qfall-math 0.1.1

Mathematical foundations for rapid prototyping of lattice-based cryptography
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159

// Copyright © 2023 Marcel Luca Schmidt
//
// This file is part of qFALL-math.
//
// qFALL-math is free software: you can redistribute it and/or modify it under
// the terms of the Mozilla Public License Version 2.0 as published by the
// Mozilla Foundation. See <https://mozilla.org/en-US/MPL/2.0/>.

//! Implementations to reduce a [`MatPolynomialRingZq`] with the
//! [`ModulusPolynomialRingZq`](crate::integer_mod_q::ModulusPolynomialRingZq).

// **For Developers** note: The [`ModulusPolynomialRingZq`](crate::integer_mod_q::ModulusPolynomialRingZq)
// is not applied automatically, and has to be called in the functions individually.
// Additionally the comparisons assume that the entries are reduced,
// hence no reduction is performed in the check.

use super::MatPolynomialRingZq;
use crate::{
    integer::fmpz_poly_helpers::reduce_fmpz_poly_by_fmpz_mod_poly_sparse, traits::MatrixDimensions,
};
use flint_sys::fmpz_poly_mat::fmpz_poly_mat_entry;

impl MatPolynomialRingZq {
    /// This function manually applies the modulus
    /// [`ModulusPolynomialRingZq`](crate::integer_mod_q::ModulusPolynomialRingZq)
    /// to the given polynomial matrix [`MatPolyOverZ`](crate::integer::MatPolyOverZ)
    /// in the [`MatPolynomialRingZq`].
    ///
    /// # Examples
    /// ```compile_fail
    /// use qfall_math::integer_mod_q::MatPolynomialRingZq;
    /// use qfall_math::integer_mod_q::ModulusPolynomialRingZq;
    /// use qfall_math::integer::MatPolyOverZ;
    /// use std::str::FromStr;
    ///
    /// let modulus = ModulusPolynomialRingZq::from_str("4  1 0 0 1 mod 17").unwrap();
    /// let poly_mat = MatPolyOverZ::from_str("[[4  -1 0 1 1, 1  42],[0, 2  1 2]]").unwrap();
    /// let mut poly_ring_mat = MatPolynomialRingZq::from((&poly_mat, &modulus));
    ///
    /// poly_ring_mat.reduce()
    /// ```
    pub(crate) fn reduce(&mut self) {
        for row_num in 0..self.matrix.get_num_rows() {
            for column_num in 0..self.matrix.get_num_columns() {
                unsafe { self.reduce_entry(row_num, column_num) };
            }
        }
    }

    /// This function manually applies the modulus
    /// [`ModulusPolynomialRingZq`](crate::integer_mod_q::ModulusPolynomialRingZq)
    /// to the entry (`row`, `column`) of the given polynomial matrix [`MatPolyOverZ`](crate::integer::MatPolyOverZ)
    /// in the [`MatPolynomialRingZq`]. The function does not check if `row` and `column`
    /// is within the matrix dimensions.
    ///
    /// # Examples
    /// ```compile_fail
    /// use qfall_math::integer_mod_q::MatPolynomialRingZq;
    /// use qfall_math::integer_mod_q::ModulusPolynomialRingZq;
    /// use qfall_math::integer::MatPolyOverZ;
    /// use std::str::FromStr;
    ///
    /// let modulus = ModulusPolynomialRingZq::from_str("4  1 0 0 1 mod 17").unwrap();
    /// let poly_mat = MatPolyOverZ::from_str("[[4  -1 0 1 1, 1  42],[0, 2  1 2]]").unwrap();
    /// let mut poly_ring_mat = MatPolynomialRingZq::from((&poly_mat, &modulus));
    ///
    /// unsafe { poly_ring_mat.reduce_entry(0, 0) };
    /// ```
    pub(crate) unsafe fn reduce_entry(&mut self, row: i64, column: i64) {
        let entry = unsafe { fmpz_poly_mat_entry(&self.matrix.matrix, row, column) };
        if (unsafe { *entry }).length > 0 {
            unsafe {
                reduce_fmpz_poly_by_fmpz_mod_poly_sparse(
                    &mut *entry,
                    &self.modulus.modulus.poly,
                    &self.modulus.non_zero,
                    self.modulus.get_q_as_modulus().get_fmpz_mod_ctx_struct(),
                )
            }
        }
    }
}

#[cfg(test)]
mod test_reduced {
    use crate::{
        integer::MatPolyOverZ,
        integer_mod_q::{ModulusPolynomialRingZq, mat_polynomial_ring_zq::MatPolynomialRingZq},
    };
    use std::str::FromStr;

    const LARGE_PRIME: u64 = u64::MAX - 58;

    /// Ensure that the entries are reduced
    #[test]
    fn reduces() {
        let modulus = ModulusPolynomialRingZq::from_str("4  1 0 0 1 mod 11").unwrap();
        let poly_mat = MatPolyOverZ::from_str("[[4  -1 0 1 1, 1  42],[0, 2  1 2]]").unwrap();
        let mut poly_ring_mat = MatPolynomialRingZq {
            matrix: poly_mat,
            modulus,
        };

        let cmp_modulus = ModulusPolynomialRingZq::from_str("4  1 0 0 1 mod 11").unwrap();
        let cmp_poly_mat = MatPolyOverZ::from_str("[[3  9 0 1, 1  9],[0, 2  1 2]]").unwrap();
        let cmp_poly_ring_mat = MatPolynomialRingZq {
            matrix: cmp_poly_mat.clone(),
            modulus: cmp_modulus,
        };

        // we only compare the parts individually, not under the modulus, hence they should not be the same
        // unless they have been reduced
        assert_ne!(poly_ring_mat.matrix, cmp_poly_mat);
        assert_ne!(poly_ring_mat, cmp_poly_ring_mat);

        poly_ring_mat.reduce();
        assert_eq!(poly_ring_mat.matrix, cmp_poly_mat);
        assert_eq!(poly_ring_mat, cmp_poly_ring_mat);
    }

    /// Ensure that reduce works with large entries and moduli
    #[test]
    fn large_values() {
        let modulus =
            ModulusPolynomialRingZq::from_str(&format!("4  {} 0 0 1 mod {LARGE_PRIME}", i64::MAX))
                .unwrap();
        let poly_mat =
            MatPolyOverZ::from_str(&format!("[[4  -1 0 {} 1, 1  42],[0, 2  1 2]]", i64::MAX))
                .unwrap();
        let mut poly_ring_mat = MatPolynomialRingZq {
            matrix: poly_mat,
            modulus,
        };

        let cmp_modulus =
            ModulusPolynomialRingZq::from_str(&format!("4  {} 0 0 1 mod {LARGE_PRIME}", i64::MAX))
                .unwrap();
        let cmp_poly_mat = MatPolyOverZ::from_str(&format!(
            "[[3  {} 0 {}, 1  42],[0, 2  1 2]]",
            LARGE_PRIME - i64::MAX as u64 - 1,
            i64::MAX
        ))
        .unwrap();
        let cmp_poly_ring_mat = MatPolynomialRingZq {
            matrix: cmp_poly_mat.clone(),
            modulus: cmp_modulus,
        };

        // we only compare the parts individually, not under the modulus, hence they should not be the same
        // unless they have been reduced
        assert_ne!(poly_ring_mat.matrix, cmp_poly_mat);
        assert_ne!(poly_ring_mat, cmp_poly_ring_mat);

        poly_ring_mat.reduce();

        assert_eq!(poly_ring_mat.matrix, cmp_poly_mat);
        assert_eq!(poly_ring_mat, cmp_poly_ring_mat);
    }
}