Correct U1 as the identity for CapacityUsed, not U0

kayabaNerve · kayabaNerve · commit 67e63ee4bc7d · 2025-09-03T14:52:54.000-04:00
diff --git a/curve25519-dalek/src/hazmat.rs b/curve25519-dalek/src/hazmat.rs
@@ -8,7 +8,7 @@ use core::{
 };
 
 use subtle::{Choice, ConditionallySelectable, ConstantTimeEq, CtOption};
-use typenum::{U0, Unsigned};
+use typenum::{U1, Unsigned};
 
 use ff::{Field, FromUniformBytes, PrimeField};
 
@@ -37,7 +37,7 @@ pub struct OpaqueFieldElement(Underlying);
 /// Usage is recommended to be done via `LazyFieldWithCapacity<U3>` which is
 /// comprehensive to all backends.
 #[derive(Copy)]
-pub struct FieldElement<U: Unsigned = U0>(pub(crate) OpaqueFieldElement, pub(crate) PhantomData<U>);
+pub struct FieldElement<U: Unsigned = U1>(pub(crate) OpaqueFieldElement, pub(crate) PhantomData<U>);
 unsafe impl<U: Unsigned> Send for FieldElement<U> {}
 unsafe impl<U: Unsigned> Sync for FieldElement<U> {}
 
diff --git a/curve25519-dalek/src/hazmat/lazy_field.rs b/curve25519-dalek/src/hazmat/lazy_field.rs
@@ -3,7 +3,7 @@
 use core::{fmt::Debug, ops::Add};
 
 use typenum::{
-    B1, U0, Unsigned,
+    B1, U1, Unsigned,
     type_operators::{Cmp, IsLessOrEqual},
 };
 
@@ -15,7 +15,7 @@ pub use eager::*;
 /// An element which can be reduced.
 pub trait Reducible {
     /// The reduced element.
-    type Output: Field + LazyField<U0>;
+    type Output: Field + LazyField<U1>;
     /// Reduce to a reduced element.
     fn reduce(&self) -> Self::Output;
 }
@@ -73,5 +73,5 @@ pub trait LazyField<CapacityUsed: Unsigned>:
 ///
 /// `LazyFieldWithCapacity<U1>` is _recommended_ due to the widespread popularity of 255-bit
 /// fields.
-pub trait LazyFieldWithCapacity<U: Unsigned + Cmp<Self::Capacity>>: LazyField<U0> {}
-impl<U: Unsigned + Cmp<Self::Capacity>, F: LazyField<U0>> LazyFieldWithCapacity<U> for F {}
+pub trait LazyFieldWithCapacity<U: Unsigned + Cmp<Self::Capacity>>: LazyField<U1> {}
+impl<U: Unsigned + Cmp<Self::Capacity>, F: LazyField<U1>> LazyFieldWithCapacity<U> for F {}
diff --git a/curve25519-dalek/src/hazmat/lazy_field/eager.rs b/curve25519-dalek/src/hazmat/lazy_field/eager.rs
@@ -8,7 +8,7 @@ use core::{
 };
 
 use subtle::{Choice, ConditionallySelectable, ConstantTimeEq, CtOption};
-use typenum::{B1, U0, U256, Unsigned, type_operators::IsLessOrEqual};
+use typenum::{B1, U1, U256, Unsigned, type_operators::IsLessOrEqual};
 
 use rand_core::{RngCore, TryRngCore};
 
@@ -36,13 +36,13 @@ impl<U: Unsigned, F: Field> Debug for EagerField<U, F> {
     }
 }
 
-impl<F: Field> EagerField<U0, F> {
+impl<F: Field> EagerField<U1, F> {
     const fn from(field: F) -> Self {
         Self(field, PhantomData)
     }
 }
 
-impl<F: Field> ConditionallySelectable for EagerField<U0, F> {
+impl<F: Field> ConditionallySelectable for EagerField<U1, F> {
     fn conditional_select(a: &Self, b: &Self, choice: Choice) -> Self {
         Self::from(<_>::conditional_select(&a.0, &b.0, choice))
     }
@@ -58,99 +58,99 @@ impl<U: Unsigned, F: Field> PartialEq for EagerField<U, F> {
     }
 }
 impl<U: Unsigned, F: Field> Eq for EagerField<U, F> {}
-impl<F: Field> Neg for EagerField<U0, F> {
+impl<F: Field> Neg for EagerField<U1, F> {
     type Output = Self;
     fn neg(self) -> Self {
         Self::from(self.0.neg())
     }
 }
-impl<F: Field> Add for EagerField<U0, F> {
+impl<F: Field> Add for EagerField<U1, F> {
     type Output = Self;
     fn add(self, other: Self) -> Self {
         Self::from(self.0.add(other.0))
     }
 }
-impl<F: Field> Sub for EagerField<U0, F> {
+impl<F: Field> Sub for EagerField<U1, F> {
     type Output = Self;
     fn sub(self, other: Self) -> Self {
         Self::from(self.0.sub(other.0))
     }
 }
-impl<F: Field> Mul for EagerField<U0, F> {
+impl<F: Field> Mul for EagerField<U1, F> {
     type Output = Self;
     fn mul(self, other: Self) -> Self {
         Self::from(self.0.mul(other.0))
     }
 }
-impl<F: Field> Sum for EagerField<U0, F> {
+impl<F: Field> Sum for EagerField<U1, F> {
     fn sum<I: Iterator<Item = Self>>(iter: I) -> Self {
         Self::from(F::sum(iter.map(|item| item.0)))
     }
 }
-impl<F: Field> Product for EagerField<U0, F> {
+impl<F: Field> Product for EagerField<U1, F> {
     fn product<I: Iterator<Item = Self>>(iter: I) -> Self {
         Self::from(F::product(iter.map(|item| item.0)))
     }
 }
-impl<'a, F: Field> Add<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> Add<&'a Self> for EagerField<U1, F> {
     type Output = Self;
     fn add(self, other: &'a Self) -> Self {
         Self::from(self.0.add(&other.0))
     }
 }
-impl<'a, F: Field> Sub<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> Sub<&'a Self> for EagerField<U1, F> {
     type Output = Self;
     fn sub(self, other: &'a Self) -> Self {
         Self::from(self.0.sub(&other.0))
     }
 }
-impl<'a, F: Field> Mul<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> Mul<&'a Self> for EagerField<U1, F> {
     type Output = Self;
     fn mul(self, other: &'a Self) -> Self {
         Self::from(self.0.mul(&other.0))
     }
 }
-impl<'a, F: Field> Sum<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> Sum<&'a Self> for EagerField<U1, F> {
     fn sum<I: Iterator<Item = &'a Self>>(iter: I) -> Self {
         Self::from(F::sum(iter.map(|item| &item.0)))
     }
 }
-impl<'a, F: Field> Product<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> Product<&'a Self> for EagerField<U1, F> {
     fn product<I: Iterator<Item = &'a Self>>(iter: I) -> Self {
         Self::from(F::product(iter.map(|item| &item.0)))
     }
 }
-impl<F: Field> AddAssign for EagerField<U0, F> {
+impl<F: Field> AddAssign for EagerField<U1, F> {
     fn add_assign(&mut self, other: Self) {
         self.0.add_assign(other.0);
     }
 }
-impl<F: Field> SubAssign for EagerField<U0, F> {
+impl<F: Field> SubAssign for EagerField<U1, F> {
     fn sub_assign(&mut self, other: Self) {
         self.0.sub_assign(other.0);
     }
 }
-impl<F: Field> MulAssign for EagerField<U0, F> {
+impl<F: Field> MulAssign for EagerField<U1, F> {
     fn mul_assign(&mut self, other: Self) {
         self.0.mul_assign(other.0);
     }
 }
-impl<'a, F: Field> AddAssign<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> AddAssign<&'a Self> for EagerField<U1, F> {
     fn add_assign(&mut self, other: &'a Self) {
         self.0.add_assign(&other.0);
     }
 }
-impl<'a, F: Field> SubAssign<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> SubAssign<&'a Self> for EagerField<U1, F> {
     fn sub_assign(&mut self, other: &'a Self) {
         self.0.sub_assign(&other.0);
     }
 }
-impl<'a, F: Field> MulAssign<&'a Self> for EagerField<U0, F> {
+impl<'a, F: Field> MulAssign<&'a Self> for EagerField<U1, F> {
     fn mul_assign(&mut self, other: &'a Self) {
         self.0.mul_assign(&other.0);
     }
 }
-impl<F: Field> Field for EagerField<U0, F> {
+impl<F: Field> Field for EagerField<U1, F> {
     const ZERO: Self = Self::from(F::ZERO);
     const ONE: Self = Self::from(F::ONE);
     fn try_from_rng<R: TryRngCore + ?Sized>(rng: &mut R) -> Result<Self, R::Error> {
@@ -197,7 +197,7 @@ impl<F: Field> Field for EagerField<U0, F> {
 }
 
 impl<U: Unsigned, F: Field> Reducible for EagerField<U, F> {
-    type Output = EagerField<U0, F>;
+    type Output = EagerField<U1, F>;
     fn reduce(&self) -> Self::Output {
         Self::Output::from(self.0)
     }
diff --git a/curve25519-dalek/src/hazmat/lazy_field25519.rs b/curve25519-dalek/src/hazmat/lazy_field25519.rs
@@ -1,11 +1,11 @@
 use core::ops::Add;
 
-use typenum::{U0, Unsigned, type_operators::IsLessOrEqual};
+use typenum::{U1, Unsigned, type_operators::IsLessOrEqual};
 
 use super::{FieldElement, OpaqueFieldElement, lazy_field::*};
 use crate::field::FieldElement as Underlying;
 
-type ReducibleOutput = FieldElement<U0>;
+type ReducibleOutput = FieldElement<U1>;
 impl<U: Unsigned> Reducible for FieldElement<U>
 where
     FieldElement<U>: LazyField<U>,
@@ -70,7 +70,7 @@ mod tests {
     use crate::hazmat::lazy_field::{EagerField, LazyField, LazyFieldWithCapacity, Reducible};
 
     #[test]
-    fn three_add_and_then_mul() {
+    fn lazy_add_then_mul() {
         use crate::hazmat::FieldElement;
         use core::marker::PhantomData;
         use ff::Field;
@@ -88,13 +88,13 @@ mod tests {
         assert_eq!(a.add(&b).add(&c).mul(&d.add(&e).add(&f)), expected);
 
         assert_eq!(
-            EagerField(a, PhantomData::<typenum::U0>)
-                .add(&EagerField(b, PhantomData::<typenum::U0>))
-                .add(&EagerField(c, PhantomData::<typenum::U0>))
+            EagerField(a, PhantomData::<typenum::U1>)
+                .add(&EagerField(b, PhantomData::<typenum::U1>))
+                .add(&EagerField(c, PhantomData::<typenum::U1>))
                 .mul(
-                    &EagerField(d, PhantomData::<typenum::U0>)
-                        .add(&EagerField(e, PhantomData::<typenum::U0>))
-                        .add(&EagerField(f, PhantomData::<typenum::U0>))
+                    &EagerField(d, PhantomData::<typenum::U1>)
+                        .add(&EagerField(e, PhantomData::<typenum::U1>))
+                        .add(&EagerField(f, PhantomData::<typenum::U1>))
                 )
                 .0,
             expected

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@ use core::{`
`8`	`8`	`};`
`9`	`9`
`10`	`10`	`use subtle::{Choice, ConditionallySelectable, ConstantTimeEq, CtOption};`
`11`		`-use typenum::{B1, U0, U256, Unsigned, type_operators::IsLessOrEqual};`
	`11`	`+use typenum::{B1, U1, U256, Unsigned, type_operators::IsLessOrEqual};`
`12`	`12`
`13`	`13`	`use rand_core::{RngCore, TryRngCore};`
`14`	`14`
`@@ -36,13 +36,13 @@ impl<U: Unsigned, F: Field> Debug for EagerField<U, F> {`
`36`	`36`	`}`
`37`	`37`	`}`
`38`	`38`
`39`		`-impl<F: Field> EagerField<U0, F> {`
	`39`	`+impl<F: Field> EagerField<U1, F> {`
`40`	`40`	`const fn from(field: F) -> Self {`
`41`	`41`	`Self(field, PhantomData)`
`42`	`42`	`}`
`43`	`43`	`}`
`44`	`44`
`45`		`-impl<F: Field> ConditionallySelectable for EagerField<U0, F> {`
	`45`	`+impl<F: Field> ConditionallySelectable for EagerField<U1, F> {`
`46`	`46`	`fn conditional_select(a: &Self, b: &Self, choice: Choice) -> Self {`
`47`	`47`	`Self::from(<_>::conditional_select(&a.0, &b.0, choice))`
`48`	`48`	`}`
`@@ -58,99 +58,99 @@ impl<U: Unsigned, F: Field> PartialEq for EagerField<U, F> {`
`58`	`58`	`}`
`59`	`59`	`}`
`60`	`60`	`impl<U: Unsigned, F: Field> Eq for EagerField<U, F> {}`
`61`		`-impl<F: Field> Neg for EagerField<U0, F> {`
	`61`	`+impl<F: Field> Neg for EagerField<U1, F> {`
`62`	`62`	`type Output = Self;`
`63`	`63`	`fn neg(self) -> Self {`
`64`	`64`	`Self::from(self.0.neg())`
`65`	`65`	`}`
`66`	`66`	`}`
`67`		`-impl<F: Field> Add for EagerField<U0, F> {`
	`67`	`+impl<F: Field> Add for EagerField<U1, F> {`
`68`	`68`	`type Output = Self;`
`69`	`69`	`fn add(self, other: Self) -> Self {`
`70`	`70`	`Self::from(self.0.add(other.0))`
`71`	`71`	`}`
`72`	`72`	`}`
`73`		`-impl<F: Field> Sub for EagerField<U0, F> {`
	`73`	`+impl<F: Field> Sub for EagerField<U1, F> {`
`74`	`74`	`type Output = Self;`
`75`	`75`	`fn sub(self, other: Self) -> Self {`
`76`	`76`	`Self::from(self.0.sub(other.0))`
`77`	`77`	`}`
`78`	`78`	`}`
`79`		`-impl<F: Field> Mul for EagerField<U0, F> {`
	`79`	`+impl<F: Field> Mul for EagerField<U1, F> {`
`80`	`80`	`type Output = Self;`
`81`	`81`	`fn mul(self, other: Self) -> Self {`
`82`	`82`	`Self::from(self.0.mul(other.0))`
`83`	`83`	`}`
`84`	`84`	`}`
`85`		`-impl<F: Field> Sum for EagerField<U0, F> {`
	`85`	`+impl<F: Field> Sum for EagerField<U1, F> {`
`86`	`86`	`fn sum<I: Iterator<Item = Self>>(iter: I) -> Self {`
`87`	`87`	`Self::from(F::sum(iter.map(\|item\| item.0)))`
`88`	`88`	`}`
`89`	`89`	`}`
`90`		`-impl<F: Field> Product for EagerField<U0, F> {`
	`90`	`+impl<F: Field> Product for EagerField<U1, F> {`
`91`	`91`	`fn product<I: Iterator<Item = Self>>(iter: I) -> Self {`
`92`	`92`	`Self::from(F::product(iter.map(\|item\| item.0)))`
`93`	`93`	`}`
`94`	`94`	`}`
`95`		`-impl<'a, F: Field> Add<&'a Self> for EagerField<U0, F> {`
	`95`	`+impl<'a, F: Field> Add<&'a Self> for EagerField<U1, F> {`
`96`	`96`	`type Output = Self;`
`97`	`97`	`fn add(self, other: &'a Self) -> Self {`
`98`	`98`	`Self::from(self.0.add(&other.0))`
`99`	`99`	`}`
`100`	`100`	`}`
`101`		`-impl<'a, F: Field> Sub<&'a Self> for EagerField<U0, F> {`
	`101`	`+impl<'a, F: Field> Sub<&'a Self> for EagerField<U1, F> {`
`102`	`102`	`type Output = Self;`
`103`	`103`	`fn sub(self, other: &'a Self) -> Self {`
`104`	`104`	`Self::from(self.0.sub(&other.0))`
`105`	`105`	`}`
`106`	`106`	`}`
`107`		`-impl<'a, F: Field> Mul<&'a Self> for EagerField<U0, F> {`
	`107`	`+impl<'a, F: Field> Mul<&'a Self> for EagerField<U1, F> {`
`108`	`108`	`type Output = Self;`
`109`	`109`	`fn mul(self, other: &'a Self) -> Self {`
`110`	`110`	`Self::from(self.0.mul(&other.0))`
`111`	`111`	`}`
`112`	`112`	`}`
`113`		`-impl<'a, F: Field> Sum<&'a Self> for EagerField<U0, F> {`
	`113`	`+impl<'a, F: Field> Sum<&'a Self> for EagerField<U1, F> {`
`114`	`114`	`fn sum<I: Iterator<Item = &'a Self>>(iter: I) -> Self {`
`115`	`115`	`Self::from(F::sum(iter.map(\|item\| &item.0)))`
`116`	`116`	`}`
`117`	`117`	`}`
`118`		`-impl<'a, F: Field> Product<&'a Self> for EagerField<U0, F> {`
	`118`	`+impl<'a, F: Field> Product<&'a Self> for EagerField<U1, F> {`
`119`	`119`	`fn product<I: Iterator<Item = &'a Self>>(iter: I) -> Self {`
`120`	`120`	`Self::from(F::product(iter.map(\|item\| &item.0)))`
`121`	`121`	`}`
`122`	`122`	`}`
`123`		`-impl<F: Field> AddAssign for EagerField<U0, F> {`
	`123`	`+impl<F: Field> AddAssign for EagerField<U1, F> {`
`124`	`124`	`fn add_assign(&mut self, other: Self) {`
`125`	`125`	`self.0.add_assign(other.0);`
`126`	`126`	`}`
`127`	`127`	`}`
`128`		`-impl<F: Field> SubAssign for EagerField<U0, F> {`
	`128`	`+impl<F: Field> SubAssign for EagerField<U1, F> {`
`129`	`129`	`fn sub_assign(&mut self, other: Self) {`
`130`	`130`	`self.0.sub_assign(other.0);`
`131`	`131`	`}`
`132`	`132`	`}`
`133`		`-impl<F: Field> MulAssign for EagerField<U0, F> {`
	`133`	`+impl<F: Field> MulAssign for EagerField<U1, F> {`
`134`	`134`	`fn mul_assign(&mut self, other: Self) {`
`135`	`135`	`self.0.mul_assign(other.0);`
`136`	`136`	`}`
`137`	`137`	`}`
`138`		`-impl<'a, F: Field> AddAssign<&'a Self> for EagerField<U0, F> {`
	`138`	`+impl<'a, F: Field> AddAssign<&'a Self> for EagerField<U1, F> {`
`139`	`139`	`fn add_assign(&mut self, other: &'a Self) {`
`140`	`140`	`self.0.add_assign(&other.0);`
`141`	`141`	`}`
`142`	`142`	`}`
`143`		`-impl<'a, F: Field> SubAssign<&'a Self> for EagerField<U0, F> {`
	`143`	`+impl<'a, F: Field> SubAssign<&'a Self> for EagerField<U1, F> {`
`144`	`144`	`fn sub_assign(&mut self, other: &'a Self) {`
`145`	`145`	`self.0.sub_assign(&other.0);`
`146`	`146`	`}`
`147`	`147`	`}`
`148`		`-impl<'a, F: Field> MulAssign<&'a Self> for EagerField<U0, F> {`
	`148`	`+impl<'a, F: Field> MulAssign<&'a Self> for EagerField<U1, F> {`
`149`	`149`	`fn mul_assign(&mut self, other: &'a Self) {`
`150`	`150`	`self.0.mul_assign(&other.0);`
`151`	`151`	`}`
`152`	`152`	`}`
`153`		`-impl<F: Field> Field for EagerField<U0, F> {`
	`153`	`+impl<F: Field> Field for EagerField<U1, F> {`
`154`	`154`	`const ZERO: Self = Self::from(F::ZERO);`
`155`	`155`	`const ONE: Self = Self::from(F::ONE);`
`156`	`156`	`fn try_from_rng<R: TryRngCore + ?Sized>(rng: &mut R) -> Result<Self, R::Error> {`
`@@ -197,7 +197,7 @@ impl<F: Field> Field for EagerField<U0, F> {`
`197`	`197`	`}`
`198`	`198`
`199`	`199`	`impl<U: Unsigned, F: Field> Reducible for EagerField<U, F> {`
`200`		`- type Output = EagerField<U0, F>;`
	`200`	`+ type Output = EagerField<U1, F>;`
`201`	`201`	`fn reduce(&self) -> Self::Output {`
`202`	`202`	`Self::Output::from(self.0)`
`203`	`203`	`}`