Skip to content

ctutils: add u128 methods to Choice #1277

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tarcieri merged 1 commit into from
Dec 27, 2025
+55 −0
Merged

ctutils: add u128 methods to Choice #1277

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
55 changes: 55 additions & 0 deletions ctutils/src/choice.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -202,6 +202,20 @@ impl Choice {
Self::from_u64_lsb((value | value.wrapping_neg()) >> (u64::BITS - 1))
}

/// Returns the truthy value if `x <= y` and the falsy value otherwise.
#[inline]
pub const fn from_u128_le(x: u128, y: u128) -> Self {
// See "Hacker's Delight" 2nd ed, section 2-12 (Comparison predicates)
let bit = (((!x) | y) & ((x ^ y) | !(y.wrapping_sub(x)))) >> (u128::BITS - 1);
Self::from_u128_lsb(bit)
}

/// Initialize from the least significant bit of a `u128`.
#[inline]
pub const fn from_u128_lsb(value: u128) -> Self {
Self::new((value & 1) as u8)
}

//
// `const fn` predication methods
//
Expand Down Expand Up @@ -233,6 +247,15 @@ impl Choice {
a ^ (self.to_u64_mask() & (a ^ b))
}

/// `const fn` helper: return `b` if `self` is truthy, otherwise return `a`.
///
/// Only use this instead of the [`CtSelect`] trait in the event you're in a `const fn` context
/// and can't use the trait. The former will provide better constant-time assurances.
#[inline]
pub const fn select_u128(self, a: u128, b: u128) -> u128 {
a ^ (self.to_u128_mask() & (a ^ b))
}

/// Create a `u32` bitmask.
///
/// # Returns
Expand All @@ -252,6 +275,16 @@ impl Choice {
pub const fn to_u64_mask(self) -> u64 {
(self.0 as u64 & 1).wrapping_neg()
}

/// Create a `u128` bitmask.
///
/// # Returns
/// - `0` for `Choice::FALSE`
/// - `u128::MAX` for `Choice::TRUE`
#[inline]
pub const fn to_u128_mask(self) -> u128 {
(self.0 as u128 & 1).wrapping_neg()
}
}

impl BitAnd for Choice {
Expand Down Expand Up @@ -501,6 +534,20 @@ mod tests {
assert_eq!(Choice::from_u64_nonzero(2), Choice::TRUE);
}

#[test]
fn from_u128_le() {
assert_eq!(Choice::from_u128_le(0, 0), Choice::TRUE);
assert_eq!(Choice::from_u128_le(1, 0), Choice::FALSE);
assert_eq!(Choice::from_u128_le(1, 1), Choice::TRUE);
assert_eq!(Choice::from_u128_le(1, 2), Choice::TRUE);
}

#[test]
fn from_u128_lsb() {
assert_eq!(Choice::from_u128_lsb(0), Choice::FALSE);
assert_eq!(Choice::from_u128_lsb(1), Choice::TRUE);
}

#[test]
fn select_i64() {
let a: i64 = 1;
Expand All @@ -524,4 +571,12 @@ mod tests {
assert_eq!(Choice::TRUE.select_u64(a, b), b);
assert_eq!(Choice::FALSE.select_u64(a, b), a);
}

#[test]
fn select_u128() {
let a: u128 = 1;
let b: u128 = 2;
assert_eq!(Choice::TRUE.select_u128(a, b), b);
assert_eq!(Choice::FALSE.select_u128(a, b), a);
}
}