[catacomb] / math / mprand.c

/* -*-c-*-
 *
 * Generate a random multiprecision integer
 *
 * (c) 1999 Straylight/Edgeware
 */

/*----- Licensing notice --------------------------------------------------*
 *
 * This file is part of Catacomb.
 *
 * Catacomb is free software; you can redistribute it and/or modify
 * it under the terms of the GNU Library General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * Catacomb is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Library General Public License for more details.
 *
 * You should have received a copy of the GNU Library General Public
 * License along with Catacomb; if not, write to the Free
 * Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
 * MA 02111-1307, USA.
 */

/*----- Header files ------------------------------------------------------*/

#include <mLib/alloc.h>

#include "grand.h"
#include "mp.h"
#include "mprand.h"

/*----- Main code ---------------------------------------------------------*/

/* --- @mprand@ --- *
 *
 * Arguments:	@mp *d@ = destination integer
 *		@unsigned b@ = number of bits
 *		@grand *r@ = pointer to random number source
 *		@mpw or@ = mask to OR with low-order bits
 *
 * Returns:	A random integer with the requested number of bits.
 *
 * Use:		Constructs an arbitrarily large pseudorandom integer.
 *		Assuming that the generator @r@ is good, the result is
 *		uniformly distributed in the interval %$[2^{b - 1}, 2^b)$%.
 *		The result is then ORred with the given @or@ value.  This
 *		will often be 1, to make the result odd.
 *
 *		The length @b@ may be zero; but %$\texttt{or} \ge 2^b$% is
 *		not permitted.
 */

mp *mprand(mp *d, unsigned b, grand *r, mpw or)
{
  size_t sz = (b + 7) >> 3;
  arena *a = (d && (d->f & MP_BURN)) ? arena_secure : arena_global;
  octet *v;
  unsigned m;

  assert(b >= MPW_BITS || !(or >> b));

  /* --- Special case --- */

  if (!b) return (MP_ZERO);

  /* --- Fill buffer with random data --- */

  v = x_alloc(a, sz);
  r->ops->fill(r, v, sz);

  /* --- Force into the correct range --- *
   *
   * This is slightly tricky.  Oh, well.
   */

  b = (b - 1) & 7;
  m = (1 << b);
  v[0] = (v[0] & (m - 1)) | m;

  /* --- Mask, load and return --- */

  d = mp_loadb(d, v, sz);
  if (or) {
    assert(d->sz);
    if (!MP_LEN(d)) d->vl = d->v + 1;
    d->v[0] |= or;
  }
  memset(v, 0, sz);
  x_free(a, v);
  return (d);
}

/* --- @mprand_range@ --- *
 *
 * Arguments:	@mp *d@ = destination integer
 *		@mp *l@ = limit for random number
 *		@grand *r@ = random number source
 *		@mpw or@ = mask for low-order bits
 *
 * Returns:	A pseudorandom integer, unformly distributed over the
 *		interval %$[0, l)$%.
 *
 * Use:		Generates a uniformly-distributed pseudorandom number in the
 *		appropriate range.  We must have %$l > 0$%.
 */

mp *mprand_range(mp *d, mp *l, grand *r, mpw or)
{
  size_t b = mp_bits(l);
  size_t sz = (b + 7) >> 3;
  arena *a = (d && (d->f & MP_BURN)) ? arena_secure : arena_global;
  octet *v = x_alloc(a, sz);
  unsigned m;

  /* --- The algorithm --- *
   *
   * Rather simpler than most.  Find the number of bits in the number %$l$%
   * (i.e., the integer %$b$% such that %$2^{b - 1} \le l < 2^b$%), and
   * generate pseudorandom integers with %$n$% bits (but not, unlike in the
   * function above, with the top bit forced to 1).  If the integer is
   * greater than or equal to %$l$%, try again.
   *
   * This is similar to the algorithms used in @lcrand_range@ and friends,
   * except that I've forced the `raw' range of the random numbers such that
   * %$l$% itself is the largest multiple of %$l$% in the range (since, by
   * the inequality above, %$2^b \le 2l$%).  This removes the need for costly
   * division and remainder operations.
   *
   * As usual, the number of iterations expected is two.
   */

  assert(MP_POSP(l));
  b = ((b - 1) & 7) + 1;
  m = (1 << b) - 1;
  do {
    r->ops->fill(r, v, sz);
    v[0] &= m;
    d = mp_loadb(d, v, sz);
    d->v[0] |= or;
  } while (MP_CMP(d, >=, l));

  /* --- Done --- */

  memset(v, 0, sz);
  x_free(a, v);
  return (d);
}

/*----- That's all, folks -------------------------------------------------*/
Commit	Line	Data
893c6259	1	/* --c--
893c6259	2	*
	3	* Generate a random multiprecision integer
	4	*
	5	* (c) 1999 Straylight/Edgeware
	6	*/
	7
45c0fd36	8	/----- Licensing notice --------------------------------------------------
893c6259	9	*
	10	* This file is part of Catacomb.
	11	*
	12	* Catacomb is free software; you can redistribute it and/or modify
	13	* it under the terms of the GNU Library General Public License as
	14	* published by the Free Software Foundation; either version 2 of the
	15	* License, or (at your option) any later version.
45c0fd36	16	*
893c6259	17	* Catacomb is distributed in the hope that it will be useful,
	18	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	19	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	20	* GNU Library General Public License for more details.
45c0fd36	21	*
893c6259	22	* You should have received a copy of the GNU Library General Public
	23	* License along with Catacomb; if not, write to the Free
	24	* Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
	25	* MA 02111-1307, USA.
	26	*/
	27
893c6259	28	/----- Header files ------------------------------------------------------/
	29
	30	#include <mLib/alloc.h>
	31
	32	#include "grand.h"
	33	#include "mp.h"
	34	#include "mprand.h"
	35
	36	/----- Main code ---------------------------------------------------------/
	37
	38	/* --- @mprand@ --- *
	39	*
	40	* Arguments: @mp *d@ = destination integer
	41	* @unsigned b@ = number of bits
	42	* @grand *r@ = pointer to random number source
	43	* @mpw or@ = mask to OR with low-order bits
	44	*
	45	* Returns: A random integer with the requested number of bits.
	46	*
	47	* Use: Constructs an arbitrarily large pseudorandom integer.
	48	* Assuming that the generator @r@ is good, the result is
	49	* uniformly distributed in the interval %$[2^{b - 1}, 2^b)$%.
	50	* The result is then ORred with the given @or@ value. This
	51	* will often be 1, to make the result odd.
423acb94 MW	52	*
	53	* The length @b@ may be zero; but %$\texttt{or} \ge 2^b$% is
	54	* not permitted.
893c6259	55	*/
	56
	57	mp mprand(mp d, unsigned b, grand *r, mpw or)
	58	{
ab9fc001	59	size_t sz = (b + 7) >> 3;
d34decd2	60	arena *a = (d && (d->f & MP_BURN)) ? arena_secure : arena_global;
423acb94	61	octet *v;
893c6259	62	unsigned m;
893c6259	63
423acb94 MW	64	assert(b >= MPW_BITS \|\| !(or >> b));
	65
	66	/* --- Special case --- */
	67
	68	if (!b) return (MP_ZERO);
	69
893c6259	70	/* --- Fill buffer with random data --- */
893c6259	71
423acb94	72	v = x_alloc(a, sz);
893c6259	73	r->ops->fill(r, v, sz);
	74
	75	/* --- Force into the correct range --- *
	76	*
	77	* This is slightly tricky. Oh, well.
	78	*/
	79
ab9fc001	80	b = (b - 1) & 7;
893c6259	81	m = (1 << b);
	82	v[0] = (v[0] & (m - 1)) \| m;
	83
	84	/* --- Mask, load and return --- */
	85
	86	d = mp_loadb(d, v, sz);
423acb94 MW	87	if (or) {
	88	assert(d->sz);
	89	if (!MP_LEN(d)) d->vl = d->v + 1;
	90	d->v[0] \|= or;
	91	}
d34decd2	92	memset(v, 0, sz);
d34decd2	93	x_free(a, v);
893c6259	94	return (d);
	95	}
	96
ab9fc001	97	/* --- @mprand_range@ --- *
	98	*
	99	* Arguments: @mp *d@ = destination integer
	100	* @mp *l@ = limit for random number
	101	* @grand *r@ = random number source
	102	* @mpw or@ = mask for low-order bits
	103	*
45c0fd36	104	* Returns: A pseudorandom integer, unformly distributed over the
ab9fc001	105	* interval %$[0, l)$%.
	106	*
	107	* Use: Generates a uniformly-distributed pseudorandom number in the
423acb94	108	* appropriate range. We must have %$l > 0$%.
ab9fc001	109	*/
	110
	111	mp mprand_range(mp d, mp l, grand r, mpw or)
	112	{
	113	size_t b = mp_bits(l);
	114	size_t sz = (b + 7) >> 3;
d34decd2	115	arena *a = (d && (d->f & MP_BURN)) ? arena_secure : arena_global;
d34decd2	116	octet *v = x_alloc(a, sz);
ab9fc001	117	unsigned m;
	118
	119	/* --- The algorithm --- *
	120	*
	121	* Rather simpler than most. Find the number of bits in the number %$l$%
	122	* (i.e., the integer %$b$% such that %$2^{b - 1} \le l < 2^b$%), and
	123	* generate pseudorandom integers with %$n$% bits (but not, unlike in the
	124	* function above, with the top bit forced to 1). If the integer is
	125	* greater than or equal to %$l$%, try again.
	126	*
	127	* This is similar to the algorithms used in @lcrand_range@ and friends,
	128	* except that I've forced the `raw' range of the random numbers such that
	129	* %$l$% itself is the largest multiple of %$l$% in the range (since, by
	130	* the inequality above, %$2^b \le 2l$%). This removes the need for costly
	131	* division and remainder operations.
	132	*
	133	* As usual, the number of iterations expected is two.
	134	*/
	135
423acb94	136	assert(MP_POSP(l));
7246869f	137	b = ((b - 1) & 7) + 1;
ab9fc001	138	m = (1 << b) - 1;
	139	do {
	140	r->ops->fill(r, v, sz);
	141	v[0] &= m;
	142	d = mp_loadb(d, v, sz);
	143	d->v[0] \|= or;
	144	} while (MP_CMP(d, >=, l));
	145
	146	/* --- Done --- */
	147
d34decd2	148	memset(v, 0, sz);
d34decd2	149	x_free(a, v);
ab9fc001	150	return (d);
	151	}
	152
893c6259	153	/----- That's all, folks -------------------------------------------------/