linked big integer arithmetic to algebra routines

Alan Szepieniec (laptop 'Akaros') · Alan Szepieniec (laptop 'Akaros') · commit 736562b5cdf5 · 2017-07-02T21:14:21.000+02:00
diff --git a/LICENSE b/LICENSE
@@ -1,6 +1,6 @@
 MIT License
 
-Copyright (c) 2016 aszepieniec
+Copyright (c) 2017 Alan Szepieniec
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -19,3 +19,4 @@ AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
+
diff --git a/README.md b/README.md
@@ -9,8 +9,12 @@ Ansi C library for basic algebra routines for prime finite fields, chiefly targe
 
 # TODO
  * polynomial and extension field arithmetic
- * link big integer routines with finite field arithmetic
+ * make primality test faster
 
 # How To
- * compile: `gcc -o test_algebra test_algebra.c bi.c csprng.c Keccak-readable-and-compact-c89.c -ansi -Wpedantic`
+ * compile:
+   * small field unit tests: `gcc -o test_algebra test_algebra.c algebra.c gfp.c csprng.c Keccak-readable-and-compact-c89.c -ansi -Wpedantic`
+   * big field unit tests: `gcc -o test_algebra test_algebra.c algebra.c bi.c gfbi.c Keccak-readable-and-compact-c89.c csprng.c -DBIG -ansi -Wpedantic`
+   * big number arithmetic: `gcc -o test_bi test_bi.c bi.c csprng.c Keccak-readable-and-compact-c89.c -ansi -Wpedantic`
+   * prime sampling benchmark: `gcc -o benchmark_primality benchmark_primality.c bi.c csprng.c Keccak-readable-and-compact-c89.c -ansi -Wpedantic -O3`
 
diff --git a/algebra.c b/algebra.c
@@ -48,10 +48,18 @@ int xgcd( int a, int b, int* x, int* y, int* gcd )
  */
 gfpmatrix gfpm( unsigned  int height, unsigned  int width, gfp_element* pdata )
 {
+    int i, j;
     gfpmatrix mat;
     mat.height = height;
     mat.width = width;
     mat.data = pdata;
+    for( i = 0 ; i < height ; ++i )
+    {
+        for( j = 0 ; j < width ; ++j )
+        {
+            mat.data[i*width + j] = gfp_init(0);
+        }
+    }
     return mat;
 }
 
@@ -89,9 +97,14 @@ gfpmatrix gfpm_init( unsigned  int height, unsigned  int width )
  */
 int gfpm_destroy( gfpmatrix fm )
 {
-    /*
-    printf("destroying gfpm object with data member set to memory address %#010x\n", fm.data);
-    */
+    int i, j;
+    for( i = 0 ; i < fm.height ; ++i )
+    {
+        for( j = 0 ; j < fm.width ; ++j )
+        {
+            gfp_destroy(fm.data[i*fm.width + j]);
+        }
+    }
     free(fm.data);
     fm.width = 0;
     fm.height = 0;
@@ -817,7 +830,6 @@ int gfpm_redech( gfpmatrix mat )
         {
             continue;
         }
-
         gfp_inverse(&inv, mat.data[row*mat.width + col]);
         
         if( gfp_is_one(inv) != 1 )
@@ -1226,15 +1238,27 @@ int gfpm_inverse( gfpmatrix inv, gfpmatrix mat )
 int gfpm_print( gfpmatrix mat )
 {
     unsigned int i, j;
+    printf("[");
     for( i = 0 ; i < mat.height ; ++i )
     {
+        printf("[");
         for( j = 0 ; j < mat.width ; ++j )
         {
             gfp_print(mat.data[i*mat.width+j]);
-            printf(" ");
+            if( j < mat.width - 1 )
+            {
+                printf(",");
+                printf(" ");
+            }
+        }
+        printf("]");
+        if( i < mat.height - 1 )
+        {
+            printf(",");
+            printf("\n");
         }
-        printf("\n");
     }
+    printf("]\n");
 }
 
 /**
@@ -1280,9 +1304,7 @@ hqsystem hqs_init( unsigned  int n, unsigned  int m )
     hqs.quadratic_forms = malloc(sizeof(gfpmatrix) * m);
     for( i = 0 ; i < m ; ++i )
     {
-        hqs.quadratic_forms[i].data = malloc(n*n*sizeof(gfp_element));
-        hqs.quadratic_forms[i].width = n;
-        hqs.quadratic_forms[i].height = n;
+        hqs.quadratic_forms[i] = gfpm_init(n,n);
     }
     return hqs;
 }
@@ -1373,7 +1395,7 @@ int hqs_random( hqsystem sys, unsigned char * randomness )
             for( j = 0 ; j < sys.n ; ++j )
             {
                 gfp_random(&sys.quadratic_forms[k].data[i*sys.n + j], &randomness[l]);
-                l = l + GFP_NUMBYTES + 1;
+                l = l + (GFP_NUMBITS + sizeof(unsigned long int) * 8 - 1) / (sizeof(unsigned long int) * 8);
             }
         }
     }
diff --git a/benchmark_primality.c b/benchmark_primality.c
@@ -53,6 +53,7 @@ int main( int argc, char ** argv )
             csprng_generate(&rng, sizeof(unsigned long int) * num_limbs, (unsigned char*)randomness);
             bi_random(&p, bitsize, (unsigned char *)randomness);
             bi_setbit(&p, 0, 1);
+            printf("testing candidate number "); bi_print(p); printf(" for primality ...\n");
         }
         while( bi_is_prime(p, random_ints, certainty) == 0 );
     }
diff --git a/bi.c b/bi.c
@@ -564,6 +564,13 @@ int bi_subtract_ignoresign( bi * res, bi lhs, bi rhs )
 int bi_subtract( bi * res, bi lhs, bi rhs )
 {
     int cmp;
+
+    if( bi_is_zero(rhs) == 1 )
+    {
+        bi_copy(res, lhs);
+        return 1;
+    }
+
     cmp = bi_compare_absolute(lhs, rhs);
 
     if( lhs.sign == 1 && rhs.sign == 1 )
@@ -726,7 +733,6 @@ int bi_multiply( bi * res, bi lhs, bi rhs )
     unsigned int i;
     bi product;
 
-    //printf("multiplying lhs %i/%i with rhs %i/%i\n", bi_bitsize(lhs), lhs.num_limbs, bi_bitsize(rhs), rhs.num_limbs);
     if( rhs.num_limbs > lhs.num_limbs )
     {
         return bi_multiply(res, rhs, lhs);
@@ -1275,12 +1281,12 @@ int bi_random( bi * dest, unsigned int num_bits, unsigned char * randomness )
         }
     }
 
-    rem = num_bits % (sizeof(unsigned long int) * 8);
+    rem = num_bits % 8;
     if( rem == 0 )
     {
-        rem = rem + sizeof(unsigned long int) * 8;
+        rem = rem + 8;
     }
-    dest->data[num_limbs-1] = dest->data[num_limbs-1] >> (sizeof(unsigned long int) * 8 - rem);
+    dest->data[num_limbs-1] = dest->data[num_limbs-1] >> (8 - rem);
 
     return 1;
 }
@@ -1339,14 +1345,14 @@ int bi_xgcd( bi * x, bi * y, bi * g, bi a, bi b )
 
     while( !bi_is_zero(r) )
     {
-        //printf("r : %i / %i; s: %i / %i; t: %i / %i\n", bi_bitsize(r), r.num_limbs, bi_bitsize(s), s.num_limbs, bi_bitsize(t), t.num_limbs);
         bi_divide(&quotient, &remainder, old_r, r);
 
         /*
         printf("numerator: "); bi_print_bitstring(old_r); printf("\n");
         printf("divisor: "); bi_print_bitstring(r); printf("\n");
         printf("quotient: "); bi_print_bitstring(quotient); printf("\n");
         printf("remainder: "); bi_print_bitstring(remainder); printf("\n");
+        getchar();
         */
 
         /**/
@@ -1814,7 +1820,7 @@ int bi_getbit( bi integer, int bit_index )
 /**
  * bi_print
  * Send the decimal representation of this integer to stdout.
- * TODO: debig
+ * TODO: debug
  */
 int bi_print( bi integer )
 {
@@ -1824,25 +1830,38 @@ int bi_print( bi integer )
     int numdigits;
     int bitsize;
 
+    if( bi_is_zero(integer) == 1 )
+    {
+        printf("0");
+        return 1;
+    }
+
+    if( integer.sign == -1 )
+    {
+        printf("-");
+        rem1 = bi_init(0);
+        bi_copy(&rem1, integer);
+        bi_negate(&rem1);
+        bi_print(rem1);
+        bi_destroy(rem1);
+        return 1;
+    }
+
     bitsize = bi_bitsize(integer);
     expansion = malloc(bi_bitsize(integer));
     numdigits = 0;
     quo = bi_init(0);
     rem1 = bi_init(0);
     rem2 = bi_init(0);
     ten = bi_cast(10);
-    bi_copy(&rem2, integer);
-
-    if( integer.sign == -1 )
-    {
-        printf("-");
-    }
 
+    bi_copy(&rem2, integer);
 
-    for( i = 0 ; i < bitsize && bi_is_zero(rem2) == 0 ; ++i )
+    bi_one(&quo);
+    for( i = 0 ; i < bitsize && bi_is_zero(quo) == 0 ; ++i )
     {
         bi_divide(&quo, &rem1, rem2, ten);
-        bi_copy(&rem2, rem1);
+        bi_copy(&rem2, quo);
         expansion[numdigits++] = rem1.data[0];
     }
 
diff --git a/gfbi.c b/gfbi.c
@@ -115,7 +115,7 @@ int gfp_inverse( gfp_element * res, gfp_element elm )
     x = bi_init(0);
     y = bi_init(0);
     g = bi_init(0);
-    bi_xgcd(&g, &x, &y, elm, prime_modulus);
+    bi_xgcd(&x, &y, &g, elm, prime_modulus);
     bi_modulo(res, x, prime_modulus);
     bi_destroy(x);
     bi_destroy(y);
diff --git a/gfp.c b/gfp.c
@@ -78,6 +78,24 @@ int gfp_compare( gfp_element lhs, gfp_element rhs )
     return 0;
 }
 
+int gfp_is_one( gfp_element elm )
+{
+    if( elm == 1 )
+    {
+        return 1;
+    }
+    return 0;
+}
+
+int gfp_is_zero( gfp_element elm )
+{
+    if( elm == 0 )
+    {
+        return 1;
+    }
+    return 0;
+}
+
 int gfp_add( gfp_element * res, gfp_element lhs, gfp_element rhs )
 {
     *res = ((int)(lhs) + (int)(rhs)) % GF_PRIME_MODULUS;
diff --git a/test_algebra.c b/test_algebra.c
diff --git a/test_bi.c b/test_bi.c

Original file line number	Diff line number	Diff line change
`@@ -48,10 +48,18 @@ int xgcd( int a, int b, int* x, int* y, int* gcd )`
`48`	`48`	`*/`
`49`	`49`	`gfpmatrix gfpm( unsigned int height, unsigned int width, gfp_element* pdata )`
`50`	`50`	`{`
	`51`	`+ int i, j;`
`51`	`52`	`gfpmatrix mat;`
`52`	`53`	`mat.height = height;`
`53`	`54`	`mat.width = width;`
`54`	`55`	`mat.data = pdata;`
	`56`	`+ for( i = 0 ; i < height ; ++i )`
	`57`	`+ {`
	`58`	`+ for( j = 0 ; j < width ; ++j )`
	`59`	`+ {`
	`60`	`+ mat.data[i*width + j] = gfp_init(0);`
	`61`	`+ }`
	`62`	`+ }`
`55`	`63`	`return mat;`
`56`	`64`	`}`
`57`	`65`
`@@ -89,9 +97,14 @@ gfpmatrix gfpm_init( unsigned int height, unsigned int width )`
`89`	`97`	`*/`
`90`	`98`	`int gfpm_destroy( gfpmatrix fm )`
`91`	`99`	`{`
`92`		`- /*`
`93`		`- printf("destroying gfpm object with data member set to memory address %#010x\n", fm.data);`
`94`		`- */`
	`100`	`+ int i, j;`
	`101`	`+ for( i = 0 ; i < fm.height ; ++i )`
	`102`	`+ {`
	`103`	`+ for( j = 0 ; j < fm.width ; ++j )`
	`104`	`+ {`
	`105`	`+ gfp_destroy(fm.data[i*fm.width + j]);`
	`106`	`+ }`
	`107`	`+ }`
`95`	`108`	`free(fm.data);`
`96`	`109`	`fm.width = 0;`
`97`	`110`	`fm.height = 0;`
`@@ -817,7 +830,6 @@ int gfpm_redech( gfpmatrix mat )`
`817`	`830`	`{`
`818`	`831`	`continue;`
`819`	`832`	`}`
`820`		`-`
`821`	`833`	`gfp_inverse(&inv, mat.data[row*mat.width + col]);`
`822`	`834`
`823`	`835`	`if( gfp_is_one(inv) != 1 )`
`@@ -1226,15 +1238,27 @@ int gfpm_inverse( gfpmatrix inv, gfpmatrix mat )`
`1226`	`1238`	`int gfpm_print( gfpmatrix mat )`
`1227`	`1239`	`{`
`1228`	`1240`	`unsigned int i, j;`
	`1241`	`+ printf("[");`
`1229`	`1242`	`for( i = 0 ; i < mat.height ; ++i )`
`1230`	`1243`	`{`
	`1244`	`+ printf("[");`
`1231`	`1245`	`for( j = 0 ; j < mat.width ; ++j )`
`1232`	`1246`	`{`
`1233`	`1247`	`gfp_print(mat.data[i*mat.width+j]);`
`1234`		`- printf(" ");`
	`1248`	`+ if( j < mat.width - 1 )`
	`1249`	`+ {`
	`1250`	`+ printf(",");`
	`1251`	`+ printf(" ");`
	`1252`	`+ }`
	`1253`	`+ }`
	`1254`	`+ printf("]");`
	`1255`	`+ if( i < mat.height - 1 )`
	`1256`	`+ {`
	`1257`	`+ printf(",");`
	`1258`	`+ printf("\n");`
`1235`	`1259`	`}`
`1236`		`- printf("\n");`
`1237`	`1260`	`}`
	`1261`	`+ printf("]\n");`
`1238`	`1262`	`}`
`1239`	`1263`
`1240`	`1264`	`/**`
`@@ -1280,9 +1304,7 @@ hqsystem hqs_init( unsigned int n, unsigned int m )`
`1280`	`1304`	`hqs.quadratic_forms = malloc(sizeof(gfpmatrix) * m);`
`1281`	`1305`	`for( i = 0 ; i < m ; ++i )`
`1282`	`1306`	`{`
`1283`		`- hqs.quadratic_forms[i].data = malloc(nnsizeof(gfp_element));`
`1284`		`- hqs.quadratic_forms[i].width = n;`
`1285`		`- hqs.quadratic_forms[i].height = n;`
	`1307`	`+ hqs.quadratic_forms[i] = gfpm_init(n,n);`
`1286`	`1308`	`}`
`1287`	`1309`	`return hqs;`
`1288`	`1310`	`}`
`@@ -1373,7 +1395,7 @@ int hqs_random( hqsystem sys, unsigned char * randomness )`
`1373`	`1395`	`for( j = 0 ; j < sys.n ; ++j )`
`1374`	`1396`	`{`
`1375`	`1397`	`gfp_random(&sys.quadratic_forms[k].data[i*sys.n + j], &randomness[l]);`
`1376`		`- l = l + GFP_NUMBYTES + 1;`
	`1398`	`+ l = l + (GFP_NUMBITS + sizeof(unsigned long int) * 8 - 1) / (sizeof(unsigned long int) * 8);`
`1377`	`1399`	`}`
`1378`	`1400`	`}`
`1379`	`1401`	`}`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,7 @@ int main( int argc, char ** argv )`
`53`	`53`	`csprng_generate(&rng, sizeof(unsigned long int) * num_limbs, (unsigned char*)randomness);`
`54`	`54`	`bi_random(&p, bitsize, (unsigned char *)randomness);`
`55`	`55`	`bi_setbit(&p, 0, 1);`
	`56`	`+ printf("testing candidate number "); bi_print(p); printf(" for primality ...\n");`
`56`	`57`	`}`
`57`	`58`	`while( bi_is_prime(p, random_ints, certainty) == 0 );`
`58`	`59`	`}`