Skip to content

Utils

Settings

ecutils.utils.settings

Global configuration constants.

Math Utilities

ecutils.utils.math

Modular arithmetic utilities for elliptic curve operations.

Provides quadratic residue testing and modular square root computation, essential building blocks for point decompression and Koblitz encoding.

is_quadratic_residue(a, p)

Check whether a is a quadratic residue modulo p using Euler's criterion.

A non-zero integer a is a quadratic residue mod p (an odd prime) iff:

a^((p-1)/2) ≡ 1 (mod p)

Parameters:

Name Type Description Default
a int

The integer to test (will be reduced mod p).

 required
p int

An odd prime.

 required

Returns:

Type Description
bool

True if a is a quadratic residue mod p, False otherwise.
bool

Returns False when a ≡ 0 (mod p).
Source code in ecutils/utils/math.py 
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
def is_quadratic_residue(a: int, p: int) -> bool:
    """Check whether *a* is a quadratic residue modulo *p* using Euler's criterion.

    A non-zero integer *a* is a quadratic residue mod *p* (an odd prime) iff:

        a^((p-1)/2) ≡ 1 (mod p)

    Args:
        a: The integer to test (will be reduced mod *p*).
        p: An odd prime.

    Returns:
        ``True`` if *a* is a quadratic residue mod *p*, ``False`` otherwise.
        Returns ``False`` when ``a ≡ 0 (mod p)``.
    """
    a = a % p
    if a == 0:
        return False
    return pow(a, (p - 1) // 2, p) == 1

modular_sqrt(a, p)

Compute a square root of a modulo p, or None if none exists.

Uses the direct formula when p ≡ 3 (mod 4) and falls back to the Tonelli-Shanks algorithm for the general case.

Parameters:

Name Type Description Default
a int

The value whose square root is sought (reduced mod p).

 required
p int

An odd prime.

 required

Returns:

Type Description
int | None

An integer r such that r² ≡ a (mod p), or None if a
int | None

is not a quadratic residue mod p.
Source code in ecutils/utils/math.py 
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
def modular_sqrt(a: int, p: int) -> int | None:
    """Compute a square root of *a* modulo *p*, or ``None`` if none exists.

    Uses the direct formula when ``p ≡ 3 (mod 4)`` and falls back to
    the Tonelli-Shanks algorithm for the general case.

    Args:
        a: The value whose square root is sought (reduced mod *p*).
        p: An odd prime.

    Returns:
        An integer *r* such that ``r² ≡ a (mod p)``, or ``None`` if *a*
        is not a quadratic residue mod *p*.
    """
    a = a % p
    if a == 0:
        return 0

    if not is_quadratic_residue(a, p):
        return None

    # Shortcut for p ≡ 3 (mod 4)
    if p % 4 == 3:
        return pow(a, (p + 1) // 4, p)

    # Tonelli-Shanks algorithm for the general case (p ≡ 1 mod 4)
    # Factor out powers of 2: p - 1 = Q * 2^S
    s = 0
    q = p - 1
    while q % 2 == 0:
        q //= 2
        s += 1

    # Find a quadratic non-residue
    z = 2
    while is_quadratic_residue(z, p):
        z += 1

    m = s
    c = pow(z, q, p)
    t = pow(a, q, p)
    r = pow(a, (q + 1) // 2, p)

    while True:
        if t == 1:
            return r
        # Find the least i such that t^(2^i) ≡ 1 (mod p)
        i = 1
        temp = (t * t) % p
        while temp != 1:
            temp = (temp * temp) % p
            i += 1
        # Update
        b = pow(c, 1 << (m - i - 1), p)
        m = i
        c = (b * b) % p
        t = (t * c) % p
        r = (r * b) % p