Re: efficient transformations between "sum of squares" and "sqrt(-1) (mo

Joerg Arndt on Thu, 03 Aug 2023 16:57:51 +0200

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime

To: hermann@stamm-wilbrandt.de
Subject: Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
From: Joerg Arndt <arndt@jjj.de>
Date: Thu, 3 Aug 2023 16:53:09 +0200
Arc-authentication-results: i=1; coreboot.org; auth=pass smtp.auth=arndt@jjj.de smtp.mailfrom=arndt@jjj.de
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=jjj.de; s=dkim; t=1691074390; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=8qWby71R82sCJE1pVf5QFaKFwSRK15tQflJAhNeT5kQ=; b=NXOfS54lFtso3UdkwNvOHYpLr+q0GWJMbJYxCbj6j9Ib2sjpoEWF+SwRZyHFPhfH4L0U2/ BVVyRRHyz4YQXSLebSZnAy4e/R4KthNVtWtNVUfucBDcnAbXnsY55CFOpgPuH7KmSy+46T DO0qIcDC2L2mNaBg3HfWumRQx5cwPY8=
Arc-seal: i=1; s=dkim; d=jjj.de; t=1691074390; a=rsa-sha256; cv=none; b=v3sONQvasqbEd7InDKPGbJmife80t+s9RYAxJ/tnA02MGyW8s2bYPNfGBS3a4iynbp25jyRBGGiSkn+O4jJPkWnc0Fl2wcqjNhps4viWFcD24OxpJ8sVtLojKEeQgYY9GQGostZutBnuDK1NcPeukKFyu3u2z2rs3c2FK9/KU0M=
Authentication-results: coreboot.org; auth=pass smtp.auth=arndt@jjj.de smtp.mailfrom=arndt@jjj.de
Cc: pari-users@pari.math.u-bordeaux.fr
Delivery-date: Thu, 03 Aug 2023 16:57:52 +0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jjj.de; s=dkim; t=1691074390; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=8qWby71R82sCJE1pVf5QFaKFwSRK15tQflJAhNeT5kQ=; b=CGkZFYozlB2ixxBtoYHesGVyT+o+Z25FMhyT9UUwvPoTyDL9TotZHlYMVTLQIoIMhSN0Wg JITQLt4/kC1G9ztVAnMp7iV4tFHDl1rY7rqKmk6uuUK+mBvbf/QWYU6MubfqdvE+nCBqzZ H2jV7vqzTeq4GHK+kaLmaHtHe6BCKrY=
In-reply-to: <288cf6659826683c4279eff17bd03699@stamm-wilbrandt.de>
References: <44d9e13d10914b1c1dd823259c004d37@stamm-wilbrandt.de> <288cf6659826683c4279eff17bd03699@stamm-wilbrandt.de>

Btw. if you happen to know the decomposition p = A^2 + B^2
then sqrt(-1) = +- A/B ( = -+ B/A )

Here is why, setting i = sqrt(-1):
p = A^2 + B^2 = A^2 - (i^2) * B^2 == 0
so (i^2) = A^2 / B^2, so i = +- A/B

This is especially nice if B = 1 or 2,
1^(-1) = 1 (of course) and 2^(-1) = (p+1)/2.

Best regards,   jj


* hermann@stamm-wilbrandt.de <hermann@stamm-wilbrandt.de> [Aug 03. 2023 16:10]:
> On 2023-06-20 02:02, hermann@stamm-wilbrandt.de wrote:
> > I learned on this mailing list about "halfgcd()" allowing to
> > efficiently compute sum of squares given "sqrtm1 = sqrt(-1) (mod p)",
> > and for computing "sqrtm1" from sum of squares as "x*y^(-1) (mod p)".
> > 
> I just finished big project to determine "sqrt(-1) (mod p)" for largest
> known 9,383,761-digit prime p =1 (mod 4):
> https://github.com/Hermann-SW/9383761-digit-prime#readme
> 
> I stopped the 75.4 days expected runtime run after 9d 20.9h, because I
> learned about llr tool based on gwnum library, and computed "sqrt(-1) (mod
> p)" in 13.2h plus 10s post processing. That is 137x faster than with my
> libgmpxx based code.
> 
> gwnum library is x86 specific, but allows for huge speedups using AVX512
> instructions, and multi-core processing a single square or square+mult (mod
> p). And 31,172,177 such operations had to be done ...
> 
> New PARI/GP script with that sqrtm1 constant:
> https://github.com/Hermann-SW/RSA_numbers_factored/blob/main/pari/sqrtm1.9383761_digit.largest_known_1mod4_prime.gp
> 
> Nice, computing sum of squares for that huge prime from sqrtm1 in 2.9s only,
> and computing sqrtm1 given x and y in 4.2s:
> 
> hermann@7600x:~/RSA_numbers_factored/pari$ gp -q
> ? \r sqrtm1.9383761_digit.largest_known_1mod4_prime
> 9383761-digit prime p (31172179 bits)
> [M,V] = halfgcd(sqrtm1, p)
>   ***   last result computed in 2,854 ms.
> [x,y] = [V[2], M[2,1]]
>   ***   last result computed in 1 ms.
> sqrtm1 = lift(Mod(x/y, p))
>   ***   last result computed in 5,929 ms.
> sqrtm1 = lift(x*Mod(1/y, p))
>   ***   last result computed in 4,531 ms.
> sqrtm1 = lift(Mod(x, p)/y)
>   ***   last result computed in 4,203 ms.
> done, all asserts OK
> ?
> 
> 
> Reards,
> 
> Hermann.

Follow-Ups:
- Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
  - From: hermann@stamm-wilbrandt.de

References:
- Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
  - From: hermann@stamm-wilbrandt.de

Prev by Date: Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
Next by Date: Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
Previous by thread: Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
Next by thread: Re: efficient transformations between "sum of squares" and "sqrt(-1) (mod p)" for 1M-digit prime
Index(es):
- Date
- Thread