New multiprecision integer arithmetic suite.

[u/mdw/catacomb] / mpmont.h

/* -*-c-*-
 *
 * $Id: mpmont.h,v 1.1 1999/11/17 18:02:16 mdw Exp $
 *
 * Montgomery reduction
 *
 * (c) 1999 Straylight/Edgeware
 */

/*----- Licensing notice --------------------------------------------------* 
 *
 * This file is part of Catacomb.
 *
 * Catacomb is free software; you can redistribute it and/or modify
 * it under the terms of the GNU Library General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 * 
 * Catacomb is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Library General Public License for more details.
 * 
 * You should have received a copy of the GNU Library General Public
 * License along with Catacomb; if not, write to the Free
 * Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
 * MA 02111-1307, USA.
 */

/*----- Revision history --------------------------------------------------* 
 *
 * $Log: mpmont.h,v $
 * Revision 1.1  1999/11/17 18:02:16  mdw
 * New multiprecision integer arithmetic suite.
 *
 */

#ifndef MPMONT_H
#define MPMONT_H

#ifdef __cplusplus
  extern "C" {
#endif

/*----- Header files ------------------------------------------------------*/

#ifndef MP_H
#  include "mp.h"
#endif

/*----- What's going on here? ---------------------------------------------*
 *
 * Given a little bit of precomputation, Montgomery reduction enables modular
 * reductions of products to be calculated rather rapidly, without recourse
 * to annoying things like division.
 *
 * Before starting, you need to do a little work.  In particular, the
 * following things need to be worked out:
 *
 *   * %$m$%, which is the modulus you'll be working with.
 *
 *   * %$b$%, the radix of the number system you're in (here, it's
 *     @MPW_MAX + 1@).
 *
 *   * %$-m^{-1} \bmod b$%, a useful number for the reduction step.  (This
 *     means that the modulus mustn't be even.  This shouldn't be a problem.)
 *
 *   * %$R = b^n > m > b^{n - 1}$%, or at least %$\log_2 R$%.
 *
 *   * %$R \bmod m$% and %$R^2 \bmod m$%, which are useful when doing
 *     calculations such as exponentiation.
 *
 * The result of a Montgomery reduction of %$x$% is %$x R^{-1} \bmod m$%,
 * which doesn't look ever-so useful.  The trick is to initially apply a
 * factor of %$R$% to all of your numbers so that when you multiply and
 * perform a Montgomery reduction you get %$(xR \cdot yR)R^{-1} \bmod m$%,
 * which is just %$xyR \bmod m$%.  Thanks to distributivity, even additions
 * and subtractions can be performed on numbers in this form -- the extra
 * factor of %$R$% just runs through all the calculations until it's finally
 * stripped out by a final reduction operation.
 */

/*----- Data structures ---------------------------------------------------*/

/* --- A Montgomery reduction context --- */

typedef struct mpmont {
  mp *m;                                /* Modulus */
  mpw mi;                               /* %$-m^{-1} \bmod b$% */
  size_t shift;                         /* %$\log_2 R$% */
  mp *r, *r2;                           /* %$R \bmod m$%, %$R^2 \bmod m$% */
} mpmont;

/*----- Functions provided ------------------------------------------------*/

/* --- @mpmont_create@ --- *
 *
 * Arguments:   @mpmont *mm@ = pointer to Montgomery reduction context
 *              @mp *m@ = modulus to use
 *
 * Returns:     ---
 *
 * Use:         Initializes a Montgomery reduction context ready for use.
 */

extern void mpmont_create(mpmont */*mm*/, mp */*m*/);

/*----- That's all, folks -------------------------------------------------*/

#ifdef __cplusplus
  }
#endif

#endif