rostl-sort 0.1.0-alpha9

Oblivious sorting algorithms.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128

//! Implements oblivious shift and rotation algorithms.
//!

use assume::assume;
use rostl_primitives::traits::{Cmov, CswapIndex};

/// Reverses the region arr[start..end) in-place using oblivious conditional swaps.
///
/// # Behavior
/// * If `enable` is true, the region arr[start..end) is reversed in-place.
/// * If `enable` is false, the function has no effects.
///
/// # Oblivious
/// * The function reveals `start` and `end`.
fn reverse_region<T>(arr: &mut [T], start: usize, end: usize, enable: bool)
where
  T: Cmov + Copy,
{
  let len = end - start;
  let half = len >> 1;
  for i in 0..half {
    let a = start + i;
    let b = end - 1 - i;
    assume!(unsafe: a < arr.len());
    assume!(unsafe: b < arr.len());
    // perform the pairwise swap only when `enable` is true; addresses touched are independent of `enable`.
    arr.cswap(a, b, enable);
  }
}

/// Obliviously rotates `arr` left by `k` positions in-place.
///
/// # Behavior
/// * After calling `rotate_left(arr, k)`, element originally at index `i` will be at index `(i + n - k) % n` (left rotate by k).
///
/// # Oblivious
/// * Memory access pattern depends only on `arr.len()`.
pub fn rotate_left<T>(arr: &mut [T], k: usize)
where
  T: Cmov + Copy,
{
  let n = arr.len();
  if n <= 1 {
    return;
  }
  assert!(k <= n, "rotate_left: k must be less than arr.len()");
  let mut s = 1;

  // Iterate over powers of two `s` (1,2,4,...) less than n. For each `s` we execute the reversal
  // pattern that would rotate by `s`, but we only actually swap when `(s & k) != 0`.
  while s < n {
    let enable = (s & k) != 0;
    reverse_region(arr, 0, s, enable);
    reverse_region(arr, s, n, enable);
    reverse_region(arr, 0, n, enable);
    s <<= 1;
  }
}

#[cfg(test)]
mod tests {
  use super::*;
  use rand::Rng;

  #[test]
  fn test_rotate_left_basic() {
    let mut arr = [1, 2, 3, 4, 5];
    rotate_left(&mut arr, 2);
    assert_eq!(&arr, &[3, 4, 5, 1, 2]);

    let mut arr = [1, 2, 3, 4, 5];
    rotate_left(&mut arr, 5);
    assert_eq!(&arr, &[1, 2, 3, 4, 5]);

    let mut arr = [1];
    rotate_left(&mut arr, 1);
    assert_eq!(&arr, &[1]);
  }

  #[test]
  fn test_rotate_left_edge() {
    let mut arr: [u8; 0] = [];
    rotate_left(&mut arr, 0);
    assert_eq!(&arr, &[]);

    let mut arr = [42];
    rotate_left(&mut arr, 0);
    assert_eq!(&arr, &[42]);
    rotate_left(&mut arr, 1);
    assert_eq!(&arr, &[42]);

    let mut arr = [1, 2];
    rotate_left(&mut arr, 0);
    assert_eq!(&arr, &[1, 2]);
    rotate_left(&mut arr, 1);
    assert_eq!(&arr, &[2, 1]);
    rotate_left(&mut arr, 2);
    assert_eq!(&arr, &[2, 1]);

    let mut arr = [1, 2, 3];
    rotate_left(&mut arr, 0);
    assert_eq!(&arr, &[1, 2, 3]);
    rotate_left(&mut arr, 1);
    assert_eq!(&arr, &[2, 3, 1]);
    rotate_left(&mut arr, 2);
    assert_eq!(&arr, &[1, 2, 3]);
    rotate_left(&mut arr, 3);
    assert_eq!(&arr, &[1, 2, 3]);
  }

  #[test]
  fn test_rotate_left_random() {
    let mut rng = rand::rng();
    for _ in 0..100 {
      let size = rng.random_range(0..2050);
      let arr: Vec<i32> = (0..size).map(|_| rng.random_range(0..100)).collect();
      let mut arr1 = arr.clone();
      let k = if size == 0 { 0 } else { rng.random_range(0..size) };
      rotate_left(&mut arr1, k);
      let mut expected = Vec::with_capacity(size);
      if size > 0 {
        expected.extend_from_slice(&arr[k..]);
        expected.extend_from_slice(&arr[..k]);
      }
      assert_eq!(arr1, expected);
    }
  }
}