| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188 |
- use std::collections::HashMap;
- use crate::{poly::*, params::*, discrete_gaussian::*, gadget::*, arith::*};
- pub struct PublicParameters<'a> {
- v_packing: Vec<PolyMatrixNTT<'a>>, // Ws
- v_expansion_left: Vec<PolyMatrixNTT<'a>>,
- v_expansion_right: Vec<PolyMatrixNTT<'a>>,
- conversion: PolyMatrixNTT<'a>, // V
- }
- impl<'a> PublicParameters<'a> {
- fn init(params: &'a Params) -> Self {
- PublicParameters {
- v_packing: Vec::new(),
- v_expansion_left: Vec::new(),
- v_expansion_right: Vec::new(),
- conversion: PolyMatrixNTT::zero(params, 2, 2 * params.m_conv())
- }
- }
- }
- pub struct Query<'a> {
- ct: PolyMatrixNTT<'a>,
- v_ct: Vec<PolyMatrixNTT<'a>>,
- }
- pub struct Client<'a> {
- params: &'a Params,
- sk_gsw: PolyMatrixRaw<'a>,
- sk_reg: PolyMatrixRaw<'a>,
- sk_gsw_full: PolyMatrixRaw<'a>,
- sk_reg_full: PolyMatrixRaw<'a>,
- dg: DiscreteGaussian,
- }
- fn matrix_with_identity<'a> (p: &PolyMatrixRaw<'a>) -> PolyMatrixRaw<'a> {
- assert_eq!(p.cols, 1);
- let mut r = PolyMatrixRaw::zero(p.params, p.rows, p.rows + 1);
- r.copy_into(p, 0, 0);
- r.copy_into(&PolyMatrixRaw::identity(p.params, p.rows, p.rows), 0, 1);
- r
- }
- impl<'a> Client<'a> {
- pub fn init(params: &'a Params) -> Self {
- let sk_gsw_dims = params.get_sk_gsw();
- let sk_reg_dims = params.get_sk_reg();
- let sk_gsw = PolyMatrixRaw::zero(params, sk_gsw_dims.0, sk_gsw_dims.1);
- let sk_reg = PolyMatrixRaw::zero(params, sk_reg_dims.0, sk_reg_dims.1);
- let sk_gsw_full = matrix_with_identity(&sk_gsw);
- let sk_reg_full = matrix_with_identity(&sk_reg);
- let dg = DiscreteGaussian::init(params);
- Self {
- params,
- sk_gsw,
- sk_reg,
- sk_gsw_full,
- sk_reg_full,
- dg,
- }
- }
- fn get_fresh_gsw_public_key(&mut self, m: usize) -> PolyMatrixRaw<'a> {
- let params = self.params;
- let n = params.n;
- let a = PolyMatrixRaw::random(params, 1, m);
- let e = PolyMatrixRaw::noise(params, n, m, &mut self.dg);
- let a_inv = -&a;
- let b_p = &self.sk_gsw.ntt() * &a.ntt();
- let b = &e.ntt() + &b_p;
- let p = stack(&a_inv, &b.raw());
- p
- }
- fn get_regev_sample(&mut self) -> PolyMatrixNTT<'a> {
- let params = self.params;
- let a = PolyMatrixRaw::random(params, 1, 1);
- let e = PolyMatrixRaw::noise(params, 1, 1, &mut self.dg);
- let b_p = &self.sk_reg.ntt() * &a.ntt();
- let b = &e.ntt() + &b_p;
- let mut p = PolyMatrixNTT::zero(params, 2, 1);
- p.copy_into(&(-&a).ntt(), 0, 0);
- p.copy_into(&b, 1, 0);
- p
- }
- fn get_fresh_reg_public_key(&mut self, m: usize) -> PolyMatrixNTT<'a> {
- let params = self.params;
- let mut p = PolyMatrixNTT::zero(params, 2, m);
- for i in 0..m {
- p.copy_into(&self.get_regev_sample(), 0, i);
- }
- p
- }
- fn encrypt_matrix_gsw(&mut self, ag: PolyMatrixNTT<'a>) -> PolyMatrixNTT<'a> {
- let mx = ag.cols;
- let p = self.get_fresh_gsw_public_key(mx);
- let res = &(p.ntt()) + &(ag.pad_top(1));
- res
- }
-
- fn encrypt_matrix_reg(&mut self, a: PolyMatrixNTT<'a>) -> PolyMatrixNTT<'a> {
- let m = a.cols;
- let p = self.get_fresh_reg_public_key(m);
- &p + &a.pad_top(1)
- }
- fn generate_expansion_params(&mut self, num_exp: usize, m_exp: usize) -> Vec<PolyMatrixNTT<'a>> {
- let params = self.params;
- let g_exp = build_gadget(params, 1, m_exp);
- let g_exp_ntt = g_exp.ntt();
- let mut res = Vec::new();
- for i in 0..num_exp {
- let t = (params.poly_len / (1 << i)) + 1;
- let tau_sk_reg = automorph_alloc(&self.sk_reg, t);
- let prod = &tau_sk_reg.ntt() * &g_exp_ntt;
- let w_exp_i = self.encrypt_matrix_reg(prod);
- res.push(w_exp_i);
- }
- res
- }
- pub fn generate_keys(&mut self) -> PublicParameters {
- let params = self.params;
- self.dg.sample_matrix(&mut self.sk_gsw);
- self.dg.sample_matrix(&mut self.sk_reg);
- self.sk_gsw_full = matrix_with_identity(&self.sk_gsw);
- self.sk_reg_full = matrix_with_identity(&self.sk_reg);
- let sk_reg_ntt = to_ntt_alloc(&self.sk_reg);
- let m_conv = params.m_conv();
- let mut pp = PublicParameters::init(params);
-
- // Params for packing
- let gadget_conv = build_gadget(params, 1, m_conv);
- let gadget_conv_ntt = to_ntt_alloc(&gadget_conv);
- for i in 0..params.n {
- let scaled = scalar_multiply_alloc(&sk_reg_ntt, &gadget_conv_ntt);
- let mut ag = PolyMatrixNTT::zero(params, params.n, m_conv);
- ag.copy_into(&scaled, i, 0);
- let w = self.encrypt_matrix_gsw(ag);
- pp.v_packing.push(w);
- }
- if params.expand_queries {
- // Params for expansion
- let further_dims = 1usize << params.db_dim_2;
- let num_expanded = 1usize << params.db_dim_1;
- let num_bits_to_gen = params.t_gsw * further_dims + num_expanded;
- let g = log2(num_bits_to_gen as u64) as usize;
- let stop_round = log2((params.t_gsw * further_dims) as u64) as usize;
- pp.v_expansion_left = self.generate_expansion_params(g, params.t_exp_left);
- pp.v_expansion_right = self.generate_expansion_params(stop_round + 1, params.t_exp_right);
- // Params for converison
- let g_conv = build_gadget(params, 2, 2 * m_conv);
- let sk_reg_squared_ntt = &self.sk_reg.ntt() * &self.sk_reg.ntt();
- pp.conversion = PolyMatrixNTT::zero(params, 2, 2 * m_conv);
- for i in 0..2*m_conv {
- if i % 2 == 0 {
- let val = g_conv.get_poly(0, i)[0];
- let sigma = &sk_reg_squared_ntt * &single_poly(params, val).ntt();
- let ct = self.encrypt_matrix_reg(sigma);
- pp.conversion.copy_into(&ct, 0, i);
- }
- }
- }
- pp
- }
- // fn generate_query(&self) -> Query<'a> {
- // let params = self.params;
- // let mut query = Query { ct: PolyMatrixNTT::zero(params, 1, 1), v_ct: Vec::new() }
- // if params.expand_queries {
-
- // } else {
- // }
- // }
-
- }
|
