parasol_cpu 0.10.0

This crate contains the Parasol CPU, which runs programs over a mix of encrypted and plaintext data.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184

use std::sync::Arc;

use itertools::Itertools;
use rand::{RngCore, rng};

use crate::{
    ArgsBuilder, Byte, Memory, ToArg,
    proc::IsaOp,
    register_names::*,
    test_utils::{Bits, BitsUnsigned, MaybeEncryptedUInt, make_computer_128},
};

use parasol_runtime::{Encryption, SecretKey, test_utils::get_secret_keys_128};

enum CastType {
    ZeroExtension,
    SignExtension,
    Truncation,
}

fn casting(cast_type: CastType, encrypted_computation: bool) {
    let supported_sizes = [8u32, 16, 32];

    let combinations = supported_sizes
        .iter()
        .cartesian_product(supported_sizes.iter())
        .map(|(input_width, output_width)| {
            (
                (*input_width, *output_width),
                match cast_type {
                    CastType::SignExtension | CastType::ZeroExtension => {
                        input_width <= output_width
                    }
                    CastType::Truncation => input_width >= output_width,
                },
            )
        });

    for ((input_width, output_width), valid) in combinations {
        // TODO: If a program fails then currently this will stall the test when
        // a valid program is passed in. We should enable resetting the
        // processor on failure. In the meantime, we can just create a new
        // processor for each loop.
        let (mut proc, enc) = make_computer_128();
        let sk = get_secret_keys_128();
        let enc = &enc;

        // Get a random 32 bit value
        let value = rng().next_u32();
        let expected = match cast_type {
            CastType::SignExtension => {
                let mut sign_bit = value & (1 << (input_width - 1));
                let mut extended = value & (((1u64 << input_width) - 1) as u32);
                for _ in 0..output_width.saturating_sub(input_width) {
                    sign_bit <<= 1;
                    extended |= sign_bit;
                }
                extended
            }
            CastType::ZeroExtension => value & (((1u64 << input_width) - 1) as u32),
            CastType::Truncation => value & (((1u64 << output_width) - 1) as u32),
        };

        let memory = Arc::new(Memory::new_default_stack());

        let program = memory.allocate_program(&[
            // Load the input pointer
            IsaOp::Load(T0, SP, 32, 0),
            // Load the input value
            IsaOp::Load(T0, T0, input_width, 0),
            // Load the output pointer
            IsaOp::Load(T1, SP, 32, 4),
            match cast_type {
                CastType::SignExtension => IsaOp::Sext(T0, T0, output_width),
                CastType::ZeroExtension => IsaOp::Zext(T0, T0, output_width),
                CastType::Truncation => IsaOp::Trunc(T0, T0, output_width),
            },
            // Store the output value
            IsaOp::Store(T1, T0, output_width, 0),
            IsaOp::Ret(),
        ]);

        // Use the largest case to store our initial value.
        let input = MaybeEncryptedUInt::<32>::new(value as u128, enc, &sk, encrypted_computation);

        let input_ptr = memory.try_allocate(64).unwrap();
        let output_ptr = memory.try_allocate(64).unwrap();

        for (i, b) in input.to_bytes().into_iter().enumerate() {
            memory
                .try_store(input_ptr.try_offset(i as u32).unwrap(), b)
                .unwrap();
        }

        let args = ArgsBuilder::new()
            .arg(input_ptr)
            .arg(output_ptr)
            .no_return_value();

        let result = proc.run_program(program, &memory, args);

        match (valid, result) {
            (true, Ok(())) => {
                let ans_bytes = (0..output_width / 8)
                    .map(|x| memory.try_load(output_ptr.try_offset(x).unwrap()).unwrap())
                    .collect::<Vec<_>>();

                fn get_ans<const N: usize>(
                    ans_bytes: Vec<Byte>,
                    enc: &Encryption,
                    sk: &SecretKey,
                ) -> u32
                where
                    BitsUnsigned: Bits<N>,
                    <BitsUnsigned as Bits<N>>::PlaintextType: Into<u64>,
                {
                    let ans = MaybeEncryptedUInt::<N>::try_from_bytes(ans_bytes).unwrap();
                    let ans: u64 = ans.get(enc, sk).into();
                    ans as u32
                }

                let ans = match output_width {
                    8 => get_ans::<8>(ans_bytes, enc, &sk),
                    16 => get_ans::<16>(ans_bytes, enc, &sk),
                    32 => get_ans::<32>(ans_bytes, enc, &sk),
                    _ => unreachable!(),
                };

                assert_eq!(
                    expected, ans,
                    "input_width: {input_width}, output_width: {output_width}"
                );
            }
            (false, Err(_)) => {
                // Expected error
                continue;
            }
            (true, Err(e)) => panic!("Unexpected error: {e:?}"),
            (false, Ok(())) => panic!("Expected error"),
        }
    }
}

#[test]
fn can_cast_zero_extend_plaintext() {
    for _ in 0..5 {
        casting(CastType::ZeroExtension, false);
    }
}

#[test]
fn can_cast_zero_extend_ciphertext() {
    for _ in 0..3 {
        casting(CastType::ZeroExtension, true);
    }
}

#[test]
fn can_cast_sign_extend_plaintext() {
    for _ in 0..5 {
        casting(CastType::SignExtension, false);
    }
}

#[test]
fn can_cast_sign_extend_ciphertext() {
    for _ in 0..3 {
        casting(CastType::SignExtension, true);
    }
}

#[test]
fn can_cast_truncate_plaintext() {
    for _ in 0..5 {
        casting(CastType::Truncation, false);
    }
}

#[test]
fn can_cast_truncate_ciphertext() {
    for _ in 3..5 {
        casting(CastType::Truncation, true);
    }
}