Chapter IV: Constructing number fields
4.3 Reduction to primitive group actions
of the loop in Lines 5–12, every field in F is isomorphic to some field inPk over K0 and vice versa. This follows from a simple induction onk.
Denote by dthe maximum degree of the fields inF overK0. Then dand|F |are bounded by c(P). By induction and Lemma 4.8, each field in F is encoded by the minimal polynomial of a primitive element k1α1 +· · ·+ksαs overK0 where s ≤ m ≤ deg(g), all αi are roots of g, and1 ≤ ki ≤ d+ 1. The claim about the running time then follows from Lemma 4.4 and Lemma 4.8.
By Lemma 4.2, the complexity c(P)of the subgroup system P in Lemma 4.10 is bounded by(deg(g))m0, where m0 = min{deg(g), m}. Lemma 3.21 then follows by choosingK0 =Q.
Lemma 4.11. Let S be a finite set where |S| > 1, and let x ∈ S. A transitive permutation groupGonSis primitive iffGxis maximal inG.
See, e.g., [Wie64] for the proof of Lemma 4.11. We also need the following result, proved in [LM85].
Theorem 4.1([LM85]). There exists a polynomial-time algorithmTowerthat given a number fieldK0and a polynomialg(X)∈K0[X]irreducible overK0,5computes a tower of relative number fields overK0
K0 ⊆K1 ⊆ · · · ⊆Kk−1 ⊆Kk
together with the inclusions Ki−1 ,→ Ki and the polynomials gi(X) ∈ Ki−1[X]
irreducible over Ki−1 for i ∈ [k], such that Kk ∼=K0 K0[X]/(g(X)), and the following conditions are satisfied fori∈[k]:
1. Kiis isomorphic toKi−1[X]/(gi(X))overKi−1, and
2. the Galois groupGi := Gal(Li/Ki−1)acts primitively on the set of roots of gi inLi, whereLi is the Galois closure ofKi/Ki−1.
Fori ∈ [k], letHi := Gal(Li/Ki) ⊆ Gi. See Figure 4.1 for an illustration. Note that the first condition above is equivalent to Ki = Ki−1(α) for some root αi of gi inLi. So Hi is the stabilizer ofαi. Then the second condition is equivalent to maximality ofHi inGi.
The following theorem is the main result of this section.
Theorem 4.2. Suppose there exists an algorithm PrimitiveAction that, given a number field K0 and a polynomial g(X) ∈ K0[X] irreducible over K0 with Gal(g/K0)acting primitively on the set of roots ofg inL, whereLis the splitting field ofg overK0, computes a(K0, g)-subfield system in timeT(K0, g). Then there exists an algorithmGeneralActionthat givenK0 andg as above, butwithoutthe assumption thatGal(g/K0)acts primitively onS, computes
• a(K0, g)-subfield systemF, and,
5The paper [LM85] presented their algorithm only forK0=Q, but it easily extends to a general base fieldK0.
K0 K1
K2
· · · Kk−1
Kk
L1 L2
Lk
G1 H1 G2 H2
Gk Hk
Figure 4.1: The tower of fields and Galois groups in Theorem 4.1
• a tower of relative number fields K0 ⊆ K1 ⊆ · · · ⊆ Kk−1 ⊆ Kk over K0 and gi(X) ∈ Ki−1[X] for i ∈ [k] satisfying the conditions in Theorem 4.1, such that Kk ∼=K0 K0[X]/(g(X)) and the sizes of the polynomials gi are polynomial in the size of the input
in time polynomial inPk
i=1T(Ki−1, gi)and the size of the input. Moreover, if for eachi ∈ [k], the(Ki−1, gi)-subfield systemFi computed by PrimitiveActionon the input(Ki−1, gi)satisfies
1. Ki−1[X]/(gi(X))∈ Fi,
2. All strongly antisymmetricP-schemes are discrete (resp. inhomogeneous) on H, wherePis the subgroup system overGal(gi/Ki−1)associated withFiand His a subgroup inP whose fixed field is isomorphic toKioverKi−1. ThenF satisfies
1. K0[X]/(g(X))∈ F,
2. All strongly antisymmetricP-schemes are discrete (resp. inhomogeneous) on H, where P is the subgroup system over Gal(g/K0)associated withF and His a subgroup inP satisfyingLH ∼=K0 K0[X]/(g(X)).
See Algorithm 9 for the pseudocode of the algorithmGeneralAction. It proceeds as follows: maintain F, which initially only contains K0[X]/(g(X)). Then we
call the algorithm Tower to compute a tower K0 ⊆ K1 ⊆ · · · ⊆ Kk−1 ⊆ Kk and gi(X) ∈ Ki−1[X] for i ∈ [k] as in Theorem 4.1. Next, run the hypothetical algorithmPrimitiveActionin Theorem 4.2 on(Ki−1, gi)for eachi∈[k]to obtain a(Ki−1, gi)-subfield system Fi. Fori∈ [k], add the fields inFi to F, but encode them as relative number fields overK0(using Lemma 4.6). In addition, avoid adding fields toF that are isomorphic to some existent fieldK ∈ F overK0, so that all the fields inFare mutually non-isomorphic overK0. After allFiare processed, output F.
Algorithm 9GeneralAction
Input: number fieldK0 andg(X)∈K0[X]irreducible overK0 Output: (K0, g)-subfield systemF
1: F ← {K0[X]/(g(X))}
2: run Tower on(K0, g) to obtain a tower K0 ⊆ K1 ⊆ · · · ⊆ Kk−1 ⊆ Kk and gi(X)∈Ki−1[X]irreducible overKi−1fori∈[k]
3: fori←1tokdo
4: runPrimitiveActionon(Ki−1, gi)to obtainFi
5: forK ∈ Fi do
6: compute a relative number fieldK0 overK0 such thatK0 ∼=K0 K
7: if K0 is non-isomorphic to all fields inF overK0 then
8: F ← F ∪ {K0}
9: returnF
The proof of Theorem 4.2 is based on the following lemma.
Lemma 4.12. Let k ∈ N+ and Gk ⊆ Gk−1 ⊆ · · · ⊆ G1 ⊆ G0 be a chain of finite groups. For i ∈ [k], let Ni be a subgroup of Gi that is normal in Gi−1, πi : Gi−1 → Gi−1/Ni be the corresponding quotient map, andPi be a subgroup system overGi−1/Ni that containsGi/Ni. Define
P ={gπi−1(H)g−1 : 1≤i≤k, H ∈ Pi, g ∈G0},
which is a subgroup system overG0 and containsπi−1(Gi/Ni) =Gi for alli∈[k].
Then we have
1. If for alli∈[k], all strongly antisymmetricPi-schemes are discrete onGi/Ni, then all strongly antisymmetricP-schemes are discrete onGk.
2. If for somei∈[k], all strongly antisymmetricPi-schemes are inhomogeneous onGi/Ni, then all strongly antisymmetricP-schemes are inhomogeneous on Gk.
The same holds if strong antisymmetry is replaced by antisymmetry.
We defer the proof of Lemma 4.12 to Section 6.1.
Proof of Theorem 4.2. The claims aboutKi andgi follow from Theorem 4.1. Use the following notations fori∈[k]:
• Li: the splitting field ofgi overKi−1, which is a subfield ofL.
• Gi := Gal(Li/Ki−1)andNi := Gal(L/Li).
• πi: the natural projectionGal(L/Ki−1)→Gal(L/Ki−1)/Ni ∼=Gi.
• Pi: the subgroup system overGi associated withFi.
Then by construction, the subgroup system overGal(L/K0)associated withF is P :={gπi−1(H)g−1 : 1≤i≤k, H ∈ Pi, g ∈G}.
Assume the conditions on Fi in Theorem 4.2 are satisfied. Then for all i ∈ [k], all strongly antisymmetric Pi-schemes are discrete (resp. inhomogeneous) on Gal(Li/Ki)∈ Pi. Applying Lemma 4.12 to the chain
Gal(L/Kk)⊆Gal(L/Kk−1)⊆ · · · ⊆Gal(L/K1)⊆Gal(L/K0)
andNi,πi,Pi, we conclude that all strongly antisymmetricP-schemes are discrete (resp. inhomogeneous) on the subgroupGal(L/Kk)∈ P. And the corresponding fixed fieldKkis isomorphic toK0[X]/(g(X))overK0, as desired.
The total running time of the algorithmPrimitiveActionand the total size ofFi are both bounded byPk
i=1T(Ki−1, gi). The other operations take time polynomial in the total size ofFi and the size of the input. The claim about the running time follows.
As an application, we prove the main result of [Evd92] for the special case that the input polynomial satisfies Condition 3.1 (i.e., it is defined overFp, square free, and complete reducible overFp).
Theorem 4.3([Evd92]). Under GRH, there exists a deterministic polynomial-time algorithm that, given a polynomial f(X) ∈ Fp[X]satisfying Condition 3.1 and a lifted polynomial f˜(X) ∈ Z[X] of f whose Galois group Gal( ˜f /Q) is solvable, computes the complete factorization off overFp.
The proof relies on the following bound for the orders of primitive solvable permu- tation groups, proved by Pálfy [Pál82].
Theorem 4.4([Pál82]). LetGbe a primitive solvable permutation group on a set of cardinalityn ∈N+. Then|G| ≤24−1/3ncfor a constantc= 3.24399. . .. Proof of Theorem 4.3. As in Section 6, we factorize f˜into its irreducible factors f1(X), . . . , fk(X)∈Z[X]overQin polynomial time using the factoring algorithm in [LLL82]. The Galois groupsGal( ˜fi(X)/Q)are quotient groups ofGal( ˜f /Q), and hence are solvable as well. By replacing f(X)˜ with f˜i(X) and f(X) with fi(X) := ˜fi(X) modp ∈ Fp[X]for each i ∈ [k], we reduce to the case that f˜is irreducible overQ.
Let L be the splitting field of f˜over Q. When Gal( ˜f /Q) acts primitively on the set of roots of f˜in L, its order is bounded by a polynomial in deg(f) by Theorem 4.4. Then by Theorem 4.9, we can constructF in polynomial time such thatQ[X]/( ˜f(X))∈ F and all strongly antisymmetricP-schemes are discrete on H, whereP is the subgroup system overGal( ˜f /Q) associated withF andH is a subgroup inP satisfying LH ∼= Q[X]/( ˜f(X)). By Theorem 4.2, we also have a polynomial-time algorithm of constructing suchF in the general case. The theorem then follows from Theorem 3.9.
In Chapter 5, we prove a generalization of Theorem 4.3 (see Theorem 5.13), which implies the main result of [Evd92] in its general form. In particular, the assumption thatf˜satisfies Condition 3.1 is no longer required.