-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathBLcanonical.cpp
344 lines (294 loc) · 10.1 KB
/
BLcanonical.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
/*
Testbed for empirical evaluation of KP-ABE schemes, according to Crampton, Pinto (CSF2014).
Code by: Alexandre Miranda Pinto
This file implements a specific Secret Sharing scheme: Benaloh-Leichter for canonical policies
There are two classes implemented here:
- BLAccessPolicy is a subclass of the abstract AccessPolicy
- BLSS is a subclass of the abstract SecretSharing
*/
#ifndef DEF_BL_CANON
#include "BLcanonical.h"
#endif
void BLAccessPolicy::init(){
m_minimal_sets = parseFromExpression(0,m_description);
}
BLAccessPolicy::BLAccessPolicy():
m_description("")
{}
BLAccessPolicy::BLAccessPolicy(const string &description, const int n):
AccessPolicy(n),
m_description(description)
{
init();
}
BLAccessPolicy::BLAccessPolicy(const string &description, const vector<int> &parts):
AccessPolicy(parts),
m_description(description)
{
init();
}
BLAccessPolicy::BLAccessPolicy(const BLAccessPolicy& other):
AccessPolicy(other.m_participants),
m_description(other.m_description),
m_minimal_sets(other.m_minimal_sets)
{}
BLAccessPolicy& BLAccessPolicy::operator=(const BLAccessPolicy& other)
{
m_description = other.m_description;
m_participants = other.m_participants;
m_minimal_sets = other.m_minimal_sets;
return *this;
}
std::string BLAccessPolicy::getDescription() const
{
return m_description;
}
vector<vector<int> >& BLAccessPolicy::getMinimalSets() {
return m_minimal_sets;
}
vector<Big> BLAccessPolicy::findCoefficients(const vector<std::string> shareIDs, const Big& order) const {
vector<Big> coeffs;
for (unsigned int i = 0; i < shareIDs.size(); i++) {
std::string id = shareIDs[i];
int n = contains<std::string>(shareIDs, id);
if (n >= 0) {
coeffs.push_back(1);
} else {
coeffs.push_back(0);
}
}
return coeffs;
}
unsigned int BLAccessPolicy::getNumShares() {
unsigned int nshares = 0;
for (unsigned int i = 0; i < m_minimal_sets.size(); i++)
{
nshares += m_minimal_sets[i].size();
}
return nshares;
}
bool BLAccessPolicy::satisfyMinimalSet(int setID, vector<int> set, vector<std::string> shareIDs, vector<int> &satisfyingSharesIndices) const{
// DEBUG("SatisfyMinimalSet");
// DEBUG("shareIDs size " << shareIDs.size());
// debugVector(shareIDs, "ShareID");
bool missedElement = false;
for (unsigned int i = 0; (!missedElement) && (i < set.size()); i++) {
int setElem = set[i];
std::string elemID = convertIntToStr(setID) + ":" + convertIntToStr(setElem);
bool elemFound = false;
for (unsigned int j = 0; (!elemFound) && (j < shareIDs.size()); j++) {
std::string shareID = shareIDs[j];
if (elemID == shareID) {
elemFound = true;
satisfyingSharesIndices.push_back(j);
// Found element at position i
}
}
if (!elemFound) {
missedElement = true;
}
}
if (missedElement) {
// I have missed some element of the set. Returning false.
satisfyingSharesIndices.clear();
return false;
}
// I have not missed any element. Returning true."
return true;
}
std::string BLAccessPolicy::createShareID(std::string setID, std::string partID){
std::string id = setID + ":" + partID;
return id;
}
bool BLAccessPolicy::evaluateIDs(const vector<std::string> shareIDs, vector<int> &witnessSharesIndices) const{
witnessSharesIndices.clear();
vector<int> satisfyingSharesIndices;
for (unsigned int i = 0; i < m_minimal_sets.size(); i++)
{
vector<int> minimalSet = m_minimal_sets[i];
if (satisfyMinimalSet(i+1, minimalSet, shareIDs, satisfyingSharesIndices)){
addVector(witnessSharesIndices, satisfyingSharesIndices);
return true;
}
satisfyingSharesIndices.clear();
}
return false;
}
void BLAccessPolicy::obtainCoveredFrags(const vector<int> &atts, vector<int> &attFragIndices, vector<int> &keyFragIndices, vector<std::string> &coveredShareIDs) const {
int count = 0;
for (unsigned int i = 0; i < m_minimal_sets.size(); i++) {
vector<int> minimalSet = m_minimal_sets[i];
for (unsigned int j = 0; j < minimalSet.size(); j++) {
int att_index = minimalSet[j];
int n = contains(atts, att_index);
if (n >= 0) {
std::string shareID = convertIntToStr(i+1) + ":" + convertIntToStr(att_index);
keyFragIndices.push_back(count);
attFragIndices.push_back(n);
coveredShareIDs.push_back(shareID);
}
count++;
}
}
}
std::vector<std::vector<int> > BLAccessPolicy::parseFromExpression(int level, std::string expr) {
// level 0 denotes the top-level of the expression. An OR is expected here
// level 1 denotes the arguments of the OR. These could be either leaves or AND expressions
vector<vector<int> > minimalSets;
if (expr == "") {
return minimalSets;
}
try {
int leafValue = convertStrToInt(expr);
// If possible, create a leaf node with that value
// This can happen at any level
vector<int> minimalSet;
minimalSet.push_back(leafValue);
minimalSets.push_back(minimalSet);
return minimalSets;
} catch (std::exception &e) {
// If not, it must be some operator, depending on the level we are
// look for string until "("
size_t start_index = expr.find("(");
if (start_index == std::string::npos) {
stringstream ss(ERR_BAD_POLICY);
ss << ": Could not parse policy: it does not have an operator " << std::endl;
throw std::runtime_error(ss.str());
}
std::string op = expr.substr(0,start_index);
// check it is the right operator
bool right_or = ((level == 0) && (op == op_OR));
bool right_and = ((level == 1) && (op == op_AND));
if (! (right_or || right_and)) {
stringstream ss(ERR_BAD_POLICY);
ss << ": Could not parse BLAccessPolicy: wrong operator for this level: " << op << " level: " << level << std::endl;
throw std::runtime_error(ss.str());
}
// find the whole sub-expression of operator arguments
size_t end_index = expr.rfind(")");
if (end_index == std::string::npos) {
stringstream ss(ERR_BAD_POLICY);
ss << ": Could not parse policy: it does not have a closing [ ) ]" << std::endl;
throw std::runtime_error(ss.str());
}
if (end_index != expr.length()-1) {
stringstream ss;
ss << ": Could not parse policy: there is content beyond last [ ) ]" << std::endl;
throw std::runtime_error(ss.str());
}
//start: 4
//end: 10
//string: 5 to 9
//number chars: 9 - 5 + 1 = 5 = end-1-(start+1)+1 = end-1-start-1+1 = end - start - 1
std::string sub_expr = expr.substr(start_index+1, end_index - start_index - 1);
// parse sub-expression into tokens, separated by ","
vector<std::string> tokens;
exprTokenize(sub_expr, tokens, ",","(",")");
// if we are at level 0, each token must construct an AND
// and so we expect to receive a full minimal set.
// Because of the signature, this is wrapped
// inside an external vector, but it is its single element.
if (level == 0) {
for (unsigned int i = 0; i < tokens.size(); i++) {
vector<vector<int> > minimalSet = parseFromExpression(level+1, tokens[i]);
minimalSets.push_back(minimalSet[0]);
}
return minimalSets;
}
// if we are at level 1, we are constructing a minimal set for an AND expression
// each token is a single leaf and will be returned as a single element set
// inside a vector
if (level == 1) {
vector<int> minimalSet;
for (unsigned int i = 0; i < tokens.size(); i++) {
vector<vector<int> > literal = parseFromExpression(level+1, tokens[i]);
minimalSet.push_back(literal[0][0]);
}
minimalSets.push_back(minimalSet);
return minimalSets;
}
minimalSets.clear();
return minimalSets;
}
minimalSets.clear();
return minimalSets;
}
//==============================================
void BLSS::initPolicy(){
i_policy = std::dynamic_pointer_cast<BLAccessPolicy>(m_policy);
if (!i_policy) {
stringstream ss(ERR_BAD_POLICY);
ss << ": BLSS has an AccessPolicy that is not BLAccessPolicy!" << std::endl;
throw std::runtime_error(ss.str());
}
}
void BLSS::init(){
initPolicy();
manageRandomness(RandomnessActions::init);
}
BLSS::BLSS(shared_ptr<BLAccessPolicy> policy, PFC &pfc):
SecretSharing(policy, pfc)
{
init();
}
BLSS::BLSS(shared_ptr<BLAccessPolicy> policy, const Big &order, PFC &pfc):
SecretSharing(policy, order, pfc)
{
init();
}
void BLSS::manageRandomness(RandomnessActions action) {
int count = 0;
vector< vector<int> > &minimalSets = i_policy->getMinimalSets();
for (unsigned int i = 0; i < minimalSets.size(); i++) {
vector<int> set = minimalSets[i];
for (unsigned int j = 0; j < set.size()-1; j++) {
if (action == RandomnessActions::init) {
m_randomness.push_back(0);
} else if (action == RandomnessActions::randomize){
m_pfc.random(m_randomness[count]);
count++;
}
}
}
}
// virtual inherited methods:
vector<Big> BLSS::getDistribRandomness() {
return m_randomness;
}
std::vector<ShareTuple> BLSS::distribute_random(const Big& s){
manageRandomness(RandomnessActions::randomize);
return distribute_determ(s, m_randomness);
}
std::vector<ShareTuple> BLSS::distribute_determ(const Big& s, const vector<Big>& randomness){
int count = 0;
vector<ShareTuple> shares;
vector< vector<int> > minimalSets = i_policy->getMinimalSets();
for (unsigned int i = 0; i < minimalSets.size(); i++) {
vector<int> set = minimalSets[i];
Big currentSum = 0;
for (unsigned int j = 0; j < set.size(); j++) {
int partIndex = set[j];
std::string shareID = BLAccessPolicy::createShareID(convertIntToStr(i+1), convertIntToStr(partIndex));
Big value;
if (j < set.size()-1) {
value = randomness[count];
count++;
currentSum += value % m_order;
} else {
value = (s - currentSum + m_order) % m_order;
}
ShareTuple share(partIndex, value, shareID);
shares.push_back(share);
}
}
return shares;
}
Big BLSS::reconstruct (const vector<ShareTuple> shares){
vector<ShareTuple> witnessShares;
if (!i_policy->evaluate(shares, witnessShares)) return -1;
Big s = 0;
for (unsigned int i=0; i < witnessShares.size(); i++){
s = (s + witnessShares[i].getShare()) % m_order ;
}
return s;
}