I need to calculate a*a
mod n
but a
is fairly large, resulting in overflow when I square it. Doing ((a % n)*(a % n)) % n
doesn't work because (n-1)2 can overflow. This is in C++ and I'm using int64_t
Edit:
Example value: a = 821037907258 and n = 800000000000, which overflows if you square it.
I am using DevCPP and I've already tried getting big-integer libraries working to no avail.
Edit 2:
No, there's no pattern to these numbers.
Here is a double-and-add implementation of a multiplication
a * b % m
, without overflows, whatever the size of a, b and m.(Note that the
res -= m
andtemp_b -= m
lines rely on 64-bit unsigned integer overflow in order to give the expected results. This should be fine since unsigned integer overflow is well-defined in C and C++. For this reason it's important to use unsigned integer types.)This is my modification of another answer to another similar question.
I know you no longer need this, and there is an alternative solution, but I want to add an alternative method to implement it. It provides two different techniques: the double and add algorithm, and the method to handle
mod(a + b, n)
with overflow detection.Double and add algorithm is usually used in fields where multiplication is not possible or too costly to calculate directly (such as elliptic curves), but we could adopt it to handle it in our situation to handle overflows instead.
The following code is probably slower than the accepted solution (even when you optimize it), but if speed is not critical, you may prefer it for clarity.
If you can't use a big-integer library, and you don't have a native
uint128_t
(or similar), you'll need to do this manually.One option is to express
a
as the sum of two 32-bit quantities, i.e. a = 232b + c, where b contains the 32 msbs, and c contains the 32 lsbs. Squaring is then a set of four cross-multiplications; each result is guaranteed to fit into a 64-bit type. You then do the modulo operation as you recombine the individual terms (carefully taking into account the shifts needed to realign everything).I really think that
((a % n)*(a % n)) % n
should work for positive integers. Why do you think it doesn't work? Do you have a counter-example? If n could be negative, then the%
operator is undefined.You can implement the multiplication yourself, adding n each run, and mod'ing the result right away.