[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[taler-wallet-core] branch master updated: anastasis-core: make policy s
|
From: |
gnunet |
|
Subject: |
[taler-wallet-core] branch master updated: anastasis-core: make policy suggestion a bit more compatible with the C implementation |
|
Date: |
Fri, 05 Nov 2021 09:40:53 +0100 |
This is an automated email from the git hooks/post-receive script.
dold pushed a commit to branch master
in repository wallet-core.
The following commit(s) were added to refs/heads/master by this push:
new 2139cfd7 anastasis-core: make policy suggestion a bit more compatible
with the C implementation
2139cfd7 is described below
commit 2139cfd707e1cd4d00e0aeeb5717cd3259da0373
Author: Florian Dold <florian@dold.me>
AuthorDate: Fri Nov 5 09:40:46 2021 +0100
anastasis-core: make policy suggestion a bit more compatible with the C
implementation
---
packages/anastasis-core/src/crypto.ts | 1 -
packages/anastasis-core/src/index.ts | 4 ++
packages/anastasis-core/src/policy-suggestion.ts | 79 +++++++++++++++++++++---
3 files changed, 74 insertions(+), 10 deletions(-)
diff --git a/packages/anastasis-core/src/crypto.ts
b/packages/anastasis-core/src/crypto.ts
index 6921cb2f..206d9eca 100644
--- a/packages/anastasis-core/src/crypto.ts
+++ b/packages/anastasis-core/src/crypto.ts
@@ -250,7 +250,6 @@ export async function coreSecretRecover(args: {
args.encryptedMasterKey,
"emk",
);
- console.log("recovered master key", masterKey);
return await anastasisDecrypt(masterKey, args.encryptedCoreSecret, "cse");
}
diff --git a/packages/anastasis-core/src/index.ts
b/packages/anastasis-core/src/index.ts
index 8972b057..2fdf0f83 100644
--- a/packages/anastasis-core/src/index.ts
+++ b/packages/anastasis-core/src/index.ts
@@ -868,6 +868,10 @@ async function requestTruth(
},
});
+ logger.info(
+ `got GET /truth response from ${truth.url}, http status ${resp.status}`,
+ );
+
if (resp.status === HttpStatusCode.Ok) {
let answerSalt: string | undefined = undefined;
if (
diff --git a/packages/anastasis-core/src/policy-suggestion.ts
b/packages/anastasis-core/src/policy-suggestion.ts
index 62392146..7eb6c21c 100644
--- a/packages/anastasis-core/src/policy-suggestion.ts
+++ b/packages/anastasis-core/src/policy-suggestion.ts
@@ -3,6 +3,9 @@ import { AuthMethod, Policy, PolicyProvider } from
"./reducer-types.js";
const logger = new Logger("anastasis-core:policy-suggestion.ts");
+const maxMethodSelections = 200;
+const maxPolicyEvaluations = 10000;
+
/**
* Provider information used during provider/method mapping.
*/
@@ -32,7 +35,11 @@ export function suggestPolicies(
numSel = 4;
}
const policies: Policy[] = [];
- const selections = enumerateMethodSelections(numSel, numMethods);
+ const selections = enumerateMethodSelections(
+ numSel,
+ numMethods,
+ maxMethodSelections,
+ );
logger.info(`selections: ${j2s(selections)}`);
for (const sel of selections) {
const p = assignProviders(policies, methods, providers, sel);
@@ -40,6 +47,7 @@ export function suggestPolicies(
policies.push(p);
}
}
+ logger.info(`suggesting policies ${j2s(policies)}`);
return {
policies,
policy_providers: providers.map((x) => ({
@@ -63,10 +71,15 @@ function assignProviders(
const providerSelections = enumerateProviderMappings(
methodSelection.length,
providers.length,
+ maxPolicyEvaluations,
);
let bestProvSel: ProviderSelection | undefined;
+ // Number of different providers selected, larger is better
let bestDiversity = 0;
+ // Number of identical challenges duplicated at different providers,
+ // smaller is better
+ let bestDuplication = Number.MAX_SAFE_INTEGER;
for (const provSel of providerSelections) {
// First, check if selection is even possible with the methods offered
@@ -87,22 +100,53 @@ function assignProviders(
// Evaluate diversity, always prefer policies
// that increase diversity.
const providerSet = new Set<string>();
- for (const pol of existingPolicies) {
- for (const m of pol.methods) {
- providerSet.add(m.provider);
- }
- }
+ // The C reducer evaluates diversity only per policy
+ // for (const pol of existingPolicies) {
+ // for (const m of pol.methods) {
+ // providerSet.add(m.provider);
+ // }
+ // }
for (const provIndex of provSel) {
const prov = providers[provIndex];
providerSet.add(prov.url);
}
const diversity = providerSet.size;
+
+ // Number of providers that each method shows up at.
+ const provPerMethod: Set<string>[] = [];
+ for (let i = 0; i < methods.length; i++) {
+ provPerMethod[i] = new Set<string>();
+ }
+ for (const pol of existingPolicies) {
+ for (const m of pol.methods) {
+ provPerMethod[m.authentication_method].add(m.provider);
+ }
+ }
+ for (const methSelIndex in provSel) {
+ const prov = providers[provSel[methSelIndex]];
+ provPerMethod[methodSelection[methSelIndex]].add(prov.url);
+ }
+
+ let duplication = 0;
+ for (const provSet of provPerMethod) {
+ duplication += provSet.size;
+ }
+
+ logger.info(`diversity ${diversity}, duplication ${duplication}`);
+
if (!bestProvSel || diversity > bestDiversity) {
bestProvSel = provSel;
bestDiversity = diversity;
+ bestDuplication = duplication;
+ logger.info(`taking based on diversity`);
+ } else if (diversity == bestDiversity && duplication < bestDuplication) {
+ bestProvSel = provSel;
+ bestDiversity = diversity;
+ bestDuplication = duplication;
+ logger.info(`taking based on duplication`);
}
- // TODO: also evaluate costs and duplicates (same challenge at same
provider)
+ // TODO: also evaluate costs
}
if (!bestProvSel) {
@@ -117,13 +161,20 @@ function assignProviders(
};
}
+/**
+ * A provider selection maps a method selection index to a provider index.
+ */
type ProviderSelection = number[];
/**
* Compute provider mappings.
* Enumerates all n-combinations with repetition of m providers.
*/
-function enumerateProviderMappings(n: number, m: number): ProviderSelection[] {
+function enumerateProviderMappings(
+ n: number,
+ m: number,
+ limit?: number,
+): ProviderSelection[] {
const selections: ProviderSelection[] = [];
const a = new Array(n);
const sel = (i: number, start: number = 0) => {
@@ -134,6 +185,9 @@ function enumerateProviderMappings(n: number, m: number):
ProviderSelection[] {
for (let j = start; j < m; j++) {
a[i] = j;
sel(i + 1, j);
+ if (limit && selections.length >= limit) {
+ break;
+ }
}
};
sel(0);
@@ -151,7 +205,11 @@ type MethodSelection = number[];
* Compute method selections.
* Enumerates all n-combinations without repetition of m methods.
*/
-function enumerateMethodSelections(n: number, m: number): MethodSelection[] {
+function enumerateMethodSelections(
+ n: number,
+ m: number,
+ limit?: number,
+): MethodSelection[] {
const selections: MethodSelection[] = [];
const a = new Array(n);
const sel = (i: number, start: number = 0) => {
@@ -162,6 +220,9 @@ function enumerateMethodSelections(n: number, m: number):
MethodSelection[] {
for (let j = start; j < m; j++) {
a[i] = j;
sel(i + 1, j + 1);
+ if (limit && selections.length >= limit) {
+ break;
+ }
}
};
sel(0);
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [taler-wallet-core] branch master updated: anastasis-core: make policy suggestion a bit more compatible with the C implementation,
gnunet <=