In [1]:
## Helper functions

# Returns Euler's totient function: #{a in Z_n : gcd(a, n) = 1}
def totient(n):
    if n < 1: return 0
        
    res = n
    i = 2
    
    while i^2 <= n:
        if n % i == 0:
            while n % i == 0:
                n = n // i
            res -= res // i
        i += 1

    if n > 1: res -= res // n

    return res

## Good old Euclidean algorithm
def gen_euc_alg(n, m):
    old_r, r = n, m
    old_s, s = 1, 0
    old_t, t = 0, 1

    while r > 0:
        q = old_r // r

        old_r, r = r, old_r - q * r
        old_s, s = s, old_s - q * s
        old_t, t = t, old_t - q * t

    return old_s, old_t, old_r

# Returns the base 2 expansion of n as a list
# n := sum_i powers[i] * 2^i
def base_2(n):
    powers = []

    while n > 0: 
        powers.append(n % 2)
        n = n // 2

    return powers

In [2]:
# Evaluates a^k (mod n) by successive squaring
def k_power_mod_n(a, k, n, show_calc=True):

    # Any a can be reduced mod n right away
    a_new = a % n
    if a != a_new and show_calc:
        print(f'(!) Replacing a = {a} as {a_new} (mod {n})\n')
    a = a_new

    # Expand k in base 2
    k_base_2 = base_2(k)

    # Print k as a power of 2s
    k_str = f'{k} = '
    
    for deg in range(len(k_base_2) - 1):
        if k_base_2[deg]: k_str += f'{2**deg} + '
    k_str += f'{2**(len(k_base_2) - 1)}'
    
    if show_calc:
        print(f'Calculation:')
        print(f'(1) k = {k} in base 2:', k_str)
        print()
    
    # a_powers will store the successive squares of a: a_powers[i] = a^(2^i)
    a_powers = [a]
    outlist = []
    
    # Start the expansion of the result as a product of a^(2^i)
    if k_base_2[0]: 
        ans = a
        outlist.append((a,a))
    else: ans = 1

    # Compute powers of a by successive squaring, use the base 2 expansion of k to evaluate
    for i in range(1, len(k_base_2)):
        a_powers.append(a_powers[i-1]**2 % n)

        if k_base_2[i]: 
            ans = ans * a_powers[i] % n
            outlist.append((f'{a}^{2**i}', a_powers[i]))
    
    # This is all just formatting, if show_calc is enabled you will get a nice
    # print out of what is going on.
    if show_calc:
        print(f'(2) Powers of {a} needed:')     
        (sym, num) = outlist[0]
        print('   ', sym, '=', num, f' (mod {n})')
        outstr = f'{a}^{k} = ' + str(num)
       
        for i in range(1, len(outlist)):
            (sym, num) = outlist[i]
            print('   ', sym, '=', num, f' (mod {n})')
            outstr += ' * ' + str(num)
        print()

        print('Answer:')
        print(outstr, f'= {ans} (mod {n})')

    # Return answer as an integer
    return ans
    

In [3]:
## Evaluate a^k (mod n)
k_power_mod_n(a=18, k=77, n=313, show_calc=True)

Calculation:
(1) k = 77 in base 2: 77 = 1 + 4 + 8 + 64

(2) Powers of 18 needed:
    18 = 18  (mod 313)
    18^4 = 121  (mod 313)
    18^8 = 243  (mod 313)
    18^64 = 3  (mod 313)

Answer:
18^77 = 18 * 121 * 243 * 3 = 226 (mod 313)


226

In [4]:
# Solves the equation x^k = a (mod n)
# This particular algorithm works so long as gcd(a, n) = gcd(k, phi(n)) = 1
# Can you determine why?
def k_root_mod_n(a, k, n, show_calc=True):
    # Need the totient of n
    phi = totient(n)
    _, _, d = gen_euc_alg(a, n)
    s, _, r = gen_euc_alg(k, phi)

    s = s % phi
    
    if d != 1:
        print(f'Problem: gcd({a}, {n}) is not 1')
        return 

    if r != 1:
        print(f'Problem: gcd({k}, phi({n})) is not 1')
        return 

    ans = k_power_mod_n(a, s, n, show_calc=False)

    if show_calc:
        print('Calculation:')
        print(f'(1) phi({n}) = {phi}')
        print(f'(2) Inverse of k = {k} (mod phi({n})) is s = {s}')
        print(f'(3) x = a^s = {a}^{s} = {ans} (mod {n})')
        print(f'\nAnswer:\nThe equation x^{k} = {a} (mod {n}) has a solution x = {ans}')
        
    return ans

In [4]:
## Solve for x^k = a (mod n) (if possible)
a = 6
k = 5
n = 23
k_root_mod_n(a, k, n)

NameError: name 'k_root_mod_n' is not defined