Skip to content

UInt256 long digits record #9677

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
thomas-quadratic wants to merge 17 commits into
base: main
Choose a base branch
from
Open

UInt256 long digits record #9677

thomas-quadratic wants to merge 17 commits into from

Conversation

@thomas-quadratic
Copy link
Contributor

@thomas-quadratic thomas-quadratic commented Jan 23, 2026
edited
Loading

PR description

This PR cumulates a few improvements/refactoring for UInt256 modular arithmetics:

  • digits (limbs) are big-endian ordered.
  • digits use longs rather than ints as primitive type.
  • UInt256 is a record storing its digits as fields rather than in an array.
  • division algorithm follows methods from the GMP division paper since widening from long is not possible.
  • fromBytesBE is improved to give better performance on worst cases.

Long limbs are more efficient because they divide by 2 the number of digits, thus reducing the number of steps in arithmetics operations. However, it complexifies the implementation for division as widening is not possible anymore. Fortunately, quotient estimates algorithms that avoids widening exists, see division paper.

Records are chosen to represent fixed-width UInt256 because of potential future support for Vahalla value records, which would require almost no change to the code.

Here are the benchmarks compared to the actual implementation:

Operation Case current (ns/op) new (ns/op) gain (%)
Mod FULL_RANDOM 106.042 84.005 21%
Mod WORST 149.179 95.7 36%

Current status

Currently working and tested ops:

  • AddMod
  • Mod
  • MulMod
  • SMod

Thanks for sending a pull request! Have you done the following?

  • Checked out our contribution guidelines?
  • Considered documentation and added the doc-change-required label to this PR if updates are required.
  • Considered the changelog and included an update if required.
  • For database changes (e.g. KeyValueSegmentIdentifier) considered compatibility and performed forwards and backwards compatibility tests

Locally, you can run these tests to catch failures early:

  • spotless: ./gradlew spotlessApply
  • unit tests: ./gradlew build
  • acceptance tests: ./gradlew acceptanceTest
  • integration tests: ./gradlew integrationTest
  • reference tests: ./gradlew ethereum:referenceTests:referenceTests
  • hive tests: Engine or other RPCs modified?

@thomas-quadratic
ENH: represent UInt256 as big-endian limbs
2d92991 
Before, limbs were stored in little-endian.
But to use Arrays.mismatch to our advantage, it is better to have it big-endian.
This commit makes UInt256.java big-endian in limbs.
We still need to migrate all tests and benchmark.

Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: array indices bugs for fromBytesBE and mulMod.
943b56a 
Also added tests that were failing and now pass.

Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: offset indices in mulMod and fromBytesBE
9290696 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: spotless
8f512d7 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
ENH: cleaning addition and compareLimbs
d5e61e3 
Small cleaning up of the private methods for addition and compareLimbs.
Should be easier for the compiler.

Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
ENH: big-endian long limbs for UInt256
61c809a 
UInt256 used int[] for limbs, primarily for simplicity, e.g. having the possibility to widen to long.
However, methods exists to work with long[] and no widening. This commit implements long limbs.

To avoid widening, we do:

  1. add: overflow check
  2. mul: native multiplyHigh (compiled to assembly mulq)
  3. div: more complicated, see the gnump division paper.

Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
ENH: migrated mod to record based UInt256
c8ef15e 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: uint256 mod bugs
7ba2571 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
ENH: improve on worst case fromBytesBE
90f664f 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: spotless
50760c3 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic thomas-quadratic changed the title Feat/uint256 as record UInt256 long digits record Jan 23, 2026
This was referenced Jan 27, 2026
Closed
Closed
@thomas-quadratic
FIX: tests passing
edf16df 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: spotless
b3812e3 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
Copy link
Contributor Author

thomas-quadratic commented Jan 28, 2026

Updated benchmarks with the new commits that support the other operations: AddMod/MulMod/SMod

Operation Case current (ns/op) new (ns/op) gain (%)
Mod FULL_RANDOM 106.042 84.005 21%
Mod WORST 149.179 95.7 36%
SMod FULL_RANDOM 141.778 101.1 29%
SMod WORST 170.822 101.1 41%
AddMod FULL_RANDOM 179.559 137.073 24%
AddMod WORST 187.805 137.073 27%
MulMod FULL_RANDOM 259.265 186.501 29%
MulMod WORST 344.663 222.37 41%

@thomas-quadratic
ENH: use div2by1 instead of div3by2
a343f5c 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
FIX: spotless
4a793b4 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic
Copy link
Contributor Author

thomas-quadratic commented Jan 29, 2026

Changing single digit quotient estimates using 3 digits by 2 digits (div3by2) to 2 digits by 1 digit (div2by1).
Improved benchmarks across the board:

Operation Case current (ns/op) new (ns/op) gain (%)
Mod FULL_RANDOM 106.042 81.032 24%
Mod WORST 149.179 86.942 42%
SMod FULL_RANDOM 141.778 97.15 31%
SMod WORST 170.822 97.15 43%
AddMod FULL_RANDOM 179.559 130.147 28%
AddMod WORST 187.805 130.147 31%
MulMod FULL_RANDOM 259.265 177.442 32%
MulMod WORST 344.663 209.105 39%

@thomas-quadratic
FIX: javadoc
dc2ef2c 
Signed-off-by: Thomas Zamojski <[email protected]>
@thomas-quadratic thomas-quadratic marked this pull request as ready for review January 30, 2026 07:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

performance

Projects

Performance
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@thomas-quadratic @macfarla