sam.hadow/tea3-py
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: sam.hadow/tea3-py:e5dcb7fe32b49e66f74f33fc817b38726d7dd810
Branches Tags
sam.hadow/tea3-py:main
..
compare: sam.hadow/tea3-py:3886c7a3d625594f0d9434321097df9117689e54
Branches Tags
sam.hadow/tea3-py:main

2 Commits
e5dcb7fe32 .. 3886c7a3d6

Author SHA1 Message Date
sam.hadow 3886c7a3d6 stronger abstraction 2026-04-21 16:52:57 +02:00
sam.hadow 0e1c67b7aa abstract pool 2026-04-21 16:36:13 +02:00
2 changed files with 38 additions and 54 deletions
Expand all files Collapse all files
src/tea3/cli.py
+1 -1
View File
@@ -29,7 +29,7 @@ def main() -> None:
print(f"\nRunning {steps} step(s), watching R[{reg}][{bit}]") print(f"\nRunning {steps} step(s), watching R[{reg}][{bit}]")
print("-" * 50) print("-" * 50)
model = Tea3Model(max_steps=steps) model = Tea3Model()
for i in range(steps): for i in range(steps):
model.step() model.step()
src/tea3/tea3model.py
+37 -53
View File
@@ -1,11 +1,13 @@
from sage.all import GF, BooleanPolynomialRing from sage.all import GF, BooleanPolynomialRing
from functools import reduce
from operator import mul
from tea3.constants import TEA3_SBOX, T_F1, T_F2 from tea3.constants import TEA3_SBOX, T_F1, T_F2
from tea3.pretty_print import pretty_print, pretty_print_vec from tea3.pretty_print import pretty_print, pretty_print_vec
class Tea3Model: class Tea3Model:
def __init__(self, max_steps=20): def __init__(self):
self.F = GF(2) self.F = GF(2)
self.step_count = 0 self.step_count = 0
@@ -13,71 +15,53 @@ class Tea3Model:
[f"x{i}{j}" for i in range(5) for j in range(8)] + [f"x{i}{j}" for i in range(5) for j in range(8)] +
[f"r{i}{j}" for i in range(5) for j in range(8)] + [f"r{i}{j}" for i in range(5) for j in range(8)] +
[f"R{i}{j}" for i in range(8) for j in range(8)] + [f"R{i}{j}" for i in range(8) for j in range(8)] +
[f"f{s}_{i}{j}" for s in range(max_steps) for i in range(8) for j in range(8)] ["g"]
) )
name_string = ",".join(names) name_string = ",".join(names)
self.S = BooleanPolynomialRing(len(names), name_string) self.S = BooleanPolynomialRing(len(names), name_string)
self.v = self.S.gens() self.v = self.S.gens()
self.x_bits = [list(self.v[i*8:(i+1)*8]) for i in range(5)] self.x_bits = [list(self.v[i*8:(i+1)*8]) for i in range(5)]
self.r_bits = [list(self.v[40 + i*8 : 40 + (i+1)*8]) for i in range(5)] self.r_bits = [list(self.v[40 + i*8 : 40 + (i+1)*8]) for i in range(5)]
self.R_bits = [list(self.v[80 + i*8 : 80 + (i+1)*8]) for i in range(8)] self.R_bits = [list(self.v[80 + i*8 : 80 + (i+1)*8]) for i in range(8)]
# Abstract variables self.g = self.v[-1]
base = 80 + 64
self.fR_bits = [
[list(self.v[base + s*64 + i*8 : base + s*64 + i*8 + 8])
for i in range(8)]
for s in range(max_steps)
]
def _split_poly(self, poly):
"""
Split a polynomial into:
- R_f_part: monomials involving only 'R' or 'f' (abstract) variables
- xr_part: monomials involving 'x' or 'r' variables
constant term is grouped with R_f_part when R_f_part is non-zero
"""
zero = self.S.zero()
R_f_part = zero
xr_part = zero
has_const = bool(poly.constant_coefficient())
for monom in poly:
vars_in_term = monom.variables()
if not vars_in_term:
continue
families = {str(v)[0] for v in vars_in_term}
monom_poly = self.S(monom)
if families <= {'R', 'f'}:
R_f_part += monom_poly
else:
xr_part += monom_poly
if has_const:
if R_f_part != zero:
R_f_part += self.S.one()
else:
xr_part += self.S.one()
return R_f_part, xr_part
def _abstract_R(self): def _abstract_R(self):
""" s = self.step_count
Replace the R/f-dependent part of every R_bits[i][j] with an one = self.S.one()
abstract variable f{step}_{i}{j}, leaving only x and r terms explicit. zero = self.S.zero()
"""
s = self.step_count
for i in range(8): for i in range(8):
for j in range(8): for j in range(8):
R_f_part, xr_part = self._split_poly(self.R_bits[i][j]) poly = self.R_bits[i][j]
if R_f_part != self.S.zero():
self.R_bits[i][j] = self.fR_bits[s][i][j] + xr_part groups = {}
else: pure_xr = zero
self.R_bits[i][j] = xr_part const = one if bool(poly.constant_coefficient()) else zero
for monom in poly:
term_vars = monom.variables()
if not term_vars:
continue
xr_vars = [v for v in term_vars if str(v)[0] in ('x', 'r')]
Rf_vars = [v for v in term_vars if str(v)[0] in ('R', 'f', 'g')]
xr_mono = reduce(mul, (self.S(v) for v in xr_vars), one)
xr_key = frozenset(str(v) for v in xr_vars)
if not Rf_vars:
pure_xr += xr_mono
else:
groups[xr_key] = xr_mono # Rf_sum is irrelevant now
result = pure_xr + const
for xr_key, xr_mono in groups.items():
result += xr_mono * self.g # same g every time
self.R_bits[i][j] = result
def step(self): def step(self):
R = self.R_bits.copy() R = self.R_bits.copy()