doxygen/html/number-theory_8hpp_source.html

 // Copyright (C) 2020-2021 Intel Corporation
 // SPDX-License-Identifier: Apache-2.0

 #pragma once

 #include <stdint.h>

 #include <iostream>
 #include <limits>
 #include <vector>

 #include "hexl/util/check.hpp"
 #include "hexl/util/compiler.hpp"

 namespace intel {
 namespace hexl {

 class MultiplyFactor {
  public:
   MultiplyFactor() = default;

   MultiplyFactor(uint64_t operand, uint64_t bit_shift, uint64_t modulus)
       : m_operand(operand) {
     HEXL_CHECK(operand <= modulus, "operand " << operand
                                               << " must be less than modulus "
                                               << modulus);
     HEXL_CHECK(bit_shift == 32 || bit_shift == 52 || bit_shift == 64,
                "Unsupported BitShift " << bit_shift);
     uint64_t op_hi = operand >> (64 - bit_shift);
     uint64_t op_lo = (bit_shift == 64) ? 0 : (operand << bit_shift);

     m_barrett_factor = DivideUInt128UInt64Lo(op_hi, op_lo, modulus);
   }

   inline uint64_t BarrettFactor() const { return m_barrett_factor; }

   inline uint64_t Operand() const { return m_operand; }

  private:
   uint64_t m_operand;
   uint64_t m_barrett_factor;
 };

 inline bool IsPowerOfTwo(uint64_t num) { return num && !(num & (num - 1)); }

 inline uint64_t Log2(uint64_t x) { return MSB(x); }

 inline bool IsPowerOfFour(uint64_t num) {
   return IsPowerOfTwo(num) && (Log2(num) % 2 == 0);
 }

 inline uint64_t MaximumValue(uint64_t bits) {
   HEXL_CHECK(bits <= 64, "MaximumValue requires bits <= 64; got " << bits);
   if (bits == 64) {
     return (std::numeric_limits<uint64_t>::max)();
   }
   return (1ULL << bits) - 1;
 }

 uint64_t ReverseBits(uint64_t x, uint64_t bit_width);

 uint64_t InverseMod(uint64_t x, uint64_t modulus);

 uint64_t MultiplyMod(uint64_t x, uint64_t y, uint64_t modulus);

 uint64_t MultiplyMod(uint64_t x, uint64_t y, uint64_t y_precon,
                      uint64_t modulus);

 uint64_t AddUIntMod(uint64_t x, uint64_t y, uint64_t modulus);

 uint64_t SubUIntMod(uint64_t x, uint64_t y, uint64_t modulus);

 uint64_t PowMod(uint64_t base, uint64_t exp, uint64_t modulus);

 bool IsPrimitiveRoot(uint64_t root, uint64_t degree, uint64_t modulus);

 uint64_t GeneratePrimitiveRoot(uint64_t degree, uint64_t modulus);

 uint64_t MinimalPrimitiveRoot(uint64_t degree, uint64_t modulus);

 template <int BitShift>
 inline uint64_t MultiplyModLazy(uint64_t x, uint64_t y_operand,
                                 uint64_t y_barrett_factor, uint64_t modulus) {
   HEXL_CHECK(y_operand < modulus, "y_operand " << y_operand
                                                << " must be less than modulus "
                                                << modulus);
   HEXL_CHECK(
       modulus <= MaximumValue(BitShift),
       "Modulus " << modulus << " exceeds bound " << MaximumValue(BitShift));
   HEXL_CHECK(x <= MaximumValue(BitShift),
              "Operand " << x << " exceeds bound " << MaximumValue(BitShift));

   uint64_t Q = MultiplyUInt64Hi<BitShift>(x, y_barrett_factor);
   return y_operand * x - Q * modulus;
 }

 template <int BitShift>
 inline uint64_t MultiplyModLazy(uint64_t x, uint64_t y, uint64_t modulus) {
   HEXL_CHECK(BitShift == 64 || BitShift == 52,
              "Unsupported BitShift " << BitShift);
   HEXL_CHECK(x <= MaximumValue(BitShift),
              "Operand " << x << " exceeds bound " << MaximumValue(BitShift));
   HEXL_CHECK(y < modulus,
              "y " << y << " must be less than modulus " << modulus);
   HEXL_CHECK(
       modulus <= MaximumValue(BitShift),
       "Modulus " << modulus << " exceeds bound " << MaximumValue(BitShift));

   uint64_t y_barrett = MultiplyFactor(y, BitShift, modulus).BarrettFactor();
   return MultiplyModLazy<BitShift>(x, y, y_barrett, modulus);
 }

 inline unsigned char AddUInt64(uint64_t operand1, uint64_t operand2,
                                uint64_t* result) {
   *result = operand1 + operand2;
   return static_cast<unsigned char>(*result < operand1);
 }

 bool IsPrime(uint64_t n);

 // 2^(bit_size+1)]. Ensures each prime q satisfies
 // q % (2*ntt_size+1)) == 1
 std::vector<uint64_t> GeneratePrimes(size_t num_primes, size_t bit_size,
                                      bool prefer_small_primes,
                                      size_t ntt_size = 1);

 uint64_t BarrettReduce64(uint64_t input, uint64_t modulus, uint64_t q_barr);

 template <int InputModFactor>
 uint64_t ReduceMod(uint64_t x, uint64_t modulus,
                    const uint64_t* twice_modulus = nullptr,
                    const uint64_t* four_times_modulus = nullptr) {
   HEXL_CHECK(InputModFactor == 1 || InputModFactor == 2 ||
                  InputModFactor == 4 || InputModFactor == 8,
              "InputModFactor should be 1, 2, 4, or 8");
   if (InputModFactor == 1) {
     return x;
   }
   if (InputModFactor == 2) {
     if (x >= modulus) {
       x -= modulus;
     }
     return x;
   }
   if (InputModFactor == 4) {
     HEXL_CHECK(twice_modulus != nullptr, "twice_modulus should not be nullptr");
     if (x >= *twice_modulus) {
       x -= *twice_modulus;
     }
     if (x >= modulus) {
       x -= modulus;
     }
     return x;
   }
   if (InputModFactor == 8) {
     HEXL_CHECK(twice_modulus != nullptr, "twice_modulus should not be nullptr");
     HEXL_CHECK(four_times_modulus != nullptr,
                "four_times_modulus should not be nullptr");

     if (x >= *four_times_modulus) {
       x -= *four_times_modulus;
     }
     if (x >= *twice_modulus) {
       x -= *twice_modulus;
     }
     if (x >= modulus) {
       x -= modulus;
     }
     return x;
   }
   HEXL_CHECK(false, "Should be unreachable");
   return x;
 }

 }  // namespace hexl
 }  // namespace intel
intel::hexl::ReduceMod
uint64_t ReduceMod(uint64_t x, uint64_t modulus, const uint64_t *twice_modulus=nullptr, const uint64_t *four_times_modulus=nullptr)
Returns x mod modulus, assuming x < InputModFactor * modulus.
Definition: number-theory.hpp:206

intel::hexl::GeneratePrimitiveRoot
uint64_t GeneratePrimitiveRoot(uint64_t degree, uint64_t modulus)
Tries to return a primitive degree-th root of unity.

intel::hexl::MultiplyMod
uint64_t MultiplyMod(uint64_t x, uint64_t y, uint64_t modulus)
Returns (x * y) mod modulus.

intel::hexl::MaximumValue
uint64_t MaximumValue(uint64_t bits)
Returns the maximum value that can be represented using bits bits.
Definition: number-theory.hpp:65

intel::hexl::GeneratePrimes
std::vector< uint64_t > GeneratePrimes(size_t num_primes, size_t bit_size, bool prefer_small_primes, size_t ntt_size=1)
Generates a list of num_primes primes in the range [2^(bit_size),.

intel::hexl::MultiplyModLazy
uint64_t MultiplyModLazy(uint64_t x, uint64_t y_operand, uint64_t y_barrett_factor, uint64_t modulus)
Computes (x * y) mod modulus, except that the output is in [0, 2 * modulus].
Definition: number-theory.hpp:129

check.hpp

intel::hexl::MultiplyFactor::MultiplyFactor
MultiplyFactor(uint64_t operand, uint64_t bit_shift, uint64_t modulus)
Computes and stores the Barrett factor floor((operand << bit_shift) / modulus). This is useful when m...
Definition: number-theory.hpp:30

intel::hexl::SubUIntMod
uint64_t SubUIntMod(uint64_t x, uint64_t y, uint64_t modulus)
Returns (x - y) mod modulus.

intel::hexl::AddUInt64
unsigned char AddUInt64(uint64_t operand1, uint64_t operand2, uint64_t *result)
Adds two unsigned 64-bit integers.
Definition: number-theory.hpp:170

intel::hexl::MultiplyFactor::BarrettFactor
uint64_t BarrettFactor() const
Returns the pre-computed Barrett factor.
Definition: number-theory.hpp:44

intel::hexl::IsPrime
bool IsPrime(uint64_t n)
Returns whether or not the input is prime.

intel::hexl::IsPowerOfTwo
bool IsPowerOfTwo(uint64_t num)
Returns whether or not num is a power of two.
Definition: number-theory.hpp:55

compiler.hpp

HEXL_CHECK
#define HEXL_CHECK(cond, expr)
Definition: check.hpp:39

intel::hexl::MultiplyFactor
Pre-computes a Barrett factor with which modular multiplication can be performed more efficiently...
Definition: number-theory.hpp:20

intel
Definition: eltwise-add-mod.hpp:8

intel::hexl::AddUIntMod
uint64_t AddUIntMod(uint64_t x, uint64_t y, uint64_t modulus)
Returns (x + y) mod modulus.

intel::hexl::ReverseBits
uint64_t ReverseBits(uint64_t x, uint64_t bit_width)
Reverses the bits.

intel::hexl::IsPowerOfFour
bool IsPowerOfFour(uint64_t num)
Definition: number-theory.hpp:60

intel::hexl::InverseMod
uint64_t InverseMod(uint64_t x, uint64_t modulus)
Returns x^{-1} mod modulus.

intel::hexl::MultiplyFactor::MultiplyFactor
MultiplyFactor()=default

intel::hexl::IsPrimitiveRoot
bool IsPrimitiveRoot(uint64_t root, uint64_t degree, uint64_t modulus)
Returns whether or not root is a degree-th root of unity mod modulus.

intel::hexl::MinimalPrimitiveRoot
uint64_t MinimalPrimitiveRoot(uint64_t degree, uint64_t modulus)
Returns whether or not root is a degree-th root of unity.

intel::hexl::PowMod
uint64_t PowMod(uint64_t base, uint64_t exp, uint64_t modulus)
Returns base^exp mod modulus.

intel::hexl::MultiplyFactor::Operand
uint64_t Operand() const
Returns the operand corresponding to the Barrett factor.
Definition: number-theory.hpp:47

intel::hexl::BarrettReduce64
uint64_t BarrettReduce64(uint64_t input, uint64_t modulus, uint64_t q_barr)
Returns input mod modulus, computed via 64-bit Barrett reduction.

intel::hexl::Log2
uint64_t Log2(uint64_t x)
Returns floor(log2(x))
Definition: number-theory.hpp:58