Skip to content

crypto: Restrict conjugate() to degree-2 extension fields#1485

Merged
chfast merged 2 commits into
masterfrom
crypto/conjugate
Apr 14, 2026
Merged

crypto: Restrict conjugate() to degree-2 extension fields#1485
chfast merged 2 commits into
masterfrom
crypto/conjugate

Conversation

@chfast

@chfast chfast commented Apr 6, 2026

Copy link
Copy Markdown
Member

The conjugate operation (negating the second coefficient) is only mathematically correct for degree-2 extensions. Add a requires clause to prevent misuse on degree-3+ types where it would produce incorrect results silently.

@chfast
crypto: Restrict conjugate() to degree-2 extension fields
563268e 
The conjugate operation (negating the second coefficient) is only
mathematically correct for degree-2 extensions. Add a requires clause
to prevent misuse on degree-3+ types where it would produce incorrect
results silently.
@chfast chfast requested review from Copilot and rodiazet April 6, 2026 16:57
Copilot AI reviewed Apr 6, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR prevents mathematically incorrect use of ExtFieldElem::conjugate() by restricting it to quadratic (degree-2) extension fields, where conjugation is defined as negating the second coefficient.

Changes:

  • Add a C++20 requires(DEGREE == 2) constraint to ExtFieldElem::conjugate().
  • Simplify the conjugation implementation to directly return (a, -b) for degree-2 elements.
  • Update the doc comment to explicitly document the degree-2 semantics.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@codecov

codecov Bot commented Apr 6, 2026
edited
Loading

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 96.74%. Comparing base (1ed243d) to head (eb0eab2).
⚠️ Report is 1 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #1485      +/-   ##
==========================================
- Coverage   96.74%   96.74%   -0.01%     
==========================================
  Files         156      156              
  Lines       14166    14163       -3     
  Branches     3337     3336       -1     
==========================================
- Hits        13705    13702       -3     
  Misses        317      317              
  Partials      144      144
Flag Coverage Δ
eest-develop 92.07% <100.00%> (-0.01%) ⬇️
eest-develop-gmp 27.57% <100.00%> (-0.02%) ⬇️
eest-legacy 15.04% <0.00%> (+<0.01%) ⬆️
eest-libsecp256k1 29.27% <100.00%> (-0.02%) ⬇️
eest-stable 91.98% <100.00%> (-0.01%) ⬇️
evmone-unittests 91.52% <100.00%> (-0.01%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Components Coverage Δ
core 96.01% <100.00%> (-0.01%) ⬇️
tooling 84.60% <ø> (ø)
tests 99.79% <ø> (ø)
Files with missing lines Coverage Δ
lib/evmone_precompiles/pairing/field_template.hpp 100.00% <100.00%> (ø)
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@chfast chfast merged commit 06adc75 into master Apr 14, 2026
23 checks passed
@chfast chfast deleted the crypto/conjugate branch April 14, 2026 18:25
somnergy pushed a commit to erigontech/zvm1 that referenced this pull request May 23, 2026
@chfast
Merge upstream evmone master into zevmone
ff32c9f 
Merges upstream evmone (ipsilon/evmone) master through commit ff942e2
into zevmone main. Brings in the post-EVMC-vendoring upstream commits:

  - evmone 0.20.0 and 0.21.0 releases
  - EVMC vendoring follow-ups: remove loader library and old evmc tool
    (ipsilon#1504), drop external EVMC support in evmone-bench (ipsilon#1503), add
    standalone evmone CLI tool (ipsilon#1502), bump CMake to 3.22 (ipsilon#1501),
    remove redundant build configuration (ipsilon#1505)
  - Add Amsterdam EVM revision (ipsilon#1508)
  - Implement DUPN/SWAPN/EXCHANGE EIP-8024 (ipsilon#1429)
  - Extract SWAP instruction helper (ipsilon#1509)
  - Restrict conjugate() to degree-2 extension fields (ipsilon#1485)
  - Add missing inline keyword to always_inline functions (ipsilon#1510)
  - CI updates: run EEST develop (ipsilon#1507), drop legacy state tests
    (ipsilon#1512), set LLVM_PROFILE_FILE per run (ipsilon#1513)

Conflict resolution (matches the existing merge-upstream branch):
  - Adopt upstream's parameterized run_execution_spec_tests command and
    upstream-style call sites (release/fixtures_suffix/filter); drop the
    duplicate non-parameterized definition merged in from HEAD
  - circle.yml gcc-min job: rename CMAKE_OPTIONS=-DEVMC_TOOLS=OFF to
    -DEVMONE_TOOLS=OFF (option moved to evmone scope after vendoring)
  - .bumpversion.cfg, CHANGELOG.md, CMakeLists.txt: take upstream
  - evmc/* (add/add): take upstream's vendored EVMC tree
  - lib/evmone_precompiles/ecc.hpp: keep test_bit() helper (not yet in
    upstream intx)
  - lib/evmone_precompiles/modexp.cpp: keep SP1 modexp_sp1() function
    and its dispatch alongside upstream's bump-allocator refactor
  - test/integration/CMakeLists.txt: take upstream
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@rodiazet rodiazet rodiazet approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@chfast @rodiazet