zzy34407230
/
mindspore2022
Not watched
1
0
Fork 0
Code
Releases 22 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: bae1dd3bb0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bae1dd3bb0'
${ noResults }
mindspore2022/mindspore/ccsrc/fl/armour/cipher/cipher_reconstruct.cc

508 lines
24 kB
Raw Blame History 

  1. /**

  2.  * Copyright 2021 Huawei Technologies Co., Ltd

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  * http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include "fl/armour/cipher/cipher_reconstruct.h"

  18. #include "fl/server/common.h"

  19. #include "fl/armour/secure_protocol/masking.h"

  20. #include "fl/armour/secure_protocol/key_agreement.h"

  21. #include "fl/armour/cipher/cipher_meta_storage.h"

  22. 

  23. namespace mindspore {

  24. namespace armour {

  25. bool CipherReconStruct::CombineMask(std::vector<Share *> *shares_tmp,

  26.                                     std::map<std::string, std::vector<float>> *client_noise,

  27.                                     const std::vector<std::string> &clients_share_list,

  28.                                     const std::map<std::string, std::vector<std::vector<uint8_t>>> &record_public_keys,

  29.                                     const std::map<std::string, std::vector<clientshare_str>> &reconstruct_secret_list,

  30.                                     const std::vector<string> &client_list,

  31.                                     const std::map<std::string, std::vector<std::vector<uint8_t>>> &client_ivs) {

  32.   bool retcode = true;

  33. #ifdef _WIN32

  34.   MS_LOG(ERROR) << "Unsupported feature in Windows platform.";

  35.   retcode = false;

  36. #else

  37.   if (shares_tmp == nullptr || client_noise == nullptr) {

  38.     MS_LOG(ERROR) << "shares_tmp or client_noise is nullptr.";

  39.     return false;

  40.   }

  41.   for (auto iter = reconstruct_secret_list.begin(); iter != reconstruct_secret_list.end(); ++iter) {

  42.     // define flag_share: judge we need b or s

  43.     bool flag_share = true;

  44.     const std::string fl_id = iter->first;

  45.     if (find(client_list.begin(), client_list.end(), fl_id) != client_list.end()) {

  46.       // the client is online

  47.       flag_share = false;

  48.     }

  49.     MS_LOG(INFO) << "fl_id_src : " << fl_id;

  50.     BIGNUM *prime = BN_new();

  51.     if (prime == nullptr) {

  52.       return false;

  53.     }

  54.     auto publicparam_ = CipherInit::GetInstance().GetPublicParams();

  55.     (void)BN_bin2bn(publicparam_->prime, PRIME_MAX_LEN, prime);

  56.     if (iter->second.size() >= cipher_init_->secrets_minnums_) {  // combine private key seed.

  57.       MS_LOG(INFO) << "start assign secrets shares to public shares ";

  58.       for (int i = 0; i < static_cast<int>(cipher_init_->secrets_minnums_); ++i) {

  59.         shares_tmp->at(i)->index = (iter->second)[i].index;

  60.         shares_tmp->at(i)->len = (iter->second)[i].share.size();

  61.         if (memcpy_s(shares_tmp->at(i)->data, IntToSize(SHARE_MAX_SIZE), (iter->second)[i].share.data(),

  62.                      shares_tmp->at(i)->len) != 0) {

  63.           MS_LOG(ERROR) << "shares_tmp copy failed";

  64.           retcode = false;

  65.         }

  66.       }

  67.       MS_LOG(INFO) << "end assign secrets shares to public shares ";

  68. 

  69.       size_t length;

  70.       uint8_t secret[SECRET_MAX_LEN] = {0};

  71.       SecretSharing combine(prime);

  72.       if (combine.Combine(cipher_init_->secrets_minnums_, *shares_tmp, secret, &length) < 0) retcode = false;

  73.       length = SECRET_MAX_LEN;

  74.       MS_LOG(INFO) << "combine secrets shares Success.";

  75. 

  76.       if (flag_share) {

  77.         // reconstruct pairwise noise

  78.         MS_LOG(INFO) << "start reconstruct pairwise noise.";

  79.         std::vector<float> noise(cipher_init_->featuremap_, 0.0);

  80.         if (GetSuvNoise(clients_share_list, record_public_keys, client_ivs, fl_id, &noise, secret, length) == false) {

  81.           MS_LOG(ERROR) << "GetSuvNoise failed";

  82.           BN_clear_free(prime);

  83.           if (memset_s(secret, SECRET_MAX_LEN, 0, length) != 0) {

  84.             MS_LOG(EXCEPTION) << "Memset failed.";

  85.           }

  86.           return false;

  87.         }

  88.         (void)client_noise->emplace(std::pair<std::string, std::vector<float>>(fl_id, noise));

  89.       } else {

  90.         // reconstruct individual noise

  91.         MS_LOG(INFO) << "start reconstruct individual noise.";

  92.         std::vector<float> noise;

  93.         auto it = client_ivs.find(fl_id);

  94.         if (it == client_ivs.end()) {

  95.           MS_LOG(ERROR) << "cannot get ivs for client: " << fl_id;

  96.           return false;

  97.         }

  98.         if (it->second.size() != IV_NUM) {

  99.           MS_LOG(ERROR) << "get " << it->second.size() << " ivs, the iv num required is: " << IV_NUM;

  100.           return false;

  101.         }

  102.         std::vector<uint8_t> ind_iv = it->second[0];

  103.         if (Masking::GetMasking(&noise, SizeToInt(cipher_init_->featuremap_), (const uint8_t *)secret, SECRET_MAX_LEN,

  104.                                 ind_iv.data(), SizeToInt(ind_iv.size())) < 0) {

  105.           MS_LOG(ERROR) << "Get Masking failed";

  106.           if (memset_s(secret, SECRET_MAX_LEN, 0, length) != 0) {

  107.             MS_LOG(EXCEPTION) << "Memset failed.";

  108.           }

  109.           BN_clear_free(prime);

  110.           return false;

  111.         }

  112.         for (size_t index_noise = 0; index_noise < cipher_init_->featuremap_; index_noise++) {

  113.           noise[index_noise] *= -1;

  114.         }

  115.         (void)client_noise->emplace(std::pair<std::string, std::vector<float>>(fl_id, noise));

  116.       }

  117.       BN_clear_free(prime);

  118.       if (memset_s(secret, SECRET_MAX_LEN, 0, length) != 0) {

  119.         MS_LOG(EXCEPTION) << "Memset failed.";

  120.       }

  121.     } else {

  122.       MS_LOG(ERROR) << "reconstruct secret failed: the number of secret shares for fl_id: " << fl_id

  123.                     << " is not enough";

  124.       MS_LOG(ERROR) << "get " << iter->second.size()

  125.                     << "shares, however the secrets_minnums_ required is: " << cipher_init_->secrets_minnums_;

  126.       return false;

  127.     }

  128.   }

  129. #endif

  130.   return retcode;

  131. }

  132. 

  133. bool CipherReconStruct::ReconstructSecretsGenNoise(const std::vector<string> &client_list) {

  134.   // get reconstruct_secrets from memory server

  135.   MS_LOG(INFO) << "CipherReconStruct::ReconstructSecretsGenNoise START";

  136.   bool retcode = true;

  137.   std::map<std::string, std::vector<clientshare_str>> reconstruct_secrets;

  138.   cipher_init_->cipher_meta_storage_.GetClientSharesFromServer(fl::server::kCtxClientsReconstructShares,

  139.                                                                &reconstruct_secrets);

  140.   std::map<std::string, std::vector<std::vector<uint8_t>>> record_public_keys;

  141.   cipher_init_->cipher_meta_storage_.GetClientKeysFromServer(fl::server::kCtxClientsKeys, &record_public_keys);

  142. 

  143.   std::map<std::string, std::vector<std::vector<uint8_t>>> client_ivs;

  144.   cipher_init_->cipher_meta_storage_.GetClientIVsFromServer(fl::server::kCtxClientsKeys, &client_ivs);

  145. 

  146.   std::vector<std::string> clients_share_list;

  147.   cipher_init_->cipher_meta_storage_.GetClientListFromServer(fl::server::kCtxShareSecretsClientList,

  148.                                                              &clients_share_list);

  149.   if (record_public_keys.size() < cipher_init_->exchange_key_threshold ||

  150.       clients_share_list.size() < cipher_init_->share_secrets_threshold ||

  151.       record_public_keys.size() != client_ivs.size()) {

  152.     MS_LOG(ERROR) << "send share client size: " << clients_share_list.size()

  153.                   << ", send public-key client size: " << record_public_keys.size()

  154.                   << ", send ivs client size: " << client_ivs.size();

  155.     MS_LOG(ERROR) << "get data from server memory failed";

  156.     return false;

  157.   }

  158. 

  159.   std::map<std::string, std::vector<clientshare_str>> reconstruct_secret_list;

  160.   if (!ConvertSharesToShares(reconstruct_secrets, &reconstruct_secret_list)) {

  161.     MS_LOG(ERROR) << "ConvertSharesToShares failed.";

  162.     return false;

  163.   }

  164. 

  165.   MS_LOG(ERROR) << "recombined shares";

  166.   for (auto iter = reconstruct_secret_list.begin(); iter != reconstruct_secret_list.end(); ++iter) {

  167.     MS_LOG(ERROR) << "fl_id: " << iter->first;

  168.     MS_LOG(ERROR) << "share size: " << iter->second.size();

  169.   }

  170.   std::vector<Share *> shares_tmp;

  171.   if (!MallocShares(&shares_tmp, (SizeToInt)(cipher_init_->secrets_minnums_))) {

  172.     MS_LOG(ERROR) << "Reconstruct malloc shares_tmp invalid.";

  173.     DeleteShares(&shares_tmp);

  174.     return false;

  175.   }

  176. 

  177.   MS_LOG(INFO) << "Reconstruct secrets shares: ";

  178.   std::map<std::string, std::vector<float>> client_noise;

  179.   retcode = CombineMask(&shares_tmp, &client_noise, clients_share_list, record_public_keys, reconstruct_secret_list,

  180.                         client_list, client_ivs);

  181.   DeleteShares(&shares_tmp);

  182.   if (retcode) {

  183.     std::vector<float> noise;

  184.     if (!GetNoiseMasksSum(&noise, client_noise)) {

  185.       MS_LOG(ERROR) << " GetNoiseMasksSum failed";

  186.       return false;

  187.     }

  188.     client_noise.clear();

  189.     MS_LOG(INFO) << " ReconstructSecretsGenNoise updata noise to server";

  190. 

  191.     if (!cipher_init_->cipher_meta_storage_.UpdateClientNoiseToServer(fl::server::kCtxClientNoises, noise)) {

  192.       MS_LOG(ERROR) << " ReconstructSecretsGenNoise failed. because UpdateClientNoiseToServer failed";

  193.       return false;

  194.     }

  195.     MS_LOG(INFO) << " ReconstructSecretsGenNoise Success";

  196.   } else {

  197.     MS_LOG(ERROR) << " ReconstructSecretsGenNoise failed. because gen noise inside failed";

  198.   }

  199.   return retcode;

  200. }

  201. 

  202. bool CipherReconStruct::CheckInputs(const schema::SendReconstructSecret *reconstruct_secret_req,

  203.                                     const std::shared_ptr<fl::server::FBBuilder> &fbb, const int cur_iterator,

  204.                                     const std::string &next_req_time) {

  205.   if (reconstruct_secret_req == nullptr) {

  206.     std::string reason = "Request is nullptr";

  207.     MS_LOG(ERROR) << reason;

  208.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_RequestError, reason, cur_iterator, next_req_time);

  209.     return false;

  210.   }

  211.   if (cipher_init_ == nullptr) {

  212.     std::string reason = "cipher_init_ is nullptr";

  213.     MS_LOG(ERROR) << reason;

  214.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SystemError, reason, cur_iterator, next_req_time);

  215.     return false;

  216.   }

  217.   return true;

  218. }

  219. 

  220. // reconstruct secrets

  221. bool CipherReconStruct::ReconstructSecrets(const int cur_iterator, const std::string &next_req_time,

  222.                                            const schema::SendReconstructSecret *reconstruct_secret_req,

  223.                                            const std::shared_ptr<fl::server::FBBuilder> &fbb,

  224.                                            const std::vector<std::string> &client_list) {

  225.   MS_LOG(INFO) << "CipherReconStruct::ReconstructSecrets START";

  226.   clock_t start_time = clock();

  227.   bool inputs_check = CheckInputs(reconstruct_secret_req, fbb, cur_iterator, next_req_time);

  228.   if (!inputs_check) return false;

  229. 

  230.   int iterator = reconstruct_secret_req->iteration();

  231.   std::string fl_id = reconstruct_secret_req->fl_id()->str();

  232.   if (iterator != cur_iterator) {

  233.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_OutOfTime,

  234.                                "The iteration round of the client does not match the current iteration.", cur_iterator,

  235.                                next_req_time);

  236.     MS_LOG(ERROR) << "Client " << fl_id << " The iteration round of the client does not match the current iteration.";

  237.     return false;

  238.   }

  239. 

  240.   if (client_list.size() < cipher_init_->reconstruct_secrets_threshold) {

  241.     MS_LOG(ERROR) << "illegal parameters. update model client_list size: " << client_list.size();

  242.     BuildReconstructSecretsRsp(

  243.       fbb, schema::ResponseCode_RequestError,

  244.       "illegal parameters: update model client_list size must larger than reconstruct_clients_num_need", cur_iterator,

  245.       next_req_time);

  246.     return false;

  247.   }

  248. 

  249.   std::vector<std::string> get_clients_list;

  250.   cipher_init_->cipher_meta_storage_.GetClientListFromServer(fl::server::kCtxGetUpdateModelClientList,

  251.                                                              &get_clients_list);

  252.   // client not in get client list.

  253.   if (find(get_clients_list.begin(), get_clients_list.end(), fl_id) == get_clients_list.end()) {

  254.     std::string reason;

  255.     MS_LOG(INFO) << "The client " << fl_id << " is not in get update model client list.";

  256.     // client in update model client list.

  257.     if (find(client_list.begin(), client_list.end(), fl_id) != client_list.end()) {

  258.       reason = "The client " + fl_id + " is not in get clients list, but in update model client list.";

  259.       MS_LOG(INFO) << reason;

  260.       BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SUCCEED, reason, cur_iterator, next_req_time);

  261.       return false;

  262.     }

  263.     reason = "The client " + fl_id + " is not in get clients list, and not in update model client list.";

  264.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_RequestError, "The client is not in update model client list.",

  265.                                cur_iterator, next_req_time);

  266. 

  267.     return false;

  268.   }

  269. 

  270.   std::map<std::string, std::vector<clientshare_str>> reconstruct_shares;

  271.   cipher_init_->cipher_meta_storage_.GetClientSharesFromServer(fl::server::kCtxClientsReconstructShares,

  272.                                                                &reconstruct_shares);

  273.   size_t count_client_num = reconstruct_shares.size();

  274.   if (reconstruct_shares.find(fl_id) != reconstruct_shares.end()) {

  275.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SUCCEED, "Client has sended messages.", cur_iterator,

  276.                                next_req_time);

  277.     MS_LOG(INFO) << "Error, client " << fl_id << " has sended messages.";

  278.     return false;

  279.   }

  280. 

  281.   auto reconstruct_secret_shares = reconstruct_secret_req->reconstruct_secret_shares();

  282.   bool retcode_client =

  283.     cipher_init_->cipher_meta_storage_.UpdateClientToServer(fl::server::kCtxReconstructClientList, fl_id);

  284.   bool retcode_share = cipher_init_->cipher_meta_storage_.UpdateClientShareToServer(

  285.     fl::server::kCtxClientsReconstructShares, fl_id, reconstruct_secret_shares);

  286.   if (!(retcode_client && retcode_share)) {

  287.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_OutOfTime, "reconstruct update shares or client failed.",

  288.                                cur_iterator, next_req_time);

  289.     MS_LOG(ERROR) << "reconstruct update shares or client failed.";

  290.     return false;

  291.   }

  292. 

  293.   count_client_num = count_client_num + 1;

  294.   if (count_client_num < cipher_init_->reconstruct_secrets_threshold) {

  295.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SUCCEED,

  296.                                "Success, but the server is not ready to reconstruct secret yet.", cur_iterator,

  297.                                next_req_time);

  298.     MS_LOG(INFO) << "Get reconstruct shares from " << fl_id << " Success, but count " << count_client_num

  299.                  << " is not enough.";

  300.     return true;

  301.   }

  302.   const fl::PBMetadata &clients_noises_pb_out =

  303.     fl::server::DistributedMetadataStore::GetInstance().GetMetadata(fl::server::kCtxClientNoises);

  304.   const fl::ClientNoises &clients_noises_pb = clients_noises_pb_out.client_noises();

  305.   if (clients_noises_pb.has_one_client_noises() == false) {

  306.     MS_LOG(INFO) << "Success, the secret will be reconstructed.";

  307.     if (ReconstructSecretsGenNoise(client_list)) {

  308.       BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SUCCEED, "Success,the secret is reconstructing.",

  309.                                  cur_iterator, next_req_time);

  310.       MS_LOG(INFO) << "CipherReconStruct::ReconstructSecrets" << fl_id << " Success, reconstruct ok.";

  311.     } else {

  312.       BuildReconstructSecretsRsp(fbb, schema::ResponseCode_OutOfTime, "the secret restructs failed.", cur_iterator,

  313.                                  next_req_time);

  314.       MS_LOG(ERROR) << "CipherReconStruct::ReconstructSecrets" << fl_id << " failed.";

  315.     }

  316.   } else {

  317.     BuildReconstructSecretsRsp(fbb, schema::ResponseCode_SUCCEED, "Clients' number is full.", cur_iterator,

  318.                                next_req_time);

  319.     MS_LOG(INFO) << "CipherReconStruct::ReconstructSecrets" << fl_id << " Success : no need reconstruct.";

  320.   }

  321.   clock_t end_time = clock();

  322.   double duration = static_cast<double>((end_time - start_time) * 1.0 / CLOCKS_PER_SEC);

  323.   MS_LOG(INFO) << "Reconstruct get + gennoise data time is : " << duration;

  324.   return true;

  325. }

  326. 

  327. bool CipherReconStruct::GetNoiseMasksSum(std::vector<float> *result,

  328.                                          const std::map<std::string, std::vector<float>> &client_noise) {

  329.   std::vector<float> sum(cipher_init_->featuremap_, 0.0);

  330.   for (auto iter = client_noise.begin(); iter != client_noise.end(); iter++) {

  331.     if (iter->second.size() != cipher_init_->featuremap_) {

  332.       return false;

  333.     }

  334.     for (size_t i = 0; i < cipher_init_->featuremap_; i++) {

  335.       sum[i] += iter->second[i];

  336.     }

  337.   }

  338.   for (size_t i = 0; i < cipher_init_->featuremap_; i++) {

  339.     result->push_back(sum[i]);

  340.   }

  341.   return true;

  342. }

  343. 

  344. void CipherReconStruct::ClearReconstructSecrets() {

  345.   MS_LOG(INFO) << "CipherReconStruct::ClearReconstructSecrets START";

  346.   fl::server::DistributedMetadataStore::GetInstance().ResetMetadata(fl::server::kCtxReconstructClientList);

  347.   fl::server::DistributedMetadataStore::GetInstance().ResetMetadata(fl::server::kCtxClientsReconstructShares);

  348.   fl::server::DistributedMetadataStore::GetInstance().ResetMetadata(fl::server::kCtxClientNoises);

  349.   MS_LOG(INFO) << "CipherReconStruct::ClearReconstructSecrets Success";

  350. }

  351. 

  352. void CipherReconStruct::BuildReconstructSecretsRsp(const std::shared_ptr<fl::server::FBBuilder> &fbb,

  353.                                                    const schema::ResponseCode retcode, const std::string &reason,

  354.                                                    const int iteration, const std::string &next_req_time) {

  355.   auto fbs_reason = fbb->CreateString(reason);

  356.   auto fbs_next_req_time = fbb->CreateString(next_req_time);

  357.   schema::ReconstructSecretBuilder rsp_reconstruct_secret_builder(*(fbb.get()));

  358.   rsp_reconstruct_secret_builder.add_retcode(static_cast<int>(retcode));

  359.   rsp_reconstruct_secret_builder.add_reason(fbs_reason);

  360.   rsp_reconstruct_secret_builder.add_iteration(iteration);

  361.   rsp_reconstruct_secret_builder.add_next_req_time(fbs_next_req_time);

  362.   auto rsp_reconstruct_secret = rsp_reconstruct_secret_builder.Finish();

  363.   fbb->Finish(rsp_reconstruct_secret);

  364.   return;

  365. }

  366. 

  367. bool CipherReconStruct::GetSuvNoise(const std::vector<std::string> &clients_share_list,

  368.                                     const std::map<std::string, std::vector<std::vector<uint8_t>>> &record_public_keys,

  369.                                     const std::map<std::string, std::vector<std::vector<uint8_t>>> &client_ivs,

  370.                                     const string &fl_id, std::vector<float> *noise, const uint8_t *secret,

  371.                                     size_t length) {

  372.   for (auto p_key = clients_share_list.begin(); p_key != clients_share_list.end(); ++p_key) {

  373.     if (*p_key != fl_id) {

  374.       PrivateKey *privKey = KeyAgreement::FromPrivateBytes(secret, length);

  375.       if (privKey == NULL) {

  376.         MS_LOG(ERROR) << "create privKey failed\n";

  377.         return false;

  378.       }

  379.       std::vector<uint8_t> public_key = record_public_keys.at(*p_key)[1];

  380.       std::string iv_fl_id;

  381.       if (fl_id < *p_key) {

  382.         iv_fl_id = fl_id;

  383.       } else {

  384.         iv_fl_id = *p_key;

  385.       }

  386.       auto iter = client_ivs.find(iv_fl_id);

  387.       if (iter == client_ivs.end()) {

  388.         MS_LOG(ERROR) << "cannot get ivs for client: " << iv_fl_id;

  389.         delete privKey;

  390.         return false;

  391.       }

  392.       if (iter->second.size() != IV_NUM) {

  393.         MS_LOG(ERROR) << "get " << iter->second.size() << " ivs, the iv num required is: " << IV_NUM;

  394.         return false;

  395.       }

  396.       std::vector<uint8_t> pw_iv = iter->second[PW_IV_INDEX];

  397.       std::vector<uint8_t> pw_salt = iter->second[PW_SALT_INDEX];

  398.       PublicKey *pubKey = KeyAgreement::FromPublicBytes(public_key.data(), public_key.size());

  399.       if (pubKey == NULL) {

  400.         MS_LOG(ERROR) << "create pubKey failed\n";

  401.         return false;

  402.       }

  403.       MS_LOG(INFO) << "private_key fl_id : " << fl_id << " public_key fl_id : " << *p_key;

  404.       uint8_t secret1[SECRET_MAX_LEN] = {0};

  405.       int ret = KeyAgreement::ComputeSharedKey(privKey, pubKey, SECRET_MAX_LEN, pw_salt.data(),

  406.                                                SizeToInt(pw_salt.size()), secret1);

  407.       delete privKey;

  408.       delete pubKey;

  409.       if (ret < 0) {

  410.         MS_LOG(ERROR) << "ComputeSharedKey failed\n";

  411.         return false;

  412.       }

  413. 

  414.       std::vector<float> noise_tmp;

  415.       if (Masking::GetMasking(&noise_tmp, SizeToInt(cipher_init_->featuremap_), (const uint8_t *)secret1,

  416.                               SECRET_MAX_LEN, pw_iv.data(), pw_iv.size()) < 0) {

  417.         MS_LOG(ERROR) << "Get Masking failed\n";

  418.         return false;

  419.       }

  420.       bool symbol_noise = GetSymbol(fl_id, *p_key);

  421.       size_t index = 0;

  422.       size_t size_noise = noise_tmp.size();

  423.       if (symbol_noise == false) {

  424.         for (; index < size_noise; ++index) {

  425.           noise_tmp[index] = noise_tmp[index] * -1;

  426.           noise->at(index) += noise_tmp[index];

  427.         }

  428.       } else {

  429.         for (; index < size_noise; ++index) {

  430.           noise->at(index) += noise_tmp[index];

  431.         }

  432.       }

  433.     }

  434.   }

  435.   return true;

  436. }

  437. 

  438. bool CipherReconStruct::GetSymbol(const std::string &str1, const std::string &str2) {

  439.   if (str1 > str2) {

  440.     return true;

  441.   } else {

  442.     return false;

  443.   }

  444. }

  445. 

  446. // recombined shares by their source fl_id (ownners)

  447. bool CipherReconStruct::ConvertSharesToShares(const std::map<std::string, std::vector<clientshare_str>> &src,

  448.                                               std::map<std::string, std::vector<clientshare_str>> *des) {

  449.   if (des == nullptr) return false;

  450.   for (auto iter = src.begin(); iter != src.end(); ++iter) {

  451.     std::string des_id = iter->first;

  452.     auto &cur_clientshare_str = iter->second;

  453.     for (size_t index_clientshare = 0; index_clientshare < cur_clientshare_str.size(); ++index_clientshare) {

  454.       std::string src_id = cur_clientshare_str[index_clientshare].fl_id;

  455.       clientshare_str value;

  456.       value.fl_id = des_id;

  457.       value.share = cur_clientshare_str[index_clientshare].share;

  458.       value.index = cur_clientshare_str[index_clientshare].index;

  459.       if (des->find(src_id) == des->end()) {  // src_id is not in recombined shares list

  460.         std::vector<clientshare_str> value_list;

  461.         value_list.push_back(value);

  462.         (void)des->emplace(std::pair<std::string, std::vector<clientshare_str>>(src_id, value_list));

  463.       } else {

  464.         des->at(src_id).push_back(value);

  465.       }

  466.     }

  467.   }

  468.   return true;

  469. }

  470. 

  471. bool CipherReconStruct::MallocShares(std::vector<Share *> *shares_tmp, size_t shares_size) {

  472.   if (shares_tmp == nullptr) return false;

  473.   for (size_t i = 0; i < shares_size; ++i) {

  474.     Share *share_i = new (std::nothrow) Share();

  475.     if (share_i == nullptr) {

  476.       MS_LOG(ERROR) << "new Share failed.";

  477.       return false;

  478.     }

  479.     share_i->data = new uint8_t[SHARE_MAX_SIZE];

  480.     if (share_i->data == nullptr) {

  481.       MS_LOG(ERROR) << "malloc memory failed.";

  482.       delete share_i;

  483.       return false;

  484.     }

  485.     share_i->index = 0;

  486.     share_i->len = SHARE_MAX_SIZE;

  487.     shares_tmp->push_back(share_i);

  488.   }

  489.   return true;

  490. }

  491. 

  492. void CipherReconStruct::DeleteShares(std::vector<Share *> *shares_tmp) {

  493.   if (shares_tmp == nullptr) return;

  494.   if (shares_tmp->size() != 0) {

  495.     for (size_t i = 0; i < shares_tmp->size(); ++i) {

  496.       if (shares_tmp->at(i) != nullptr && shares_tmp->at(i)->data != nullptr) {

  497.         delete[](shares_tmp->at(i)->data);

  498.         shares_tmp->at(i)->data = nullptr;

  499.       }

  500.       delete shares_tmp->at(i);

  501.       shares_tmp->at(i) = nullptr;

  502.     }

  503.   }

  504.   return;

  505. }

  506. }  // namespace armour

  507. }  // namespace mindspore