github/tlsn
1
1
Fork 0
mirror of https://github.com/tlsnotary/tlsn.git synced 2026-01-10 07:07:57 -05:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #197 from tlsnotary/simplify_decoding

Browse Source 
simplify decoding
This commit is contained in:
Dan
2023-02-22 13:00:40 +00:00
committed by GitHub
parent fb6ed747a6 00eb4adf99
commit fbe3c4d1ee
2 changed files with 34 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
mpc/mpc-core/src/garble/label/encoded.rs
View File

@@ -215,18 +215,26 @@ where
/// Decoding info for garbled circuit wire labels.
/// (Not to be confused with wire ENcoding. A label is an ENcoding of a wire value (0 or 1). Thanks to
/// the point-and-permute technique, a label can be DEcoded back into a wire value just by comparing
/// the Point-and-Permute technique, a label can be DEcoded back into a wire value just by comparing
/// its pointer bit (LSB) to the decoding info as explained below)
///
/// W_1 = W_0 ^ Delta where LSB(Delta) = 1
/// `w` - circuit's wire
/// `W` - active wire label
/// `W_0` - low wire label (it encodes the wire value 0)
/// `W_1` - high wire label (it encodes the wire value 1)
///
/// thus LSB(W_1) = LSB(W_0) ^ LSB(Delta) = LSB(W_0) ^ 1
/// According to the Point-and-Permute technique:
///
/// ---- W_1 = W_0 ^ Delta where LSB(Delta) = 1
///
/// To determine the truth value of a wire label W, we simply compute:
/// ---- thus LSB(W_1) = LSB(W_0) ^ LSB(Delta) = LSB(W_0) ^ 1
///
/// Decode(W) = LSB(W) ^ DecodingInfo(W)
/// We set DecodingInfo(w) to LSB(W_0).
///
/// where DecodingInfo(W) = LSB(W_0).
/// The truth value of an active wire label W is computed:
///
/// `let truth_value = if LSB(W) == DecodingInfo(w) {0} else {1}`
#[derive(Debug, Clone, PartialEq)]
pub struct GroupDecodingInfo<G>
where

30
mpc/mpc-core/src/garble/label/mod.rs
View File

@@ -56,8 +56,8 @@ pub type ActiveOutputSet = EncodedSet<Output, Active>;
/// Global binary offset used by the Free-XOR technique to create wire label
/// pairs where W_1 = W_0 ^ Delta.
///
/// In accordance with the (p&p) permute-and-point technique, the LSB of delta is set to 1 so
/// the permute bit LSB(W_1) = LSB(W_0) ^ 1
/// In accordance with the (p&p) Point-and-Permute technique, the LSB of Delta is set to 1, so that
/// the pointer bit LSB(W_1) = LSB(W_0) ^ 1
#[derive(Debug, Clone, Copy, PartialEq)]
pub struct Delta(Block);
@@ -179,7 +179,7 @@ impl Labels<Full> {
/// Returns label decoding information
pub fn get_decoding(&self) -> Vec<bool> {
self.labels.iter().map(|low| low.permute_bit()).collect()
self.labels.iter().map(|low| low.pointer_bit()).collect()
}
/// Generates labels using the provided RNG.
@@ -241,11 +241,13 @@ impl Labels<Full> {
.iter()
.zip(decoding)
.map(|(label, decoding)| {
// If active label is logic high, flip it
if label.permute_bit() ^ decoding {
label ^ delta
} else {
// We need to collect only the low labels
if label.pointer_bit() == decoding {
// `label` is a low label
label
} else {
// `label` is a high label, convert it to a low label
label ^ delta
}
})
.collect(),
@@ -385,7 +387,15 @@ impl Labels<Active> {
Ok(decoding
.into_iter()
.zip(self.labels.iter())
.map(|(decoding, label)| label.permute_bit() ^ decoding)
.map(|(decoding, label)| {
if label.pointer_bit() == decoding {
// `label` is a low label
false
} else {
// `label` is a high label
true
}
})
.collect())
}
@@ -562,9 +572,9 @@ impl Label {
self.0
}
/// Returns label permute bit from permute-and-point technique
/// Returns label pointer bit from the Point-and-Permute technique
#[inline]
pub fn permute_bit(&self) -> bool {
pub fn pointer_bit(&self) -> bool {
self.0.lsb() == 1
}