Skip to content

Add new nibbles(bytes), clz(bytes) and clz(uint256) functions #5725

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 18 commits into
base: master
Choose a base branch
from
+254 −1
Open

Add new nibbles(bytes), clz(bytes) and clz(uint256) functions #5725

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
42c79f1
Add new equal, nibbles and countLeadingZeroes functions
ernestognw Jun 9, 2025
5754ab8
Rename countLeadingZeroes to clz
ernestognw Jun 9, 2025
4383e01
Merge branch 'master' into feat/bytes-rlp
ernestognw Jul 9, 2025
5a44b11
up
ernestognw Jul 9, 2025
d6db2d7
Document
ernestognw Jul 9, 2025
9b8af8f
Merge branch 'master' into feat/bytes-rlp
ernestognw Jul 12, 2025
2cf0acf
up
ernestognw Jul 12, 2025
8116913
Merge branch 'master' into feat/bytes-rlp
Amxx Jul 15, 2025
c5426dd
Merge branch 'master' into feat/bytes-rlp
ernestognw Jul 21, 2025
1dfee41
up
ernestognw Jul 21, 2025
ab00bb1
up
ernestognw Jul 21, 2025
e6092ae
Add clz(bytes)
ernestognw Jul 21, 2025
ede80e9
up
ernestognw Jul 21, 2025
d65d7a5
Minimize diff
ernestognw Jul 21, 2025
fb91c85
up
ernestognw Jul 22, 2025
c749346
Change CLZ behavior to count zero bits instead of zero bytes
Amxx Jul 22, 2025
12c87dd
Update Bytes.sol
Amxx Jul 22, 2025
740a056
fix Math tests
Amxx Jul 22, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions .changeset/khaki-hats-leave.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
'openzeppelin-solidity': minor
---

`Bytes`: Add a `nibbles` function to split each byte into two nibbles.
5 changes: 5 additions & 0 deletions .changeset/ten-steaks-try.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
'openzeppelin-solidity': minor
---

`Bytes`: Add an `equal` function to compare byte buffers.
5 changes: 5 additions & 0 deletions .changeset/whole-cats-find.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
'openzeppelin-solidity': minor
---

`Bytes`: Add a `clz` function to count the leading zero bytes in a `uint256` value.
29 changes: 29 additions & 0 deletions contracts/utils/Bytes.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -99,6 +99,35 @@ library Bytes {
return result;
}

/// @dev Split each byte in `value` into two nibbles (4 bits each).
function nibbles(bytes memory value) internal pure returns (bytes memory) {
uint256 length = value.length;
bytes memory nibbles_ = new bytes(length * 2);
for (uint256 i = 0; i < length; i++) {
(nibbles_[i * 2], nibbles_[i * 2 + 1]) = (value[i] & 0xf0, value[i] & 0x0f);
}
return nibbles_;
}
Copy link

@0xClandestine 0xClandestine Jul 17, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is pretty inefficient, consider using unchecked at minimum.

Also unclear why this is useful:

nibbles(hex"ABCD")
Type: dynamic bytes
├ Hex (Memory):
├─ Length ([0x00:0x20]): 0x0000000000000000000000000000000000000000000000000000000000000004
├─ Contents ([0x20:..]): 0xa00bc00d00000000000000000000000000000000000000000000000000000000
├ Hex (Tuple Encoded):
├─ Pointer ([0x00:0x20]): 0x0000000000000000000000000000000000000000000000000000000000000020
├─ Length ([0x20:0x40]): 0x0000000000000000000000000000000000000000000000000000000000000004
└─ Contents ([0x40:..]): 0xa00bc00d00000000000000000000000000000000000000000000000000000000

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Using unchecked would be safe since overflow is impossible given bytes memory can realistically only have a length smaller than 256 bits.

bytes memory b = new bytes(type(uint32).max);
Traces:
  [942682544] 0xBd770416a3345F91E4B34576cb804a576fa48EB1::run()
    └─ ← [MemoryOOG] EvmError: MemoryOOG

Copy link
Member Author

@ernestognw ernestognw Jul 18, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd fix tests first and then optimize, it's likely that we may leverage other functions of the Bytes library

Copy link
Member Author

@ernestognw ernestognw Jul 21, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The initial motivation for this function is to use it in #5680 for RLP, but I agree that reallocating memory is perhaps not the most efficient thing to do. I suspect RLP may not require the nibbles() function if these are read in place, but I need to experiment a bit with that.

We can add the unchecked, but, is there an alternative you were thinking of? I am more worried about the memory expansion cost

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Wondering if inspecting the nibbles JIT rather than converting to separate nibbles array is worthwhile to explore.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In regard to memory expansion, we need calldata variants for all methods related to MPT proofs (both RLP decoding and MPT branch verification) since the input data is almost always provided by the user via calldata. There's rarely a reason to copy the full RLP payload into memory, because typical use cases (like verifying a historical blockhash) only require extracting one or two fields (e.g. stateRoot, txRoot). Operating directly on calldata avoids unnecessary memory allocation and is significantly more gas-efficient. Comparing my personal implementation to RLPReader I'm saving about 40k gas when parsing every block header field (which should never really be needed but serves as a good gas comparison and unit test).

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

On the nibbles method it may make sense to first check the size of the input, if less than or equal to 32 bytes the above calculation could be much simpler (no loop needed)


/**
* @dev Returns true if the two byte buffers are equal.
*/
function equal(bytes memory a, bytes memory b) internal pure returns (bool) {
return a.length == b.length && keccak256(a) == keccak256(b);
}

/// @dev Counts the number of leading zero bytes in a uint256.
function clz(uint256 x) internal pure returns (uint256) {
if (x == 0) return 32; // All 32 bytes are zero
uint256 r = 0;
if (x > 0xffffffffffffffffffffffffffffffff) r = 128; // Upper 128 bits
if ((x >> r) > 0xffffffffffffffff) r |= 64; // Next 64 bits
if ((x >> r) > 0xffffffff) r |= 32; // Next 32 bits
if ((x >> r) > 0xffff) r |= 16; // Next 16 bits
if ((x >> r) > 0xff) r |= 8; // Next 8 bits
return 31 ^ (r >> 3); // Convert to leading zero bytes count
}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We could reuse the Math.log256 function here

Suggested change
function clz(uint256 x) internal pure returns (uint256) {
if (x == 0) return 32; // All 32 bytes are zero
uint256 r = 0;
if (x > 0xffffffffffffffffffffffffffffffff) r = 128; // Upper 128 bits
if ((x >> r) > 0xffffffffffffffff) r |= 64; // Next 64 bits
if ((x >> r) > 0xffffffff) r |= 32; // Next 32 bits
if ((x >> r) > 0xffff) r |= 16; // Next 16 bits
if ((x >> r) > 0xff) r |= 8; // Next 8 bits
return 31 ^ (r >> 3); // Convert to leading zero bytes count
}
function clz(uint256 x) internal pure returns (uint256) {
return Math.ternary(x == 0, 32, 31 - Math.log256(x));
}

Also, echoing on the reverseByte PR, but I think clz and reverseBytes should be in the same file (possibly a new one)

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated. Agree that the reverseBit functions and clz should be in the same library. imo it's fine that we put them in Bytes.sol. Any strong reason not to do so?

Copy link
Collaborator

@Amxx Amxx Jul 15, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

IMO we should distinguish between bytes as in "arbitrary length buffer", and Bytes32 as in "a type of fixed length that has math properties".

I would argue that clz is one of these "local" math property and is closer to the Math library then it is to things like indexOf or slice that are more "global". By that argument, the reverseBytesXX are also more of a "local" operation (similar to clz)

Copy link
Collaborator

@Amxx Amxx Jul 15, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If CLZ operates on uint256, I think there is a strong case for putting it in Math.

We could have a variant of CLZ in Bytes that does something like

    function clz(bytes memory buffer) internal pure returns (uint256) {
        uint256 i = 0;
        while (i < buffer.length && buffer[i] != bytes1(0)) ++i;
        return 8 * i + (i == buffer.length ? 0 : Math.clz(buffer[i]));
    }

(should be optimized for reading in blocks of 32 instead of byte by byte


/**
* @dev Reads a bytes32 from a bytes array without bounds checking.
*
Expand Down
3 changes: 2 additions & 1 deletion contracts/utils/Strings.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@ pragma solidity ^0.8.20;
import {Math} from "./math/Math.sol";
import {SafeCast} from "./math/SafeCast.sol";
import {SignedMath} from "./math/SignedMath.sol";
import {Bytes} from "./Bytes.sol";

/**
* @dev String operations.
Expand Down Expand Up @@ -132,7 +133,7 @@ library Strings {
* @dev Returns true if the two strings are equal.
*/
function equal(string memory a, string memory b) internal pure returns (bool) {
return bytes(a).length == bytes(b).length && keccak256(bytes(a)) == keccak256(bytes(b));
return Bytes.equal(bytes(a), bytes(b));
}

/**
Expand Down
77 changes: 77 additions & 0 deletions test/utils/Bytes.t.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,77 @@
pragma solidity ^0.8.20;

import {Test} from "forge-std/Test.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import {Bytes} from "@openzeppelin/contracts/utils/Bytes.sol";

contract BytesTest is Test {
function testIndexOf(bytes memory buffer, bytes1 s) public pure {
testIndexOf(buffer, s, 0);
}

function testIndexOf(bytes memory buffer, bytes1 s, uint256 pos) public pure {
uint256 result = Bytes.indexOf(buffer, s, pos);

// Should not be found before result
for (uint256 i = pos; result != type(uint256).max && i < result; i++) assertNotEq(buffer[i], s);
if (result != type(uint256).max) assertEq(buffer[result], s);
}

function testLastIndexOf(bytes memory buffer, bytes1 s) public pure {
testLastIndexOf(buffer, s, 0);
}

function testLastIndexOf(bytes memory buffer, bytes1 s, uint256 pos) public pure {
pos = bound(pos, 0, buffer.length);
uint256 result = Bytes.lastIndexOf(buffer, s, pos);

// Should not be found before result
for (uint256 i = pos; result != type(uint256).max && i < result; i++) assertNotEq(buffer[i], s);
if (result != type(uint256).max) assertEq(buffer[result], s);
}

function testSlice(bytes memory buffer, uint256 start) public pure {
testSlice(buffer, start, buffer.length);
}

function testSlice(bytes memory buffer, uint256 start, uint256 end) public pure {
bytes memory result = Bytes.slice(buffer, start, end);
uint256 sanitizedEnd = Math.min(end, buffer.length);
uint256 sanitizedStart = Math.min(start, sanitizedEnd);
assertEq(result.length, sanitizedEnd - sanitizedStart);
for (uint256 i = 0; i < result.length; i++) assertEq(result[i], buffer[sanitizedStart + i]);
}

function testNibbles(bytes memory value) public pure {
bytes memory result = Bytes.nibbles(value);
assertEq(result.length, value.length * 2);
for (uint256 i = 0; i < value.length; i++) {
bytes1 originalByte = value[i];
bytes1 highNibble = result[i * 2];
bytes1 lowNibble = result[i * 2 + 1];

assertEq(highNibble, originalByte & 0xf0);
assertEq(lowNibble, originalByte & 0x0f);
}
}

function testSymbolicEqual(bytes memory a, bytes memory b) public pure {
assertEq(Bytes.equal(a, b), Bytes.equal(a, b));
}

function testSymbolicCountLeadingZeroes(uint256 x) public pure {
uint256 result = Bytes.clz(x);
assertLe(result, 32); // [0, 32]

if (x != 0) {
uint256 firstNonZeroBytePos = 32 - result - 1;
uint256 byteValue = (x >> (firstNonZeroBytePos * 8)) & 0xff;
assertNotEq(byteValue, 0);

// x != 0 implies result < 32
// most significant byte should be non-zero
uint256 msbValue = (x >> (248 - result * 8)) & 0xff;
assertNotEq(msbValue, 0);
}
}
}
94 changes: 94 additions & 0 deletions test/utils/Bytes.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -85,4 +85,98 @@ describe('Bytes', function () {
}
});
});

describe('nibbles', function () {
it('converts single byte', async function () {
await expect(this.mock.$nibbles('0xab')).to.eventually.equal('0xa00b');
});

it('converts multiple bytes', async function () {
await expect(this.mock.$nibbles('0x1234')).to.eventually.equal('0x10023004');
});

it('handles empty bytes', async function () {
await expect(this.mock.$nibbles('0x')).to.eventually.equal('0x');
});

it('converts lorem text', async function () {
const result = await this.mock.$nibbles(lorem);
expect(ethers.dataLength(result)).to.equal(lorem.length * 2);

// Check nibble extraction for first few bytes
for (let i = 0; i < Math.min(lorem.length, 5); i++) {
const originalByte = lorem[i];
const highNibble = ethers.dataSlice(result, i * 2, i * 2 + 1);
const lowNibble = ethers.dataSlice(result, i * 2 + 1, i * 2 + 2);

expect(highNibble).to.equal(ethers.toBeHex(originalByte & 0xf0, 1));
expect(lowNibble).to.equal(ethers.toBeHex(originalByte & 0x0f, 1));
}
});
});

describe('equal', function () {
it('identical arrays', async function () {
await expect(this.mock.$equal(lorem, lorem)).to.eventually.be.true;
});

it('same content', async function () {
const copy = new Uint8Array(lorem);
await expect(this.mock.$equal(lorem, copy)).to.eventually.be.true;
});

it('different content', async function () {
const different = ethers.toUtf8Bytes('Different content');
await expect(this.mock.$equal(lorem, different)).to.eventually.be.false;
});

it('different lengths', async function () {
const shorter = lorem.slice(0, 10);
await expect(this.mock.$equal(lorem, shorter)).to.eventually.be.false;
});

it('empty arrays', async function () {
const empty1 = new Uint8Array(0);
const empty2 = new Uint8Array(0);
await expect(this.mock.$equal(empty1, empty2)).to.eventually.be.true;
});

it('one empty one not', async function () {
const empty = new Uint8Array(0);
await expect(this.mock.$equal(lorem, empty)).to.eventually.be.false;
});
});

describe('clz', function () {
it('zero value', async function () {
await expect(this.mock.$clz(0)).to.eventually.equal(32);
});

it('small values', async function () {
await expect(this.mock.$clz(1)).to.eventually.equal(31);
await expect(this.mock.$clz(255)).to.eventually.equal(31);
});

it('larger values', async function () {
await expect(this.mock.$clz(256)).to.eventually.equal(30);
await expect(this.mock.$clz(0xff00)).to.eventually.equal(30);
await expect(this.mock.$clz(0x10000)).to.eventually.equal(29);
});

it('max value', async function () {
await expect(this.mock.$clz(ethers.MaxUint256)).to.eventually.equal(0);
});

it('specific patterns', async function () {
await expect(
this.mock.$clz('0x0000000000000000000000000000000000000000000000000000000000000100'),
).to.eventually.equal(30);
await expect(
this.mock.$clz('0x0000000000000000000000000000000000000000000000000000000000010000'),
).to.eventually.equal(29);
await expect(
this.mock.$clz('0x0000000000000000000000000000000000000000000000000000000001000000'),
).to.eventually.equal(28);
});
});
});
Loading