Auto merge of zcash#3502 - wo01:fix-num_bits, r=bitcartel

zkbot · zkbot · commit d2b5a2daebba · 2018-09-11T17:02:09.000-07:00
Fix assertion failure in circuit.merkle_tree_gadget_weirdness test on Windows

zcash-gtest.exe fails
```
[ RUN      ] circuit.merkle_tree_gadget_weirdness
Assertion failed!

Program: C:\zcash-gtest.exe
File: ./snark/libsnark/gadgetlib1/gadgets/basic_gadgets.tcc, Line 50

Expression: this-&gt;pb.lc_val(packed).as_bigint().num_bits() &lt;= bits.size()
```

The argument type of `__builtin_clzl()` function is unsigned long.
So, we need to replace `__builtin_clzl` with `__builtin_clzll`. (The argument type of `__builtin_clzll()` is unsigned long long (64bit)).
diff --git a/src/snark/libsnark/algebra/curves/alt_bn128/alt_bn128_pairing.cpp b/src/snark/libsnark/algebra/curves/alt_bn128/alt_bn128_pairing.cpp
@@ -324,7 +324,7 @@ alt_bn128_ate_G2_precomp alt_bn128_ate_precompute_G2(const alt_bn128_G2& Q)
     bool found_one = false;
     alt_bn128_ate_ell_coeffs c;
 
-    for (long i = loop_count.max_bits(); i >= 0; --i)
+    for (int64_t i = loop_count.max_bits(); i >= 0; --i)
     {
         const bool bit = loop_count.test_bit(i);
         if (!found_one)
@@ -378,7 +378,7 @@ alt_bn128_Fq12 alt_bn128_ate_miller_loop(const alt_bn128_ate_G1_precomp &prec_P,
     const bigint<alt_bn128_Fr::num_limbs> &loop_count = alt_bn128_ate_loop_count;
     alt_bn128_ate_ell_coeffs c;
 
-    for (long i = loop_count.max_bits(); i >= 0; --i)
+    for (int64_t i = loop_count.max_bits(); i >= 0; --i)
     {
         const bool bit = loop_count.test_bit(i);
         if (!found_one)
@@ -432,7 +432,7 @@ alt_bn128_Fq12 alt_bn128_ate_double_miller_loop(const alt_bn128_ate_G1_precomp &
     size_t idx = 0;
 
     const bigint<alt_bn128_Fr::num_limbs> &loop_count = alt_bn128_ate_loop_count;
-    for (long i = loop_count.max_bits(); i >= 0; --i)
+    for (int64_t i = loop_count.max_bits(); i >= 0; --i)
     {
         const bool bit = loop_count.test_bit(i);
         if (!found_one)
diff --git a/src/snark/libsnark/algebra/curves/curve_utils.tcc b/src/snark/libsnark/algebra/curves/curve_utils.tcc
@@ -16,7 +16,7 @@ GroupT scalar_mul(const GroupT &base, const bigint<m> &scalar)
     GroupT result = GroupT::zero();
 
     bool found_one = false;
-    for (long i = scalar.max_bits() - 1; i >= 0; --i)
+    for (int64_t i = scalar.max_bits() - 1; i >= 0; --i)
     {
         if (found_one)
         {
diff --git a/src/snark/libsnark/algebra/exponentiation/exponentiation.tcc b/src/snark/libsnark/algebra/exponentiation/exponentiation.tcc
@@ -25,7 +25,7 @@ FieldT power(const FieldT &base, const bigint<m> &exponent)
 
     bool found_one = false;
 
-    for (long i = exponent.max_bits() - 1; i >= 0; --i)
+    for (int64_t i = exponent.max_bits() - 1; i >= 0; --i)
     {
         if (found_one)
         {
diff --git a/src/snark/libsnark/algebra/fields/bigint.tcc b/src/snark/libsnark/algebra/fields/bigint.tcc
@@ -105,7 +105,7 @@ template<mp_size_t n>
 size_t bigint<n>::num_bits() const
 {
 /*
-    for (long i = max_bits(); i >= 0; --i)
+    for (int64_t i = max_bits(); i >= 0; --i)
     {
         if (this->test_bit(i))
         {
@@ -115,7 +115,7 @@ size_t bigint<n>::num_bits() const
 
     return 0;
 */
-    for (long i = n-1; i >= 0; --i)
+    for (int64_t i = n-1; i >= 0; --i)
     {
         mp_limb_t x = this->data[i];
         if (x == 0)
@@ -124,7 +124,8 @@ size_t bigint<n>::num_bits() const
         }
         else
         {
-            return ((i+1) * GMP_NUMB_BITS) - __builtin_clzl(x);
+            static_assert(GMP_NUMB_MAX <= ULLONG_MAX, "coercing limb to unsigned long long might truncate");
+            return ((i+1) * GMP_NUMB_BITS) - __builtin_clzll(x);
         }
     }
     return 0;
diff --git a/src/snark/libsnark/algebra/fields/field_utils.tcc b/src/snark/libsnark/algebra/fields/field_utils.tcc
@@ -171,7 +171,7 @@ void batch_invert(std::vector<FieldT> &vec)
 
     FieldT acc_inverse = acc.inverse();
 
-    for (long i = vec.size()-1; i >= 0; --i)
+    for (int64_t i = vec.size()-1; i >= 0; --i)
     {
         const FieldT old_el = vec[i];
         vec[i] = acc_inverse * prod[i];
diff --git a/src/snark/libsnark/algebra/fields/fp.hpp b/src/snark/libsnark/algebra/fields/fp.hpp
@@ -67,7 +67,7 @@ class Fp_model {
 
     Fp_model() {};
     Fp_model(const bigint<n> &b);
-    Fp_model(const long x, const bool is_unsigned=false);
+    Fp_model(const int64_t x, const bool is_unsigned=false);
 
     void set_uint64(const uint64_t x);
 
diff --git a/src/snark/libsnark/algebra/fields/fp.tcc b/src/snark/libsnark/algebra/fields/fp.tcc
@@ -194,7 +194,7 @@ Fp_model<n,modulus>::Fp_model(const bigint<n> &b)
 }
 
 template<mp_size_t n, const bigint<n>& modulus>
-Fp_model<n,modulus>::Fp_model(const long x, const bool is_unsigned)
+Fp_model<n,modulus>::Fp_model(const int64_t x, const bool is_unsigned)
 {
     if (is_unsigned || x >= 0)
     {
@@ -690,7 +690,7 @@ Fp_model<n, modulus> Fp_model<n,modulus>::random_element() /// returns random el
             const std::size_t part = bitno/GMP_NUMB_BITS;
             const std::size_t bit = bitno - (GMP_NUMB_BITS*part);
 
-            r.mont_repr.data[part] &= ~(((mp_limb_t) 1)<<bit);
+            r.mont_repr.data[part] &= ~(UINT64_C(1)<<bit);
 
             bitno--;
         }
diff --git a/src/snark/libsnark/algebra/fields/fp12_2over3over2.tcc b/src/snark/libsnark/algebra/fields/fp12_2over3over2.tcc
@@ -339,9 +339,9 @@ Fp12_2over3over2_model<n, modulus> Fp12_2over3over2_model<n,modulus>::cyclotomic
     Fp12_2over3over2_model<n,modulus> res = Fp12_2over3over2_model<n,modulus>::one();
 
     bool found_one = false;
-    for (long i = m-1; i >= 0; --i)
+    for (int64_t i = m-1; i >= 0; --i)
     {
-        for (long j = GMP_NUMB_BITS - 1; j >= 0; --j)
+        for (int64_t j = GMP_NUMB_BITS - 1; j >= 0; --j)
         {
             if (found_one)
             {
diff --git a/src/snark/libsnark/algebra/scalar_multiplication/multiexp.tcc b/src/snark/libsnark/algebra/scalar_multiplication/multiexp.tcc
@@ -40,7 +40,7 @@ public:
 #if defined(__x86_64__) && defined(USE_ASM)
         if (n == 3)
         {
-            long res;
+            int64_t res;
             __asm__
                 ("// check for overflow           \n\t"
                  "mov $0, %[res]                  \n\t"
@@ -58,7 +58,7 @@ public:
         }
         else if (n == 4)
         {
-            long res;
+            int64_t res;
             __asm__
                 ("// check for overflow           \n\t"
                  "mov $0, %[res]                  \n\t"
@@ -77,7 +77,7 @@ public:
         }
         else if (n == 5)
         {
-            long res;
+            int64_t res;
             __asm__
                 ("// check for overflow           \n\t"
                  "mov $0, %[res]                  \n\t"
@@ -389,7 +389,7 @@ size_t get_exp_window_size(const size_t num_scalars)
 #endif
     }
     size_t window = 1;
-    for (long i = T::fixed_base_exp_window_table.size()-1; i >= 0; --i)
+    for (int64_t i = T::fixed_base_exp_window_table.size()-1; i >= 0; --i)
     {
 #ifdef DEBUG
         if (!inhibit_profiling_info)
diff --git a/src/snark/libsnark/algebra/scalar_multiplication/wnaf.hpp b/src/snark/libsnark/algebra/scalar_multiplication/wnaf.hpp
@@ -18,7 +18,7 @@ namespace libsnark {
  * Find the wNAF representation of the given scalar relative to the given window size.
  */
 template<mp_size_t n>
-std::vector<long> find_wnaf(const size_t window_size, const bigint<n> &scalar);
+std::vector<int64_t> find_wnaf(const size_t window_size, const bigint<n> &scalar);
 
 /**
  * In additive notation, use wNAF exponentiation (with the given window size) to compute scalar * base.
diff --git a/src/snark/libsnark/algebra/scalar_multiplication/wnaf.tcc b/src/snark/libsnark/algebra/scalar_multiplication/wnaf.tcc
@@ -17,15 +17,15 @@
 namespace libsnark {
 
 template<mp_size_t n>
-std::vector<long> find_wnaf(const size_t window_size, const bigint<n> &scalar)
+std::vector<int64_t> find_wnaf(const size_t window_size, const bigint<n> &scalar)
 {
     const size_t length = scalar.max_bits(); // upper bound
-    std::vector<long> res(length+1);
+    std::vector<int64_t> res(length+1);
     bigint<n> c = scalar;
-    long j = 0;
+    int64_t j = 0;
     while (!c.is_zero())
     {
-        long u;
+        int64_t u;
         if ((c.data[0] & 1) == 1)
         {
             u = c.data[0] % (1u << (window_size+1));
@@ -59,7 +59,7 @@ std::vector<long> find_wnaf(const size_t window_size, const bigint<n> &scalar)
 template<typename T, mp_size_t n>
 T fixed_window_wnaf_exp(const size_t window_size, const T &base, const bigint<n> &scalar)
 {
-    std::vector<long> naf = find_wnaf(window_size, scalar);
+    std::vector<int64_t> naf = find_wnaf(window_size, scalar);
     std::vector<T> table(UINT64_C(1)<<(window_size-1));
     T tmp = base;
     T dbl = base.dbl();
@@ -71,7 +71,7 @@ T fixed_window_wnaf_exp(const size_t window_size, const T &base, const bigint<n>
 
     T res = T::zero();
     bool found_nonzero = false;
-    for (long i = naf.size()-1; i >= 0; --i)
+    for (int64_t i = naf.size()-1; i >= 0; --i)
     {
         if (found_nonzero)
         {
@@ -99,7 +99,7 @@ template<typename T, mp_size_t n>
 T opt_window_wnaf_exp(const T &base, const bigint<n> &scalar, const size_t scalar_bits)
 {
     size_t best = 0;
-    for (long i = T::wnaf_window_table.size() - 1; i >= 0; --i)
+    for (int64_t i = T::wnaf_window_table.size() - 1; i >= 0; --i)
     {
         if (scalar_bits >= T::wnaf_window_table[i])
         {
diff --git a/src/snark/libsnark/gadgetlib1/gadgets/merkle_tree/merkle_tree_check_read_gadget.tcc b/src/snark/libsnark/gadgetlib1/gadgets/merkle_tree/merkle_tree_check_read_gadget.tcc
@@ -144,7 +144,7 @@ void test_merkle_tree_check_read_gadget()
     bit_vector address_bits;
 
     size_t address = 0;
-    for (long level = tree_depth-1; level >= 0; --level)
+    for (int64_t level = tree_depth-1; level >= 0; --level)
     {
         const bool computed_is_right = (std::rand() % 2);
         address |= (computed_is_right ? UINT64_C(1) << (tree_depth-1-level) : 0);
diff --git a/src/snark/libsnark/gadgetlib1/gadgets/merkle_tree/merkle_tree_check_update_gadget.tcc b/src/snark/libsnark/gadgetlib1/gadgets/merkle_tree/merkle_tree_check_update_gadget.tcc
@@ -197,7 +197,7 @@ void test_merkle_tree_check_update_gadget()
     bit_vector address_bits;
 
     size_t address = 0;
-    for (long level = tree_depth-1; level >= 0; --level)
+    for (int64_t level = tree_depth-1; level >= 0; --level)
     {
         const bool computed_is_right = (std::rand() % 2);
         address |= (computed_is_right ? UINT64_C(1) << (tree_depth-1-level) : 0);
diff --git a/src/snark/libsnark/relations/variable.hpp b/src/snark/libsnark/relations/variable.hpp
@@ -26,7 +26,7 @@ namespace libsnark {
  * Mnemonic typedefs.
  */
 typedef size_t var_index_t;
-typedef long integer_coeff_t;
+typedef int64_t integer_coeff_t;
 
 /**
  * Forward declaration.

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ GroupT scalar_mul(const GroupT &base, const bigint<m> &scalar)`
`16`	`16`	`GroupT result = GroupT::zero();`
`17`	`17`
`18`	`18`	`bool found_one = false;`
`19`		`- for (long i = scalar.max_bits() - 1; i >= 0; --i)`
	`19`	`+ for (int64_t i = scalar.max_bits() - 1; i >= 0; --i)`
`20`	`20`	`{`
`21`	`21`	`if (found_one)`
`22`	`22`	`{`
Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@ FieldT power(const FieldT &base, const bigint<m> &exponent)`
`25`	`25`
`26`	`26`	`bool found_one = false;`
`27`	`27`
`28`		`- for (long i = exponent.max_bits() - 1; i >= 0; --i)`
	`28`	`+ for (int64_t i = exponent.max_bits() - 1; i >= 0; --i)`
`29`	`29`	`{`
`30`	`30`	`if (found_one)`
`31`	`31`	`{`
Original file line number	Diff line number	Diff line change
`@@ -105,7 +105,7 @@ template<mp_size_t n>`
`105`	`105`	`size_t bigint<n>::num_bits() const`
`106`	`106`	`{`
`107`	`107`	`/*`
`108`		`- for (long i = max_bits(); i >= 0; --i)`
	`108`	`+ for (int64_t i = max_bits(); i >= 0; --i)`
`109`	`109`	`{`
`110`	`110`	`if (this->test_bit(i))`
`111`	`111`	`{`
`@@ -115,7 +115,7 @@ size_t bigint<n>::num_bits() const`
`115`	`115`
`116`	`116`	`return 0;`
`117`	`117`	`*/`
`118`		`- for (long i = n-1; i >= 0; --i)`
	`118`	`+ for (int64_t i = n-1; i >= 0; --i)`
`119`	`119`	`{`
`120`	`120`	`mp_limb_t x = this->data[i];`
`121`	`121`	`if (x == 0)`
`@@ -124,7 +124,8 @@ size_t bigint<n>::num_bits() const`
`124`	`124`	`}`
`125`	`125`	`else`
`126`	`126`	`{`
`127`		`- return ((i+1) * GMP_NUMB_BITS) - __builtin_clzl(x);`
	`127`	`+ static_assert(GMP_NUMB_MAX <= ULLONG_MAX, "coercing limb to unsigned long long might truncate");`
	`128`	`+ return ((i+1) * GMP_NUMB_BITS) - __builtin_clzll(x);`
`128`	`129`	`}`
`129`	`130`	`}`
`130`	`131`	`return 0;`
Original file line number	Diff line number	Diff line change
`@@ -171,7 +171,7 @@ void batch_invert(std::vector<FieldT> &vec)`
`171`	`171`
`172`	`172`	`FieldT acc_inverse = acc.inverse();`
`173`	`173`
`174`		`- for (long i = vec.size()-1; i >= 0; --i)`
	`174`	`+ for (int64_t i = vec.size()-1; i >= 0; --i)`
`175`	`175`	`{`
`176`	`176`	`const FieldT old_el = vec[i];`
`177`	`177`	`vec[i] = acc_inverse * prod[i];`
Original file line number	Diff line number	Diff line change
`@@ -194,7 +194,7 @@ Fp_model<n,modulus>::Fp_model(const bigint<n> &b)`
`194`	`194`	`}`
`195`	`195`
`196`	`196`	`template<mp_size_t n, const bigint<n>& modulus>`
`197`		`-Fp_model<n,modulus>::Fp_model(const long x, const bool is_unsigned)`
	`197`	`+Fp_model<n,modulus>::Fp_model(const int64_t x, const bool is_unsigned)`
`198`	`198`	`{`
`199`	`199`	`if (is_unsigned \|\| x >= 0)`
`200`	`200`	`{`
`@@ -690,7 +690,7 @@ Fp_model<n, modulus> Fp_model<n,modulus>::random_element() /// returns random el`
`690`	`690`	`const std::size_t part = bitno/GMP_NUMB_BITS;`
`691`	`691`	`const std::size_t bit = bitno - (GMP_NUMB_BITS*part);`
`692`	`692`
`693`		`- r.mont_repr.data[part] &= ~(((mp_limb_t) 1)<<bit);`
	`693`	`+ r.mont_repr.data[part] &= ~(UINT64_C(1)<<bit);`
`694`	`694`
`695`	`695`	`bitno--;`
`696`	`696`	`}`
Original file line number	Diff line number	Diff line change
`@@ -339,9 +339,9 @@ Fp12_2over3over2_model<n, modulus> Fp12_2over3over2_model<n,modulus>::cyclotomic`
`339`	`339`	`Fp12_2over3over2_model<n,modulus> res = Fp12_2over3over2_model<n,modulus>::one();`
`340`	`340`
`341`	`341`	`bool found_one = false;`
`342`		`- for (long i = m-1; i >= 0; --i)`
	`342`	`+ for (int64_t i = m-1; i >= 0; --i)`
`343`	`343`	`{`
`344`		`- for (long j = GMP_NUMB_BITS - 1; j >= 0; --j)`
	`344`	`+ for (int64_t j = GMP_NUMB_BITS - 1; j >= 0; --j)`
`345`	`345`	`{`
`346`	`346`	`if (found_one)`
`347`	`347`	`{`
Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,7 @@ public:`
`40`	`40`	`#if defined(__x86_64__) && defined(USE_ASM)`
`41`	`41`	`if (n == 3)`
`42`	`42`	`{`
`43`		`- long res;`
	`43`	`+ int64_t res;`
`44`	`44`	`__asm__`
`45`	`45`	`("// check for overflow \n\t"`
`46`	`46`	`"mov $0, %[res] \n\t"`
`@@ -58,7 +58,7 @@ public:`
`58`	`58`	`}`
`59`	`59`	`else if (n == 4)`
`60`	`60`	`{`
`61`		`- long res;`
	`61`	`+ int64_t res;`
`62`	`62`	`__asm__`
`63`	`63`	`("// check for overflow \n\t"`
`64`	`64`	`"mov $0, %[res] \n\t"`
`@@ -77,7 +77,7 @@ public:`
`77`	`77`	`}`
`78`	`78`	`else if (n == 5)`
`79`	`79`	`{`
`80`		`- long res;`
	`80`	`+ int64_t res;`
`81`	`81`	`__asm__`
`82`	`82`	`("// check for overflow \n\t"`
`83`	`83`	`"mov $0, %[res] \n\t"`
`@@ -389,7 +389,7 @@ size_t get_exp_window_size(const size_t num_scalars)`
`389`	`389`	`#endif`
`390`	`390`	`}`
`391`	`391`	`size_t window = 1;`
`392`		`- for (long i = T::fixed_base_exp_window_table.size()-1; i >= 0; --i)`
	`392`	`+ for (int64_t i = T::fixed_base_exp_window_table.size()-1; i >= 0; --i)`
`393`	`393`	`{`
`394`	`394`	`#ifdef DEBUG`
`395`	`395`	`if (!inhibit_profiling_info)`
Original file line number	Diff line number	Diff line change
`@@ -17,15 +17,15 @@`
`17`	`17`	`namespace libsnark {`
`18`	`18`
`19`	`19`	`template<mp_size_t n>`
`20`		`-std::vector<long> find_wnaf(const size_t window_size, const bigint<n> &scalar)`
	`20`	`+std::vector<int64_t> find_wnaf(const size_t window_size, const bigint<n> &scalar)`
`21`	`21`	`{`
`22`	`22`	`const size_t length = scalar.max_bits(); // upper bound`
`23`		`- std::vector<long> res(length+1);`
	`23`	`+ std::vector<int64_t> res(length+1);`
`24`	`24`	`bigint<n> c = scalar;`
`25`		`- long j = 0;`
	`25`	`+ int64_t j = 0;`
`26`	`26`	`while (!c.is_zero())`
`27`	`27`	`{`
`28`		`- long u;`
	`28`	`+ int64_t u;`
`29`	`29`	`if ((c.data[0] & 1) == 1)`
`30`	`30`	`{`
`31`	`31`	`u = c.data[0] % (1u << (window_size+1));`
`@@ -59,7 +59,7 @@ std::vector<long> find_wnaf(const size_t window_size, const bigint<n> &scalar)`
`59`	`59`	`template<typename T, mp_size_t n>`
`60`	`60`	`T fixed_window_wnaf_exp(const size_t window_size, const T &base, const bigint<n> &scalar)`
`61`	`61`	`{`
`62`		`- std::vector<long> naf = find_wnaf(window_size, scalar);`
	`62`	`+ std::vector<int64_t> naf = find_wnaf(window_size, scalar);`
`63`	`63`	`std::vector<T> table(UINT64_C(1)<<(window_size-1));`
`64`	`64`	`T tmp = base;`
`65`	`65`	`T dbl = base.dbl();`
`@@ -71,7 +71,7 @@ T fixed_window_wnaf_exp(const size_t window_size, const T &base, const bigint<n>`
`71`	`71`
`72`	`72`	`T res = T::zero();`
`73`	`73`	`bool found_nonzero = false;`
`74`		`- for (long i = naf.size()-1; i >= 0; --i)`
	`74`	`+ for (int64_t i = naf.size()-1; i >= 0; --i)`
`75`	`75`	`{`
`76`	`76`	`if (found_nonzero)`
`77`	`77`	`{`
`@@ -99,7 +99,7 @@ template<typename T, mp_size_t n>`
`99`	`99`	`T opt_window_wnaf_exp(const T &base, const bigint<n> &scalar, const size_t scalar_bits)`
`100`	`100`	`{`
`101`	`101`	`size_t best = 0;`
`102`		`- for (long i = T::wnaf_window_table.size() - 1; i >= 0; --i)`
	`102`	`+ for (int64_t i = T::wnaf_window_table.size() - 1; i >= 0; --i)`
`103`	`103`	`{`
`104`	`104`	`if (scalar_bits >= T::wnaf_window_table[i])`
`105`	`105`	`{`
Original file line number	Diff line number	Diff line change
`@@ -144,7 +144,7 @@ void test_merkle_tree_check_read_gadget()`
`144`	`144`	`bit_vector address_bits;`
`145`	`145`
`146`	`146`	`size_t address = 0;`
`147`		`- for (long level = tree_depth-1; level >= 0; --level)`
	`147`	`+ for (int64_t level = tree_depth-1; level >= 0; --level)`
`148`	`148`	`{`
`149`	`149`	`const bool computed_is_right = (std::rand() % 2);`
`150`	`150`	`address \|= (computed_is_right ? UINT64_C(1) << (tree_depth-1-level) : 0);`
Original file line number	Diff line number	Diff line change
`@@ -197,7 +197,7 @@ void test_merkle_tree_check_update_gadget()`
`197`	`197`	`bit_vector address_bits;`
`198`	`198`
`199`	`199`	`size_t address = 0;`
`200`		`- for (long level = tree_depth-1; level >= 0; --level)`
	`200`	`+ for (int64_t level = tree_depth-1; level >= 0; --level)`
`201`	`201`	`{`
`202`	`202`	`const bool computed_is_right = (std::rand() % 2);`
`203`	`203`	`address \|= (computed_is_right ? UINT64_C(1) << (tree_depth-1-level) : 0);`