1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT license.
#pragma once
#include "seal/encryptionparams.h"
#include "seal/memorymanager.h"
#include "seal/publickey.h"
#include "seal/valcheck.h"
#include "seal/version.h"
#include <iostream>
#include <vector>
namespace seal
{
/**
Class to store keyswitching keys. It should never be necessary for normal
users to create an instance of KSwitchKeys. This class is used strictly as
a base class for RelinKeys and GaloisKeys classes.
@par Keyswitching
Concretely, keyswitching is used to change a ciphertext encrypted with one
key to be encrypted with another key. It is a general technique and is used
in relinearization and Galois rotations. A keyswitching key contains a sequence
(vector) of keys. In RelinKeys, each key is an encryption of a power of the
secret key. In GaloisKeys, each key corresponds to a type of rotation.
@par Thread Safety
In general, reading from KSwitchKeys is thread-safe as long as no
other thread is concurrently mutating it. This is due to the underlying
data structure storing the keyswitching keys not being thread-safe.
@see RelinKeys for the class that stores the relinearization keys.
@see GaloisKeys for the class that stores the Galois keys.
*/
class KSwitchKeys
{
friend class KeyGenerator;
friend class RelinKeys;
friend class GaloisKeys;
public:
/**
Creates an empty KSwitchKeys.
*/
KSwitchKeys() = default;
/**
Creates a new KSwitchKeys instance by copying a given instance.
@param[in] copy The KSwitchKeys to copy from
*/
KSwitchKeys(const KSwitchKeys ©) = default;
/**
Creates a new KSwitchKeys instance by moving a given instance.
@param[in] source The RelinKeys to move from
*/
KSwitchKeys(KSwitchKeys &&source) = default;
/**
Copies a given KSwitchKeys instance to the current one.
@param[in] assign The KSwitchKeys to copy from
*/
KSwitchKeys &operator=(const KSwitchKeys &assign);
/**
Moves a given KSwitchKeys instance to the current one.
@param[in] assign The KSwitchKeys to move from
*/
KSwitchKeys &operator=(KSwitchKeys &&assign) = default;
/**
Returns the current number of keyswitching keys. Only keys that are
non-empty are counted.
*/
SEAL_NODISCARD inline std::size_t size() const noexcept
{
return std::accumulate(keys_.cbegin(), keys_.cend(), std::size_t(0), [](std::size_t res, auto &next_key) {
return res + (next_key.empty() ? 0 : 1);
});
}
/**
Returns a reference to the KSwitchKeys data.
*/
SEAL_NODISCARD inline auto &data() noexcept
{
return keys_;
}
/**
Returns a const reference to the KSwitchKeys data.
*/
SEAL_NODISCARD inline auto &data() const noexcept
{
return keys_;
}
/**
Returns a reference to a keyswitching key at a given index.
@param[in] index The index of the keyswitching key
@throws std::invalid_argument if the key at the given index does not exist
*/
SEAL_NODISCARD inline auto &data(std::size_t index)
{
if (index >= keys_.size() || keys_[index].empty())
{
throw std::invalid_argument("keyswitching key does not exist");
}
return keys_[index];
}
/**
Returns a const reference to a keyswitching key at a given index.
@param[in] index The index of the keyswitching key
@throws std::invalid_argument if the key at the given index does not exist
*/
SEAL_NODISCARD inline const auto &data(std::size_t index) const
{
if (index >= keys_.size() || keys_[index].empty())
{
throw std::invalid_argument("keyswitching key does not exist");
}
return keys_[index];
}
/**
Returns a reference to parms_id.
@see EncryptionParameters for more information about parms_id.
*/
SEAL_NODISCARD inline auto &parms_id() noexcept
{
return parms_id_;
}
/**
Returns a const reference to parms_id.
@see EncryptionParameters for more information about parms_id.
*/
SEAL_NODISCARD inline auto &parms_id() const noexcept
{
return parms_id_;
}
/**
Returns an upper bound on the size of the KSwitchKeys, as if it was written
to an output stream.
@param[in] compr_mode The compression mode
@throws std::invalid_argument if the compression mode is not supported
@throws std::logic_error if the size does not fit in the return type
*/
SEAL_NODISCARD inline std::streamoff save_size(
compr_mode_type compr_mode = Serialization::compr_mode_default) const
{
std::size_t total_key_size = util::mul_safe(keys_.size(), sizeof(std::uint64_t)); // keys_dim2
for (auto &key_dim1 : keys_)
{
for (auto &key_dim2 : key_dim1)
{
total_key_size = util::add_safe(
total_key_size, util::safe_cast<std::size_t>(key_dim2.save_size(compr_mode_type::none)));
}
}
std::size_t members_size = Serialization::ComprSizeEstimate(
util::add_safe(
sizeof(parms_id_),
sizeof(std::uint64_t), // keys_dim1
total_key_size),
compr_mode);
return util::safe_cast<std::streamoff>(util::add_safe(sizeof(Serialization::SEALHeader), members_size));
}
/**
Saves the KSwitchKeys instance to an output stream. The output is
in binary format and not human-readable. The output stream must have
the "binary" flag set.
@param[out] stream The stream to save the KSwitchKeys to
@param[in] compr_mode The desired compression mode
@throws std::invalid_argument if the compression mode is not supported
@throws std::logic_error if the data to be saved is invalid, or if
compression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff save(
std::ostream &stream, compr_mode_type compr_mode = Serialization::compr_mode_default) const
{
using namespace std::placeholders;
return Serialization::Save(
std::bind(&KSwitchKeys::save_members, this, _1), save_size(compr_mode_type::none), stream, compr_mode,
false);
}
/**
Loads a KSwitchKeys from an input stream overwriting the current KSwitchKeys.
No checking of the validity of the KSwitchKeys data against encryption
parameters is performed. This function should not be used unless the
KSwitchKeys comes from a fully trusted source.
@param[in] context The SEALContext
@param[in] stream The stream to load the KSwitchKeys from
@throws std::invalid_argument if the encryption parameters are not valid
@throws std::logic_error if the data cannot be loaded by this version of
Microsoft SEAL, if the loaded data is invalid, or if decompression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff unsafe_load(const SEALContext &context, std::istream &stream)
{
using namespace std::placeholders;
return Serialization::Load(std::bind(&KSwitchKeys::load_members, this, context, _1, _2), stream, false);
}
/**
Loads a KSwitchKeys from an input stream overwriting the current KSwitchKeys.
The loaded KSwitchKeys is verified to be valid for the given SEALContext.
@param[in] context The SEALContext
@param[in] stream The stream to load the KSwitchKeys from
@throws std::invalid_argument if the encryption parameters are not valid
@throws std::logic_error if the data cannot be loaded by this version of
Microsoft SEAL, if the loaded data is invalid, or if decompression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff load(const SEALContext &context, std::istream &stream)
{
KSwitchKeys new_keys;
new_keys.pool_ = pool_;
auto in_size = new_keys.unsafe_load(context, stream);
if (!is_valid_for(new_keys, context))
{
throw std::logic_error("KSwitchKeys data is invalid");
}
std::swap(*this, new_keys);
return in_size;
}
/**
Saves the KSwitchKeys instance to a given memory location. The output is
in binary format and not human-readable.
@param[out] out The memory location to write the KSwitchKeys to
@param[in] size The number of bytes available in the given memory location
@param[in] compr_mode The desired compression mode
@throws std::invalid_argument if out is null or if size is too small to
contain a SEALHeader, or if the compression mode is not supported
@throws std::logic_error if the data to be saved is invalid, or if
compression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff save(
seal_byte *out, std::size_t size, compr_mode_type compr_mode = Serialization::compr_mode_default) const
{
using namespace std::placeholders;
return Serialization::Save(
std::bind(&KSwitchKeys::save_members, this, _1), save_size(compr_mode_type::none), out, size,
compr_mode, false);
}
/**
Loads a KSwitchKeys from a given memory location overwriting the current
KSwitchKeys. No checking of the validity of the KSwitchKeys data against
encryption parameters is performed. This function should not be used
unless the KSwitchKeys comes from a fully trusted source.
@param[in] context The SEALContext
@param[in] in The memory location to load the KSwitchKeys from
@param[in] size The number of bytes available in the given memory location
@throws std::invalid_argument if the encryption parameters are not valid
@throws std::invalid_argument if in is null or if size is too small to
contain a SEALHeader
@throws std::logic_error if the data cannot be loaded by this version of
Microsoft SEAL, if the loaded data is invalid, or if decompression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff unsafe_load(const SEALContext &context, const seal_byte *in, std::size_t size)
{
using namespace std::placeholders;
return Serialization::Load(std::bind(&KSwitchKeys::load_members, this, context, _1, _2), in, size, false);
}
/**
Loads a KSwitchKeys from a given memory location overwriting the current
KSwitchKeys. The loaded KSwitchKeys is verified to be valid for the given
SEALContext.
@param[in] context The SEALContext
@param[in] in The memory location to load the KSwitchKeys from
@param[in] size The number of bytes available in the given memory location
@throws std::invalid_argument if the encryption parameters are not valid
@throws std::invalid_argument if in is null or if size is too small to
contain a SEALHeader
@throws std::logic_error if the data cannot be loaded by this version of
Microsoft SEAL, if the loaded data is invalid, or if decompression failed
@throws std::runtime_error if I/O operations failed
*/
inline std::streamoff load(const SEALContext &context, const seal_byte *in, std::size_t size)
{
KSwitchKeys new_keys;
new_keys.pool_ = pool_;
auto in_size = new_keys.unsafe_load(context, in, size);
if (!is_valid_for(new_keys, context))
{
throw std::logic_error("KSwitchKeys data is invalid");
}
std::swap(*this, new_keys);
return in_size;
}
/**
Returns the currently used MemoryPoolHandle.
*/
SEAL_NODISCARD inline MemoryPoolHandle pool() const noexcept
{
return pool_;
}
private:
void save_members(std::ostream &stream) const;
void load_members(const SEALContext &context, std::istream &stream, SEALVersion version);
MemoryPoolHandle pool_ = MemoryManager::GetPool();
parms_id_type parms_id_ = parms_id_zero;
/**
The vector of keyswitching keys.
*/
std::vector<std::vector<PublicKey>> keys_{};
};
} // namespace seal