documented example

ChristianMct · Mar 15, 2024 · a5ef8c2 · a5ef8c2
1 parent 1467c2a
commit a5ef8c2
Showing 1 changed file with 55 additions and 54 deletions.
diff --git a/examples/vec-mul/main.go b/examples/vec-mul/main.go
@@ -26,61 +26,79 @@ var (
 	sessionParams = session.Parameters{
 		ID:    "example-session",                                       // the id of the session must be unique
 		Nodes: []helium.NodeID{"node-1", "node-2", "node-3", "node-4"}, // the nodes that will participate in the session
-		RLWEParams: bgv.ParametersLiteral{
+		RLWEParams: bgv.ParametersLiteral{ // the FHE parameters
 			T:    79873,
 			LogN: 14,
 			LogQ: []int{56, 55, 55, 54, 54, 54},
 			LogP: []int{55, 55},
 		},
-		Threshold:  3,
-		ShamirPks:  map[helium.NodeID]drlwe.ShamirPublicPoint{"node-1": 1, "node-2": 2, "node-3": 3, "node-4": 4},
-		PublicSeed: []byte{'e', 'x', 'a', 'm', 'p', 'l', 'e', 's', 'e', 'e', 'd'},
-		Secrets:    nil, // read from /var/run/secrets
+		Threshold:  3,                                                                                             // the number of honest nodes assumed by the system.
+		ShamirPks:  map[helium.NodeID]drlwe.ShamirPublicPoint{"node-1": 1, "node-2": 2, "node-3": 3, "node-4": 4}, // the shamir public-key of the nodes for the t-out-of-n-threshold scheme.
+		PublicSeed: []byte{'e', 'x', 'a', 'm', 'p', 'l', 'e', 's', 'e', 'e', 'd'},                                 // the CRS
+		Secrets:    nil,                                                                                           // normally read from a file, simulated here for simplicity (see loadSecrets)
 	}
 
+	// the configuration of peer nodes
 	peerNodeConfig = node.Config{
-		ID:                "", // read from command line args
-		Address:           "", // read from command line args
-		HelperID:          "helper",
+		ID:                "",       // read from command line args
+		Address:           "",       // read from command line args
+		HelperID:          "helper", // the node id of the helper node
 		SessionParameters: []session.Parameters{sessionParams},
-		SetupConfig:       setup.ServiceConfig{Protocols: protocols.ExecutorConfig{MaxParticipation: 1}},
-		ComputeConfig:     compute.ServiceConfig{MaxCircuitEvaluation: 1, Protocols: protocols.ExecutorConfig{MaxParticipation: 1}},
-		ObjectStoreConfig: objectstore.Config{BackendName: "mem"},
-		TLSConfig:         centralized.TLSConfig{InsecureChannels: true},
+
+		// in this example, peer node can only participate in one protocol and one circuit at a time
+		SetupConfig:   setup.ServiceConfig{Protocols: protocols.ExecutorConfig{MaxParticipation: 1}},
+		ComputeConfig: compute.ServiceConfig{MaxCircuitEvaluation: 1, Protocols: protocols.ExecutorConfig{MaxParticipation: 1}},
+
+		ObjectStoreConfig: objectstore.Config{BackendName: "mem"},        // use a volatile in-memory store for state
+		TLSConfig:         centralized.TLSConfig{InsecureChannels: true}, // no TLS for simplicity
 	}
 
+	// the configuration of the helper node. Similar as for peer node, but enables multiple protocol and circuit evaluations at once.
 	helperConfig = node.Config{
 		ID:                "", // read from command line args
 		Address:           "", // read from command line args
 		HelperID:          "helper",
 		SessionParameters: []session.Parameters{sessionParams},
+
+		// allows 16 parallel protocol aggregation and each node is not chosen as participant for more than one protocol at the time.
 		SetupConfig:       setup.ServiceConfig{Protocols: protocols.ExecutorConfig{MaxAggregation: 16, MaxProtoPerNode: 1}},
 		ComputeConfig:     compute.ServiceConfig{MaxCircuitEvaluation: 16, Protocols: protocols.ExecutorConfig{MaxAggregation: 16, MaxProtoPerNode: 1}},
 		ObjectStoreConfig: objectstore.Config{BackendName: "mem"},
 		TLSConfig:         centralized.TLSConfig{InsecureChannels: true},
 	}
 
+	// the node list for the example system
 	nodelist = helium.NodesList{
 		helium.NodeInfo{NodeID: "helper", NodeAddress: "helper:40000"},
 		helium.NodeInfo{NodeID: "node-1"}, helium.NodeInfo{NodeID: "node-2"},
-		helium.NodeInfo{NodeID: "node-3"}, helium.NodeInfo{NodeID: "node-4"}}
+		helium.NodeInfo{NodeID: "node-3"}, helium.NodeInfo{NodeID: "node-4"},
+	}
 
+	// the application defines the MHE circuit to be evaluated and its required setup
 	app = node.App{
 		SetupDescription: &setup.Description{
-			Cpk: true,
-			Rlk: true,
+			Cpk: true,       // the circuit requires the collective public-key (for encryption)
+			Rlk: true,       // the circuit requires the relinearization key (for homomorphic multiplication)
+			Gks: []uint64{}, // the circuit does not require any galois keys (for homomorphic rotation)
 		},
 		Circuits: map[circuits.Name]circuits.Circuit{
+			// defines a circuit named "mul-4-dec" that multiplies 4 inputs and decrypts the result
 			"mul-4-dec": func(rt circuits.Runtime) error {
+
+				// reads the inputs from the parties. The node ids can be place-holders and the mapping actual ids are provided
+				// when querying for a circuit's execution.
 				in0, in1, in2, in3 := rt.Input("//p0/in"), rt.Input("//p1/in"), rt.Input("//p2/in"), rt.Input("//p3/in")
 
+				// computes the product between all inputs
 				opRes := rt.NewOperand("//eval/prod")
 				ctmul01, _ := rt.MulRelinNew(in0.Get().Ciphertext, in1.Get().Ciphertext)
 				ctmul23, _ := rt.MulRelinNew(in2.Get().Ciphertext, in3.Get().Ciphertext)
 				opRes.Ciphertext, _ = rt.MulRelinNew(ctmul01, ctmul23)
 
+				// decrypts the result with result receiver id "rec". The node id can be a place-holder and the actual id is provided
+				// when querying for a circuit's execution.
 				return rt.DEC(opRes, "rec", map[string]string{
-					"smudging": "40.0",
+					"smudging": "40.0", // use 40 bits of smudging.
 				})
 			},
 		},
@@ -95,6 +113,7 @@ var (
 )
 
 func init() {
+	// registers the command line arguments
 	flag.StringVar((*string)(&nodeID), "id", "", "the node's id")
 	flag.StringVar((*string)(&nodeAddr), "address", "", "the node's address")
 	flag.Uint64Var(&input, "input", 0, "the private input value")
@@ -110,8 +129,8 @@ func main() {
 
 	log.Printf("%s | [main] started\n", nodeID)
 
+	// completes the config according to the node id
 	var config node.Config
-	var ip compute.InputProvider
 	if nodeID == helperID {
 		config = helperConfig
 		if len(nodeAddr) == 0 {
@@ -120,46 +139,53 @@ func main() {
 		config.Address = nodeAddr
 	} else {
 		config = peerNodeConfig
-		if config.SessionParameters[0].Threshold == 0 {
-			config.SessionParameters[0].Threshold = len(config.SessionParameters[0].Nodes)
-		}
-		secrets, err := loadSecrets(config.SessionParameters[0], nodeID)
+		secrets, err := loadSecrets(config.SessionParameters[0], nodeID) // session node must load their secrets.
 		if err != nil {
 			log.Fatalf("could not load node's secrets: %s", err)
 		}
 		config.SessionParameters[0].Secrets = secrets
 	}
 	config.ID = nodeID
 
-	ip = func(ctx context.Context, _ helium.CircuitID, ol circuits.OperandLabel, sess session.Session) (any, error) {
+	// creates an InputProvider function from the node's private input
+	ip := func(ctx context.Context, _ helium.CircuitID, ol circuits.OperandLabel, sess session.Session) (any, error) {
 		in := make([]uint64, sess.Params.PlaintextSlots())
 		for i := range in {
-			in[i] = input % sessionParams.RLWEParams.T
+			in[i] = input % sess.RLWEParams.T
 		}
 		return in, nil
 	}
 
+	// runs the app on a new node
 	ctx := helium.NewBackgroundContext(config.SessionParameters[0].ID)
 	n, cdescs, outputs, err := node.RunNew(ctx, config, nodelist, app, ip)
 	if err != nil {
 		log.Fatal(err)
 	}
 
+	// the helper node starts the computation by sending a circuit description to the cdescs channel
 	if nodeID == helperID {
 		cdescs <- circuits.Descriptor{
-			Signature:   circuits.Signature{Name: circuits.Name("mul-4-dec")},
-			CircuitID:   "mul-4-dec-0",
-			NodeMapping: map[string]helium.NodeID{"p0": "node-1", "p1": "node-2", "p2": "node-3", "p3": "node-4", "eval": "helper", "rec": "helper"},
-			Evaluator:   "helper",
+			Signature: circuits.Signature{Name: circuits.Name("mul-4-dec")}, // the name of the circuit to be evaluated
+			CircuitID: "mul-4-dec-0",                                        // a unique, user-defined id for the circuit
+			NodeMapping: map[string]helium.NodeID{ // the mapping from node ids in the circuit to actual node ids
+				"p0":   "node-1",
+				"p1":   "node-2",
+				"p2":   "node-3",
+				"p3":   "node-4",
+				"eval": "helper",
+				"rec":  "helper"},
+			Evaluator: "helper", // the id of the circuit evaluator
 		}
 	}
-	close(cdescs)
+	close(cdescs) // when no more circuits evaluation are required, the user closes the cdesc channel
 
 	encoder, err := n.GetEncoder(ctx)
 	if err != nil {
 		log.Fatalf("%s | [main] error getting session encoder: %v\n", nodeID, err)
 	}
 
+	// outputs are received on the outputs channel. The output is a Lattigo rlwe.Plaintext.
 	out, hasOut := <-outputs
 
 	n.Close()
@@ -168,7 +194,7 @@ func main() {
 		pt := &rlwe.Plaintext{Operand: out.Ciphertext.Operand, Value: out.Ciphertext.Value[0]}
 		res := make([]uint64, encoder.Parameters().PlaintextSlots())
 		encoder.Decode(pt, res)
-		log.Printf("%s | [main] output: %v\n", nodeID, res)
+		fmt.Printf("%v\n", res)
 	}
 }
 
@@ -186,29 +212,4 @@ func loadSecrets(sp session.Parameters, nid helium.NodeID) (secrets *session.Sec
 	}
 
 	return
-	// data, err := os.ReadFile(fmt.Sprintf("/run/secrets/secret_%s", nodeID))
-	// if err != nil {
-	// 	return nil, err
-	// }
-
-	// lines := strings.Split(string(data), "\n")
-
-	// secrets = new(pkg.SessionSecrets)
-	// secrets.PrivateSeed = []byte(lines[0])
-
-	// if threshold {
-	// 	if len(lines) < 2 {
-	// 		return nil, fmt.Errorf("invalid secret file for threshold < N: expected 2 lines, got %d", len(lines))
-	// 	}
-
-	// 	secrets.ThresholdSecretKey = &drlwe.ShamirSecretShare{}
-	// 	tskdata, err := base64.StdEncoding.DecodeString(lines[1])
-	// 	if err != nil {
-	// 		return nil, err
-	// 	}
-	// 	err = secrets.ThresholdSecretKey.UnmarshalBinary(tskdata)
-	// 	if err != nil {
-	// 		return nil, err
-	// 	}
-	//}
 }