[#118] Add Eisenstein integers module

[rockbmb]

This will close #118, but at the moment it's still a work in progress.

EDIT:

• Fix divModE, and write more extensive tests for Euclidean division (in the commutative ring of Eisenstein integers).
• Write an isPrime :: EisensteinInteger -> Bool function.
• Add a gcdE :: EisensteinInteger -> EisensteinInteger -> EisensteinInteger function.
• Write a factorize :: EisensteinInteger -> [(EisensteinInteger, Int)] function.
• Add a way to generate all Eisenstein primes, similar to what is done with GaussianIntegers. This has been split from the isPrime bulletpoint as it will not be a trivial task.

All of these features will require

• Tests
  and
• Benchmarks.

There are other functions of use to be added, but these are the most important.

[rockbmb]

@Bodigrim I just realized this is wrong. First of all, what does one take the absolute value of an Eisenstein integer, abs n, to be? Is it an E. integer n' with the same magnitude such that (signum n) * (abs n) == n', as it is with Gaussian integers?

With G. integers, there are four units, one for each quadrant of the complex plane, and signum always returns one of those.
However, the commutative ring of Eisenstein integers has 6 units ({1, -1, ω, -ω, ω², -ω²}), one cannot assign each to a regular Cartesian quadrant. Do we divide the complex plane into 6 parts when dealing with Eisenstein integers?

[Bodigrim]

Exactly, there are 6 sextants, 60 degrees each. abs should put its argument into the first one.

[rockbmb]

@Bodigrim There is probably a better way to do this. I did not want to use phase here because it brings Double's precision issues as the numbers get larger.

abs $ 10^n :+ (10^n - 1) will probably give the wrong result for some large n, but for now it works. I'll think of a way to do this check without phases later.

[Bodigrim]

The smaller example, for which Double-based implementation of abs gives a wrong result is 3640002541000001 + 3640002541000000 * ω. It makes sense to add this case to test suite.

You can derive rules how to determine sextant from this picture:

For instance, a:+b lies in the first sextant when a > b >= 0, in the second when b >= a > 0, in the third when b > 0 >= a, etc.

[rockbmb]

@Bodigrim I derived those bounds as well, but I got wrong results the first time because I was multiplying by the wrong unit (i.e. perfoming an incorrect rotation in the plane), so I decided to make it work first with Data.Complex.phase and then think about it some more.

[rockbmb]

@Bodigrim unrelated to the issue, isn't it about time the package is moved away from GHC==7.10.3?

[Bodigrim]

@Bodigrim unrelated to the issue, isn't it about time the package is moved away from GHC==7.10.3?

The latest release still supports GHC 7.8 and the upcoming one will be the first which doesn't. I am not keen to drop support of GHC 7.10 as well that soon. Is there anything particularly annoying in 7.10 from your point of view?

[rockbmb]

@Bodigrim there have been two major releases since then (8, 8.2, 8.4) with a fourth one coming soon (8.6), a few breaking changes like type families and type application already exist and CPP never gets easier. Does this package always support the 5 latest releases? If so, I take back what I said.

[Bodigrim]

IMHO with a new, half-year release cycle of GHC it is preferable to support more than three last versions, as long as it does not cause too much pain. I do not like CPP pragmas and feel excited each time when I can get rid of them, of course :)

Ubuntu 16.04 LTS was shipped with GHC 7.10 and I have plenty of them. Of course, nowadays we rarely use GHC from system distribution, but I mean, 7.10 was not that long ago.

Alternatively, as a last resort, one can expose new functionality for newer GHCs only:

  if impl(ghc >= 8)
    exposed-modules:
      Math.NumberTheory.BrandNewStuff

(I wrestle against temptation to use this trick to implement ideas described in #71.)

---

That said, the upcoming release (fall 2018) will still work with GHC 7.10, but looking at GHC release timeline it looks reasonable to drop its support afterwards.

[rockbmb]

Status update: right now, the division algorithm for EisensteinIntegers isn't working (fails a simple test), but the plan for the PR is as follows:

EDIT: I've moved the list to the PR's opening comment.

[Bodigrim]

Working on #129, I discovered that the general case of quadratic modular equations is harder than I thought. But there is a simple method, when a coefficient at x^2 is 1. Here is how it works for Eisenstein primes.

---

Each prime of form 3n+1 is actually of form 6k+1.
We have (z+3k)^2 = z^2 + 6kz + 9k^2 = z^2 + (6k+1)z - z + 9k^2 = z^2 - z + 9k^2 (mod 6k+1).

Our goal is to solve z^2 - z + 1 = 0 (mod 6k+1). We have:
z^2 - z + 9k^2 = 9k^2 - 1 (mod 6k+1)
(z+3k)^2 = 9k^2-1 (mod 6k+1)
z+3k = sqrtMod(9k^2-1)
z = sqrtMod(9k^2-1) - 3k

For example, let p = 7, then k = 1. Square root of 9*1^2-1 modulo 7 is 1.
And z = 1 - 3*1 = -2 = 5 (mod 7). Truly, norm(5 :+ 1) = 25 - 5 + 1 = 21 = 0 (mod 7).

[rockbmb]

@Bodigrim sorry, where did this

We have (z+3k)^2 = z^2 + 6kz + 9k^2 = z^2 - z + 9k^2 (mod 6k+1).

come from?

[Bodigrim]

I update the previous comment. Is it more clear now?

[rockbmb]

@Bodigrim Yes, but it was clear from the start, no problem there. What I mean is, was that fact just stated to be used afterwards?

[rockbmb]

@Bodigrim I've completed all the tasks in the list I wrote. I'm going to be adding more comments and benchmarks/tests but as far as code goes the PR is ready to be reviewed.

[Bodigrim]

It would be nice to avoid division here (and for Gaussian integers as well, generally speaking). To do not repeat a long pattern-matching we can have a single function absSignum :: EisensteinInteger -> (EisensteinInteger, EisensteinInteger) and abs = fst . absSignum, signum = snd . absSignum.

[Bodigrim]

Is it safe to say that its norm is of form 6k+1? It would be more specific.

[Bodigrim]

It is not clear from the comment, what does this function return?

[rockbmb]

As below, it is not safe to say its norm is of the form 6k + 1 because of 1 - ω and 2.

[Bodigrim]

I suggest to write about norms modulo 6, because it is more specific.

[rockbmb]

I don't think it is necessary. Counting with associates, there are 6 primes with norm 3 (associates of 1 - ω), and 6 with norm 4 (associates of 2). These norms are not congruent to 0 or 1 modulo 6.

[Bodigrim]

Can we use the same approach as for Gaussian integers here? Complex GCD is very expensive.

[rockbmb]

I forgot to leave a note to myself to figure out why, but using the same process as Gaussian integers makes this process fail. Regarding the complexity of gcdE, I found this link. Worth considering.

EDIT: Previous link has bitrotten, will keep it for reference. I was trying to refer to this work: Efficient algorithms for the gcd and cubic residuosity in the ring of Eisenstein integers

[rockbmb]

@Bodigrim by the way, would you mind reading the paper I linked here and telling me how Lemma 1 can be practically implemented as an approximate norm function, please?

I did not understand the process behind it, only that it is possible and crucial for a fast Eisenstein gcd.

[rockbmb]

Nevermind, I understood what was needed and the latest commit implements it.

[rockbmb]

I didn't benchmark it directly, but benchmarks for findPrime have gotten considerably slower, and the only thing used by that function which changed was gcdE. This change might not be worth it after all. Integer bit shifting might be too expensive not to do in-place.

I tried using the same method that Math.NumberTheory.GaussianIntegers.findPrime uses, and as before, it does not work.

[Bodigrim]

What was the reason for change?

[rockbmb]

Typo. I was using this file by mistake to write newer primes with the same order of magnitude but of the form 3k + 1 which Eisenstein integers require, instead of 4k + 1, which is what Gaussian integers require.

[Bodigrim]

Overall it looks superb incredibly cool. Thanks for a valuable contribution.

[Bodigrim]

It is worth to save one multiplication: b * (c - d) + a * d or b * c + (a - b) * d.

[Bodigrim]

Can we use quotEvenI smth 3 instead of divModE? It may be worse to inline and reduce multiplication by 2 :+ 1 to avoid any multiplications: (a :+ b) * (2 :+ 1) = (a + a - b) :+ (a + b).

[Bodigrim]

My impression is that algorithms for GCD, as in paper cited, shine for huge numbers only and require super efficient bit fiddling, which is not easily accessible from Haskell. I agree that it may be not worth of it.

[Bodigrim]

I suspect to achieve desired performance one should use GHC.Integer.GMP.Internals.sizeofBigNat# and GHC.Exts.clz#.

[Bodigrim]

Isn't it faster to shift 0b111111 by m-6 positions?

[Bodigrim]

This may be expensive. It may be faster to precompute first 3 powers and resort to exponentiation only in rare case min j1 j2 > 3.

[rockbmb]

@Bodigrim the last set of changes improves things, but is still slower than before. An alternative is to check the numbers composing the Eisenstein integer, and only use the new algorithm for magnitudes larger than 10^10 (arbitrarily chosen).

[Bodigrim]

I think it is better to revert to the simple GCD algorithm for now.

[rockbmb]

@Bodigrim alright. In any case, I fixed things up in my last commit in case this ever becomes useful. Furthermore, it is also generalizable to Gaussian integers.

EDIT: I'll still be using gcdE in findPrime because the method from the Gaussian findPrime does not work.

[rockbmb]

@Bodigrim the PR is good to go on my end.

[rockbmb]

@Bodigrim after this is merged, since #131 has also been merged, I'll make a new PR to use solveQuadratic both with Eisenstein and Gaussian integers' findPrime.

[Bodigrim]

since #131 has also been merged, I'll make a new PR to use solveQuadratic
both with Eisenstein and Gaussian integers' findPrime

The exposed interface of solveQuadratic is quite expensive to use in tight loops, so I suggest to leave findPrime as is.

---

Merged, awesome!