basic addition and subtraction

GiacomoPope · GiacomoPope · commit 14763e5474a8 · 2025-05-27T15:54:56.000+01:00
diff --git a/src/polynomial_ring/mod.rs b/src/polynomial_ring/mod.rs
@@ -1 +1 @@
-pub mod pr;
+pub mod poly;
diff --git a/src/polynomial_ring/poly.rs b/src/polynomial_ring/poly.rs
@@ -1,6 +1,7 @@
 #![allow(dead_code)] // for now
 
 use fp2::traits::Fp as FpTrait;
+use rand_core::{CryptoRng, RngCore};
 
 use core::ops::{Add, AddAssign, Mul, MulAssign, Neg, Sub, SubAssign};
 use std::{
@@ -31,6 +32,16 @@ pub struct Polynomial<Fp: FpTrait> {
 }
 
 impl<Fp: FpTrait> Polynomial<Fp> {
+    /// Create a polynomial from a finite field element.
+    pub fn new_from_ele(a: &Fp) -> Self {
+        Self { coeffs: vec![*a] }
+    }
+
+    /// Create a polynomial from a slice of finite field elements.
+    pub fn new_from_slice(a: &[Fp]) -> Self {
+        Self { coeffs: a.to_vec() }
+    }
+
     /// The length of the polynomial. TODO: should we trim trailing zeros? If so, how often?
     fn len(&self) -> usize {
         self.coeffs.len()
@@ -59,6 +70,31 @@ impl<Fp: FpTrait> Polynomial<Fp> {
         r
     }
 
+    /// Return 0xFFFFFFFF if self and other represent the same polynomial.
+    /// Otherwise, return 0x00000000.
+    pub fn equals(&self, other: &Self) -> u32 {
+        // TODO: do I want this constant time?
+        // eg: let mut equals = ct_u32_eq(self.len() as u32, other.len() as u32);
+        if self.len() != other.len() {
+            return 0;
+        }
+
+        let mut equals = u32::MAX;
+        for i in 0..self.len() {
+            equals &= self.coeffs[i].equals(&other[i]);
+        }
+        equals
+    }
+
+    /// Return 0xFFFFFFFF if self is zero, otherwise, return 0x00000000.
+    pub fn is_zero(&self) -> u32 {
+        let mut is_zero = u32::MAX;
+        for i in 0..self.len() {
+            is_zero &= self.coeffs[i].is_zero();
+        }
+        is_zero
+    }
+
     /// Set self to it's negative.
     fn set_neg(&mut self) {
         for x in self.coeffs.iter_mut() {
@@ -133,6 +169,22 @@ impl<Fp: FpTrait> Polynomial<Fp> {
         r.scale_small_into(k);
         r
     }
+
+    /// Set self to a random value
+    pub fn set_rand<R: CryptoRng + RngCore>(&mut self, rng: &mut R) {
+        for x in self.coeffs.iter_mut() {
+            x.set_rand(rng);
+        }
+    }
+
+    /// Return a new random polynomial with length d
+    pub fn rand<R: CryptoRng + RngCore>(rng: &mut R, d: usize) -> Self {
+        let mut r = Self {
+            coeffs: vec![Fp::ZERO; d],
+        };
+        r.set_rand(rng);
+        r
+    }
 }
 
 impl<Fp: FpTrait> Poly for Polynomial<Fp> {}
@@ -173,6 +225,17 @@ impl<Fp: FpTrait> Add for Polynomial<Fp> {
     }
 }
 
+impl<Fp: FpTrait> Add for &Polynomial<Fp> {
+    type Output = Polynomial<Fp>;
+
+    #[inline(always)]
+    fn add(self, other: &Polynomial<Fp>) -> Polynomial<Fp> {
+        let mut r = self.clone();
+        r.set_add(&other);
+        r
+    }
+}
+
 impl<Fp: FpTrait> AddAssign for Polynomial<Fp> {
     #[inline(always)]
     fn add_assign(&mut self, other: Polynomial<Fp>) {
@@ -191,6 +254,17 @@ impl<Fp: FpTrait> Sub for Polynomial<Fp> {
     }
 }
 
+impl<Fp: FpTrait> Sub for &Polynomial<Fp> {
+    type Output = Polynomial<Fp>;
+
+    #[inline(always)]
+    fn sub(self, other: &Polynomial<Fp>) -> Polynomial<Fp> {
+        let mut r = self.clone();
+        r.set_sub(&other);
+        r
+    }
+}
+
 impl<Fp: FpTrait> SubAssign for Polynomial<Fp> {
     #[inline(always)]
     fn sub_assign(&mut self, other: Polynomial<Fp>) {
diff --git a/tests/test_poly.rs b/tests/test_poly.rs
@@ -0,0 +1,53 @@
+#[cfg(test)]
+mod test_polynomial_arithmetic {
+
+    use isogeny::fields::sqisign::SqiField248Base as Fp;
+    use isogeny::{polynomial_ring::poly::Polynomial, utilities::test_utils::drng::DRNG};
+
+    type PR = Polynomial<Fp>;
+
+    #[test]
+    fn test_addition() {
+        let mut rng = DRNG::from_seed("polynomial_addition".as_bytes());
+
+        let f = PR::rand(&mut rng, 5);
+        let g = PR::rand(&mut rng, 5);
+        let h = PR::rand(&mut rng, 5);
+
+        let t1 = &(&f + &g) + &h;
+        let t2 = &f + &(&g + &h);
+
+        assert!(t1.equals(&t2) == u32::MAX);
+
+        let mut t1 = f.clone();
+        t1 += g;
+        t1 += h;
+        assert!(t1.equals(&t2) == u32::MAX);
+
+        let zero = PR::new_from_ele(&Fp::ZERO);
+        let t1 = &f + &zero;
+        assert!(t1.equals(&f) == u32::MAX);
+    }
+
+    #[test]
+    fn test_subtraction() {
+        let mut rng = DRNG::from_seed("polynomial_subtraction".as_bytes());
+
+        let f = PR::rand(&mut rng, 5);
+        let g = PR::rand(&mut rng, 5);
+        let h = PR::rand(&mut rng, 5);
+
+        let t1 = &(&f - &g) - &h;
+        let t2 = &f - &(&g + &h);
+
+        assert!(t1.equals(&t2) == u32::MAX);
+
+        let mut t1 = f.clone();
+        t1 -= g;
+        t1 -= h;
+        assert!(t1.equals(&t2) == u32::MAX);
+
+        let zero = &f - &f;
+        assert!(zero.is_zero() == u32::MAX);
+    }
+}
