Is there a trick for calculating powers of two modulo a large prime using 64 bit ints fast?

Asked Jun 26 '21 at 12:12

Active Jun 26 '21 at 12:12

Viewed 376 times

I just came up with this:

// calculates 2^n mod p
uint64_t twopow(uint64_t n, uint64_t p) {
    const constexpr uint64_t bitmask {18446744073709551615ull}; // 2^64-1
    uint64_t res = 1 << (n % 64);
    res *= modpow(1 + (bitmask ^ p), n >> 6, p);
    
    return res % p;
}

What it does is invert the bits of p by XOR-ing them against the integer that's all ones to get 2^64-p-1 which is equivalent to 2^64-1 mod p then add one and you get 2^64 mod p. Then writing n=64*a+b and 2^n=(2^64)^a*2^b.

In general I have p, n between 2^32 and 2^64. In this interval you can't multiply the integers directly or they overflow, so you have to use a workaround such as Montgomery modular arithmetic or Russian peasant multiplication which hurts the performance. The trick with the bitmask reduces n by 6 digits but in general it can still be as large as 2^58 and since the base of the exponential isn't 2 anymore we lose that (possible) advantage. Is there a trick for calculating 2^n mod p which is as fast as repeated squaring would be if p were less than 2^32?

asked Jun 26 '21 at 12:12

Derivative

3

Why haven't you used `~p` to "invert the bits of p"? – Bob__ Jun 26 '21 at 12:52
2

@Bob__ because I didn't know that operator existed in c++. – Derivative Jun 26 '21 at 12:59
2

`-p` works even better because for `uint64_t` it's equal to 2^64 - p, which is congruent to 2^64 mod p. – David Eisenstat Jun 26 '21 at 13:38
I can't think of anything offhand except the `__uint128` extension. – David Eisenstat Jun 26 '21 at 13:59
[In GCC, Clang, ICC just use `__uint128` and in MSVC use `_umul128`](https://stackoverflow.com/q/5288915/995714) – phuclv Jun 26 '21 at 16:48

Is there a trick for calculating powers of two modulo a large prime using 64 bit ints fast?

0 Answers0