Accueil Explorer Aide
Connexion
avadapal
/
3p-circuit-oram-prac-repro
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: ac6ea65390
Branches Tags
3p-circuit-o...
/
src
/
subprotocols
/
PermuteTarget.java

PermuteTarget.java 6.3 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249 
  1. package subprotocols;
    2. 

  2. 

  3. import java.math.BigInteger;
    4. 

  4. 

  5. import com.oblivm.backend.gc.GCSignal;
    6. 

  6. 

  7. import communication.Communication;
    8. 

  8. import crypto.Crypto;
    9. 

  9. import exceptions.NoSuchPartyException;
    10. 

  10. import gc.GCUtil;
    11. 

  11. import oram.Forest;
    12. 

  12. import oram.Metadata;
    13. 

  13. import protocols.Protocol;
    14. 

  14. import struct.Party;
    15. 

  15. import util.M;
    16. 

  16. import util.Util;
    17. 

  17. 

  18. public class PermuteTarget extends Protocol {
    19. 

  19. 

  20. 	public PermuteTarget(Communication con1, Communication con2) {
    21. 

  21. 		super(con1, con2);
    22. 

  22. 	}
    23. 

  23. 

  24. 	public void runE(int d, int[] evict_pi, GCSignal[][][] evict_targetOutKeyPairs) {
    25. 

  25. 		timer.start(M.offline_comp);
    26. 

  26. 

  27. 		// PermuteTargetI
    28. 

  28. 		int logD = (int) Math.ceil(Math.log(d) / Math.log(2));
    29. 

  29. 

  30. 		byte[][][] keyT = new byte[d][d][];
    31. 

  31. 		byte[][][] targetT = new byte[d][d][];
    32. 

  32. 		byte[][][] maskT = new byte[d][d][];
    33. 

  33. 

  34. 		for (int i = 0; i < d; i++) {
    35. 

  35. 			for (int j = 0; j < d; j++) {
    36. 

  36. 				GCSignal[] keys = GCUtil.revSelectKeys(evict_targetOutKeyPairs[i], BigInteger.valueOf(j).toByteArray());
    37. 

  37. 				keyT[i][j] = GCUtil.hashAll(keys);
    38. 

  38. 

  39. 				maskT[i][j] = Util.nextBytes((logD + 7) / 8, Crypto.sr);
    40. 

  40. 

  41. 				targetT[i][j] = Util.xor(Util.padArray(BigInteger.valueOf(evict_pi[j]).toByteArray(), (logD + 7) / 8),
    42. 

  42. 						maskT[i][j]);
    43. 

  43. 			}
    44. 

  44. 

  45. 			int[] randPerm = Util.randomPermutation(d, Crypto.sr);
    46. 

  46. 			keyT[i] = Util.permute(keyT[i], randPerm);
    47. 

  47. 			maskT[i] = Util.permute(maskT[i], randPerm);
    48. 

  48. 			targetT[i] = Util.permute(targetT[i], randPerm);
    49. 

  49. 		}
    50. 

  50. 

  51. 		timer.start(M.offline_write);
    52. 

  52. 		con1.write(offline_band, keyT);
    53. 

  53. 		con1.write(offline_band, targetT);
    54. 

  54. 		con2.write(offline_band, maskT);
    55. 

  55. 		timer.stop(M.offline_write);
    56. 

  56. 

  57. 		// PermuteTargetII
    58. 

  58. 		byte[][] p = new byte[d][(logD + 7) / 8];
    59. 

  59. 		byte[][] r = new byte[d][(logD + 7) / 8];
    60. 

  60. 		byte[][] a = new byte[d][];
    61. 

  61. 		for (int i = 0; i < d; i++) {
    62. 

  62. 			Crypto.sr_DE.nextBytes(p[i]);
    63. 

  63. 			Crypto.sr_CE.nextBytes(r[i]);
    64. 

  64. 			a[i] = Util.xor(p[i], r[i]);
    65. 

  65. 		}
    66. 

  66. 		a = Util.permute(a, evict_pi);
    67. 

  67. 

  68. 		timer.start(M.offline_write);
    69. 

  69. 		con1.write(offline_band, a);
    70. 

  70. 		timer.stop(M.offline_write);
    71. 

  71. 

  72. 		timer.stop(M.offline_comp);
    73. 

  73. 	}
    74. 

  74. 

  75. 	public int[] runD(boolean firstTree, GCSignal[][] targetOutKeys) {
    76. 

  76. 		if (firstTree)
    77. 

  77. 			return null;
    78. 

  78. 

  79. 		timer.start(M.offline_comp);
    80. 

  80. 

  81. 		int d = targetOutKeys.length;
    82. 

  82. 		int logD = (int) Math.ceil(Math.log(d) / Math.log(2));
    83. 

  83. 

  84. 		timer.start(M.offline_read);
    85. 

  85. 		// PermuteTargetI
    86. 

  86. 		byte[][][] keyT = con1.readTripleByteArrayAndDec();
    87. 

  87. 		byte[][][] targetT = con1.readTripleByteArrayAndDec();
    88. 

  88. 

  89. 		// PermuteTargetII
    90. 

  90. 		byte[][] a = con1.readDoubleByteArrayAndDec();
    91. 

  91. 		timer.stop(M.offline_read);
    92. 

  92. 

  93. 		byte[][] p = new byte[d][(logD + 7) / 8];
    94. 

  94. 		for (int i = 0; i < d; i++) {
    95. 

  95. 			Crypto.sr_DE.nextBytes(p[i]);
    96. 

  96. 		}
    97. 

  97. 

  98. 		timer.stop(M.offline_comp);
    99. 

  99. 

  100. 		//////////////////////////////////////////////////////////////
    101. 

  101. 

  102. 		timer.start(M.online_comp);
    103. 

  103. 

  104. 		// PermuteTargetI
    105. 

  105. 		int I[] = new int[d];
    106. 

  106. 		byte[][] target = new byte[d][];
    107. 

  107. 

  108. 		for (int i = 0; i < d; i++) {
    109. 

  109. 			byte[] hashKeys = GCUtil.hashAll(targetOutKeys[i]);
    110. 

  110. 			for (int j = 0; j < d; j++) {
    111. 

  111. 				if (Util.equal(hashKeys, keyT[i][j])) {
    112. 

  112. 					I[i] = j;
    113. 

  113. 					target[i] = targetT[i][j];
    114. 

  114. 					break;
    115. 

  115. 				}
    116. 

  116. 			}
    117. 

  117. 		}
    118. 

  118. 

  119. 		// PermuteTargetII
    120. 

  120. 		byte[][] z = Util.xor(target, p);
    121. 

  121. 

  122. 		timer.start(M.online_write);
    123. 

  123. 		con2.write(online_band, z);
    124. 

  124. 		con2.write(online_band, I);
    125. 

  125. 		timer.stop(M.online_write);
    126. 

  126. 

  127. 		timer.start(M.online_read);
    128. 

  128. 		byte[][] g = con2.readDoubleByteArrayAndDec();
    129. 

  129. 		timer.stop(M.online_read);
    130. 

  130. 

  131. 		target = Util.xor(a, g);
    132. 

  132. 

  133. 		int[] target_pp = new int[d];
    134. 

  134. 		for (int i = 0; i < d; i++)
    135. 

  135. 			target_pp[i] = Util.getSubBits(new BigInteger(target[i]), logD, 0).intValue();
    136. 

  136. 

  137. 		timer.stop(M.online_comp);
    138. 

  138. 		return target_pp;
    139. 

  139. 	}
    140. 

  140. 

  141. 	public void runC(boolean firstTree, int d, int[] evict_pi) {
    142. 

  142. 		if (firstTree)
    143. 

  143. 			return;
    144. 

  144. 

  145. 		timer.start(M.offline_comp);
    146. 

  146. 

  147. 		int logD = (int) Math.ceil(Math.log(d) / Math.log(2));
    148. 

  148. 

  149. 		timer.start(M.offline_read);
    150. 

  150. 		// PermuteTargetI
    151. 

  151. 		byte[][][] maskT = con1.readTripleByteArrayAndDec();
    152. 

  152. 		timer.stop(M.offline_read);
    153. 

  153. 

  154. 		// PermuteTargetII
    155. 

  155. 		byte[][] r = new byte[d][(logD + 7) / 8];
    156. 

  156. 		for (int i = 0; i < d; i++) {
    157. 

  157. 			Crypto.sr_CE.nextBytes(r[i]);
    158. 

  158. 		}
    159. 

  159. 

  160. 		timer.stop(M.offline_comp);
    161. 

  161. 

  162. 		//////////////////////////////////////////////////////////////
    163. 

  163. 

  164. 		timer.start(M.online_comp);
    165. 

  165. 

  166. 		// PermuteTargetII
    167. 

  167. 		timer.start(M.online_read);
    168. 

  168. 		byte[][] z = con2.readDoubleByteArrayAndDec();
    169. 

  169. 		int[] I = con2.readIntArrayAndDec();
    170. 

  170. 		timer.stop(M.online_read);
    171. 

  171. 

  172. 		byte[][] mk = new byte[z.length][];
    173. 

  173. 		for (int i = 0; i < mk.length; i++) {
    174. 

  174. 			mk[i] = Util.xor(maskT[i][I[i]], z[i]);
    175. 

  175. 			mk[i] = Util.xor(r[i], mk[i]);
    176. 

  176. 		}
    177. 

  177. 		byte[][] g = Util.permute(mk, evict_pi);
    178. 

  178. 

  179. 		timer.start(M.online_write);
    180. 

  180. 		con2.write(online_band, g);
    181. 

  181. 		timer.stop(M.online_write);
    182. 

  182. 

  183. 		timer.stop(M.online_comp);
    184. 

  184. 	}
    185. 

  185. 

  186. 	@Override
    187. 

  187. 	public void run(Party party, Metadata md, Forest[] forest) {
    188. 

  188. 

  189. 		for (int i = 0; i < 100; i++) {
    190. 

  190. 

  191. 			System.out.println("i=" + i);
    192. 

  192. 

  193. 			if (party == Party.Eddie) {
    194. 

  194. 				int d = Crypto.sr.nextInt(20) + 5;
    195. 

  195. 				int logD = (int) Math.ceil(Math.log(d) / Math.log(2));
    196. 

  196. 				int[] target = Util.randomPermutation(d, Crypto.sr);
    197. 

  197. 

  198. 				int[] evict_pi = Util.randomPermutation(d, Crypto.sr);
    199. 

  199. 				GCSignal[][][] evict_targetOutKeyPairs = new GCSignal[d][][];
    200. 

  200. 				GCSignal[][] targetOutKeys = new GCSignal[d][];
    201. 

  201. 				for (int j = 0; j < d; j++) {
    202. 

  202. 					evict_targetOutKeyPairs[j] = GCUtil.genKeyPairs(logD);
    203. 

  203. 					targetOutKeys[j] = GCUtil.revSelectKeys(evict_targetOutKeyPairs[j],
    204. 

  204. 							BigInteger.valueOf(target[j]).toByteArray());
    205. 

  205. 				}
    206. 

  206. 

  207. 				con1.write(targetOutKeys);
    208. 

  208. 				con2.write(d);
    209. 

  209. 				con2.write(evict_pi);
    210. 

  210. 

  211. 				runE(d, evict_pi, evict_targetOutKeyPairs);
    212. 

  212. 

  213. 				int[] target_pp = con1.readIntArray();
    214. 

  214. 				int[] pi_ivs = Util.inversePermutation(evict_pi);
    215. 

  215. 				int[] piTargetPiIvs = new int[d];
    216. 

  216. 

  217. 				int j = 0;
    218. 

  218. 				for (; j < d; j++) {
    219. 

  219. 					piTargetPiIvs[j] = evict_pi[target[pi_ivs[j]]];
    220. 

  220. 					if (piTargetPiIvs[j] != target_pp[j]) {
    221. 

  221. 						System.err.println("PermuteTarget test failed");
    222. 

  222. 						break;
    223. 

  223. 					}
    224. 

  224. 				}
    225. 

  225. 				if (j == d)
    226. 

  226. 					System.out.println("PermuteTarget test passed");
    227. 

  227. 

  228. 			} else if (party == Party.Debbie) {
    229. 

  229. 				GCSignal[][] targetOutKeys = con1.readDoubleGCSignalArray();
    230. 

  230. 

  231. 				int[] target_pp = runD(false, targetOutKeys);
    232. 

  232. 				con1.write(target_pp);
    233. 

  233. 

  234. 			} else if (party == Party.Charlie) {
    235. 

  235. 				int d = con1.readInt();
    236. 

  236. 				int[] evict_pi = con1.readIntArray();
    237. 

  237. 

  238. 				runC(false, d, evict_pi);
    239. 

  239. 

  240. 			} else {
    241. 

  241. 				throw new NoSuchPartyException(party + "");
    242. 

  242. 			}
    243. 

  243. 		}
    244. 

  244. 	}
    245. 

  245. 

  246. 	@Override
    247. 

  247. 	public void run(Party party, Metadata md, Forest forest) {
    248. 

  248. 	}
    249. 

  249. }
    250.