# Utilisation des réseaux euclidiens dans pour le décodage de code de dimension 1

## Génération d'équations


On va essayer de décoder des équations de la forme : 

\begin{equation}
 y_i +A_ix + B_i \equiv 0 [p]
\end{equation}
    Que l'on peut reformuler en :
\begin{equation}
y_i + C_i y_0 + D_i \equiv 0 [p] , i = 1\dots h-1, 
\end{equation}

avec  $y_0=y_h$, $C_i = -A_iA_{h}^{-1}$ et $D_i = C_iB_h + B_i$

On va d'abord générer les différents $y_i$

In [1]:
prime_size = 160
h = 2
y = []
a = []
b = []
C = []
D = []
p = random_prime(2^prime_size-1, lbound=2^(prime_size-1))
F = GF(p)
x = F(randint(0,p-1))
for i in range(h):
    a.append(F(randint(0,p-1)))
    b.append(F(randint(0,p-1)))
    y.append(-a[i]*x - b[i])

for i in range(h-1):
    C.append(-a[i]*a[h-1].inverse_of_unit())
    D.append(C[i]*b[h-1] + b[i])
print(C,D)

([592566238457487513817355598717830103879007408070], [581588768115646175379943023349383381257163142651])


On va maintenant générer $n = h-1$ équations, les equations s'écrivent de la forme $y_i + C_iy_0 + D_i \equiv 0 [p]$, c'est a dire si on connait certains bits $c_i$ : $(z_i + c_i) + C_i(z_0 + c_0) + D_i \equiv 0 [p] \implies z_i + u_iz_0 + v_i \equiv 0[p]$

In [2]:
v = vector(ZZ,h)
v[0] = 0
sample = []
arranged_sample = []
known_bytes = 80
mask = 0
for i in range(known_bytes):
    mask += 1<<i

c0 = y[h-1].lift()&mask
z = vector(ZZ,h)
z[0] = y[h-1]-c0

for i in range(h-1):
    j = i+1
    sample.append(F(y[i].lift()+(C[i]*y[h-1]).lift() + D[i].lift()))
    ci = y[i].lift()&mask
    zi = y[i].lift()-ci
    z[j] = zi
    v[j] = ci + C[i]*c0 + D[i].lift()
    arranged_sample.append(z[j] + C[i]*z[0] + v[j])
    print(sample[i]==arranged_sample[i])
    


True


In [3]:
A = zero_matrix(QQ,h)
A[0,0] = 1/2^(known_bytes+1)
for k in range(1,h):
    A[0,k] = C[k-1]
    A[k,k] = p

def Babai_LLL(A, target):
    B = A.LLL()
    G = B.gram_schmidt()[0]
    diff = target
    for i in reversed(range(B.nrows())):
        diff -=  B[i] * ((diff * G[i]) / (G[i] * G[i])).round()
    return target - diff
print(A.str()+ "\n" + str(C) + "\n" + str(p))

[                     1/2417851639229258349412352 592566238457487513817355598717830103879007408070]
[                                               0 925427857880253135826820532047857662916642839899]
[592566238457487513817355598717830103879007408070]
925427857880253135826820532047857662916642839899


In [4]:
w = Babai_LLL(A,v)
print(str((w-v)) + " , " + str(z) + "," + str(y))

(-227787524696227193755836188524577859/1208925819614629174706176, 324995445812) , (140104978679121625486362437700503617312015777792, 244619588314134417269175581676677105273454723072),[244619588314134417269175656739014404789384204060, 140104978679121625486362562343763135954421892962]


In [5]:
print(str(w) + "," + str(v))

(-227787524696227193755836188524577859/1208925819614629174706176, 355554775280249096109426480465361103656650444854),(0, 355554775280249096109426480465361103331654999042)


In [6]:
F((w[1]-v[1])*2^(known_bytes+1)) == y[1]-(y[1].lift()&mask)

False

In [7]:
print F((w[1]-v[1])*2^(known_bytes+1)), y[1]-(y[1].lift()&mask)

785790771398587805341390606459469824 140104978679121625486362437700503617312015777792


IndexError: list index out of range