Polynomial greatest common divisor

In algebra, the greatest common divisor (frequently abbreviated as GCD) of two polynomials is a notion which is very similar to the greatest common divisor of two integers.

In the important case of univariate polynomials over a field the polynomial GCD may be computed, like for the integer GCD, by Euclid's algorithm using long division. The main difference lies in the fact that there is no natural total order on the polynomials. Therefore, "greatest" is meant for the relation of divisibility. As this relation is only a preorder, the polynomial GCD is defined only up to the multiplication by an invertible constant.

The similarity between integer and polynomial GCD allows to extend to univariate polynomials all the properties that may be deduced from Euclid's algorithm and Euclidean division. Moreover, the polynomial GCD has specific properties that make it a fundamental notion in various areas of algebra. Typically, the roots of the GCD of two polynomials are the common roots of the two polynomials, and this allows to get information on the roots without computing them. For example the multiple roots of a polynomial are the roots of its GCD with its derivative, and further GCD computations allow to compute the square-free factorization of the polynomial.

The greatest common divisor may be defined and exists, more generally, for multivariate polynomials over a field or the ring of integers, and also over a unique factorization domain. There exist algorithms to compute them as soon as one has a GCD algorithm in the ring of coefficients. These algorithms proceed by a recursion on the number of variables to reduce the problem to a variant of Euclid's algorithm. They are a fundamental tool in computer algebra, because computer algebra systems use them systematically to simplify fractions. Conversely, most of the modern theory of polynomial GCD has been developed to satisfy the need of efficiency of computer algebra systems.

General definition

Let p and q be polynomials with coefficients in an integral domain F, typically a field or the integers. A greatest common divisor of p and q is a polynomial d that divides p and q and such that every common divisor of p and q also divides d. Every pair of polynomials has a GCD if and only if F is a unique factorization domain.

If F is a field and p and q are not both zero, d is a greatest common divisor if and only if it divides both p and q and it has the greatest degree among the polynomials having this property. If p = q = 0, the GCD is 0. However, some authors consider that it is not defined in this case?

The greatest common divisor of p and q is usually denoted "gcd(p, q)".

The greatest common divisor is not unique: if d is a GCD of p and q, then the polynomial f is another GCD if and only if there is an invertible element u of F such that

${\displaystyle f=ud}$

and

${\displaystyle d=u^{-1}f}$.

In other words, the GCD is unique up to the multiplication by an invertible constant.

In the case of the integers, this indetermination has been settled by choosing, as the GCD, the unique one which is positive (there is another one, which is its opposite). With this convention, the GCD of two integers is also the greatest (for the usual ordering) common divisor. When one want to settle this indetermination in the polynomial case, one lacks of a natural total order. Therefore, one chooses once for all a particular GCD that is then called the greatest common divisor. For univariate polynomials over a field, this is usually the unique GCD which is monic (that is has 1 as coefficient of the highest degree). In more general cases, there is no general convention and above indetermination is usually kept. Therefore equalities like d = gcd(p, q) or gcd(p, q) = gcd(r, s) are usual abuses of notation which should be read "d is a GCD of p and q" and "p, q has the same set of GCD as r, s". In particular, gcd(p, q) = 1 means that the invertible constants are the only common divisors, and thus that p and q are coprime.

Properties

• As stated above, the GCD of two polynomials exists if the coefficients belong either to a field, the ring of the integers or more generally to a unique factorization domain.
• If c is any common divisor of p and q, then c divides their GCD.
• ${\displaystyle \gcd(p,q)=\gcd(q,p).}$
• ${\displaystyle \gcd(p,q)=\gcd(p,p+rq)}$ for any polynomial r. This property is at the basis of the proof of Euclid's algorithm.
• For any invertible element k of the ring of the coefficients, ${\displaystyle \gcd(p,q)=\gcd(p,kq)}$.
• Hence ${\displaystyle \gcd(p,q)=\gcd(a_{1}p+b_{1}q,a_{2}p+b_{2}q)}$ for any scalars ${\displaystyle a_{1},b_{1},a_{2},b_{2}}$ such that ${\displaystyle a_{1}b_{2}-a_{2}b_{1}}$ is invertible.
• If ${\displaystyle \gcd(p,r)=1}$, then ${\displaystyle \gcd(p,q)=\gcd(p,qr)}$.
• If ${\displaystyle \gcd(q,r)=1}$, then ${\displaystyle \gcd(p,qr)=\gcd(p,q)\,\gcd(p,r)}$.
• For two univariate polynomials p and q over a field, there exist polynomials a and b, such that ${\displaystyle \gcd(p,q)=ap+bq}$ and ${\displaystyle \gcd(p,q)}$ divides every such linear combination of p and q (Bézout's identity).
• The greatest common divisor of three or more polynomials may be defined similarly as for two polynomials. It may be computed recursively from GCD's of two polynomials by the identities:

${\displaystyle \gcd(p,q,r)=\gcd(p,\gcd(q,r)),}$

and

${\displaystyle \gcd(p_{1},p_{2},\dots ,p_{n})=\gcd(p_{1},\gcd(p_{2},\dots ,p_{n})).}$

GCD by hand writing computation

There are several ways to find the greatest common divisor of two polynomials. Two of them are:

1. Factorization, in which one finds the factors of each expression, then selects the set of common factors held by all from within each set of factors. This method may be useful only in very simple cases, as, like for the integers, factoring is usually much more difficult than computing the greatest common divisor. Moreover, there are fields of coefficient for which there is no factorization algorithm, while Euclidean algorithm always exists.
2. The Euclidean algorithm, which can be used to find the GCD of two polynomials in the same manner as for two numbers.

Factoring

To find the GCD of two polynomials using factoring, simply factor the two polynomials completely. Then, take the product of all common factors. At this stage, we do not necessarily have a monic polynomial, so finally multiply this by a constant to make it a monic polynomial. This will be the GCD of the two polynomials as it includes all common divisors and is monic.

Example one: Find the GCD of x² + 7x + 6 and x² − 5x − 6.

x² + 7x + 6 = (x + 1)(x + 6)

x² − 5x − 6 = (x + 1)(x − 6)

Thus, their GCD is x + 1.

Euclidean algorithm

Factoring polynomials can be difficult, especially if the polynomials have large degree. The Euclidean algorithm is a method which works for any pair of polynomials. It makes repeated use of polynomial long division or synthetic division. When using this algorithm on two numbers, the size of the numbers decreases at each stage. With polynomials, the degree of the polynomials decreases at each stage. The last nonzero remainder, made monic if necessary, is the GCD of the two polynomials.

More specifically, assume we wish to find the gcd of two polynomials a(x) and b(x), where we can suppose

${\displaystyle \deg(b(x))\leq \deg(a(x))\,.}$

We can find two polynomials q(x) and r(x) which satisfy (see Polynomial long division)

• ${\displaystyle a(x)=q_{0}(x)b(x)+r_{0}(x)}$
• ${\displaystyle \deg(r_{0}(x))<\deg(b(x))}$

The polynomial q₀(x) is called the quotient and r₀(x) is the remainder. Notice that a polynomial g(x) divides a(x) and b(x) if and only if it divides b(x) and r₀(x). We deduce

${\displaystyle \gcd(a(x),b(x))=\gcd(b(x),r_{0}(x))\,.}$.

Then set

${\displaystyle a_{1}(x)=b(x),b_{1}(x)=r_{0}(x)\,.}$

Repeat the Polynomial long division to get new polynomials q₁(x), r₁(x), a₂(x), b₂(x) and so on. At each stage we have

${\displaystyle \deg(a_{k+1})+\deg(b_{k+1})<\deg(a_{k})+\deg(b_{k})\ ,}$

so the sequence will eventually reach a point at which

${\displaystyle b_{N}(x)=0}$

and we will have found our GCD:

${\displaystyle \gcd(a,b)=\gcd(a_{1},b_{1})=\cdots =\gcd(a_{N},0)=a_{N}\,.}$

Example: Find the GCD of x² + 7x + 6 and x² − 5x − 6.

x² + 7x + 6 = (x² − 5x − 6)(1) + (x + 1)(12)

x² − 5x − 6 = (x + 1)(x − 6) + 0

Since x + 1 is the last nonzero remainder, the GCD of these polynomials is x + 1.

This method works only if one may test the equality to zero of the elements of the field of the coefficients. Thus, in practice, it works only for polynomials with coefficients in the field of rational numbers, in a finite field or a number field or in the field of rational functions over one of the previous fields.

This induces a new difficulty: For all these fields except the finite ones, the coefficients are fractions. If the fractions are not simplified during the computation, the size of the coefficients grows exponentially during the computation, which makes it impossible except for very small degrees. On the other hand, it is highly time consuming to simplify the fractions immediately. Therefore two different alternative methods have been introduced (see below):

• Pseudo-remainder sequences, especially subresultant sequences.
• Modular GCD algorithm using modular arithmetic

Univariate polynomials with coefficients in a field

The case of univariate polynomials over a field is specially important for several reasons. Firstly, it is the most elementary case and therefore appear in most first courses in algebra. Secondly, it is very similar to the case of the integers, and this analogy is the source of of the notion of Euclidean domain. A third reason is that the theory and the algorithms for the multivariate case and for coefficients in a unique factorization domain are strongly based on this particular case. Last but not least, polynomial GCD and derived algorithms allow to get useful information on the roots of a polynomial, without computing them.

Euclidean division

Euclidean division of polynomials is very similar to Euclidean division of integers. It existence consists in the following theorem: Given two univariate polynomials a and b ≠ 0 defined over a field, there exist two polynomials q, the quotient and r the remainder which satisfy

${\displaystyle a=bq+r}$

and

${\displaystyle \deg(r)<\deg(b),}$

where "deg(...)" denotes the degree and the degree of 0 is defined as negative. Moreover q and r are uniquely defined by these relations.

The difference with Euclidean division of the integers is that, for the integers, the degree is replaced by the absolute value, and that for having the uniqueness one has to suppose that r is non negative. The rings for which such a theorem exists are called Euclidean domains.

Like for the integers, the Euclidean division of the polynomials may be computed by the long division algorithm. This algorithm is usually presented for paper and pencil computation, but it works well on computers, when formalized as follows (note that the names of the variables correspond exactly to the regions of the paper sheet in a pencil and paper computation of long division). In the following computation "deg" stands for the degree of its argument and "lc" stands for the leading coefficient, the coefficient of the highest degree of the variable.

Euclidean division
Input: a and b ≠ 0 two polynomials in the variable x;
Output: q, the quotient and r, the remainder;
Begin
${\displaystyle q:=0;\quad r:=a;\quad d:=\deg(b);}$
${\displaystyle d:=\deg(b);\quad c:={\text{lc}}(b);}$
while ${\displaystyle \deg(r)\geq d}$ do

${\displaystyle s:={\frac {{\text{lc}}(r)}{c}}x^{\deg(r)-d};}$

${\displaystyle q:=q+s;}$

${\displaystyle r:=r-sb;}$

end do;
return (q, r);
end.

The proof of this algorithm relies on the fact that during the whole "while" loop, we have a = bq + r and deg(r) is a non negative integer that decreases at each iteration. Thus the proof of the algorithm proves also the existence of Euclidean division.

Euclid's algorithm

As for the integers, the Euclidean division allows to define Euclid's algorithm for computing GCD's.

Starting from two polynomials a and b, Euclid's algorithm consists in recursively replacing the pair (a, b) by (b, rem(a, b)) (where "rem(a, b)" denotes the remainder of the Euclidean division, computed by the algorithm of the preceding section), until b = 0. The GCD is the last non zero remainder.

Euclid's algorithm may be formalized in the recursive programming style as:

${\displaystyle \gcd(a,b):={\text{if}}\;b=0\;{\text{then}}\;a\;{\text{else}}\;\gcd(b,{\text{rem}}(a,b))}$.

In the imperative programming style, the same algorithm becomes, giving a name to each intermediate remainder:

${\displaystyle r_{0}:=a;\quad r_{1}:=b;\quad i:=1;}$
while ${\displaystyle r_{i}\neq 0}$ do

${\displaystyle r_{i+1}:={\text{rem}}(r_{i-1},r_{i});\quad i:=i+1;}$

end do;
return ${\displaystyle (r_{i-1}).}$

The sequence of the degrees of the r_i is strictly decreasing. Thus after, at most, deg(b) steps, one get a null remainder, say r_k. As (a, b) and (b, rem(a,b)) have the same divisors, the set of the common divisors is not changed by Euclid's algorithm and thus all pairs (r_i, r_{i + 1}) have the same set of common divisors. The common divisors of aand bare thus the common divisors of r_{k − 1} and 0. Thus r_{k − 1} is a GCD of aand b. This not only proves that Euclid's algorithm computes GCD's, but proves also that GCD's exists.

Bézout's identity and extended GCD algorithm

Bézout's identity is a GCD related theorem, initially proved for the integers, which is valid for every principal ideal domain. In the case of the univariate polynomials over a field, it may be stated as follows.

If g is the greatest common divisor of two polynomials a and b, then there are two polynomials u and v such that

${\displaystyle au+bv=g\quad {\text{(Bézout's identity)}}}$

and

${\displaystyle \deg(u)<\deg(b)-\deg(g),\quad \deg(v)<\deg(a)-\deg(g).}$

The interest of this result in the case of the polynomials is that there is an efficient algorithm to compute the polynomials u and v, This algorithm differs from Euclid's algorithm by a few more computation done at each iteration of the loop. It is therefore called extended GCD algorithm. Another difference with Euclid's algorithm is that it uses the quotient, denoted "quo", of the Euclidean division instead of the remainder. This algorithm works as follows.

Extended GCD algorithm
Input: a, b,univariate polynomials
Output:

g,the GCD of a and b

u, v, such that

${\displaystyle au+bv=g,}$

${\displaystyle \deg(u)<\deg(b)-\deg(g)}$

${\displaystyle \deg(v)<\deg(a)-\deg(g)}$

a₁, b₁, such that

${\displaystyle a=ga_{1}}$

${\displaystyle b=gb_{1}}$

Begin

${\displaystyle r_{0}:=a;\quad r_{1}:=b;}$

${\displaystyle s_{0}:=1;\quad s_{1}:=0;}$

${\displaystyle t_{0}:=0;\quad t_{1}:=1;}$

${\displaystyle i:=0;}$

while r_i ≠ 0 do

${\displaystyle q:={\text{quo}}(r_{i-1},r_{i});}$

${\displaystyle r_{i+1}:=r_{i-1}-qr_{i};}$

${\displaystyle s_{i+1}:=s_{i-1}-qs_{i};}$

${\displaystyle t_{i+1}:=t_{i-1}-qt_{i};}$

${\displaystyle i:=i+1;}$

end do;

${\displaystyle g:=r_{i-1};}$

${\displaystyle u:=s_{i-1};\quad v:=t_{i-1};}$

${\displaystyle a_{1}:=(-1)^{i-1}t_{i};\quad b_{1}:=(-1)^{i}s_{i};}$

end.

The proof that the algorithm satisfies its output specification relies on the fact that, for every i we have

${\displaystyle r_{i}=as_{i}+bt_{i}}$

${\displaystyle s_{i}t_{i+1}-t_{i}s_{i+1}=s_{i}t_{i-1}-t_{i}s_{i-1},}$

the latter equality implying

${\displaystyle s_{i}t_{i+1}-t_{i}s_{i+1}=(-1)^{i}.}$

The assertion on the degrees follows from the fact that, at every iteration, the degrees of s_i and t_i increase at most as the degree of r_i decreases.

An interesting feature of this algorithm is that, when the coefficients of Bezout's identity are needed, one gets for free the quotient of the input polynomials by their GCD.

Arithmetic of algebraic extensions

An important application of extended GCD algorithm is that it allows to compute division in algebraic field extensions.

Let L an algebraic extension of a field K, generated by an element whhose minimal polynomial f has degree n. The elements of L are usually represented by univariate polynomials over K of degree less than n.

The addition in L is simply the addition of polynomials:

${\displaystyle a+_{L}b=a+_{K[X]}b.}$

The multiplication in L is the multiplication of polynomials followed by the division by f:

${\displaystyle a\cdot _{L}b={\text{rem}}(a._{K[X]}b),f).}$

The inverse of a non zero element a of L is the coefficient u in Bézout's identity au + fv = 1, which may be computed by extended GCD algorithm. (the GCD is 1 because the minimal polynomial f is irreducible). The degrees inequality in the specification of extended GCD algorithm shows that a further division by f is not needed to get deg(u) < deg(f).

Subresultants

In the case of univariate polynomials, there is a strong relationship between greatest common divisors and resultants. In fact the resultant of two polynomials P, Q is a polynomial function of the coefficients of P and Q which has the value zero if and only if the GCD of P and Q is not constant.

The subresultants theory is a generalization of this property that allows to characterize generically the GCD of two polynomials, and the resultant is the 0-th subresultant polynomial.

The i-th subresultant polynomial S_i(P ,Q) of two polynomials P and Q is a polynomial of degree at most i whose coefficients are polynomial functions of the coefficients of P and Q, and the i-th principal subresultant coefficient s_i(P ,Q) is the coefficient of degree i of S_i(P, Q). They have the property that the GCD of P and Q has a degree d if and only if

${\displaystyle s_{0}(P,Q)=\cdots =s_{d-1}(P,Q)=0\ ,s_{d}(P,Q)\neq 0}$.

In this case, S_d(P ,Q) is a GCD of P and Q and

${\displaystyle S_{0}(P,Q)=\cdots =S_{d-1}(P,Q)=0.}$

Every coefficient of the subresultant polynomials is defined as the determinant of a submatrix of the Sylvester matrix of P and Q. This implies that that subresultants "specialize" well. More precisely, subresultants are defined for polynomials over any commutative ring R, and have the following property.

Let φ be a ring homomorphism of R into another commutative ring S. It extends to another homomorphism, denoted also φ between the polynomials rings over R and S. Then, if P and Q are univariate polynomials with coefficients in R such that

${\displaystyle \deg(P)=\deg(\varphi (P))}$

and

${\displaystyle \deg(Q)=\deg(\varphi (Q)),}$

then the subresultant polynomials and the principal subresultant coefficients of φ(P) and φ(Q) are the image by φ of those of P and Q.

The subresultants have two important properties whch make them fundamental for the computation on computers of the GCD of two polynomials with integer coefficients. Firstly, their definition through determinants allows to bound, through Hadamard inequality, the size of the coefficients of the GCD. Secondly, this bound and the property of good specialization allow to compute the GCD of two polynomials with integer coefficients through modular computation and Chinese remainder theorem (see below).

Technical definition

Let

${\displaystyle P=p_{0}+p_{1}X+\cdots +p_{m}X^{m}\ ,Q=q_{0}+q_{1}X+\cdots +q_{n}X^{n}.}$

be two univariate polynomials with coefficients in a field K. Let us denote by ${\displaystyle {\mathcal {P}}_{i}}$ the K vector space of dimension i the polynomials of degree less than i. For non negative integer i such that i≤m and i≤n, let

${\displaystyle \varphi _{i}:{\mathcal {P}}_{n-i}\times {\mathcal {P}}_{m-i}\rightarrow {\mathcal {P}}_{m+n_{i}}}$

be the linear map such that

${\displaystyle \varphi _{i}(A,B)=AP+BQ.}$

The resultant of P and Q is the determinant of the Sylvester matrix, which is the (square) matrix of ${\displaystyle \varphi _{0}}$ on the bases of the powers of X. Similarly, the i-subresultant polynomial is defined in term of determinants of submatrices of the matrix of ${\displaystyle \varphi _{i}.}$

Let us describe these matrices more precisely;

Let p_i = 0 for i < 0 or i > m, and q_i = 0 for i < 0 or i > n. The Sylvester matrix is the (m + n) × (m + n)-matrix such that the coefficient of the i-th row and the j-th column is p_{m + j - i} for j ≤ n and q_{j - i} for j > n:^[1]

${\displaystyle S={\begin{pmatrix}p_{m}&0&\cdots &0&q_{n}&0&\cdots &0\\p_{m-1}&p_{m}&\cdots &0&q_{n-1}&q_{n}&\cdots &0\\p_{m-2}&p_{m-1}&\ddots &0&q_{n-2}&q_{n-1}&\ddots &0\\\vdots &\vdots &\ddots &p_{m}&\vdots &\vdots &\ddots &q_{n}\\\vdots &\vdots &\cdots &p_{m-1}&\vdots &\vdots &\cdots &q_{n-1}\\p_{0}&p_{1}&\cdots &\vdots &q_{0}&q_{1}&\cdots &\vdots \\0&p_{0}&\ddots &\vdots &0&q_{0}&\ddots &\vdots &\\\vdots &\vdots &\ddots &p_{1}&\vdots &\vdots &\ddots &q_{1}\\0&0&\cdots &p_{0}&0&0&\cdots &q_{0}\end{pmatrix}}.}$

The matrix T_i of ${\displaystyle \varphi _{i}}$ is the (m + n − i) × (m + n − 2i)-submatrix of S which is obtained by removing the last i rows of zeros in the submatrix of the columns 1 to n-i and n+1 to m+n-i of S (that is removing i columns in each block and the i last rows of zeros). The principal subresultant coefficient s_ij is the determinant of the m + n - 2i first rows of T_i.

Let V_i be the (m + n − 2i) × (m + n − i) matrix defined as follows. First we add (i + 1) columns of zeros to the right of the (m + n - i - 1) × (m + n - i - 1) identity matrix. Then we border the bottom of the resulting matrix by a row consisting in (m + n - i - 1) zeros followed by Xⁱ, X^{i − 1, ..., X, 1:}

${\displaystyle V_{i}={\begin{pmatrix}1&0&\cdots &0&0&0&\cdots &0\\0&1&\cdots &0&0&0&\cdots &0\\\vdots &\vdots &\ddots &\vdots &\vdots &\ddots &\vdots &0\\0&0&\cdots &1&0&0&\cdots &0\\0&0&\cdots &0&X^{i}&X^{i-1}&\cdots &1\end{pmatrix}}.}$

With this notation, the i-th subresultant polynomial is the determinant of the matrix product V_iT_i. Its coefficient of degree j is the determinant of the square submatrix of V_i consisting in its m + n - 2i - 1 first rows and the (m + n - i - j)-th row.

GCD and root finding

Square-free factorization

Main article: Square-free factorization

Most root-finding algorithms behave badly with polynomials that have multiple roots. It is therefore useful to detect and remove them before calling a root-finding algorithm. A GCD computation allows to detect the existence of multiple roots, because the multiple roots of a polynomial are the roots of the GCD of the polynomial and its derivative.

After computing the GCD of the polynomial and its derivative, further GCD computations provide provide the complete square-free factorization of the polynomial, which is a factorization

${\displaystyle f=\prod _{i=1}^{\deg(f)}f_{i}^{i}}$

where, for each i, the polynomial f_i either is 1 if f does not have any root of multiplicity i or is a square-free polynomial (that is a polynomial without multiple root) whose roots are exactly the roots of multiplicity i of f (see Yun's algorithm).

Thus the square-free factorization reduces root finding of a polynomials with multiple roots to root finding of several square-free polynomials of lower degree. The square-free factorization is also the first step in most polynomial factorization algorithms.

Sturm sequence

Main article: Sturm sequence

The Sturm sequence of a polynomial with real coefficients is the sequence of the remainders provided by a variant of Euclid's algorithm applied to the polynomial and its derivative. For getting the Sturm sequence, one simply replaces the instruction

${\displaystyle r_{i+1}:={\text{rem}}(r_{i-1},r_{i})}$

of Euclid's algorithm by

${\displaystyle r_{i+1}:=-{\text{rem}}(r_{i-1},r_{i}).}$

Let V(a) be the number of changes of signs in the sequence, when evaluated at a point a. Sturm's theorem asserts that V(a)-V(b) is the number of real roots of the polynomial in the interval [a,b]. Thus the Sturm sequence allows to compute the number of real roots in a given interval. By subdividing the interval until every subinterval contains at most one root, this provides an algorithm that locates the real roots in intervals of arbitrary small length.

GCD over a ring and over its field of fractions

In this section, we consider polynomials over a unique factorization domain R, typically the ring of the integers, and over its field of fractions F, typically the field of the rational numbers, and we denote R[X] and F[X] the rings of polynomials in a set of variables over these rings.

Primitive part–content factorization

See also: Content (algebra) and Gauss's lemma (polynomial)

The content of a polynomial p ∈ R[X], denoted "cont(p)", is the GCD of its coefficients. A polynomial q ∈ F[X] may be written

${\displaystyle q={\frac {p}{c}}}$

where p ∈ R[X] and c ∈ R: it suffices to take for c a multiple of all denominators of the coefficients of q (for example their product) and p = cq. The content of q is defined as:

${\displaystyle {\text{cont}}(q)={\frac {{\text{cont}}(p)}{c}}.}$

In both cases, the content is defined up to the multiplication by a unit of R.

The primitive part of a polynomial in R[X] or F[X] is defined by

${\displaystyle {\text{primpart}}(p)={\frac {p}{{\text{cont}}(p)}}.}$

In both cases, it is a polynomial in R[X] that is primitive, which means that 1 is a GCD of its coefficients.

Thus every polynomial in R[X] or F[X] may be factorized as

${\displaystyle p={\text{cont}}(p)\,{\text{primpart}}(p),}$

and this factorization is unique up to the multiplication of the content by a unit of R and of the primitive part by the inverse of this unit.

Gauss's lemma implies that the product of two primitive polynomials is primitive. It follows that

${\displaystyle {\text{primpart}}(pq)={\text{primpart}}(p)\,{\text{primpart}}(q)}$

and

${\displaystyle {\text{cont}}(pq)={\text{cont}}(p)\,{\text{cont}}(q).}$

Relation between the GCD over R and over F

The relations of the preceding section implies a strong relation between the GCD's in R[X] and in F[X]. In order to avoid ambiguities, the notation "gcd" will be indexed, in the following, by the ring in which the GCD is computed.

If q₁ and q₂ belong to F[X], then

${\displaystyle {\text{primpart}}({\text{gcd}}_{F[X]}(q_{1},q_{2})={\text{gcd}}_{R[X]}({\text{primpart}}(q_{1}),{\text{primpart}}(q_{2})).}$

If p₁ and p₂ belong to R[X], then

${\displaystyle {\text{gcd}}_{R[X]}(p_{1},p_{2})={\text{gcd}}_{R}({\text{cont}}(p_{1}),{\text{cont}}(p_{2}))\,{\text{gcd}}_{R[X]}({\text{primpart}}(p_{1}),{\text{primpart}}(p_{2})),}$

and

${\displaystyle {\text{gcd}}_{R[X]}({\text{primpart}}(p_{1}),{\text{primpart}}(p_{2}))={\text{primpart}}({\text{gcd}}_{F[X]}(p_{1},p_{2})).}$

Thus the computation of polynomial GCD's is essentially the same problem over F[X] and over R[X].

For univariate polynomials over the rational numbers one may think that Euclid's algorithm is a convenient method for computing the GCD. However, it involves to simplify a large number of fractions of integers, and the resulting algorithm is not efficient. For this reason, methods have been designed to modify Euclid's algorithm for working only with polynomials over the integers. They consist in replacing Euclidean division, which introduces fractions, by a so-called pseudo-division, and replacing the remainder sequence of Euclid's algorithm by so-called pseudo-remainder sequences (see below).

Proof that GCD exist for multivariate polynomials

In the previous section we have seen that the GCD of polynomials in R[X] may be deduced from GCD's in R and in F[X]. A closer look on the proof shows that this allows to prove the existence of GCD's in R[X], if they exist in R and in F[X]. In particular, if GCD's exist in R, and if X is reduced to one variable, this proves that GCD's exist in R[X] (Euclid's algorithm proves the existence of GCD's in F[X]).

A polynomial in n variables may be considered as a univariate polynomial over the ring of polynomials in (n − 1) variables. Thus a recursion on the number of variables shows that if GCD's exists and may be computed in R, then they exist and may be computed in every multivariate polynomial rings over R. In particular, if R is either the ring of the integers or a field, then GCD's exist in R[x₁,..., x_n], and what precedes provides an algorithm to compute them.

The proof that a polynomial ring over a unique factorization domain is also a unique factorization domain is similar, but it does not provides an algorithm, because there is no general algorithm to factorize univariate polynomials over a field (there are examples of fields for which it does not exist any factorization algorithm for the univariate polynomials).

Pseudo-remainder sequences

In this section, we consider an integral domain Z (typically the ring Z of the integers) and its field of fractions Q (typically the field Q of the rational numbers). Given two polynomials A and B in the univariate polynomial ring Z[X], the Euclidean division (over Q) of A by B provides a quotient and a remainder which may not belong to Z[X].

For, if one applies Euclid's algorithm to

${\displaystyle X^{8}+X^{6}-3X^{4}-3X^{3}+8X^{2}+2X-5}$

and

${\displaystyle 3X^{6}+5X^{4}-4X^{2}-9X+21,}$

the successive remainders of Euclid's algorithm are

${\displaystyle -{\frac {5}{9}}X^{4}+{\frac {1}{9}}X^{2}-{\frac {1}{3}},}$

${\displaystyle -{\frac {117}{25}}X^{2}-9X+{\frac {441}{25}},}$

${\displaystyle {\frac {233150}{19773}}X-{\frac {102500}{6591}},}$

${\displaystyle -{\frac {1288744821}{543589225}}.}$

One sees that, despite the small degree and the small size of the coefficients of the input polynomials, one has to manipulate and simplify integer fractions of rather large size.

The pseudo-division has been introduced to allow a variant of Euclid's algorithm for which all remainders belong to Z[X].

If ${\displaystyle \deg(A)=a}$ and ${\displaystyle \deg(B)=b}$ and a≥b, the pseudo-remainder of the pseudo-division of A by B, denoted by prem(A,B) is

${\displaystyle {\text{prem}}(A,B)={\text{rem}}({\text{lc}}(B)^{a-b+1}A,B),}$

where lc(B) is the leading coefficient of A (the coefficient of X^b).

The pseudo-remainder of the pseudo-division of two polynomials in Z[X] belongs always to Z[X].

A pseudo-remainder sequence is the sequence of the (pseudo) remainders r_i obtained by replacing the instruction

${\displaystyle r_{i+1}:={\text{rem}}(r_{i-1},r_{i})}$

of Euclid's algorithm by

${\displaystyle r_{i+1}:={\frac {{\text{prem}}(r_{i-1},r_{i})}{\alpha }},}$

where α is an element of Z that divides exactly every coefficient of the numerator. Different choices of α give different pseudo-remainder sequences, which are described in the next subsections.

As the common divisors of two polynomials are not changed if the polynomials are multiplied by invertible constants (in Q), the last non zero term in a pseudo-remainder sequence is a GCD (in Q[X]) of the input polynomials. Therefore pseudo-remainder sequences allows to compute GCD's in Q[X] without introducing fractions in Q.

Trivial pseudo-remainder sequence

The simplest (to define) remainder sequence consists in taking always α=1. In practice, it is not interesting, as the size of the coefficients grow exponentially with the degree of the input polynomials. This appears clearly on the example of the preceding section, for which the successive pseudo-remainders are

${\displaystyle -15\,X^{4}+3\,X^{2}-9,}$

${\displaystyle 15795\,X^{2}+30375\,X-59535,}$

${\displaystyle 1254542875143750\,X-1654608338437500,}$

${\displaystyle 12593338795500743100931141992187500.}$

The number of digits of the coefficients of the successive remainders is more than doubled at each iteration of the algorithm. This is a typical behavior of the trivial pseudo-remainder sequences.

Primitive pseudo-remainder sequence

The primitive pseudo-remainder sequence consists in taking for α the content of the numerator. Thus all the r_i are primitive polynomials.

The primitive pseudo-remainder sequence is the pseudo-remainder sequence, which generates the smallest coefficients. However it requires to compute a number of GCD's in Z, and therefore is not sufficiently efficient to be used in practice, especially when Z is itself a polynomial ring.

With the same input as in the preceding sections, the successive remainders, after division by their content are

${\displaystyle -5\,X^{4}+X^{2}-3,}$

${\displaystyle 13\,X^{2}+25\,X-49,}$

${\displaystyle 4663\,X-6150,}$

${\displaystyle 1.}$

The small size of the coefficients hides the fact that a number of integers GCD and divisions by the GCD have been computed.

Subresultant pseudo-remainder sequence

The subresultant pseudo-remainder sequence consists in choosing α is such a way that every r_i is a subresultant polynomial. Surprisingly, the computation of α is very easy (see below). On the other hand the proof of correctness of the algorithm is difficult, because it should take into account all the possibilities for the difference of degrees of two consecutive remainders.

The coefficients in the subresultant pseudo-remainder sequence are rarely much larger than those of the primitive pseudo-remainder sequence. As GCD computations in Z are not needed, the subresultant pseudo-remainder sequence is the pseudo-remainder sequence which gives the most efficient computation.

With the same input as in the preceding sections, the successive remainders are

${\displaystyle -15\,X^{4}+3\,X^{2}-9,}$

${\displaystyle 65\,X^{2}+125\,X-245,}$

${\displaystyle 9326\,X-12300,}$

${\displaystyle 260708.}$

The coefficients have a reasonable size. They are obtained without any GCD computation, only exact divisions. This makes this algorithm more efficient than that of primitive pseudo-remainder sequences.

The algorithm computing the subresultant pseudo-remainder sequence is given below. In this algorithm, the input (a, b) is a pair of polynomials in Z[X]. The r_i are the successive pseudo remainders in Z[X], the variables i and d_i are non negative integers, and the Greek letters denote elements in Z. The functions deg() and rem() denote the degree of a polynomial and the remainder of the Euclidean division. In the algorithm, this remainder is always in Z[X]. Finally the divisions denoted / are always exact and have their result either in Z[X] or in Z.

${\displaystyle r_{0}:=a;\quad r_{1}:=b;\quad i:=1;}$
${\displaystyle d_{1}:=\deg(r_{0})-\deg(r_{1});\quad \gamma _{1}:={\text{lc}}(r_{1});\quad \beta _{1}:=(-1)^{d_{1}+1};\quad \psi _{1}=-1;}$
while ${\displaystyle r_{i}\neq 0}$ do

${\displaystyle r_{i+1}:={\text{rem}}(\gamma ^{d_{i}+1}r_{i-1},r_{i})/\beta _{i};}$

${\displaystyle i:=i+1;}$

${\displaystyle d_{i}:=\deg(r_{i-1})-\deg(r_{i});\quad \gamma _{i}:={\text{lc}}(r_{i});\quad \psi _{i}:=(-\gamma _{i})^{d_{i-1}}/\psi _{i-1}^{d_{i-1}-1};\quad \beta _{i}:=-\gamma _{i-1}\psi _{i}^{d_{i}}}$

end do.

This algorithm computes not only the greatest common divisor (the last non zero r_i), but also all the subresultant polynomials: The remainder r_i is the (deg(r_i-1)-1)-th subresultant polynomial. If deg(r_i)<deg(r_i-1)-1, the deg(r_i)-th subresultant polynomial is lc(r_i)^{deg(r_i-1)-deg(r_i)-1}r_i. All the other subresultant polynomials are null.

Modular GCD algorithm

See also

• List of polynomial topics
• Multivariate division algorithm

References

1. Many author define the Sylvester matrix as the transpose of S. This breaks the usual convention for writing the matrix of a linear map.