Introduce FieldVec and improve Polynomial and InvalidResidueError
#204
Conversation
apoelstra
force-pushed
the
2024-09--fieldvec
branch
from
3ad8929
to
74a80d3
Compare
src/primitives/polynomial.rs
Outdated
| /// Panics if [`Self::has_data`] is false, with an informative panic message. | ||
| /// Provide access to the underlying [`FieldVec`]. | ||
| pub fn into_inner(self) -> FieldVec<F> { self.inner } |
There was a problem hiding this comment.
Docs and code don't match, this doesn't panic, did you mean to call assert_has_data()
There was a problem hiding this comment.
No, I think the comment is just out of date. I moved all the panics into functions on FieldVec so there's no need for anything in Polynomial to directly panic.
src/primitives/polynomial.rs
Outdated
| /// Provide access to the underlying [`FieldVec`]. | ||
| pub fn into_inner(self) -> FieldVec<F> { self.inner } | ||
|
|
||
| /// Provide access to the underlying [`FieldVec`]. |
There was a problem hiding this comment.
Doing super picky review because we should be very close to 1.0'ing this crate.
| /// Provide access to the underlying [`FieldVec`]. | |
| /// Provides access to the underlying [`FieldVec`]. |
src/primitives/polynomial.rs
Outdated
|
|
||
| impl<F: Field> ops::Sub<&Polynomial<F>> for Polynomial<F> { | ||
| type Output = Polynomial<F>; | ||
| fn sub(self, other: &Polynomial<F>) -> Polynomial<F> { self + other } |
There was a problem hiding this comment.
This is finite field math so add and sub are the same, right? Perhaps add a comment for less cryptographically trained devs.
There was a problem hiding this comment.
In this case I probably should actually pass through to the sub impl for F (which is the same as the add impl in all cases, because I have a binary field, but this stuff should all still work even with non-binary fields).
apoelstra
force-pushed
the
2024-09--fieldvec
branch
from
74a80d3
to
7a28bac
Compare
|
Clicked "resolve" on the conversations we agreed were not actionable. Force-pushed to address the other comments. |
apoelstra
force-pushed
the
2024-09--fieldvec
branch
from
7a28bac
to
8ee88fc
Compare
|
Second force-push was to fix a bug converting residues to polynomials which I noticed when working on the next PR. |
apoelstra
force-pushed
the
2024-09--fieldvec
branch
5 times, most recently
from
8d1b8c8
to
3b74657
Compare
apoelstra
force-pushed
the
2024-09--fieldvec
branch
from
3b74657
to
03d265d
Compare
|
Ok, I have working error correction code now based on this PR :). I will stop iterating on it until somebody reviews it. |
|
Is a further non-math review useful by me, I can do it if so. I don't want to bother the PR with petty concerns if not. |
|
I think it'd be valuable, yeah, if you're willing to take the time. |
|
I'll make a coffee :) |
| /// Parameterized by the field type `F` which can be anything, but for most methods | ||
| /// to be enabled needs `Default` and `Clone`. (Both are implied by `Field`.) | ||
| #[derive(PartialEq, Eq, Clone, Debug, Hash)] | ||
| pub struct FieldVec<F> { |
There was a problem hiding this comment.
Why go to trouble of mentioning that this should not be exposed in the public API and make this type pub? Code seems to build with pub(crate). Is it because of upcoming work?
There was a problem hiding this comment.
pub(crate) would make this visible to the entire crate. pub makes it visible only to the parent module (who in turn re-exports it privately to make it visible to other submodules).
I could do pub(super) if it makes you happier.
There was a problem hiding this comment.
Oh with private field module, I've never thought to do that before. Thanks for the explanation.
| iter::successors(Some(F::ONE), |gen| Some(elem.clone() * gen)).take(n + 1).collect() | ||
| } | ||
|
|
||
| /// Multiply the elements of two vectors together, pointwise. |
There was a problem hiding this comment.
Sure, I'll add them. Though all these docs are private of course.
There was a problem hiding this comment.
Should have had two coffees, didn't notice the whole field module being private yesterday.
| } | ||
| } | ||
|
|
||
| /// Multiply the elements of two vectors together, pointwise. |
There was a problem hiding this comment.
And panic docs here I suppose as well.
| impl<F: Default> FieldVec<F> { | ||
| /// Pushes an item onto the end of the vector. | ||
| pub fn push(&mut self, item: F) { | ||
| self.len += 1; |
There was a problem hiding this comment.
Perhaps its slightly cleaner to put this increment at the end of the function, saves all the + 1s below and saves reader from having to check there are no return paths where the increment was done and an item not added.
There was a problem hiding this comment.
Oh, did you write this to be uniform with pop?
There was a problem hiding this comment.
Yeah, agreed, it'd be cleaner to move the increment. Will do.
There was a problem hiding this comment.
@tcharding actually, the increment is before the assert_has_data assertion so that the panic message will be informative if you try to push too much data. Otherwise there'll just be an "index out of bounds" panic in the no-alloc case.
There was a problem hiding this comment.
Interesting, I missed that. Thanks.
| #[cfg(not(feature = "alloc"))] | ||
| { | ||
| self.inner_a[self.len - 1] = item; | ||
| } |
There was a problem hiding this comment.
| #[cfg(not(feature = "alloc"))] | |
| { | |
| self.inner_a[self.len - 1] = item; | |
| } | |
| #[cfg(not(feature = "alloc"))] | |
| self.inner_a[self.len - 1] = item; |
Or self.inner_a[self.len] = item if you use my other suggestion.
There was a problem hiding this comment.
Did you try compiling this suggestion?
There was a problem hiding this comment.
error[E0658]: attributes on expressions are experimental
Worst review suggestion ever :)
apoelstra
force-pushed
the
2024-09--fieldvec
branch
2 times, most recently
from
61f0810
to
28c97e6
Compare
|
Improved doccomments and added a bunch of unit tests. Also added missing |
This will allow `Polynomial` to work without an allocator (at least for "small" checksums. Here a "small" checksum is one of length at most 6 (which covers bech32 and bech32m). The descriptor checksum (8 characters), codex32 (13 characters) and "long codex32" (15 characters) will not work with no-alloc. I would like to fix this but it results in large types, especially a large InvalidResidueError type (see last commit of this PR), so probably it will need to be feature-gated or something. For now we just punt on it. This PR introduces the `primitives::correction` module but only puts a single constant into it for now.
We can now use `PrintImpl` even without an allocator. This is of limited use of course, but it paves the ground for use to do error correction without an allocator, which is interesting.
We are going to want to extend the ChecksumError::InvalidResidue error variant to allow error correction, and in order to do so, we need to know the actual residue computed from a string, not just that the residue failed to match the target. Uses the `Polynomial` type; see the previous commits for some caveats about this type when alloc is disabled. (Prior to this PR, you just couldn't use Polynomial at all without alloc.) As an initial application of the new error, avoid re-validating a bech32 address to handle the distinction between bech32m and bech32. Instead, if bech32m validation fails, check if the "bad" residue actually matches the bech32 target. If so, accept. On my system this reduces the `bech32_parse_address` benchmark from 610ns to 455ns, more than a 33% speedup.
This is just a helper trait to describe all the errors in the library from which we can get an "invalid residue". The residues contain all the information needed for error correction.
Two polynomials are equal even if they have a different number of leading zeros. Putting this into its own commit rather than folding it into one of the FieldVec commits, because this bug was present even before the FieldVec stuff. Also remove the `Hash` impl because it's unneeded and we would be expected to keep it in sync with Eq.
apoelstra
force-pushed
the
2024-09--fieldvec
branch
from
28c97e6
to
c209ce8
Compare
This introduces a new internal type
FieldVecwhich is basically a backing array for checksum residues with some fiddly logic to work in a noalloc context.Unlike ArrayVec or other similar types, this one's semantics are "an unbounded vector if you have an allocator, a bounded vector otherwise". If you go outside of the bounds without an allocator the code will panic, but our use of it ensures that this is never exposed to a user.
It also assumes that it's holding a
Defaulttype which lets us avoid unsafety (and dismisses the potential performance cost because this array is never expected to have more than 10 or 20 elements, even when it is "unbounded").Using this backing, it improves
Polynomialand removes the alloc bound from it; using this, it putsPolynomialinto a newInvalidResidueErrortype, which will allow users to extract the necessary information from a checksum error to run the error correction algorithm. (The resulting change to an error type makes this an API-breaking change, though I don't think that anything else here is API-breaking.)The next PR will actually implement correction :).