# Shor's algorithm for integer factoring

This example implementation of Shor's algorithm is [adapted from ProjectQ](https://github.com/ProjectQ-Framework/ProjectQ/blob/develop/examples/shor.py).

In [1]:
import math
import random
from fractions import Fraction

try:
    from math import gcd
except ImportError:
    from fractions import gcd

from pyqrack import QrackSimulator, Pauli

import os
os.environ["QRACK_QUNIT_SEPARABILITY_THRESHOLD"] = "0.001"

`toFactor` is the number we are factoring. (You may change it.) 

In [2]:
toFactor=1073741823

The entire algorithm is implemented below. For the first variant, to factor an integer of `n` qubits or less, we have a footprint of `2n`, but PyQrack's `pown()` is limited in qubit width to single GPU "pages," (usually 2 qubits less than maximum for the GPU,) and the operation is "fully entangling" of the internal representation. 

In [None]:
%%time
base = int(random.random() * toFactor)
if not gcd(base, toFactor) == 1:
    print("Chose non-relative prime, (without need for quantum computing):")
    print("Factor: {}".format(gcd(base, toFactor)))
else:
    qubitCount = math.ceil(math.log2(toFactor))
    sim = QrackSimulator(2 * qubitCount)

    qi = [i for i in range(qubitCount)]
    qo = [(i + qubitCount) for i in range(qubitCount)]

    # run the quantum subroutine
    for i in qi:
        sim.h(i)
    sim.pown(base, toFactor, qi, qo)
    sim.iqft(qi)
    
    b = [Pauli.PauliZ] * qubitCount
    y = sim.measure_pauli(b, qi)
    r = Fraction(y).limit_denominator(toFactor - 1).denominator

    # try to determine the factors
    if r % 2 != 0:
        r *= 2
    apowrhalf = pow(base, r >> 1, toFactor)
    f1 = gcd(apowrhalf + 1, toFactor)
    f2 = gcd(apowrhalf - 1, toFactor)
    if (not f1 * f2 == toFactor) and f1 * f2 > 1 and int(1.0 * toFactor / (f1 * f2)) * f1 * f2 == toFactor:
        f1, f2 = f1 * f2, int(toFactor / (f1 * f2))
    if f1 * f2 == toFactor and f1 > 1 and f2 > 1:
        print("Factors found : {} * {} = {}".format(f1, f2, toFactor))
    else:
        print("Failed: Found {} and {}".format(f1, f2))

The second implementation requires `3n+1` qubits in footprint to factor a number of `n` qubits or less. However, these methods do not resort to "fully entangled representation," and they are not limited to single GPU "pages."

`check_mod()` will effectively act a Pauli X gate on `qm`, if and only if the permutation in the register `qi` is greater than or equal to `toFactor`.

In [3]:
def check_mod(sim, toFactor, maxN, qo, qm):
    diff = maxN - toFactor
    sim.add(diff, [*qo, qm])
    sim.sub(diff, qo)

In [8]:
%%time
# Based on https://arxiv.org/abs/quant-ph/0205095
base = int(random.random() * toFactor)
if not gcd(base, toFactor) == 1:
    print("Chose non-relative prime, (without need for quantum computing):")
    print("Factor: {}".format(gcd(base, toFactor)))
else:
    qubitCount = math.ceil(math.log2(toFactor))
    maxN = 1<<qubitCount
    # sim = QrackSimulator(3 * qubitCount + 1)
    # Without qm as auxiliary qubit:
    sim = QrackSimulator(3 * qubitCount)

    qi = [i for i in range(qubitCount)]
    qo = [(i + qubitCount) for i in range(qubitCount)]
    qa = [(i + 2 * qubitCount) for i in range(qubitCount)]
    qm = 3 * qubitCount

    # run the quantum subroutine
    for i in qi:
        sim.h(i)
        # These mul/div operations only work for modulo by powers of 2.
        sim.mcmuln(1<<i, [i], maxN, qo, qa)
        for o in range(len(qa)):
            sim.cswap([i], qa[o], qo[o])
        sim.mcdivn(1<<i, [i], maxN, qo, qa)
        
        # This is quasi-successful, even on modulo 2**qubitCount (AKA 1<<qubitCount).
        # Finishing what's below is what's required for strictly literal Shor's factoring algorithm.
        
        # We're implementing the modulo by toFactor, below.
        # First, set the qm qubit, if we have any permutation greater than toFactor.
        # check_mod(sim, toFactor, maxN, qo, qm)
        
        # Now, qm is set, iff permutation is greater than or equal to toFactor.
        # If qm is set, subtracting toFactor will achieve modulo toFactor.
        # sim.mcsub(toFactor, [qm], qo)
        
        # We still have the modulo test qubit set, qm, though.
        # NOTE: This probably doesn't work, yet,
        # because we anticipate a difference between (a*n)mod(toFactor)
        # vs multiplication by (a*n)mod(toFactor) on output register, in progress.
        # Put the original result back in the auxiliary register.
        # sim.mcmuln(1<<i, [i], maxN, qi, qa)
        # Reset the qm qubit, if we have any permutation greater than or equal to toFactor.
        # check_mod(sim, toFactor, maxN, qa, qm)
        # Reset the auxiliary register
        # sim.mcdivn(1<<i, [i], maxN, qi, qa)
        
    sim.iqft(qi)
    
    b = [Pauli.PauliZ] * qubitCount
    y = sim.measure_pauli(b, qi)
    r = Fraction(y).limit_denominator(toFactor - 1).denominator

    # try to determine the factors
    if r % 2 != 0:
        r *= 2
    apowrhalf = pow(base, r >> 1, toFactor)
    f1 = gcd(apowrhalf + 1, toFactor)
    f2 = gcd(apowrhalf - 1, toFactor)
    if (not f1 * f2 == toFactor) and f1 * f2 > 1 and int(1.0 * toFactor / (f1 * f2)) * f1 * f2 == toFactor:
        f1, f2 = f1 * f2, int(toFactor / (f1 * f2))
    if f1 * f2 == toFactor and f1 > 1 and f2 > 1:
        print("Factors found : {} * {} = {}".format(f1, f2, toFactor))
    else:
        print("Failed: Found {} and {}".format(f1, f2))

Factors found : 651 * 1649373 = 1073741823
CPU times: user 37.7 ms, sys: 12.5 ms, total: 50.2 ms
Wall time: 45.7 ms
