how to solve discrete logarithm over composite modulus, i know over prime modulo using Baby-step giant-step algorithm, but in case of composite modulus i have no idea how to solve this. i think this can be done by factorization of modulo and chinese remainder theorem but i don't know how to do this.
→ Pay attention
Before contest
Codeforces Round 940 (Div. 2) and CodeCraft-23
47:12:14
Register now »
Codeforces Round 940 (Div. 2) and CodeCraft-23
47:12:14
Register now »
*has extra registration
→ Top rated
| # | User | Rating |
|---|---|---|
| 1 | ecnerwala | 3648 |
| 2 | Benq | 3580 |
| 3 | orzdevinwang | 3570 |
| 4 | cnnfls_csy | 3569 |
| 5 | Geothermal | 3568 |
| 6 | tourist | 3565 |
| 7 | maroonrk | 3530 |
| 8 | Radewoosh | 3520 |
| 9 | Um_nik | 3481 |
| 10 | jiangly | 3467 |
→ Top contributors
| # | User | Contrib. |
|---|---|---|
| 1 | maomao90 | 174 |
| 2 | awoo | 164 |
| 2 | adamant | 164 |
| 4 | TheScrasse | 159 |
| 4 | nor | 159 |
| 6 | maroonrk | 156 |
| 7 | -is-this-fft- | 150 |
| 8 | SecondThread | 147 |
| 9 | orz | 146 |
| 10 | pajenegod | 145 |
→ Find user
→ Recent actions
Codeforces (c) Copyright 2010-2024 Mike Mirzayanov
The only programming contests Web 2.0 platform
Server time: Apr/19/2024 18:22:46 (i1).
Desktop version, switch to mobile version.
Supported by
As far as I understand, you want to solve the equation
. If 
, you can use baby-step giant-step algorithm.
Let m1 be product of all prime powers pk such that pk|m and p|a. m2 = m / m1. By construction m1 and m2 are coprime. For sufficiently large x (at least
) 
. Check the small values separately.
If
, there are no solutions. Otherwise we need to solve the equation modulo m2. 
. This case has been analyzed above.
can you elaborate the calculations of m1.
m is product of some powers of primes piki. Some of these primes divide a, some don't. m1 is a product of those powers for which pi divide a. m2 is a product of other powers.
For example, if a = 60 = 22·3·5, m = 126 = 2·32·7, m1 = 2·32 = 18 (2|a, 3|a), m2 = 7 (
).
thanks for your explanation.
but for your given example, a = 60, m = 126, for b = 18, answer should be 4, but after calculation of m1 and m2, m2 = 7 which gives value of x = 1 then how to come up with final solution(x = 4), correct me if i'm wrong
Nice example. That's why we should care about small values of x.
, but for all x ≥ 2 
.
If x is too small, we can look at x + tφ(m2).
. For sufficiently large t we get 
.
In this example φ(m2) = 6, so for t = 1 we find x = 7.
thanks for such a nice explanation.
but if we have to find smallest value of x (which is equal 4 in above example) then how it can be calculate.
Did you know how to do it if m is prime? In the same manner we can find the smallest x such that
and x is large enough (
). It remains to check small values of x.
no, i don't know how to calculate smallest x when m is prime.
If we want to find the smallest solution modulo prime, in the last line we just choose the smallest element from this vector. In our case we need to do some binary search here.
Can you explain the reason for the inequality
?
If
, we want to get 
. It means that for each prime p its power in ax is not less than its power in m1. Power of p in m1 is at most 
. On the other hand, if 
, power of p in ax is at least 
.
I still didn't get how can we combine the powers obtained when divided by $$$m_{1}$$$ and $$$m_{2}$$$ individually to get the power when divided by $$$m = m_{1}*m_{2}$$$. Can you please explain that?
Also, why is this post getting downvotes. Is there something wrong with the solution described in the comments section?