github/MP-SPDZ
1
1
Fork 0
mirror of https://github.com/data61/MP-SPDZ.git synced 2026-04-20 03:01:31 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
MP-SPDZ/Protocols/Spdz2kPrep.hpp
Marcel Keller 9f2a641a94 Protocols with function-dependent preprocessing.
2025-05-30 13:35:02 +10:00

273 lines
8.2 KiB
C++
Raw Permalink Blame History

/*
* Spdz2kPrep.cpp
*
*/
#ifndef PROTOCOLS_SPDZ2KPREP_HPP_
#define PROTOCOLS_SPDZ2KPREP_HPP_
#include "Spdz2kPrep.h"
#include "GC/BitAdder.h"
#include "DabitSacrifice.hpp"
#include "RingOnlyPrep.hpp"
template<class T>
Spdz2kPrep<T>::Spdz2kPrep(SubProcessor<T>* proc, DataPositions& usage) :
BufferPrep<T>(usage),
BitPrep<T>(proc, usage), RingPrep<T>(proc, usage),
MaliciousDabitOnlyPrep<T>(proc, usage),
MaliciousRingPrep<T>(proc, usage),
MascotTriplePrep<T>(proc, usage),
RingOnlyPrep<T>(proc, usage)
{
this->params.amplify = false;
bit_MC = 0;
bit_proc = 0;
bit_prep = 0;
}
template<class T>
Spdz2kPrep<T>::~Spdz2kPrep()
{
if (bit_prep != 0)
{
delete bit_proc;
delete bit_prep;
delete bit_MC;
}
}
template<class T>
void Spdz2kPrep<T>::set_protocol(typename T::Protocol& protocol)
{
OTPrep<T>::set_protocol(protocol);
assert(this->proc != 0);
auto& proc = this->proc;
bit_MC = new typename BitShare::MAC_Check(proc->MC.get_alphai());
// just dummies
bit_pos = DataPositions(proc->P.num_players());
bit_prep = new MascotTriplePrep<BitShare>(bit_proc, bit_pos);
bit_prep->params.amplify = false;
bit_proc = new SubProcessor<BitShare>(*bit_MC, *bit_prep, proc->P);
bit_MC->set_prep(*bit_prep);
}
template<class T>
void MaliciousRingPrep<T>::buffer_bits()
{
CODE_LOCATION
assert(this->proc != 0);
RingPrep<T>::buffer_bits_without_check();
assert(this->protocol != 0);
auto& protocol = *this->protocol;
protocol.init_dotprod();
auto one = T::constant(1, protocol.P.my_num(), this->proc->MC.get_alphai());
GlobalPRNG G(protocol.P);
for (auto& bit : this->bits)
// one of the two is not a zero divisor, so if the product is zero, one of them is too
protocol.prepare_dotprod(one - bit, bit * G.get<typename T::open_type>());
protocol.next_dotprod();
protocol.exchange();
this->proc->MC.CheckFor(0, {protocol.finalize_dotprod(this->bits.size())},
protocol.P);
}
template<class T>
void Spdz2kPrep<T>::buffer_bits()
{
#ifdef SPDZ2K_SIMPLE_BITS
MaliciousRingPrep<T>::buffer_bits();
#else
bits_from_square_in_ring(this->bits, this->buffer_size, bit_prep);
#endif
}
template<class T, class U>
void bits_from_square_in_ring(vector<T>& bits, int buffer_size, U* bit_prep)
{
CODE_LOCATION
buffer_size = BaseMachine::batch_size<T>(DATA_BIT, buffer_size);
typedef typename U::share_type BitShare;
typedef typename BitShare::open_type open_type;
assert(bit_prep != 0);
auto bit_proc = bit_prep->get_proc();
assert(bit_proc != 0);
auto bit_MC = &bit_proc->MC;
vector<BitShare> squares, random_shares;
auto one = BitShare::constant(1, bit_proc->P.my_num(), bit_MC->get_alphai());
BufferScope scope(*bit_prep, buffer_size);
for (int i = 0; i < buffer_size; i++)
{
BitShare a, a2;
bit_prep->get_two(DATA_SQUARE, a, a2);
squares.push_back((a2 + a) * 4 + one);
random_shares.push_back(a * 2 + one);
}
vector<typename BitShare::open_type> opened;
bit_MC->POpen(opened, squares, bit_proc->P);
for (int i = 0; i < buffer_size; i++)
{
auto& root = opened[i];
if (root.get_bit(0) != 1)
throw runtime_error("square not odd");
BitShare tmp = random_shares[i] * open_type(root.sqrRoot().invert()) + one;
bits.push_back(tmp >> 1);
}
bit_MC->Check(bit_proc->P);
}
#ifdef SPDZ2K_BIT
template<class T>
void Spdz2kPrep<T>::get_dabit(T& a, GC::TinySecret<T::s>& b)
{
this->get_one(DATA_BIT, a);
b.resize_regs(1);
b.get_reg(0) = Spdz2kShare<1, T::s>(a);
}
#endif
template<class T>
void Spdz2kPrep<T>::buffer_dabits(ThreadQueues* queues)
{
assert(this->proc != 0);
vector<dabit<T>> check_dabits;
int buffer_size = BaseMachine::batch_size<T>(DATA_DABIT, this->buffer_size);
this->buffer_dabits_from_bits_without_check(check_dabits,
dabit_sacrifice.minimum_n_inputs(buffer_size), queues);
dabit_sacrifice.sacrifice_without_bit_check(this->dabits, check_dabits,
*this->proc, queues);
}
template<class T>
void MascotPrep<T>::buffer_edabits(bool strict, int n_bits,
ThreadQueues* queues)
{
this->buffer_edabits_from_personal(strict, n_bits, queues);
}
template<class T>
void MaliciousRingPrep<T>::buffer_edabits_from_personal(bool strict, int n_bits,
ThreadQueues* queues)
{
buffer_edabits_from_personal<0>(strict, n_bits, queues,
T::clear::characteristic_two);
}
template<class T>
template<int>
void MaliciousRingPrep<T>::buffer_edabits_from_personal(bool, int,
ThreadQueues*, true_type)
{
throw runtime_error("only implemented for integer-like domains");
}
template<class T>
template<int>
void MaliciousRingPrep<T>::buffer_edabits_from_personal(bool strict, int n_bits,
ThreadQueues* queues, false_type)
{
CODE_LOCATION
assert(this->proc != 0);
typedef typename T::bit_type::part_type bit_type;
vector<vector<bit_type>> bits;
vector<T> sums;
bool verbose = OnlineOptions::singleton.has_option("verbose_eda");
Timer timer;
if (verbose)
{
cerr << "Generate edaBits of length " << n_bits << " to sacrifice" << endl;
timer.start();
}
auto &party = GC::ShareThread<typename T::bit_type>::s();
SubProcessor<bit_type> bit_proc(party.MC->get_part_MC(),
this->proc->bit_prep, this->proc->P);
int n_relevant = this->proc->protocol.get_n_relevant_players();
vector<vector<vector<bit_type>>> player_bits(n_bits);
for (int i = 0; i < n_relevant; i++)
{
vector<T> tmp;
vector<vector<bit_type>> tmp_bits;
this->buffer_personal_edabits(n_bits, tmp, tmp_bits, bit_proc,
i, strict, queues);
assert(not tmp.empty());
sums.resize(tmp.size());
for (size_t j = 0; j < tmp.size(); j++)
sums[j] += tmp[j];
for (int j = 0; j < n_bits; j++)
player_bits[j].push_back(tmp_bits[j]);
}
RunningTimer add_timer;
BitAdder().add(bits, player_bits, bit_proc, bit_type::default_length,
queues);
player_bits.clear();
if (verbose)
{
cerr << "Adding edaBits took " << add_timer.elapsed() << " seconds"
<< endl;
cerr << "Done with generating edaBits after " << timer.elapsed()
<< " seconds" << endl;
}
RunningTimer finalize_timer;
vector<edabit<T>> checked;
for (size_t i = 0; i < sums.size(); i++)
{
checked.push_back({sums[i], {}});
int i1 = i / bit_type::default_length;
int i2 = i % bit_type::default_length;
checked.back().second.reserve(bits.at(i1).size());
for (auto& x : bits.at(i1))
checked.back().second.push_back(x.get_bit(i2));
}
sums.clear();
sums.shrink_to_fit();
bits.clear();
bits.shrink_to_fit();
if (strict)
this->template sanitize<0>(checked, n_bits, -1, queues);
auto& output = this->edabits[{strict, n_bits}];
for (auto& x : checked)
{
if (output.empty() or output.back().full())
output.push_back(x);
else
output.back().push_back(x);
}
if (verbose)
cerr << "Finalizing took " << finalize_timer.elapsed() << " seconds" << endl;
}
template<class T>
void MaliciousRingPrep<T>::buffer_edabits(bool strict, int n_bits,
ThreadQueues* queues)
{
CODE_LOCATION
RunningTimer timer;
#ifndef NONPERSONAL_EDA
this->buffer_edabits_from_personal(strict, n_bits, queues);
#else
assert(this->proc != 0);
ShuffleSacrifice<T> shuffle_sacrifice;
typedef typename T::bit_type::part_type bit_type;
vector<vector<bit_type>> bits;
vector<T> sums;
this->buffer_edabits_without_check(n_bits, sums, bits,
shuffle_sacrifice.minimum_n_inputs(), queues);
vector<edabit<T>>& checked = this->edabits[{strict, n_bits}];
shuffle_sacrifice.edabit_sacrifice(checked, sums, bits,
n_bits, *this->proc, strict, -1, queues);
if (strict)
this->sanitize(checked, n_bits, -1, queues);
#endif
#ifdef VERBOSE_EDA
cerr << "Total edaBit generation took " << timer.elapsed() << " seconds" << endl;
#endif
}
#endif
Reference in New Issue View Git Blame Copy Permalink