slightly improve flexibility and perf of modular multiplicative inverse

hurchalla · hurchalla · commit c08731570d9c · 2022-06-12T16:09:47.000-07:00
diff --git a/modular_arithmetic/include/hurchalla/modular_arithmetic/detail/impl_modular_multiplicative_inverse.h b/modular_arithmetic/include/hurchalla/modular_arithmetic/detail/impl_modular_multiplicative_inverse.h
@@ -23,16 +23,18 @@ namespace hurchalla { namespace detail {
 // note: uses a static member function to disallow ADL.
 struct impl_modular_multiplicative_inverse {
   template <typename T>
-  HURCHALLA_FORCE_INLINE static T call(T val, T modulus)
+  HURCHALLA_FORCE_INLINE static T call(T val, T modulus, T& gcd)
   {
     static_assert(ut_numeric_limits<T>::is_integer, "");
     static_assert(!(ut_numeric_limits<T>::is_signed), "");
     // I decided not to support modulus<=1, since it's not likely to be used and
     // it complicates the return type and adds conditional branches.
     HPBC_PRECONDITION2(modulus > 1);
 
-    // POSTCONDITION: Returns 0 if the inverse doesn't exist. Otherwise returns
+    // POSTCONDITION1: Returns 0 if the inverse doesn't exist. Otherwise returns
     //    the inverse (which is never 0, given that modulus>1).
+    // POSTCONDITION2: Sets gcd to the greatest common divisor of val and
+    //    modulus. Note that if the inverse exists, we will get gcd == 1.
 
     using U = typename safely_promote_unsigned<T>::type;
     using S = typename extensible_make_signed<U>::type;
@@ -42,32 +44,36 @@ struct impl_modular_multiplicative_inverse {
     // calculating only what is needed for the modular multiplicative inverse.
     S y1=0;
     U a1=modulus;
-    {
-        S y0=1;
-        U a2=val;
-        U q=0;
-        while (a2 != 0) {
-            S y2 = static_cast<S>(y0 - static_cast<S>(q)*y1);
-            y0=y1;
-            y1=y2;
-            U a0=a1;
-            a1=a2;
+    S y0=1;
+    U a2=val;
+    U q=0;
+    while (a2 > 1) {
+        S y2 = static_cast<S>(y0 - static_cast<S>(q)*y1);
+        y0=y1;
+        y1=y2;
+        U a0=a1;
+        a1=a2;
 
-            q = static_cast<U>(a0/a1);
-            a2 = static_cast<U>(a0 - q*a1);
-        }
+        q = static_cast<U>(a0/a1);
+        a2 = static_cast<U>(a0 - q*a1);
     }
-    S y = y1;
-    U gcd = a1;
-    if (gcd == 1) {
+    HPBC_ASSERT2(a1 > 1);
+
+    if (a2 == 1) {
+        gcd = 1;
+        S y = static_cast<S>(y0 - static_cast<S>(q)*y1);
           // inv = (y<0) ? y+modulus : y
         U inv = ::hurchalla::conditional_select(y<0,
-                                   static_cast<U>(static_cast<U>(y)+modulus),
-                                   static_cast<U>(y));
+                                  static_cast<U>(static_cast<U>(y)+modulus),
+                                  static_cast<U>(y));
         HPBC_POSTCONDITION2(inv < modulus);
         return static_cast<T>(inv);
-    } else
+    }
+    else {
+        gcd = static_cast<T>(a1);
+        HPBC_ASSERT2(gcd > 1);
         return 0;
+    }
   }
 };
 
diff --git a/modular_arithmetic/include/hurchalla/modular_arithmetic/modular_multiplicative_inverse.h b/modular_arithmetic/include/hurchalla/modular_arithmetic/modular_multiplicative_inverse.h
@@ -12,31 +12,43 @@
 #include "hurchalla/modular_arithmetic/detail/impl_modular_multiplicative_inverse.h"
 #include "hurchalla/modular_arithmetic/modular_multiplication.h"
 #include "hurchalla/util/traits/ut_numeric_limits.h"
+#include "hurchalla/util/compiler_macros.h"
 #include "hurchalla/util/programming_by_contract.h"
 
 namespace hurchalla {
 
 
+// Returns the modular multiplicative inverse of 'a', mod the modulus.
+// Also assigns the gcd of 'a' and modulus to the reference parameter gcd.
+//
 // Note: Calling with a < modulus slightly improves performance.
 // [The multiplicative inverse is an integer > 0 and < modulus, such that
 //    a * multiplicative_inverse == 1 (mod modulus).   It is a unique number,
 //    but it exists if and only if 'a' and 'modulus' are coprime.]
 template <typename T>
-T modular_multiplicative_inverse(T a, T modulus)
+T modular_multiplicative_inverse(T a, T modulus, T& gcd)
 {
     static_assert(ut_numeric_limits<T>::is_integer, "");
     static_assert(!(ut_numeric_limits<T>::is_signed), "");
     HPBC_PRECONDITION(modulus > 1);
 
-    T inverse = detail::impl_modular_multiplicative_inverse::call(a, modulus);
+    T inv = detail::impl_modular_multiplicative_inverse::call(a, modulus, gcd);
 
-    HPBC_POSTCONDITION(inverse < modulus);
+    HPBC_POSTCONDITION(inv < modulus);
     //POSTCONDITION: Returns 0 if the inverse does not exist. Otherwise returns
     //   the value of the inverse (which is never 0, given that modulus>1).
-    HPBC_POSTCONDITION(inverse == 0 ||
+    HPBC_POSTCONDITION(inv == 0 ||
                        ::hurchalla::modular_multiplication_prereduced_inputs(
-                           static_cast<T>(a % modulus), inverse, modulus) == 1);
-    return inverse;
+                           static_cast<T>(a % modulus), inv, modulus) == 1);
+    return inv;
+}
+
+// Same as the above function, except that it omits the gcd reference parameter.
+template <typename T>
+HURCHALLA_FORCE_INLINE T modular_multiplicative_inverse(T a, T modulus)
+{
+    T gcd; // ignored
+    return modular_multiplicative_inverse(a, modulus, gcd);
 }
 
 
diff --git a/test/modular_arithmetic/test_modular_multiplicative_inverse.cpp b/test/modular_arithmetic/test_modular_multiplicative_inverse.cpp
@@ -59,13 +59,21 @@ void exhaustive_test_uint8_t()
 {
     for (std::uint8_t modulus=255; modulus>1; --modulus) {
         for (std::uint8_t a=0; a<modulus; ++a) {
-            std::uint8_t inv = hc::modular_multiplicative_inverse(a, modulus);
+            std::uint8_t g;
+            std::uint8_t inv = hc::modular_multiplicative_inverse(a, modulus,g);
+            EXPECT_TRUE(g == testmmi::gcd(a, modulus));
             if (inv == 0)
-                EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
-            else
+                EXPECT_TRUE(g > 1);
+            else {
+                EXPECT_TRUE(g == 1);
                 EXPECT_TRUE(static_cast<std::uint8_t>(1) ==
                     hc::modular_multiplication_prereduced_inputs(a, inv,
                                                                       modulus));
+            }
+            if (g > 1)
+                EXPECT_TRUE(inv == 0);
+            else
+                EXPECT_TRUE(inv > 0);
         }
     }
 }
@@ -74,25 +82,34 @@ void exhaustive_test_uint8_t()
 template <typename T>
 void test_modulus(T modulus)
 {
+    T g;
+
     T a = 0;
     EXPECT_TRUE(static_cast<T>(0) ==
-                                hc::modular_multiplicative_inverse(a, modulus));
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 1;
     EXPECT_TRUE(static_cast<T>(1) ==
-                                hc::modular_multiplicative_inverse(a, modulus));
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = modulus;
     EXPECT_TRUE(static_cast<T>(0) ==
-                                hc::modular_multiplicative_inverse(a, modulus));
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
 
     T tmax = hc::ut_numeric_limits<T>::max();
     if (modulus < tmax) {
         a = static_cast<T>(modulus + 1);
         EXPECT_TRUE(static_cast<T>(1) ==
-                                hc::modular_multiplicative_inverse(a, modulus));
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+        EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     }
 
     a = 2;
-    T inverse = hc::modular_multiplicative_inverse(a, modulus);
+    T inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     if (inverse == 0)
         EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
     else
@@ -101,7 +118,8 @@ void test_modulus(T modulus)
                                 static_cast<T>(a % modulus), inverse, modulus));
 
     a = 3;
-    inverse = hc::modular_multiplicative_inverse(a, modulus);
+    inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     if (inverse == 0)
         EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
     else
@@ -110,28 +128,32 @@ void test_modulus(T modulus)
                                 static_cast<T>(a % modulus), inverse, modulus));
 
     a = static_cast<T>(modulus - 1);
-    inverse = hc::modular_multiplicative_inverse(a, modulus);
+    inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     EXPECT_TRUE(static_cast<T>(1) ==
              hc::modular_multiplication_prereduced_inputs(a, inverse, modulus));
 
     a = static_cast<T>(modulus - 2);
-    inverse = hc::modular_multiplicative_inverse(a, modulus);
+    inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     if (inverse == 0)
         EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
     else
         EXPECT_TRUE(static_cast<T>(1) ==
              hc::modular_multiplication_prereduced_inputs(a, inverse, modulus));
 
     a = static_cast<T>(modulus/2);
-    inverse = hc::modular_multiplicative_inverse(a, modulus);
+    inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     if (inverse == 0)
         EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
     else
         EXPECT_TRUE(static_cast<T>(1) ==
              hc::modular_multiplication_prereduced_inputs(a, inverse, modulus));
 
     a++;
-    inverse = hc::modular_multiplicative_inverse(a, modulus);
+    inverse = hc::modular_multiplicative_inverse(a, modulus, g);
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
     if (inverse == 0)
         EXPECT_TRUE(1 < testmmi::gcd(a, modulus));
     else
@@ -144,26 +166,52 @@ void test_modulus(T modulus)
 template <typename T>
 void test_modular_multiplicative_inverse()
 {
+    T g;
+
     // test with a few basic examples first
     T modulus = 13;
     T a = 5;
     EXPECT_TRUE(static_cast<T>(8) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(8) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 7;
     EXPECT_TRUE(static_cast<T>(2) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(2) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 4;
     EXPECT_TRUE(static_cast<T>(10) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(10) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 17;
     EXPECT_TRUE(static_cast<T>(10) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(10) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 1;
     EXPECT_TRUE(static_cast<T>(1) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(1) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 14;
     EXPECT_TRUE(static_cast<T>(1) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(1) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
 
 
     // modular_multiplicative_inverse() indicates the inverse doesn't exist by
@@ -172,12 +220,24 @@ void test_modular_multiplicative_inverse()
     modulus = 21;   // a modulus of 21 shares the factor 3 with a.
     EXPECT_TRUE(static_cast<T>(0) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(0) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 0;
     EXPECT_TRUE(static_cast<T>(0) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(0) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 1;
     EXPECT_TRUE(static_cast<T>(1) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(1) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
 
     a = 7;
     modulus = 16;
@@ -204,12 +264,24 @@ void test_modular_multiplicative_inverse()
     a = 0;
     EXPECT_TRUE(static_cast<T>(0) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(0) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 1;
     EXPECT_TRUE(static_cast<T>(1) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(1) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
     a = 5;
     EXPECT_TRUE(static_cast<T>(1) ==
                                 hc::modular_multiplicative_inverse(a, modulus));
+    EXPECT_TRUE(static_cast<T>(1) ==
+                             hc::modular_multiplicative_inverse(a, modulus, g));
+    EXPECT_TRUE(g == testmmi::gcd(a, modulus));
+
 
     modulus = hc::ut_numeric_limits<T>::max();
     test_modulus(modulus);
