arnaucube
/
go-iden3-crypto
mirror of https://github.com/arnaucube/go-iden3-crypto.git
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
107 Commits
26 Branches
7 Tags
4.8 MiB
Branch: fix/bbjj-err
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'fix/bbjj-err'
${ noResults }
go-iden3-crypto/ff/element_test.go

1874 lines
40 KiB
Raw Permalink Normal View History

Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
Faster ff arithmetics (regenerated code with the newest goff) (#43)
3 years ago
Add goff generated finite field arithmetic code for used field
4 years ago
  1. // Copyright 2020 ConsenSys Software Inc.
  2. //
  3. // Licensed under the Apache License, Version 2.0 (the "License");
  4. // you may not use this file except in compliance with the License.
  5. // You may obtain a copy of the License at
  6. //
  7. // http://www.apache.org/licenses/LICENSE-2.0
  8. //
  9. // Unless required by applicable law or agreed to in writing, software
  10. // distributed under the License is distributed on an "AS IS" BASIS,
  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  12. // See the License for the specific language governing permissions and
  13. // limitations under the License.
  15. // Code generated by consensys/gnark-crypto DO NOT EDIT
  17. package ff
  19. import (
  20. "crypto/rand"
  21. "math/big"
  22. "math/bits"
  23. "testing"
  25. "github.com/leanovate/gopter"
  26. "github.com/leanovate/gopter/prop"
  27. )
  29. // -------------------------------------------------------------------------------------------------
  30. // benchmarks
  31. // most benchmarks are rudimentary and should sample a large number of random inputs
  32. // or be run multiple times to ensure it didn't measure the fastest path of the function
  34. var benchResElement Element
  36. func BenchmarkElementSetBytes(b *testing.B) {
  37. var x Element
  38. x.SetRandom()
  39. bb := x.Bytes()
  40. b.ResetTimer()
  42. for i := 0; i < b.N; i++ {
  43. benchResElement.SetBytes(bb[:])
  44. }
  46. }
  48. func BenchmarkElementMulByConstants(b *testing.B) {
  49. b.Run("mulBy3", func(b *testing.B) {
  50. benchResElement.SetRandom()
  51. b.ResetTimer()
  52. for i := 0; i < b.N; i++ {
  53. MulBy3(&benchResElement)
  54. }
  55. })
  56. b.Run("mulBy5", func(b *testing.B) {
  57. benchResElement.SetRandom()
  58. b.ResetTimer()
  59. for i := 0; i < b.N; i++ {
  60. MulBy5(&benchResElement)
  61. }
  62. })
  63. b.Run("mulBy13", func(b *testing.B) {
  64. benchResElement.SetRandom()
  65. b.ResetTimer()
  66. for i := 0; i < b.N; i++ {
  67. MulBy13(&benchResElement)
  68. }
  69. })
  70. }
  72. func BenchmarkElementInverse(b *testing.B) {
  73. var x Element
  74. x.SetRandom()
  75. benchResElement.SetRandom()
  76. b.ResetTimer()
  78. for i := 0; i < b.N; i++ {
  79. benchResElement.Inverse(&x)
  80. }
  82. }
  84. func BenchmarkElementButterfly(b *testing.B) {
  85. var x Element
  86. x.SetRandom()
  87. benchResElement.SetRandom()
  88. b.ResetTimer()
  89. for i := 0; i < b.N; i++ {
  90. Butterfly(&x, &benchResElement)
  91. }
  92. }
  94. func BenchmarkElementExp(b *testing.B) {
  95. var x Element
  96. x.SetRandom()
  97. benchResElement.SetRandom()
  98. b1, _ := rand.Int(rand.Reader, Modulus())
  99. b.ResetTimer()
  100. for i := 0; i < b.N; i++ {
  101. benchResElement.Exp(x, b1)
  102. }
  103. }
  105. func BenchmarkElementDouble(b *testing.B) {
  106. benchResElement.SetRandom()
  107. b.ResetTimer()
  108. for i := 0; i < b.N; i++ {
  109. benchResElement.Double(&benchResElement)
  110. }
  111. }
  113. func BenchmarkElementAdd(b *testing.B) {
  114. var x Element
  115. x.SetRandom()
  116. benchResElement.SetRandom()
  117. b.ResetTimer()
  118. for i := 0; i < b.N; i++ {
  119. benchResElement.Add(&x, &benchResElement)
  120. }
  121. }
  123. func BenchmarkElementSub(b *testing.B) {
  124. var x Element
  125. x.SetRandom()
  126. benchResElement.SetRandom()
  127. b.ResetTimer()
  128. for i := 0; i < b.N; i++ {
  129. benchResElement.Sub(&x, &benchResElement)
  130. }
  131. }
  133. func BenchmarkElementNeg(b *testing.B) {
  134. benchResElement.SetRandom()
  135. b.ResetTimer()
  136. for i := 0; i < b.N; i++ {
  137. benchResElement.Neg(&benchResElement)
  138. }
  139. }
  141. func BenchmarkElementDiv(b *testing.B) {
  142. var x Element
  143. x.SetRandom()
  144. benchResElement.SetRandom()
  145. b.ResetTimer()
  146. for i := 0; i < b.N; i++ {
  147. benchResElement.Div(&x, &benchResElement)
  148. }
  149. }
  151. func BenchmarkElementFromMont(b *testing.B) {
  152. benchResElement.SetRandom()
  153. b.ResetTimer()
  154. for i := 0; i < b.N; i++ {
  155. benchResElement.FromMont()
  156. }
  157. }
  159. func BenchmarkElementToMont(b *testing.B) {
  160. benchResElement.SetRandom()
  161. b.ResetTimer()
  162. for i := 0; i < b.N; i++ {
  163. benchResElement.ToMont()
  164. }
  165. }
  166. func BenchmarkElementSquare(b *testing.B) {
  167. benchResElement.SetRandom()
  168. b.ResetTimer()
  169. for i := 0; i < b.N; i++ {
  170. benchResElement.Square(&benchResElement)
  171. }
  172. }
  174. func BenchmarkElementSqrt(b *testing.B) {
  175. var a Element
  176. a.SetUint64(4)
  177. a.Neg(&a)
  178. b.ResetTimer()
  179. for i := 0; i < b.N; i++ {
  180. benchResElement.Sqrt(&a)
  181. }
  182. }
  184. func BenchmarkElementMul(b *testing.B) {
  185. x := Element{
  186. 1997599621687373223,
  187. 6052339484930628067,
  188. 10108755138030829701,
  189. 150537098327114917,
  190. }
  191. benchResElement.SetOne()
  192. b.ResetTimer()
  193. for i := 0; i < b.N; i++ {
  194. benchResElement.Mul(&benchResElement, &x)
  195. }
  196. }
  198. func BenchmarkElementCmp(b *testing.B) {
  199. x := Element{
  200. 1997599621687373223,
  201. 6052339484930628067,
  202. 10108755138030829701,
  203. 150537098327114917,
  204. }
  205. benchResElement = x
  206. benchResElement[0] = 0
  207. b.ResetTimer()
  208. for i := 0; i < b.N; i++ {
  209. benchResElement.Cmp(&x)
  210. }
  211. }
  213. func TestElementCmp(t *testing.T) {
  214. var x, y Element
  216. if x.Cmp(&y) != 0 {
  217. t.Fatal("x == y")
  218. }
  220. one := One()
  221. y.Sub(&y, &one)
  223. if x.Cmp(&y) != -1 {
  224. t.Fatal("x < y")
  225. }
  226. if y.Cmp(&x) != 1 {
  227. t.Fatal("x < y")
  228. }
  230. x = y
  231. if x.Cmp(&y) != 0 {
  232. t.Fatal("x == y")
  233. }
  235. x.Sub(&x, &one)
  236. if x.Cmp(&y) != -1 {
  237. t.Fatal("x < y")
  238. }
  239. if y.Cmp(&x) != 1 {
  240. t.Fatal("x < y")
  241. }
  242. }
  244. func TestElementIsRandom(t *testing.T) {
  245. for i := 0; i < 50; i++ {
  246. var x, y Element
  247. x.SetRandom()
  248. y.SetRandom()
  249. if x.Equal(&y) {
  250. t.Fatal("2 random numbers are unlikely to be equal")
  251. }
  252. }
  253. }
  255. // -------------------------------------------------------------------------------------------------
  256. // Gopter tests
  257. // most of them are generated with a template
  259. const (
  260. nbFuzzShort = 200
  261. nbFuzz = 1000
  262. )
  264. // special values to be used in tests
  265. var staticTestValues []Element
  267. func init() {
  268. staticTestValues = append(staticTestValues, Element{}) // zero
  269. staticTestValues = append(staticTestValues, One()) // one
  270. staticTestValues = append(staticTestValues, rSquare) // r^2
  271. var e, one Element
  272. one.SetOne()
  273. e.Sub(&qElement, &one)
  274. staticTestValues = append(staticTestValues, e) // q - 1
  275. e.Double(&one)
  276. staticTestValues = append(staticTestValues, e) // 2
  278. {
  279. a := qElement
  280. a[3]--
  281. staticTestValues = append(staticTestValues, a)
  282. }
  283. {
  284. a := qElement
  285. a[0]--
  286. staticTestValues = append(staticTestValues, a)
  287. }
  289. for i := 0; i <= 3; i++ {
  290. staticTestValues = append(staticTestValues, Element{uint64(i)})
  291. staticTestValues = append(staticTestValues, Element{0, uint64(i)})
  292. }
  294. {
  295. a := qElement
  296. a[3]--
  297. a[0]++
  298. staticTestValues = append(staticTestValues, a)
  299. }
  301. }
  303. func TestElementNegZero(t *testing.T) {
  304. var a, b Element
  305. b.SetZero()
  306. for a.IsZero() {
  307. a.SetRandom()
  308. }
  309. a.Neg(&b)
  310. if !a.IsZero() {
  311. t.Fatal("neg(0) != 0")
  312. }
  313. }
  315. func TestElementReduce(t *testing.T) {
  316. testValues := make([]Element, len(staticTestValues))
  317. copy(testValues, staticTestValues)
  319. for _, s := range testValues {
  320. expected := s
  321. reduce(&s)
  322. _reduceGeneric(&expected)
  323. if !s.Equal(&expected) {
  324. t.Fatal("reduce failed: asm and generic impl don't match")
  325. }
  326. }
  328. parameters := gopter.DefaultTestParameters()
  329. if testing.Short() {
  330. parameters.MinSuccessfulTests = nbFuzzShort
  331. } else {
  332. parameters.MinSuccessfulTests = nbFuzz
  333. }
  335. properties := gopter.NewProperties(parameters)
  337. genA := genFull()
  339. properties.Property("reduce should output a result smaller than modulus", prop.ForAll(
  340. func(a Element) bool {
  341. b := a
  342. reduce(&a)
  343. _reduceGeneric(&b)
  344. return !a.biggerOrEqualModulus() && a.Equal(&b)
  345. },
  346. genA,
  347. ))
  349. properties.TestingRun(t, gopter.ConsoleReporter(false))
  350. // if we have ADX instruction enabled, test both path in assembly
  351. if supportAdx {
  352. t.Log("disabling ADX")
  353. supportAdx = false
  354. properties.TestingRun(t, gopter.ConsoleReporter(false))
  355. supportAdx = true
  356. }
  358. }
  360. func TestElementBytes(t *testing.T) {
  361. parameters := gopter.DefaultTestParameters()
  362. if testing.Short() {
  363. parameters.MinSuccessfulTests = nbFuzzShort
  364. } else {
  365. parameters.MinSuccessfulTests = nbFuzz
  366. }
  368. properties := gopter.NewProperties(parameters)
  370. genA := gen()
  372. properties.Property("SetBytes(Bytes()) should stayt constant", prop.ForAll(
  373. func(a testPairElement) bool {
  374. var b Element
  375. bytes := a.element.Bytes()
  376. b.SetBytes(bytes[:])
  377. return a.element.Equal(&b)
  378. },
  379. genA,
  380. ))
  382. properties.TestingRun(t, gopter.ConsoleReporter(false))
  383. }
  385. func TestElementInverseExp(t *testing.T) {
  386. // inverse must be equal to exp^-2
  387. exp := Modulus()
  388. exp.Sub(exp, new(big.Int).SetUint64(2))
  390. parameters := gopter.DefaultTestParameters()
  391. if testing.Short() {
  392. parameters.MinSuccessfulTests = nbFuzzShort
  393. } else {
  394. parameters.MinSuccessfulTests = nbFuzz
  395. }
  397. properties := gopter.NewProperties(parameters)
  399. genA := gen()
  401. properties.Property("inv == exp^-2", prop.ForAll(
  402. func(a testPairElement) bool {
  403. var b Element
  404. b.Set(&a.element)
  405. a.element.Inverse(&a.element)
  406. b.Exp(b, exp)
  408. return a.element.Equal(&b)
  409. },
  410. genA,
  411. ))
  413. properties.TestingRun(t, gopter.ConsoleReporter(false))
  414. // if we have ADX instruction enabled, test both path in assembly
  415. if supportAdx {
  416. t.Log("disabling ADX")
  417. supportAdx = false
  418. properties.TestingRun(t, gopter.ConsoleReporter(false))
  419. supportAdx = true
  420. }
  421. }
  423. func TestElementMulByConstants(t *testing.T) {
  425. parameters := gopter.DefaultTestParameters()
  426. if testing.Short() {
  427. parameters.MinSuccessfulTests = nbFuzzShort
  428. } else {
  429. parameters.MinSuccessfulTests = nbFuzz
  430. }
  432. properties := gopter.NewProperties(parameters)
  434. genA := gen()
  436. implemented := []uint8{0, 1, 2, 3, 5, 13}
  437. properties.Property("mulByConstant", prop.ForAll(
  438. func(a testPairElement) bool {
  439. for _, c := range implemented {
  440. var constant Element
  441. constant.SetUint64(uint64(c))
  443. b := a.element
  444. b.Mul(&b, &constant)
  446. aa := a.element
  447. mulByConstant(&aa, c)
  449. if !aa.Equal(&b) {
  450. return false
  451. }
  452. }
  454. return true
  455. },
  456. genA,
  457. ))
  459. properties.Property("MulBy3(x) == Mul(x, 3)", prop.ForAll(
  460. func(a testPairElement) bool {
  461. var constant Element
  462. constant.SetUint64(3)
  464. b := a.element
  465. b.Mul(&b, &constant)
  467. MulBy3(&a.element)
  469. return a.element.Equal(&b)
  470. },
  471. genA,
  472. ))
  474. properties.Property("MulBy5(x) == Mul(x, 5)", prop.ForAll(
  475. func(a testPairElement) bool {
  476. var constant Element
  477. constant.SetUint64(5)
  479. b := a.element
  480. b.Mul(&b, &constant)
  482. MulBy5(&a.element)
  484. return a.element.Equal(&b)
  485. },
  486. genA,
  487. ))
  489. properties.Property("MulBy13(x) == Mul(x, 13)", prop.ForAll(
  490. func(a testPairElement) bool {
  491. var constant Element
  492. constant.SetUint64(13)
  494. b := a.element
  495. b.Mul(&b, &constant)
  497. MulBy13(&a.element)
  499. return a.element.Equal(&b)
  500. },
  501. genA,
  502. ))
  504. properties.TestingRun(t, gopter.ConsoleReporter(false))
  505. // if we have ADX instruction enabled, test both path in assembly
  506. if supportAdx {
  507. t.Log("disabling ADX")
  508. supportAdx = false
  509. properties.TestingRun(t, gopter.ConsoleReporter(false))
  510. supportAdx = true
  511. }
  513. }
  515. func TestElementLegendre(t *testing.T) {
  516. parameters := gopter.DefaultTestParameters()
  517. if testing.Short() {
  518. parameters.MinSuccessfulTests = nbFuzzShort
  519. } else {
  520. parameters.MinSuccessfulTests = nbFuzz
  521. }
  523. properties := gopter.NewProperties(parameters)
  525. genA := gen()
  527. properties.Property("legendre should output same result than big.Int.Jacobi", prop.ForAll(
  528. func(a testPairElement) bool {
  529. return a.element.Legendre() == big.Jacobi(&a.bigint, Modulus())
  530. },
  531. genA,
  532. ))
  534. properties.TestingRun(t, gopter.ConsoleReporter(false))
  535. // if we have ADX instruction enabled, test both path in assembly
  536. if supportAdx {
  537. t.Log("disabling ADX")
  538. supportAdx = false
  539. properties.TestingRun(t, gopter.ConsoleReporter(false))
  540. supportAdx = true
  541. }
  543. }
  545. func TestElementButterflies(t *testing.T) {
  547. parameters := gopter.DefaultTestParameters()
  548. if testing.Short() {
  549. parameters.MinSuccessfulTests = nbFuzzShort
  550. } else {
  551. parameters.MinSuccessfulTests = nbFuzz
  552. }
  554. properties := gopter.NewProperties(parameters)
  556. genA := gen()
  558. properties.Property("butterfly0 == a -b; a +b", prop.ForAll(
  559. func(a, b testPairElement) bool {
  560. a0, b0 := a.element, b.element
  562. _butterflyGeneric(&a.element, &b.element)
  563. Butterfly(&a0, &b0)
  565. return a.element.Equal(&a0) && b.element.Equal(&b0)
  566. },
  567. genA,
  568. genA,
  569. ))
  571. properties.TestingRun(t, gopter.ConsoleReporter(false))
  572. // if we have ADX instruction enabled, test both path in assembly
  573. if supportAdx {
  574. t.Log("disabling ADX")
  575. supportAdx = false
  576. properties.TestingRun(t, gopter.ConsoleReporter(false))
  577. supportAdx = true
  578. }
  580. }
  582. func TestElementLexicographicallyLargest(t *testing.T) {
  583. parameters := gopter.DefaultTestParameters()
  584. if testing.Short() {
  585. parameters.MinSuccessfulTests = nbFuzzShort
  586. } else {
  587. parameters.MinSuccessfulTests = nbFuzz
  588. }
  590. properties := gopter.NewProperties(parameters)
  592. genA := gen()
  594. properties.Property("element.Cmp should match LexicographicallyLargest output", prop.ForAll(
  595. func(a testPairElement) bool {
  596. var negA Element
  597. negA.Neg(&a.element)
  599. cmpResult := a.element.Cmp(&negA)
  600. lResult := a.element.LexicographicallyLargest()
  602. if lResult && cmpResult == 1 {
  603. return true
  604. }
  605. if !lResult && cmpResult != 1 {
  606. return true
  607. }
  608. return false
  609. },
  610. genA,
  611. ))
  613. properties.TestingRun(t, gopter.ConsoleReporter(false))
  614. // if we have ADX instruction enabled, test both path in assembly
  615. if supportAdx {
  616. t.Log("disabling ADX")
  617. supportAdx = false
  618. properties.TestingRun(t, gopter.ConsoleReporter(false))
  619. supportAdx = true
  620. }
  622. }
  624. func TestElementAdd(t *testing.T) {
  625. parameters := gopter.DefaultTestParameters()
  626. if testing.Short() {
  627. parameters.MinSuccessfulTests = nbFuzzShort
  628. } else {
  629. parameters.MinSuccessfulTests = nbFuzz
  630. }
  632. properties := gopter.NewProperties(parameters)
  634. genA := gen()
  635. genB := gen()
  637. properties.Property("Add: having the receiver as operand should output the same result", prop.ForAll(
  638. func(a, b testPairElement) bool {
  639. var c, d Element
  640. d.Set(&a.element)
  642. c.Add(&a.element, &b.element)
  643. a.element.Add(&a.element, &b.element)
  644. b.element.Add(&d, &b.element)
  646. return a.element.Equal(&b.element) && a.element.Equal(&c) && b.element.Equal(&c)
  647. },
  648. genA,
  649. genB,
  650. ))
  652. properties.Property("Add: operation result must match big.Int result", prop.ForAll(
  653. func(a, b testPairElement) bool {
  654. {
  655. var c Element
  657. c.Add(&a.element, &b.element)
  659. var d, e big.Int
  660. d.Add(&a.bigint, &b.bigint).Mod(&d, Modulus())
  662. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  663. return false
  664. }
  665. }
  667. // fixed elements
  668. // a is random
  669. // r takes special values
  670. testValues := make([]Element, len(staticTestValues))
  671. copy(testValues, staticTestValues)
  673. for _, r := range testValues {
  674. var d, e, rb big.Int
  675. r.ToBigIntRegular(&rb)
  677. var c Element
  678. c.Add(&a.element, &r)
  679. d.Add(&a.bigint, &rb).Mod(&d, Modulus())
  681. // checking generic impl against asm path
  682. var cGeneric Element
  683. _addGeneric(&cGeneric, &a.element, &r)
  684. if !cGeneric.Equal(&c) {
  685. // need to give context to failing error.
  686. return false
  687. }
  689. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  690. return false
  691. }
  692. }
  693. return true
  694. },
  695. genA,
  696. genB,
  697. ))
  699. properties.Property("Add: operation result must be smaller than modulus", prop.ForAll(
  700. func(a, b testPairElement) bool {
  701. var c Element
  703. c.Add(&a.element, &b.element)
  705. return !c.biggerOrEqualModulus()
  706. },
  707. genA,
  708. genB,
  709. ))
  711. properties.Property("Add: assembly implementation must be consistent with generic one", prop.ForAll(
  712. func(a, b testPairElement) bool {
  713. var c, d Element
  714. c.Add(&a.element, &b.element)
  715. _addGeneric(&d, &a.element, &b.element)
  716. return c.Equal(&d)
  717. },
  718. genA,
  719. genB,
  720. ))
  722. specialValueTest := func() {
  723. // test special values against special values
  724. testValues := make([]Element, len(staticTestValues))
  725. copy(testValues, staticTestValues)
  727. for _, a := range testValues {
  728. var aBig big.Int
  729. a.ToBigIntRegular(&aBig)
  730. for _, b := range testValues {
  732. var bBig, d, e big.Int
  733. b.ToBigIntRegular(&bBig)
  735. var c Element
  736. c.Add(&a, &b)
  737. d.Add(&aBig, &bBig).Mod(&d, Modulus())
  739. // checking asm against generic impl
  740. var cGeneric Element
  741. _addGeneric(&cGeneric, &a, &b)
  742. if !cGeneric.Equal(&c) {
  743. t.Fatal("Add failed special test values: asm and generic impl don't match")
  744. }
  746. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  747. t.Fatal("Add failed special test values")
  748. }
  749. }
  750. }
  751. }
  753. properties.TestingRun(t, gopter.ConsoleReporter(false))
  754. specialValueTest()
  755. // if we have ADX instruction enabled, test both path in assembly
  756. if supportAdx {
  757. t.Log("disabling ADX")
  758. supportAdx = false
  759. properties.TestingRun(t, gopter.ConsoleReporter(false))
  760. specialValueTest()
  761. supportAdx = true
  762. }
  763. }
  765. func TestElementSub(t *testing.T) {
  766. parameters := gopter.DefaultTestParameters()
  767. if testing.Short() {
  768. parameters.MinSuccessfulTests = nbFuzzShort
  769. } else {
  770. parameters.MinSuccessfulTests = nbFuzz
  771. }
  773. properties := gopter.NewProperties(parameters)
  775. genA := gen()
  776. genB := gen()
  778. properties.Property("Sub: having the receiver as operand should output the same result", prop.ForAll(
  779. func(a, b testPairElement) bool {
  780. var c, d Element
  781. d.Set(&a.element)
  783. c.Sub(&a.element, &b.element)
  784. a.element.Sub(&a.element, &b.element)
  785. b.element.Sub(&d, &b.element)
  787. return a.element.Equal(&b.element) && a.element.Equal(&c) && b.element.Equal(&c)
  788. },
  789. genA,
  790. genB,
  791. ))
  793. properties.Property("Sub: operation result must match big.Int result", prop.ForAll(
  794. func(a, b testPairElement) bool {
  795. {
  796. var c Element
  798. c.Sub(&a.element, &b.element)
  800. var d, e big.Int
  801. d.Sub(&a.bigint, &b.bigint).Mod(&d, Modulus())
  803. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  804. return false
  805. }
  806. }
  808. // fixed elements
  809. // a is random
  810. // r takes special values
  811. testValues := make([]Element, len(staticTestValues))
  812. copy(testValues, staticTestValues)
  814. for _, r := range testValues {
  815. var d, e, rb big.Int
  816. r.ToBigIntRegular(&rb)
  818. var c Element
  819. c.Sub(&a.element, &r)
  820. d.Sub(&a.bigint, &rb).Mod(&d, Modulus())
  822. // checking generic impl against asm path
  823. var cGeneric Element
  824. _subGeneric(&cGeneric, &a.element, &r)
  825. if !cGeneric.Equal(&c) {
  826. // need to give context to failing error.
  827. return false
  828. }
  830. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  831. return false
  832. }
  833. }
  834. return true
  835. },
  836. genA,
  837. genB,
  838. ))
  840. properties.Property("Sub: operation result must be smaller than modulus", prop.ForAll(
  841. func(a, b testPairElement) bool {
  842. var c Element
  844. c.Sub(&a.element, &b.element)
  846. return !c.biggerOrEqualModulus()
  847. },
  848. genA,
  849. genB,
  850. ))
  852. properties.Property("Sub: assembly implementation must be consistent with generic one", prop.ForAll(
  853. func(a, b testPairElement) bool {
  854. var c, d Element
  855. c.Sub(&a.element, &b.element)
  856. _subGeneric(&d, &a.element, &b.element)
  857. return c.Equal(&d)
  858. },
  859. genA,
  860. genB,
  861. ))
  863. specialValueTest := func() {
  864. // test special values against special values
  865. testValues := make([]Element, len(staticTestValues))
  866. copy(testValues, staticTestValues)
  868. for _, a := range testValues {
  869. var aBig big.Int
  870. a.ToBigIntRegular(&aBig)
  871. for _, b := range testValues {
  873. var bBig, d, e big.Int
  874. b.ToBigIntRegular(&bBig)
  876. var c Element
  877. c.Sub(&a, &b)
  878. d.Sub(&aBig, &bBig).Mod(&d, Modulus())
  880. // checking asm against generic impl
  881. var cGeneric Element
  882. _subGeneric(&cGeneric, &a, &b)
  883. if !cGeneric.Equal(&c) {
  884. t.Fatal("Sub failed special test values: asm and generic impl don't match")
  885. }
  887. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  888. t.Fatal("Sub failed special test values")
  889. }
  890. }
  891. }
  892. }
  894. properties.TestingRun(t, gopter.ConsoleReporter(false))
  895. specialValueTest()
  896. // if we have ADX instruction enabled, test both path in assembly
  897. if supportAdx {
  898. t.Log("disabling ADX")
  899. supportAdx = false
  900. properties.TestingRun(t, gopter.ConsoleReporter(false))
  901. specialValueTest()
  902. supportAdx = true
  903. }
  904. }
  906. func TestElementMul(t *testing.T) {
  907. parameters := gopter.DefaultTestParameters()
  908. if testing.Short() {
  909. parameters.MinSuccessfulTests = nbFuzzShort
  910. } else {
  911. parameters.MinSuccessfulTests = nbFuzz
  912. }
  914. properties := gopter.NewProperties(parameters)
  916. genA := gen()
  917. genB := gen()
  919. properties.Property("Mul: having the receiver as operand should output the same result", prop.ForAll(
  920. func(a, b testPairElement) bool {
  921. var c, d Element
  922. d.Set(&a.element)
  924. c.Mul(&a.element, &b.element)
  925. a.element.Mul(&a.element, &b.element)
  926. b.element.Mul(&d, &b.element)
  928. return a.element.Equal(&b.element) && a.element.Equal(&c) && b.element.Equal(&c)
  929. },
  930. genA,
  931. genB,
  932. ))
  934. properties.Property("Mul: operation result must match big.Int result", prop.ForAll(
  935. func(a, b testPairElement) bool {
  936. {
  937. var c Element
  939. c.Mul(&a.element, &b.element)
  941. var d, e big.Int
  942. d.Mul(&a.bigint, &b.bigint).Mod(&d, Modulus())
  944. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  945. return false
  946. }
  947. }
  949. // fixed elements
  950. // a is random
  951. // r takes special values
  952. testValues := make([]Element, len(staticTestValues))
  953. copy(testValues, staticTestValues)
  955. for _, r := range testValues {
  956. var d, e, rb big.Int
  957. r.ToBigIntRegular(&rb)
  959. var c Element
  960. c.Mul(&a.element, &r)
  961. d.Mul(&a.bigint, &rb).Mod(&d, Modulus())
  963. // checking generic impl against asm path
  964. var cGeneric Element
  965. _mulGeneric(&cGeneric, &a.element, &r)
  966. if !cGeneric.Equal(&c) {
  967. // need to give context to failing error.
  968. return false
  969. }
  971. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  972. return false
  973. }
  974. }
  975. return true
  976. },
  977. genA,
  978. genB,
  979. ))
  981. properties.Property("Mul: operation result must be smaller than modulus", prop.ForAll(
  982. func(a, b testPairElement) bool {
  983. var c Element
  985. c.Mul(&a.element, &b.element)
  987. return !c.biggerOrEqualModulus()
  988. },
  989. genA,
  990. genB,
  991. ))
  993. properties.Property("Mul: assembly implementation must be consistent with generic one", prop.ForAll(
  994. func(a, b testPairElement) bool {
  995. var c, d Element
  996. c.Mul(&a.element, &b.element)
  997. _mulGeneric(&d, &a.element, &b.element)
  998. return c.Equal(&d)
  999. },
  1000. genA,
  1001. genB,
  1002. ))
  1004. specialValueTest := func() {
  1005. // test special values against special values
  1006. testValues := make([]Element, len(staticTestValues))
  1007. copy(testValues, staticTestValues)
  1009. for _, a := range testValues {
  1010. var aBig big.Int
  1011. a.ToBigIntRegular(&aBig)
  1012. for _, b := range testValues {
  1014. var bBig, d, e big.Int
  1015. b.ToBigIntRegular(&bBig)
  1017. var c Element
  1018. c.Mul(&a, &b)
  1019. d.Mul(&aBig, &bBig).Mod(&d, Modulus())
  1021. // checking asm against generic impl
  1022. var cGeneric Element
  1023. _mulGeneric(&cGeneric, &a, &b)
  1024. if !cGeneric.Equal(&c) {
  1025. t.Fatal("Mul failed special test values: asm and generic impl don't match")
  1026. }
  1028. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1029. t.Fatal("Mul failed special test values")
  1030. }
  1031. }
  1032. }
  1033. }
  1035. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1036. specialValueTest()
  1037. // if we have ADX instruction enabled, test both path in assembly
  1038. if supportAdx {
  1039. t.Log("disabling ADX")
  1040. supportAdx = false
  1041. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1042. specialValueTest()
  1043. supportAdx = true
  1044. }
  1045. }
  1047. func TestElementDiv(t *testing.T) {
  1048. parameters := gopter.DefaultTestParameters()
  1049. if testing.Short() {
  1050. parameters.MinSuccessfulTests = nbFuzzShort
  1051. } else {
  1052. parameters.MinSuccessfulTests = nbFuzz
  1053. }
  1055. properties := gopter.NewProperties(parameters)
  1057. genA := gen()
  1058. genB := gen()
  1060. properties.Property("Div: having the receiver as operand should output the same result", prop.ForAll(
  1061. func(a, b testPairElement) bool {
  1062. var c, d Element
  1063. d.Set(&a.element)
  1065. c.Div(&a.element, &b.element)
  1066. a.element.Div(&a.element, &b.element)
  1067. b.element.Div(&d, &b.element)
  1069. return a.element.Equal(&b.element) && a.element.Equal(&c) && b.element.Equal(&c)
  1070. },
  1071. genA,
  1072. genB,
  1073. ))
  1075. properties.Property("Div: operation result must match big.Int result", prop.ForAll(
  1076. func(a, b testPairElement) bool {
  1077. {
  1078. var c Element
  1080. c.Div(&a.element, &b.element)
  1082. var d, e big.Int
  1083. d.ModInverse(&b.bigint, Modulus())
  1084. d.Mul(&d, &a.bigint).Mod(&d, Modulus())
  1086. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1087. return false
  1088. }
  1089. }
  1091. // fixed elements
  1092. // a is random
  1093. // r takes special values
  1094. testValues := make([]Element, len(staticTestValues))
  1095. copy(testValues, staticTestValues)
  1097. for _, r := range testValues {
  1098. var d, e, rb big.Int
  1099. r.ToBigIntRegular(&rb)
  1101. var c Element
  1102. c.Div(&a.element, &r)
  1103. d.ModInverse(&rb, Modulus())
  1104. d.Mul(&d, &a.bigint).Mod(&d, Modulus())
  1106. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1107. return false
  1108. }
  1109. }
  1110. return true
  1111. },
  1112. genA,
  1113. genB,
  1114. ))
  1116. properties.Property("Div: operation result must be smaller than modulus", prop.ForAll(
  1117. func(a, b testPairElement) bool {
  1118. var c Element
  1120. c.Div(&a.element, &b.element)
  1122. return !c.biggerOrEqualModulus()
  1123. },
  1124. genA,
  1125. genB,
  1126. ))
  1128. specialValueTest := func() {
  1129. // test special values against special values
  1130. testValues := make([]Element, len(staticTestValues))
  1131. copy(testValues, staticTestValues)
  1133. for _, a := range testValues {
  1134. var aBig big.Int
  1135. a.ToBigIntRegular(&aBig)
  1136. for _, b := range testValues {
  1138. var bBig, d, e big.Int
  1139. b.ToBigIntRegular(&bBig)
  1141. var c Element
  1142. c.Div(&a, &b)
  1143. d.ModInverse(&bBig, Modulus())
  1144. d.Mul(&d, &aBig).Mod(&d, Modulus())
  1146. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1147. t.Fatal("Div failed special test values")
  1148. }
  1149. }
  1150. }
  1151. }
  1153. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1154. specialValueTest()
  1155. // if we have ADX instruction enabled, test both path in assembly
  1156. if supportAdx {
  1157. t.Log("disabling ADX")
  1158. supportAdx = false
  1159. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1160. specialValueTest()
  1161. supportAdx = true
  1162. }
  1163. }
  1165. func TestElementExp(t *testing.T) {
  1166. parameters := gopter.DefaultTestParameters()
  1167. if testing.Short() {
  1168. parameters.MinSuccessfulTests = nbFuzzShort
  1169. } else {
  1170. parameters.MinSuccessfulTests = nbFuzz
  1171. }
  1173. properties := gopter.NewProperties(parameters)
  1175. genA := gen()
  1176. genB := gen()
  1178. properties.Property("Exp: having the receiver as operand should output the same result", prop.ForAll(
  1179. func(a, b testPairElement) bool {
  1180. var c, d Element
  1181. d.Set(&a.element)
  1183. c.Exp(a.element, &b.bigint)
  1184. a.element.Exp(a.element, &b.bigint)
  1185. b.element.Exp(d, &b.bigint)
  1187. return a.element.Equal(&b.element) && a.element.Equal(&c) && b.element.Equal(&c)
  1188. },
  1189. genA,
  1190. genB,
  1191. ))
  1193. properties.Property("Exp: operation result must match big.Int result", prop.ForAll(
  1194. func(a, b testPairElement) bool {
  1195. {
  1196. var c Element
  1198. c.Exp(a.element, &b.bigint)
  1200. var d, e big.Int
  1201. d.Exp(&a.bigint, &b.bigint, Modulus())
  1203. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1204. return false
  1205. }
  1206. }
  1208. // fixed elements
  1209. // a is random
  1210. // r takes special values
  1211. testValues := make([]Element, len(staticTestValues))
  1212. copy(testValues, staticTestValues)
  1214. for _, r := range testValues {
  1215. var d, e, rb big.Int
  1216. r.ToBigIntRegular(&rb)
  1218. var c Element
  1219. c.Exp(a.element, &rb)
  1220. d.Exp(&a.bigint, &rb, Modulus())
  1222. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1223. return false
  1224. }
  1225. }
  1226. return true
  1227. },
  1228. genA,
  1229. genB,
  1230. ))
  1232. properties.Property("Exp: operation result must be smaller than modulus", prop.ForAll(
  1233. func(a, b testPairElement) bool {
  1234. var c Element
  1236. c.Exp(a.element, &b.bigint)
  1238. return !c.biggerOrEqualModulus()
  1239. },
  1240. genA,
  1241. genB,
  1242. ))
  1244. specialValueTest := func() {
  1245. // test special values against special values
  1246. testValues := make([]Element, len(staticTestValues))
  1247. copy(testValues, staticTestValues)
  1249. for _, a := range testValues {
  1250. var aBig big.Int
  1251. a.ToBigIntRegular(&aBig)
  1252. for _, b := range testValues {
  1254. var bBig, d, e big.Int
  1255. b.ToBigIntRegular(&bBig)
  1257. var c Element
  1258. c.Exp(a, &bBig)
  1259. d.Exp(&aBig, &bBig, Modulus())
  1261. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1262. t.Fatal("Exp failed special test values")
  1263. }
  1264. }
  1265. }
  1266. }
  1268. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1269. specialValueTest()
  1270. // if we have ADX instruction enabled, test both path in assembly
  1271. if supportAdx {
  1272. t.Log("disabling ADX")
  1273. supportAdx = false
  1274. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1275. specialValueTest()
  1276. supportAdx = true
  1277. }
  1278. }
  1280. func TestElementSquare(t *testing.T) {
  1281. parameters := gopter.DefaultTestParameters()
  1282. if testing.Short() {
  1283. parameters.MinSuccessfulTests = nbFuzzShort
  1284. } else {
  1285. parameters.MinSuccessfulTests = nbFuzz
  1286. }
  1288. properties := gopter.NewProperties(parameters)
  1290. genA := gen()
  1292. properties.Property("Square: having the receiver as operand should output the same result", prop.ForAll(
  1293. func(a testPairElement) bool {
  1295. var b Element
  1297. b.Square(&a.element)
  1298. a.element.Square(&a.element)
  1299. return a.element.Equal(&b)
  1300. },
  1301. genA,
  1302. ))
  1304. properties.Property("Square: operation result must match big.Int result", prop.ForAll(
  1305. func(a testPairElement) bool {
  1306. var c Element
  1307. c.Square(&a.element)
  1309. var d, e big.Int
  1310. d.Mul(&a.bigint, &a.bigint).Mod(&d, Modulus())
  1312. return c.FromMont().ToBigInt(&e).Cmp(&d) == 0
  1313. },
  1314. genA,
  1315. ))
  1317. properties.Property("Square: operation result must be smaller than modulus", prop.ForAll(
  1318. func(a testPairElement) bool {
  1319. var c Element
  1320. c.Square(&a.element)
  1321. return !c.biggerOrEqualModulus()
  1322. },
  1323. genA,
  1324. ))
  1326. specialValueTest := func() {
  1327. // test special values
  1328. testValues := make([]Element, len(staticTestValues))
  1329. copy(testValues, staticTestValues)
  1331. for _, a := range testValues {
  1332. var aBig big.Int
  1333. a.ToBigIntRegular(&aBig)
  1334. var c Element
  1335. c.Square(&a)
  1337. var d, e big.Int
  1338. d.Mul(&aBig, &aBig).Mod(&d, Modulus())
  1340. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1341. t.Fatal("Square failed special test values")
  1342. }
  1343. }
  1344. }
  1346. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1347. specialValueTest()
  1348. // if we have ADX instruction enabled, test both path in assembly
  1349. if supportAdx {
  1350. supportAdx = false
  1351. t.Log("disabling ADX")
  1352. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1353. specialValueTest()
  1354. supportAdx = true
  1355. }
  1356. }
  1358. func TestElementInverse(t *testing.T) {
  1359. parameters := gopter.DefaultTestParameters()
  1360. if testing.Short() {
  1361. parameters.MinSuccessfulTests = nbFuzzShort
  1362. } else {
  1363. parameters.MinSuccessfulTests = nbFuzz
  1364. }
  1366. properties := gopter.NewProperties(parameters)
  1368. genA := gen()
  1370. properties.Property("Inverse: having the receiver as operand should output the same result", prop.ForAll(
  1371. func(a testPairElement) bool {
  1373. var b Element
  1375. b.Inverse(&a.element)
  1376. a.element.Inverse(&a.element)
  1377. return a.element.Equal(&b)
  1378. },
  1379. genA,
  1380. ))
  1382. properties.Property("Inverse: operation result must match big.Int result", prop.ForAll(
  1383. func(a testPairElement) bool {
  1384. var c Element
  1385. c.Inverse(&a.element)
  1387. var d, e big.Int
  1388. d.ModInverse(&a.bigint, Modulus())
  1390. return c.FromMont().ToBigInt(&e).Cmp(&d) == 0
  1391. },
  1392. genA,
  1393. ))
  1395. properties.Property("Inverse: operation result must be smaller than modulus", prop.ForAll(
  1396. func(a testPairElement) bool {
  1397. var c Element
  1398. c.Inverse(&a.element)
  1399. return !c.biggerOrEqualModulus()
  1400. },
  1401. genA,
  1402. ))
  1404. specialValueTest := func() {
  1405. // test special values
  1406. testValues := make([]Element, len(staticTestValues))
  1407. copy(testValues, staticTestValues)
  1409. for _, a := range testValues {
  1410. var aBig big.Int
  1411. a.ToBigIntRegular(&aBig)
  1412. var c Element
  1413. c.Inverse(&a)
  1415. var d, e big.Int
  1416. d.ModInverse(&aBig, Modulus())
  1418. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1419. t.Fatal("Inverse failed special test values")
  1420. }
  1421. }
  1422. }
  1424. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1425. specialValueTest()
  1426. // if we have ADX instruction enabled, test both path in assembly
  1427. if supportAdx {
  1428. supportAdx = false
  1429. t.Log("disabling ADX")
  1430. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1431. specialValueTest()
  1432. supportAdx = true
  1433. }
  1434. }
  1436. func TestElementSqrt(t *testing.T) {
  1437. parameters := gopter.DefaultTestParameters()
  1438. if testing.Short() {
  1439. parameters.MinSuccessfulTests = nbFuzzShort
  1440. } else {
  1441. parameters.MinSuccessfulTests = nbFuzz
  1442. }
  1444. properties := gopter.NewProperties(parameters)
  1446. genA := gen()
  1448. properties.Property("Sqrt: having the receiver as operand should output the same result", prop.ForAll(
  1449. func(a testPairElement) bool {
  1451. b := a.element
  1453. b.Sqrt(&a.element)
  1454. a.element.Sqrt(&a.element)
  1455. return a.element.Equal(&b)
  1456. },
  1457. genA,
  1458. ))
  1460. properties.Property("Sqrt: operation result must match big.Int result", prop.ForAll(
  1461. func(a testPairElement) bool {
  1462. var c Element
  1463. c.Sqrt(&a.element)
  1465. var d, e big.Int
  1466. d.ModSqrt(&a.bigint, Modulus())
  1468. return c.FromMont().ToBigInt(&e).Cmp(&d) == 0
  1469. },
  1470. genA,
  1471. ))
  1473. properties.Property("Sqrt: operation result must be smaller than modulus", prop.ForAll(
  1474. func(a testPairElement) bool {
  1475. var c Element
  1476. c.Sqrt(&a.element)
  1477. return !c.biggerOrEqualModulus()
  1478. },
  1479. genA,
  1480. ))
  1482. specialValueTest := func() {
  1483. // test special values
  1484. testValues := make([]Element, len(staticTestValues))
  1485. copy(testValues, staticTestValues)
  1487. for _, a := range testValues {
  1488. var aBig big.Int
  1489. a.ToBigIntRegular(&aBig)
  1490. var c Element
  1491. c.Sqrt(&a)
  1493. var d, e big.Int
  1494. d.ModSqrt(&aBig, Modulus())
  1496. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1497. t.Fatal("Sqrt failed special test values")
  1498. }
  1499. }
  1500. }
  1502. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1503. specialValueTest()
  1504. // if we have ADX instruction enabled, test both path in assembly
  1505. if supportAdx {
  1506. supportAdx = false
  1507. t.Log("disabling ADX")
  1508. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1509. specialValueTest()
  1510. supportAdx = true
  1511. }
  1512. }
  1514. func TestElementDouble(t *testing.T) {
  1515. parameters := gopter.DefaultTestParameters()
  1516. if testing.Short() {
  1517. parameters.MinSuccessfulTests = nbFuzzShort
  1518. } else {
  1519. parameters.MinSuccessfulTests = nbFuzz
  1520. }
  1522. properties := gopter.NewProperties(parameters)
  1524. genA := gen()
  1526. properties.Property("Double: having the receiver as operand should output the same result", prop.ForAll(
  1527. func(a testPairElement) bool {
  1529. var b Element
  1531. b.Double(&a.element)
  1532. a.element.Double(&a.element)
  1533. return a.element.Equal(&b)
  1534. },
  1535. genA,
  1536. ))
  1538. properties.Property("Double: operation result must match big.Int result", prop.ForAll(
  1539. func(a testPairElement) bool {
  1540. var c Element
  1541. c.Double(&a.element)
  1543. var d, e big.Int
  1544. d.Lsh(&a.bigint, 1).Mod(&d, Modulus())
  1546. return c.FromMont().ToBigInt(&e).Cmp(&d) == 0
  1547. },
  1548. genA,
  1549. ))
  1551. properties.Property("Double: operation result must be smaller than modulus", prop.ForAll(
  1552. func(a testPairElement) bool {
  1553. var c Element
  1554. c.Double(&a.element)
  1555. return !c.biggerOrEqualModulus()
  1556. },
  1557. genA,
  1558. ))
  1560. properties.Property("Double: assembly implementation must be consistent with generic one", prop.ForAll(
  1561. func(a testPairElement) bool {
  1562. var c, d Element
  1563. c.Double(&a.element)
  1564. _doubleGeneric(&d, &a.element)
  1565. return c.Equal(&d)
  1566. },
  1567. genA,
  1568. ))
  1570. specialValueTest := func() {
  1571. // test special values
  1572. testValues := make([]Element, len(staticTestValues))
  1573. copy(testValues, staticTestValues)
  1575. for _, a := range testValues {
  1576. var aBig big.Int
  1577. a.ToBigIntRegular(&aBig)
  1578. var c Element
  1579. c.Double(&a)
  1581. var d, e big.Int
  1582. d.Lsh(&aBig, 1).Mod(&d, Modulus())
  1584. // checking asm against generic impl
  1585. var cGeneric Element
  1586. _doubleGeneric(&cGeneric, &a)
  1587. if !cGeneric.Equal(&c) {
  1588. t.Fatal("Double failed special test values: asm and generic impl don't match")
  1589. }
  1591. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1592. t.Fatal("Double failed special test values")
  1593. }
  1594. }
  1595. }
  1597. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1598. specialValueTest()
  1599. // if we have ADX instruction enabled, test both path in assembly
  1600. if supportAdx {
  1601. supportAdx = false
  1602. t.Log("disabling ADX")
  1603. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1604. specialValueTest()
  1605. supportAdx = true
  1606. }
  1607. }
  1609. func TestElementNeg(t *testing.T) {
  1610. parameters := gopter.DefaultTestParameters()
  1611. if testing.Short() {
  1612. parameters.MinSuccessfulTests = nbFuzzShort
  1613. } else {
  1614. parameters.MinSuccessfulTests = nbFuzz
  1615. }
  1617. properties := gopter.NewProperties(parameters)
  1619. genA := gen()
  1621. properties.Property("Neg: having the receiver as operand should output the same result", prop.ForAll(
  1622. func(a testPairElement) bool {
  1624. var b Element
  1626. b.Neg(&a.element)
  1627. a.element.Neg(&a.element)
  1628. return a.element.Equal(&b)
  1629. },
  1630. genA,
  1631. ))
  1633. properties.Property("Neg: operation result must match big.Int result", prop.ForAll(
  1634. func(a testPairElement) bool {
  1635. var c Element
  1636. c.Neg(&a.element)
  1638. var d, e big.Int
  1639. d.Neg(&a.bigint).Mod(&d, Modulus())
  1641. return c.FromMont().ToBigInt(&e).Cmp(&d) == 0
  1642. },
  1643. genA,
  1644. ))
  1646. properties.Property("Neg: operation result must be smaller than modulus", prop.ForAll(
  1647. func(a testPairElement) bool {
  1648. var c Element
  1649. c.Neg(&a.element)
  1650. return !c.biggerOrEqualModulus()
  1651. },
  1652. genA,
  1653. ))
  1655. properties.Property("Neg: assembly implementation must be consistent with generic one", prop.ForAll(
  1656. func(a testPairElement) bool {
  1657. var c, d Element
  1658. c.Neg(&a.element)
  1659. _negGeneric(&d, &a.element)
  1660. return c.Equal(&d)
  1661. },
  1662. genA,
  1663. ))
  1665. specialValueTest := func() {
  1666. // test special values
  1667. testValues := make([]Element, len(staticTestValues))
  1668. copy(testValues, staticTestValues)
  1670. for _, a := range testValues {
  1671. var aBig big.Int
  1672. a.ToBigIntRegular(&aBig)
  1673. var c Element
  1674. c.Neg(&a)
  1676. var d, e big.Int
  1677. d.Neg(&aBig).Mod(&d, Modulus())
  1679. // checking asm against generic impl
  1680. var cGeneric Element
  1681. _negGeneric(&cGeneric, &a)
  1682. if !cGeneric.Equal(&c) {
  1683. t.Fatal("Neg failed special test values: asm and generic impl don't match")
  1684. }
  1686. if c.FromMont().ToBigInt(&e).Cmp(&d) != 0 {
  1687. t.Fatal("Neg failed special test values")
  1688. }
  1689. }
  1690. }
  1692. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1693. specialValueTest()
  1694. // if we have ADX instruction enabled, test both path in assembly
  1695. if supportAdx {
  1696. supportAdx = false
  1697. t.Log("disabling ADX")
  1698. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1699. specialValueTest()
  1700. supportAdx = true
  1701. }
  1702. }
  1704. func TestElementHalve(t *testing.T) {
  1706. parameters := gopter.DefaultTestParameters()
  1707. if testing.Short() {
  1708. parameters.MinSuccessfulTests = nbFuzzShort
  1709. } else {
  1710. parameters.MinSuccessfulTests = nbFuzz
  1711. }
  1713. properties := gopter.NewProperties(parameters)
  1715. genA := gen()
  1716. var twoInv Element
  1717. twoInv.SetUint64(2)
  1718. twoInv.Inverse(&twoInv)
  1720. properties.Property("z.Halve must match z / 2", prop.ForAll(
  1721. func(a testPairElement) bool {
  1722. c := a.element
  1723. d := a.element
  1724. c.Halve()
  1725. d.Mul(&d, &twoInv)
  1726. return c.Equal(&d)
  1727. },
  1728. genA,
  1729. ))
  1731. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1732. }
  1734. func TestElementFromMont(t *testing.T) {
  1736. parameters := gopter.DefaultTestParameters()
  1737. if testing.Short() {
  1738. parameters.MinSuccessfulTests = nbFuzzShort
  1739. } else {
  1740. parameters.MinSuccessfulTests = nbFuzz
  1741. }
  1743. properties := gopter.NewProperties(parameters)
  1745. genA := gen()
  1747. properties.Property("Assembly implementation must be consistent with generic one", prop.ForAll(
  1748. func(a testPairElement) bool {
  1749. c := a.element
  1750. d := a.element
  1751. c.FromMont()
  1752. _fromMontGeneric(&d)
  1753. return c.Equal(&d)
  1754. },
  1755. genA,
  1756. ))
  1758. properties.Property("x.FromMont().ToMont() == x", prop.ForAll(
  1759. func(a testPairElement) bool {
  1760. c := a.element
  1761. c.FromMont().ToMont()
  1762. return c.Equal(&a.element)
  1763. },
  1764. genA,
  1765. ))
  1767. properties.TestingRun(t, gopter.ConsoleReporter(false))
  1768. }
  1770. type testPairElement struct {
  1771. element Element
  1772. bigint big.Int
  1773. }
  1775. func (z *Element) biggerOrEqualModulus() bool {
  1776. if z[3] > qElement[3] {
  1777. return true
  1778. }
  1779. if z[3] < qElement[3] {
  1780. return false
  1781. }
  1783. if z[2] > qElement[2] {
  1784. return true
  1785. }
  1786. if z[2] < qElement[2] {
  1787. return false
  1788. }
  1790. if z[1] > qElement[1] {
  1791. return true
  1792. }
  1793. if z[1] < qElement[1] {
  1794. return false
  1795. }
  1797. return z[0] >= qElement[0]
  1798. }
  1800. func gen() gopter.Gen {
  1801. return func(genParams *gopter.GenParameters) *gopter.GenResult {
  1802. var g testPairElement
  1804. g.element = Element{
  1805. genParams.NextUint64(),
  1806. genParams.NextUint64(),
  1807. genParams.NextUint64(),
  1808. genParams.NextUint64(),
  1809. }
  1810. if qElement[3] != ^uint64(0) {
  1811. g.element[3] %= (qElement[3] + 1)
  1812. }
  1814. for g.element.biggerOrEqualModulus() {
  1815. g.element = Element{
  1816. genParams.NextUint64(),
  1817. genParams.NextUint64(),
  1818. genParams.NextUint64(),
  1819. genParams.NextUint64(),
  1820. }
  1821. if qElement[3] != ^uint64(0) {
  1822. g.element[3] %= (qElement[3] + 1)
  1823. }
  1824. }
  1826. g.element.ToBigIntRegular(&g.bigint)
  1827. genResult := gopter.NewGenResult(g, gopter.NoShrinker)
  1828. return genResult
  1829. }
  1830. }
  1832. func genFull() gopter.Gen {
  1833. return func(genParams *gopter.GenParameters) *gopter.GenResult {
  1835. genRandomFq := func() Element {
  1836. var g Element
  1838. g = Element{
  1839. genParams.NextUint64(),
  1840. genParams.NextUint64(),
  1841. genParams.NextUint64(),
  1842. genParams.NextUint64(),
  1843. }
  1845. if qElement[3] != ^uint64(0) {
  1846. g[3] %= (qElement[3] + 1)
  1847. }
  1849. for g.biggerOrEqualModulus() {
  1850. g = Element{
  1851. genParams.NextUint64(),
  1852. genParams.NextUint64(),
  1853. genParams.NextUint64(),
  1854. genParams.NextUint64(),
  1855. }
  1856. if qElement[3] != ^uint64(0) {
  1857. g[3] %= (qElement[3] + 1)
  1858. }
  1859. }
  1861. return g
  1862. }
  1863. a := genRandomFq()
  1865. var carry uint64
  1866. a[0], carry = bits.Add64(a[0], qElement[0], carry)
  1867. a[1], carry = bits.Add64(a[1], qElement[1], carry)
  1868. a[2], carry = bits.Add64(a[2], qElement[2], carry)
  1869. a[3], _ = bits.Add64(a[3], qElement[3], carry)
  1871. genResult := gopter.NewGenResult(a, gopter.NoShrinker)
  1872. return genResult
  1873. }
  1874. }