&mut self, x: U32Target, y: U32Target) {`
			`self.connect(x.0, y.0)`
			`}`

fix 2021-10-18 16:04:23 -07:00			`pub fn assert_zero_u32(&mut self, x: U32Target) {`
some more BigUint arithmetic 2021-10-18 15:04:54 -07:00			`self.assert_zero(x.0)`
			`}`

u32 arithmetic check for special cases 2021-11-01 16:02:46 -07:00			`/// Checks for special cases where the value of`
			/// `x * y + z`
			/// can be determined without adding a `U32ArithmeticGate`.
			`pub fn arithmetic_u32_special_cases(`
			`&mut self,`
			`x: U32Target,`
			`y: U32Target,`
			`z: U32Target,`
			`) -> Option<(U32Target, U32Target)> {`
			`let x_const = self.target_as_constant(x.0);`
			`let y_const = self.target_as_constant(y.0);`
			`let z_const = self.target_as_constant(z.0);`

			`// If both terms are constant, return their (constant) sum.`
			`let first_term_const = if let (Some(xx), Some(yy)) = (x_const, y_const) {`
			`Some(xx * yy)`
			`} else {`
			`None`
			`};`

			`if let (Some(a), Some(b)) = (first_term_const, z_const) {`
addressed nits 2021-11-09 16:36:29 -08:00			`let sum = (a + b).to_canonical_u64();`
			`let (low, high) = (sum as u32, (sum >> 32) as u32);`
u32 arithmetic check for special cases 2021-11-01 16:02:46 -07:00			`return Some((self.constant_u32(low), self.constant_u32(high)));`
			`}`

			`None`
			`}`

progress 2021-10-04 16:23:21 -07:00			`// Returns x * y + z.`
			`pub fn mul_add_u32(`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`&mut self,`
			`x: U32Target,`
			`y: U32Target,`
			`z: U32Target,`
			`) -> (U32Target, U32Target) {`
u32 arithmetic check for special cases 2021-11-01 16:02:46 -07:00			`if let Some(result) = self.arithmetic_u32_special_cases(x, y, z) {`
			`return result;`
			`}`

merge 2021-11-10 09:56:21 -08:00			`let (gate_index, copy) = self.find_u32_arithmetic_gate();`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00
fmt 2021-10-04 14:17:28 -07:00			`self.connect(`
			`Target::wire(`
			`gate_index,`
			`U32ArithmeticGate::<F, D>::wire_ith_multiplicand_0(copy),`
			`),`
			`x.0,`
			`);`
			`self.connect(`
			`Target::wire(`
			`gate_index,`
			`U32ArithmeticGate::<F, D>::wire_ith_multiplicand_1(copy),`
			`),`
			`y.0,`
			`);`
			`self.connect(`
			`Target::wire(gate_index, U32ArithmeticGate::<F, D>::wire_ith_addend(copy)),`
			`z.0,`
			`);`
updates 2021-10-07 09:25:57 -07:00
			`let output_low = U32Target(Target::wire(`
			`gate_index,`
			`U32ArithmeticGate::<F, D>::wire_ith_output_low_half(copy),`
			`));`
			`let output_high = U32Target(Target::wire(`
			`gate_index,`
			`U32ArithmeticGate::<F, D>::wire_ith_output_high_half(copy),`
			`));`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00
			`(output_low, output_high)`
			`}`

			`pub fn add_u32(&mut self, a: U32Target, b: U32Target) -> (U32Target, U32Target) {`
comparison gate 2021-10-12 11:41:34 -07:00			`let one = self.one_u32();`
			`self.mul_add_u32(a, one, b)`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`}`

addressed comments 2021-11-01 11:12:21 -07:00			`pub fn add_many_u32(&mut self, to_add: &[U32Target]) -> (U32Target, U32Target) {`
add_many_u32 2021-10-15 12:12:09 -07:00			`match to_add.len() {`
			`0 => (self.zero_u32(), self.zero_u32()),`
			`1 => (to_add[0], self.zero_u32()),`
			`2 => self.add_u32(to_add[0], to_add[1]),`
			`_ => {`
			`let (mut low, mut carry) = self.add_u32(to_add[0], to_add[1]);`
			`for i in 2..to_add.len() {`
			`let (new_low, new_carry) = self.add_u32(to_add[i], low);`
			`let (combined_carry, _zero) = self.add_u32(carry, new_carry);`
			`low = new_low;`
			`carry = combined_carry;`
			`}`
			`(low, carry)`
			`}`
			`}`
			`}`

merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`pub fn mul_u32(&mut self, a: U32Target, b: U32Target) -> (U32Target, U32Target) {`
comparison gate 2021-10-12 11:41:34 -07:00			`let zero = self.zero_u32();`
			`self.mul_add_u32(a, b, zero)`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`}`
merge 2021-11-10 09:56:21 -08:00
sub 2021-10-14 13:41:51 -07:00			`// Returns x - y - borrow, as a pair (result, borrow), where borrow is 0 or 1 depending on whether borrowing from the next digit is required (iff y + borrow > x).`
merge 2021-11-10 09:56:21 -08:00			`pub fn sub_u32(`
			`&mut self,`
			`x: U32Target,`
			`y: U32Target,`
			`borrow: U32Target,`
			`) -> (U32Target, U32Target) {`
			`let (gate_index, copy) = self.find_u32_subtraction_gate();`

			`self.connect(`
			`Target::wire(`
			`gate_index,`
sub 2021-10-14 13:41:51 -07:00			`U32SubtractionGate::<F, D>::wire_ith_input_x(copy),`
merge 2021-11-10 09:56:21 -08:00			`),`
			`x.0,`
			`);`
			`self.connect(`
			`Target::wire(`
			`gate_index,`
sub 2021-10-14 13:41:51 -07:00			`U32SubtractionGate::<F, D>::wire_ith_input_y(copy),`
merge 2021-11-10 09:56:21 -08:00			`),`
			`y.0,`
			`);`
			`self.connect(`
sub 2021-10-14 13:41:51 -07:00			`Target::wire(`
			`gate_index,`
			`U32SubtractionGate::<F, D>::wire_ith_input_borrow(copy),`
			`),`
			`borrow.0,`
merge 2021-11-10 09:56:21 -08:00			`);`

sub 2021-10-14 13:41:51 -07:00			`let output_result = U32Target(Target::wire(`
merge 2021-11-10 09:56:21 -08:00			`gate_index,`
sub 2021-10-14 13:41:51 -07:00			`U32SubtractionGate::<F, D>::wire_ith_output_result(copy),`
merge 2021-11-10 09:56:21 -08:00			`));`
sub 2021-10-14 13:41:51 -07:00			`let output_borrow = U32Target(Target::wire(`
merge 2021-11-10 09:56:21 -08:00			`gate_index,`
sub 2021-10-14 13:41:51 -07:00			`U32SubtractionGate::<F, D>::wire_ith_output_borrow(copy),`
merge 2021-11-10 09:56:21 -08:00			`));`

sub 2021-10-14 13:41:51 -07:00			`(output_result, output_borrow)`
merge 2021-11-10 09:56:21 -08:00			`}`
merge new circuit builder stuff 2021-11-09 18:10:47 -08:00			`}`