arnaucube/poulpy
1
0
Fork 0
mirror of https://github.com/arnaucube/poulpy.git synced 2026-02-10 05:06:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Some traits updates + added missing tests for products on RGSWCt

Browse Source
This commit is contained in:
Jean-Philippe Bossuat
2025-05-12 14:40:17 +02:00
parent e38ca404f9
commit d8a7d6cdaf
9 changed files with 2295 additions and 1914 deletions
Download Patch File Download Diff File Expand all files Collapse all files

150
core/src/elem.rs
View File

@@ -66,92 +66,88 @@ pub trait SetRow<B: Backend> {
VecZnxDft<A, B>: VecZnxDftToRef<B>; VecZnxDft<A, B>: VecZnxDftToRef<B>;
} }
pub trait ProdByScratchSpace { pub trait ProdInplaceScratchSpace {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize; fn prod_by_grlwe_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize;
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize; fn prod_by_rgsw_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize;
} }
pub trait ProdBy<D> { pub trait ProdInplace<MUT, REF>
fn prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch)
where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>;
fn prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch)
where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>;
}
pub trait FromProdByScratchSpace {
fn from_prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize;
fn from_prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize;
}
pub trait FromProdBy<D, L> {
fn from_prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, lhs: &L, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch)
where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>;
fn from_prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, lhs: &L, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch)
where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>;
}
pub(crate) trait MatZnxDftProducts<D, C>: Infos
where where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos, MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn mul_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, a: &RLWECt<A>, scratch: &mut Scratch) fn prod_by_grlwe_inplace(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch);
where fn prod_by_rgsw_inplace(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch);
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>, }
VecZnx<R>: VecZnxToMut,
VecZnx<A>: VecZnxToRef;
fn mul_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, grlwe_size: usize) -> usize; pub trait ProdScratchSpace {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize;
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize;
}
fn mul_rlwe_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize { pub trait Product<MUT, REF>
Self::mul_rlwe_scratch_space(module, res_size, res_size, mat_size) where
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{
type Lhs;
fn prod_by_grlwe(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch);
fn prod_by_rgsw(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch);
}
pub(crate) trait MatRLWEProductScratchSpace {
fn prod_with_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, grlwe_size: usize) -> usize;
fn prod_with_rlwe_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize {
Self::prod_with_rlwe_scratch_space(module, res_size, res_size, mat_size)
} }
fn mul_rlwe_dft_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, mat_size: usize) -> usize { fn prod_with_rlwe_dft_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, mat_size: usize) -> usize {
(Self::mul_rlwe_scratch_space(module, res_size, a_size, mat_size) | module.vec_znx_idft_tmp_bytes()) (Self::prod_with_rlwe_scratch_space(module, res_size, a_size, mat_size) | module.vec_znx_idft_tmp_bytes())
+ module.bytes_of_vec_znx(2, a_size) + module.bytes_of_vec_znx(2, a_size)
+ module.bytes_of_vec_znx(2, res_size) + module.bytes_of_vec_znx(2, res_size)
} }
fn mul_rlwe_dft_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize { fn prod_with_rlwe_dft_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize {
(Self::mul_rlwe_inplace_scratch_space(module, res_size, mat_size) | module.vec_znx_idft_tmp_bytes()) (Self::prod_with_rlwe_inplace_scratch_space(module, res_size, mat_size) | module.vec_znx_idft_tmp_bytes())
+ module.bytes_of_vec_znx(2, res_size) + module.bytes_of_vec_znx(2, res_size)
} }
fn mul_mat_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, mat_size: usize) -> usize { fn prod_with_mat_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, mat_size: usize) -> usize {
Self::mul_rlwe_dft_inplace_scratch_space(module, res_size, mat_size) + module.bytes_of_vec_znx_dft(2, a_size) Self::prod_with_rlwe_dft_scratch_space(module, res_size, a_size, mat_size)
+ module.bytes_of_vec_znx_dft(2, a_size)
+ module.bytes_of_vec_znx_dft(2, res_size)
} }
fn mul_mat_rlwe_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize { fn prod_with_mat_rlwe_inplace_scratch_space(module: &Module<FFT64>, res_size: usize, mat_size: usize) -> usize {
Self::mul_rlwe_dft_inplace_scratch_space(module, res_size, mat_size) + module.bytes_of_vec_znx_dft(2, res_size) Self::prod_with_rlwe_dft_inplace_scratch_space(module, res_size, mat_size) + module.bytes_of_vec_znx_dft(2, res_size)
} }
}
fn mul_rlwe_inplace<R>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, scratch: &mut Scratch) pub(crate) trait MatRLWEProduct: Infos {
fn prod_with_rlwe<MUT, REF>(&self, module: &Module<FFT64>, res: &mut RLWECt<MUT>, a: &RLWECt<REF>, scratch: &mut Scratch)
where where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos, VecZnx<MUT>: VecZnxToMut,
VecZnx<R>: VecZnxToMut + VecZnxToRef, VecZnx<REF>: VecZnxToRef;
fn prod_with_rlwe_inplace<MUT>(&self, module: &Module<FFT64>, res: &mut RLWECt<MUT>, scratch: &mut Scratch)
where
VecZnx<MUT>: VecZnxToMut + VecZnxToRef,
{ {
unsafe { unsafe {
let res_ptr: *mut RLWECt<R> = res as *mut RLWECt<R>; // This is ok because [Self::mul_rlwe] only updates res at the end. let res_ptr: *mut RLWECt<MUT> = res as *mut RLWECt<MUT>; // This is ok because [Self::mul_rlwe] only updates res at the end.
self.mul_rlwe(&module, &mut *res_ptr, &*res_ptr, scratch); self.prod_with_rlwe(&module, &mut *res_ptr, &*res_ptr, scratch);
} }
} }
fn mul_rlwe_dft<R, A>( fn prod_with_rlwe_dft<MUT, REF>(
&self, &self,
module: &Module<FFT64>, module: &Module<FFT64>,
res: &mut RLWECtDft<R, FFT64>, res: &mut RLWECtDft<MUT, FFT64>,
a: &RLWECtDft<A, FFT64>, a: &RLWECtDft<REF, FFT64>,
scratch: &mut Scratch, scratch: &mut Scratch,
) where ) where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos, VecZnxDft<MUT, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64> + ZnxInfos,
VecZnxDft<R, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64> + ZnxInfos, VecZnxDft<REF, FFT64>: VecZnxDftToRef<FFT64> + ZnxInfos,
VecZnxDft<A, FFT64>: VecZnxDftToRef<FFT64> + ZnxInfos,
{ {
let log_base2k: usize = self.log_base2k(); let log_base2k: usize = self.log_base2k();
@@ -180,15 +176,15 @@ where
log_k: res.log_k(), log_k: res.log_k(),
}; };
self.mul_rlwe(module, &mut res_idft, &a_idft, scratch_2); self.prod_with_rlwe(module, &mut res_idft, &a_idft, scratch_2);
module.vec_znx_dft(res, 0, &res_idft, 0); module.vec_znx_dft(res, 0, &res_idft, 0);
module.vec_znx_dft(res, 1, &res_idft, 1); module.vec_znx_dft(res, 1, &res_idft, 1);
} }
fn mul_rlwe_dft_inplace<R>(&self, module: &Module<FFT64>, res: &mut RLWECtDft<R, FFT64>, scratch: &mut Scratch) fn prod_with_rlwe_dft_inplace<MUT>(&self, module: &Module<FFT64>, res: &mut RLWECtDft<MUT, FFT64>, scratch: &mut Scratch)
where where
VecZnxDft<R, FFT64>: VecZnxDftToRef<FFT64> + VecZnxDftToMut<FFT64>, VecZnxDft<MUT, FFT64>: VecZnxDftToRef<FFT64> + VecZnxDftToMut<FFT64>,
{ {
let log_base2k: usize = self.log_base2k(); let log_base2k: usize = self.log_base2k();
@@ -209,47 +205,55 @@ where
res.idft(module, &mut res_idft, scratch_1); res.idft(module, &mut res_idft, scratch_1);
self.mul_rlwe_inplace(module, &mut res_idft, scratch_1); self.prod_with_rlwe_inplace(module, &mut res_idft, scratch_1);
module.vec_znx_dft(res, 0, &res_idft, 0); module.vec_znx_dft(res, 0, &res_idft, 0);
module.vec_znx_dft(res, 1, &res_idft, 1); module.vec_znx_dft(res, 1, &res_idft, 1);
} }
fn mul_mat_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut R, a: &A, scratch: &mut Scratch) fn prod_with_mat_rlwe<RES, LHS>(&self, module: &Module<FFT64>, res: &mut RES, a: &LHS, scratch: &mut Scratch)
where where
A: GetRow<FFT64> + Infos, LHS: GetRow<FFT64> + Infos,
R: SetRow<FFT64> + Infos, RES: SetRow<FFT64> + Infos,
{ {
let (tmp_row_data, scratch1) = scratch.tmp_vec_znx_dft(module, 2, a.size()); let (tmp_row_data, scratch1) = scratch.tmp_vec_znx_dft(module, 2, a.size());
let mut tmp_row: RLWECtDft<&mut [u8], FFT64> = RLWECtDft::<&mut [u8], FFT64> { let mut tmp_a_row: RLWECtDft<&mut [u8], FFT64> = RLWECtDft::<&mut [u8], FFT64> {
data: tmp_row_data, data: tmp_row_data,
log_base2k: a.log_base2k(), log_base2k: a.log_base2k(),
log_k: a.log_k(), log_k: a.log_k(),
}; };
let (tmp_res_data, scratch2) = scratch1.tmp_vec_znx_dft(module, 2, res.size());
let mut tmp_res_row: RLWECtDft<&mut [u8], FFT64> = RLWECtDft::<&mut [u8], FFT64> {
data: tmp_res_data,
log_base2k: res.log_base2k(),
log_k: res.log_k(),
};
let min_rows: usize = res.rows().min(a.rows()); let min_rows: usize = res.rows().min(a.rows());
(0..res.rows()).for_each(|row_i| { (0..res.rows()).for_each(|row_i| {
(0..res.cols()).for_each(|col_j| { (0..res.cols()).for_each(|col_j| {
a.get_row(module, row_i, col_j, &mut tmp_row); a.get_row(module, row_i, col_j, &mut tmp_a_row);
self.mul_rlwe_dft_inplace(module, &mut tmp_row, scratch1); self.prod_with_rlwe_dft(module, &mut tmp_res_row, &tmp_a_row, scratch2);
res.set_row(module, row_i, col_j, &tmp_row); res.set_row(module, row_i, col_j, &tmp_res_row);
}); });
}); });
tmp_row.data.zero(); tmp_res_row.data.zero();
(min_rows..res.rows()).for_each(|row_i| { (min_rows..res.rows()).for_each(|row_i| {
(0..self.cols()).for_each(|col_j| { (0..self.cols()).for_each(|col_j| {
res.set_row(module, row_i, col_j, &tmp_row); res.set_row(module, row_i, col_j, &tmp_res_row);
}); });
}); });
} }
fn mul_mat_rlwe_inplace<R>(&self, module: &Module<FFT64>, res: &mut R, scratch: &mut Scratch) fn prod_with_mat_rlwe_inplace<RES>(&self, module: &Module<FFT64>, res: &mut RES, scratch: &mut Scratch)
where where
R: GetRow<FFT64> + SetRow<FFT64> + Infos, RES: GetRow<FFT64> + SetRow<FFT64> + Infos,
{ {
let (tmp_row_data, scratch1) = scratch.tmp_vec_znx_dft(module, 2, res.size()); let (tmp_row_data, scratch1) = scratch.tmp_vec_znx_dft(module, 2, res.size());
@@ -262,7 +266,7 @@ where
(0..res.rows()).for_each(|row_i| { (0..res.rows()).for_each(|row_i| {
(0..res.cols()).for_each(|col_j| { (0..res.cols()).for_each(|col_j| {
res.get_row(module, row_i, col_j, &mut tmp_row); res.get_row(module, row_i, col_j, &mut tmp_row);
self.mul_rlwe_dft_inplace(module, &mut tmp_row, scratch1); self.prod_with_rlwe_dft_inplace(module, &mut tmp_row, scratch1);
res.set_row(module, row_i, col_j, &tmp_row); res.set_row(module, row_i, col_j, &tmp_row);
}); });
}); });

108
core/src/grlwe.rs
View File

@@ -7,7 +7,10 @@ use base2k::{
use sampling::source::Source; use sampling::source::Source;
use crate::{ use crate::{
elem::{FromProdBy, FromProdByScratchSpace, GetRow, Infos, MatZnxDftProducts, ProdBy, ProdByScratchSpace, SetRow}, elem::{
GetRow, Infos, MatRLWEProduct, MatRLWEProductScratchSpace, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace,
Product, SetRow,
},
keys::SecretKeyDft, keys::SecretKeyDft,
rgsw::RGSWCt, rgsw::RGSWCt,
rlwe::{RLWECt, RLWECtDft, RLWEPt}, rlwe::{RLWECt, RLWECtDft, RLWEPt},
@@ -30,18 +33,6 @@ impl<B: Backend> GRLWECt<Vec<u8>, B> {
} }
} }
impl<C> GRLWECt<C, FFT64>
where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>,
{
pub fn get_row<R>(&self, module: &Module<FFT64>, row_i: usize, res: &mut RLWECtDft<R, FFT64>)
where
VecZnxDft<R, FFT64>: VecZnxDftToMut<FFT64>,
{
module.vmp_extract_row(res, self, row_i, 0);
}
}
impl<T, B: Backend> Infos for GRLWECt<T, B> { impl<T, B: Backend> Infos for GRLWECt<T, B> {
type Inner = MatZnxDft<T, B>; type Inner = MatZnxDft<T, B>;
@@ -202,18 +193,20 @@ where
} }
} }
impl<C> MatZnxDftProducts<GRLWECt<C, FFT64>, C> for GRLWECt<C, FFT64> impl MatRLWEProductScratchSpace for GRLWECt<Vec<u8>, FFT64> {
where fn prod_with_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, grlwe_size: usize) -> usize {
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos,
{
fn mul_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, grlwe_size: usize) -> usize {
module.bytes_of_vec_znx_dft(2, grlwe_size) module.bytes_of_vec_znx_dft(2, grlwe_size)
+ (module.vec_znx_big_normalize_tmp_bytes() + (module.vec_znx_big_normalize_tmp_bytes()
| (module.vmp_apply_tmp_bytes(res_size, a_size, a_size, 1, 2, grlwe_size) | (module.vmp_apply_tmp_bytes(res_size, a_size, a_size, 1, 2, grlwe_size)
+ module.bytes_of_vec_znx_dft(1, a_size))) + module.bytes_of_vec_znx_dft(1, a_size)))
} }
}
fn mul_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, a: &RLWECt<A>, scratch: &mut Scratch) impl<C> MatRLWEProduct for GRLWECt<C, FFT64>
where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos,
{
fn prod_with_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, a: &RLWECt<A>, scratch: &mut Scratch)
where where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>, MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>,
VecZnx<R>: VecZnxToMut, VecZnx<R>: VecZnxToMut,
@@ -247,79 +240,52 @@ where
} }
} }
impl ProdByScratchSpace for GRLWECt<Vec<u8>, FFT64> { impl ProdInplaceScratchSpace for GRLWECt<Vec<u8>, FFT64> {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_inplace_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_inplace_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
} }
impl FromProdByScratchSpace for GRLWECt<Vec<u8>, FFT64> { impl ProdScratchSpace for GRLWECt<Vec<u8>, FFT64> {
fn from_prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
fn from_prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
} }
impl<MUT> ProdBy<GRLWECt<MUT, FFT64>> for GRLWECt<MUT, FFT64> impl<MUT, REF> ProdInplace<MUT, REF> for GRLWECt<MUT, FFT64>
where where
GRLWECt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos, GRLWECt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch) fn prod_by_grlwe_inplace(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_mat_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe_inplace(module, self, scratch);
} }
fn prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch) fn prod_by_rgsw_inplace(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_mat_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe_inplace(module, self, scratch);
} }
} }
impl<MUT, REF> FromProdBy<GRLWECt<MUT, FFT64>, GRLWECt<REF, FFT64>> for GRLWECt<MUT, FFT64> impl<MUT, REF> Product<MUT, REF> for GRLWECt<MUT, FFT64>
where where
GRLWECt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos, MatZnxDft<MUT, FFT64>: MatZnxDftToRef<FFT64> + MatZnxDftToMut<FFT64>,
GRLWECt<REF, FFT64>: GetRow<FFT64> + Infos, MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn from_prod_by_grlwe<R>( type Lhs = GRLWECt<REF, FFT64>;
&mut self,
module: &Module<FFT64>, fn prod_by_grlwe(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
lhs: &GRLWECt<REF, FFT64>, rhs.prod_with_mat_rlwe(module, self, lhs, scratch);
rhs: &GRLWECt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe(module, self, lhs, scratch);
} }
fn from_prod_by_rgsw<R>( fn prod_by_rgsw(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
&mut self, rhs.prod_with_mat_rlwe(module, self, lhs, scratch);
module: &Module<FFT64>,
lhs: &GRLWECt<REF, FFT64>,
rhs: &RGSWCt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe(module, self, lhs, scratch);
} }
} }

1
core/src/lib.rs
View File

@@ -3,5 +3,6 @@ pub mod grlwe;
pub mod keys; pub mod keys;
pub mod rgsw; pub mod rgsw;
pub mod rlwe; pub mod rlwe;
#[cfg(test)]
mod test_fft64; mod test_fft64;
mod utils; mod utils;

96
core/src/rgsw.rs
View File

@@ -7,7 +7,10 @@ use base2k::{
use sampling::source::Source; use sampling::source::Source;
use crate::{ use crate::{
elem::{FromProdBy, FromProdByScratchSpace, GetRow, Infos, MatZnxDftProducts, ProdBy, ProdByScratchSpace, SetRow}, elem::{
GetRow, Infos, MatRLWEProduct, MatRLWEProductScratchSpace, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace,
Product, SetRow,
},
grlwe::GRLWECt, grlwe::GRLWECt,
keys::SecretKeyDft, keys::SecretKeyDft,
rlwe::{RLWECt, RLWECtDft, RLWEPt, encrypt_rlwe_sk}, rlwe::{RLWECt, RLWECtDft, RLWEPt, encrypt_rlwe_sk},
@@ -184,17 +187,19 @@ where
} }
} }
impl<C> MatZnxDftProducts<RGSWCt<C, FFT64>, C> for RGSWCt<C, FFT64> impl MatRLWEProductScratchSpace for RGSWCt<Vec<u8>, FFT64> {
where fn prod_with_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, rgsw_size: usize) -> usize {
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos,
{
fn mul_rlwe_scratch_space(module: &Module<FFT64>, res_size: usize, a_size: usize, rgsw_size: usize) -> usize {
module.bytes_of_vec_znx_dft(2, rgsw_size) module.bytes_of_vec_znx_dft(2, rgsw_size)
+ ((module.bytes_of_vec_znx_dft(2, a_size) + module.vmp_apply_tmp_bytes(res_size, a_size, a_size, 2, 2, rgsw_size)) + ((module.bytes_of_vec_znx_dft(2, a_size) + module.vmp_apply_tmp_bytes(res_size, a_size, a_size, 2, 2, rgsw_size))
| module.vec_znx_big_normalize_tmp_bytes()) | module.vec_znx_big_normalize_tmp_bytes())
} }
}
fn mul_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, a: &RLWECt<A>, scratch: &mut Scratch) impl<C> MatRLWEProduct for RGSWCt<C, FFT64>
where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64> + ZnxInfos,
{
fn prod_with_rlwe<R, A>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, a: &RLWECt<A>, scratch: &mut Scratch)
where where
MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>, MatZnxDft<C, FFT64>: MatZnxDftToRef<FFT64>,
VecZnx<R>: VecZnxToMut, VecZnx<R>: VecZnxToMut,
@@ -227,79 +232,52 @@ where
} }
} }
impl ProdByScratchSpace for RGSWCt<Vec<u8>, FFT64> { impl ProdInplaceScratchSpace for RGSWCt<Vec<u8>, FFT64> {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_inplace_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_inplace_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
} }
impl FromProdByScratchSpace for RGSWCt<Vec<u8>, FFT64> { impl ProdScratchSpace for RGSWCt<Vec<u8>, FFT64> {
fn from_prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
fn from_prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_mat_rlwe_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_mat_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
} }
impl<MUT> ProdBy<RGSWCt<MUT, FFT64>> for RGSWCt<MUT, FFT64> impl<MUT, REF> ProdInplace<MUT, REF> for RGSWCt<MUT, FFT64>
where where
RGSWCt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos, RGSWCt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch) fn prod_by_grlwe_inplace(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_mat_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe_inplace(module, self, scratch);
} }
fn prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch) fn prod_by_rgsw_inplace(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_mat_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe_inplace(module, self, scratch);
} }
} }
impl<MUT, REF> FromProdBy<RGSWCt<MUT, FFT64>, RGSWCt<REF, FFT64>> for RGSWCt<MUT, FFT64> impl<MUT, REF> Product<MUT, REF> for RGSWCt<MUT, FFT64>
where where
RGSWCt<MUT, FFT64>: GetRow<FFT64> + SetRow<FFT64> + Infos, MatZnxDft<MUT, FFT64>: MatZnxDftToRef<FFT64> + MatZnxDftToMut<FFT64>,
RGSWCt<REF, FFT64>: GetRow<FFT64> + Infos, MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn from_prod_by_grlwe<R>( type Lhs = RGSWCt<REF, FFT64>;
&mut self,
module: &Module<FFT64>, fn prod_by_grlwe(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
lhs: &RGSWCt<REF, FFT64>, rhs.prod_with_mat_rlwe(module, self, lhs, scratch);
rhs: &GRLWECt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe(module, self, lhs, scratch);
} }
fn from_prod_by_rgsw<R>( fn prod_by_rgsw(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
&mut self, rhs.prod_with_mat_rlwe(module, self, lhs, scratch);
module: &Module<FFT64>,
lhs: &RGSWCt<REF, FFT64>,
rhs: &RGSWCt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_mat_rlwe(module, self, lhs, scratch);
} }
} }

148
core/src/rlwe.rs
View File

@@ -6,7 +6,7 @@ use base2k::{
use sampling::source::Source; use sampling::source::Source;
use crate::{ use crate::{
elem::{FromProdBy, FromProdByScratchSpace, Infos, MatZnxDftProducts, ProdBy, ProdByScratchSpace}, elem::{Infos, MatRLWEProduct, MatRLWEProductScratchSpace, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace, Product},
grlwe::GRLWECt, grlwe::GRLWECt,
keys::{PublicKey, SecretDistribution, SecretKeyDft}, keys::{PublicKey, SecretDistribution, SecretKeyDft},
rgsw::RGSWCt, rgsw::RGSWCt,
@@ -84,70 +84,54 @@ where
} }
} }
impl ProdByScratchSpace for RLWECt<Vec<u8>> { impl ProdInplaceScratchSpace for RLWECt<Vec<u8>> {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_inplace_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_inplace_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
} }
impl FromProdByScratchSpace for RLWECt<Vec<u8>> { impl ProdScratchSpace for RLWECt<Vec<u8>> {
fn from_prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
fn from_prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
} }
impl<MUT> ProdBy<RLWECt<MUT>> for RLWECt<MUT> impl<MUT, REF> ProdInplace<MUT, REF> for RLWECt<MUT>
where where
VecZnx<MUT>: VecZnxToMut + VecZnxToRef, VecZnx<MUT>: VecZnxToMut + VecZnxToRef,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch) fn prod_by_grlwe_inplace(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_inplace(module, self, scratch);
} }
fn prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch) fn prod_by_rgsw_inplace(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_rlwe_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_inplace(module, self, scratch);
} }
} }
impl<MUT, REF> FromProdBy<RLWECt<MUT>, RLWECt<REF>> for RLWECt<MUT> impl<MUT, REF> Product<MUT, REF> for RLWECt<MUT>
where where
VecZnx<MUT>: VecZnxToMut + VecZnxToRef, VecZnx<MUT>: VecZnxToMut + VecZnxToRef,
VecZnx<REF>: VecZnxToRef, VecZnx<REF>: VecZnxToRef,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn from_prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, lhs: &RLWECt<REF>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch) type Lhs = RLWECt<REF>;
where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>, fn prod_by_grlwe(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
{ rhs.prod_with_rlwe(module, self, lhs, scratch);
rhs.mul_rlwe(module, self, lhs, scratch);
} }
fn from_prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, lhs: &RLWECt<REF>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch) fn prod_by_rgsw(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_rlwe(module, self, lhs, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe(module, self, lhs, scratch);
} }
} }
@@ -496,7 +480,7 @@ where
impl<C> RLWECtDft<C, FFT64> impl<C> RLWECtDft<C, FFT64>
where where
VecZnxDft<C, FFT64>: VecZnxDftToRef<FFT64>, RLWECtDft<C, FFT64>: VecZnxDftToRef<FFT64>,
{ {
#[allow(dead_code)] #[allow(dead_code)]
pub(crate) fn idft_scratch_space(module: &Module<FFT64>, size: usize) -> usize { pub(crate) fn idft_scratch_space(module: &Module<FFT64>, size: usize) -> usize {
@@ -505,7 +489,7 @@ where
pub(crate) fn idft<R>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, scratch: &mut Scratch) pub(crate) fn idft<R>(&self, module: &Module<FFT64>, res: &mut RLWECt<R>, scratch: &mut Scratch)
where where
VecZnx<R>: VecZnxToMut, RLWECt<R>: VecZnxToMut,
{ {
#[cfg(debug_assertions)] #[cfg(debug_assertions)]
{ {
@@ -518,8 +502,8 @@ where
let (mut res_big, scratch1) = scratch.tmp_vec_znx_big(module, 2, min_size); let (mut res_big, scratch1) = scratch.tmp_vec_znx_big(module, 2, min_size);
module.vec_znx_idft(&mut res_big, 0, &self.data, 0, scratch1); module.vec_znx_idft(&mut res_big, 0, self, 0, scratch1);
module.vec_znx_idft(&mut res_big, 1, &self.data, 1, scratch1); module.vec_znx_idft(&mut res_big, 1, self, 1, scratch1);
module.vec_znx_big_normalize(self.log_base2k(), res, 0, &res_big, 0, scratch1); module.vec_znx_big_normalize(self.log_base2k(), res, 0, &res_big, 0, scratch1);
module.vec_znx_big_normalize(self.log_base2k(), res, 1, &res_big, 1, scratch1); module.vec_znx_big_normalize(self.log_base2k(), res, 1, &res_big, 1, scratch1);
} }
@@ -665,79 +649,53 @@ impl<C> RLWECtDft<C, FFT64> {
} }
} }
impl ProdByScratchSpace for RLWECtDft<Vec<u8>, FFT64> { impl ProdInplaceScratchSpace for RLWECtDft<Vec<u8>, FFT64> {
fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_dft_inplace_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_dft_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_inplace_scratch_space(module: &Module<FFT64>, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_dft_inplace_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_dft_inplace_scratch_space(module, lhs, rhs)
module, lhs, rhs,
)
} }
} }
impl FromProdByScratchSpace for RLWECtDft<Vec<u8>, FFT64> { impl ProdScratchSpace for RLWECtDft<Vec<u8>, FFT64> {
fn from_prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_grlwe_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<GRLWECt<Vec<u8>, FFT64> as MatZnxDftProducts<GRLWECt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_dft_scratch_space( <GRLWECt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_dft_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
fn from_prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize { fn prod_by_rgsw_scratch_space(module: &Module<FFT64>, res_size: usize, lhs: usize, rhs: usize) -> usize {
<RGSWCt<Vec<u8>, FFT64> as MatZnxDftProducts<RGSWCt<Vec<u8>, FFT64>, Vec<u8>>>::mul_rlwe_dft_scratch_space( <RGSWCt<Vec<u8>, FFT64> as MatRLWEProductScratchSpace>::prod_with_rlwe_dft_scratch_space(module, res_size, lhs, rhs)
module, res_size, lhs, rhs,
)
} }
} }
impl<MUT> ProdBy<RLWECtDft<MUT, FFT64>> for RLWECtDft<MUT, FFT64> impl<MUT, REF> ProdInplace<MUT, REF> for RLWECtDft<MUT, FFT64>
where where
VecZnxDft<MUT, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64>, VecZnxDft<MUT, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64>,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn prod_by_grlwe<R>(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<R, FFT64>, scratch: &mut Scratch) fn prod_by_grlwe_inplace(&mut self, module: &Module<FFT64>, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_rlwe_dft_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_dft_inplace(module, self, scratch);
} }
fn prod_by_rgsw<R>(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<R, FFT64>, scratch: &mut Scratch) fn prod_by_rgsw_inplace(&mut self, module: &Module<FFT64>, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
where rhs.prod_with_rlwe_dft_inplace(module, self, scratch);
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_dft_inplace(module, self, scratch);
} }
} }
impl<MUT, REF> FromProdBy<RLWECtDft<MUT, FFT64>, RLWECtDft<REF, FFT64>> for RLWECtDft<MUT, FFT64> impl<MUT, REF> Product<MUT, REF> for RLWECtDft<MUT, FFT64>
where where
VecZnxDft<MUT, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64>, VecZnxDft<MUT, FFT64>: VecZnxDftToMut<FFT64> + VecZnxDftToRef<FFT64>,
VecZnxDft<REF, FFT64>: VecZnxDftToRef<FFT64>, VecZnxDft<REF, FFT64>: VecZnxDftToRef<FFT64>,
MatZnxDft<REF, FFT64>: MatZnxDftToRef<FFT64>,
{ {
fn from_prod_by_grlwe<R>( type Lhs = RLWECtDft<REF, FFT64>;
&mut self,
module: &Module<FFT64>, fn prod_by_grlwe(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &GRLWECt<REF, FFT64>, scratch: &mut Scratch) {
lhs: &RLWECtDft<REF, FFT64>, rhs.prod_with_rlwe_dft(module, self, lhs, scratch);
rhs: &GRLWECt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_dft(module, self, lhs, scratch);
} }
fn from_prod_by_rgsw<R>( fn prod_by_rgsw(&mut self, module: &Module<FFT64>, lhs: &Self::Lhs, rhs: &RGSWCt<REF, FFT64>, scratch: &mut Scratch) {
&mut self, rhs.prod_with_rlwe_dft(module, self, lhs, scratch);
module: &Module<FFT64>,
lhs: &RLWECtDft<REF, FFT64>,
rhs: &RGSWCt<R, FFT64>,
scratch: &mut Scratch,
) where
MatZnxDft<R, FFT64>: MatZnxDftToRef<FFT64>,
{
rhs.mul_rlwe_dft(module, self, lhs, scratch);
} }
} }

993
core/src/test_fft64/grlwe.rs
View File

@@ -1,504 +1,499 @@
#[cfg(test)] use base2k::{FFT64, Module, ScalarZnx, ScalarZnxAlloc, ScratchOwned, Stats, VecZnxOps, ZnxViewMut};
use sampling::source::Source;
mod tests {
use base2k::{FFT64, Module, ScalarZnx, ScalarZnxAlloc, ScratchOwned, Stats, VecZnxOps, ZnxViewMut}; use crate::{
use sampling::source::Source; elem::{GetRow, Infos, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace, Product},
grlwe::GRLWECt,
use crate::{ keys::{SecretKey, SecretKeyDft},
elem::{FromProdBy, FromProdByScratchSpace, Infos, ProdBy, ProdByScratchSpace}, rgsw::RGSWCt,
grlwe::GRLWECt, rlwe::{RLWECtDft, RLWEPt},
keys::{SecretKey, SecretKeyDft}, test_fft64::rgsw::noise_rgsw_product,
rgsw::RGSWCt, };
rlwe::{RLWECtDft, RLWEPt},
test_fft64::{grlwe::noise_grlwe_rlwe_product, rgsw::noise_rgsw_rlwe_product}, #[test]
}; fn encrypt_sk() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
#[test] let log_base2k: usize = 8;
fn encrypt_sk() { let log_k_ct: usize = 54;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = 4;
let log_base2k: usize = 8;
let log_k_ct: usize = 54; let sigma: f64 = 3.2;
let rows: usize = 4; let bound: f64 = sigma * 6.0;
let sigma: f64 = 3.2; let mut ct: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_ct, rows);
let bound: f64 = sigma * 6.0; let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct);
let mut pt_scalar: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut ct: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_ct, rows);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_scalar: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); pt_scalar.fill_ternary_hw(0, module.n(), &mut source_xs);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut scratch: ScratchOwned = ScratchOwned::new(
pt_scalar.fill_ternary_hw(0, module.n(), &mut source_xs); GRLWECt::encrypt_sk_scratch_space(&module, ct.size()) | RLWECtDft::decrypt_scratch_space(&module, ct.size()),
);
let mut scratch: ScratchOwned = ScratchOwned::new(
GRLWECt::encrypt_sk_scratch_space(&module, ct.size()) | RLWECtDft::decrypt_scratch_space(&module, ct.size()), let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
); sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs); sk_dft.dft(&module, &sk);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); ct.encrypt_sk(
sk_dft.dft(&module, &sk); &module,
&pt_scalar,
ct.encrypt_sk( &sk_dft,
&module, &mut source_xa,
&pt_scalar, &mut source_xe,
&sk_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_ct);
);
(0..ct.rows()).for_each(|row_i| {
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_ct); ct.get_row(&module, row_i, 0, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt, &sk_dft, scratch.borrow());
(0..ct.rows()).for_each(|row_i| { module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_scalar, 0);
ct.get_row(&module, row_i, &mut ct_rlwe_dft); let std_pt: f64 = pt.data.std(0, log_base2k) * (log_k_ct as f64).exp2();
ct_rlwe_dft.decrypt(&module, &mut pt, &sk_dft, scratch.borrow()); assert!((sigma - std_pt).abs() <= 0.2, "{} {}", sigma, std_pt);
module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_scalar, 0); });
let std_pt: f64 = pt.data.std(0, log_base2k) * (log_k_ct as f64).exp2();
assert!((sigma - std_pt).abs() <= 0.2, "{} {}", sigma, std_pt); module.free();
}); }
module.free(); #[test]
} fn from_prod_by_grlwe() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
#[test] let log_base2k: usize = 12;
fn from_prod_by_grlwe() { let log_k_grlwe: usize = 60;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k;
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60; let sigma: f64 = 3.2;
let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k; let bound: f64 = sigma * 6.0;
let sigma: f64 = 3.2; let mut ct_grlwe_s0s1: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let bound: f64 = sigma * 6.0; let mut ct_grlwe_s1s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_s0s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_s0s1: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_s1s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut source_xs: Source = Source::new([0u8; 32]);
let mut ct_grlwe_s0s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); let mut scratch: ScratchOwned = ScratchOwned::new(
let mut source_xa: Source = Source::new([0u8; 32]); GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_s0s1.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_s0s2.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | GRLWECt::prod_by_grlwe_scratch_space(
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_s0s1.size()) &module,
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_s0s2.size()) ct_grlwe_s0s2.size(),
| GRLWECt::from_prod_by_grlwe_scratch_space( ct_grlwe_s0s1.size(),
&module, ct_grlwe_s1s2.size(),
ct_grlwe_s0s2.size(), ),
ct_grlwe_s0s1.size(), );
ct_grlwe_s1s2.size(),
), let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
); sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk0.fill_ternary_prob(0.5, &mut source_xs); sk0_dft.dft(&module, &sk0);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk0_dft.dft(&module, &sk0); sk1.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk1.fill_ternary_prob(0.5, &mut source_xs); sk1_dft.dft(&module, &sk1);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); let mut sk2: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk1_dft.dft(&module, &sk1); sk2.fill_ternary_prob(0.5, &mut source_xs);
let mut sk2: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk2_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk2.fill_ternary_prob(0.5, &mut source_xs); sk2_dft.dft(&module, &sk2);
let mut sk2_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); // GRLWE_{s1}(s0) = s0 -> s1
sk2_dft.dft(&module, &sk2); ct_grlwe_s0s1.encrypt_sk(
&module,
// GRLWE_{s1}(s0) = s0 -> s1 &sk0.data,
ct_grlwe_s0s1.encrypt_sk( &sk1_dft,
&module, &mut source_xa,
&sk0.data, &mut source_xe,
&sk1_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_{s2}(s1) -> s1 -> s2
); ct_grlwe_s1s2.encrypt_sk(
&module,
// GRLWE_{s2}(s1) -> s1 -> s2 &sk1.data,
ct_grlwe_s1s2.encrypt_sk( &sk2_dft,
&module, &mut source_xa,
&sk1.data, &mut source_xe,
&sk2_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_{s1}(s0) (x) GRLWE_{s2}(s1) = GRLWE_{s2}(s0)
); ct_grlwe_s0s2.prod_by_grlwe(&module, &ct_grlwe_s0s1, &ct_grlwe_s1s2, scratch.borrow());
// GRLWE_{s1}(s0) (x) GRLWE_{s2}(s1) = GRLWE_{s2}(s0) let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe);
ct_grlwe_s0s2.from_prod_by_grlwe(&module, &ct_grlwe_s0s1, &ct_grlwe_s1s2, scratch.borrow()); let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe); (0..ct_grlwe_s0s2.rows()).for_each(|row_i| {
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe); ct_grlwe_s0s2.get_row(&module, row_i, 0, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk2_dft, scratch.borrow());
(0..ct_grlwe_s0s2.rows()).for_each(|row_i| { module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &sk0, 0);
ct_grlwe_s0s2.get_row(&module, row_i, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk2_dft, scratch.borrow()); let noise_have: f64 = pt.data.std(0, log_base2k).log2();
module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &sk0, 0); let noise_want: f64 = noise_grlwe_rlwe_product(
module.n() as f64,
let noise_have: f64 = pt.data.std(0, log_base2k).log2(); log_base2k,
let noise_want: f64 = noise_grlwe_rlwe_product( 0.5,
module.n() as f64, 0.5,
log_base2k, 0f64,
0.5, sigma * sigma,
0.5, 0f64,
0f64, log_k_grlwe,
sigma * sigma, log_k_grlwe,
0f64, );
log_k_grlwe,
log_k_grlwe, assert!(
); (noise_have - noise_want).abs() <= 0.1,
"{} {}",
assert!( noise_have,
(noise_have - noise_want).abs() <= 0.1, noise_want
"{} {}", );
noise_have, });
noise_want
); module.free();
}); }
module.free(); #[test]
} fn prod_by_grlwe() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
#[test] let log_base2k: usize = 12;
fn prod_by_grlwe() { let log_k_grlwe: usize = 60;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k;
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60; let sigma: f64 = 3.2;
let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k; let bound: f64 = sigma * 6.0;
let sigma: f64 = 3.2; let mut ct_grlwe_s0s1: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let bound: f64 = sigma * 6.0; let mut ct_grlwe_s1s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_s0s1: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut source_xs: Source = Source::new([0u8; 32]);
let mut ct_grlwe_s1s2: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); let mut scratch: ScratchOwned = ScratchOwned::new(
let mut source_xa: Source = Source::new([0u8; 32]); GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_s0s1.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_s0s1.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | GRLWECt::prod_by_grlwe_inplace_scratch_space(&module, ct_grlwe_s0s1.size(), ct_grlwe_s1s2.size()),
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_s0s1.size()) );
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_s0s1.size())
| GRLWECt::prod_by_grlwe_scratch_space(&module, ct_grlwe_s0s1.size(), ct_grlwe_s1s2.size()), let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
); sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk0.fill_ternary_prob(0.5, &mut source_xs); sk0_dft.dft(&module, &sk0);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk0_dft.dft(&module, &sk0); sk1.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk1.fill_ternary_prob(0.5, &mut source_xs); sk1_dft.dft(&module, &sk1);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); let mut sk2: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk1_dft.dft(&module, &sk1); sk2.fill_ternary_prob(0.5, &mut source_xs);
let mut sk2: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk2_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk2.fill_ternary_prob(0.5, &mut source_xs); sk2_dft.dft(&module, &sk2);
let mut sk2_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); // GRLWE_{s1}(s0) = s0 -> s1
sk2_dft.dft(&module, &sk2); ct_grlwe_s0s1.encrypt_sk(
&module,
// GRLWE_{s1}(s0) = s0 -> s1 &sk0.data,
ct_grlwe_s0s1.encrypt_sk( &sk1_dft,
&module, &mut source_xa,
&sk0.data, &mut source_xe,
&sk1_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_{s2}(s1) -> s1 -> s2
); ct_grlwe_s1s2.encrypt_sk(
&module,
// GRLWE_{s2}(s1) -> s1 -> s2 &sk1.data,
ct_grlwe_s1s2.encrypt_sk( &sk2_dft,
&module, &mut source_xa,
&sk1.data, &mut source_xe,
&sk2_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_{s1}(s0) (x) GRLWE_{s2}(s1) = GRLWE_{s2}(s0)
); ct_grlwe_s0s1.prod_by_grlwe_inplace(&module, &ct_grlwe_s1s2, scratch.borrow());
// GRLWE_{s1}(s0) (x) GRLWE_{s2}(s1) = GRLWE_{s2}(s0) let ct_grlwe_s0s2: GRLWECt<Vec<u8>, FFT64> = ct_grlwe_s0s1;
ct_grlwe_s0s1.prod_by_grlwe(&module, &ct_grlwe_s1s2, scratch.borrow());
let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe);
let ct_grlwe_s0s2: GRLWECt<Vec<u8>, FFT64> = ct_grlwe_s0s1; let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe); (0..ct_grlwe_s0s2.rows()).for_each(|row_i| {
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe); ct_grlwe_s0s2.get_row(&module, row_i, 0, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk2_dft, scratch.borrow());
(0..ct_grlwe_s0s2.rows()).for_each(|row_i| { module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &sk0, 0);
ct_grlwe_s0s2.get_row(&module, row_i, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk2_dft, scratch.borrow()); let noise_have: f64 = pt.data.std(0, log_base2k).log2();
module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &sk0, 0); let noise_want: f64 = noise_grlwe_rlwe_product(
module.n() as f64,
let noise_have: f64 = pt.data.std(0, log_base2k).log2(); log_base2k,
let noise_want: f64 = noise_grlwe_rlwe_product( 0.5,
module.n() as f64, 0.5,
log_base2k, 0f64,
0.5, sigma * sigma,
0.5, 0f64,
0f64, log_k_grlwe,
sigma * sigma, log_k_grlwe,
0f64, );
log_k_grlwe,
log_k_grlwe, assert!(
); (noise_have - noise_want).abs() <= 0.1,
"{} {}",
assert!( noise_have,
(noise_have - noise_want).abs() <= 0.1, noise_want
"{} {}", );
noise_have, });
noise_want
); module.free();
}); }
module.free(); #[test]
} fn from_prod_by_rgsw() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
#[test] let log_base2k: usize = 12;
fn from_prod_by_rgsw() { let log_k_grlwe: usize = 60;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k;
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60; let sigma: f64 = 3.2;
let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k; let bound: f64 = sigma * 6.0;
let sigma: f64 = 3.2; let mut ct_grlwe_in: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let bound: f64 = sigma * 6.0; let mut ct_grlwe_out: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_in: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe_out: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_grlwe: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_grlwe: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); let mut scratch: ScratchOwned = ScratchOwned::new(
let mut source_xa: Source = Source::new([0u8; 32]); GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_in.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_out.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | GRLWECt::prod_by_rgsw_scratch_space(
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe_in.size()) &module,
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe_out.size()) ct_grlwe_out.size(),
| GRLWECt::from_prod_by_rgsw_scratch_space( ct_grlwe_in.size(),
&module, ct_rgsw.size(),
ct_grlwe_out.size(), )
ct_grlwe_in.size(), | RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()),
ct_rgsw.size(), );
)
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()), let k: usize = 1;
);
pt_rgsw.raw_mut()[k] = 1; // X^{k}
let k: usize = 1;
pt_grlwe.fill_ternary_prob(0, 0.5, &mut source_xs);
pt_rgsw.raw_mut()[k] = 1; // X^{k}
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
pt_grlwe.fill_ternary_prob(0, 0.5, &mut source_xs); sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs); sk_dft.dft(&module, &sk);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); // GRLWE_{s1}(s0) = s0 -> s1
sk_dft.dft(&module, &sk); ct_grlwe_in.encrypt_sk(
&module,
// GRLWE_{s1}(s0) = s0 -> s1 &pt_grlwe,
ct_grlwe_in.encrypt_sk( &sk_dft,
&module, &mut source_xa,
&pt_grlwe, &mut source_xe,
&sk_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), ct_rgsw.encrypt_sk(
); &module,
&pt_rgsw,
ct_rgsw.encrypt_sk( &sk_dft,
&module, &mut source_xa,
&pt_rgsw, &mut source_xe,
&sk_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_(m) (x) RGSW_(X^k) = GRLWE_(m * X^k)
); ct_grlwe_out.prod_by_rgsw(&module, &ct_grlwe_in, &ct_rgsw, scratch.borrow());
// GRLWE_(m) (x) RGSW_(X^k) = GRLWE_(m * X^k) let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe);
ct_grlwe_out.from_prod_by_rgsw(&module, &ct_grlwe_in, &ct_rgsw, scratch.borrow()); let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe); module.vec_znx_rotate_inplace(k as i64, &mut pt_grlwe, 0);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
(0..ct_grlwe_out.rows()).for_each(|row_i| {
module.vec_znx_rotate_inplace(k as i64, &mut pt_grlwe, 0); ct_grlwe_out.get_row(&module, row_i, 0, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk_dft, scratch.borrow());
(0..ct_grlwe_out.rows()).for_each(|row_i| { module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_grlwe, 0);
ct_grlwe_out.get_row(&module, row_i, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk_dft, scratch.borrow()); let noise_have: f64 = pt.data.std(0, log_base2k).log2();
module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_grlwe, 0);
let var_gct_err_lhs: f64 = sigma * sigma;
let noise_have: f64 = pt.data.std(0, log_base2k).log2(); let var_gct_err_rhs: f64 = 0f64;
let var_gct_err_lhs: f64 = sigma * sigma; let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_gct_err_rhs: f64 = 0f64; let var_a0_err: f64 = sigma * sigma;
let var_a1_err: f64 = 1f64 / 12f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_a0_err: f64 = sigma * sigma; let noise_want: f64 = noise_rgsw_product(
let var_a1_err: f64 = 1f64 / 12f64; module.n() as f64,
log_base2k,
let noise_want: f64 = noise_rgsw_rlwe_product( 0.5,
module.n() as f64, var_msg,
log_base2k, var_a0_err,
0.5, var_a1_err,
var_msg, var_gct_err_lhs,
var_a0_err, var_gct_err_rhs,
var_a1_err, log_k_grlwe,
var_gct_err_lhs, log_k_grlwe,
var_gct_err_rhs, );
log_k_grlwe,
log_k_grlwe, assert!(
); (noise_have - noise_want).abs() <= 0.1,
"{} {}",
assert!( noise_have,
(noise_have - noise_want).abs() <= 0.1, noise_want
"{} {}", );
noise_have, });
noise_want
); module.free();
}); }
module.free(); #[test]
} fn prod_by_rgsw() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
#[test] let log_base2k: usize = 12;
fn prod_by_rgsw() { let log_k_grlwe: usize = 60;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k;
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60; let sigma: f64 = 3.2;
let rows: usize = (log_k_grlwe + log_base2k - 1) / log_base2k; let bound: f64 = sigma * 6.0;
let sigma: f64 = 3.2; let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let bound: f64 = sigma * 6.0; let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_grlwe: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_grlwe: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); let mut scratch: ScratchOwned = ScratchOwned::new(
let mut source_xa: Source = Source::new([0u8; 32]); GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | GRLWECt::prod_by_rgsw_inplace_scratch_space(&module, ct_grlwe.size(), ct_rgsw.size())
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size()) | RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()),
| RLWECtDft::decrypt_scratch_space(&module, ct_grlwe.size()) );
| GRLWECt::prod_by_rgsw_scratch_space(&module, ct_grlwe.size(), ct_rgsw.size())
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()), let k: usize = 1;
);
pt_rgsw.raw_mut()[k] = 1; // X^{k}
let k: usize = 1;
pt_grlwe.fill_ternary_prob(0, 0.5, &mut source_xs);
pt_rgsw.raw_mut()[k] = 1; // X^{k}
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
pt_grlwe.fill_ternary_prob(0, 0.5, &mut source_xs); sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs); sk_dft.dft(&module, &sk);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); // GRLWE_{s1}(s0) = s0 -> s1
sk_dft.dft(&module, &sk); ct_grlwe.encrypt_sk(
&module,
// GRLWE_{s1}(s0) = s0 -> s1 &pt_grlwe,
ct_grlwe.encrypt_sk( &sk_dft,
&module, &mut source_xa,
&pt_grlwe, &mut source_xe,
&sk_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), ct_rgsw.encrypt_sk(
); &module,
&pt_rgsw,
ct_rgsw.encrypt_sk( &sk_dft,
&module, &mut source_xa,
&pt_rgsw, &mut source_xe,
&sk_dft, sigma,
&mut source_xa, bound,
&mut source_xe, scratch.borrow(),
sigma, );
bound,
scratch.borrow(), // GRLWE_(m) (x) RGSW_(X^k) = GRLWE_(m * X^k)
); ct_grlwe.prod_by_rgsw_inplace(&module, &ct_rgsw, scratch.borrow());
// GRLWE_(m) (x) RGSW_(X^k) = GRLWE_(m * X^k) let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe);
ct_grlwe.prod_by_rgsw(&module, &ct_rgsw, scratch.borrow()); let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
let mut ct_rlwe_dft_s0s2: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_grlwe); module.vec_znx_rotate_inplace(k as i64, &mut pt_grlwe, 0);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_grlwe);
(0..ct_grlwe.rows()).for_each(|row_i| {
module.vec_znx_rotate_inplace(k as i64, &mut pt_grlwe, 0); ct_grlwe.get_row(&module, row_i, 0, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk_dft, scratch.borrow());
(0..ct_grlwe.rows()).for_each(|row_i| { module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_grlwe, 0);
ct_grlwe.get_row(&module, row_i, &mut ct_rlwe_dft_s0s2);
ct_rlwe_dft_s0s2.decrypt(&module, &mut pt, &sk_dft, scratch.borrow()); let noise_have: f64 = pt.data.std(0, log_base2k).log2();
module.vec_znx_sub_scalar_inplace(&mut pt, 0, row_i, &pt_grlwe, 0);
let var_gct_err_lhs: f64 = sigma * sigma;
let noise_have: f64 = pt.data.std(0, log_base2k).log2(); let var_gct_err_rhs: f64 = 0f64;
let var_gct_err_lhs: f64 = sigma * sigma; let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_gct_err_rhs: f64 = 0f64; let var_a0_err: f64 = sigma * sigma;
let var_a1_err: f64 = 1f64 / 12f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_a0_err: f64 = sigma * sigma; let noise_want: f64 = noise_rgsw_product(
let var_a1_err: f64 = 1f64 / 12f64; module.n() as f64,
log_base2k,
let noise_want: f64 = noise_rgsw_rlwe_product( 0.5,
module.n() as f64, var_msg,
log_base2k, var_a0_err,
0.5, var_a1_err,
var_msg, var_gct_err_lhs,
var_a0_err, var_gct_err_rhs,
var_a1_err, log_k_grlwe,
var_gct_err_lhs, log_k_grlwe,
var_gct_err_rhs, );
log_k_grlwe,
log_k_grlwe, assert!(
); (noise_have - noise_want).abs() <= 0.1,
"{} {}",
assert!( noise_have,
(noise_have - noise_want).abs() <= 0.1, noise_want
"{} {}", );
noise_have, });
noise_want
); module.free();
});
module.free();
}
} }
#[allow(dead_code)]
pub(crate) fn noise_grlwe_rlwe_product( pub(crate) fn noise_grlwe_rlwe_product(
n: f64, n: f64,
log_base2k: usize, log_base2k: usize,

627
core/src/test_fft64/rgsw.rs
View File

@@ -1,95 +1,582 @@
#[cfg(test)] use base2k::{
mod tests { FFT64, Module, ScalarZnx, ScalarZnxAlloc, ScalarZnxDftOps, ScratchOwned, Stats, VecZnxBig, VecZnxBigAlloc, VecZnxBigOps,
use base2k::{ VecZnxDft, VecZnxDftAlloc, VecZnxDftOps, VecZnxOps, VecZnxToMut, ZnxViewMut, ZnxZero,
FFT64, Module, ScalarZnx, ScalarZnxAlloc, ScalarZnxDftOps, ScratchOwned, Stats, VecZnxBig, VecZnxBigAlloc, VecZnxBigOps, };
VecZnxDft, VecZnxDftAlloc, VecZnxDftOps, VecZnxOps, ZnxZero, use sampling::source::Source;
};
use sampling::source::Source;
use crate::{ use crate::{
elem::{GetRow, Infos}, elem::{GetRow, Infos, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace, Product},
keys::{SecretKey, SecretKeyDft}, grlwe::GRLWECt,
rgsw::RGSWCt, keys::{SecretKey, SecretKeyDft},
rlwe::{RLWECt, RLWECtDft, RLWEPt}, rgsw::RGSWCt,
test_fft64::rgsw::noise_rgsw_rlwe_product, rlwe::{RLWECtDft, RLWEPt},
}; test_fft64::grlwe::noise_grlwe_rlwe_product,
};
#[test] #[test]
fn encrypt_rgsw_sk() { fn encrypt_rgsw_sk() {
let module: Module<FFT64> = Module::<FFT64>::new(2048); let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 8; let log_base2k: usize = 8;
let log_k_ct: usize = 54; let log_k_ct: usize = 54;
let rows: usize = 4; let rows: usize = 4;
let sigma: f64 = 3.2; let sigma: f64 = 3.2;
let bound: f64 = sigma * 6.0; let bound: f64 = sigma * 6.0;
let mut ct: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_ct, rows); let mut ct: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_ct, rows);
let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct); let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct); let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_ct);
let mut pt_scalar: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut pt_scalar: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut source_xs: Source = Source::new([0u8; 32]); let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]); let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]); let mut source_xa: Source = Source::new([0u8; 32]);
pt_scalar.fill_ternary_hw(0, module.n(), &mut source_xs); pt_scalar.fill_ternary_hw(0, module.n(), &mut source_xs);
let mut scratch: ScratchOwned = ScratchOwned::new( let mut scratch: ScratchOwned = ScratchOwned::new(
RGSWCt::encrypt_sk_scratch_space(&module, ct.size()) | RLWECtDft::decrypt_scratch_space(&module, ct.size()), RGSWCt::encrypt_sk_scratch_space(&module, ct.size()) | RLWECtDft::decrypt_scratch_space(&module, ct.size()),
); );
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs); sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk_dft.dft(&module, &sk); sk_dft.dft(&module, &sk);
ct.encrypt_sk( ct.encrypt_sk(
&module, &module,
&pt_scalar, &pt_scalar,
&sk_dft, &sk_dft,
&mut source_xa, &mut source_xa,
&mut source_xe, &mut source_xe,
sigma, sigma,
bound, bound,
scratch.borrow(), scratch.borrow(),
); );
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_ct); let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_ct);
let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct.size()); let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct.size());
let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct.size()); let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct.size());
(0..ct.cols()).for_each(|col_j| { (0..ct.cols()).for_each(|col_j| {
(0..ct.rows()).for_each(|row_i| { (0..ct.rows()).for_each(|row_i| {
module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_scalar, 0); module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_scalar, 0);
if col_j == 1 { if col_j == 1 {
module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0); module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0);
module.svp_apply_inplace(&mut pt_dft, 0, &sk_dft, 0); module.svp_apply_inplace(&mut pt_dft, 0, &sk_dft, 0);
module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0); module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0);
module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow()); module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow());
} }
ct.get_row(&module, row_i, col_j, &mut ct_rlwe_dft); ct.get_row(&module, row_i, col_j, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow()); ct_rlwe_dft.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow());
module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0); module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0);
let std_pt: f64 = pt_have.data.std(0, log_base2k) * (log_k_ct as f64).exp2(); let std_pt: f64 = pt_have.data.std(0, log_base2k) * (log_k_ct as f64).exp2();
assert!((sigma - std_pt).abs() <= 0.2, "{} {}", sigma, std_pt); assert!((sigma - std_pt).abs() <= 0.2, "{} {}", sigma, std_pt);
pt_want.data.zero(); pt_want.data.zero();
});
}); });
});
module.free(); module.free();
}
} }
#[allow(dead_code)] #[test]
pub(crate) fn noise_rgsw_rlwe_product( fn from_prod_by_grlwe() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60;
let log_k_rgsw_in: usize = 45;
let log_k_rgsw_out: usize = 45;
let rows: usize = (log_k_rgsw_in + log_base2k - 1) / log_base2k;
let sigma: f64 = 3.2;
let bound: f64 = sigma * 6.0;
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_rgsw_in: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_in, rows);
let mut ct_rgsw_out: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_out, rows);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
// Random input plaintext
pt_rgsw.fill_ternary_prob(0, 0.5, &mut source_xs);
let mut scratch: ScratchOwned = ScratchOwned::new(
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_rgsw_out.size())
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw_in.size())
| RGSWCt::prod_by_grlwe_scratch_space(
&module,
ct_rgsw_out.size(),
ct_rgsw_in.size(),
ct_grlwe.size(),
),
);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk0_dft.dft(&module, &sk0);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk1.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk1_dft.dft(&module, &sk1);
ct_grlwe.encrypt_sk(
&module,
&sk0.data,
&sk1_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_in.encrypt_sk(
&module,
&pt_rgsw,
&sk0_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_out.prod_by_grlwe(&module, &ct_rgsw_in, &ct_grlwe, scratch.borrow());
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rgsw_out);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_out);
let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct_rgsw_out.size());
let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct_rgsw_out.size());
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_out);
(0..ct_rgsw_out.cols()).for_each(|col_j| {
(0..ct_rgsw_out.rows()).for_each(|row_i| {
module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_rgsw, 0);
if col_j == 1 {
module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0);
module.svp_apply_inplace(&mut pt_dft, 0, &sk0_dft, 0);
module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0);
module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow());
}
ct_rgsw_out.get_row(&module, row_i, col_j, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt, &sk1_dft, scratch.borrow());
module.vec_znx_sub_ab_inplace(&mut pt, 0, &pt_want, 0);
let noise_have: f64 = pt.data.std(0, log_base2k).log2();
let noise_want: f64 = noise_grlwe_rlwe_product(
module.n() as f64,
log_base2k,
0.5,
0.5,
0f64,
sigma * sigma,
0f64,
log_k_grlwe,
log_k_grlwe,
);
assert!(
(noise_have - noise_want).abs() <= 0.2,
"have: {} want: {}",
noise_have,
noise_want
);
pt_want.data.zero();
});
});
module.free();
}
#[test]
fn from_prod_by_grlwe_inplace() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60;
let log_k_rgsw: usize = 45;
let rows: usize = (log_k_rgsw + log_base2k - 1) / log_base2k;
let sigma: f64 = 3.2;
let bound: f64 = sigma * 6.0;
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw, rows);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
// Random input plaintext
pt_rgsw.fill_ternary_prob(0, 0.5, &mut source_xs);
let mut scratch: ScratchOwned = ScratchOwned::new(
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_rgsw.size())
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size())
| RGSWCt::prod_by_grlwe_inplace_scratch_space(&module, ct_rgsw.size(), ct_grlwe.size()),
);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk0_dft.dft(&module, &sk0);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk1.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk1_dft.dft(&module, &sk1);
ct_grlwe.encrypt_sk(
&module,
&sk0.data,
&sk1_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw.encrypt_sk(
&module,
&pt_rgsw,
&sk0_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw.prod_by_grlwe_inplace(&module, &ct_grlwe, scratch.borrow());
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rgsw);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw);
let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct_rgsw.size());
let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct_rgsw.size());
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw);
(0..ct_rgsw.cols()).for_each(|col_j| {
(0..ct_rgsw.rows()).for_each(|row_i| {
module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_rgsw, 0);
if col_j == 1 {
module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0);
module.svp_apply_inplace(&mut pt_dft, 0, &sk0_dft, 0);
module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0);
module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow());
}
ct_rgsw.get_row(&module, row_i, col_j, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt, &sk1_dft, scratch.borrow());
module.vec_znx_sub_ab_inplace(&mut pt, 0, &pt_want, 0);
let noise_have: f64 = pt.data.std(0, log_base2k).log2();
let noise_want: f64 = noise_grlwe_rlwe_product(
module.n() as f64,
log_base2k,
0.5,
0.5,
0f64,
sigma * sigma,
0f64,
log_k_grlwe,
log_k_grlwe,
);
assert!(
(noise_have - noise_want).abs() <= 0.2,
"have: {} want: {}",
noise_have,
noise_want
);
pt_want.data.zero();
});
});
module.free();
}
#[test]
fn from_prod_by_rgsw() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
let log_k_rgsw_rhs: usize = 60;
let log_k_rgsw_lhs_in: usize = 45;
let log_k_rgsw_lhs_out: usize = 45;
let rows: usize = (log_k_rgsw_lhs_in + log_base2k - 1) / log_base2k;
let sigma: f64 = 3.2;
let bound: f64 = sigma * 6.0;
let mut ct_rgsw_rhs: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_rhs, rows);
let mut ct_rgsw_lhs_in: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_lhs_in, rows);
let mut ct_rgsw_lhs_out: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_lhs_out, rows);
let mut pt_rgsw_lhs: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut pt_rgsw_rhs: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
// Random input plaintext
pt_rgsw_lhs.fill_ternary_prob(0, 0.5, &mut source_xs);
let k: usize = 1;
pt_rgsw_rhs.to_mut().raw_mut()[k] = 1; //X^{k}
let mut scratch: ScratchOwned = ScratchOwned::new(
GRLWECt::encrypt_sk_scratch_space(&module, ct_rgsw_rhs.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_rgsw_lhs_out.size())
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw_lhs_in.size())
| RGSWCt::prod_by_rgsw_scratch_space(
&module,
ct_rgsw_lhs_out.size(),
ct_rgsw_lhs_in.size(),
ct_rgsw_rhs.size(),
),
);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk_dft.dft(&module, &sk);
ct_rgsw_rhs.encrypt_sk(
&module,
&pt_rgsw_rhs,
&sk_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_lhs_in.encrypt_sk(
&module,
&pt_rgsw_lhs,
&sk_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_lhs_out.prod_by_rgsw(&module, &ct_rgsw_lhs_in, &ct_rgsw_rhs, scratch.borrow());
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rgsw_lhs_out);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_lhs_out);
let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct_rgsw_lhs_out.size());
let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct_rgsw_lhs_out.size());
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_lhs_out);
module.vec_znx_rotate_inplace(k as i64, &mut pt_rgsw_lhs, 0);
(0..ct_rgsw_lhs_out.cols()).for_each(|col_j| {
(0..ct_rgsw_lhs_out.rows()).for_each(|row_i| {
module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_rgsw_lhs, 0);
if col_j == 1 {
module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0);
module.svp_apply_inplace(&mut pt_dft, 0, &sk_dft, 0);
module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0);
module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow());
}
ct_rgsw_lhs_out.get_row(&module, row_i, col_j, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt, &sk_dft, scratch.borrow());
module.vec_znx_sub_ab_inplace(&mut pt, 0, &pt_want, 0);
let noise_have: f64 = pt.data.std(0, log_base2k).log2();
let var_gct_err_lhs: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_a0_err: f64 = sigma * sigma;
let var_a1_err: f64 = 1f64 / 12f64;
let noise_want: f64 = noise_rgsw_product(
module.n() as f64,
log_base2k,
0.5,
var_msg,
var_a0_err,
var_a1_err,
var_gct_err_lhs,
var_gct_err_rhs,
log_k_rgsw_lhs_in,
log_k_rgsw_rhs,
);
assert!(
(noise_have - noise_want).abs() <= 0.1,
"have: {} want: {}",
noise_have,
noise_want
);
pt_want.data.zero();
});
});
module.free();
}
#[test]
fn from_prod_by_rgsw_inplace() {
let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
let log_k_rgsw_rhs: usize = 60;
let log_k_rgsw_lhs: usize = 45;
let rows: usize = (log_k_rgsw_lhs + log_base2k - 1) / log_base2k;
let sigma: f64 = 3.2;
let bound: f64 = sigma * 6.0;
let mut ct_rgsw_rhs: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_rhs, rows);
let mut ct_rgsw_lhs: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_rgsw_lhs, rows);
let mut pt_rgsw_lhs: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut pt_rgsw_rhs: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut source_xs: Source = Source::new([0u8; 32]);
let mut source_xe: Source = Source::new([0u8; 32]);
let mut source_xa: Source = Source::new([0u8; 32]);
// Random input plaintext
pt_rgsw_lhs.fill_ternary_prob(0, 0.5, &mut source_xs);
let k: usize = 1;
pt_rgsw_rhs.to_mut().raw_mut()[k] = 1; //X^{k}
let mut scratch: ScratchOwned = ScratchOwned::new(
GRLWECt::encrypt_sk_scratch_space(&module, ct_rgsw_rhs.size())
| RLWECtDft::decrypt_scratch_space(&module, ct_rgsw_lhs.size())
| RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw_lhs.size())
| RGSWCt::prod_by_rgsw_inplace_scratch_space(&module, ct_rgsw_lhs.size(), ct_rgsw_rhs.size()),
);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
sk.fill_ternary_prob(0.5, &mut source_xs);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
sk_dft.dft(&module, &sk);
ct_rgsw_rhs.encrypt_sk(
&module,
&pt_rgsw_rhs,
&sk_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_lhs.encrypt_sk(
&module,
&pt_rgsw_lhs,
&sk_dft,
&mut source_xa,
&mut source_xe,
sigma,
bound,
scratch.borrow(),
);
ct_rgsw_lhs.prod_by_rgsw_inplace(&module, &ct_rgsw_rhs, scratch.borrow());
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rgsw_lhs);
let mut pt: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_lhs);
let mut pt_dft: VecZnxDft<Vec<u8>, FFT64> = module.new_vec_znx_dft(1, ct_rgsw_lhs.size());
let mut pt_big: VecZnxBig<Vec<u8>, FFT64> = module.new_vec_znx_big(1, ct_rgsw_lhs.size());
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rgsw_lhs);
module.vec_znx_rotate_inplace(k as i64, &mut pt_rgsw_lhs, 0);
(0..ct_rgsw_lhs.cols()).for_each(|col_j| {
(0..ct_rgsw_lhs.rows()).for_each(|row_i| {
module.vec_znx_add_scalar_inplace(&mut pt_want, 0, row_i, &pt_rgsw_lhs, 0);
if col_j == 1 {
module.vec_znx_dft(&mut pt_dft, 0, &pt_want, 0);
module.svp_apply_inplace(&mut pt_dft, 0, &sk_dft, 0);
module.vec_znx_idft_tmp_a(&mut pt_big, 0, &mut pt_dft, 0);
module.vec_znx_big_normalize(log_base2k, &mut pt_want, 0, &pt_big, 0, scratch.borrow());
}
ct_rgsw_lhs.get_row(&module, row_i, col_j, &mut ct_rlwe_dft);
ct_rlwe_dft.decrypt(&module, &mut pt, &sk_dft, scratch.borrow());
module.vec_znx_sub_ab_inplace(&mut pt, 0, &pt_want, 0);
let noise_have: f64 = pt.data.std(0, log_base2k).log2();
let var_gct_err_lhs: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_a0_err: f64 = sigma * sigma;
let var_a1_err: f64 = 1f64 / 12f64;
let noise_want: f64 = noise_rgsw_product(
module.n() as f64,
log_base2k,
0.5,
var_msg,
var_a0_err,
var_a1_err,
var_gct_err_lhs,
var_gct_err_rhs,
log_k_rgsw_lhs,
log_k_rgsw_rhs,
);
assert!(
(noise_have - noise_want).abs() <= 0.1,
"have: {} want: {}",
noise_have,
noise_want
);
pt_want.data.zero();
});
});
module.free();
}
pub(crate) fn noise_rgsw_product(
n: f64, n: f64,
log_base2k: usize, log_base2k: usize,
var_xs: f64, var_xs: f64,

1197
core/src/test_fft64/rlwe.rs
View File

File diff suppressed because it is too large Load Diff

889
core/src/test_fft64/rlwe_dft.rs
View File

@@ -1,448 +1,443 @@
#[cfg(test)] use crate::{
mod tests { elem::{Infos, ProdInplace, ProdInplaceScratchSpace, ProdScratchSpace, Product},
use crate::{ grlwe::GRLWECt,
elem::{FromProdBy, FromProdByScratchSpace, Infos, ProdBy, ProdByScratchSpace}, keys::{SecretKey, SecretKeyDft},
grlwe::GRLWECt, rgsw::RGSWCt,
keys::{SecretKey, SecretKeyDft}, rlwe::{RLWECt, RLWECtDft, RLWEPt},
rgsw::RGSWCt, test_fft64::{grlwe::noise_grlwe_rlwe_product, rgsw::noise_rgsw_product},
rlwe::{RLWECt, RLWECtDft, RLWEPt}, };
test_fft64::{grlwe::noise_grlwe_rlwe_product, rgsw::noise_rgsw_rlwe_product}, use base2k::{FFT64, FillUniform, Module, ScalarZnx, ScalarZnxAlloc, ScratchOwned, Stats, VecZnxOps, VecZnxToMut, ZnxViewMut};
}; use sampling::source::Source;
use base2k::{
FFT64, FillUniform, Module, ScalarZnx, ScalarZnxAlloc, ScratchOwned, Stats, VecZnxOps, VecZnxToMut, ZnxViewMut, #[test]
}; fn by_grlwe_inplace() {
use sampling::source::Source; let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
#[test] let log_k_grlwe: usize = 60;
fn from_prod_by_grlwe() { let log_k_rlwe_in: usize = 45;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let log_k_rlwe_out: usize = 60;
let log_base2k: usize = 12; let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let log_k_grlwe: usize = 60;
let log_k_rlwe_in: usize = 45; let sigma: f64 = 3.2;
let log_k_rlwe_out: usize = 60; let bound: f64 = sigma * 6.0;
let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let sigma: f64 = 3.2; let mut ct_rlwe_in: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in);
let bound: f64 = sigma * 6.0; let mut ct_rlwe_in_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in);
let mut ct_rlwe_out: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut ct_rlwe_out_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_in: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in); let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in);
let mut ct_rlwe_in_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in); let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_out: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_out_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_out); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in); let mut source_xe: Source = Source::new([0u8; 32]);
let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out); let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]); // Random input plaintext
let mut source_xe: Source = Source::new([0u8; 32]); pt_want
let mut source_xa: Source = Source::new([0u8; 32]); .data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa);
// Random input plaintext
pt_want let mut scratch: ScratchOwned = ScratchOwned::new(
.data GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size())
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa); | RLWECt::decrypt_scratch_space(&module, ct_rlwe_out.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe_in.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | RLWECtDft::prod_by_grlwe_scratch_space(
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size()) &module,
| RLWECt::decrypt_scratch_space(&module, ct_rlwe_out.size()) ct_rlwe_out.size(),
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe_in.size()) ct_rlwe_in.size(),
| RLWECtDft::from_prod_by_grlwe_scratch_space( ct_grlwe.size(),
&module, ),
ct_rlwe_out.size(), );
ct_rlwe_in.size(),
ct_grlwe.size(), let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
), sk0.fill_ternary_prob(0.5, &mut source_xs);
);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module); sk0_dft.dft(&module, &sk0);
sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); sk1.fill_ternary_prob(0.5, &mut source_xs);
sk0_dft.dft(&module, &sk0);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module); sk1_dft.dft(&module, &sk1);
sk1.fill_ternary_prob(0.5, &mut source_xs);
ct_grlwe.encrypt_sk(
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); &module,
sk1_dft.dft(&module, &sk1); &sk0.data,
&sk1_dft,
ct_grlwe.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
&sk0.data, sigma,
&sk1_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe_in.encrypt_sk(
scratch.borrow(), &module,
); Some(&pt_want),
&sk0_dft,
ct_rlwe_in.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
Some(&pt_want), sigma,
&sk0_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe_in.dft(&module, &mut ct_rlwe_in_dft);
scratch.borrow(), ct_rlwe_out_dft.prod_by_grlwe(&module, &ct_rlwe_in_dft, &ct_grlwe, scratch.borrow());
); ct_rlwe_out_dft.idft(&module, &mut ct_rlwe_out, scratch.borrow());
ct_rlwe_in.dft(&module, &mut ct_rlwe_in_dft); ct_rlwe_out.decrypt(&module, &mut pt_have, &sk1_dft, scratch.borrow());
ct_rlwe_out_dft.from_prod_by_grlwe(&module, &ct_rlwe_in_dft, &ct_grlwe, scratch.borrow());
ct_rlwe_out_dft.idft(&module, &mut ct_rlwe_out, scratch.borrow()); module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0);
ct_rlwe_out.decrypt(&module, &mut pt_have, &sk1_dft, scratch.borrow()); let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
let noise_want: f64 = noise_grlwe_rlwe_product(
module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0); module.n() as f64,
log_base2k,
let noise_have: f64 = pt_have.data.std(0, log_base2k).log2(); 0.5,
let noise_want: f64 = noise_grlwe_rlwe_product( 0.5,
module.n() as f64, 0f64,
log_base2k, sigma * sigma,
0.5, 0f64,
0.5, log_k_rlwe_in,
0f64, log_k_grlwe,
sigma * sigma, );
0f64,
log_k_rlwe_in, assert!(
log_k_grlwe, (noise_have - noise_want).abs() <= 0.1,
); "{} {}",
noise_have,
assert!( noise_want
(noise_have - noise_want).abs() <= 0.1, );
"{} {}",
noise_have, module.free();
noise_want }
);
#[test]
module.free(); fn prod_by_grlwe_inplace() {
} let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
#[test] let log_k_grlwe: usize = 60;
fn prod_by_grlwe() { let log_k_rlwe: usize = 45;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let rows: usize = (log_k_rlwe + log_base2k - 1) / log_base2k;
let log_base2k: usize = 12;
let log_k_grlwe: usize = 60; let sigma: f64 = 3.2;
let log_k_rlwe: usize = 45; let bound: f64 = sigma * 6.0;
let rows: usize = (log_k_rlwe + log_base2k - 1) / log_base2k;
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows);
let sigma: f64 = 3.2; let mut ct_rlwe: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe);
let bound: f64 = sigma * 6.0; let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe);
let mut ct_grlwe: GRLWECt<Vec<u8>, FFT64> = GRLWECt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe);
let mut ct_rlwe: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe);
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe); let mut source_xe: Source = Source::new([0u8; 32]);
let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe); let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]); // Random input plaintext
let mut source_xe: Source = Source::new([0u8; 32]); pt_want
let mut source_xa: Source = Source::new([0u8; 32]); .data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa);
// Random input plaintext
pt_want let mut scratch: ScratchOwned = ScratchOwned::new(
.data GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size())
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa); | RLWECt::decrypt_scratch_space(&module, ct_rlwe.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | RLWECtDft::prod_by_grlwe_inplace_scratch_space(&module, ct_rlwe_dft.size(), ct_grlwe.size()),
GRLWECt::encrypt_sk_scratch_space(&module, ct_grlwe.size()) );
| RLWECt::decrypt_scratch_space(&module, ct_rlwe.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe.size()) let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module);
| RLWECtDft::prod_by_grlwe_scratch_space(&module, ct_rlwe_dft.size(), ct_grlwe.size()), sk0.fill_ternary_prob(0.5, &mut source_xs);
);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk0: SecretKey<Vec<u8>> = SecretKey::new(&module); sk0_dft.dft(&module, &sk0);
sk0.fill_ternary_prob(0.5, &mut source_xs);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module);
let mut sk0_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); sk1.fill_ternary_prob(0.5, &mut source_xs);
sk0_dft.dft(&module, &sk0);
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk1: SecretKey<Vec<u8>> = SecretKey::new(&module); sk1_dft.dft(&module, &sk1);
sk1.fill_ternary_prob(0.5, &mut source_xs);
ct_grlwe.encrypt_sk(
let mut sk1_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); &module,
sk1_dft.dft(&module, &sk1); &sk0.data,
&sk1_dft,
ct_grlwe.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
&sk0.data, sigma,
&sk1_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe.encrypt_sk(
scratch.borrow(), &module,
); Some(&pt_want),
&sk0_dft,
ct_rlwe.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
Some(&pt_want), sigma,
&sk0_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe.dft(&module, &mut ct_rlwe_dft);
scratch.borrow(), ct_rlwe_dft.prod_by_grlwe_inplace(&module, &ct_grlwe, scratch.borrow());
); ct_rlwe_dft.idft(&module, &mut ct_rlwe, scratch.borrow());
ct_rlwe.dft(&module, &mut ct_rlwe_dft); ct_rlwe.decrypt(&module, &mut pt_have, &sk1_dft, scratch.borrow());
ct_rlwe_dft.prod_by_grlwe(&module, &ct_grlwe, scratch.borrow());
ct_rlwe_dft.idft(&module, &mut ct_rlwe, scratch.borrow()); module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0);
ct_rlwe.decrypt(&module, &mut pt_have, &sk1_dft, scratch.borrow()); let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
let noise_want: f64 = noise_grlwe_rlwe_product(
module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0); module.n() as f64,
log_base2k,
let noise_have: f64 = pt_have.data.std(0, log_base2k).log2(); 0.5,
let noise_want: f64 = noise_grlwe_rlwe_product( 0.5,
module.n() as f64, 0f64,
log_base2k, sigma * sigma,
0.5, 0f64,
0.5, log_k_rlwe,
0f64, log_k_grlwe,
sigma * sigma, );
0f64,
log_k_rlwe, assert!(
log_k_grlwe, (noise_have - noise_want).abs() <= 0.1,
); "{} {}",
noise_have,
assert!( noise_want
(noise_have - noise_want).abs() <= 0.1, );
"{} {}",
noise_have, module.free();
noise_want }
);
#[test]
module.free(); fn prod_by_rgsw() {
} let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
#[test] let log_k_grlwe: usize = 60;
fn from_prod_by_rgsw() { let log_k_rlwe_in: usize = 45;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let log_k_rlwe_out: usize = 60;
let log_base2k: usize = 12; let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let log_k_grlwe: usize = 60;
let log_k_rlwe_in: usize = 45; let sigma: f64 = 3.2;
let log_k_rlwe_out: usize = 60; let bound: f64 = sigma * 6.0;
let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows);
let sigma: f64 = 3.2; let mut ct_rlwe_in: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in);
let bound: f64 = sigma * 6.0; let mut ct_rlwe_out: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_dft_in: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows); let mut ct_rlwe_dft_out: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_in: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in); let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut ct_rlwe_out: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_out); let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in);
let mut ct_rlwe_dft_in: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in); let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_dft_out: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_out);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in); let mut source_xe: Source = Source::new([0u8; 32]);
let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out); let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]); // Random input plaintext
let mut source_xe: Source = Source::new([0u8; 32]); pt_want
let mut source_xa: Source = Source::new([0u8; 32]); .data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa);
// Random input plaintext
pt_want pt_want.to_mut().at_mut(0, 0)[1] = 1;
.data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa); let k: usize = 1;
pt_want.to_mut().at_mut(0, 0)[1] = 1; pt_rgsw.raw_mut()[k] = 1; // X^{k}
let k: usize = 1; let mut scratch: ScratchOwned = ScratchOwned::new(
RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size())
pt_rgsw.raw_mut()[k] = 1; // X^{k} | RLWECt::decrypt_scratch_space(&module, ct_rlwe_out.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe_in.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | RLWECt::prod_by_rgsw_scratch_space(
RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()) &module,
| RLWECt::decrypt_scratch_space(&module, ct_rlwe_out.size()) ct_rlwe_out.size(),
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe_in.size()) ct_rlwe_in.size(),
| RLWECt::from_prod_by_rgsw_scratch_space( ct_rgsw.size(),
&module, ),
ct_rlwe_out.size(), );
ct_rlwe_in.size(),
ct_rgsw.size(), let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
), sk.fill_ternary_prob(0.5, &mut source_xs);
);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); sk_dft.dft(&module, &sk);
sk.fill_ternary_prob(0.5, &mut source_xs);
ct_rgsw.encrypt_sk(
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); &module,
sk_dft.dft(&module, &sk); &pt_rgsw,
&sk_dft,
ct_rgsw.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
&pt_rgsw, sigma,
&sk_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe_in.encrypt_sk(
scratch.borrow(), &module,
); Some(&pt_want),
&sk_dft,
ct_rlwe_in.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
Some(&pt_want), sigma,
&sk_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe_in.dft(&module, &mut ct_rlwe_dft_in);
scratch.borrow(), ct_rlwe_dft_out.prod_by_rgsw(&module, &ct_rlwe_dft_in, &ct_rgsw, scratch.borrow());
); ct_rlwe_dft_out.idft(&module, &mut ct_rlwe_out, scratch.borrow());
ct_rlwe_in.dft(&module, &mut ct_rlwe_dft_in); ct_rlwe_out.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow());
ct_rlwe_dft_out.from_prod_by_rgsw(&module, &ct_rlwe_dft_in, &ct_rgsw, scratch.borrow());
ct_rlwe_dft_out.idft(&module, &mut ct_rlwe_out, scratch.borrow()); module.vec_znx_rotate_inplace(k as i64, &mut pt_want, 0);
ct_rlwe_out.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow()); module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0);
module.vec_znx_rotate_inplace(k as i64, &mut pt_want, 0); let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0); let var_gct_err_lhs: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64;
let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_gct_err_lhs: f64 = sigma * sigma; let var_a0_err: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64; let var_a1_err: f64 = 1f64 / 12f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k} let noise_want: f64 = noise_rgsw_product(
let var_a0_err: f64 = sigma * sigma; module.n() as f64,
let var_a1_err: f64 = 1f64 / 12f64; log_base2k,
0.5,
let noise_want: f64 = noise_rgsw_rlwe_product( var_msg,
module.n() as f64, var_a0_err,
log_base2k, var_a1_err,
0.5, var_gct_err_lhs,
var_msg, var_gct_err_rhs,
var_a0_err, log_k_rlwe_in,
var_a1_err, log_k_grlwe,
var_gct_err_lhs, );
var_gct_err_rhs,
log_k_rlwe_in, assert!(
log_k_grlwe, (noise_have - noise_want).abs() <= 0.1,
); "{} {}",
noise_have,
assert!( noise_want
(noise_have - noise_want).abs() <= 0.1, );
"{} {}",
noise_have, module.free();
noise_want }
);
#[test]
module.free(); fn prod_by_rgsw_inplace() {
} let module: Module<FFT64> = Module::<FFT64>::new(2048);
let log_base2k: usize = 12;
#[test] let log_k_grlwe: usize = 60;
fn prod_by_rgsw() { let log_k_rlwe_in: usize = 45;
let module: Module<FFT64> = Module::<FFT64>::new(2048); let log_k_rlwe_out: usize = 60;
let log_base2k: usize = 12; let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let log_k_grlwe: usize = 60;
let log_k_rlwe_in: usize = 45; let sigma: f64 = 3.2;
let log_k_rlwe_out: usize = 60; let bound: f64 = sigma * 6.0;
let rows: usize = (log_k_rlwe_in + log_base2k - 1) / log_base2k;
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows);
let sigma: f64 = 3.2; let mut ct_rlwe: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in);
let bound: f64 = sigma * 6.0; let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1);
let mut ct_rgsw: RGSWCt<Vec<u8>, FFT64> = RGSWCt::new(&module, log_base2k, log_k_grlwe, rows); let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in);
let mut ct_rlwe: RLWECt<Vec<u8>> = RLWECt::new(&module, log_base2k, log_k_rlwe_in); let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out);
let mut ct_rlwe_dft: RLWECtDft<Vec<u8>, FFT64> = RLWECtDft::new(&module, log_base2k, log_k_rlwe_in);
let mut pt_rgsw: ScalarZnx<Vec<u8>> = module.new_scalar_znx(1); let mut source_xs: Source = Source::new([0u8; 32]);
let mut pt_want: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_in); let mut source_xe: Source = Source::new([0u8; 32]);
let mut pt_have: RLWEPt<Vec<u8>> = RLWEPt::new(&module, log_base2k, log_k_rlwe_out); let mut source_xa: Source = Source::new([0u8; 32]);
let mut source_xs: Source = Source::new([0u8; 32]); // Random input plaintext
let mut source_xe: Source = Source::new([0u8; 32]); pt_want
let mut source_xa: Source = Source::new([0u8; 32]); .data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa);
// Random input plaintext
pt_want pt_want.to_mut().at_mut(0, 0)[1] = 1;
.data
.fill_uniform(log_base2k, 0, pt_want.size(), &mut source_xa); let k: usize = 1;
pt_want.to_mut().at_mut(0, 0)[1] = 1; pt_rgsw.raw_mut()[k] = 1; // X^{k}
let k: usize = 1; let mut scratch: ScratchOwned = ScratchOwned::new(
RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size())
pt_rgsw.raw_mut()[k] = 1; // X^{k} | RLWECt::decrypt_scratch_space(&module, ct_rlwe.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe.size())
let mut scratch: ScratchOwned = ScratchOwned::new( | RLWECt::prod_by_rgsw_inplace_scratch_space(&module, ct_rlwe.size(), ct_rgsw.size()),
RGSWCt::encrypt_sk_scratch_space(&module, ct_rgsw.size()) );
| RLWECt::decrypt_scratch_space(&module, ct_rlwe.size())
| RLWECt::encrypt_sk_scratch_space(&module, ct_rlwe.size()) let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module);
| RLWECt::prod_by_rgsw_scratch_space(&module, ct_rlwe.size(), ct_rgsw.size()), sk.fill_ternary_prob(0.5, &mut source_xs);
);
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module);
let mut sk: SecretKey<Vec<u8>> = SecretKey::new(&module); sk_dft.dft(&module, &sk);
sk.fill_ternary_prob(0.5, &mut source_xs);
ct_rgsw.encrypt_sk(
let mut sk_dft: SecretKeyDft<Vec<u8>, FFT64> = SecretKeyDft::new(&module); &module,
sk_dft.dft(&module, &sk); &pt_rgsw,
&sk_dft,
ct_rgsw.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
&pt_rgsw, sigma,
&sk_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe.encrypt_sk(
scratch.borrow(), &module,
); Some(&pt_want),
&sk_dft,
ct_rlwe.encrypt_sk( &mut source_xa,
&module, &mut source_xe,
Some(&pt_want), sigma,
&sk_dft, bound,
&mut source_xa, scratch.borrow(),
&mut source_xe, );
sigma,
bound, ct_rlwe.dft(&module, &mut ct_rlwe_dft);
scratch.borrow(), ct_rlwe_dft.prod_by_rgsw_inplace(&module, &ct_rgsw, scratch.borrow());
); ct_rlwe_dft.idft(&module, &mut ct_rlwe, scratch.borrow());
ct_rlwe.dft(&module, &mut ct_rlwe_dft); ct_rlwe.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow());
ct_rlwe_dft.prod_by_rgsw(&module, &ct_rgsw, scratch.borrow());
ct_rlwe_dft.idft(&module, &mut ct_rlwe, scratch.borrow()); module.vec_znx_rotate_inplace(k as i64, &mut pt_want, 0);
ct_rlwe.decrypt(&module, &mut pt_have, &sk_dft, scratch.borrow()); module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0);
module.vec_znx_rotate_inplace(k as i64, &mut pt_want, 0); let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
module.vec_znx_sub_ab_inplace(&mut pt_have, 0, &pt_want, 0); let var_gct_err_lhs: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64;
let noise_have: f64 = pt_have.data.std(0, log_base2k).log2();
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k}
let var_gct_err_lhs: f64 = sigma * sigma; let var_a0_err: f64 = sigma * sigma;
let var_gct_err_rhs: f64 = 0f64; let var_a1_err: f64 = 1f64 / 12f64;
let var_msg: f64 = 1f64 / module.n() as f64; // X^{k} let noise_want: f64 = noise_rgsw_product(
let var_a0_err: f64 = sigma * sigma; module.n() as f64,
let var_a1_err: f64 = 1f64 / 12f64; log_base2k,
0.5,
let noise_want: f64 = noise_rgsw_rlwe_product( var_msg,
module.n() as f64, var_a0_err,
log_base2k, var_a1_err,
0.5, var_gct_err_lhs,
var_msg, var_gct_err_rhs,
var_a0_err, log_k_rlwe_in,
var_a1_err, log_k_grlwe,
var_gct_err_lhs, );
var_gct_err_rhs,
log_k_rlwe_in, assert!(
log_k_grlwe, (noise_have - noise_want).abs() <= 0.1,
); "{} {}",
noise_have,
assert!( noise_want
(noise_have - noise_want).abs() <= 0.1, );
"{} {}",
noise_have, module.free();
noise_want
);
module.free();
}
} }