feat(tfhe): plug zk-pok into all layers

zama-ai · Apr 5, 2024 · 480907d · 480907d
1 parent cd45123
commit 480907d
Show file tree

Hide file tree

Showing 69 changed files with 4,675 additions and 312 deletions.
diff --git a/Makefile b/Makefile
@@ -175,6 +175,10 @@ fmt_gpu: install_rs_check_toolchain
 	cargo "$(CARGO_RS_CHECK_TOOLCHAIN)" fmt
 	cd "$(TFHECUDA_SRC)" && ./format_tfhe_cuda_backend.sh
 
+.PHONY: fmt_c_tests # Format c tests
+fmt_c_tests:
+	find tfhe/c_api_tests/ -regex '.*\.\(cpp\|hpp\|cu\|c\|h\)' -exec clang-format -style=file -i {} \;
+
 .PHONY: check_fmt # Check rust code format
 check_fmt: install_rs_check_toolchain
 	cargo "$(CARGO_RS_CHECK_TOOLCHAIN)" fmt --check
@@ -274,7 +278,7 @@ clippy_trivium: install_rs_check_toolchain
 .PHONY: clippy_all_targets # Run clippy lints on all targets (benches, examples, etc.)
 clippy_all_targets:
 	RUSTFLAGS="$(RUSTFLAGS)" cargo "$(CARGO_RS_CHECK_TOOLCHAIN)" clippy --all-targets \
-		--features=$(TARGET_ARCH_FEATURE),boolean,shortint,integer,internal-keycache \
+		--features=$(TARGET_ARCH_FEATURE),boolean,shortint,integer,internal-keycache,zk-pok-experimental \
 		-p $(TFHE_SPEC) -- --no-deps -D warnings
 
 .PHONY: clippy_concrete_csprng # Run clippy lints on concrete-csprng
@@ -353,7 +357,7 @@ symlink_c_libs_without_fingerprint:
 .PHONY: build_c_api # Build the C API for boolean, shortint and integer
 build_c_api: install_rs_check_toolchain
 	RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_CHECK_TOOLCHAIN) build --profile $(CARGO_PROFILE) \
-		--features=$(TARGET_ARCH_FEATURE),boolean-c-api,shortint-c-api,high-level-c-api,$(FORWARD_COMPAT_FEATURE) \
+		--features=$(TARGET_ARCH_FEATURE),boolean-c-api,shortint-c-api,high-level-c-api,zk-pok-experimental,$(FORWARD_COMPAT_FEATURE) \
 		-p $(TFHE_SPEC)
 	@"$(MAKE)" symlink_c_libs_without_fingerprint
 
@@ -376,23 +380,23 @@ build_web_js_api: install_rs_build_toolchain install_wasm_pack
 	cd tfhe && \
 	RUSTFLAGS="$(WASM_RUSTFLAGS)" rustup run "$(RS_BUILD_TOOLCHAIN)" \
 		wasm-pack build --release --target=web \
-		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api
+		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api,zk-pok-experimental
 
 .PHONY: build_web_js_api_parallel # Build the js API targeting the web browser with parallelism support
 build_web_js_api_parallel: install_rs_check_toolchain install_wasm_pack
 	cd tfhe && \
 	rustup component add rust-src --toolchain $(RS_CHECK_TOOLCHAIN) && \
 	RUSTFLAGS="$(WASM_RUSTFLAGS) -C target-feature=+atomics,+bulk-memory,+mutable-globals" rustup run $(RS_CHECK_TOOLCHAIN) \
 		wasm-pack build --release --target=web \
-		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api,parallel-wasm-api \
+		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api,parallel-wasm-api,zk-pok-experimental \
 		-Z build-std=panic_abort,std
 
 .PHONY: build_node_js_api # Build the js API targeting nodejs
 build_node_js_api: install_rs_build_toolchain install_wasm_pack
 	cd tfhe && \
 	RUSTFLAGS="$(WASM_RUSTFLAGS)" rustup run "$(RS_BUILD_TOOLCHAIN)" \
 		wasm-pack build --release --target=nodejs \
-		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api
+		-- --features=boolean-client-js-wasm-api,shortint-client-js-wasm-api,integer-client-js-wasm-api,zk-pok-experimental
 
 .PHONY: build_concrete_csprng # Build concrete_csprng
 build_concrete_csprng: install_rs_build_toolchain
@@ -402,10 +406,10 @@ build_concrete_csprng: install_rs_build_toolchain
 .PHONY: test_core_crypto # Run the tests of the core_crypto module including experimental ones
 test_core_crypto: install_rs_build_toolchain install_rs_check_toolchain
 	RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_BUILD_TOOLCHAIN) test --profile $(CARGO_PROFILE) \
-		--features=$(TARGET_ARCH_FEATURE),experimental -p $(TFHE_SPEC) -- core_crypto::
+		--features=$(TARGET_ARCH_FEATURE),experimental,zk-pok-experimental -p $(TFHE_SPEC) -- core_crypto::
 	@if [[ "$(AVX512_SUPPORT)" == "ON" ]]; then \
 		RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_CHECK_TOOLCHAIN) test --profile $(CARGO_PROFILE) \
-			--features=$(TARGET_ARCH_FEATURE),experimental,$(AVX512_FEATURE) -p $(TFHE_SPEC) -- core_crypto::; \
+			--features=$(TARGET_ARCH_FEATURE),experimental,zk-pok-experimental,$(AVX512_FEATURE) -p $(TFHE_SPEC) -- core_crypto::; \
 	fi
 
 .PHONY: test_core_crypto_cov # Run the tests of the core_crypto module with code coverage
@@ -576,7 +580,7 @@ test_integer_cov: install_rs_check_toolchain install_tarpaulin
 .PHONY: test_high_level_api # Run all the tests for high_level_api
 test_high_level_api: install_rs_build_toolchain
 	RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_BUILD_TOOLCHAIN) test --profile $(CARGO_PROFILE) \
-		--features=$(TARGET_ARCH_FEATURE),boolean,shortint,integer,internal-keycache -p $(TFHE_SPEC) \
+		--features=$(TARGET_ARCH_FEATURE),boolean,shortint,integer,internal-keycache,zk-pok-experimental -p $(TFHE_SPEC) \
 		-- high_level_api::
 
 test_high_level_api_gpu: install_rs_build_toolchain install_cargo_nextest
@@ -633,7 +637,7 @@ test_concrete_csprng:
 	RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_BUILD_TOOLCHAIN) test --profile $(CARGO_PROFILE) \
 		--features=$(TARGET_ARCH_FEATURE) -p concrete-csprng
 
-.PHONY: test_zk_pok # Run tfhe-zk-pok tests
+.PHONY: test_zk_pok # Run tfhe-zk-pok-experimental tests
 test_zk_pok:
 	RUSTFLAGS="$(RUSTFLAGS)" cargo $(CARGO_RS_BUILD_TOOLCHAIN) test --profile $(CARGO_PROFILE) \
 		-p tfhe-zk-pok

diff --git a/scripts/integer-tests.sh b/scripts/integer-tests.sh
@@ -162,7 +162,7 @@ cargo "${RUST_TOOLCHAIN}" nextest run \
     --cargo-profile "${cargo_profile}" \
     --package "${tfhe_package}" \
     --profile ci \
-    --features="${ARCH_FEATURE}",integer,internal-keycache,"${avx512_feature}" \
+    --features="${ARCH_FEATURE}",integer,internal-keycache,zk-pok-experimental,"${avx512_feature}" \
     --test-threads "${test_threads}" \
     -E "$filter_expression"
 

diff --git a/scripts/shortint-tests.sh b/scripts/shortint-tests.sh
@@ -120,7 +120,7 @@ and not test(~smart_add_and_mul)""" # This test is too slow
         --cargo-profile "${cargo_profile}" \
         --package "${tfhe_package}" \
         --profile ci \
-        --features="${ARCH_FEATURE}",shortint,internal-keycache \
+        --features="${ARCH_FEATURE}",shortint,internal-keycache,zk-pok-experimental \
         --test-threads "${n_threads_small}" \
         -E "${filter_expression_small_params}"
 

diff --git a/tfhe/Cargo.toml b/tfhe/Cargo.toml
@@ -69,6 +69,8 @@ paste = "1.0.7"
 fs2 = { version = "0.4.3", optional = true }
 # While we wait for repeat_n in rust standard library
 itertools = "0.11.0"
+rand_core = { version = "0.6.4", features = ["std"] }
+tfhe-zk-pok = { version = "0.1.0", path = "../tfhe-zk-pok", optional = true}
 
 # wasm deps
 wasm-bindgen = { version = "0.2.86", features = [
@@ -87,6 +89,7 @@ shortint = []
 integer = ["shortint"]
 internal-keycache = ["dep:lazy_static", "dep:fs2"]
 gpu = ["tfhe-cuda-backend"]
+zk-pok-experimental = ["dep:tfhe-zk-pok"]
 
 pbs-stats = []
 
@@ -270,6 +273,10 @@ required-features = ["boolean", "shortint", "internal-keycache"]
 
 # Real use-case examples
 
+[[example]]
+name = "demo"
+required-features = ["integer", "zk-pok-experimental"]
+
 [[example]]
 name = "fhe_strings"
 required-features = ["integer"]

diff --git a/tfhe/build.rs b/tfhe/build.rs
@@ -57,6 +57,8 @@ fn gen_c_api() {
         "integer",
         #[cfg(feature = "gpu")]
         "gpu",
+        #[cfg(feature = "zk-pok-experimental")]
+        "zk-pok-experimental",
     ];
 
     let parse_expand_vec = if parse_expand_features_vec.is_empty() {

diff --git a/tfhe/c_api_tests/test_high_level_zk.c b/tfhe/c_api_tests/test_high_level_zk.c
@@ -0,0 +1,109 @@
+#include "tfhe.h"
+#include <assert.h>
+#include <stdlib.h>
+#include <tfhe.h>
+
+int main(void) {
+  // We want to use zk-proof, which requires bounded random distributions
+  // tfhe-rs has the `TUniform` as an available bounded distribution.
+
+  // Note that simply changing parameters like this does not yield secure parameters
+  // Its only done for the example / tests
+  ShortintPBSParameters params = SHORTINT_PARAM_MESSAGE_2_CARRY_2_KS_PBS;
+  params.glwe_noise_distribution = new_t_uniform(9);
+  assert(params.encryption_key_choice == ShortintEncryptionKeyChoiceBig);
+
+  int status;
+
+  ConfigBuilder *builder;
+  status = config_builder_default(&builder);
+  assert(status == 0);
+  status = config_builder_use_custom_parameters(&builder, params);
+  assert(status == 0);
+
+  Config *config;
+  status = config_builder_build(builder, &config);
+  assert(status == 0);
+
+  // Compute the CRS
+  // Note that we do that before generating the client key
+  // as client_key_generate thakes ownership of the config
+  CompactPkeCrs *crs;
+  size_t max_num_bits = 32;
+  status = compact_pke_crs_from_config(config, max_num_bits, &crs);
+  assert(status == 0);
+
+  CompactPkePublicParams *public_params;
+  status = compact_pke_crs_public_params(crs, &public_params);
+  assert(status == 0);
+
+  ClientKey *client_key;
+  status = client_key_generate(config, &client_key);
+  assert(status == 0);
+
+  // zk proofs of encryption works only using the CompactPublicKey
+  CompactPublicKey *pk;
+  status = compact_public_key_new(client_key, &pk);
+  assert(status == 0);
+
+  // Demo of ProvenCompactFheUint32
+  {
+    uint32_t msg = 8328937;
+    ProvenCompactFheUint32 *proven_fhe_uint;
+    status = proven_compact_fhe_uint32_try_encrypt(msg, public_params, pk, ZkComputeLoadProof,
+                                                   &proven_fhe_uint);
+    assert(status == 0);
+
+    FheUint32 *fhe_uint;
+    // This function does not take ownership of the proven fhe uint, so we have to cleanup later
+    status =
+        proven_compact_fhe_uint32_verify_and_expand(proven_fhe_uint, public_params, pk, &fhe_uint);
+    assert(status == 0);
+
+    uint32_t decrypted;
+    status = fhe_uint32_decrypt(fhe_uint, client_key, &decrypted);
+    assert(status == 0);
+
+    assert(decrypted == msg);
+    fhe_uint32_destroy(fhe_uint);
+    proven_compact_fhe_uint32_destroy(proven_fhe_uint);
+  }
+
+  // Demo of ProvenCompactFheUint32List
+  {
+    uint32_t msgs[4] = {8328937, 217521191, 2753219039, 91099540};
+    ProvenCompactFheUint32List *proven_fhe_list;
+    status = proven_compact_fhe_uint32_list_try_encrypt(msgs, 4, public_params, pk,
+                                                        ZkComputeLoadProof, &proven_fhe_list);
+    assert(status == 0);
+
+    size_t list_len;
+    status = proven_compact_fhe_uint32_list_len(proven_fhe_list, &list_len);
+    assert(status == 0);
+    assert(list_len == 4);
+
+    FheUint32 *fhe_uints[4];
+    // This function does not take ownership of the proven fhe uint, so we have to cleanup later
+    status = proven_compact_fhe_uint32_list_verify_and_expand(proven_fhe_list, public_params, pk,
+                                                              &fhe_uints[0], 4);
+    assert(status == 0);
+
+    for (size_t i = 0; i < 4; ++i) {
+      uint32_t decrypted;
+      status = fhe_uint32_decrypt(fhe_uints[i], client_key, &decrypted);
+      assert(status == 0);
+
+      assert(decrypted == msgs[i]);
+      fhe_uint32_destroy(fhe_uints[i]);
+    }
+
+    proven_compact_fhe_uint32_list_destroy(proven_fhe_list);
+  }
+
+  compact_pke_public_params_destroy(public_params);
+  compact_pke_crs_destroy(crs);
+  compact_public_key_destroy(pk);
+  client_key_destroy(client_key);
+
+  return EXIT_SUCCESS;
+}