@@@ utils/: Add Pocklington proofs for important prime numbers.

[catacomb] / utils / findpock.sage

#! /usr/local/bin/sage

from sys import argv
from itertools import combinations

sievebits = 32

SEQ = 0
LABEL = {}

def label(p):
  global SEQ
  try: lab = LABEL[p]
  except KeyError:
    if p.nbits() < sievebits: lab = LABEL[p] = '%d' % p
    else:
      lab = LABEL[p] = '$%s.%d' % (name, SEQ)
      SEQ += 1
  return lab

SMALL = set()
POCK = []
DONE = {}

def pock(p, rr):
  r = prod(rr)
  ll = map(recurse, rr)
  lab = DONE[p] = label(p)
  a = 2
  while True:
    if pow(a, p - 1, p) != 1:
      raise ValueError('%d not prime (%d is Fermat witness)' % (p, a))
    win = True
    for q in rr:
      g = gcd(pow(a, (p - 1)/q, p) - 1, p)
      if 1 < g < p: raise ValueError('%d not prime (%d divides)' % (p, g))
      if g != 1: win = False
    if win: break
    a += 1
  POCK.append('pock %s = %d, %d, [%s]' %
              (lab, a, (p - 1)/(2*r), ', '.join(ll)))
  return lab

def recurse(p):
  try: return DONE[p]
  except KeyError: pass

  if p.nbits() < sievebits:
    lab = DONE[p] = str(p)
    SMALL.add(p)
    return lab

  best, score = None, p
  qq = [q for (q, e) in factor((p - 1)/2)]
  for n in xrange(1, len(qq) + 1):
    for rr in combinations(qq, n):
      r = prod(rr)
      if r^2 <= p: continue
      if r < score: best, score = rr, r

  best = list(best); best.sort()
  return pock(p, best)

name, p = argv[1], Integer(argv[2])
if len(argv) == 3:
  LABEL[p] = name
  recurse(p)
  for q in sorted(SMALL): print 'small %d = %d' % (q, q)
  print
else:
  qq = map(Integer, argv[3:])
  for i in xrange(len(qq)): LABEL[qq[i]] = DONE[qq[i]] = 'q%d' % i
  q = prod(qq)
  if not p: p = 2*q + 1
  elif p%(2*q) != 1: raise ValueError('incorrect factorization')
  if q^2 <= p: raise ValueError('factorization insufficient')
  LABEL[p] = name
  pock(p, qq)

for line in POCK: print line
print 'check %s, %d, %d' % (name, p.nbits(), p)