Skip to content

Add conversion functions Z.to_bytes and Z.of_bytes #167

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
xavierleroy merged 1 commit into from
Jan 11, 2026
Merged

Add conversion functions Z.to_bytes and Z.of_bytes #167

xavierleroy merged 1 commit into from
Jan 11, 2026

Conversation

@xavierleroy
Copy link
Contributor

@xavierleroy xavierleroy commented Dec 27, 2025

Converting between big integers and byte sequences is important e.g. for cryptosystems based on number theory. The existing Z.to_bits and Z.of_bits conversion functions are useful but a bit limited: they use little-endian representation while big-endian is more common for crypto protocols, and there's no way to control the size of the output of Z.to_bits, while many protocols fix the length in advance.

This PR implements Z.to_bytes and Z.of_bytes conversion functions that let the user choose endianness, the size of the output, and whether signed numbers should be accommodated (using two's complement representation). The functions are modeled after the int.to_bytes and int.from_bytes Python standard library functions.

@antoinemine
Copy link
Collaborator

antoinemine commented Jan 1, 2026

That looks great, thanks!

In Python, byteorder seems to be optional and defaults to big-endian.
I like that, if not specified, the length is automatically set. Would it be useful to export length computation to the user in a dedicated function (e.g., if the length needs to be checked or rounded by the user before conversion)?

Also, happy New Year!

@xavierleroy
Copy link
Contributor Author

xavierleroy commented Jan 11, 2026

Thanks for the feedback, and happy New Year !

In Python, byteorder seems to be optional and defaults to big-endian.

Right. It's true that big-endian seems much more common esp. in cryptographic protocols, so I thought making it the default. But then it clashes a bit with the use of little-endian in Z.to_bits. Also, being explicit about endianness is good documentation in user code.

I like that, if not specified, the length is automatically set.

Yes, I think it's useful as a canonical representation of a Z.t as a string. Z.to_bits is not canonical because it pads differently on 32-bit architectures and 64-bit architectures. (Although this is something we could fix independently.)

Would it be useful to export length computation to the user in a dedicated function (e.g., if the length needs to be checked or rounded by the user before conversion)?

I don't feel a clear need at this point. The use cases I ran into while playing with cryptography use fixed lengths and you're guaranteed that the encoded integer will fit this length (because it's taken modulo q for appropriate q and length).

@xavierleroy xavierleroy merged commit 72446bf into ocaml:master Jan 11, 2026
8 checks passed
@xavierleroy xavierleroy deleted the to_bytes branch January 11, 2026 09:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@xavierleroy @antoinemine