feat(ntt-bnf) Add back&Forth ntt implementation #2148

Bapt-Roux · 2025-03-03T17:21:08Z

PR content/description

New Pbs implementation based on NTT.
This implementation work on 2**k modulus and used modswitch before and after every cmux. It mimics the HW implementation

Check-list:

Tests for the changes have been added (for bug fixes / features)
Docs have been added / updated (for bug fixes / features)
Relevant issues are marked as resolved/closed, related issues are linked in the description
Check for breaking changes (including serialization changes) and add them to commit message following the conventional commit [specification][conventional-breaking]

github-actions · 2025-03-04T08:28:17Z

⚠️ This PR contains unsigned commits. To get your PR merged, please sign those commits (git rebase --exec 'git commit -S --amend --no-edit -n' @{upstream}) and force push them to this branch (git push --force-with-lease).

If you're new to commit signing, there are different ways to set it up:

Sign commits with gpg

Follow the steps below to set up commit signing with gpg:

Sign commits with ssh-agent

Follow the steps below to set up commit signing with ssh-agent:

Sign commits with 1Password

You can also sign commits using 1Password, which lets you sign commits with biometrics without the signing key leaving the local 1Password process.

Learn how to use 1Password to sign your commits.

Bapt-Roux · 2025-03-04T08:32:05Z

Test of ntt-bnf failed after the rebase on last main version.
Indeed, it seems that the noise reduction used for power of two ciphertext clash with ntt-bnf implementation.
This error wasn't seen in the original branch (i.e. hw-team) since we use another modswitch implementation

Bapt-Roux · 2025-03-20T17:48:13Z

After a review, the issue isn't link to changes in decomposition but to some part not correctly retrieved from our hw-team branch.
Indeed, with the ntt-bnf implementation, the BSK is generated on a power of two modulus and thus need to be modswitch and correctly aligned before going in the Ntt domain.
Thus, some modifications were made in lwe_bootstrap_key_conversion.rs to correctly handle the BSK conversion.

This implementation work on 2**k modulus and used modswitch before and after every cmux. It mimics the HW implementation Also modified the bootstrapping key conversion to correctly work with ciphertext_modulus that is a power of two and with width != of native one

IceTDrinker

Haven't had time to review the mod switching part, but it seems to have lots of moving parts in different places, there are changes I disagree with on entities, some nits for now, as said haven't had time to review the interesting content of the PR yet

IceTDrinker · 2025-03-24T08:35:39Z

tfhe/src/core_crypto/commons/math/ntt/ntt64.rs

+/// Handle modswitch and bit-align
+// This part of the code is duplicated within hpu/entities. Indeed, this ntt fix have lot of chance
+// to never reach main. And we don't want to have Hpu to depends on it
+impl Ntt64View<'_> {


can be part of the impl block below

IceTDrinker · 2025-03-24T08:36:56Z

tfhe/src/core_crypto/entities/glwe_ciphertext.rs

@@ -321,7 +321,7 @@ where
 {
    data: C,
    polynomial_size: PolynomialSize,
-    ciphertext_modulus: CiphertextModulus<C::Element>,
+    pub(crate) ciphertext_modulus: CiphertextModulus<C::Element>,


no, there should be an accessor for this field, it stays private, otherwise anybody can mutate it and make inconsistent entities

IceTDrinker · 2025-03-24T08:37:47Z

tfhe/src/core_crypto/commons/math/ntt/ntt64.rs

+impl Ntt64View<'_> {
+    /// This function switches modulus for a slice of coefficients
+    /// From: user domain (i.e. pow2 modulus)
+    /// To:   ntt domain  ( i.e. prime modulus)


nit: ( i.e. -> (i.e. there is an extraneous space

IceTDrinker · 2025-03-24T08:39:47Z

tfhe/src/core_crypto/commons/math/ntt/ntt64.rs

+    /// From:   ntt domain  ( i.e. prime modulus)
+    /// To: user domain (i.e. pow2 modulus)


nit: ( i.e. -> (i.e. there is an extraneous space
also can align as above

cla-bot bot added the cla-signed label Mar 3, 2025

Bapt-Roux force-pushed the br/ntt-bnf branch from 5bacf8d to c9ab7a7 Compare March 4, 2025 08:28

Bapt-Roux force-pushed the br/ntt-bnf branch from c9ab7a7 to 9824627 Compare March 20, 2025 17:38

Bapt-Roux force-pushed the br/ntt-bnf branch 2 times, most recently from 62276c7 to aa607fa Compare March 20, 2025 18:03

Bapt-Roux force-pushed the br/ntt-bnf branch from aa607fa to 9faa7c4 Compare March 21, 2025 08:17

Bapt-Roux requested a review from IceTDrinker March 21, 2025 08:21

IceTDrinker requested changes Mar 24, 2025

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(ntt-bnf) Add back&Forth ntt implementation #2148

feat(ntt-bnf) Add back&Forth ntt implementation #2148

Bapt-Roux commented Mar 3, 2025 •

edited

Loading

github-actions bot commented Mar 4, 2025

Bapt-Roux commented Mar 4, 2025

Bapt-Roux commented Mar 20, 2025

IceTDrinker left a comment

IceTDrinker Mar 24, 2025

IceTDrinker Mar 24, 2025

IceTDrinker Mar 24, 2025

IceTDrinker Mar 24, 2025

		/// From: ntt domain ( i.e. prime modulus)
		/// To: user domain (i.e. pow2 modulus)

feat(ntt-bnf) Add back&Forth ntt implementation #2148

Are you sure you want to change the base?

feat(ntt-bnf) Add back&Forth ntt implementation #2148

Conversation

Bapt-Roux commented Mar 3, 2025 • edited Loading

PR content/description

Check-list:

github-actions bot commented Mar 4, 2025

Bapt-Roux commented Mar 4, 2025

Bapt-Roux commented Mar 20, 2025

IceTDrinker left a comment

Choose a reason for hiding this comment

IceTDrinker Mar 24, 2025

Choose a reason for hiding this comment

IceTDrinker Mar 24, 2025

Choose a reason for hiding this comment

IceTDrinker Mar 24, 2025

Choose a reason for hiding this comment

IceTDrinker Mar 24, 2025

Choose a reason for hiding this comment

Bapt-Roux commented Mar 3, 2025 •

edited

Loading