# Chapter 3. Basics on polynomials, linear algebra and arithmetic

Separate exercises are at the bottom of this page.

## 1. Polynomials

In Chapter 2, we have already used polynomials via symbolic expressions. However for more advanced algebra, this approach lacks some algebraic structure. To begin with, we would like to consider polynomials with coefficients in a predefined ring, for instance $\mathbb{Q}$ or a finite field (for symbolic expression, we did not specified the coefficient ring).

### 1.1 Building polynomials rings
We must first ask Sage to create our space of polynomials.

In [None]:
R.<X> = PolynomialRing(QQ)

In [None]:
R

It is the ring $\mathbb{Q}[X]$ of polynomials with coefficients in $\mathbb{Q}$ and indeterminate `X`. We called it `R`. An equivalent syntax is:

In [None]:
R.<X> = QQ[]
R

If necessary, we can recover the base ring and the name of the indeterminate as follows:

In [None]:
R.base_ring()

In [None]:
R.variable_name()

This ring `R` has many attached methods. 

$\rhd$ Try it: using *autocompletion* (see Chapter 2) starting with `R.`, print all its methods. Then find how to ask Sage if the ring `R` is commutative, and what is its characteristic.

Here are examples with different base rings:

In [None]:
A.<Y> = ZZ[] # ... with coefficients in Z
A

In [None]:
B.<Z> = RR[] # ... with coefficients floating-point approximations of real numbers
B

In [None]:
GF(17)

In [None]:
C.<Y> = GF(17)[] # ... with coefficients in a finite field of 17 elements
C

### 1.2 Creating and manipulating polynomials

Let us go back to our polynomial ring:

In [None]:
R.<X> = PolynomialRing(QQ)

Now any expression constructed from `X` and rational constants with operations `+` and `*` is an element of `R`.

In [None]:
P = X^2+3/2*X+1
P

In [None]:
type(P)

In [None]:
P.parent()

However some unusual things may happen when using `X` out of this context. For instance, the polynomial:

In [None]:
sqrt(2)*X+1

is certainly not in $\mathbb{Q}[X]$ but Sage has no problem with it. It considers it as a symbolic expression in `X`:

In [None]:
(sqrt(2)*X+1).parent()

Many functions and methods are attached to polynomials. Here are a few examples.

In [None]:
P = X*(X+1/3)*(X-4/9)
Q = X^3 + 4/3*X^2 + 4/3*X + 1/3

In [None]:
P  # automatically expands P

In [None]:
P in R  # checks whether the element P belongs to the ring R

In [None]:
Q.factor()

In [None]:
P.degree()

In [None]:
P.list() # list of coefficients of P

One can ask directly for the coefficient of $X^i$ by:

In [None]:
P[2]

Contrarily to the `.list()` method, it works even beyond the degree of $P$:

In [None]:
P[100]

$\rhd$ Try it: using *autocompletion* starting with `P.`,  print all the methods attached to `P`. Then find how to ask Sage for:

1. The gcd (greatest common divisor) of `P` and `Q`.
2. If `P` is irreducible or not.

### 1.3 Roots of polynomials

The `roots` method returns the roots of the polynomial, by default in its base ring, in the form of a list of pairs (root, multiplicity).

In [None]:
Q.roots()

One may ask to search for roots in a larger domain. For instance:

In [None]:
Q.roots(CC) ## CC is the field of floating-point approximations of complex numbers

In [None]:
Q.roots(QQbar) ## QQbar is the field of algebraic numbers

Here one can ask Sage to convert these algebraic roots into radical expressions, if possible.

In [None]:
L = Q.roots(QQbar)
L[1][0]  # one of the roots of Q

In [None]:
L[1][0].radical_expression()

In [None]:
L[2][0].radical_expression() # similarly for the other root

### 1.4 Changing the base ring

Changing the base ring may be useful, for instance when studying the irreducibility or factorization of a polynomial. For example:

In [None]:
M = X^3+X+1
M.is_irreducible()

Therefore this polynomial `M` is irreducible over $\mathbb{Q}$. Now let us look at it over $\mathbb{R}$.

1. Using the `change_ring` method, construct the polynomial `N` which is a "copy" of `M` in $\mathbb{R}[X]$.
2. Check if `N` is irreducible in $\mathbb{R}[X]$.
3. If not, factor `N` in $\mathbb{R}[X]$.

### 1.5 Polynomials with several variables

Polynomial with several variables are constructed and manipulated in a similar way.

In [None]:
A.<x,y,z> = PolynomialRing(QQ)
A

In [None]:
P = 2*x^2+y^3-y-2
Q = x^2-x*y+y^2-1

Now compute the degree of `P` with respect to `x`.

Using *autocompletion* starting with `P.`, find how to compute the resultant of `P` and `Q`.

## 2. Linear algebra

In this section, we review the basics of linear algebra with Sage: creating and manipulating vectors and matrices, solving linear equations.

### 2.1 Creating, manipulating vectors and matrices
Vectors are created by giving the list of their entries:

In [None]:
v = vector([10,11,12])
v

Similarly for matrices, we give the list of their rows (each row itself being a list of entries). In the following syntax, look closely at the square brackets:

In [None]:
M = matrix( [ [1,2,3] , [4,5,6] ] )
M

The product $Mv$ is done simply by:

In [None]:
M*v

Contrarily to polynomials, we did not have to create the space of matrices *before* constructing `M`. However Sage has built it automatically:

In [None]:
M.parent()

Here Sage has created $M_{2,3}(\mathbb{Z})$. Instead, if we want to work with matrices with entries in $\mathbb{Q}$ for instance, we write:

In [None]:
M = matrix(QQ, [ [1,2,3] , [4,5,6] ] )
M.parent()

Vectors and matrices behave similarly to lists. Accessing their entries is done in a natural way:

In [None]:
v[0]

In [None]:
M[1]  # this is the second row of M

Therefore to extract the $(2,3)$-entry of `M` (with the classical mathematical notation), one can ask:

In [None]:
M[1][2]

It is also possible to modify a given entry simply by assignment:

In [None]:
v[2] = 42
v

... and similarly for matrices.

$\rhd$ Try it:

1. Construct a $3\times 3$ matrix `M` with entries of your choice.
2. Extract the $(1,2)$-entry of `M` (with the classical mathematical notation).
3. Using autocompletion starting with `M.`, look at the methods available for `M`.
4. Compute: the inverse, the determinant, the number of rows and the characteristic polynomial of `M`.

### 2.2 Solving linear equations

Given a matrix $A$ and a vector $v$, one can solve the system of linear equations $Ax=v$ in two steps.

First we ask Sage to compute a single solution, if it exists. We use the `solve_right` method:

In [None]:
A = matrix([[-3,1],[6,-2]])
v = vector([9,-18])
w = A.solve_right(v)
w

By the way, one can check that $Aw=v$:

In [None]:
bool(A*w==v)

Then we ask Sage to compute the (right) kernel of the matrix $A$, using the `right_kernel` method.

In [None]:
A.right_kernel()

Here $\mathrm{Ker} A$ is a subspace of dimension $1$ with basis $(1,3)$.

Therefore the set of solutions of the linear system $Ax=v$ is $$w + \mathrm{Ker} A =\{ w + \lambda (1,3) \mid \lambda \in \mathbb{Q} \} = \{ (-3+\lambda,3\lambda) \mid \lambda \in \mathbb{Q} \}.$$

## 3. Arithmetic

### 3.1 Basic arithmetic functions.

The following examples are quite straightforward.

In [None]:
factor(2021)

In [None]:
2021.factor() # also exists as a method

In [None]:
2021.divisors()

*Quotient* and *remainder* for the Euclidean division can be obtained in different ways in Sage:

In [None]:
2021 % 7  # the remainder of 2021 by 7

In [None]:
2021.mod(7) # also the remainder of 2021 by 7

In [None]:
2021.quo_rem(7)  # computes both the quotient and the remainder

The output pair is (quotient, remainder). If we need to reuse the result, we can manipulate it as a list:

In [None]:
result = 2021.quo_rem(7)
result[0]

In [None]:
result[1]

The *gcd* (greatest common divisor) can be computed with the `gcd` method, which is based on the Euclidean algorithm. To get a triple $(g,s,t)$ such that $g=s a+tb=gcd(a,b)$ using the extended algorithm, we use the `xgcd` method.

In [None]:
a = 2021
b = 215
a.gcd(b)

In [None]:
a.xgcd(b)

Let us check with Sage that $sa+tb=43$ for $s=-2$ and $t=19$:

In [None]:
-2*a+19*b

Euler's phi function $\varphi$ is called by `euler_phi`.

In [None]:
euler_phi(2021)

Recall that $2021 = 43\times 47$. Using Sage, one may check that $\varphi(2021)=\varphi(43)\times\varphi(47)$, which illustrates a well-known property of Euler's function.

In [None]:
bool(euler_phi(2021) == euler_phi(43)*euler_phi(47))

Sage has many functions for creating and manipulating *prime numbers*. For example:

In [None]:
2021.is_prime() # check whether a given number is prime

By default, this is a provable primality test. To use a strong pseudo-primality test (much faster when dealing with very large integers, but not proving primality), one can use:

In [None]:
2021.is_pseudoprime()

To create a list of consecutive prime numbers in an interval, one can use the `prime_range` function.

In [None]:
prime_range(15,100)

### 3.2 Ring of integers modulo $n$

In Sage the ring $\mathbb{Z}/n\mathbb{Z}$ of integers modulo $n$ is created by:

In [None]:
R = IntegerModRing(15)  # here n=15
R

An equivalent syntax is:

In [None]:
R = Integers(15)
R

To construct elements in this ring, one may convert an integer into an element of `R`:

In [None]:
R(2021)

Contrary to what appears to be, this element is not an integer but an element of `R`:

In [None]:
R(2021).parent()

One may ask Sage about the properties of the ring `R` using its associated methods. For example:

In [None]:
R.is_field()

Of course, $\mathbb{Z}/15\mathbb{Z}$ is not a field because $15$ is not a prime number.

In [None]:
R.list()  # list of elements of R

In [None]:
R.random_element()  # returns a random element in R

Operations in `R` are done by the usual operators `+` and `*`.

In [None]:
R(1)+R(6)*R(13)

Sage also knows how to mix integers with integers mod $n$, by making automatic conversions to `R`:

In [None]:
a = R(13)
1+6*a

In [None]:
parent(1+6*a)

If one needs to lift an element modulo $n$ to $\mathbb{Z}$, there is th `lift` method.

In [None]:
b = (1+6*a).lift()
b

and the result is an integer indeed:

In [None]:
b.parent()

### 3.3 Powers and inverse modulo $n$

The multiplicative group $(\mathbb{Z}/n\mathbb{Z})^*$ consists of classes $k\bmod n$ such that $gcd(k,n)=1$. Sage can  produce the list of such elements (as Python integers):

In [None]:
R.list_of_elements_of_multiplicative_group()

Elements of this group have a multiplicative inverse (which, as you know, can be computed using the extended Euclidean algorithm):

In [None]:
R(7)^(-1)

In [None]:
bool (R(13)*R(7) == R(1)) # let's check that 13 mod 15 is the inverse of 7 mod 15

If you need to compute a modular inverse without having to create the ring of integers mod $n$, there is the `inverse_mod` function, whose result is an integer:

In [None]:
inverse_mod(7,n)

An important operation in $\mathbb{Z}/n\mathbb{Z}$ is the *modular exponentiation*, which means to calculate $a^e \bmod n$. The RSA cryptosystem relies on this operation. To calculate $a^e \bmod n$, the most efficient algorithms require of the order of $\log e$ multiplications or squarings modulo $n$.

Modular exponentiation is directly implemented in Sage when computing with integers mod $n$:

In [None]:
a = 5
e = 3000
R(a)^e

For efficiency, it is crucial to reduce all calculations modulo $n$ systematically, and not compute $a^e$ first as an integer and then reduce it mod $n$, as the following example shows:

In [None]:
n = 3^100000; a = n-1; e = 200
R = IntegerModRing(n)
%timeit R(a^e)  # time to compute a^e and then reduces it mod n

In [None]:
%timeit R(a)^e  # time to compute R(a) by modular exponentiation

In [None]:
R(a)^e # here is the result

It is possible to compute by modular exponentiation without having to create the ring of integers mod $n$:

In [None]:
power_mod(a,e,n)

For elements in the ring $\mathbb{Z}/n\mathbb{Z}$, one can compute their additive order (in the group ($\mathbb{Z}/n\mathbb{Z},+)$ and their multiplicative order (in the group ($(\mathbb{Z}/n\mathbb{Z})^{*},\cdot)$, for invertible elements). 

In [None]:
n = 15
R = IntegerModRing(n)
a = R(7)

In [None]:
a.additive_order()

In [None]:
a.multiplicative_order()

Indeed, we can check that $15$ is the smallest integer $k\geq 1$ such that $ka \equiv 0 \bmod  n$:

In [None]:
[k*a for k in range(1,16)]

and that $4$ is the smallest integer $k\geq 1$ such that $a^k \equiv 1 \bmod n$.

In [None]:
[a^k for k in range(1,5)]

$\rhd$ Try it: the additive group $(\mathbb{Z}/n\mathbb{Z},+)$ is cyclic. For $n=264$, compute all its generators using Sage.

## 4. Exercises for Chapter 3

### 4.1 Exercise - Polynomials and linear algebra

Let $f : \mathbb{Q}[x] \to \mathbb{Q}[x]$  be the linear map defined by $f(P(x)) = (x-2)P'(x)+ P(1)$.

Using Sage:
1. Build the ring $\mathbb{Q}[x]$.
2. Define $f$ as a function.
3. Compute the images of $1,x,x^2,x^3,x^4,x^5$ by $f$.
4. Use these images to construct the matrix of $f$ in the basis $(1,x,x^2,x^3,x^4,x^5)$ of polynomials of $\mathbb{Q}[x]$ of degree $\leq 5$.

### 4.2 Exercise - Basic arithmetic

1\. Use Sage to solve the *congruence equation* $3x\equiv 42 \bmod 2021$.

2\. We need a function which takes an integer `N` as input and outputs the *list of factors* $[\ell_1^{e_1},\ldots,\ell_n^{e_n}]$ of its unique prime factorization $N = \prod_{i=1}^n \ell_i^{e_i}$. Write a Sage function `prime_power_factors` which does this. Hint: use the following code as a source of inspiration.

In [None]:
60.factor()

In [None]:
list(60.factor())

In [None]:
L = list(60.factor())
L[0]

3\. Let $a$ and $b$ be coprime integers. The *Chinese remainder theorem* says that for any integers $m,n$, there exists $x\in\mathbb{Z}$ such that:
$$x \equiv m \bmod a,\quad x \equiv n \bmod b.$$
Recall how to construct such a solution $x$ using Bezout theorem for $a$ and $b$. Then write a function `chinese(a,b,m,n)` which outputs such a solution $x$.

4\. *Euler's theorem* states that if $n$ is an integer and $a$ is such that $gcd(a,n)=1$ then $$a^{\varphi(n)} \equiv 1 \bmod n.$$ Using Sage, check this assertion for any $n\in\{1,\ldots,1000\}$ and for any $a$.