In [None]:
from sympy.ntheory.modular import crt
import random
import math
from sympy.ntheory.residue_ntheory import sqrt_mod
from math import gcd, isqrt
from sympy import isprime

## GCD

In [None]:
import math

a = 11
b = 37
gcd = math.gcd(a, b)
print(gcd)

1


## Extended Euclidean Algorithm

In [None]:
def extended_gcd(a, b):
    if b == 0:
        return a, 1, 0
    else:
        gcd, x1, y1 = extended_gcd(b, a % b)
        x = y1
        y = x1 - (a // b) * y1
        return gcd, x, y

# 测试
a = 4691456
b = 12573792
gcd, x, y = extended_gcd(a, b)
print(f"gcd({a}, {b}) = {gcd}")
print(f"x = {x}, y = {y}")

gcd(4691456, 12573792) = 17248
x = -67, y = 25


## find mod inverse

In [None]:
def extended_gcd(a, b):
    if b == 0:
        return a, 1, 0
    else:
        gcd, x1, y1 = extended_gcd(b, a % b)
        x = y1
        y = x1 - (a // b) * y1
        return gcd, x, y

def mod_inverse(a, m):
    gcd, x, _ = extended_gcd(a, m)
    if gcd != 1:
        raise ValueError(f"No modular inverse exists for {a} mod {m}")
    else:
        return x % m

# 示例用法
a = 237
m = 238
inverse = mod_inverse(a, m)
print(f"The modular inverse of {a} mod {m} is {inverse}")

The modular inverse of 237 mod 238 is 237


## Euler function

In [None]:
import sympy

# Defining the number
n = 261011319

# Calculating the Euler's totient function (phi function)
euler_totient = sympy.totient(n)
euler_totient

163771776

## Prime Factorization

In [None]:
from sympy import factorint

# 输入需要分解的数
# n = 262915409
n = 261011319

# 获取素因数分解
factors = factorint(n)

# 将结果格式化为直观的数学表达式
factorization = ' * '.join([f'{prime}^{exp}' if exp > 1 else f'{prime}' for prime, exp in factors.items()])

# 输出结果
print(f"Prime factorization of {n}: {factorization}")

Prime factorization of 261011319: 3 * 17 * 5117869


In [None]:
from sympy import factorint

# 输入需要分解的数
n = 263176513
# n = 261011319

# 获取素因数分解
factors = factorint(n)

# 将结果格式化为直观的数学表达式
factorization = ' * '.join([f'{prime}^{exp}' if exp > 1 else f'{prime}' for prime, exp in factors.items()])

# 输出结果
print(f"Prime factorization of {n}: {factorization}")

Prime factorization of 263176513: 16127 * 16319


## Jacobi symbol

In [None]:
def jacobi_symbol(a, p):
    if p <= 0 or p % 2 == 0:
        raise ValueError("p must be a positive odd number")

    a = a % p
    jacobi = 1

    while a != 0:
        # Step 1: Simplify even values of 'a'
        while a % 2 == 0:
            a //= 2
            if p % 8 in [3, 5]:
                jacobi = -jacobi

        # Step 2: Apply quadratic reciprocity
        a, p = p, a  # Swap a and p
        if a % 4 == 3 and p % 4 == 3:
            jacobi = -jacobi

        a = a % p

    # Step 3: If p is 1, return jacobi symbol
    if p == 1:
        return jacobi
    else:
        return 0


a = 261120319
p = 16319
result = jacobi_symbol(a, p)
print(f"Jacobi symbol ({a} / {p}) = {result}")

Jacobi symbol (261120319 / 16319) = 0


In [None]:
from sympy.functions.combinatorial.numbers import jacobi_symbol

# 计算 Jacobi 符号 (a / p)
# a = 3
a = 5
p = 16319  # 可以是任意奇数，包括非素数
result = jacobi_symbol(a, p)

print(f"Jacobi symbol ({a} / {p}) = {result}")

Jacobi symbol (5 / 16319) = 1


In [None]:
from sympy.ntheory.residue_ntheory import is_quad_residue

# Given values
# N = 262915409
N = 263176513
s = 261011326

# List of values to check for quadratic residues mod N
values = [s, -s, 5 * s, -5 * s]

# Check which ones are quadratic residues mod N
quad_residues = [(value, is_quad_residue(value, N)) for value in values]

quad_residues


[(261011326, False),
 (-261011326, False),
 (1305056630, False),
 (-1305056630, True)]

In [None]:
print(is_quad_residue(5, 16127))
# print(jacobi_symbol(3*261011319, 262915409))

False


## Efficient modular exponentiation $a^b mod N$

In [None]:
def mod_exp(a, b, N):
    t = 1
    x = a

    while b > 0:
        if b % 2 == 1:  # 如果 b 是奇数
            t = (t * x) % N
            b = b - 1
        x = (x * x) % N  # x 平方后取模
        b = b // 2  # 将 b 整除 2

    return t

# 测试
a = 987654321
b = 261011319
N = 263143732

result = mod_exp(a, b, N)
print(result)

5408869


## Chinese Remainder Theorem CRT
Solving congruence equations

In [None]:
# x = 2 (mod 3)
# x = 3 (mod 5)
# x = 2 (mod 7)
x, mod = crt([16127,16319], [14683,8586])
print(f"x = {x} (mod {mod})")

x = 199279895 (mod 263176513)


## Exponentiation by Squaring （15.31） $x^2 = a \mod p$



In [None]:
def mod_exp(base, exp, mod):
    """快速幂算法计算 base^exp mod mod"""
    result = 1
    while exp > 0:
        if exp % 2 == 1:
            result = (result * base) % mod
        base = (base * base) % mod
        exp //= 2
    return result

def legendre_symbol(a, p):
    """计算勒让德符号 (a/p)，用来判断 a 是否为模 p 的二次剩余"""
    return mod_exp(a, (p - 1) // 2, p)

def find_non_residue(p):
    """找到模 p 下的非二次剩余"""
    for b in range(2, p):
        if legendre_symbol(b, p) == p - 1:
            return b
    return None

def sqrt_mod_prime(a, p):
    """计算模素数 p 下 a 的平方根"""
    # 首先检查 a 是否为二次剩余
    if legendre_symbol(a, p) != 1:
        return None  # a 不是二次剩余，没有平方根

    # 找到一个非二次剩余 b
    b = find_non_residue(p)
    if b is None:
        return None

    # 计算 l 和 m，满足 2^l * m = (p - 1) / 2
    m = (p - 1) // 2
    l = 0
    while m % 2 == 0:
        l += 1
        m //= 2

    # 初始化 r 和 r'
    r = (2 ** l) * m
    r_prime = 0

    # 维护不变量 a^r * b^r' = 1 (mod p)
    for i in range(l, 0, -1):
        r //= 2
        r_prime //= 2
        if mod_exp(a, r, p) * mod_exp(b, r_prime, p) % p == p - 1:
            r_prime += (2 ** (i - 1)) * m

    # 计算平方根
    sqrt = mod_exp(a, (r + 1) // 2, p) * mod_exp(b, r_prime // 2, p) % p
    return sqrt

# 示例测试
p = 16127
a = -3*261011319
sqrt_a = sqrt_mod_prime(a, p)
if sqrt_a is not None:
    print(f"{a} 在模 {p} 下的平方根是 {sqrt_a} 和 {p - sqrt_a}")
else:
    print(f"{a} 不是模 {p} 下的二次剩余")


-783033957 不是模 16127 下的二次剩余


## Exponentiation by Squaring(another version)

In [None]:
def mod_exp(base, exp, mod):
    """Fast exponentiation algorithm to compute base^exp mod mod"""
    result = 1
    while exp > 0:
        if exp % 2 == 1:
            result = (result * base) % mod
        base = (base * base) % mod
        exp //= 2
    return result

def legendre_symbol(a, p):
    """Calculate the Legendre symbol (a/p) to determine if a is a quadratic residue modulo p"""
    return mod_exp(a, (p - 1) // 2, p)

def find_non_residue(p):
    """Find a non-quadratic residue modulo p"""
    for b in range(2, p):
        if legendre_symbol(b, p) == p - 1:
            return b
    return None

def sqrt_mod_prime(a, p):
    """Compute the square root of a modulo a prime p"""
    # First check if a is a quadratic residue
    if legendre_symbol(a, p) != 1:
        return None  # a is not a quadratic residue, no square root exists

    # Find a non-quadratic residue b
    b = find_non_residue(p)
    if b is None:
        return None

    # Initialize r and r'
    r = (p - 1) // 2
    r_prime = 0

    # While r is even
    while r % 2 == 0:
        r //= 2
        r_prime //= 2
        if mod_exp(a, r, p) * mod_exp(b, r_prime, p) % p == p - 1:
            r_prime += (p - 1) // 2

    # Compute the square root
    sqrt = mod_exp(a, (r + 1) // 2, p) * mod_exp(b, r_prime // 2, p) % p
    return sqrt

# Example test
p = 16319
a = -5 * 261011319
sqrt_a = sqrt_mod_prime(a, p)
if sqrt_a is not None:
    print(f"The square roots of {a} modulo {p} are {sqrt_a} and {p - sqrt_a}")
else:
    print(f"{a} is not a quadratic residue modulo {p}")

The square roots of -1305056595 modulo 16319 are 7733 and 8586


### find b

In [None]:
p = 37
reminder = []
for i in range(1,p):
    reminder.append((i**2) % p)
# print(reminder)

for i in range(1,p):
  if i % p not in reminder:
    print(i)

2
5
6
8
13
14
15
17
18
19
20
22
23
24
29
31
32
35


## Extracting square roots modulo $N$  $r^2 = a \mod N$ ,$N=p \cdot q$

In [None]:
# 求解模 p 的平方根
def mod_sqrt(a, p):
    results = []
    for r in range(p):
        if (r * r) % p == a % p:
            results.append(r)
    return results

# 使用中国剩余定理合并解
def solve_modular_square_root(a, N, p, q):
    # 求模 p 和模 q 下的平方根
    roots_p = mod_sqrt(a, p)
    roots_q = mod_sqrt(a, q)

    # 存放最终的解
    solutions = []

    # 使用中国剩余定理合并所有可能的解
    for r_p in roots_p:
        for r_q in roots_q:
            r, _ = crt([p, q], [r_p, r_q])  # 使用 SymPy 的中国剩余定理
            solutions.append(r)

    return solutions

# 示例
N = 1591  # N = p * q
p = 37
q = 43
a = 16  # 我们要解的是 r^2 ≡ a (mod N)

# 计算模 N 的平方根
solutions = solve_modular_square_root(a, N, p, q)

# 输出解
print(f"模 {N} 下 r^2 ≡ {a} 的解是: {solutions}")


模 1591 下 r^2 ≡ 16 的解是: [4, 1114, 477, 1587]


## Integer Factorization Algorithm

In [1]:
import random
import math
from sympy.ntheory.residue_ntheory import sqrt_mod
from math import gcd

# 模平方根函数，使用 sympy 中的 sqrt_mod 来计算
def sqroot_mod(a, N):
    try:
        return sqrt_mod(a, N, all_roots=False)  # 返回单个平方根
    except ValueError:
        return None  # 无法找到平方根时返回 None

# 整数分解算法
def integer_splitting(N):
    while True:
        r = random.randint(1, N-1)  # 随机选择一个 r
        r_prime = sqroot_mod(r**2, N)  # 计算模 N 的平方根

        if r_prime is None or r_prime == r or r_prime == N - r:
            continue  # 如果平方根不存在，或 r' 与 r 相等，则重新尝试

        # 计算 u 和 v
        u = gcd(r + r_prime, N)
        v = N/u

        # 如果找到的 u 和 v 都大于 1，则返回结果
        if u > 1 and v > 1:
            return u, v

# 示例用法
N = 12  # 例子：N 是合数
u, v = integer_splitting(N)
print(f"整数 {N} 被分解为 {u} 和 {v}")


整数 12 被分解为 6 和 2.0


In [None]:
sqrt_mod(477**2, 1591, all_roots=False)

4

### Recursive decomposition

In [None]:
# 质因数分解算法
def integer_factoring(N):
    # 如果 N 是质数，直接返回 [N]
    if isprime(N):
        return [N]

    # 否则分解 N 为 u 和 v
    u, v = integer_splitting(N)

    # 递归分解 u 和 v，并返回质因数列表
    return integer_factoring(u) + integer_factoring(v)

# 示例用法
N = 1591  # 例子：N 是合数
factors = integer_factoring(N)
print(f"整数 {N} 的质因数分解为 {factors}")

整数 1591 的质因数分解为 [37, 43]


# Miller-Rabin Probabilistic primality testing

In [None]:
import random

# Function to perform modular exponentiation (x^y % p)
def mod_exp(x, y, p):
    result = 1  # Initialize result
    x = x % p  # Update x if it is more than or equal to p
    while y > 0:
        # If y is odd, multiply x with the result
        if y % 2 == 1:
            result = (result * x) % p
        # y must be even now
        y = y // 2
        x = (x * x) % p  # Change x to x^2
    return result

# Miller-Rabin test function
def miller_rabin(N, t):
    if N <= 1 or N == 4:
        return False
    if N <= 3:
        return True

    # Find d such that N-1 = 2^s * d with d odd
    d = N - 1
    s = 0
    while d % 2 == 0:
        d //= 2
        s += 1

    # Perform t iterations of the test
    for _ in range(t):
        a = random.randint(2, N - 2)
        print(a)
        x = mod_exp(a, d, N)

        if x == 1 or x == N - 1:
            continue

        for _ in range(s - 1):
            x = (x * x) % N
            if x == N - 1:
                break
        else:
            return False

    return True

# Example simulation
N = 263176513  # Carmichael number (not prime but passes Fermat test, let's test it)
t = 1   # Number of iterations
result = miller_rabin(N, t)
result

213728478


False

# find Primitive Elements

In [None]:
import random
from math import gcd

# 辅助函数：计算 a^b mod m
def power_mod(a, b, m):
    res = 1
    a = a % m
    while b > 0:
        if b % 2 == 1:
            res = (res * a) % m
        b = b // 2
        a = (a * a) % m
    return res

# 辅助函数：找到 q-1 的质因数分解
def prime_factors(n):
    factors = []
    # 检查 2 是否是质因数
    while n % 2 == 0:
        factors.append(2)
        n = n // 2
    # 检查奇数
    for i in range(3, int(n**0.5) + 1, 2):
        while n % i == 0:
            factors.append(i)
            n = n // i
    if n > 2:
        factors.append(n)
    return list(set(factors))  # 返回质因数集合

# 辅助函数：寻找本原元
def find_primitive_element(q):
    # q-1 的质因数分解
    phi = q - 1
    factors = prime_factors(phi)

    # 计算 m_i = (q-1) / l_i
    m = [(phi // f) for f in factors]

    while True:
        # 随机选择一个 g ∈ {1, 2, ..., q-1}
        g = random.randint(2, q-1)

        # 检查 g 是否满足 g^m_i ≠ 1 (mod q) 对于所有 m_i
        if all(power_mod(g, m_i, q) != 1 for m_i in m):
            return g  # g 是本原元

# 测试
q = 23  # 选择一个有限域大小 q (q 必须是素数)
primitive_element = find_primitive_element(q)
print(f"The primitive element of F_{q} is: {primitive_element}")


The primitive element of F_23 is: 14
