diff --git a/.gitignore b/.gitignore
index 56bffa619..1660f528c 100644
--- a/.gitignore
+++ b/.gitignore
@@ -63,6 +63,7 @@ Programs/Public-Input/*
 *.static
 *.d
 local/
+*.map
 
 # Packages #
 ############
diff --git a/Auth/MAC_Check.h b/Auth/MAC_Check.h
index 84de474ed..57b15be12 100644
--- a/Auth/MAC_Check.h
+++ b/Auth/MAC_Check.h
@@ -24,9 +24,17 @@ using namespace std;
 #define POPEN_MAX 1000000
 
 
+template <class T>
+void write_mac_key(string& dir, int my_num, const T& key);
+template <class T>
+void read_mac_key(string& dir, int my_num, T& key);
+
+
 template<class T>
 class TreeSum
 {
+  static const char* mc_timer_names[];
+
 protected:
   int base_player;
   int opening_sum;
@@ -60,7 +68,7 @@ class MAC_Check_Base
 {
 protected:
   /* MAC Share */
-  typename T::clear alphai;
+  typename T::mac_key_type alphai;
 
 public:
   int values_opened;
@@ -72,26 +80,29 @@ class MAC_Check_Base
 
   int number() const { return values_opened; }
 
-  const typename T::clear& get_alphai() const { return alphai; }
+  const typename T::mac_key_type& get_alphai() const { return alphai; }
 
-  virtual void POpen_Begin(vector<typename T::clear>& values,const vector<T>& S,const Player& P) = 0;
-  virtual void POpen_End(vector<typename T::clear>& values,const vector<T>& S,const Player& P) = 0;
-  void POpen(vector<typename T::clear>& values,const vector<T>& S,const Player& P);
-  typename T::clear POpen(const T& secret, const Player& P);
+  virtual void POpen_Begin(vector<typename T::open_type>& values,const vector<T>& S,const Player& P) = 0;
+  virtual void POpen_End(vector<typename T::open_type>& values,const vector<T>& S,const Player& P) = 0;
+  void POpen(vector<typename T::open_type>& values,const vector<T>& S,const Player& P);
+  typename T::open_type POpen(const T& secret, const Player& P);
 };
 
 
-template<class T>
-class MAC_Check : public TreeSum<T>, public MAC_Check_Base<Share<T>>
+template<class U>
+class MAC_Check_ : public TreeSum<typename U::open_type>, public MAC_Check_Base<U>
 {
+  typedef typename U::open_type T;
+
   protected:
 
   /* POpen Data */
   int popen_cnt;
-  vector<T> macs;
+  vector<typename U::mac_type> macs;
   vector<T> vals;
 
-  void AddToMacs(const vector< Share<T> >& shares);
+  virtual void AddToMacs(const vector<U>& shares);
+  virtual void PrepareSending(vector<T>& values,const vector<U>& S);
   void AddToValues(vector<T>& values);
   void GetValues(vector<T>& values);
   void CheckIfNeeded(const Player& P);
@@ -100,8 +111,8 @@ class MAC_Check : public TreeSum<T>, public MAC_Check_Base<Share<T>>
 
   public:
 
-  MAC_Check(const T& ai, int opening_sum=10, int max_broadcast=10, int send_player=0);
-  virtual ~MAC_Check();
+  MAC_Check_(const T& ai, int opening_sum=10, int max_broadcast=10, int send_player=0);
+  virtual ~MAC_Check_();
 
   /* Run protocols to partially open data and check the MACs are 
    * all OK.
@@ -110,11 +121,45 @@ class MAC_Check : public TreeSum<T>, public MAC_Check_Base<Share<T>>
    * Begin and End expect the same arrays values and S passed to them
    * and they expect values to be of the same size as S.
    */
-  virtual void POpen_Begin(vector<T>& values,const vector<Share<T> >& S,const Player& P);
-  virtual void POpen_End(vector<T>& values,const vector<Share<T> >& S,const Player& P);
+  virtual void POpen_Begin(vector<T>& values,const vector<U>& S,const Player& P);
+  virtual void POpen_End(vector<T>& values,const vector<U>& S,const Player& P);
 
-  void AddToCheck(const T& mac, const T& value, const Player& P);
+  virtual void AddToCheck(const U& share, const T& value, const Player& P);
   virtual void Check(const Player& P);
+
+  // compatibility
+  void set_random_element(const U& random_element) { (void) random_element; }
+};
+
+template<class T>
+using MAC_Check = MAC_Check_<Share<T>>;
+
+template<int K, int S> class Spdz2kShare;
+template<class T> class Spdz2kPrep;
+template<class T> class MascotPrep;
+
+template<class T, class U, class V, class W>
+class MAC_Check_Z2k : public MAC_Check_<W>
+{
+protected:
+  vector<T> shares;
+  MascotPrep<W>* prep;
+
+  W get_random_element();
+
+  void AddToMacs(const vector< W >& shares);
+  void PrepareSending(vector<T>& values,const vector<W >& S);
+
+public:
+  vector<W> random_elements;
+
+  void AddToCheck(const W& share, const T& value, const Player& P);
+  MAC_Check_Z2k(const T& ai, int opening_sum=10, int max_broadcast=10, int send_player=0);
+  MAC_Check_Z2k(const T& ai, Names& Nms, int thread_num);
+  virtual void Check(const Player& P);
+  void set_random_element(const W& random_element);
+  void set_prep(MascotPrep<W>& prep);
+  virtual ~MAC_Check_Z2k() {};
 };
 
 
@@ -359,4 +404,34 @@ void TreeSum<T>::ReceiveValues(vector<T>& values, const Player& P, int sender)
   AddToValues(values);
 }
 
+template <class T>
+string mac_key_filename(string& dir, int my_num)
+{
+  return dir + "/Player-MAC-Key-" + T::type_string() + "-P" + to_string(my_num);
+}
+
+template <class T>
+void write_mac_key(string& dir, int my_num, const T& key)
+{
+  string filename = mac_key_filename<T>(dir, my_num);
+  cout << "Writing to " << filename << endl;
+  ofstream outf(filename);
+  key.output(outf, false);
+  if (not outf.good())
+    throw IO_Error(filename);
+}
+
+template <class T>
+T read_mac_key(string& dir, int my_num)
+{
+  string filename = mac_key_filename<T>(dir, my_num);
+  cout << "Reading from " << filename << endl;
+  T key;
+  ifstream inpf(filename);
+  key.input(inpf, false);
+  if (not inpf.good())
+    throw IO_Error(filename);
+  return key;
+}
+
 #endif
diff --git a/Auth/MAC_Check.cpp b/Auth/MAC_Check.hpp
similarity index 66%
rename from Auth/MAC_Check.cpp
rename to Auth/MAC_Check.hpp
index 5a7cb5064..d01b2c8e9 100644
--- a/Auth/MAC_Check.cpp
+++ b/Auth/MAC_Check.hpp
@@ -6,6 +6,7 @@
 #include "Tools/random.h"
 #include "Tools/time-func.h"
 #include "Tools/int.h"
+#include "Tools/benchmarking.h"
 
 #include "Math/gfp.h"
 #include "Math/gf2n.h"
@@ -14,10 +15,13 @@
 #include "Math/MaliciousRep3Share.h"
 #include "Math/ShamirShare.h"
 #include "Math/MaliciousShamirShare.h"
+#include "Math/Z2k.h"
+#include "Math/Spdz2kShare.h"
 
 #include <algorithm>
 
-const char* mc_timer_names[] = {
+template<class T>
+const char* TreeSum<T>::mc_timer_names[] = {
         "sending",
         "receiving and adding",
         "broadcasting",
@@ -30,8 +34,8 @@ const char* mc_timer_names[] = {
         "waiting for select()"
 };
 
-template<class T>
-MAC_Check<T>::MAC_Check(const T& ai, int opening_sum, int max_broadcast, int send_player) :
+template<class U>
+MAC_Check_<U>::MAC_Check_(const T& ai, int opening_sum, int max_broadcast, int send_player) :
     TreeSum<T>(opening_sum, max_broadcast, send_player)
 {
   popen_cnt=0;
@@ -41,26 +45,32 @@ MAC_Check<T>::MAC_Check(const T& ai, int opening_sum, int max_broadcast, int sen
 }
 
 template<class T>
-MAC_Check<T>::~MAC_Check()
+MAC_Check_<T>::~MAC_Check_()
 {
 }
 
-template<class T>
-void MAC_Check<T>::POpen_Begin(vector<T>& values,const vector<Share<T> >& S,const Player& P)
+template<class U>
+void MAC_Check_<U>::PrepareSending(vector<T>& values, const vector<U>& S)
 {
-  AddToMacs(S);
-
   values.resize(S.size());
   for (unsigned int i=0; i<S.size(); i++)
     { values[i]=S[i].get_share(); }
+}
+
+template<class U>
+void MAC_Check_<U>::POpen_Begin(vector<T>& values,const vector<U>& S,const Player& P)
+{
+  AddToMacs(S);
+
+  PrepareSending(values, S);
 
   this->start(values, P);
 
   this->values_opened += S.size();
 }
 
-template<class T>
-void MAC_Check<T>::POpen_End(vector<T>& values,const vector<Share<T> >& S,const Player& P)
+template<class U>
+void MAC_Check_<U>::POpen_End(vector<T>& values,const vector<U>& S,const Player& P)
 {
   S.size();
 
@@ -77,37 +87,42 @@ void MAC_Check<T>::POpen_End(vector<T>& values,const vector<Share<T> >& S,const
 }
 
 template<class T>
-void MAC_Check_Base<T>::POpen(vector<typename T::clear>& values,const vector<T>& S,const Player& P)
+void MAC_Check_Base<T>::POpen(vector<typename T::open_type>& values,const vector<T>& S,const Player& P)
 {
   POpen_Begin(values, S, P);
   POpen_End(values, S, P);
 }
 
 template<class T>
-typename T::clear MAC_Check_Base<T>::POpen(const T& secret, const Player& P)
+typename T::open_type MAC_Check_Base<T>::POpen(const T& secret, const Player& P)
 {
-  vector<typename T::clear> opened;
+  vector<typename T::open_type> opened;
   POpen(opened, {secret}, P);
   return opened[0];
 }
 
-template<class T>
-void MAC_Check<T>::AddToMacs(const vector<Share<T> >& shares)
+template<class U>
+void MAC_Check_<U>::AddToMacs(const vector<U>& shares)
 {
   for (unsigned int i = 0; i < shares.size(); i++)
     macs.push_back(shares[i].get_mac());
+#ifdef DEBUG_MAC
+  if (shares.size())
+    cout << "adding macs " << shares.back() << " / " <<
+        shares.back().get_mac() << " / " << macs.back() << endl;
+#endif
 }
 
 
-template<class T>
-void MAC_Check<T>::AddToValues(vector<T>& values)
+template<class U>
+void MAC_Check_<U>::AddToValues(vector<T>& values)
 {
   vals.insert(vals.end(), values.begin(), values.end());
 }
 
 
-template<class T>
-void MAC_Check<T>::GetValues(vector<T>& values)
+template<class U>
+void MAC_Check_<U>::GetValues(vector<T>& values)
 {
   int size = values.size();
   if (popen_cnt + size > int(vals.size()))
@@ -123,17 +138,17 @@ void MAC_Check<T>::GetValues(vector<T>& values)
 
 
 template<class T>
-void MAC_Check<T>::CheckIfNeeded(const Player& P)
+void MAC_Check_<T>::CheckIfNeeded(const Player& P)
 {
   if (WaitingForCheck() >= POPEN_MAX)
     Check(P);
 }
 
 
-template <class T>
-void MAC_Check<T>::AddToCheck(const T& mac, const T& value, const Player& P)
+template <class U>
+void MAC_Check_<U>::AddToCheck(const U& share, const T& value, const Player& P)
 {
-  macs.push_back(mac);
+  macs.push_back(share.get_mac());
   vals.push_back(value);
   popen_cnt++;
   CheckIfNeeded(P);
@@ -141,8 +156,8 @@ void MAC_Check<T>::AddToCheck(const T& mac, const T& value, const Player& P)
 
 
 
-template<class T>
-void MAC_Check<T>::Check(const Player& P)
+template<class U>
+void MAC_Check_<U>::Check(const Player& P)
 {
   if (WaitingForCheck() == 0)
     return;
@@ -155,7 +170,7 @@ void MAC_Check<T>::Check(const Player& P)
   PRNG G;
   G.SetSeed(seed);
 
-  Share<T>  sj;
+  U sj;
   T a,gami,h,temp;
   a.assign_zero();
   gami.assign_zero();
@@ -195,6 +210,149 @@ int mc_base_id(int function_id, int thread_num)
   return (function_id << 28) + ((T::field_type() + 1) << 24) + (thread_num << 16);
 }
 
+template<class T, class U, class V, class W>
+MAC_Check_Z2k<T, U, V, W>::MAC_Check_Z2k(const T& ai, int opening_sum, int max_broadcast, int send_player) :
+    MAC_Check_<W>(ai, opening_sum, max_broadcast, send_player), prep(0)
+{
+}
+
+template<class T, class U, class V, class W>
+MAC_Check_Z2k<T, U, V, W>::MAC_Check_Z2k(const T& ai, Names& Nms,
+        int thread_num) : MAC_Check_Z2k(ai)
+{
+    (void) Nms, (void) thread_num;
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::AddToCheck(const W& share, const T& value, const Player& P)
+{
+  shares.push_back(share.get_share());
+  MAC_Check_<W>::AddToCheck(share, value, P);
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::AddToMacs(const vector<W >& shares)
+{
+  for (auto& share : shares)
+    this->shares.push_back(share.get_share());
+  MAC_Check_<W>::AddToMacs(shares);
+#ifdef DEBUG_MAC
+  cout << "add share " << shares.back() << " / " << this->shares.back() << endl;
+#endif
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::PrepareSending(vector<T>& values,
+        const vector<W >& S)
+{
+  values.clear();
+  values.reserve(S.size());
+  for (auto& share : S)
+    values.push_back(V(share.get_share()));
+}
+
+template<class T, class U, class V, class W>
+W MAC_Check_Z2k<T, U, V, W>::get_random_element() {
+  if (random_elements.size() > 0)
+    {
+      W res = random_elements.back();
+      random_elements.pop_back();
+      return res;
+    }
+  else
+    {
+      if (prep)
+        return prep->get_random();
+      else
+      {
+        insecure("random dummy");
+        return {};
+      }
+    }
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::set_random_element(const W& random_element) {
+  random_elements.push_back(random_element);
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::set_prep(MascotPrep<W>& prep)
+{
+  this->prep = &prep;
+}
+
+template<class T, class U, class V, class W>
+void MAC_Check_Z2k<T, U, V, W>::Check(const Player& P)
+{
+  if (this->WaitingForCheck() == 0)
+    return;
+
+#ifdef DEBUG_MAC
+  cout << "Checking " << shares[0] << " " << this->vals[0] << " " << this->macs[0] << endl;
+#endif
+
+  int k = V::N_BITS;
+  octet seed[SEED_SIZE];
+  Create_Random_Seed(seed,P,SEED_SIZE);
+  PRNG G;
+  G.SetSeed(seed);
+
+  T y, mj;
+  y.assign_zero();
+  mj.assign_zero();
+  vector<U> chi;
+  for (int i = 0; i < this->popen_cnt; ++i)
+  {
+    U temp_chi;
+    temp_chi.randomize(G);
+    T xi = this->vals[i];
+    y += xi * temp_chi;
+    T mji = this->macs[i];
+    mj += temp_chi * mji;
+    chi.push_back(temp_chi);
+  }
+
+  W r = get_random_element();
+  T lj = r.get_mac();
+  U pj;
+  pj.assign_zero();
+  for (int i = 0; i < this->popen_cnt; ++i)
+  {
+    T xji = shares[i];
+    V xbarji = xji;
+    U pji = U((xji - xbarji) >> k);
+    pj += chi[i] * pji;
+  }
+  pj += U(r.get_share());
+
+  U pbar(pj);
+  vector<octetStream> pj_stream(P.num_players());
+  pj.pack(pj_stream[P.my_num()]);
+  P.Broadcast_Receive(pj_stream, true);
+  for (int j=0; j<P.num_players(); j++) {
+    if (j!=P.my_num()) {
+      pbar += pj_stream[j].consume(U::size());
+    }
+  }
+
+  T zj = mj - (this->alphai * y) - (((this->alphai * pbar)) << k) + (lj << k);
+  vector<T> zjs(P.num_players());
+  zjs[P.my_num()] = zj;
+  Commit_And_Open(zjs, P);
+
+  T zj_sum;
+  zj_sum.assign_zero();
+  for (int i = 0; i < P.num_players(); ++i)
+    zj_sum += zjs[i];
+
+  this->vals.erase(this->vals.begin(), this->vals.begin() + this->popen_cnt);
+  this->macs.erase(this->macs.begin(), this->macs.begin() + this->popen_cnt);
+  this->shares.erase(this->shares.begin(), this->shares.begin() + this->popen_cnt);
+  this->popen_cnt=0;
+  if (!zj_sum.is_zero()) { throw mac_fail(); }
+}
+
 template<class T>
 Separate_MAC_Check<T>::Separate_MAC_Check(const T& ai, Names& Nms,
     int thread_num, int opening_sum, int max_broadcast, int send_player) :
@@ -439,32 +597,3 @@ void Passing_MAC_Check<T>::POpen_End(vector<T>& values,const vector<Share<T> >&
   this->popen_cnt += values.size();
   this->CheckIfNeeded(P);
 }
-
-template class MAC_Check<gfp>;
-template class Direct_MAC_Check<gfp>;
-template class Parallel_MAC_Check<gfp>;
-template class Passing_MAC_Check<gfp>;
-
-template class MAC_Check<gf2n>;
-template class Direct_MAC_Check<gf2n>;
-template class Parallel_MAC_Check<gf2n>;
-template class Passing_MAC_Check<gf2n>;
-
-#ifdef USE_GF2N_LONG
-template class MAC_Check<gf2n_short>;
-template class Direct_MAC_Check<gf2n_short>;
-template class Parallel_MAC_Check<gf2n_short>;
-template class Passing_MAC_Check<gf2n_short>;
-#endif
-
-template class MAC_Check_Base<Rep3Share<gfp>>;
-template class MAC_Check_Base<Rep3Share<gf2n>>;
-template class MAC_Check_Base<Rep3Share<Integer>>;
-template class MAC_Check_Base<MaliciousRep3Share<gfp>>;
-template class MAC_Check_Base<MaliciousRep3Share<gf2n>>;
-template class MAC_Check_Base<ShamirShare<gfp>>;
-template class MAC_Check_Base<ShamirShare<gf2n>>;
-template class MAC_Check_Base<MaliciousShamirShare<gfp>>;
-template class MAC_Check_Base<MaliciousShamirShare<gf2n>>;
-template class MAC_Check_Base<Share<gfp>>;
-template class MAC_Check_Base<Share<gf2n>>;
diff --git a/Auth/Subroutines.cpp b/Auth/Subroutines.cpp
index e76c92277..0f3a03674 100644
--- a/Auth/Subroutines.cpp
+++ b/Auth/Subroutines.cpp
@@ -4,6 +4,7 @@
 #include "Tools/random.h"
 #include "Exceptions/Exceptions.h"
 #include "Tools/Commit.h"
+#include "Math/Z2k.h"
 
 /* To ease readability as I re-write this program the following conventions
  * will be used.
@@ -176,24 +177,20 @@ void Create_Random_Seed(octet* seed,const Player& P,int len)
 }
 
 
-template<class T>
-void Commit_And_Open(vector<T>& data,const Player& P)
+void Commit_And_Open_(vector<octetStream>& datas,const Player& P)
 {
   vector<octetStream> Comm_data(P.num_players());
   vector<octetStream> Open_data(P.num_players());
 
-  octetStream ee;
-  data[P.my_num()].pack(ee);
-  Commit(Comm_data[P.my_num()],Open_data[P.my_num()],ee,P.my_num());
+  Commit(Comm_data[P.my_num()],Open_data[P.my_num()],datas[P.my_num()],P.my_num());
   P.Broadcast_Receive(Comm_data);
 
   P.Broadcast_Receive(Open_data);
 
   for (int i = 0; i < P.num_players(); i++)
     { if (i != P.my_num())
-        { if (!Open(ee,Comm_data[i],Open_data[i],i))
+        { if (!Open(datas[i],Comm_data[i],Open_data[i],i))
              { throw invalid_commitment(); }
-          data[i].unpack(ee);
         }
     }
 }
@@ -232,13 +229,10 @@ void generate_challenge(vector<int>& challenge, const Player& P)
 
 
 
-template void Commit_And_Open(vector<gf2n>& data,const Player& P);
 template void Create_Random(gf2n& ans,const Player& P);
 
 #ifdef USE_GF2N_LONG
-template void Commit_And_Open(vector<gf2n_short>& data,const Player& P);
 template void Create_Random(gf2n_short& ans,const Player& P);
 #endif
 
-template void Commit_And_Open(vector<gfp>& data,const Player& P);
 template void Create_Random(gfp& ans,const Player& P);
diff --git a/Auth/Subroutines.h b/Auth/Subroutines.h
index 2830d3426..e471a7390 100644
--- a/Auth/Subroutines.h
+++ b/Auth/Subroutines.h
@@ -46,6 +46,19 @@ void Commit_And_Open(vector< vector<T> >& data,const Player& P,int num_runs);
 template<class T>
 void Commit_And_Open(vector<T>& data,const Player& P);
 
+void Commit_And_Open_(vector<octetStream>& datas,const Player& P);
+
+template<class T>
+void Commit_And_Open(vector<T>& data,const Player& P)
+{
+  vector<octetStream> datas(P.num_players());
+  data[P.my_num()].pack(datas[P.my_num()]);
+  Commit_And_Open_(datas, P);
+  for (int i = 0; i < P.num_players(); i++)
+    data[i].unpack(datas[i]);
+}
+
+
 template<class T>
 void Transmit_Data(vector< vector<T> >& data,const Player& P,int num_runs);
 
diff --git a/Auth/fake-stuff.h b/Auth/fake-stuff.h
index 53bcc6b35..e4af6c82c 100644
--- a/Auth/fake-stuff.h
+++ b/Auth/fake-stuff.h
@@ -4,6 +4,7 @@
 
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
 #include "Math/Share.h"
 #include "Math/Rep3Share.h"
 #include "GC/MaliciousRepSecret.h"
@@ -11,20 +12,22 @@
 #include <fstream>
 using namespace std;
 
-template<class T>
-void make_share(vector<Share<T> >& Sa,const T& a,int N,const T& key,PRNG& G);
-
-template<class T>
-void check_share(vector<Share<T> >& Sa,T& value,T& mac,int N,const T& key);
 template<class T>
 void check_share(vector<T>& Sa, typename T::clear& value,
     typename T::value_type& mac, int N, const typename T::value_type& key);
 
+template<class T, class V>
+void check_share(vector<Share<T> >& Sa,
+  V& value,
+  T& mac,
+  int N,
+  const T& key);
+
 // Generate MAC key shares
 void generate_keys(const string& directory, int nplayers);
 
-template <class T>
-void write_mac_keys(const string& directory, int player_num, int nplayers, gfp keyp, T key2);
+template <class T, class U>
+void write_mac_keys(const string& directory, int player_num, int nplayers, U keyp, T key2);
 
 // Read MAC key shares and compute keys
 void read_keys(const string& directory, gfp& keyp, gf2n& key2, int nplayers);
@@ -35,9 +38,9 @@ class Files
 public:
   ofstream* outf;
   int N;
-  typename T::value_type key;
+  typename T::mac_type key;
   PRNG G;
-  Files(int N, const typename T::value_type& key, const string& prefix) : N(N), key(key)
+  Files(int N, const typename T::mac_type& key, const string& prefix) : N(N), key(key)
   {
     outf = new ofstream[N];
     for (int i=0; i<N; i++)
diff --git a/Auth/fake-stuff.hpp b/Auth/fake-stuff.hpp
index 101f54786..44820ceb1 100644
--- a/Auth/fake-stuff.hpp
+++ b/Auth/fake-stuff.hpp
@@ -1,6 +1,7 @@
 
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
 #include "Math/Share.h"
 #include "Auth/fake-stuff.h"
 #include "Tools/benchmarking.h"
@@ -8,8 +9,8 @@
 
 #include <fstream>
 
-template<class T>
-void make_share(vector<Share<T> >& Sa,const T& a,int N,const T& key,PRNG& G)
+template<class T, class U, class V>
+void make_share(Share<T>* Sa,const U& a,int N,const V& key,PRNG& G)
 {
   insecure("share generation", false);
   T mac,x,y;
@@ -18,7 +19,6 @@ void make_share(vector<Share<T> >& Sa,const T& a,int N,const T& key,PRNG& G)
   S.set_share(a);
   S.set_mac(mac);
 
-  Sa.resize(N);
   for (int i=0; i<N-1; i++)
     { x.randomize(G);
       y.randomize(G);
@@ -30,21 +30,21 @@ void make_share(vector<Share<T> >& Sa,const T& a,int N,const T& key,PRNG& G)
 }
 
 template<class T>
-void make_share(FixedVec<T, 2>* Sa, const T& a, int N, PRNG& G);
+void make_share(FixedVec<T, 2>* Sa, const T& a, int N, const T& key, PRNG& G);
 
 template<class T>
 inline void make_share(vector<T>& Sa,
-    const typename T::clear& a, int N, const typename T::value_type& key,
+    const typename T::clear& a, int N, const typename T::mac_type& key,
     PRNG& G)
 {
-  (void)key;
   Sa.resize(N);
-  make_share(Sa.data(), a, N, G);
+  make_share(Sa.data(), a, N, key, G);
 }
 
 template<class T>
-void make_share(FixedVec<T, 2>* Sa, const T& a, int N, PRNG& G)
+void make_share(FixedVec<T, 2>* Sa, const T& a, int N, const T& key, PRNG& G)
 {
+  (void) key;
   assert(N == 3);
   insecure("share generation", false);
   FixedVec<T, 3> add_shares;
@@ -59,8 +59,12 @@ void make_share(FixedVec<T, 2>* Sa, const T& a, int N, PRNG& G)
     }
 }
 
-template<class T>
-void check_share(vector<Share<T> >& Sa,T& value,T& mac,int N,const T& key)
+template<class T, class V>
+void check_share(vector<Share<T> >& Sa,
+  V& value,
+  T& mac,
+  int N,
+  const T& key)
 {
   value.assign(0);
   mac.assign(0);
@@ -71,9 +75,9 @@ void check_share(vector<Share<T> >& Sa,T& value,T& mac,int N,const T& key)
       mac.add(Sa[i].get_mac());
     }
 
-  T res;
+  V res;
   res.mul(value, key);
-  if (!res.equal(mac))
+  if (res != mac)
     {
       cout << "Value:      " << value << endl;
       cout << "Input MAC:  " << mac << endl;
@@ -134,8 +138,8 @@ inline string mac_filename(string directory, int playerno)
   return directory + "/Player-MAC-Keys-P" + to_string(playerno);
 }
 
-template <class T>
-void write_mac_keys(const string& directory, int i, int nplayers, gfp macp, T mac2)
+template <class T, class U>
+void write_mac_keys(const string& directory, int i, int nplayers, U macp, T mac2)
 {
   ofstream outf;
   stringstream filename;
diff --git a/BMR/Party.cpp b/BMR/Party.cpp
index 072e72896..50d0d9806 100644
--- a/BMR/Party.cpp
+++ b/BMR/Party.cpp
@@ -19,6 +19,8 @@
 #include "BooleanCircuit.h"
 #include "Math/Setup.h"
 
+#include "Auth/MAC_Check.hpp"
+
 #ifdef __PURE_SHE__
 #include "mpirxx.h"
 #endif
diff --git a/BMR/TrustedParty.cpp b/BMR/TrustedParty.cpp
index 7ecefd27f..431cae27b 100644
--- a/BMR/TrustedParty.cpp
+++ b/BMR/TrustedParty.cpp
@@ -409,7 +409,7 @@ void TrustedProgramParty::garble()
 	second_phase(program, processor, machine);
 
 	vector< Share<gf2n> > tmp;
-	make_share<gf2n>(tmp, 1, get_n_parties(), mac_key, prng);
+	make_share(tmp, 1, get_n_parties(), mac_key, prng);
 	for (int i = 0; i < get_n_parties(); i++)
 		tmp[i].get_mac().pack(spdz_wires[SPDZ_MAC][i]);
 	for (int i = 0; i < get_n_parties(); i++)
diff --git a/CONFIG b/CONFIG
index 5d675c6e1..b7b3f8bab 100644
--- a/CONFIG
+++ b/CONFIG
@@ -27,7 +27,7 @@ ARCH = -mtune=native -msse4.1 -maes -mpclmul -mavx -mavx2 -mbmi2
 # allow to set compiler in CONFIG.mine
 CXX = g++
 
-#use CONFIG.mine to overwrite DIR settings
+# use CONFIG.mine to overwrite DIR settings
 -include CONFIG.mine
 
 ifeq ($(USE_GF2N_LONG),1)
diff --git a/Check-Offline-Z2k.cpp b/Check-Offline-Z2k.cpp
new file mode 100644
index 000000000..1dcbc914a
--- /dev/null
+++ b/Check-Offline-Z2k.cpp
@@ -0,0 +1,120 @@
+
+#include "Math/Z2k.h"
+#include "Math/Share.h"
+#include "Math/Setup.h"
+#include "Math/Spdz2kShare.h"
+#include "Auth/fake-stuff.h"
+
+#include "Auth/fake-stuff.hpp"
+
+#include <fstream>
+#include <vector>
+#include <numeric>
+
+template <class W>
+void check_triples_Z2k(int n_players, string type_char = "")
+{
+    typedef typename W::open_type T;
+    typedef typename W::mac_key_type U;
+    typedef typename W::open_type V;
+
+    T keyp; keyp.assign_zero();
+    U pp;
+    ifstream inpf;
+    for (int i= 0; i < n_players; i++)
+    {
+      stringstream ss;
+      ss << get_prep_dir(n_players, 128, 128) << "Player-MAC-Keys";
+      ss << "-P" << i;
+      cout << "Opening file " << ss.str() << endl;
+      inpf.open(ss.str().c_str());
+      if (inpf.fail()) { throw file_error(ss.str()); }
+      int n;
+      inpf >> n;
+      assert(n == n_players);
+      pp.input(inpf,true);
+      cout << " Key " << i << "\t p: " << pp << endl;
+      keyp.add(pp);
+      inpf.close();
+    }
+    cout << "--------------\n";
+    cout << "Final Keys :\t p: " << keyp << endl;
+
+    ifstream* inputFiles = new ifstream[n_players];
+    for (int i = 0; i < n_players; i++)
+    {
+        stringstream ss;
+        ss << get_prep_dir(n_players, 128, 128) << "Triples-";
+        if (type_char.size())
+            ss << type_char;
+        else
+            ss << W::type_short();
+        ss << "-P" << i;
+        inputFiles[i].open(ss.str().c_str());
+        cout << "Opening file " << ss.str() << endl;
+    }
+
+    int j = 0;
+    while (inputFiles[0].peek() != EOF)
+    {
+        V a,b,c,prod;
+        T mac;
+        vector<Share<T>> as(n_players), bs(n_players), cs(n_players);
+
+        for (int i = 0; i < n_players; i++)
+        {
+          as[i].input(inputFiles[i], false);
+          bs[i].input(inputFiles[i], false);
+          cs[i].input(inputFiles[i], false);
+        }
+
+        check_share<T, V>(as, a, mac, n_players, keyp);
+        check_share<T, V>(bs, b, mac, n_players, keyp);
+        check_share<T, V>(cs, c, mac, n_players, keyp);
+        
+        prod.mul(a, b);
+        if (prod != c)
+        {
+          cout << j << ": " << c << " != " << a << " * " << b << endl;
+          throw bad_value();
+        }
+        j++;
+    }
+
+    cout << dec << j << " correct triples of type " << T::type_string() << endl;
+    delete[] inputFiles;
+}
+
+template<int K, int S>
+void check(int n_players)
+{
+    check_triples_Z2k<Spdz2kShare<K, S>>(n_players);
+}
+
+int main(int argc, char** argv)
+{
+    int n_players = 2;
+    if (argc > 1)
+        n_players = atoi(argv[1]);
+    int k = 64;
+    if (argc > 2)
+    {
+        k = atoi(argv[2]);
+    }
+    int s = k;
+    if (argc > 3)
+        s = atoi(argv[3]);
+
+    if (k == 32)
+        check<32, 32>(n_players);
+    else if (k == 64 and s == 64)
+        check<64, 64>(n_players);
+    else if (k == 64 and s == 48)
+        check<64, 48>(n_players);
+    else if (k == 66 and s == 64)
+        check<66, 64>(n_players);
+    else if (k == 66 and s == 48)
+        check<66, 48>(n_players);
+    else
+        throw runtime_error("not compiled for k=" + to_string(k) + ", s=" + to_string(s));
+}
diff --git a/Check-Offline.cpp b/Check-Offline.cpp
index 5ad3010c3..f2b82fb57 100644
--- a/Check-Offline.cpp
+++ b/Check-Offline.cpp
@@ -7,6 +7,7 @@
 #include "Math/gfp.h"
 #include "Math/Share.h"
 #include "Auth/fake-stuff.h"
+#include "Auth/MAC_Check.h"
 #include "Tools/ezOptionParser.h"
 #include "Exceptions/Exceptions.h"
 
@@ -24,7 +25,7 @@ using namespace std;
 string PREP_DATA_PREFIX;
 
 template<class T>
-void check_mult_triples(const typename T::value_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
+void check_mult_triples(const typename T::mac_key_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
 {
   typename T::clear a,b,c,mac,res;
   vector<T> Sa(N),Sb(N),Sc(N);
@@ -40,7 +41,7 @@ void check_mult_triples(const typename T::value_type& key,int N,vector<Sub_Data_
           check_share(Sc, c, mac, N, key);
 
           res.mul(a, b);
-          if (!res.equal(c))
+          if (res != c)
             {
               cout << n << ": " << c << " != " << a << " * " << b << endl;
               throw bad_value();
@@ -92,7 +93,7 @@ void check_tuple(const T& a, const T& b, int n, Dtype type)
 }
 
 template<class T>
-void check_tuples(const typename T::value_type& key,int N,vector<Sub_Data_Files<T>*>& dataF, Dtype type)
+void check_tuples(const typename T::mac_key_type& key,int N,vector<Sub_Data_Files<T>*>& dataF, Dtype type)
 {
   typename T::clear a,b,c,mac,res;
   vector<T> Sa(N),Sb(N),Sc(N);
@@ -120,7 +121,7 @@ void check_tuples(const typename T::value_type& key,int N,vector<Sub_Data_Files<
 }
 
 template<class T>
-void check_bits(const typename T::value_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
+void check_bits(const typename T::mac_key_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
 {
   typename T::clear a,b,c,mac,res;
   vector<T> Sa(N),Sb(N),Sc(N);
@@ -150,7 +151,7 @@ void check_bits(const typename T::value_type& key,int N,vector<Sub_Data_Files<T>
 }
 
 template<class T>
-void check_inputs(const typename T::value_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
+void check_inputs(const typename T::mac_key_type& key,int N,vector<Sub_Data_Files<T>*>& dataF)
 {
   typename T::clear a, mac, x;
   vector<T> Sa(N);
@@ -188,7 +189,7 @@ vector<Sub_Data_Files<T>*> setup(int N, DataPositions& usage, int thread_num = -
 }
 
 template<class T>
-void check(typename T::value_type key, int N, bool only_bits = false)
+void check(typename T::mac_key_type key, int N, bool only_bits = false)
 {
   DataPositions usage(N);
   auto dataF = setup<T>(N, usage);
diff --git a/Compiler/GC/types.py b/Compiler/GC/types.py
index 5be7ab228..d864426b0 100644
--- a/Compiler/GC/types.py
+++ b/Compiler/GC/types.py
@@ -2,7 +2,7 @@
 from Compiler.types import _bitint, _number, _fix, _structure
 from Compiler.program import Tape, Program
 from Compiler.exceptions import *
-from Compiler import util, oram, floatingpoint
+from Compiler import util, oram, floatingpoint, library
 import Compiler.GC.instructions as inst
 import operator
 
@@ -575,7 +575,7 @@ def Norm(self, k, f, kappa=None, simplex_flag=False):
         t2k = self.get_type(2 * k)
         acc = t2k.bit_compose(z)
         sign = self.bit_decompose()[-1]
-        signed_acc = sign.if_else(-acc, acc)
+        signed_acc = util.if_else(sign, -acc, acc)
         absolute_val_2k = t2k.bit_compose(absolute_val.bit_decompose())
         part_reciprocal = absolute_val_2k * acc
         return part_reciprocal, signed_acc
@@ -588,6 +588,17 @@ def __mul__(self, other):
             return other * self
         else:
             return super(sbitint, self).__mul__(other)
+    def cast(self, n):
+        bits = self.bit_decompose()[:n]
+        bits += [bits[-1]] * (n - len(bits))
+        return self.get_type(n).bit_compose(bits)
+    def int_div(self, other, bit_length=None):
+        k = bit_length or max(self.n, other.n)
+        return (library.IntDiv(self.extend(k), other.extend(k), k) >> k).cast(k)
+    def round(self, k, m, kappa=None, nearest=None, signed=None):
+        bits = self.bit_decompose()
+        res_bits = self.bit_adder(bits[m:k], [bits[m-1]])
+        return self.get_type(k - m).compose(res_bits)
 
 class sbitintvec(sbitvec):
     def __add__(self, other):
diff --git a/Compiler/comparison.py b/Compiler/comparison.py
index b972ef8ed..9dd55292c 100644
--- a/Compiler/comparison.py
+++ b/Compiler/comparison.py
@@ -29,6 +29,7 @@
 do_precomp = True
 
 import instructions_base
+import util
 
 def set_variant(options):
     """ Set flags based on the command-line option provided """
@@ -152,6 +153,10 @@ def TruncRoundNearest(a, k, m, kappa, signed=False):
     k: bit length of a
     m: compile-time integer
     """
+    if k == int(program.options.ring):
+        # cannot work with bit length k+1
+        tmp = TruncRing(None, a, k, m - 1, signed)
+        return TruncRing(None, tmp + 1, k - m + 1, 1, signed)
     from types import sint
     res = sint()
     Trunc(res, a + (1 << (m - 1)), k + 1, m, kappa, signed)
@@ -165,6 +170,8 @@ def Mod2m(a_prime, a, k, m, kappa, signed):
     m: compile-time integer
     signed: True/False, describes a
     """
+    if not util.is_constant(m):
+        raise CompilerError('m must be a public constant')
     if m >= k:
         movs(a_prime, a)
         return
diff --git a/Compiler/config.py b/Compiler/config.py
index 9259c74bb..f959205b9 100644
--- a/Compiler/config.py
+++ b/Compiler/config.py
@@ -9,13 +9,14 @@
 TMP_REG = 3
 TMP_REG_BASE = REG_MAX - TMP_REG
 
-P_VALUES = { -1: 2147483713, \
-             32: 2147565569, \
+P_VALUES = { 32: 2147565569, \
              64: 9223372036855103489, \
              128: 172035116406933162231178957667602464769, \
              256: 57896044624266469032429686755131815517604980759976795324963608525438406557697, \
              512: 6703903964971298549787012499123814115273848577471136527425966013026501536706464354255445443244279389455058889493431223951165286470575994074291745908195329 }
 
+P_VALUES[-1] = P_VALUES[128]
+
 BIT_LENGTHS = { -1: 32,
                 32: 16,
                 64: 16,
diff --git a/Compiler/floatingpoint.py b/Compiler/floatingpoint.py
index 816ea9869..d3cfe89ec 100644
--- a/Compiler/floatingpoint.py
+++ b/Compiler/floatingpoint.py
@@ -103,6 +103,7 @@ def PreORC(a, kappa=None, m=None, raw=False):
         max_k = program.Program.prog.galois_length - 1
     else:
         max_k = int(log(program.Program.prog.P) / log(2)) - kappa
+    assert(max_k > 0)
     if k <= max_k:
         p = [None] * m
         if m == k:
@@ -472,25 +473,26 @@ def FLRound(x, mode):
     p = ((p1 + d * a) * (1 - b) + b * away_from_zero * (1 - l)) * (1 - z)
     return v, p, z, s
 
-def TruncPr(a, k, m, kappa=None):
+def TruncPr(a, k, m, kappa=None, signed=True):
     """ Probabilistic truncation [a/2^m + u]
         where Pr[u = 1] = (a % 2^m) / 2^m
     """
     if isinstance(a, types.cint):
         return shift_two(a, m)
     if program.Program.prog.options.ring:
-        return TruncPrRing(a, k, m)
+        return TruncPrRing(a, k, m, signed=signed)
     else:
         return TruncPrField(a, k, m, kappa)
 
-def TruncPrRing(a, k, m):
+def TruncPrRing(a, k, m, signed=True):
     if m == 0:
         return a
     n_ring = int(program.Program.prog.options.ring)
+    assert n_ring >= k, '%d too large' % k
     if k == n_ring:
         for i in range(m):
             a += types.sint.get_random_bit() << i
-        return comparison.TruncLeakyInRing(a, k, m, True)
+        return comparison.TruncLeakyInRing(a, k, m, signed=signed)
     else:
         from types import sint
         # extra bit to mask overflow
diff --git a/Compiler/library.py b/Compiler/library.py
index 7e46c15c3..7853d4b65 100644
--- a/Compiler/library.py
+++ b/Compiler/library.py
@@ -1251,29 +1251,42 @@ def block(i):
         B[i] = temp
     return (sign_a * sign_b) * A[theta - 1]
 
-def FPDiv(a, b, k, f, kappa, simplex_flag=False):
+def IntDiv(a, b, k, kappa=None):
+    return FPDiv(a.extend(2 * k) << k, b.extend(2 * k) << k, 2 * k, k,
+                 kappa, nearest=True)
+
+def FPDiv(a, b, k, f, kappa, simplex_flag=False, nearest=False):
     """
         Goldschmidt method as presented in Catrina10,
     """
+    if 2 * k == int(get_program().options.ring):
+        # not fitting otherwise
+        nearest = True
+    if get_program().options.binary:
+        # no probabilistic truncation in binary circuits
+        nearest = True
+    res_f = f
+    f = max((k - nearest) / 2 + 1, f)
+    assert 2 * f > k - nearest
     theta = int(ceil(log(k/3.5) / log(2)))
     alpha = b.get_type(2 * k).two_power(2*f)
-    w = AppRcr(b, k, f, kappa, simplex_flag).extend(2 * k)
+    w = AppRcr(b, k, f, kappa, simplex_flag, nearest).extend(2 * k)
     x = alpha - b.extend(2 * k) * w
 
     y = a.extend(2 *k) * w
-    y = y.TruncPr(2*k, f, kappa)
+    y = y.round(2*k, f, kappa, nearest, signed=True)
 
     for i in range(theta):
         x = x.extend(2 * k)
         y = y.extend(2 * k) * (alpha + x).extend(2 * k)
         x = x * x
-        y = y.TruncPr(2*k, 2*f, kappa)
-        x = x.TruncPr(2*k, 2*f, kappa)
+        y = y.round(2*k, 2*f, kappa, nearest, signed=True)
+        x = x.round(2*k, 2*f, kappa, nearest, signed=True)
 
     y = y.extend(2 * k) * (alpha + x).extend(2 * k)
-    y = y.TruncPr(k + 2*f, 2*f, kappa)
+    y = y.round(k + 2 * f, 3 * f - res_f, kappa, nearest, signed=True)
     return y
-def AppRcr(b, k, f, kappa, simplex_flag=False):
+def AppRcr(b, k, f, kappa, simplex_flag=False, nearest=False):
     """
         Approximate reciprocal of [b]:
         Given [b], compute [1/b]
@@ -1283,7 +1296,7 @@ def AppRcr(b, k, f, kappa, simplex_flag=False):
     #v should be 2**{k - m} where m is the length of the bitwise repr of [b]
     d = alpha - 2 * c
     w = d * v
-    w = w.TruncPr(2 * k, 2 * (k - f))
+    w = w.round(2 * k, 2 * (k - f), kappa, nearest, signed=True)
     # now w * 2 ^ {-f} should be an initial approximation of 1/b
     return w
 
diff --git a/Compiler/program.py b/Compiler/program.py
index d6db92b6a..3a7fc6176 100644
--- a/Compiler/program.py
+++ b/Compiler/program.py
@@ -41,7 +41,13 @@ def __init__(self, args, options, param=-1, assemblymode=False):
         self.init_names(args, assemblymode)
         self.P = P_VALUES[param]
         self.param = param
-        self.bit_length = BIT_LENGTHS[param]
+        if (param != -1) + sum(x != 0 for x in(options.ring, options.field,
+                                               options.binary)) > 1:
+            raise CompilerError('can only use one out of -p, -B, -R, -F')
+        self.bit_length = int(options.ring) or int(options.binary) \
+                          or int(options.field)
+        if not self.bit_length:
+            self.bit_length = BIT_LENGTHS[param]
         print 'Default bit length:', self.bit_length
         self.security = 40
         print 'Default security parameter:', self.security
@@ -236,7 +242,6 @@ def reset_values(self):
             tape.reset_registers()
         self.mem_c = range(USER_MEM + TMP_MEM)
         self.mem_s = range(USER_MEM + TMP_MEM)
-        random.seed(0)
     
     def write_bytes(self, outfile=None):
         """ Write all non-empty threads and schedule to files. """
@@ -399,11 +404,10 @@ def optimize_for_gc(self):
 
 class Tape:
     """ A tape contains a list of basic blocks, onto which instructions are added. """
-    def __init__(self, name, program, param=-1):
+    def __init__(self, name, program):
         """ Set prime p and the initial instructions and registers. """
         self.program = program
         self.init_names(name)
-        self.P = P_VALUES[param]
         self.init_registers()
         self.req_tree = self.ReqNode(name)
         self.req_node = self.req_tree
@@ -422,7 +426,6 @@ def __init__(self, name, program, param=-1):
     class BasicBlock(object):
         def __init__(self, parent, name, scope, exit_condition=None):
             self.parent = parent
-            self.P = parent.P
             self.instructions = []
             self.name = name
             self.index = len(parent.basicblocks)
diff --git a/Compiler/types.py b/Compiler/types.py
index 2667ed5f3..2960ba394 100644
--- a/Compiler/types.py
+++ b/Compiler/types.py
@@ -290,10 +290,16 @@ def bit_compose(bits):
     def malloc(cls, size):
         return program.malloc(size, cls)
 
+    @set_instruction_type
     def __init__(self, reg_type, val, size):
+        if isinstance(val, (tuple, list)):
+            size = len(val)
         super(_register, self).__init__(reg_type, program.curr_tape, size=size)
         if isinstance(val, (int, long)):
             self.load_int(val)
+        elif isinstance(val, (tuple, list)):
+            for i, x in enumerate(val):
+                self.mov(self[i], type(self)(x, size=1))
         elif val is not None:
             self.load_other(val)
 
@@ -316,6 +322,7 @@ def expand_to_vector(self, size=None):
 
 class _clear(_register):
     __slots__ = []
+    mov = staticmethod(movc)
 
     @vectorized_classmethod
     @set_instruction_type
@@ -673,6 +680,7 @@ class regint(_register, _int):
     __slots__ = []
     reg_type = 'ci'
     instruction_type = 'modp'
+    mov = staticmethod(movint)
 
     @classmethod
     def protect_memory(cls, start, end):
@@ -890,6 +898,7 @@ def print_reg_plain(self):
 class _secret(_register):
     __slots__ = []
 
+    mov = staticmethod(movs)
     PreOR = staticmethod(lambda l: floatingpoint.PreORC(l))
     PreOp = staticmethod(lambda op, l: floatingpoint.PreOpL(op, l))
 
@@ -1288,12 +1297,13 @@ def TruncPr(self, k, m, kappa=None):
         return floatingpoint.TruncPr(self, k, m, kappa)
 
     @vectorize
-    def round(self, k, m, kappa=None, nearest=False):
+    def round(self, k, m, kappa=None, nearest=False, signed=False):
         secret = isinstance(m, sint)
         if nearest:
             if secret:
                 raise NotImplementedError()
-            return comparison.TruncRoundNearest(self, k, m, kappa)
+            return comparison.TruncRoundNearest(self, k, m, kappa,
+                                                signed=signed)
         else:
             if secret:
                 return floatingpoint.Trunc(self, k, m, kappa)
@@ -1302,6 +1312,15 @@ def round(self, k, m, kappa=None, nearest=False):
     def Norm(self, k, f, kappa=None, simplex_flag=False):
         return library.Norm(self, k, f, kappa, simplex_flag)
 
+    @vectorize
+    def int_div(self, other, bit_length=None, security=None):
+        k = bit_length or program.bit_length
+        kappa = security or program.security
+        tmp = library.IntDiv(self, other, k, kappa)
+        res = type(self)()
+        comparison.Trunc(res, tmp, 2 * k, k, kappa, True)
+        return res
+
     @staticmethod
     def two_power(n):
         return floatingpoint.two_power(n)
@@ -1702,7 +1721,7 @@ def __neg__(self):
         return 1 + self.compose(1 ^ b for b in self.bit_decompose())
 
     def __abs__(self):
-        return self.bit_decompose()[-1].if_else(-self, self)
+        return util.if_else(self.bit_decompose()[-1], -self, self)
 
     less_than = lambda self, other, *args, **kwargs: self < other
     greater_than = lambda self, other, *args, **kwargs: self > other
@@ -2353,7 +2372,9 @@ def __neg__(self):
     def __div__(self, other):
         other = self.coerce(other)
         if isinstance(other, _fix):
-            return type(self)(library.FPDiv(self.v, other.v, self.k, self.f, self.kappa))
+            return type(self)(library.FPDiv(self.v, other.v, self.k, self.f,
+                                            self.kappa,
+                                            nearest=self.round_nearest))
         elif isinstance(other, cfix):
             return type(self)(library.sint_cint_division(self.v, other.v, self.k, self.f, self.kappa))
         else:
diff --git a/Exceptions/Exceptions.h b/Exceptions/Exceptions.h
index 5bce65990..b0430f95a 100644
--- a/Exceptions/Exceptions.h
+++ b/Exceptions/Exceptions.h
@@ -93,6 +93,10 @@ class mac_fail:  public bad_value
     { virtual const char* what() const throw()
         { return "MacCheck Failure"; }
     };
+class consistency_check_fail:  public exception
+    { virtual const char* what() const throw()
+        { return "OT consistency check failed"; }
+    };
 class invalid_program:  public exception
     { virtual const char* what() const throw()
         { return "Invalid Program"; }
diff --git a/FHEOffline/PairwiseGenerator.cpp b/FHEOffline/PairwiseGenerator.cpp
index d6cc80b0a..516248a60 100644
--- a/FHEOffline/PairwiseGenerator.cpp
+++ b/FHEOffline/PairwiseGenerator.cpp
@@ -7,6 +7,8 @@
 #include "FHEOffline/PairwiseMachine.h"
 #include "FHEOffline/Producer.h"
 
+#include "Auth/MAC_Check.hpp"
+
 template <class FD>
 PairwiseGenerator<FD>::PairwiseGenerator(int thread_num,
         PairwiseMachine& machine) :
diff --git a/FHEOffline/Sacrificing.cpp b/FHEOffline/Sacrificing.cpp
index fcd07956f..9599db91d 100644
--- a/FHEOffline/Sacrificing.cpp
+++ b/FHEOffline/Sacrificing.cpp
@@ -16,7 +16,7 @@ template<class T>
 inline FileSacriFactory<T>::FileSacriFactory(const char* type, const Player& P,
         int output_thread)
 {
-    typename T::value_type dummy;
+    typename T::clear dummy;
     /* Open file for reading in the initial triples */
     stringstream file1;
     file1 << PREP_DIR "Initial-" << type << "-" << file_completion(dummy)
diff --git a/FHEOffline/SimpleGenerator.cpp b/FHEOffline/SimpleGenerator.cpp
index 670bd598f..4072cfda9 100644
--- a/FHEOffline/SimpleGenerator.cpp
+++ b/FHEOffline/SimpleGenerator.cpp
@@ -8,6 +8,8 @@
 #include "FHEOffline/Sacrificing.h"
 #include "Auth/MAC_Check.h"
 
+#include "Auth/MAC_Check.hpp"
+
 template <template <class> class T, class FD>
 SimpleGenerator<T,FD>::SimpleGenerator(const Names& N, const PartSetup<FD>& setup,
         const MultiplicativeMachine& machine, int thread_num, Dtype data_type) :
diff --git a/FHEOffline/SimpleMachine.cpp b/FHEOffline/SimpleMachine.cpp
index e66a5ee55..4eb827797 100644
--- a/FHEOffline/SimpleMachine.cpp
+++ b/FHEOffline/SimpleMachine.cpp
@@ -289,7 +289,6 @@ void MachineBase::run()
             << " kbit per " << item_type().substr(0, item_type().length() - 1) << endl;
     cout << "Produced " << total << " " << item_type() << " in "
             << timer.elapsed() << " seconds" << endl;
-    cout << "Throughput: " << total / timer.elapsed() << tradeoff() << endl;
     cout << "CPU time: " << cpu_timer.elapsed() << endl;
 
     extern unsigned long long sent_amount, sent_counter;
@@ -298,6 +297,8 @@ void MachineBase::run()
     cout << sent_amount / sent_counter / N.num_players() << " bytes per call"
             << endl;
 
+    cout << "Time: " << timer.elapsed() << endl;
+    cout << "Throughput: " << total / timer.elapsed() << endl;
     mult_performance();
 }
 
diff --git a/Fake-Offline.cpp b/Fake-Offline.cpp
index 1721d4596..68635352d 100644
--- a/Fake-Offline.cpp
+++ b/Fake-Offline.cpp
@@ -3,6 +3,7 @@
 #include "Math/gfp.h"
 #include "Math/Share.h"
 #include "Math/Setup.h"
+#include "Math/Spdz2kShare.h"
 #include "Auth/fake-stuff.h"
 #include "Exceptions/Exceptions.h"
 #include "GC/MaliciousRepSecret.h"
@@ -28,14 +29,14 @@ string prep_data_prefix;
  * str    = "2" or "p"
  */
 template<class T>
-void make_mult_triples(const typename T::value_type& key, int N, int ntrip,
+void make_mult_triples(const typename T::mac_type& key, int N, int ntrip,
     bool zero, int thread_num = -1)
 {
   PRNG G;
   G.ReSeed();
 
   ofstream* outf=new ofstream[N];
-  typename T::value_type a,b,c;
+  typename T::clear a,b,c;
   vector<T> Sa(N),Sb(N),Sc(N);
   /* Generate Triples */
   for (int i=0; i<N; i++)
@@ -114,8 +115,10 @@ void make_bit_triples(const gf2n& key,int N,int ntrip,Dtype dtype,bool zero)
  * str    = "2" or "p"
  */
 template<class T>
-void make_square_tuples(const typename T::value_type& key,int N,int ntrip,const string& str,bool zero)
+void make_square_tuples(const typename T::mac_type& key,int N,int ntrip,const string& str,bool zero)
 {
+  (void) str;
+
   PRNG G;
   G.ReSeed();
 
@@ -125,7 +128,7 @@ void make_square_tuples(const typename T::value_type& key,int N,int ntrip,const
   /* Generate Squares */
   for (int i=0; i<N; i++)
     { stringstream filename;
-      filename << prep_data_prefix << "Squares-" << str << "-P" << i;
+      filename << prep_data_prefix << "Squares-" << T::type_short() << "-P" << i;
       cout << "Opening " << filename.str() << endl;
       outf[i].open(filename.str().c_str(),ios::out | ios::binary);
       if (outf[i].fail()) { throw file_error(filename.str().c_str()); }
@@ -151,14 +154,14 @@ void make_square_tuples(const typename T::value_type& key,int N,int ntrip,const
  * ntrip  = Number bits needed
  */
 template<class T>
-void make_bits(const typename T::value_type& key, int N, int ntrip, bool zero,
+void make_bits(const typename T::mac_type& key, int N, int ntrip, bool zero,
     int thread_num = -1)
 {
   PRNG G;
   G.ReSeed();
 
   ofstream* outf=new ofstream[N];
-  typename T::value_type a;
+  typename T::clear a;
   vector<T> Sa(N);
   /* Generate Bits */
   for (int i=0; i<N; i++)
@@ -188,19 +191,21 @@ void make_bits(const typename T::value_type& key, int N, int ntrip, bool zero,
  *
  */
 template<class T>
-void make_inputs(const typename T::value_type& key,int N,int ntrip,const string& str,bool zero)
+void make_inputs(const typename T::mac_type& key,int N,int ntrip,const string& str,bool zero)
 {
+  (void) str;
+
   PRNG G;
   G.ReSeed();
 
   ofstream* outf=new ofstream[N];
-  typename T::clear a;
+  typename T::open_type a;
   vector<T> Sa(N);
   /* Generate Inputs */
   for (int player=0; player<N; player++)
     { for (int i=0; i<N; i++)
         { stringstream filename;
-          filename << prep_data_prefix << "Inputs-" << str << "-P" << i << "-" << player;
+          filename << prep_data_prefix << "Inputs-" << T::type_short() << "-P" << i << "-" << player;
           cout << "Opening " << filename.str() << endl;
           outf[i].open(filename.str().c_str(),ios::out | ios::binary);
           if (outf[i].fail()) { throw file_error(filename.str().c_str()); }
@@ -228,7 +233,7 @@ void make_inputs(const typename T::value_type& key,int N,int ntrip,const string&
  * str    = "2" or "p"
  */
 template<class T>
-void make_inverse(const typename T::value_type& key,int N,int ntrip,bool zero)
+void make_inverse(const typename T::mac_type& key,int N,int ntrip,bool zero)
 {
   PRNG G;
   G.ReSeed();
@@ -268,7 +273,7 @@ void make_inverse(const typename T::value_type& key,int N,int ntrip,bool zero)
 
 
 template<class T>
-void make_PreMulC(const typename T::value_type& key, int N, int ntrip, bool zero)
+void make_PreMulC(const typename T::mac_type& key, int N, int ntrip, bool zero)
 {
   stringstream ss;
   ss << prep_data_prefix << "PreMulC-" << T::type_short();
@@ -296,7 +301,7 @@ void make_PreMulC(const typename T::value_type& key, int N, int ntrip, bool zero
 }
 
 template<class T>
-void make_basic(const typename T::value_type& key, int nplayers, int nitems, bool zero)
+void make_basic(const typename T::mac_type& key, int nplayers, int nitems, bool zero)
 {
     make_mult_triples<T>(key, nplayers, nitems, zero);
     make_bits<T>(key, nplayers, nitems, zero);
@@ -306,9 +311,13 @@ void make_basic(const typename T::value_type& key, int nplayers, int nitems, boo
     make_PreMulC<T>(key, nplayers, nitems, zero);
 }
 
+template<class T>
+int generate(ez::ezOptionParser& opt);
+
 int main(int argc, const char** argv)
 {
   insecure("preprocessing");
+  bigint::init_thread();
 
   ez::ezOptionParser opt;
 
@@ -325,11 +334,11 @@ int main(int argc, const char** argv)
         "--lgp" // Flag token.
   );
   opt.add(
-        "40", // Default.
+        to_string(gf2n::default_degree()).c_str(), // Default.
         0, // Required?
         1, // Number of args expected.
         0, // Delimiter if expecting multiple args.
-        "Bit length of GF(2^n) field (default: 40)", // Help description.
+        ("Bit length of GF(2^n) field (default: " + to_string(gf2n::default_degree()) + ")").c_str(), // Help description.
         "-lg2", // Flag token.
         "--lg2" // Flag token.
   );
@@ -414,8 +423,49 @@ int main(int argc, const char** argv)
         "-z", // Flag token.
         "--zero" // Flag token.
   );
+  opt.add(
+        "", // Default.
+        0, // Required?
+        1, // Number of args expected.
+        0, // Delimiter if expecting multiple args.
+        "Generate for SPDZ2k with parameter", // Help description.
+        "-Z", // Flag token.
+        "--spdz2k" // Flag token.
+  );
+  opt.add(
+        "", // Default.
+        0, // Required?
+        1, // Number of args expected.
+        0, // Delimiter if expecting multiple args.
+        "SPDZ2k security parameter (default: k)", // Help description.
+        "-S", // Flag token.
+        "--security" // Flag token.
+  );
   opt.parse(argc, argv);
 
+  if (opt.isSet("-Z"))
+    {
+      int k, s;
+      opt.get("-Z")->getInt(k);
+      s = k;
+      if (opt.isSet("-S"))
+        opt.get("-S")->getInt(s);
+      if (k == 32 and s == 32)
+        return generate<Spdz2kShare<32, 32>>(opt);
+      else if (k == 64 and s == 64)
+        return generate<Spdz2kShare<64, 64>>(opt);
+      else if (k == 64 and s == 48)
+        return generate<Spdz2kShare<64, 48>>(opt);
+      else
+        throw runtime_error("not compiled for k=" + to_string(k) + " and s=" + to_string(s));
+    }
+  else
+    return generate<sgfp>(opt);
+}
+
+template<class T>
+int generate(ez::ezOptionParser& opt)
+{
   vector<string> badOptions;
   string usage;
   unsigned int i;
@@ -510,7 +560,9 @@ int main(int argc, const char** argv)
   generate_online_setup(outf, prep_data_prefix, p, lgp, lg2);
 
   /* Find number players and MAC keys etc*/
-  gfp keyp,pp; keyp.assign_zero();
+  typename T::mac_type keyp;
+  typename T::mac_key_type pp;
+  keyp.assign_zero();
   gf2n key2,p2; key2.assign_zero();
   int tmpN = 0;
   ifstream inpf;
@@ -557,19 +609,21 @@ int main(int argc, const char** argv)
   typedef Share<gf2n> sgf2n;
 
   make_mult_triples<sgf2n>(key2,nplayers,ntrip2,zero);
-  make_mult_triples<sgfp>(keyp,nplayers,ntripp,zero);
+  make_mult_triples<T>(keyp,nplayers,ntripp,zero);
   make_bits<Share<gf2n>>(key2,nplayers,nbits2,zero);
-  make_bits<Share<gfp>>(keyp,nplayers,nbitsp,zero);
+  make_bits<T>(keyp,nplayers,nbitsp,zero);
   make_square_tuples<sgf2n>(key2,nplayers,nsqr2,"2",zero);
-  make_square_tuples<sgfp>(keyp,nplayers,nsqrp,"p",zero);
+  make_square_tuples<T>(keyp,nplayers,nsqrp,"p",zero);
   make_inputs<sgf2n>(key2,nplayers,ninp2,"2",zero);
-  make_inputs<sgfp>(keyp,nplayers,ninpp,"p",zero);
+  make_inputs<T>(keyp,nplayers,ninpp,"p",zero);
   make_inverse<sgf2n>(key2,nplayers,ninv,zero);
-  make_inverse<sgfp>(keyp,nplayers,ninv,zero);
+  if (T::clear::invertible)
+    make_inverse<T>(keyp,nplayers,ninv,zero);
   make_bit_triples(key2,nplayers,nbittrip,DATA_BITTRIPLE,zero);
   make_bit_triples(key2,nplayers,nbitgf2ntrip,DATA_BITGF2NTRIPLE,zero);
   make_PreMulC<sgf2n>(key2,nplayers,ninv,zero);
-  make_PreMulC<sgfp>(keyp,nplayers,ninv,zero);
+  if (T::clear::invertible)
+    make_PreMulC<T>(keyp,nplayers,ninv,zero);
 
   // replicated secret sharing only for three parties
   if (nplayers == 3)
@@ -581,4 +635,6 @@ int main(int argc, const char** argv)
     make_mult_triples<GC::MaliciousRepSecret>({}, nplayers, ntrip2, zero);
     make_bits<GC::MaliciousRepSecret>({}, nplayers, nbits2, zero);
   }
+
+  return 0;
 }
diff --git a/GC/Machine.hpp b/GC/Machine.hpp
index 4ed2959c3..78ce078ee 100644
--- a/GC/Machine.hpp
+++ b/GC/Machine.hpp
@@ -24,9 +24,11 @@ Machine<T>::Machine(Memory<typename T::DynamicType>& dynamic_memory) : MD(dynami
 template<class T>
 Machine<T>::~Machine()
 {
+#ifdef VERBOSE
     for (auto it = timer.begin(); it != timer.end(); it++)
         cerr << T::phase_name() << " timer " << it->first << " at end: "
                 << it->second.elapsed() << " seconds" << endl;
+#endif
 }
 
 template<class T>
diff --git a/GC/Memory.h b/GC/Memory.h
index 33c3f51c4..da0f4dac0 100644
--- a/GC/Memory.h
+++ b/GC/Memory.h
@@ -69,8 +69,11 @@ inline const T& Memory<T>::operator[] (Integer i) const
 template <class T>
 inline void Memory<T>::resize(size_t size, const char* name)
 {
+    (void) name;
+#ifdef DEBUG_MEMORY
     if (size > 1000)
         cerr << "Resizing " << T::type_string() << " " << name << " to " << size << endl;
+#endif
     vector<T>::resize(size);
 }
 
diff --git a/GC/Processor.hpp b/GC/Processor.hpp
index 20769f080..4a7e270e3 100644
--- a/GC/Processor.hpp
+++ b/GC/Processor.hpp
@@ -27,7 +27,9 @@ Processor<T>::Processor(Machine<T>& machine) :
 template<class T>
 Processor<T>::~Processor()
 {
+#ifdef VERBOSE
 	cerr << "Finished after " << time << " instructions" << endl;
+#endif
 }
 
 template <class T>
diff --git a/GC/ReplicatedParty.cpp b/GC/ReplicatedParty.cpp
index 5bfe06874..20b6353b6 100644
--- a/GC/ReplicatedParty.cpp
+++ b/GC/ReplicatedParty.cpp
@@ -17,15 +17,6 @@ template<class T>
 ReplicatedParty<T>::ReplicatedParty(int argc, const char** argv) :
         ThreadMaster<T>(online_opts), online_opts(opt, argc, argv)
 {
-    opt.add(
-            "", // Default.
-            1, // Required?
-            1, // Number of args expected.
-            0, // Delimiter if expecting multiple args.
-            "This player's number (required)", // Help description.
-            "-p", // Flag token.
-            "--player" // Flag token.
-    );
     opt.add(
             "localhost", // Default.
             0, // Required?
@@ -62,24 +53,11 @@ ReplicatedParty<T>::ReplicatedParty(int argc, const char** argv) :
             "-c", // Flag token.
             "--communication" // Flag token.
     );
-    opt.parse(argc, argv);
-    opt.syntax = "./replicated-bin-party.x [OPTIONS] <progname>";
-    if (opt.lastArgs.size() == 1)
-    {
-        this->progname = *opt.lastArgs[0];
-    }
-    else
-    {
-        string usage;
-        opt.getUsage(usage);
-        cerr << usage;
-        exit(1);
-    }
-
-    int my_num;
+    online_opts.finalize(opt, argc, argv);
+    this->progname = online_opts.progname;
+    int my_num = online_opts.playerno;
     int pnb;
     string hostname;
-    opt.get("-p")->getInt(my_num);
     opt.get("-pn")->getInt(pnb);
     opt.get("-h")->getString(hostname);
     this->machine.use_encryption = not opt.get("-u")->isSet;
diff --git a/GC/ReplicatedSecret.h b/GC/ReplicatedSecret.h
index 96326321a..938fa06ec 100644
--- a/GC/ReplicatedSecret.h
+++ b/GC/ReplicatedSecret.h
@@ -33,6 +33,9 @@ class ReplicatedSecret : public FixedVec<BitVec, 2>
 
 public:
     typedef BitVec clear;
+    typedef BitVec open_type;
+    typedef BitVec mac_type;
+    typedef BitVec mac_key_type;
 
     typedef void Inp;
     typedef void PO;
diff --git a/Machines/Rep.cpp b/Machines/Rep.cpp
index 7342fd631..5fc33ae53 100644
--- a/Machines/Rep.cpp
+++ b/Machines/Rep.cpp
@@ -6,42 +6,43 @@
 #include "Processor/Data_Files.hpp"
 #include "Processor/Instruction.hpp"
 #include "Processor/Machine.hpp"
+#include "Auth/MAC_Check.hpp"
 
 template<>
 Preprocessing<Rep3Share<gfp>>* Preprocessing<Rep3Share<gfp>>::get_live_prep(
-    SubProcessor<Rep3Share<gfp>>* proc)
+    SubProcessor<Rep3Share<gfp>>* proc, DataPositions& usage)
 {
-  return new ReplicatedPrep<Rep3Share<gfp>>(proc);
+  return new ReplicatedPrep<Rep3Share<gfp>>(proc, usage);
 }
 
 template<>
 Preprocessing<Rep3Share<gf2n>>* Preprocessing<Rep3Share<gf2n>>::get_live_prep(
-    SubProcessor<Rep3Share<gf2n>>* proc)
+    SubProcessor<Rep3Share<gf2n>>* proc, DataPositions& usage)
 {
-  return new ReplicatedPrep<Rep3Share<gf2n>>(proc);
+  return new ReplicatedPrep<Rep3Share<gf2n>>(proc, usage);
 }
 
 template<>
 Preprocessing<Rep3Share<Integer>>* Preprocessing<Rep3Share<Integer>>::get_live_prep(
-    SubProcessor<Rep3Share<Integer>>* proc)
+    SubProcessor<Rep3Share<Integer>>* proc, DataPositions& usage)
 {
-  return new ReplicatedRingPrep<Rep3Share<Integer>>(proc);
+  return new ReplicatedRingPrep<Rep3Share<Integer>>(proc, usage);
 }
 
 template<>
 Preprocessing<MaliciousRep3Share<gfp>>* Preprocessing<MaliciousRep3Share<gfp>>::get_live_prep(
-    SubProcessor<MaliciousRep3Share<gfp>>* proc)
+    SubProcessor<MaliciousRep3Share<gfp>>* proc, DataPositions& usage)
 {
   (void) proc;
-  return new MaliciousRepPrep<MaliciousRep3Share<gfp>>(proc);
+  return new MaliciousRepPrep<MaliciousRep3Share<gfp>>(proc, usage);
 }
 
 template<>
 Preprocessing<MaliciousRep3Share<gf2n>>* Preprocessing<MaliciousRep3Share<gf2n>>::get_live_prep(
-    SubProcessor<MaliciousRep3Share<gf2n>>* proc)
+    SubProcessor<MaliciousRep3Share<gf2n>>* proc, DataPositions& usage)
 {
   (void) proc;
-  return new MaliciousRepPrep<MaliciousRep3Share<gf2n>>(proc);
+  return new MaliciousRepPrep<MaliciousRep3Share<gf2n>>(proc, usage);
 }
 
 template class Machine<Rep3Share<Integer>, Rep3Share<gf2n>>;
diff --git a/Machines/SPDZ.cpp b/Machines/SPDZ.cpp
index 4550a843d..0c4110860 100644
--- a/Machines/SPDZ.cpp
+++ b/Machines/SPDZ.cpp
@@ -1,6 +1,44 @@
+#include "Math/Spdz2kShare.h"
 
 #include "Processor/Data_Files.hpp"
 #include "Processor/Instruction.hpp"
 #include "Processor/Machine.hpp"
+#include "Auth/MAC_Check.hpp"
+
+#include "Processor/MascotPrep.hpp"
+#include "Processor/Spdz2kPrep.hpp"
+
+#ifdef USE_GF2N_LONG
+template<>
+Preprocessing<Share<gfp>>* Preprocessing<Share<gfp>>::get_live_prep(
+        SubProcessor<Share<gfp>>* proc, DataPositions& usage)
+{
+    return new MascotFieldPrep<Share<gfp>>(proc, usage);
+}
+
+template<>
+Preprocessing<Share<gf2n_long>>* Preprocessing<Share<gf2n_long>>::get_live_prep(
+        SubProcessor<Share<gf2n_long>>* proc, DataPositions& usage)
+{
+    return new MascotFieldPrep<Share<gf2n>>(proc, usage);
+}
+
+template<>
+Preprocessing<Spdz2kShare<64, 64>>* Preprocessing<Spdz2kShare<64, 64>>::get_live_prep(
+        SubProcessor<Spdz2kShare<64, 64>>* proc, DataPositions& usage)
+{
+    return new Spdz2kPrep<Spdz2kShare<64, 64>>(proc, usage);
+}
+
+template<>
+Preprocessing<Spdz2kShare<64, 48>>* Preprocessing<Spdz2kShare<64, 48>>::get_live_prep(
+        SubProcessor<Spdz2kShare<64, 48>>* proc, DataPositions& usage)
+{
+    return new Spdz2kPrep<Spdz2kShare<64, 48>>(proc, usage);
+}
+#endif
 
 template class Machine<sgfp, Share<gf2n>>;
+
+template class Machine<Spdz2kShare<64, 64>, Share<gf2n>>;
+template class Machine<Spdz2kShare<64, 48>, Share<gf2n>>;
diff --git a/Machines/ShamirMachine.cpp b/Machines/ShamirMachine.cpp
index 5e8420789..5738f30df 100644
--- a/Machines/ShamirMachine.cpp
+++ b/Machines/ShamirMachine.cpp
@@ -14,6 +14,7 @@
 #include "Processor/Data_Files.hpp"
 #include "Processor/Instruction.hpp"
 #include "Processor/Machine.hpp"
+#include "Auth/MAC_Check.hpp"
 
 ShamirMachine* ShamirMachine::singleton = 0;
 
@@ -59,6 +60,11 @@ ShamirMachine::ShamirMachine(int argc, const char** argv)
     cerr << "Using threshold " << threshold << " out of " << nparties << endl;
     if (2 * threshold >= nparties)
         throw runtime_error("threshold too high");
+    if (threshold < 1)
+    {
+        cerr << "Threshold has to be positive" << endl;
+        exit(1);
+    }
 }
 
 template<template<class U> class T>
@@ -70,32 +76,32 @@ ShamirMachineSpec<T>::ShamirMachineSpec(int argc, const char** argv) :
 
 template<>
 Preprocessing<ShamirShare<gfp>>* Preprocessing<ShamirShare<gfp>>::get_live_prep(
-   SubProcessor<ShamirShare<gfp>>* proc)
+   SubProcessor<ShamirShare<gfp>>* proc, DataPositions& usage)
 {
- return new ReplicatedPrep<ShamirShare<gfp>>(proc);
+ return new ReplicatedPrep<ShamirShare<gfp>>(proc, usage);
 }
 
 template<>
 Preprocessing<ShamirShare<gf2n>>* Preprocessing<ShamirShare<gf2n>>::get_live_prep(
-   SubProcessor<ShamirShare<gf2n>>* proc)
+   SubProcessor<ShamirShare<gf2n>>* proc, DataPositions& usage)
 {
- return new ReplicatedPrep<ShamirShare<gf2n>>(proc);
+ return new ReplicatedPrep<ShamirShare<gf2n>>(proc, usage);
 }
 
 template<>
 Preprocessing<MaliciousShamirShare<gfp>>* Preprocessing<MaliciousShamirShare<gfp>>::get_live_prep(
-   SubProcessor<MaliciousShamirShare<gfp>>* proc)
+   SubProcessor<MaliciousShamirShare<gfp>>* proc, DataPositions& usage)
 {
  (void) proc;
- return new MaliciousRepPrep<MaliciousShamirShare<gfp>>(proc);
+ return new MaliciousRepPrep<MaliciousShamirShare<gfp>>(proc, usage);
 }
 
 template<>
 Preprocessing<MaliciousShamirShare<gf2n>>* Preprocessing<MaliciousShamirShare<gf2n>>::get_live_prep(
-   SubProcessor<MaliciousShamirShare<gf2n>>* proc)
+   SubProcessor<MaliciousShamirShare<gf2n>>* proc, DataPositions& usage)
 {
  (void) proc;
- return new MaliciousRepPrep<MaliciousShamirShare<gf2n>>(proc);
+ return new MaliciousRepPrep<MaliciousShamirShare<gf2n>>(proc, usage);
 }
 
 template class ShamirMachineSpec<ShamirShare>;
diff --git a/Makefile b/Makefile
index bf69fc2ea..27fdb5f7f 100644
--- a/Makefile
+++ b/Makefile
@@ -27,12 +27,12 @@ endif
 
 COMMON = $(MATH) $(TOOLS) $(NETWORK) $(AUTH)
 COMPLETE = $(COMMON) $(PROCESSOR) $(FHEOFFLINE) $(TINYOTOFFLINE) $(GC) $(OT)
-YAO = $(patsubst %.cpp,%.o,$(wildcard Yao/*.cpp)) $(OT) $(GC)
+YAO = $(patsubst %.cpp,%.o,$(wildcard Yao/*.cpp)) $(OT) $(GC) BMR/Key.o
 BMR = $(patsubst %.cpp,%.o,$(wildcard BMR/*.cpp BMR/network/*.cpp)) $(COMMON) Processor/BaseMachine.o Processor/ProcessorBase.o
 
 
 LIB = libSPDZ.a
-LIBHM = libhm.a
+LIBRELEASE = librelease.a
 LIBSIMPLEOT = SimpleOT/libsimpleot.a
 
 # used for dependency generation
@@ -40,7 +40,7 @@ OBJS = $(BMR) $(FHEOFFLINE) $(TINYOTOFFLINE) $(YAO) $(COMPLETE) $(patsubst %.cpp
 DEPS := $(OBJS:.o=.d)
 
 
-all: gen_input online offline externalIO yao replicated shamir
+all: gen_input online offline externalIO yao replicated shamir spdz2k
 
 ifeq ($(USE_GF2N_LONG),1)
 ifneq ($(OS), Darwin)
@@ -55,7 +55,7 @@ endif
 -include $(DEPS)
 
 %.o: %.cpp
-	$(CXX) $(CFLAGS) -MMD -c -o $@ $<
+	$(CXX) -o $@ $< $(CFLAGS) -MMD -c
 
 online: Fake-Offline.x Server.x Player-Online.x Check-Offline.x
 
@@ -81,9 +81,11 @@ rep-bin: replicated-bin-party.x malicious-rep-bin-party.x Fake-Offline.x
 
 replicated: rep-field rep-ring rep-bin
 
+spdz2k: spdz2k-party.x ot-offline.x Check-Offline-Z2k.x galois-degree.x Fake-Offline.x
+
 tldr:
 	-echo ARCH = -march=native >> CONFIG.mine
-	$(MAKE) malicious-rep-field-party.x Setup.x
+	$(MAKE) Player-Online.x
 
 ifeq ($(OS), Darwin)
 tldr: mac-setup
@@ -93,27 +95,30 @@ endif
 
 shamir: shamir-party.x malicious-shamir-party.x galois-degree.x
 
-$(LIBHM): Machines/Rep.o Machines/ShamirMachine.o $(PROCESSOR) $(COMMON)
+$(LIBRELEASE): Machines/Rep.o Machines/ShamirMachine.o Machines/SPDZ.o $(YAO) $(PROCESSOR) $(COMMON)
 	$(AR) -csr $@ $^
 
-static/%.x: %.cpp $(LIBHM) $(LIBSIMPLEOT)
+static/%.x: %.cpp $(LIBRELEASE) $(LIBSIMPLEOT)
 	$(CXX) $(CFLAGS) -o $@ $^ -Wl,-Map=$<.map -Wl,-Bstatic -static-libgcc -static-libstdc++ $(BOOST) $(LDLIBS) -Wl,-Bdynamic -ldl
 
 static-dir:
 	@ mkdir static 2> /dev/null; true
 
-static-hm: static-dir $(patsubst %.cpp, static/%.x, $(wildcard *ring*.cpp *field*.cpp *shamir*.cpp ))
+static-release: static-dir $(patsubst %.cpp, static/%.x, $(wildcard *ring*.cpp *field*.cpp *shamir*.cpp yao*.cpp spdz2k*.cpp Player-Online.cpp ))
 
 Fake-Offline.x: Fake-Offline.cpp $(COMMON)
 	$(CXX) $(CFLAGS) -o $@ $^ $(LDLIBS)
 
 Check-Offline.x: Check-Offline.cpp $(COMMON) $(PROCESSOR) Auth/fake-stuff.hpp
-	$(CXX) $(CFLAGS) Check-Offline.cpp -o Check-Offline.x $(COMMON) $(LDLIBS)
+	$(CXX) $(CFLAGS) Check-Offline.cpp -o Check-Offline.x $(COMMON) $(PROCESSOR) $(LDLIBS)
+
+Check-Offline-Z2k.x: Check-Offline-Z2k.cpp $(COMMON)
+	$(CXX) $(CFLAGS) -o Check-Offline-Z2k.x $^ $(LDLIBS)
 
 Server.x: Server.cpp $(COMMON)
 	$(CXX) $(CFLAGS) Server.cpp -o Server.x $(COMMON) $(LDLIBS)
 
-Player-Online.x: Player-Online.cpp Machines/SPDZ.o $(COMMON) $(PROCESSOR)
+Player-Online.x: Player-Online.cpp Machines/SPDZ.o $(COMMON) $(PROCESSOR) $(OT) $(LIBSIMPLEOT)
 	$(CXX) $(CFLAGS) -o Player-Online.x $^ $(LDLIBS)
 
 Setup.x: Setup.cpp $(COMMON)
@@ -185,7 +190,7 @@ yao-player.x: $(YAO) $(COMMON) yao-player.cpp $(LIBSIMPLEOT)
 yao-clean:
 	-rm Yao/*.o
 
-galois-degree.x: $(COMMON) galois-degree.cpp
+galois-degree.x: galois-degree.cpp
 	$(CXX) $(CFLAGS) -o $@ $^ $(LDLIBS)
 
 replicated-bin-party.x: $(COMMON) $(GC) replicated-bin-party.cpp
@@ -209,6 +214,9 @@ shamir-party.x: shamir-party.cpp Machines/ShamirMachine.o $(PROCESSOR) $(COMMON)
 malicious-shamir-party.x: malicious-shamir-party.cpp Machines/ShamirMachine.o $(PROCESSOR) $(COMMON)
 	$(CXX) $(CFLAGS) -o $@ $^ $(LDLIBS)
 
+spdz2k-party.x: spdz2k-party.cpp Machines/SPDZ.o $(PROCESSOR) $(COMMON) $(OT) $(LIBSIMPLEOT)
+	$(CXX) $(CFLAGS) -o $@ $^ $(LDLIBS)
+
 $(LIBSIMPLEOT): SimpleOT/Makefile
 	$(MAKE) -C SimpleOT
 
diff --git a/Math/Integer.h b/Math/Integer.h
index ee3ebcff9..84689669a 100644
--- a/Math/Integer.h
+++ b/Math/Integer.h
@@ -13,10 +13,12 @@ using namespace std;
 #include "Tools/random.h"
 #include "bigint.h"
 #include "field_types.h"
+#include "Z2k.h"
+#include "ValueInterface.h"
 
 
 // Functionality shared between integers and bit vectors
-class IntBase
+class IntBase : public ValueInterface
 {
 protected:
   long a;
@@ -64,6 +66,7 @@ class IntBase
   friend ostream& operator<<(ostream& s, const IntBase& x) { x.output(s, true); return s; }
 
   void randomize(PRNG& G);
+  void almost_randomize(PRNG& G) { randomize(G); }
 
   void output(ostream& s,bool human) const;
   void input(istream& s,bool human);
@@ -85,9 +88,13 @@ class Integer : public IntBase
 
   static void reqbl(int n);
 
+  static const bool invertible = false;
+
   Integer()                 { a = 0; }
   Integer(long a) : IntBase(a) {}
   Integer(const bigint& x)  { *this = x.get_si(); }
+  template<int K>
+  Integer(const Z2<K>& x) : Integer(x.get_limb(0)) {}
 
   void convert_destroy(bigint& other) { *this = other.get_si(); }
 
@@ -122,9 +129,6 @@ class Integer : public IntBase
   void SHL(const Integer& x, const Integer& y) { *this = x << y; }
   // unsigned shift for Mod2m
   void SHR(const Integer& x, const Integer& y) { *this = (unsigned long)x.a >> y.a; }
-
-  template <class T, class U>
-  void add(const T&, const U&) { throw not_implemented(); }
 };
 
 inline void IntBase::randomize(PRNG& G)
diff --git a/Math/Rep3Share.h b/Math/Rep3Share.h
index dd4216e9b..4249c7ced 100644
--- a/Math/Rep3Share.h
+++ b/Math/Rep3Share.h
@@ -15,6 +15,9 @@ class Rep3Share : public FixedVec<T, 2>
 {
 public:
     typedef T clear;
+    typedef T open_type;
+    typedef T mac_type;
+    typedef T mac_key_type;
 
     typedef Replicated<Rep3Share> Protocol;
     typedef ReplicatedMC<Rep3Share> MAC_Check;
@@ -22,6 +25,8 @@ class Rep3Share : public FixedVec<T, 2>
     typedef ReplicatedInput<Rep3Share> Input;
     typedef ReplicatedPrivateOutput<Rep3Share> PrivateOutput;
 
+    const static bool needs_ot = false;
+
     static string type_short()
     {
         return "R" + string(1, clear::type_char());
diff --git a/Math/Setup.cpp b/Math/Setup.cpp
index 04860f1b3..3d8920407 100644
--- a/Math/Setup.cpp
+++ b/Math/Setup.cpp
@@ -22,7 +22,9 @@ bigint SPDZ_Data_Setup_Primes(int lgp)
 
 void SPDZ_Data_Setup_Primes(bigint& p,int lgp,int& idx,int& m)
 {
+#ifdef VERBOSE
   cout << "Setting up parameters" << endl;
+#endif
 
   switch (lgp)
     { case -1:
@@ -53,10 +55,14 @@ void SPDZ_Data_Setup_Primes(bigint& p,int lgp,int& idx,int& m)
       default:
         m=1;
         idx=0;
+#ifdef VERBOSE
         cout << "no precomputed parameters, trying anyway" << endl;
+#endif
         break;
     }
+#ifdef VERBOSE
   cout << "m = " << m << endl;
+#endif
   generate_prime(p, lgp, m);
 }
 
@@ -89,8 +95,10 @@ void generate_prime(bigint& p, int lgp, int m)
       while (!probPrime(p) || numBits(p)<lgp)
         { u=u+m;  p=u+1; }
     }
+#ifdef VERBOSE
   cout << "\t p = " << p << "  u = " << u << "  :   ";
   cout << lgp << " <= " << numBits(p) << endl;
+#endif
 }
 
 
@@ -150,7 +158,9 @@ void read_setup(const string& dir_prefix)
   if (dir_prefix.compare("") == 0)
     filename = string(PREP_DIR "Params-Data");
 
+#ifdef DEBUG_FILES
   cerr << "loading params from: " << filename << endl;
+#endif
   ifstream inpf(filename.c_str());
   if (inpf.fail()) { throw file_error(filename.c_str()); }
   inpf >> p;
diff --git a/Math/ShamirShare.h b/Math/ShamirShare.h
index ec7217cb1..c191ac41c 100644
--- a/Math/ShamirShare.h
+++ b/Math/ShamirShare.h
@@ -16,6 +16,8 @@ class ShamirShare : public T
 {
 public:
     typedef T clear;
+    typedef T open_type;
+    typedef T mac_key_type;
 
     typedef Shamir<T> Protocol;
     typedef ShamirMC<ShamirShare> MAC_Check;
@@ -23,6 +25,8 @@ class ShamirShare : public T
     typedef ShamirInput<ShamirShare> Input;
     typedef ReplicatedPrivateOutput<ShamirShare> PrivateOutput;
 
+    const static bool needs_ot = false;
+
     static string type_short()
     {
         return "S" + string(1, clear::type_char());
diff --git a/Math/Share.cpp b/Math/Share.cpp
index 27c5ed0f7..1e3785e33 100644
--- a/Math/Share.cpp
+++ b/Math/Share.cpp
@@ -1,8 +1,8 @@
 
 #include "Share.h"
-//#include "Tools/random.h"
 #include "Math/gfp.h"
 #include "Math/gf2n.h"
+#include "Math/Z2k.h"
 #include "Math/operators.h"
 #include "Math/FixedVec.h"
 #include "Math/Integer.h"
@@ -79,3 +79,11 @@ template class Share<gf2n_short>;
 template gf2n_short combine(const vector< Share<gf2n_short> >& S);
 template bool check_macs(const vector< Share<gf2n_short> >& S,const gf2n_short& key);
 #endif
+
+template class Share<Z2<64> >;
+template class Share<Z2<96> >;
+template class Share<Z2<112> >;
+template class Share<Z2<128> >;
+template class Share<Z2<160> >;
+template class Share<Z2<192> >;
+template class Share<Z2<256> >;
diff --git a/Math/Share.h b/Math/Share.h
index 6fa439371..85266e868 100644
--- a/Math/Share.h
+++ b/Math/Share.h
@@ -20,7 +20,11 @@ template<class T> class Share;
 template<class T> T combine(const vector< Share<T> >& S);
 template<class T> bool check_macs(const vector< Share<T> >& S,const T& key);
 
+template<class T> class MAC_Check_;
 template<class T> class Direct_MAC_Check;
+template<class T> class MascotMultiplier;
+
+union square128;
 
 template<class T>
 class Share
@@ -30,29 +34,42 @@ class Share
 
    public:
 
-   typedef T value_type;
+   typedef T mac_key_type;
+   typedef T mac_type;
+   typedef T open_type;
    typedef typename T::value_type clear;
 
-   typedef typename T::MC MAC_Check;
+   typedef Share<typename T::next> prep_type;
+   typedef MascotMultiplier<T> Multiplier;
+   typedef T sacri_type;
+   typedef square128 Rectangle;
+
+   typedef MAC_Check_<Share> MAC_Check;
    typedef Direct_MAC_Check<T> Direct_MC;
-   typedef typename T::Inp Input;
+   typedef ::Input<Share> Input;
    typedef typename T::PO PrivateOutput;
-   typedef typename T::Protocol Protocol;
+   typedef SPDZ<Share> Protocol;
+
+   const static bool needs_ot = true;
 
    static int size()
      { return 2 * T::size(); }
 
    static string type_string()
-     { return T::type_string(); }
+     { return "SPDZ " + T::type_string(); }
 
    static string type_short()
      { return string(1, T::type_char()); }
 
+   static char type_char()
+     { return T::type_char(); }
+
    static DataFieldType field_type()
      { return T::field_type(); }
 
-   void assign(const Share<T>& S)
-     { a=S.a; mac=S.mac; }
+   template<class U>
+   void assign(const Share<U>& S)
+     { a=S.get_share(); mac=S.get_mac(); }
    void assign(const char* buffer)
      { a.assign(buffer); mac.assign(buffer + T::size()); }
    void assign_zero()
@@ -62,8 +79,10 @@ class Share
    void assign(const clear& aa, int my_num, const T& alphai);
 
    Share()                  { assign_zero(); }
-   Share(const Share<T>& S) { assign(S); }
+   template<class U>
+   Share(const Share<U>& S) { assign(S); }
    Share(const clear& aa, int my_num, const T& alphai) { assign(aa, my_num, alphai); }
+   Share(const T& share, const T& mac) : a(share), mac(mac) {}
    ~Share()                 { ; }
    Share& operator=(const Share<T>& S)
      { if (this!=&S) { assign(S); }
@@ -98,6 +117,8 @@ class Share
    template <class U>
    Share<T> operator*(const U& x) const
    { Share<T> res; res.mul(*this, x); return res; }
+   Share<T> operator/(const T& x) const
+   { Share<T> res; res.set_share(a / x); res.set_mac(mac / x); return res; }
 
    Share<T>& operator+=(const Share<T>& x) { add(x); return *this; }
    template <class U>
@@ -135,6 +156,9 @@ class Share
    friend bool check_macs<T>(const vector< Share<T> >& S,const T& key);
 };
 
+template <class T, class U, class V>
+using Share_ = Share<T>;
+
 // specialized mul by bit for gf2n
 template <>
 void Share<gf2n>::mul_by_bit(const Share<gf2n>& S,const gf2n& aa);
@@ -186,6 +210,9 @@ inline void Share<T>::assign(const clear& aa, int my_num, const T& alphai)
 {
   Protocol::assign(a, aa, my_num);
   mac.mul(aa, alphai);
+#ifdef DEBUG_MAC
+  cout << "load " << hex << mac << " = " << aa << " * " << alphai << endl;
+#endif
 }
 
 #endif
diff --git a/Math/Spdz2kShare.h b/Math/Spdz2kShare.h
new file mode 100644
index 000000000..f459aaca2
--- /dev/null
+++ b/Math/Spdz2kShare.h
@@ -0,0 +1,60 @@
+/*
+ * Spdz2kShare.h
+ *
+ */
+
+#ifndef MATH_SPDZ2KSHARE_H_
+#define MATH_SPDZ2KSHARE_H_
+
+#include "Math/Z2k.h"
+#include "Math/Share.h"
+#include "Auth/MAC_Check.h"
+#include "Processor/DummyProtocol.h"
+#include "OT/Rectangle.h"
+
+template<int K, int S> class Spdz2kMultiplier;
+
+template<int K, int S>
+class Spdz2kShare : public Share<Z2<K + S>>
+{
+public:
+    typedef Z2<K + S> tmp_type;
+    typedef Share<tmp_type> super;
+
+    typedef Integer clear;
+//    typedef Z2<K> clear;
+
+    typedef Z2<S> mac_key_type;
+    typedef Z2<K + S> mac_type;
+    typedef Z2<K + S> open_type;
+
+    typedef Spdz2kShare prep_type;
+    typedef Spdz2kMultiplier<K, S> Multiplier;
+    typedef Z2<K + 2 * S> sacri_type;
+    typedef Z2kRectangle<TAU(K, S), K + S> Rectangle;
+
+    typedef MAC_Check_Z2k<Z2<K + S>, Z2<S>, open_type, Spdz2kShare> MAC_Check;
+    typedef MAC_Check Direct_MC;
+    typedef ::Input<Spdz2kShare> Input;
+    typedef NotImplementedOutput PrivateOutput;
+    typedef SPDZ<Spdz2kShare> Protocol;
+
+    const static int k = K;
+    const static int s = S;
+
+    static string type_string() { return "SPDZ2^(" + to_string(K) + "+" + to_string(S) + ")"; }
+    static string type_short() { return "Z" + to_string(K) + "," + to_string(S); }
+
+    Spdz2kShare() {}
+    template<class T>
+    Spdz2kShare(const Share<T>& x) : super(x) {}
+};
+
+
+template<int K, int S>
+Spdz2kShare<K, S> operator*(const typename Spdz2kShare<K,S>::clear& x, Spdz2kShare<K, S>& y)
+{
+    return typename Spdz2kShare<K,S>::tmp_type(x) * typename Spdz2kShare<K,S>::super(y);
+}
+
+#endif /* MATH_SPDZ2KSHARE_H_ */
diff --git a/Math/ValueInterface.h b/Math/ValueInterface.h
new file mode 100644
index 000000000..5df13f021
--- /dev/null
+++ b/Math/ValueInterface.h
@@ -0,0 +1,17 @@
+/*
+ * ValueInterface.h
+ *
+ */
+
+#ifndef MATH_VALUEINTERFACE_H_
+#define MATH_VALUEINTERFACE_H_
+
+class ValueInterface
+{
+public:
+    static int t() { return 0; }
+
+    static void init_default(int l) { (void) l; }
+};
+
+#endif /* MATH_VALUEINTERFACE_H_ */
diff --git a/Math/Z2k.cpp b/Math/Z2k.cpp
new file mode 100644
index 000000000..ea425a6cb
--- /dev/null
+++ b/Math/Z2k.cpp
@@ -0,0 +1,115 @@
+/*
+ * Z2k.cpp
+ *
+ */
+
+#include <Math/Z2k.h>
+#include "Math/Integer.h"
+
+template<int K>
+const int Z2<K>::N_BITS;
+template<int K>
+const int Z2<K>::N_BYTES;
+
+template<int K>
+Z2<K>::Z2(const bigint& x) : Z2()
+{
+	auto mp = x.get_mpz_t();
+	memcpy(a, mp->_mp_d, min((size_t)N_BYTES, sizeof(mp_limb_t) * abs(mp->_mp_size)));
+	if (mp->_mp_size < 0)
+		*this = Z2<K>() - *this;
+	normalize();
+}
+
+template<int K>
+Z2<K>::Z2(const Integer& x) :
+        Z2((uint64_t)x.get())
+{
+}
+
+template<int K>
+bool Z2<K>::get_bit(int i) const
+{
+	return 1 & (a[i / N_LIMB_BITS] >> (i % N_LIMB_BITS));
+}
+
+template<int K>
+bool Z2<K>::operator==(const Z2<K>& other) const
+{
+#ifdef DEBUG_MPN
+	for (int i = 0; i < N_WORDS; i++)
+		cout << "cmp " << hex << a[i] << " " << other.a[i] << endl;
+#endif
+	return mpn_cmp(a, other.a, N_WORDS) == 0;
+}
+
+template<int K>
+Z2<K>& Z2<K>::invert()
+{
+    if (get_bit(0) != 1)
+        throw division_by_zero();
+
+    Z2<K> res = 1;
+    for (int i = 0; i < K; i++)
+    {
+        res += Z2<K>((Z2<K>(1) - Z2<K>::Mul(*this, res)).get_bit(i)) << i;
+    }
+    *this = res;
+    return *this;
+}
+
+template<int K>
+Z2<K> Z2<K>::sqrRoot()
+{
+	assert(a[0] % 8 == 1);
+	Z2<K> res = 1;
+	for (int i = 0; i < K - 1; i++)
+	{
+		res += Z2<K>((*this - Z2<K>::Mul(res, res)).get_bit(i + 1)) << i;
+#ifdef DEBUG_SQR
+		cout << "sqr " << dec << i << " " << hex << res << " " <<  res * res << " " << (*this - res * res) << endl;
+#endif
+	}
+	return res;
+}
+
+template<int K>
+void Z2<K>::input(istream& s, bool human)
+{
+	if (human)
+	{
+	    s >> bigint::tmp;
+	    *this = bigint::tmp;
+	}
+	else
+	    s.read((char*)a, N_BYTES);
+}
+
+template<int K>
+void Z2<K>::output(ostream& s, bool human) const
+{
+	if (human)
+	{
+	    bigint::tmp = *this;
+	    s << bigint::tmp;
+	}
+	else
+		s.write((char*)a, N_BYTES);
+}
+
+template <int K>
+ostream& operator<<(ostream& o, const Z2<K>& x)
+{
+	x.output(o, true);
+	return o;
+}
+
+#define X(N) \
+	template class Z2<N>; \
+	template ostream& operator<<(ostream& o, const Z2<N>& x);
+
+X(32) X(64) X(96) X(128) X(160) X(192) X(224) X(256) X(288) X(320) X(352) X(384) X(416) X(448) X(512) X(672)
+X(48) X(112) X(208)
+X(114) X(130) X(162) X(194) X(324) X(388)
+X(66)
+X(210) X(258)
diff --git a/Math/Z2k.h b/Math/Z2k.h
new file mode 100644
index 000000000..536523f63
--- /dev/null
+++ b/Math/Z2k.h
@@ -0,0 +1,242 @@
+/*
+ * Z2k.h
+ *
+ */
+
+#ifndef MATH_Z2K_H_
+#define MATH_Z2K_H_
+
+#include <mpirxx.h>
+#include <string>
+using namespace std;
+
+#include "Tools/avx_memcpy.h"
+#include "bigint.h"
+#include "field_types.h"
+#include "mpn_fixed.h"
+#include "ValueInterface.h"
+
+template <int K>
+class Z2 : public ValueInterface
+{
+	template <int L>
+	friend class Z2;
+	friend class bigint;
+
+	static const int N_WORDS = ((K + 7) / 8 + sizeof(mp_limb_t) - 1)
+			/ sizeof(mp_limb_t);
+	static const int N_LIMB_BITS = 8 * sizeof(mp_limb_t);
+	static const uint64_t UPPER_MASK =
+			((K % N_LIMB_BITS) == 0) ? -1 : -1 + (1LL << (K % N_LIMB_BITS));
+
+	mp_limb_t a[N_WORDS];
+
+
+public:
+	typedef void Inp;
+	typedef void PO;
+
+	class DummyZ2kProtocol
+	{
+	public:
+	    static void assign(Z2& _,  const Z2& __, int& ___)
+        {
+            (void) _, (void) __, (void) ___;
+            throw not_implemented();
+        }
+	};
+	typedef DummyZ2kProtocol Protocol;
+
+	static const int N_BITS = K;
+	static const int N_BYTES = (K + 7) / 8;
+
+	static int size() { return N_BYTES; }
+	static int t() { return 0; }
+
+	static char type_char() { return 'Z'; }
+	static string type_string() { return "Z2^" + to_string(int(N_BITS)); }
+
+	static DataFieldType field_type() { return DATA_INT; }
+
+	static const bool invertible = false;
+
+	template <int L, int M>
+	static Z2<K> Mul(const Z2<L>& x, const Z2<M>& y);
+
+	typedef Z2<K> value_type;
+	typedef Z2 next;
+
+	Z2() { assign_zero(); }
+	Z2(uint64_t x) : Z2() { a[0] = x; }
+	Z2(__m128i x) : Z2() { avx_memcpy(a, &x, min(N_BYTES, 16)); }
+	Z2(int x) : Z2(long(x)) { a[N_WORDS - 1] &= UPPER_MASK; }
+	Z2(long x) : Z2(uint64_t(x)) { if (K > 64 and x < 0) memset(&a[1], -1, N_BYTES - 8); }
+	Z2(const Integer& x);
+	Z2(const bigint& x);
+	Z2(const void* buffer) : Z2() { assign(buffer); }
+	template <int L>
+	Z2(const Z2<L>& x) : Z2()
+	{ avx_memcpy(a, x.a, min(N_BYTES, x.N_BYTES)); normalize(); }
+
+	void normalize() { a[N_WORDS - 1] &= UPPER_MASK; }
+
+	void assign_zero() { avx_memzero(a, sizeof(a)); }
+	void assign_one()  { assign_zero(); a[0] = 1; }
+	void assign(const void* buffer) { avx_memcpy(a, buffer, N_BYTES); normalize(); }
+	void assign(int x) { *this = x; }
+
+	mp_limb_t get_limb(int i) const { return a[i]; }
+	bool get_bit(int i) const;
+
+	const void* get_ptr() const { return a; }
+
+	void negate() { 
+		throw not_implemented();
+	}
+	
+	Z2<K> operator+(const Z2<K>& other) const;
+	Z2<K> operator-(const Z2<K>& other) const;
+
+	template <int L>
+	Z2<K+L> operator*(const Z2<L>& other) const;
+
+	Z2<K> operator*(bool other) const { return other ? *this : Z2<K>(); }
+
+	Z2<K> operator/(const Z2& other) const { (void) other; throw not_implemented(); }
+
+	Z2<K>& operator+=(const Z2<K>& other);
+	Z2<K>& operator-=(const Z2<K>& other);
+
+	Z2<K> operator<<(int i) const;
+	Z2<K> operator>>(int i) const;
+
+	bool operator==(const Z2<K>& other) const;
+	bool operator!=(const Z2<K>& other) const { return not (*this == other); }
+
+	void add(const Z2<K>& a, const Z2<K>& b) { *this = a + b; }
+	void add(const Z2<K>& a) { *this += a; }
+	void sub(const Z2<K>& a, const Z2<K>& b) { *this = a - b; }
+
+	template <int M, int L>
+	void mul(const Z2<M>& a, const Z2<L>& b) { *this = Z2<K>::Mul(a, b); }
+	template <int L>
+	void mul(const Integer& a, const Z2<L>& b) { *this = Z2<K>::Mul(Z2<64>(a), b); }
+
+	template <int t>
+	void add(octetStream& os) { add(os.consume(size())); }
+
+	Z2& invert();
+
+	Z2 sqrRoot();
+
+	bool is_zero() { return *this == Z2<K>(); }
+
+	void randomize(PRNG& G);
+	void almost_randomize(PRNG& G) { randomize(G); }
+
+	void pack(octetStream& o) const;
+	void unpack(octetStream& o);
+
+	void input(istream& s, bool human=true);
+	void output(ostream& s, bool human=true) const;
+
+	template <int J>
+	friend ostream& operator<<(ostream& o, const Z2<J>& x);
+};
+
+template<int K>
+inline Z2<K> Z2<K>::operator+(const Z2<K>& other) const
+{
+    Z2<K> res;
+    mpn_add_fixed_n<N_WORDS>(res.a, a, other.a);
+    res.a[N_WORDS - 1] &= UPPER_MASK;
+    return res;
+}
+
+template<int K>
+Z2<K> Z2<K>::operator-(const Z2<K>& other) const
+{
+	Z2<K> res;
+	mpn_sub_fixed_n<N_WORDS>(res.a, a, other.a);
+	res.a[N_WORDS - 1] &= UPPER_MASK;
+	return res;
+}
+
+template <int K>
+inline Z2<K>& Z2<K>::operator+=(const Z2<K>& other)
+{
+	mpn_add_fixed_n<N_WORDS>(a, other.a, a);
+	a[N_WORDS - 1] &= UPPER_MASK;
+	return *this;
+}
+
+template <int K>
+Z2<K>& Z2<K>::operator-=(const Z2<K>& other)
+{
+	*this = *this - other;
+	return *this;
+}
+
+template <int K>
+template <int L, int M>
+inline Z2<K> Z2<K>::Mul(const Z2<L>& x, const Z2<M>& y)
+{
+	Z2<K> res;
+	mpn_mul_fixed_<N_WORDS, Z2<L>::N_WORDS, Z2<M>::N_WORDS>(res.a, x.a, y.a);
+	res.a[N_WORDS - 1] &= UPPER_MASK;
+	return res;
+}
+
+template <int K>
+template <int L>
+inline Z2<K+L> Z2<K>::operator*(const Z2<L>& other) const
+{
+	return Z2<K+L>::Mul(*this, other);
+}
+
+template <int K>
+Z2<K> Z2<K>::operator<<(int i) const
+{
+	Z2<K> res;
+	int n_limb_shift = i / N_LIMB_BITS;
+	for (int j = n_limb_shift; j < N_WORDS; j++)
+		res.a[j] = a[j - n_limb_shift];
+	int n_inside_shift = i % N_LIMB_BITS;
+	if (n_inside_shift > 0)
+		mpn_lshift(res.a, res.a, N_WORDS, n_inside_shift);
+	res.a[N_WORDS - 1] &= UPPER_MASK;
+	return res;
+}
+
+template <int K>
+Z2<K> Z2<K>::operator>>(int i) const
+{
+	Z2<K> res;
+	int n_byte_shift = i / 8;
+	memcpy(res.a, (char*)a + n_byte_shift, N_BYTES - n_byte_shift);
+	int n_inside_shift = i % 8;
+	if (n_inside_shift > 0)
+		mpn_rshift(res.a, res.a, N_WORDS, n_inside_shift);
+	return res;
+}
+
+template<int K>
+void Z2<K>::randomize(PRNG& G)
+{
+	G.get_octets<N_BYTES>((octet*)a);
+	normalize();
+}
+
+template<int K>
+void Z2<K>::pack(octetStream& o) const
+{
+	o.append((octet*)a, N_BYTES);
+}
+
+template<int K>
+void Z2<K>::unpack(octetStream& o)
+{
+	o.consume((octet*)a, N_BYTES);
+}
+
+#endif /* MATH_Z2K_H_ */
diff --git a/Math/bigint.cpp b/Math/bigint.cpp
index ab8b65de9..1c607149a 100644
--- a/Math/bigint.cpp
+++ b/Math/bigint.cpp
@@ -15,7 +15,7 @@ class gmp_random
   }
 };
 
-thread_local bigint bigint::tmp;
+thread_local bigint bigint::tmp = 0;
 thread_local gmp_random bigint::random;
 
 bigint sqrRootMod(const bigint& a,const bigint& p)
diff --git a/Math/bigint.h b/Math/bigint.h
index a5ce439fc..8779a334b 100644
--- a/Math/bigint.h
+++ b/Math/bigint.h
@@ -21,9 +21,12 @@ enum ReportType
   REPORT_TYPE_MAX
 };
 
-class gfp;
+template<int X>
+class gfp_;
+typedef gfp_<0> gfp;
 class gmp_random;
 class Integer;
+template<int K> class Z2;
 
 class bigint : public mpz_class
 {
@@ -31,6 +34,9 @@ class bigint : public mpz_class
   static thread_local bigint tmp;
   static thread_local gmp_random random;
 
+  // workaround for GCC not always initializing thread_local variables
+  static void init_thread() { tmp = 0; }
+
   template<class T>
   static mpf_class get_float(T v, Integer exp, T z, T s);
 
@@ -38,6 +44,8 @@ class bigint : public mpz_class
   template <class T>
   bigint(const T& x) : mpz_class(x) {}
   bigint(const gfp& x);
+  template <int K>
+  bigint(const Z2<K>& x);
 
   bigint& operator=(int n);
   bigint& operator=(long n);
@@ -83,6 +91,13 @@ class bigint : public mpz_class
   size_t report_size(ReportType type) const;
 };
 
+
+void inline_mpn_zero(mp_limb_t* x, mp_size_t size);
+void inline_mpn_copyi(mp_limb_t* dest, const mp_limb_t* src, mp_size_t size);
+
+#include "Z2k.h"
+
+
 inline bigint& bigint::operator=(int n)
 {
   mpz_class::operator=(n);
@@ -101,6 +116,12 @@ inline bigint& bigint::operator=(word n)
   return *this;
 }
 
+template<int K>
+bigint::bigint(const Z2<K>& x)
+{
+  mpz_import(get_mpz_t(), Z2<K>::N_WORDS, -1, sizeof(mp_limb_t), 0, 0, x.get_ptr());
+}
+
 
 /**********************************
  *       Utility Functions        *
diff --git a/Math/gf2n.cpp b/Math/gf2n.cpp
index d0d4b47b4..d3f1fd32c 100644
--- a/Math/gf2n.cpp
+++ b/Math/gf2n.cpp
@@ -207,6 +207,19 @@ void mul32(word x,word y,word& ans)
 }
 
 
+void mul64(word x, word y, word& lo, word& hi)
+{
+   word c,d,e,t;
+   word xl=x&0xFFFFFFFF,yl=y&0xFFFFFFFF;
+   word xh=x>>32,yh=y>>32;
+   mul32(xl,yl,c);
+   mul32(xh,yh,d);
+   mul32((xl^xh),(yl^yh),e);
+   t=c^e^d;
+   lo=c^(t<<32);
+   hi=d^(t>>32);
+}
+
 
 void gf2n_short::mul(const gf2n_short& x,const gf2n_short& y)
 {
@@ -214,15 +227,7 @@ void gf2n_short::mul(const gf2n_short& x,const gf2n_short& y)
   
   if (gf2n_short::useC)
     { /* Uses Karatsuba */
-      word c,d,e,t;
-      word xl=x.a&0xFFFFFFFF,yl=y.a&0xFFFFFFFF;
-      word xh=x.a>>32,yh=y.a>>32;
-      mul32(xl,yl,c);
-      mul32(xh,yh,d);
-      mul32((xl^xh),(yl^yh),e);
-      t=c^e^d;
-      lo=c^(t<<32);
-      hi=d^(t>>32);
+      mul64(x.a, y.a, lo, hi);
     }
   else
     { /* Use Intel Instructions */
diff --git a/Math/gf2n.h b/Math/gf2n.h
index 2590e7fe5..c39898cd4 100644
--- a/Math/gf2n.h
+++ b/Math/gf2n.h
@@ -29,6 +29,8 @@ void collapse_byte(int& b,const gf2n_short& a);
 
 class gf2n_short
 {
+  friend class gf2n_long;
+
   word a;
 
   static int n,t1,t2,t3,nterms;
@@ -54,11 +56,10 @@ class gf2n_short
 
   typedef gf2n_short value_type;
   typedef word internal_type;
+  typedef gf2n_short next;
 
-  typedef MAC_Check<gf2n_short> MC;
-  typedef Input<gf2n_short> Inp;
   typedef PrivateOutput<gf2n_short> PO;
-  typedef SPDZ<gf2n_short> Protocol;
+  typedef SPDZ<Share<gf2n_short>> Protocol;
 
   static void init_field(int nn);
   static int degree() { return n; }
diff --git a/Math/gf2nlong.cpp b/Math/gf2nlong.cpp
index c0745cf40..c5b1e6e6b 100644
--- a/Math/gf2nlong.cpp
+++ b/Math/gf2nlong.cpp
@@ -4,6 +4,7 @@
  */
 
 #include "gf2nlong.h"
+#include "gf2n.h"
 
 #include "Exceptions/Exceptions.h"
 
@@ -99,6 +100,9 @@ void gf2n_long::init_field(int nn)
   mask=_mm_set_epi64x(-1,-1);
   lowermask=_mm_set_epi64x((1LL<<(64-7))-1,-1);
   uppermask=_mm_set_epi64x(((word)-1)<<(64-7),0);
+
+  // for CPUs without PCLMUL
+  gf2n_short::init_tables();
 }
 
 
diff --git a/Math/gf2nlong.h b/Math/gf2nlong.h
index 172cd5031..13f11bd96 100644
--- a/Math/gf2nlong.h
+++ b/Math/gf2nlong.h
@@ -32,6 +32,7 @@ class int128
 
     word get_lower() const                      { return (word)_mm_cvtsi128_si64(a); }
     word get_upper() const     { return _mm_cvtsi128_si64(_mm_unpackhi_epi64(a, a)); }
+    word get_half(bool upper) const { return upper ? get_upper() : get_lower(); }
 
 #ifdef __SSE41__
     bool operator==(const int128& other) const  { return _mm_test_all_zeros(a ^ other.a, a ^ other.a); }
@@ -63,10 +64,10 @@ class int128
 };
 
 
-template<class T> class MAC_Check;
 template<class T> class Input;
 template<class T> class PrivateOutput;
 template<class T> class SPDZ;
+template<class T> class Share;
 
 /* This interface compatible with the gfp interface
  * which then allows us to template the Share
@@ -96,10 +97,10 @@ class gf2n_long
   typedef gf2n_long value_type;
   typedef int128 internal_type;
 
-  typedef MAC_Check<gf2n_long> MC;
-  typedef Input<gf2n_long> Inp;
   typedef PrivateOutput<gf2n_long> PO;
-  typedef SPDZ<gf2n_long> Protocol;
+  typedef SPDZ<Share<gf2n_long>> Protocol;
+
+  typedef gf2n_long next;
 
   void reduce(int128 xh,int128 xl)
    {
@@ -135,6 +136,8 @@ class gf2n_long
   __m128i to_m128i() const { return a.a; }
   word get_word() const { return _mm_cvtsi128_si64(a.a); }
 
+  const void* get_ptr() const { return &a.a; }
+
   void assign(const gf2n_long& g)     { a=g.a; }
 
   void assign_zero()             { a=_mm_setzero_si128(); }
@@ -157,6 +160,7 @@ class gf2n_long
   gf2n_long(const gf2n_long& g) { assign(g); }
   gf2n_long(const int128& g)    { assign(g); }
   gf2n_long(int g)         { assign(g); }
+  gf2n_long(const char* buffer) { assign(buffer); }
   ~gf2n_long()             { ; }
 
   gf2n_long& operator=(const gf2n_long& g)
@@ -231,6 +235,9 @@ class gf2n_long
   // compatibility with gfp
   void almost_randomize(PRNG& G)        { randomize(G); }
 
+  template<class T>
+  T convert() const { return *this; }
+
   void output(ostream& s,bool human) const;
   void input(istream& s,bool human);
 
@@ -280,19 +287,28 @@ inline int128 int128::operator>>(const int& other) const
   return res;
 }
 
+void mul64(word x, word y, word& lo, word& hi);
+
+inline __m128i clmul(__m128i a, __m128i b, int choice)
+{
+    word lo, hi;
+    mul64(int128(a).get_half(choice & 1), int128(b).get_half((choice & 0x10) >> 4), lo, hi);
+    return int128(hi, lo).a;
+}
+
+#ifndef __PCLMUL__
+#undef _mm_clmulepi64_si128
+#define _mm_clmulepi64_si128 clmul
+#endif
+
 inline void mul128(__m128i a, __m128i b, __m128i *res1, __m128i *res2)
 {
     __m128i tmp3, tmp4, tmp5, tmp6;
 
-#ifdef __PCLMUL__
     tmp3 = _mm_clmulepi64_si128(a, b, 0x00);
     tmp4 = _mm_clmulepi64_si128(a, b, 0x10);
     tmp5 = _mm_clmulepi64_si128(a, b, 0x01);
     tmp6 = _mm_clmulepi64_si128(a, b, 0x11);
-#else
-    (void) a, (void) b;
-    throw runtime_error("need to compile with PCLMUL support");
-#endif
 
     tmp4 = _mm_xor_si128(tmp4, tmp5);
     tmp5 = _mm_slli_si128(tmp4, 8);
diff --git a/Math/gfp.cpp b/Math/gfp.cpp
index d1c3c0e13..5d45fdb47 100644
--- a/Math/gfp.cpp
+++ b/Math/gfp.cpp
@@ -4,20 +4,21 @@
 
 #include "Exceptions/Exceptions.h"
 
-Zp_Data gfp::ZpD;
-
-void gfp::init_default(int lgp)
+template <int X>
+void gfp_<X>::init_default(int lgp)
 {
   init_field(SPDZ_Data_Setup_Primes(lgp));
 }
 
-void gfp::almost_randomize(PRNG& G)
+template <int X>
+void gfp_<X>::almost_randomize(PRNG& G)
 {
   G.get_octets((octet*)a.x,t()*sizeof(mp_limb_t));
   a.x[t()-1]&=ZpD.mask;
 }
 
-void gfp::AND(const gfp& x,const gfp& y)
+template <int X>
+void gfp_<X>::AND(const gfp_& x,const gfp_& y)
 {
   bigint bi1,bi2;
   to_bigint(bi1,x);
@@ -26,7 +27,8 @@ void gfp::AND(const gfp& x,const gfp& y)
   convert_destroy(bi1);
 }
 
-void gfp::OR(const gfp& x,const gfp& y)
+template <int X>
+void gfp_<X>::OR(const gfp_& x,const gfp_& y)
 {
   bigint bi1,bi2;
   to_bigint(bi1,x);
@@ -35,7 +37,8 @@ void gfp::OR(const gfp& x,const gfp& y)
   convert_destroy(bi1);
 }
 
-void gfp::XOR(const gfp& x,const gfp& y)
+template <int X>
+void gfp_<X>::XOR(const gfp_& x,const gfp_& y)
 {
   bigint bi1,bi2;
   to_bigint(bi1,x);
@@ -44,7 +47,8 @@ void gfp::XOR(const gfp& x,const gfp& y)
   convert_destroy(bi1);
 }
 
-void gfp::AND(const gfp& x,const bigint& y)
+template <int X>
+void gfp_<X>::AND(const gfp_& x,const bigint& y)
 {
   bigint bi;
   to_bigint(bi,x);
@@ -52,7 +56,8 @@ void gfp::AND(const gfp& x,const bigint& y)
   convert_destroy(bi);
 }
 
-void gfp::OR(const gfp& x,const bigint& y)
+template <int X>
+void gfp_<X>::OR(const gfp_& x,const bigint& y)
 {
   bigint bi;
   to_bigint(bi,x);
@@ -60,7 +65,8 @@ void gfp::OR(const gfp& x,const bigint& y)
   convert_destroy(bi);
 }
 
-void gfp::XOR(const gfp& x,const bigint& y)
+template <int X>
+void gfp_<X>::XOR(const gfp_& x,const bigint& y)
 {
   bigint bi;
   to_bigint(bi,x);
@@ -71,7 +77,8 @@ void gfp::XOR(const gfp& x,const bigint& y)
 
 
 
-void gfp::SHL(const gfp& x,int n)
+template <int X>
+void gfp_<X>::SHL(const gfp_& x,int n)
 {
   if (!x.is_zero())
     {
@@ -92,7 +99,8 @@ void gfp::SHL(const gfp& x,int n)
 }
 
 
-void gfp::SHR(const gfp& x,int n)
+template <int X>
+void gfp_<X>::SHR(const gfp_& x,int n)
 {
   if (!x.is_zero())
     {
@@ -113,19 +121,22 @@ void gfp::SHR(const gfp& x,int n)
 }
 
 
-void gfp::SHL(const gfp& x,const bigint& n)
+template <int X>
+void gfp_<X>::SHL(const gfp_& x,const bigint& n)
 {
   SHL(x,mpz_get_si(n.get_mpz_t()));
 }
 
 
-void gfp::SHR(const gfp& x,const bigint& n)
+template <int X>
+void gfp_<X>::SHR(const gfp_& x,const bigint& n)
 {
   SHR(x,mpz_get_si(n.get_mpz_t()));
 }
 
 
-gfp gfp::sqrRoot()
+template<int X>
+gfp_<X> gfp_<X>::sqrRoot()
 {
     // Temp move to bigint so as to call sqrRootMod
     bigint ti;
@@ -133,12 +144,13 @@ gfp gfp::sqrRoot()
     ti = sqrRootMod(ti, ZpD.pr);
     if (!isOdd(ti))
         ti = ZpD.pr - ti;
-    gfp temp;
+    gfp_<X> temp;
     to_gfp(temp, ti);
     return temp;
 }
 
-void gfp::reqbl(int n)
+template <int X>
+void gfp_<X>::reqbl(int n)
 {
   if ((int)n > 0 && gfp::pr() < bigint(1) << (n-1))
     {
@@ -151,7 +163,8 @@ void gfp::reqbl(int n)
     }
 }
 
-bool gfp::allows(Dtype type)
+template<int X>
+bool gfp_<X>::allows(Dtype type)
 {
     switch(type)
     {
@@ -171,3 +184,6 @@ void to_signed_bigint(bigint& ans, const gfp& x)
     if (mpz_cmp(ans.get_mpz_t(), p_half.get_mpz_t()) > 0)
         ans = gfp::pr() - ans;
 }
+
+template class gfp_<0>;
+template class gfp_<1>;
diff --git a/Math/gfp.h b/Math/gfp.h
index c76ab2fee..5dea31b6e 100644
--- a/Math/gfp.h
+++ b/Math/gfp.h
@@ -23,18 +23,18 @@ using namespace std;
 template<class T> class Input;
 template<class T> class SPDZ;
 
-class gfp
+template<int X>
+class gfp_
 {
   modp a;
   static Zp_Data ZpD;
 
   public:
 
-  typedef gfp value_type;
-  typedef MAC_Check<gfp> MC;
-  typedef Input<gfp> Inp;
-  typedef PrivateOutput<gfp> PO;
-  typedef SPDZ<gfp> Protocol;
+  typedef gfp_ value_type;
+  typedef PrivateOutput<gfp_> PO;
+
+  typedef gfp_<X + 1> next;
 
   static void init_field(const bigint& p,bool mont=true)
     { ZpD.init(p,mont); }
@@ -57,7 +57,9 @@ class gfp
 
   static bool allows(Dtype type);
 
-  void assign(const gfp& g) { a=g.a; } 
+  static const bool invertible = true;
+
+  void assign(const gfp_& g) { a=g.a; }
   void assign_zero()        { assignZero(a,ZpD); }
   void assign_one()         { assignOne(a,ZpD); } 
   void assign(word aa)      { bigint::tmp=aa; to_gfp(*this,bigint::tmp); }
@@ -75,24 +77,30 @@ class gfp
 
   unsigned long debug() const { return a.get_limb(0); }
 
+  const void* get_ptr() const { return &a.x; }
+
   // Assumes prD behind x is equal to ZpD
   void assign(modp& x) { a=x; }
   
-  gfp()              { assignZero(a,ZpD); }
-  gfp(const gfp& g)  { a=g.a; }
-  gfp(const modp& g) { a=g; }
-  gfp(const __m128i& x) { *this=x; }
-  gfp(const int128& x) { *this=x.a; }
-  gfp(const bigint& x) { to_modp(a, x, ZpD); }
-  gfp(int x)         { assign(x); }
-  ~gfp()             { ; }
-
-  gfp& operator=(const gfp& g)
+  gfp_()              { assignZero(a,ZpD); }
+  gfp_(const gfp_& g)  { a=g.a; }
+  gfp_(const modp& g) { a=g; }
+  gfp_(const __m128i& x) { *this=x; }
+  gfp_(const int128& x) { *this=x.a; }
+  gfp_(const bigint& x) { to_modp(a, x, ZpD); }
+  gfp_(int x)         { assign(x); }
+  gfp_(const void* buffer) { assign((char*)buffer); }
+  template<int Y>
+  gfp_(const gfp_<Y>& x);
+
+  ~gfp_()             { ; }
+
+  gfp_& operator=(const gfp_& g)
     { if (&g!=this) { a=g.a; }
       return *this;
     }
 
-  gfp& operator=(const __m128i other)
+  gfp_& operator=(const __m128i other)
     {
       memcpy(a.x, &other, sizeof(other));
       return *this;
@@ -112,16 +120,16 @@ class gfp
   bool is_zero() const            { return isZero(a,ZpD); }
   bool is_one()  const            { return isOne(a,ZpD); }
   bool is_bit()  const            { return is_zero() or is_one(); }
-  bool equal(const gfp& y) const  { return areEqual(a,y.a,ZpD); }
-  bool operator==(const gfp& y) const { return equal(y); }
-  bool operator!=(const gfp& y) const { return !equal(y); }
+  bool equal(const gfp_& y) const  { return areEqual(a,y.a,ZpD); }
+  bool operator==(const gfp_& y) const { return equal(y); }
+  bool operator!=(const gfp_& y) const { return !equal(y); }
 
   // x+y
   template <int T>
-  void add(const gfp& x,const gfp& y)
+  void add(const gfp_& x,const gfp_& y)
     { Add<T>(a,x.a,y.a,ZpD); }  
   template <int T>
-  void add(const gfp& x)
+  void add(const gfp_& x)
     { Add<T>(a,a,x.a,ZpD); }
   template <int T>
   void add(void* x)
@@ -129,39 +137,39 @@ class gfp
   template <int T>
   void add(octetStream& os)
     { add<T>(os.consume(size())); }
-  void add(const gfp& x,const gfp& y)
+  void add(const gfp_& x,const gfp_& y)
     { Add(a,x.a,y.a,ZpD); }  
-  void add(const gfp& x)
+  void add(const gfp_& x)
     { Add(a,a,x.a,ZpD); }
   void add(void* x)
     { ZpD.Add(a.x,a.x,(mp_limb_t*)x); }
-  void sub(const gfp& x,const gfp& y)
+  void sub(const gfp_& x,const gfp_& y)
     { Sub(a,x.a,y.a,ZpD); }
-  void sub(const gfp& x)
+  void sub(const gfp_& x)
     { Sub(a,a,x.a,ZpD); }
   // = x * y
-  void mul(const gfp& x,const gfp& y)
+  void mul(const gfp_& x,const gfp_& y)
     { Mul(a,x.a,y.a,ZpD); }
-  void mul(const gfp& x) 
+  void mul(const gfp_& x)
     { Mul(a,a,x.a,ZpD); }
 
-  gfp operator+(const gfp& x) const { gfp res; res.add(*this, x); return res; }
-  gfp operator-(const gfp& x) const { gfp res; res.sub(*this, x); return res; }
-  gfp operator*(const gfp& x) const { gfp res; res.mul(*this, x); return res; }
-  gfp operator/(const gfp& x) const { gfp tmp; tmp.invert(x); return *this * tmp; }
-  gfp& operator+=(const gfp& x) { add(x); return *this; }
-  gfp& operator-=(const gfp& x) { sub(x); return *this; }
-  gfp& operator*=(const gfp& x) { mul(x); return *this; }
+  gfp_ operator+(const gfp_& x) const { gfp_ res; res.add(*this, x); return res; }
+  gfp_ operator-(const gfp_& x) const { gfp_ res; res.sub(*this, x); return res; }
+  gfp_ operator*(const gfp_& x) const { gfp_ res; res.mul(*this, x); return res; }
+  gfp_ operator/(const gfp_& x) const { gfp_ tmp; tmp.invert(x); return *this * tmp; }
+  gfp_& operator+=(const gfp_& x) { add(x); return *this; }
+  gfp_& operator-=(const gfp_& x) { sub(x); return *this; }
+  gfp_& operator*=(const gfp_& x) { mul(x); return *this; }
 
-  gfp operator-() { gfp res = *this; res.negate(); return res; }
+  gfp_ operator-() { gfp_ res = *this; res.negate(); return res; }
 
-  void square(const gfp& aa)
+  void square(const gfp_& aa)
     { Sqr(a,aa.a,ZpD); }
   void square()
     { Sqr(a,a,ZpD); }
   void invert()
     { Inv(a,a,ZpD); }
-  void invert(const gfp& aa)
+  void invert(const gfp_& aa)
     { Inv(a,aa.a,ZpD); }
   void negate() 
     { Negate(a,a,ZpD); }
@@ -169,7 +177,7 @@ class gfp
     { Power(a,a,i,ZpD); }
 
   // deterministic square root
-  gfp sqrRoot();
+  gfp_ sqrRoot();
 
   void randomize(PRNG& G)
     { a.randomize(G,ZpD); }
@@ -181,11 +189,11 @@ class gfp
   void input(istream& s,bool human)
     { a.input(s,ZpD,human); }
 
-  friend ostream& operator<<(ostream& s,const gfp& x)
+  friend ostream& operator<<(ostream& s,const gfp_& x)
     { x.output(s,true);
       return s;
     }
-  friend istream& operator>>(istream& s,gfp& x)
+  friend istream& operator>>(istream& s,gfp_& x)
     { x.input(s,true);
       return s;
     }
@@ -193,22 +201,22 @@ class gfp
   /* Bitwise Ops 
    *   - Converts gfp args to bigints and then converts answer back to gfp
    */
-  void AND(const gfp& x,const gfp& y);
-  void XOR(const gfp& x,const gfp& y);
-  void OR(const gfp& x,const gfp& y);
-  void AND(const gfp& x,const bigint& y);
-  void XOR(const gfp& x,const bigint& y);
-  void OR(const gfp& x,const bigint& y);
-  void SHL(const gfp& x,int n);
-  void SHR(const gfp& x,int n);
-  void SHL(const gfp& x,const bigint& n);
-  void SHR(const gfp& x,const bigint& n);
-
-  gfp operator&(const gfp& x) { gfp res; res.AND(*this, x); return res; }
-  gfp operator^(const gfp& x) { gfp res; res.XOR(*this, x); return res; }
-  gfp operator|(const gfp& x) { gfp res; res.OR(*this, x); return res; }
-  gfp operator<<(int i) { gfp res; res.SHL(*this, i); return res; }
-  gfp operator>>(int i) { gfp res; res.SHR(*this, i); return res; }
+  void AND(const gfp_& x,const gfp_& y);
+  void XOR(const gfp_& x,const gfp_& y);
+  void OR(const gfp_& x,const gfp_& y);
+  void AND(const gfp_& x,const bigint& y);
+  void XOR(const gfp_& x,const bigint& y);
+  void OR(const gfp_& x,const bigint& y);
+  void SHL(const gfp_& x,int n);
+  void SHR(const gfp_& x,int n);
+  void SHL(const gfp_& x,const bigint& n);
+  void SHR(const gfp_& x,const bigint& n);
+
+  gfp_ operator&(const gfp_& x) { gfp_ res; res.AND(*this, x); return res; }
+  gfp_ operator^(const gfp_& x) { gfp_ res; res.XOR(*this, x); return res; }
+  gfp_ operator|(const gfp_& x) { gfp_ res; res.OR(*this, x); return res; }
+  gfp_ operator<<(int i) { gfp_ res; res.SHL(*this, i); return res; }
+  gfp_ operator>>(int i) { gfp_ res; res.SHR(*this, i); return res; }
 
   // Pack and unpack in native format
   //   i.e. Dont care about conversion to human readable form
@@ -220,12 +228,26 @@ class gfp
   void convert_destroy(bigint& x) { a.convert_destroy(x, ZpD); }
 
   // Convert representation to and from a bigint number
-  friend void to_bigint(bigint& ans,const gfp& x,bool reduce=true)
+  friend void to_bigint(bigint& ans,const gfp_& x,bool reduce=true)
     { to_bigint(ans,x.a,x.ZpD,reduce); }
-  friend void to_gfp(gfp& ans,const bigint& x)
+  friend void to_gfp(gfp_& ans,const bigint& x)
     { to_modp(ans.a,x,ans.ZpD); }
 };
 
+typedef gfp_<0> gfp;
+typedef gfp_<1> gfp1;
+
 void to_signed_bigint(bigint& ans,const gfp& x);
 
+template<int X>
+Zp_Data gfp_<X>::ZpD;
+
+template<int X>
+template<int Y>
+gfp_<X>::gfp_(const gfp_<Y>& x)
+{
+  to_bigint(bigint::tmp, x);
+  *this = bigint::tmp;
+}
+
 #endif
diff --git a/Math/modp.h b/Math/modp.h
index 7d556fa21..9b1d76b8b 100644
--- a/Math/modp.h
+++ b/Math/modp.h
@@ -96,8 +96,8 @@ class modp
   void output(ostream& s,const Zp_Data& ZpD,bool human) const;
   void input(istream& s,const Zp_Data& ZpD,bool human);
 
-  friend class gfp;
-
+  template<int X>
+  friend class gfp_;
 };
 
 
diff --git a/Math/mpn_fixed.h b/Math/mpn_fixed.h
index 58331185c..3ce7f83f0 100644
--- a/Math/mpn_fixed.h
+++ b/Math/mpn_fixed.h
@@ -10,6 +10,8 @@
 #include <string.h>
 #include <assert.h>
 
+#include "bigint.h"
+
 inline void debug_print(const char* name, const mp_limb_t* x, int n)
 {
     (void)name, (void)x, (void)n;
@@ -224,6 +226,16 @@ inline void mpn_addmul_1_fixed_(mp_limb_t* res, const mp_limb_t* y, mp_limb_t x)
 {
     mpn_addmul_1_fixed__<L, M, true>(res, y, x);
 }
+#else
+template <int L, int M>
+inline void mpn_addmul_1_fixed_(mp_limb_t* res, const mp_limb_t* y, mp_limb_t x)
+{
+    mp_limb_t tmp[L];
+    memset(tmp, 0, sizeof(tmp));
+    memcpy(tmp, y, M * sizeof(mp_limb_t));
+    mpn_addmul_1(res, tmp, L, x);
+}
+#endif
 
 template <int M>
 inline void mpn_addmul_1_fixed(mp_limb_t* res, const mp_limb_t* y, mp_limb_t x)
@@ -268,6 +280,5 @@ inline void mpn_mul_fixed(mp_limb_t* res, const mp_limb_t* x, const mp_limb_t* y
 {
     mpn_mul_fixed_<N + M, N, M>(res, x, y);
 }
-#endif
 
 #endif /* MATH_MPN_FIXED_H_ */
diff --git a/Math/operators.h b/Math/operators.h
index d6594eb6f..011671364 100644
--- a/Math/operators.h
+++ b/Math/operators.h
@@ -13,12 +13,12 @@ T operator*(const bool& x, const T& y) { return x ? y : T(); }
 template <class T>
 T& operator*=(const T& y, const bool& x) { y = x ? y : T(); return y; }
 
-template <class T, class U>
-T operator+(const T& x, const U& y) { T res; res.add(x, y); return res; }
-template <class T>
-T operator*(const T& x, const T& y) { T res; res.mul(x, y); return res; }
-template <class T, class U>
-T operator-(const T& x, const U& y) { T res; res.sub(x, y); return res; }
+//template <class T, class U>
+//T operator+(const T& x, const U& y) { T res; res.add(x, y); return res; }
+//template <class T>
+//T operator*(const T& x, const T& y) { T res; res.mul(x, y); return res; }
+//template <class T, class U>
+//T operator-(const T& x, const U& y) { T res; res.sub(x, y); return res; }
 
 template <class T, class U>
 T& operator+=(T& x, const U& y) { x.add(y); return x; }
diff --git a/Networking/Player.cpp b/Networking/Player.cpp
index 33771df1f..c48b998a6 100644
--- a/Networking/Player.cpp
+++ b/Networking/Player.cpp
@@ -75,10 +75,14 @@ void Names::init(int player, int pnb, const string& filename, int nplayers_wante
         break;
     }
   }
+  if (nplayers_wanted > 0 and nplayers_wanted != nplayers)
+    throw runtime_error("not enought hosts in HOSTS");
   setup_ports();
+#ifdef DEBUG_NETWORKING
   cerr << "Got list of " << nplayers << " players from file: " << endl;
   for (unsigned int i = 0; i < names.size(); i++)
     cerr << "    " << names[i] << endl;
+#endif
   setup_server();
 }
 
@@ -103,7 +107,9 @@ void Names::setup_names(const char *servername, int my_port)
   int pn = portnum_base - 1;
   set_up_client_socket(socket_num, servername, pn);
   send(socket_num, (octet*)&player_no, sizeof(player_no));
+#ifdef DEBUG_NETWORKING
   cerr << "Sent " << player_no << " to " << servername << ":" << pn << endl;
+#endif
 
   int inst=-1; // wait until instruction to start.
   while (inst != GO) { receive(socket_num, inst); }
@@ -117,15 +123,19 @@ void Names::setup_names(const char *servername, int my_port)
   char* name = inet_ntoa(address.sin_addr);
   // max length of IP address with ending 0
   strncpy((char*)my_name, name, 16);
-  fprintf(stderr, "My Name = %s\n",my_name);
   send(socket_num,my_name,512);
   send(socket_num,(octet*)&my_port,4);
+#ifdef DEBUG_NETWORKING
+  fprintf(stderr, "My Name = %s\n",my_name);
   cerr << "My number = " << player_no << endl;
+#endif
 
   // Now get the set of names
   int i;
   receive(socket_num,nplayers);
+#ifdef VERBOSE
   cerr << nplayers << " players\n";
+#endif
   names.resize(nplayers);
   ports.resize(nplayers);
   for (i=0; i<nplayers; i++)
@@ -133,7 +143,9 @@ void Names::setup_names(const char *servername, int my_port)
       receive(socket_num,tmp,512);
       names[i]=(char*)tmp;
       receive(socket_num, (octet*)&ports[i], 4);
+#ifdef VERBOSE
       cerr << "Player " << i << " is running on machine " << names[i] << endl;
+#endif
     }
   close_client_socket(socket_num);
 }
@@ -141,7 +153,7 @@ void Names::setup_names(const char *servername, int my_port)
 
 void Names::setup_server()
 {
-  server = new ServerSocket(ports[player_no]);
+  server = new ServerSocket(ports.at(player_no));
   server->init();
 }
 
@@ -168,7 +180,7 @@ Names::~Names()
 
 
 Player::Player(const Names& Nms) :
-        PlayerBase(Nms.my_num())
+        PlayerBase(Nms.my_num()), N(Nms)
 {
   nplayers=Nms.nplayers;
   player_no=Nms.player_no;
@@ -200,12 +212,18 @@ MultiPlayer<T>::~MultiPlayer()
 
 Player::~Player()
 {
+}
+
+PlayerBase::~PlayerBase()
+{
+#ifdef VERBOSE
   for (auto it = comm_stats.begin(); it != comm_stats.end(); it++)
     cerr << it->first << " " << 1e-6 * it->second.data << " MB in "
         << it->second.rounds << " rounds, taking " << it->second.timer.elapsed()
         << " seconds" << endl;
   if (timer.elapsed() > 0)
     cerr << "Receiving took " << timer.elapsed() << " seconds" << endl;
+#endif
 }
 
 
@@ -222,10 +240,14 @@ void MultiPlayer<int>::setup_sockets(const vector<string>& names,const vector<in
         int pn=id_base+player_no;
         if (i==player_no) {
           const char* localhost = "127.0.0.1";
+#ifdef DEBUG_NETWORKING
           fprintf(stderr, "Setting up send to self socket to %s:%d with id 0x%x\n",localhost,ports[i],pn);
+#endif
           set_up_client_socket(sockets[i],localhost,ports[i]);
         } else {
+#ifdef DEBUG_NETWORKING
           fprintf(stderr, "Setting up client to %s:%d with id 0x%x\n",names[i].c_str(),ports[i],pn);
+#endif
           set_up_client_socket(sockets[i],names[i].c_str(),ports[i]);
         }
         send(sockets[i], (unsigned char*)&pn, sizeof(pn));
@@ -234,7 +256,9 @@ void MultiPlayer<int>::setup_sockets(const vector<string>& names,const vector<in
     // Setting up the server side
     for (int i=0; i<=player_no; i++) {
         int id=id_base+i;
+#ifdef DEBUG_NETWORKING
         fprintf(stderr, "As a server, waiting for client with id 0x%x to connect.\n",id);
+#endif
         sockets[i] = server.get_connection_socket(id);
     }
 
@@ -265,17 +289,23 @@ long MultiPlayer<T>::receive_long(int i) const
 }
 
 
-template<class T>
-void MultiPlayer<T>::send_to(int player,const octetStream& o,bool donthash) const
+
+void Player::send_to(int player,const octetStream& o,bool donthash) const
 {
   TimeScope ts(comm_stats["Sending directly"].add(o));
-  T socket = socket_to_send(player);
-  o.Send(socket);
+  send_to_no_stats(player, o);
   if (!donthash)
     { blk_SHA1_Update(&ctx,o.get_data(),o.get_length()); }
   sent += o.get_length();
 }
 
+template<class T>
+void MultiPlayer<T>::send_to_no_stats(int player,const octetStream& o) const
+{
+  T socket = socket_to_send(player);
+  o.Send(socket);
+}
+
 
 template<class T>
 void MultiPlayer<T>::send_all(const octetStream& o,bool donthash) const
@@ -291,16 +321,21 @@ void MultiPlayer<T>::send_all(const octetStream& o,bool donthash) const
 }
 
 
-template<class T>
-void MultiPlayer<T>::receive_player(int i,octetStream& o,bool donthash) const
+void Player::receive_player(int i,octetStream& o,bool donthash) const
 {
   TimeScope ts(timer);
-  o.reset_write_head();
-  o.Receive(sockets[i]);
+  receive_player_no_stats(i, o);
   if (!donthash)
     { blk_SHA1_Update(&ctx,o.get_data(),o.get_length()); }
 }
 
+template<class T>
+void MultiPlayer<T>::receive_player_no_stats(int i,octetStream& o) const
+{
+  o.reset_write_head();
+  o.Receive(sockets[i]);
+}
+
 void Player::receive_player(int i, FlexBuffer& buffer) const
 {
   octetStream os;
@@ -334,13 +369,24 @@ void Player::receive_relative(int offset, octetStream& o) const
 }
 
 template<class T>
-void MultiPlayer<T>::exchange(int other, octetStream& o) const
+void MultiPlayer<T>::exchange_no_stats(int other, const octetStream& o, octetStream& to_receive) const
+{
+  o.exchange(sockets[other], sockets[other], to_receive);
+}
+
+void Player::exchange(int other, const octetStream& o, octetStream& to_receive) const
 {
   TimeScope ts(comm_stats["Exchanging"].add(o));
-  o.exchange(sockets[other], sockets[other]);
+  exchange_no_stats(other, o, to_receive);
   sent += o.get_length();
 }
 
+
+void Player::exchange(int player, octetStream& o) const
+{
+  exchange(player, o, o);
+}
+
 void Player::exchange_relative(int offset, octetStream& o) const
 {
   exchange(get_player(offset), o);
@@ -473,15 +519,14 @@ void ThreadPlayer::request_receive(int i, octetStream& o) const
 
 void ThreadPlayer::wait_receive(int i, octetStream& o, bool donthash) const
 {
+  (void) donthash;
   receivers[i]->wait(o);
-  if (!donthash)
-    { blk_SHA1_Update(&ctx,o.get_data(),o.get_length()); }
 }
 
-void ThreadPlayer::receive_player(int i, octetStream& o, bool donthash) const
+void ThreadPlayer::receive_player_no_stats(int i, octetStream& o) const
 {
   request_receive(i, o);
-  wait_receive(i, o, donthash);
+  wait_receive(i, o);
 }
 
 void ThreadPlayer::send_all(const octetStream& o,bool donthash) const
@@ -500,14 +545,14 @@ void ThreadPlayer::send_all(const octetStream& o,bool donthash) const
 }
 
 
-TwoPartyPlayer::TwoPartyPlayer(const Names& Nms, int other_player, int id) :
-        PlayerBase(Nms.my_num()), other_player(other_player)
+RealTwoPartyPlayer::RealTwoPartyPlayer(const Names& Nms, int other_player, int id) :
+        TwoPartyPlayer(Nms.my_num()), other_player(other_player)
 {
   is_server = Nms.my_num() > other_player;
   setup_sockets(other_player, Nms, Nms.ports[other_player], id);
 }
 
-TwoPartyPlayer::~TwoPartyPlayer()
+RealTwoPartyPlayer::~RealTwoPartyPlayer()
 {
   for(size_t i=0; i < my_secret_key.size(); i++) {
       my_secret_key[i] = 0;
@@ -573,13 +618,15 @@ static pair<keyinfo,keyinfo> sts_responder(int socket, CommsecKeysPackage *keys,
   return make_pair(sendkeyinfo,recvkeyinfo);
 }
 
-void TwoPartyPlayer::setup_sockets(int other_player, const Names &nms, int portNum, int id)
+void RealTwoPartyPlayer::setup_sockets(int other_player, const Names &nms, int portNum, int id)
 {
     id += 0xF << 28;
     const char *hostname = nms.names[other_player].c_str();
     ServerSocket *server = nms.server;
     if (is_server) {
+#ifdef DEBUG_NETWORKING
         fprintf(stderr, "Setting up server with id %d\n",id);
+#endif
         socket = server->get_connection_socket(id);
         if(NULL != nms.keys) {
             pair<keyinfo,keyinfo> send_recv_pair = sts_responder(socket, nms.keys, other_player);
@@ -588,7 +635,9 @@ void TwoPartyPlayer::setup_sockets(int other_player, const Names &nms, int portN
         }
     }
     else {
+#ifdef DEBUG_NETWORKING
         fprintf(stderr, "Setting up client to %s:%d with id %d\n", hostname, portNum, id);
+#endif
         set_up_client_socket(socket, hostname, portNum);
         ::send(socket, (unsigned char*)&id, sizeof(id));
         if(NULL != nms.keys) {
@@ -600,23 +649,30 @@ void TwoPartyPlayer::setup_sockets(int other_player, const Names &nms, int portN
     p2pcommsec = (0 != nms.keys);
 }
 
-int TwoPartyPlayer::other_player_num() const
+int RealTwoPartyPlayer::other_player_num() const
 {
   return other_player;
 }
 
-void TwoPartyPlayer::send(octetStream& o)
+void RealTwoPartyPlayer::send(octetStream& o)
 {
   if(p2pcommsec) {
     o.encrypt_sequence(&player_send_key.first[0], player_send_key.second);
     player_send_key.second++;
   }
-  TimeScope ts(timer);
+  TimeScope ts(comm_stats["Sending one-to-one"].add(o));
   o.Send(socket);
   sent += o.get_length();
 }
 
-void TwoPartyPlayer::receive(octetStream& o)
+void VirtualTwoPartyPlayer::send(octetStream& o)
+{
+  TimeScope ts(comm_stats["Sending one-to-one"].add(o));
+  P.send_to_no_stats(other_player, o);
+  sent += o.get_length();
+}
+
+void RealTwoPartyPlayer::receive(octetStream& o)
 {
   TimeScope ts(timer);
   o.reset_write_head();
@@ -627,7 +683,13 @@ void TwoPartyPlayer::receive(octetStream& o)
   }
 }
 
-void TwoPartyPlayer::send_receive_player(vector<octetStream>& o)
+void VirtualTwoPartyPlayer::receive(octetStream& o)
+{
+  TimeScope ts(timer);
+  P.receive_player_no_stats(other_player, o);
+}
+
+void RealTwoPartyPlayer::send_receive_player(vector<octetStream>& o)
 {
   {
     if (is_server)
@@ -643,13 +705,30 @@ void TwoPartyPlayer::send_receive_player(vector<octetStream>& o)
   }
 }
 
-void TwoPartyPlayer::exchange(octetStream& o) const
+void RealTwoPartyPlayer::exchange(octetStream& o) const
 {
-  TimeScope ts(timer);
+  TimeScope ts(comm_stats["Exchanging one-to-one"].add(o));
   sent += o.get_length();
   o.exchange(socket, socket);
 }
 
+void VirtualTwoPartyPlayer::send_receive_player(vector<octetStream>& o)
+{
+  TimeScope ts(comm_stats["Exchanging one-to-one"].add(o[0]));
+  sent += o[0].get_length();
+  P.exchange_no_stats(other_player, o[0], o[1]);
+}
+
+VirtualTwoPartyPlayer::VirtualTwoPartyPlayer(Player& P, int other_player) :
+    TwoPartyPlayer(P.my_num()), P(P), other_player(other_player)
+{
+}
+
+void OffsetPlayer::send_receive_player(vector<octetStream>& o)
+{
+  P.exchange(P.get_player(offset), o[0], o[1]);
+}
+
 CommStats& CommStats::operator +=(const CommStats& other)
 {
   data += other.data;
diff --git a/Networking/Player.h b/Networking/Player.h
index 342b42ac8..b207d80d1 100644
--- a/Networking/Player.h
+++ b/Networking/Player.h
@@ -94,10 +94,25 @@ class Names
   friend class PlayerBase;
   friend class Player;
   template<class T> friend class MultiPlayer;
-  friend class TwoPartyPlayer;
+  friend class RealTwoPartyPlayer;
 };
 
 
+struct CommStats
+{
+  size_t data, rounds;
+  Timer timer;
+  CommStats() : data(0), rounds(0) {}
+  Timer& add(const octetStream& os) { data += os.get_length(); rounds++; return timer; }
+  CommStats& operator+=(const CommStats& other);
+};
+
+class NamedCommStats : public map<string, CommStats>
+{
+public:
+  NamedCommStats& operator+=(const NamedCommStats& other);
+};
+
 class PlayerBase
 {
 protected:
@@ -106,34 +121,17 @@ class PlayerBase
 public:
   mutable size_t sent;
   mutable Timer timer;
+  mutable NamedCommStats comm_stats;
 
   PlayerBase(int player_no) : player_no(player_no), sent(0) {}
-  virtual ~PlayerBase() {}
+  virtual ~PlayerBase();
 
   int my_real_num() const { return player_no; }
-
-  virtual int my_num() const = 0;
   virtual int num_players() const = 0;
 
-  virtual void exchange(int other, octetStream& o) const = 0;
   virtual void pass_around(octetStream& o, int offset = 1) const = 0;
 };
 
-struct CommStats
-{
-  size_t data, rounds;
-  Timer timer;
-  CommStats() : data(0), rounds(0) {}
-  Timer& add(const octetStream& os) { data += os.get_length(); rounds++; return timer; }
-  CommStats& operator+=(const CommStats& other);
-};
-
-class NamedCommStats : public map<string, CommStats>
-{
-public:
-  NamedCommStats& operator+=(const NamedCommStats& other);
-};
-
 class Player : public PlayerBase
 {
 protected:
@@ -142,7 +140,7 @@ class Player : public PlayerBase
   mutable blk_SHA_CTX ctx;
 
 public:
-  mutable NamedCommStats comm_stats;
+  const Names& N;
 
   Player(const Names& Nms);
   virtual ~Player();
@@ -159,8 +157,10 @@ class Player : public PlayerBase
   virtual long receive_long(int i) const = 0;
 
   virtual void send_all(const octetStream& o,bool donthash=false) const = 0;
-  virtual void send_to(int player,const octetStream& o,bool donthash=false) const = 0;
-  virtual void receive_player(int i,octetStream& o,bool donthash=false) const = 0;
+  void send_to(int player,const octetStream& o,bool donthash=false) const;
+  virtual void send_to_no_stats(int player,const octetStream& o) const = 0;
+  void receive_player(int i,octetStream& o,bool donthash=false) const;
+  virtual void receive_player_no_stats(int i,octetStream& o) const = 0;
   virtual void receive_player(int i,FlexBuffer& buffer) const;
 
   // Communication relative to my number
@@ -170,8 +170,11 @@ class Player : public PlayerBase
   void receive_relative(int offset, octetStream& o) const;
 
   // exchange data with minimal memory usage
-  void exchange(int other, octetStream& o) const = 0;
+  void exchange(int other, const octetStream& to_send, octetStream& ot_receive) const;
+  virtual void exchange_no_stats(int other, const octetStream& to_send, octetStream& ot_receive) const = 0;
+  void exchange(int other, octetStream& o) const;
   void exchange_relative(int offset, octetStream& o) const;
+  virtual void pass_around(octetStream& o, int offset = 1) const = 0;
 
   /* Broadcast and Receive data to/from all players
    *  - Assumes o[player_no] contains the thing broadcast by me
@@ -223,11 +226,11 @@ class MultiPlayer : public Player
   // Send an octetStream to all other players 
   //   -- And corresponding receive
   virtual void send_all(const octetStream& o,bool donthash=false) const;
-  void send_to(int player,const octetStream& o,bool donthash=false) const;
-  virtual void receive_player(int i,octetStream& o,bool donthash=false) const;
+  void send_to_no_stats(int player,const octetStream& o) const;
+  virtual void receive_player_no_stats(int i,octetStream& o) const;
 
   // exchange data with minimal memory usage
-  void exchange(int other, octetStream& o) const;
+  void exchange_no_stats(int other, const octetStream& to_send, octetStream& ot_receive) const;
 
   // send to next and receive from previous player
   void pass_around(octetStream& o, int offset = 1) const;
@@ -257,7 +260,7 @@ class ThreadPlayer : public MultiPlayer<int>
 
   void request_receive(int i, octetStream& o) const;
   void wait_receive(int i, octetStream& o, bool donthash=false) const;
-  void receive_player(int i,octetStream& o,bool donthash=false) const;
+  void receive_player_no_stats(int i,octetStream& o) const;
 
   void send_all(const octetStream& o,bool donthash=false) const;
 };
@@ -265,6 +268,20 @@ class ThreadPlayer : public MultiPlayer<int>
 
 class TwoPartyPlayer : public PlayerBase
 {
+public:
+  TwoPartyPlayer(int my_num) : PlayerBase(my_num) {}
+  virtual ~TwoPartyPlayer() {}
+
+  virtual int my_num() const = 0;
+  virtual int other_player_num() const = 0;
+
+  virtual void send(octetStream& o) = 0;
+  virtual void receive(octetStream& o) = 0;
+  virtual void send_receive_player(vector<octetStream>& o) = 0;
+};
+
+class RealTwoPartyPlayer : public TwoPartyPlayer
+{
 private:
   // setup sockets for comm. with only one other player
   void setup_sockets(int other_player, const Names &nms, int portNum, int id);
@@ -280,8 +297,8 @@ class TwoPartyPlayer : public PlayerBase
   keyinfo player_recv_key;
 
 public:
-  TwoPartyPlayer(const Names& Nms, int other_player, int pn_offset=0);
-  ~TwoPartyPlayer();
+  RealTwoPartyPlayer(const Names& Nms, int other_player, int pn_offset=0);
+  ~RealTwoPartyPlayer();
 
   void send(octetStream& o);
   void receive(octetStream& o);
@@ -300,20 +317,47 @@ class TwoPartyPlayer : public PlayerBase
   void pass_around(octetStream& o, int offset = 1) const { (void)offset; exchange(o); }
 };
 
+// for different threads, separate statistics
+class VirtualTwoPartyPlayer : public TwoPartyPlayer
+{
+  Player& P;
+  int other_player;
+
+public:
+  VirtualTwoPartyPlayer(Player& P, int other_player);
+
+  // emulate RealTwoPartyPlayer
+  int my_num() const { return P.my_num() > other_player; }
+  int other_player_num() const { return other_player; }
+  int num_players() const { return 2; }
 
-class OffsetPlayer : public PlayerBase
+  void send(octetStream& o);
+  void receive(octetStream& o);
+  void send_receive_player(vector<octetStream>& o);
+
+  void pass_around(octetStream& o, int _ = 1) const { (void)_, (void) o; throw not_implemented(); }
+};
+
+// for the same thread
+class OffsetPlayer : public TwoPartyPlayer
 {
 private:
   Player& P;
   int offset;
 
 public:
-  OffsetPlayer(Player& P, int offset) : PlayerBase(P.my_num()), P(P), offset(offset) {}
+  OffsetPlayer(Player& P, int offset) : TwoPartyPlayer(P.my_num()), P(P), offset(offset) {}
 
-  int my_num() const { return 0; }
+  // emulate RealTwoPartyPlayer
+  int my_num() const { return P.my_num() > P.get_player(offset); }
+  int other_player_num() const { return P.get_player(offset); }
   int num_players() const { return 2; }
   int get_offset() const { return offset; }
 
+  void send(octetStream& o) { P.send_to(P.get_player(offset), o); }
+  void receive(octetStream& o) { P.receive_player(P.get_player(offset), o, true); }
+  void send_receive_player(vector<octetStream>& o);
+
   void reverse_exchange(octetStream& o) const { P.pass_around(o, P.num_players() - offset); }
   void exchange(int other, octetStream& o) const { (void)other; P.pass_around(o, offset); }
   void pass_around(octetStream& o, int _ = 1) const { (void)_; P.pass_around(o, offset); }
diff --git a/Networking/Server.cpp b/Networking/Server.cpp
index 49e633aba..6189eba63 100644
--- a/Networking/Server.cpp
+++ b/Networking/Server.cpp
@@ -5,6 +5,7 @@
 
 #include <iostream>
 #include <pthread.h>
+#include <assert.h>
 
 
 /*
@@ -31,7 +32,9 @@ void Server::get_ip(int num)
   memset(names[num], 0, 512);
   strncpy((char*)names[num], ipstr, INET6_ADDRSTRLEN);
 
+#ifdef DEBUG_NETWORKING
   cerr << "Client IP address: " << names[num] << endl;
+#endif
 }
 
 
@@ -39,14 +42,18 @@ void Server::get_name(int num)
 {
   // Now all machines are set up, send GO to start them.
   send(socket_num[num], GO);
+#ifdef DEBUG_NETWORKING
   cerr << "Player " << num << " started." << endl;
+#endif
 
   // Receive name sent by client (legacy) - not used here
   octet my_name[512];
   receive(socket_num[num],my_name,512);
   receive(socket_num[num],(octet*)&ports[num],4);
+#ifdef DEBUG_NETWORKING
   cerr << "Player " << num << " sent (IP for info only) " << my_name << ":"
       << ports[num] << endl;
+#endif
 
   // Get client IP
   get_ip(num);
@@ -108,9 +115,13 @@ void Server::start()
   // set up connections
   for (i=0; i<nmachines; i++)
     {
+#ifdef DEBUG_NETWORKING
       cerr << "Waiting for player " << i << endl;
+#endif
       socket_num[i] = server.get_connection_socket(i);
+#ifdef DEBUG_NETWORKING
       cerr << "Connected to player " << i << endl;
+#endif
     }
 
   // get names
@@ -152,6 +163,11 @@ void* Server::start_in_thread(void* server)
 Server* Server::start_networking(Names& N, int my_num, int nplayers,
         string hostname, int portnum)
 {
+#ifdef DEBUG_NETWORKING
+  cerr << "Starting networking for " << my_num << "/" << nplayers
+      << " with server on " << hostname << ":" << (portnum - 1) << endl;
+#endif
+  assert(my_num >= 0);
   Server* server = 0;
   if (my_num == 0)
     {
diff --git a/Networking/ServerSocket.cpp b/Networking/ServerSocket.cpp
index 3e0b0d86b..153f9c7d4 100644
--- a/Networking/ServerSocket.cpp
+++ b/Networking/ServerSocket.cpp
@@ -54,8 +54,10 @@ ServerSocket::ServerSocket(int Portnum) : portnum(Portnum), thread(0)
         { cerr << "Binding to socket on " << my_name << ":" << Portnum << " failed, trying again in a second ..." << endl;
           sleep(1);
         }
+#ifdef DEBUG_NETWORKING
       else
         { cerr << "ServerSocket is bound on port " << Portnum << endl; }
+#endif
     }
   if (fl<0) { error("set_up_socket:bind");  }
 
diff --git a/Networking/sockets.cpp b/Networking/sockets.cpp
index ed7042929..3db0ebee0 100644
--- a/Networking/sockets.cpp
+++ b/Networking/sockets.cpp
@@ -64,8 +64,10 @@ void set_up_server_socket(sockaddr_in& dest,int& consocket,int& main_socket,int
         { cerr << "Binding to socket on " << my_name << ":" << Portnum << " failed, trying again in a second ..." << endl;
           sleep(1);
         }
+#ifdef DEBUG_NETWORKING
       else
         { cerr << "Bound on port " << Portnum << endl; }
+#endif
     }
   if (fl<0) { error("set_up_socket:bind");  }
 
@@ -98,10 +100,6 @@ void set_up_client_socket(int& mysocket,const char* hostname,int Portnum)
   fl=setsockopt(mysocket, SOL_SOCKET, SO_REUSEADDR, (char*)&one, sizeof(int));
   if (fl<0) { error("set_up_socket:setsockopt"); }
 
-   struct sockaddr_in dest;
-   dest.sin_family = AF_INET;
-   dest.sin_port = htons(Portnum);      // set destination port number
-
    struct addrinfo hints, *ai=NULL,*rp;
    memset (&hints, 0, sizeof(hints));
    hints.ai_family = AF_INET;
@@ -127,26 +125,45 @@ void set_up_client_socket(int& mysocket,const char* hostname,int Portnum)
    if (erp!=0)
      { error("set_up_socket:getaddrinfo");  }
 
+   bool success = false;
+   socklen_t len = 0;
+   const struct sockaddr* addr = 0;
    for (rp=ai; rp!=NULL; rp=rp->ai_next)
-      { const struct in_addr *addr4 = &((const struct sockaddr_in*)ai->ai_addr)->sin_addr;
+      { addr = ai->ai_addr;
 
         if (ai->ai_family == AF_INET)
-           { memcpy((char *)&dest.sin_addr.s_addr,addr4,sizeof(in_addr));
+           {
+             len = ai->ai_addrlen;
+             success = true;
              continue;
            }
       }
-   freeaddrinfo(ai);
+
+   if (not success)
+     {
+       for (rp = ai; rp != NULL; rp = rp->ai_next)
+         cerr << "Family on offer: " << ai->ai_family << endl;
+       runtime_error(string("No AF_INET for ") + (char*)hostname + " on " + (char*)my_name);
+     }
 
 
    Timer timer;
    timer.start();
+   struct sockaddr_in* addr4 = (sockaddr_in*) addr;
+   addr4->sin_port = htons(Portnum);      // set destination port number
+#ifdef DEBUG_IPV4
+   cout << "connect to ip " << hex << addr4->sin_addr.s_addr << " port " << addr4->sin_port << dec << endl;
+#endif
+
    do
    {  fl=1;
       while (fl==1 || errno==EINPROGRESS)
-       { fl=connect(mysocket, (struct sockaddr *)&dest, sizeof(struct sockaddr)); }
+       { fl=connect(mysocket, addr, len); }
    }
    while (fl==-1 && errno==ECONNREFUSED && timer.elapsed() < 60);
    if (fl<0) { error("set_up_socket:connect:",hostname);  }
+
+   freeaddrinfo(ai);
 }
 
 void close_client_socket(int socket)
diff --git a/OT/BaseOT.cpp b/OT/BaseOT.cpp
index 66b4f98f8..c90ac192b 100644
--- a/OT/BaseOT.cpp
+++ b/OT/BaseOT.cpp
@@ -264,7 +264,7 @@ void FakeOT::exec_base(bool new_receiver_inputs)
     PRNG G;
     G.ReSeed();
     vector<octetStream> os(2);
-    vector<BitVector> bv(2);
+    vector<BitVector> bv(2, 128);
 
     if ((ot_role & RECEIVER) && new_receiver_inputs)
     {
diff --git a/OT/BitMatrix.cpp b/OT/BitMatrix.cpp
index 01ccda1f5..42826713f 100644
--- a/OT/BitMatrix.cpp
+++ b/OT/BitMatrix.cpp
@@ -8,14 +8,21 @@
 #include <mpirxx.h>
 
 #include "BitMatrix.h"
+#include "Rectangle.h"
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
+
+#include "OT/Rectangle.hpp"
 
 union matrix16x8
 {
     __m128i whole;
     octet rows[16];
 
+    matrix16x8() : whole(_mm_setzero_si128()) {}
+    matrix16x8(__m128i x) { whole = x; }
+
     bool get_bit(int x, int y)
     { return (rows[x] >> y) & 1; }
 
@@ -85,6 +92,9 @@ union matrix32x8
     __m256i whole;
     octet rows[32];
 
+    matrix32x8() : whole(_mm256_setzero_si256()) {}
+    matrix32x8(__m256i x) { whole = x; }
+
     void input(square128& input, int x, int y);
     void transpose(square128& output, int x, int y);
 };
@@ -141,9 +151,17 @@ typedef square16 subsquare;
 #define N_SUBSQUARES 8
 #endif
 
+// hypercube permutation
+#ifndef __AVX2__
+const int perm[] = { 0, 8, 4, 0xc, 2, 0xa, 6, 0xe, 1, 9, 5, 0xd, 3, 0xb, 7, 0xf };
+#else
+const int perm2[] = { 0, 4, 2, 6, 1, 5, 3, 7, 8, 0xc, 0xa, 0xe, 9, 0xd, 0xb, 0xf };
+#endif
+
 UNROLL_LOOPS
 void square128::transpose()
 {
+#ifdef USE_SUBSQUARES
     for (int j = 0; j < N_SUBSQUARES; j++)
         for (int k = 0; k < j; k++)
         {
@@ -160,6 +178,87 @@ void square128::transpose()
         a.input(*this, j, j);
         a.transpose(*this, j, j);
     }
+#else
+#define EIGHTTOSIXTYFOUR X(8) X(16) X(32) X(64)
+#define X(I) { \
+        const int J = I / 4; \
+        for (int i = 0; i < 16 / J; i++) \
+        { \
+            for (int j = 0; j < J / 2; j++) \
+            { \
+                int a = base + J * i + j; \
+                int b = a + J/2; \
+                __m128i tmp = _mm_unpacklo_epi##I(rows[a], rows[b]); \
+                rows[b] = _mm_unpackhi_epi##I(rows[a], rows[b]); \
+                rows[a] = tmp; \
+            } \
+        } \
+    }
+#ifdef __AVX2__
+#define Z(I) { \
+        const int J = I / 8; \
+        for (int i = 0; i < 16 / J; i++) \
+        { \
+            for (int j = 0; j < J / 2; j++) \
+            { \
+                int a = base + J * i + j; \
+                int b = a + J/2; \
+                __m256i tmp = _mm256_unpacklo_epi##I(doublerows[a], doublerows[b]); \
+                doublerows[b] = _mm256_unpackhi_epi##I(doublerows[a], doublerows[b]); \
+                doublerows[a] = tmp; \
+            } \
+        } \
+    }
+
+    square128 tmp;
+    for (int k = 0; k < 4; k++)
+    {
+        int base = k * 16 * 2;
+        X(8)
+        base += 16;
+        X(8)
+        base = k * 16;
+        Z(16) Z(32) Z(64)
+        for (int i = 0; i < 8; i++)
+        {
+            int a = base + i;
+            int b = a + 8;
+            __m128i tmp = rows[2 * b];
+            rows[2 * b] = rows[2 * a + 1];
+            rows[2 * a + 1] = tmp;
+        }
+        for (int i = 0; i < 16; i++)
+        {
+            int j = perm2[i];
+            tmp.doublerows[base + i] = doublerows[base + j];
+        }
+    }
+
+    for (int i = 0; i < 16; i++)
+    {
+        for (int k = 0; k < 4; k++)
+            matrix32x8(tmp.doublerows[k * 16 + i]).transpose(*this, i, k);
+    }
+#else // __AVX2__
+    square128 tmp;
+    for (int k = 0; k < 8; k++)
+    {
+        int base = k * 16;
+        EIGHTTOSIXTYFOUR
+        for (int i = 0; i < 16; i++)
+        {
+            int j = perm[i];
+            tmp.rows[base + i] = rows[base + j];
+        }
+    }
+
+    for (int i = 0; i < 16; i++)
+    {
+        for (int k = 0; k < 8; k++)
+            matrix16x8(tmp.rows[k * 16 + i]).transpose(*this, i, k);
+    }
+#endif // __AVX2__
+#endif // __USE_SUBSQUARES__
 }
 
 void square128::randomize(PRNG& G)
@@ -168,35 +267,35 @@ void square128::randomize(PRNG& G)
 }
 
 template <>
-void square128::randomize<gf2n>(int row, PRNG& G)
+void square128::randomize<gf2n_long>(int row, PRNG& G)
 {
     rows[row] = G.get_doubleword();
 }
 
 template <>
-void square128::randomize<gfp>(int row, PRNG& G)
+void square128::randomize<gfp1>(int row, PRNG& G)
 {
-    rows[row] = gfp::get_ZpD().get_random128(G);
+    rows[row] = gfp1::get_ZpD().get_random128(G);
 }
 
 
 void gfp_iadd(__m128i& a, __m128i& b)
 {
-    gfp::get_ZpD().Add((mp_limb_t*)&a, (mp_limb_t*)&a, (mp_limb_t*)&b);
+    gfp1::get_ZpD().Add((mp_limb_t*)&a, (mp_limb_t*)&a, (mp_limb_t*)&b);
 }
 
 void gfp_isub(__m128i& a, __m128i& b)
 {
-    gfp::get_ZpD().Sub((mp_limb_t*)&a, (mp_limb_t*)&a, (mp_limb_t*)&b);
+    gfp1::get_ZpD().Sub((mp_limb_t*)&a, (mp_limb_t*)&a, (mp_limb_t*)&b);
 }
 
 void gfp_irsub(__m128i& a, __m128i& b)
 {
-    gfp::get_ZpD().Sub((mp_limb_t*)&a, (mp_limb_t*)&b, (mp_limb_t*)&a);
+    gfp1::get_ZpD().Sub((mp_limb_t*)&a, (mp_limb_t*)&b, (mp_limb_t*)&a);
 }
 
 template<>
-void square128::conditional_add<gf2n>(BitVector& conditions, square128& other, int offset)
+void square128::conditional_add<gf2n_long>(BitVector& conditions, square128& other, int offset)
 {
     for (int i = 0; i < 128; i++)
         if (conditions.get_bit(128 * offset + i))
@@ -204,7 +303,7 @@ void square128::conditional_add<gf2n>(BitVector& conditions, square128& other, i
 }
 
 template<>
-void square128::conditional_add<gfp>(BitVector& conditions, square128& other, int offset)
+void square128::conditional_add<gfp1>(BitVector& conditions, square128& other, int offset)
 {
     for (int i = 0; i < 128; i++)
         if (conditions.get_bit(128 * offset + i))
@@ -230,7 +329,7 @@ void square128::to(gf2n_long& result)
 }
 
 template <>
-void square128::to(gfp& result)
+void square128::to(gfp1& result)
 {
     mp_limb_t product[4], sum[4], tmp[2][4];
     memset(tmp, 0, sizeof(tmp));
@@ -242,10 +341,10 @@ void square128::to(gfp& result)
             memcpy(product, tmp[i/64], sizeof(product));
         else
             mpn_lshift(product, tmp[i/64], 4, i % 64);
-        mpn_add_n(sum, product, sum, 4);
+        mpn_add_fixed_n<4>(sum, product, sum);
     }
     mp_limb_t q[4], ans[4];
-    mpn_tdiv_qr(q, ans, 0, sum, 4, gfp::get_ZpD().get_prA(), 2);
+    mpn_tdiv_qr(q, ans, 0, sum, 4, gfp1::get_ZpD().get_prA(), 2);
     result = *(__m128i*)ans;
 }
 
@@ -257,11 +356,19 @@ void square128::check_transpose(square128& dual, int i, int k)
             {
                 cout << "Error in 16x16 square (" << i << "," << k << ")" << endl;
                 print(i, k);
+                cout << "dual" << endl;
                 dual.print(i, k);
                 exit(1);
             }
 }
 
+void square128::check_transpose(square128& dual)
+{
+    for (int i = 0; i < 8; i++)
+        for (int k = 0; k < 8; k++)
+            check_transpose(dual, i, k);
+}
+
 void square16::print()
 {
     for (int i = 0; i < 2; i++)
@@ -297,6 +404,31 @@ void square128::print()
     }
 }
 
+void square128::print_octets()
+{
+    for (int i = 0; i < 128; i++)
+    {
+        for (int j = 0; j < 16; j++)
+            cout << hex << (int)bytes[i][j] << " ";
+        cout << endl;
+    }
+    cout << dec;
+}
+
+void square128::print_doublerows()
+{
+    for (int i = 0; i < 64; i++)
+    {
+        for (int j = 0; j < 32; j++)
+        {
+            cout.width(2);
+            cout << hex << (int)bytes[2*i+j/16][j%16] << " ";
+        }
+        cout << endl;
+    }
+    cout << dec;
+}
+
 void square128::set_zero()
 {
     for (int i = 0; i < 128; i++)
@@ -311,13 +443,13 @@ square128& square128::operator^=(square128& other)
 }
 
 template<>
-square128& square128::add<gf2n>(square128& other)
+square128& square128::add<gf2n_long>(square128& other)
 {
     return *this ^= other;
 }
 
 template<>
-square128& square128::add<gfp>(square128& other)
+square128& square128::add<gfp1>(square128& other)
 {
     for (int i = 0; i < 128; i++)
         gfp_iadd(rows[i], other.rows[i]);
@@ -325,13 +457,13 @@ square128& square128::add<gfp>(square128& other)
 }
 
 template<>
-square128& square128::sub<gf2n>(square128& other)
+square128& square128::sub<gf2n_long>(square128& other)
 {
     return *this ^= other;
 }
 
 template<>
-square128& square128::sub<gfp>(square128& other)
+square128& square128::sub<gfp1>(square128& other)
 {
     for (int i = 0; i < 128; i++)
         gfp_isub(rows[i], other.rows[i]);
@@ -339,20 +471,20 @@ square128& square128::sub<gfp>(square128& other)
 }
 
 template<>
-square128& square128::rsub<gf2n>(square128& other)
+square128& square128::rsub<gf2n_long>(square128& other)
 {
     return *this ^= other;
 }
 
 template<>
-square128& square128::rsub<gfp>(square128& other)
+square128& square128::rsub<gfp1>(square128& other)
 {
     for (int i = 0; i < 128; i++)
         gfp_irsub(rows[i], other.rows[i]);
     return *this;
 }
 
-square128& square128::operator^=(__m128i* other)
+square128& square128::operator^=(const __m128i* other)
 {
     __m128i value = _mm_loadu_si128(other);
     for (int i = 0; i < 128; i++)
@@ -361,13 +493,13 @@ square128& square128::operator^=(__m128i* other)
 }
 
 template <>
-square128& square128::sub<gf2n>(__m128i* other)
+square128& square128::sub<gf2n_long>(const __m128i* other)
 {
     return *this ^= other;
 }
 
 template <>
-square128& square128::sub<gfp>(__m128i* other)
+square128& square128::sub<gfp1>(const __m128i* other)
 {
     __m128i value = _mm_loadu_si128(other);
    for (int i = 0; i < 128; i++)
@@ -409,7 +541,9 @@ BitMatrix::BitMatrix(int length)
 void BitMatrix::resize(int length)
 {
     if (length % 128 != 0)
-        throw invalid_length();
+        throw invalid_length(
+                to_string(length) + " not divisible by "
+                        + to_string(128));
     squares.resize(length / 128);
 }
 
@@ -418,47 +552,33 @@ int BitMatrix::size()
     return squares.size() * 128;
 }
 
-template <class T>
-BitMatrix& BitMatrix::add(BitMatrix& other)
-{
-    if (squares.size() != other.squares.size())
-        throw invalid_length();
-    for (size_t i = 0; i < squares.size(); i++)
-        squares[i].add<T>(other.squares[i]);
-    return *this;
-}
-
-template <class T>
-BitMatrix& BitMatrix::sub(BitMatrix& other)
-{
-    if (squares.size() != other.squares.size())
-        throw invalid_length();
-    for (size_t i = 0; i < squares.size(); i++)
-        squares[i].sub<T>(other.squares[i]);
-    return *this;
-}
-
-template <class T>
-BitMatrix& BitMatrix::rsub(BitMatrixSlice& other)
-{
-    if (squares.size() < other.end)
-        throw invalid_length();
-    for (size_t i = other.start; i < other.end; i++)
-        squares[i].rsub<T>(other.bm.squares[i]);
-    return *this;
-}
-
-template <class T>
-BitMatrix& BitMatrix::sub(BitVector& other)
+template <class U>
+template <class V>
+Matrix<U>& Matrix<U>::operator=(const Matrix<V>& other)
 {
-    if (squares.size() * 128 != other.size())
-        throw invalid_length();
-    for (size_t i = 0; i < squares.size(); i++)
-        squares[i].sub<T>((__m128i*)other.get_ptr() + i);
+    int n = other.squares.size() * V::N_ROWS;
+    squares.resize(DIV_CEIL(n, U::N_ROWS));
+    for (int i = 0; i < n; i++)
+    {
+        auto& dest = squares[i / U::N_ROWS].rows[i % U::N_ROWS];
+        auto& source = other.squares[i / V::N_ROWS].rows[i % V::N_ROWS];
+        if (U::N_COLUMNS < V::N_COLUMNS)
+            dest = source;
+        else
+        {
+            PRNG prng;
+            octet seed[SEED_SIZE];
+            avx_memcpy(seed, &source, min(SEED_SIZE, (int)sizeof(source)));
+            prng.SetSeed(seed);
+            dest = 0;
+            prng.get_octets<U::N_ROW_BYTES>((octet*)dest.get_ptr());
+        }
+    }
     return *this;
 }
 
-bool BitMatrix::operator==(BitMatrix& other)
+template <class U>
+bool Matrix<U>::operator==(Matrix<U>& other)
 {
     if (squares.size() != other.squares.size())
         throw invalid_length();
@@ -468,21 +588,24 @@ bool BitMatrix::operator==(BitMatrix& other)
     return true;
 }
 
-bool BitMatrix::operator!=(BitMatrix& other)
+template <class U>
+bool Matrix<U>::operator!=(Matrix<U>& other)
 {
     return not (*this == other);
 }
 
-void BitMatrix::randomize(PRNG& G)
+template <class U>
+void Matrix<U>::randomize(PRNG& G)
 {
     for (size_t i = 0; i < squares.size(); i++)
         squares[i].randomize(G);
 }
 
-void BitMatrix::randomize(int row, PRNG& G)
+template <class U>
+void Matrix<U>::randomize(int row, PRNG& G)
 {
     for (size_t i = 0; i < squares.size(); i++)
-        squares[i].randomize<gf2n>(row, G);
+        squares[i].template randomize<gf2n_long>(row, G);
 }
 
 void BitMatrix::transpose()
@@ -509,7 +632,8 @@ void BitMatrix::check_transpose(BitMatrix& dual)
     cout << "No errors in transpose" << endl;
 }
 
-void BitMatrix::print_side_by_side(BitMatrix& other)
+template <class U>
+void Matrix<U>::print_side_by_side(Matrix<U>& other)
 {
     for (int i = 0; i < 32; i++)
     {
@@ -522,7 +646,8 @@ void BitMatrix::print_side_by_side(BitMatrix& other)
     }
 }
 
-void BitMatrix::print_conditional(BitVector& conditions)
+template <class U>
+void Matrix<U>::print_conditional(BitVector& conditions)
 {
     for (int i = 0; i < 32; i++)
     {
@@ -538,19 +663,22 @@ void BitMatrix::print_conditional(BitVector& conditions)
     }
 }
 
-void BitMatrix::pack(octetStream& os) const
+template <class U>
+void Matrix<U>::pack(octetStream& os) const
 {
     for (size_t i = 0; i < squares.size(); i++)
         squares[i].pack(os);
 }
 
-void BitMatrix::unpack(octetStream& os)
+template <class U>
+void Matrix<U>::unpack(octetStream& os)
 {
     for (size_t i = 0; i < squares.size(); i++)
         squares[i].unpack(os);
 }
 
-void BitMatrix::to(vector<BitVector>& output)
+template <>
+void Matrix<square128>::to(vector<BitVector>& output)
 {
     output.resize(128);
     for (int i = 0; i < 128; i++)
@@ -561,7 +689,21 @@ void BitMatrix::to(vector<BitVector>& output)
     }
 }
 
-BitMatrixSlice::BitMatrixSlice(BitMatrix& bm, size_t start, size_t size) :
+template <class U>
+void Matrix<U>::to(vector<BitVector>& output)
+{
+    int n = U::N_ROWS;
+    output.resize(n);
+    for (int i = 0; i < n; i++)
+    {
+        output[i].resize(U::N_COLUMNS * squares.size());
+        for (size_t j = 0; j < squares.size(); j++)
+            output[i].set_portion(j, squares[j].rows[i]);
+    }
+}
+
+template <class U>
+Slice<U>::Slice(U& bm, size_t start, size_t size) :
         bm(bm), start(start)
 {
     end = start + size;
@@ -573,45 +715,57 @@ BitMatrixSlice::BitMatrixSlice(BitMatrix& bm, size_t start, size_t size) :
     }
 }
 
+template <class U>
 template <class T>
-BitMatrixSlice& BitMatrixSlice::rsub(BitMatrixSlice& other)
+Slice<U>& Slice<U>::rsub(Slice<U>& other)
 {
-    bm.rsub<T>(other);
+    if (bm.squares.size() < other.end)
+        throw invalid_length();
+    for (size_t i = other.start; i < other.end; i++)
+        bm.squares[i].template rsub<T>(other.bm.squares[i]);
     return *this;
 }
 
+template <class U>
 template <class T>
-BitMatrixSlice& BitMatrixSlice::add(BitVector& other, int repeat)
+Slice<U>& Slice<U>::sub(BitVector& other, int repeat)
 {
-    if (end * 128 > other.size() * repeat)
-        throw invalid_length();
+    if (end * U::PartType::N_COLUMNS > other.size() * repeat)
+        throw invalid_length(to_string(U::PartType::N_COLUMNS));
     for (size_t i = start; i < end; i++)
-        bm.squares[i].sub<T>((__m128i*)other.get_ptr() + i / repeat);
+    {
+        bm.squares[i].template sub<T>(other.get_ptr_to_byte(i / repeat,
+                U::PartType::N_ROW_BYTES));
+    }
     return *this;
 }
 
+template <class U>
 template <class T>
-void BitMatrixSlice::randomize(int row, PRNG& G)
+void Slice<U>::randomize(int row, PRNG& G)
 {
     for (size_t i = start; i < end; i++)
-        bm.squares[i].randomize<T>(row, G);
+        bm.squares[i].template randomize<T>(row, G);
 }
 
+template <class U>
 template <class T>
-void BitMatrixSlice::conditional_add(BitVector& conditions, BitMatrix& other, bool useOffset)
+void Slice<U>::conditional_add(BitVector& conditions, U& other, bool useOffset)
 {
     for (size_t i = start; i < end; i++)
-        bm.squares[i].conditional_add<T>(conditions, other.squares[i], useOffset * i);
+        bm.squares[i].template conditional_add<T>(conditions, other.squares[i], useOffset * i);
 }
 
-void BitMatrixSlice::transpose()
+template <>
+void Slice<BitMatrix>::transpose()
 {
     for (size_t i = start; i < end; i++)
         bm.squares[i].transpose();
 }
 
+template <class U>
 template <class T>
-void BitMatrixSlice::print()
+void Slice<U>::print()
 {
     cout << "hex / value" << endl;
     for (int i = 0; i < 16; i++)
@@ -621,31 +775,61 @@ void BitMatrixSlice::print()
     cout << endl;
 }
 
-void BitMatrixSlice::pack(octetStream& os) const
+template <class U>
+void Slice<U>::pack(octetStream& os) const
 {
+    os.reserve(U::PartType::size() * (end - start));
     for (size_t i = start; i < end; i++)
         bm.squares[i].pack(os);
 }
 
-void BitMatrixSlice::unpack(octetStream& os)
+template <class U>
+void Slice<U>::unpack(octetStream& os)
 {
     for (size_t i = start; i < end; i++)
         bm.squares[i].unpack(os);
 }
 
-template void BitMatrixSlice::conditional_add<gf2n>(BitVector& conditions, BitMatrix& other, bool useOffset);
-template void BitMatrixSlice::conditional_add<gfp>(BitVector& conditions, BitMatrix& other, bool useOffset);
-template BitMatrixSlice& BitMatrixSlice::rsub<gf2n>(BitMatrixSlice& other);
-template BitMatrixSlice& BitMatrixSlice::rsub<gfp>(BitMatrixSlice& other);
-template BitMatrixSlice& BitMatrixSlice::add<gf2n>(BitVector& other, int repeat);
-template BitMatrixSlice& BitMatrixSlice::add<gfp>(BitVector& other, int repeat);
-template BitMatrix& BitMatrix::add<gf2n>(BitMatrix& other);
-template BitMatrix& BitMatrix::add<gfp>(BitMatrix& other);
-template BitMatrix& BitMatrix::sub<gf2n>(BitMatrix& other);
-template BitMatrix& BitMatrix::sub<gfp>(BitMatrix& other);
-template void BitMatrixSlice::print<gf2n_long>();
-template void BitMatrixSlice::print<gfp>();
-template void BitMatrixSlice::randomize<gf2n>(int row, PRNG& G);
-template void BitMatrixSlice::randomize<gfp>(int row, PRNG& G);
+#define M(N,L) Matrix<Rectangle< Z2<N>, Z2<L> > >
+#undef X
+#define X(N,L) \
+template class Matrix<Rectangle< Z2<N>, Z2<L> > >; \
+template M(N,L)& M(N,L)::operator=(const Matrix<square128>& other); \
+template class Slice<Matrix<Rectangle< Z2<N>, Z2<L> > > >; \
+template void Slice<Matrix<Rectangle< Z2<N>, Z2<L> > > >::randomize<Z2<L> >(int row, PRNG& G); \
+template Slice<Matrix<Rectangle<Z2<N>, Z2<L> > > >& Slice< \
+        Matrix<Rectangle<Z2<N>, Z2<L> > > >::rsub<Z2<L> >( \
+        Slice<Matrix<Rectangle<Z2<N>, Z2<L> > > >& other); \
+template Slice<Matrix<Rectangle<Z2<N>, Z2<L> > > >& Slice< \
+        Matrix<Rectangle<Z2<N>, Z2<L> > > >::sub<Z2<L> >(BitVector& other, int repeat); \
+template void Slice<Matrix<Rectangle<Z2<N>, Z2<L> > > >::conditional_add< \
+        Z2<L> >(BitVector& conditions, \
+        Matrix<Rectangle<Z2<N>, Z2<L> > >& other, bool useOffset); \
+
+//X(96, 160)
+
+Y(64, 64)
+Y(64, 48)
+Y(66, 64)
+Y(66, 48)
+Y(32, 32)
+
+template class Matrix<square128>;
+
+#define BMS X(BitMatrix) X(Matrix<square128>)
+#undef X
+#define X(BM) \
+template class Slice<BM>; \
+XX(BM, gfp1) XX(BM, gf2n_long)
+
+#define XX(BM, GF) \
+template void Slice<BM >::conditional_add<GF>(BitVector& conditions, BM& other, bool useOffset); \
+template Slice<BM >& Slice<BM >::rsub<GF>(Slice<BM >& other); \
+template Slice<BM >& Slice<BM >::sub<GF>(BitVector& other, int repeat); \
+template void Slice<BM >::print<GF>(); \
+template void Slice<BM >::randomize<GF>(int row, PRNG& G); \
+
+BMS
+
 template void square128::hash_row_wise<gf2n>(MMO& mmo, square128& input);
-template void square128::hash_row_wise<gfp>(MMO& mmo, square128& input);
+template void square128::hash_row_wise<gfp1>(MMO& mmo, square128& input);
diff --git a/OT/BitMatrix.h b/OT/BitMatrix.h
index 0893a6064..3a273ace6 100644
--- a/OT/BitMatrix.h
+++ b/OT/BitMatrix.h
@@ -8,6 +8,7 @@
 
 #include <vector>
 #include <emmintrin.h>
+#include <immintrin.h>
 
 #include "BitVector.h"
 #include "Tools/random.h"
@@ -17,6 +18,18 @@
 using namespace std;
 
 union square128 {
+    typedef int128 RowType;
+
+    const static int N_ROWS = 128;
+    const static int N_ROWS_ALLOCATED = 128;
+    const static int N_COLUMNS = 128;
+    const static int N_ROW_BYTES = 128 / 8;
+
+    static size_t size() { return N_ROWS * sizeof(__m128i); }
+
+#ifdef __AVX2__
+    __m256i doublerows[64];
+#endif
     __m128i rows[128];
     octet bytes[128][16];
     int16_t doublebytes[128][8];
@@ -28,7 +41,7 @@ union square128 {
     void set_zero();
 
     square128& operator^=(square128& other);
-    square128& operator^=(__m128i* other);
+    square128& operator^=(const __m128i* other);
     square128& operator^=(BitVector& other);
     bool operator==(square128& other);
 
@@ -39,7 +52,9 @@ union square128 {
     template <class T>
     square128& rsub(square128& other);
     template <class T>
-    square128& sub(__m128i* other);
+    square128& sub(const __m128i* other);
+    template <class T>
+    square128& sub(const void* other) { return sub<T>((__m128i*)other); }
 
     void randomize(PRNG& G);
     template <class T>
@@ -53,8 +68,11 @@ union square128 {
     void to(T& result);
 
     void check_transpose(square128& dual, int i, int k);
+    void check_transpose(square128& dual);
     void print(int i, int k);
     void print();
+    void print_octets();
+    void print_doublerows();
 
     // Pack and unpack in native format
     //   i.e. Dont care about conversion to human readable form
@@ -62,37 +80,65 @@ union square128 {
     void unpack(octetStream& o);
 };
 
-class BitMatrixSlice;
+// allocator to counter GCC bug
+template <typename _Tp, int ALIGN>
+class aligned_allocator : public std::allocator<_Tp>
+{
+public:
+    typedef size_t     size_type;
+    typedef ptrdiff_t  difference_type;
+    typedef _Tp*       pointer;
+    typedef const _Tp* const_pointer;
+    typedef _Tp&       reference;
+    typedef const _Tp& const_reference;
+    typedef _Tp        value_type;
+
+    template<typename _Tp1>
+    struct rebind
+    { typedef aligned_allocator<_Tp1, ALIGN> other; };
+
+    _Tp*
+    allocate(size_t __n, const void* = 0)
+    {
+        if (__n > this->max_size())
+            std::__throw_bad_alloc();
+
+        _Tp* res = 0;
+        int err = posix_memalign((void**)&res, ALIGN, __n * sizeof(_Tp));
+        if (err != 0 or res == 0)
+            std::__throw_bad_alloc();
+        return res;
+    }
+
+    void
+    deallocate(pointer __p, size_type)
+    {
+        free(__p);
+    }
+};
 
-class BitMatrix
+template <class U>
+class Slice;
+
+template <class U>
+class Matrix
 {
 public:
-    vector<square128> squares;
+    typedef U PartType;
 
-    BitMatrix() {}
-    BitMatrix(int length);
-    void resize(int length);
-    int size();
+    vector< U, aligned_allocator<U, 32> > squares;
 
-    __m128i operator[](int i) { return squares[i / 128].rows[i % 128]; }
+    void resize_vertical(int length) { squares.resize(DIV_CEIL(length, U::N_ROWS)); }
 
-    template <class T>
-    BitMatrix& add(BitMatrix& other);
-    template <class T>
-    BitMatrix& sub(BitMatrix& other);
-    template <class T>
-    BitMatrix& rsub(BitMatrixSlice& other);
-    template <class T>
-    BitMatrix& sub(BitVector& other);
-    bool operator==(BitMatrix& other);
-    bool operator!=(BitMatrix& other);
+    template <class V>
+    Matrix<U>& operator=(const Matrix<V>& other);
+
+    bool operator==(Matrix<U>& other);
+    bool operator!=(Matrix<U>& other);
 
     void randomize(PRNG& G);
     void randomize(int row, PRNG& G);
-    void transpose();
-
-    void check_transpose(BitMatrix& dual);
-    void print_side_by_side(BitMatrix& other);
+    void print_side_by_side(Matrix<U>& other);
     void print_conditional(BitVector& conditions);
 
     // Pack and unpack in native format
@@ -103,25 +149,41 @@ class BitMatrix
     void to(vector<BitVector>& output);
 };
 
-class BitMatrixSlice
+class BitMatrix : public Matrix<square128>
+{
+public:
+    BitMatrix() {}
+    BitMatrix(int length);
+
+    __m128i operator[](int i) { return squares[i / 128].rows[i % 128]; }
+
+    void resize(int length);
+    int size();
+
+    void transpose();
+    void check_transpose(BitMatrix& dual);
+};
+
+template <class U>
+class Slice
 {
-    friend class BitMatrix;
+    friend U;
 
-    BitMatrix& bm;
+    U& bm;
     size_t start, end;
 
 public:
-    BitMatrixSlice(BitMatrix& bm, size_t start, size_t size);
+    Slice(U& bm, size_t start, size_t size);
 
     template <class T>
-    BitMatrixSlice& rsub(BitMatrixSlice& other);
+    Slice<U>& rsub(Slice<U>& other);
     template <class T>
-    BitMatrixSlice& add(BitVector& other, int repeat = 1);
+    Slice<U>& sub(BitVector& other, int repeat = 1);
 
     template <class T>
     void randomize(int row, PRNG& G);
     template <class T>
-    void conditional_add(BitVector& conditions, BitMatrix& other, bool useOffset = false);
+    void conditional_add(BitVector& conditions, U& other, bool useOffset = false);
     void transpose();
 
     template <class T>
@@ -133,4 +195,6 @@ class BitMatrixSlice
     void unpack(octetStream& o);
 };
 
+typedef Slice<BitMatrix> BitMatrixSlice;
+
 #endif /* OT_BITMATRIX_H_ */
diff --git a/OT/BitVector.cpp b/OT/BitVector.cpp
index 23144f608..7ac41e417 100644
--- a/OT/BitVector.cpp
+++ b/OT/BitVector.cpp
@@ -1,33 +1,38 @@
 
 #include "OT/BitVector.h"
+#include "OT/Rectangle.h"
 #include "Tools/random.h"
 #include "Tools/octetStream.h"
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
 
 #include <fstream>
+#include <assert.h>
 
-void BitVector::randomize(PRNG& G)
+void BitVector::resize_zero(size_t new_nbits)
 {
-    G.get_octets(bytes, nbytes);
+    size_t old_nbytes = nbytes;
+    resize(new_nbits);
+    avx_memzero(bytes + old_nbytes, nbytes - old_nbytes);
 }
 
-template<>
-void BitVector::randomize_blocks<gf2n>(PRNG& G)
+const void* BitVector::get_ptr_to_byte(size_t i, size_t block_size) const
 {
-    randomize(G);
+    assert(i + block_size <= nbytes);
+    return bytes + i * block_size;
 }
 
-template<>
-void BitVector::randomize_blocks<gfp>(PRNG& G)
+const void* BitVector::get_ptr_to_bit(size_t i, size_t block_size) const
 {
-    gfp tmp;
-    for (size_t i = 0; i < (nbits / 128); i++)
-    {
-        tmp.randomize(G);
-        for (int j = 0; j < 2; j++)
-            ((mp_limb_t*)bytes)[2*i+j] = tmp.get().get_limb(j);
-    }
+    assert((i * block_size) % 8 == 0);
+    assert((i + 1) * block_size <= nbits);
+    return bytes + block_size * i / 8;
+}
+
+void BitVector::randomize(PRNG& G)
+{
+    G.get_octets(bytes, nbytes);
 }
 
 void BitVector::randomize_at(int a, int nb, PRNG& G)
@@ -93,12 +98,13 @@ void BitVector::input(istream& s,bool human)
 
 void BitVector::pack(octetStream& o) const
 {
+    o.store(nbytes);
     o.append((octet*)bytes, nbytes);
 }
 
-
 void BitVector::unpack(octetStream& o)
 {
+    o.get(nbytes);
     o.consume((octet*)bytes, nbytes);
 }
 
diff --git a/OT/BitVector.h b/OT/BitVector.h
index 10c94da0a..2d12c18c6 100644
--- a/OT/BitVector.h
+++ b/OT/BitVector.h
@@ -8,16 +8,22 @@
 using namespace std;
 #include <stdlib.h>
 #include <pmmintrin.h>
+#include <assert.h>
 
 #include "Exceptions/Exceptions.h"
 #include "Networking/data.h"
 // just for util functions
 #include "Math/bigint.h"
 #include "Math/gf2nlong.h"
+#include "Math/gfp.h"
 
 class PRNG;
 class octetStream;
 
+template <int K>
+class Z2;
+template <class U, class V>
+class Rectangle;
 
 class BitVector
 {
@@ -25,7 +31,6 @@ class BitVector
 
     size_t nbytes;
     size_t nbits;
-    size_t length;
 
     public:
 
@@ -95,16 +100,20 @@ class BitVector
             bytes = new octet[nbytes];*/
         }
     }
+    void resize_zero(size_t new_nbits);
+
     unsigned int size() const { return nbits; }
     unsigned int size_bytes() const { return nbytes; }
     octet* get_ptr() { return bytes; }
+    const octet* get_ptr() const { return bytes; }
+    const void* get_ptr_to_byte(size_t i, size_t block_size) const;
+    const void* get_ptr_to_bit(size_t i, size_t block_size) const;
 
-    BitVector(size_t n=128)
+    BitVector(size_t n=0)
     {
         nbits = n;
         nbytes = DIV_CEIL(nbits, 8);
         bytes = new octet[nbytes];
-        length = n;
         assign_zero();
     }
     BitVector(const BitVector& K)
@@ -114,6 +123,11 @@ class BitVector
         nbits = K.nbits;
         assign(K);
     }
+    BitVector(const void* other, size_t bitsize) : BitVector()
+    {
+        resize(bitsize);
+        avx_memcpy(bytes, other, nbytes);
+    }
     ~BitVector() {
         //cout << "Destroy, size = " << nbytes << endl;
         delete[] bytes;
@@ -140,8 +154,17 @@ class BitVector
     int128 get_int128(int i) const { return _mm_loadu_si128((__m128i*)bytes + i); }
     void set_int128(int i, int128 a) { *((__m128i*)bytes + i) = a.a; }
 
-    int  get_bit(int i) const
+    template <class T>
+    T get_portion(int i) const;
+    template <class T>
+    void set_portion(int i, const T& a);
+
+    template <class T>
+    void set(const T& a);
+
+    bool get_bit(int i) const
       {
+        assert(i < (int)nbits);
         return (bytes[i/8] >> (i % 8)) & 1;
       }
     void set_bit(int i,unsigned int a)
@@ -197,14 +220,51 @@ class BitVector
     void pack(octetStream& o) const;
     void unpack(octetStream& o);
 
-    string str()
+    string str(size_t end = SIZE_MAX) const
     {
         stringstream ss;
         ss << hex;
-        for(size_t i(0);i < nbytes;++i)
+        for(size_t i(0);i < min(nbytes, end);++i)
             ss << (int)bytes[i] << " ";
         return ss.str();
     }
 };
 
+template <class T>
+T inline BitVector::get_portion(int i) const
+{
+    return (char*)&bytes[T::size() * i];
+}
+
+template <class T>
+void inline BitVector::set_portion(int i, const T& a)
+{
+    memcpy(bytes + a.size() * i, a.get_ptr(), a.size());
+}
+
+template <class T>
+void inline BitVector::set(const T& a)
+{
+    resize(8 * a.size());
+    memcpy(bytes, a.get_ptr(), a.size());
+}
+
+template<>
+inline void BitVector::randomize_blocks<gfp1>(PRNG& G)
+{
+    gfp1 tmp;
+    for (size_t i = 0; i < (nbits / 128); i++)
+    {
+        tmp.randomize(G);
+        for (int j = 0; j < 2; j++)
+            ((mp_limb_t*)bytes)[2*i+j] = tmp.get().get_limb(j);
+    }
+}
+
+template<class T>
+inline void BitVector::randomize_blocks(PRNG& G)
+{
+    randomize(G);
+}
+
 #endif
diff --git a/OT/NPartyTripleGenerator.cpp b/OT/NPartyTripleGenerator.cpp
index 037fc85ee..4bb5c8e5e 100644
--- a/OT/NPartyTripleGenerator.cpp
+++ b/OT/NPartyTripleGenerator.cpp
@@ -7,125 +7,35 @@
 #include "Math/operators.h"
 #include "Auth/Subroutines.h"
 #include "Auth/MAC_Check.h"
+#include "Processor/Spdz2kPrep.h"
+
+#include "OT/Triple.hpp"
+#include "OT/Rectangle.hpp"
+#include "Auth/MAC_Check.hpp"
+#include "Processor/MascotPrep.hpp"
 
 #include <sstream>
 #include <fstream>
 #include <math.h>
 
-template <class T, int N>
-class Triple
-{
-public:
-    T a[N];
-    T b;
-    T c[N];
-
-    int repeat(int l)
-    {
-        switch (l)
-        {
-        case 0:
-        case 2:
-            return N;
-        case 1:
-            return 1;
-        default:
-            throw bad_value();
-        }
-    }
-
-    T& byIndex(int l, int j)
-    {
-        switch (l)
-        {
-        case 0:
-            return a[j];
-        case 1:
-            return b;
-        case 2:
-            return c[j];
-        default:
-            throw bad_value();
-        }
-    }
-
-    template <int M>
-    void amplify(const Triple<T,M>& uncheckedTriple, PRNG& G)
-    {
-        b = uncheckedTriple.b;
-        for (int i = 0; i < N; i++)
-            for (int j = 0; j < M; j++)
-            {
-                typename T::value_type r;
-                r.randomize(G);
-                a[i] += r * uncheckedTriple.a[j];
-                c[i] += r * uncheckedTriple.c[j];
-            }
-    }
-
-    void output(ostream& outputStream, int n = N, bool human = false)
-    {
-        for (int i = 0; i < n; i++)
-        {
-            a[i].output(outputStream, human);
-            b.output(outputStream, human);
-            c[i].output(outputStream, human);
-        }
-    }
-};
-
-template <class T, int N>
-class PlainTriple : public Triple<T,N>
-{
-public:
-    // this assumes that valueBits[1] is still set to the bits of b
-    void to(vector<BitVector>& valueBits, int i)
-    {
-        for (int j = 0; j < N; j++)
-        {
-            valueBits[0].set_int128(i * N + j, this->a[j].to_m128i());
-            valueBits[2].set_int128(i * N + j, this->c[j].to_m128i());
-        }
-    }
-};
-
-template <class T, int N>
-class ShareTriple : public Triple<Share<T>, N>
+template<class T>
+void* run_ot_thread(void* ptr)
 {
-public:
-    void from(PlainTriple<T,N>& triple, vector<OTMultiplier<T>*>& ot_multipliers,
-            int iTriple, const NPartyTripleGenerator& generator)
-    {
-        for (int l = 0; l < 3; l++)
-        {
-            int repeat = this->repeat(l);
-            for (int j = 0; j < repeat; j++)
-            {
-                T value = triple.byIndex(l,j);
-                T mac = value * generator.machine.get_mac_key<T>();
-                for (int i = 0; i < generator.nparties-1; i++)
-                    mac += ot_multipliers[i]->macs[l][iTriple * repeat + j];
-                Share<T>& share = this->byIndex(l,j);
-                share.set_share(value);
-                share.set_mac(mac);
-            }
-        }
-    }
-
-    T computeCheckMAC(const T& maskedA)
-    {
-        return this->c[0].get_mac() - maskedA * this->b.get_mac();
-    }
-};
+    ((OTMultiplierBase*)ptr)->multiply();
+    return NULL;
+}
 
 /*
  * Copies the relevant base OTs from setup
  * N.B. setup must not be stored as it will be used by other threads
  */
-NPartyTripleGenerator::NPartyTripleGenerator(OTTripleSetup& setup,
+template<class T>
+NPartyTripleGenerator<T>::NPartyTripleGenerator(OTTripleSetup& setup,
         const Names& names, int thread_num, int _nTriples, int nloops,
-        TripleMachine& machine) :
-        globalPlayer(names, - thread_num * machine.nplayers * machine.nplayers),
+        MascotParams& machine, Player* parentPlayer) :
+        globalPlayer(parentPlayer ? *parentPlayer : *new PlainPlayer(names,
+                - thread_num * names.num_players() * names.num_players())),
+        parentPlayer(parentPlayer),
         thread_num(thread_num),
         my_num(setup.get_my_num()),
         nloops(nloops),
@@ -134,7 +44,7 @@ NPartyTripleGenerator::NPartyTripleGenerator(OTTripleSetup& setup,
 {
     nTriplesPerLoop = DIV_CEIL(_nTriples, nloops);
     nTriples = nTriplesPerLoop * nloops;
-    field_size = 128;
+    field_size = T::open_type::size() * 8;
     nAmplify = machine.amplify ? N_AMPLIFY : 1;
     nPreampTriplesPerLoop = nTriplesPerLoop * nAmplify;
 
@@ -144,16 +54,14 @@ NPartyTripleGenerator::NPartyTripleGenerator(OTTripleSetup& setup,
     //baseReceiverOutputs.resize(n-1);
     nbase = setup.get_nbase();
     baseReceiverInput.resize(nbase);
-    baseReceiverOutputs.resize(n - 1);
-    baseSenderInputs.resize(n - 1);
+    baseReceiverOutputs = setup.baseReceiverOutputs;
+    baseSenderInputs = setup.baseSenderInputs;
     players.resize(n-1);
 
-    gf2n_long::init_field(128);
-
     for (int i = 0; i < n-1; i++)
     {
         // i for indexing, other_player is actual number
-        int other_player, id;
+        int other_player;
         if (i >= my_num)
             other_player = i + 1;
         else
@@ -164,52 +72,63 @@ NPartyTripleGenerator::NPartyTripleGenerator(OTTripleSetup& setup,
         {
             baseReceiverInput.set_bit(j, (unsigned int)setup.get_base_receiver_input(j));
         }
-        baseReceiverOutputs[i] = setup.baseOTs[i]->receiver_outputs;
-        baseSenderInputs[i] = setup.baseOTs[i]->sender_inputs;
 
-        // new TwoPartyPlayer with unique id for each thread + pair of players
-        if (my_num < other_player)
-            id = (thread_num+1)*n*n + my_num*n + other_player;
-        else
-            id = (thread_num+1)*n*n + other_player*n + my_num;
-        players[i] = new TwoPartyPlayer(names, other_player, id);
-        cout << "Set up with player " << other_player << " in thread " << thread_num << " with id " << id << endl;
+        players[i] = new VirtualTwoPartyPlayer(globalPlayer, other_player);
     }
 
     pthread_mutex_init(&mutex, 0);
     pthread_cond_init(&ready, 0);
+
+    ot_multipliers.resize(nparties-1);
+
+    for (int i = 0; i < nparties-1; i++)
+    {
+        ot_multipliers[i] = new_multiplier(i);
+        pthread_create(&(ot_multipliers[i]->thread), 0, run_ot_thread<T>, ot_multipliers[i]);
+    }
+
+    wait_for_multipliers();
 }
 
-NPartyTripleGenerator::~NPartyTripleGenerator()
+template<class T>
+NPartyTripleGenerator<T>::~NPartyTripleGenerator()
 {
+    // wait for threads to finish
+    for (int i = 0; i < nparties-1; i++)
+    {
+        ot_multipliers[i]->inbox.stop();
+        pthread_join(ot_multipliers[i]->thread, NULL);
+#ifdef DEBUG_THREADS
+        cout << "OT thread " << i << " finished\n" << flush;
+#endif
+    }
+
+    for (size_t i = 0; i < ot_multipliers.size(); i++)
+        delete ot_multipliers[i];
+
     for (size_t i = 0; i < players.size(); i++)
         delete players[i];
     //delete nplayer;
     pthread_mutex_destroy(&mutex);
     pthread_cond_destroy(&ready);
+
+    if (parentPlayer != &globalPlayer)
+        delete &globalPlayer;
 }
 
 template<class T>
-void* run_ot_thread(void* ptr)
+typename T::Multiplier* NPartyTripleGenerator<T>::new_multiplier(int i)
 {
-    ((OTMultiplier<T>*)ptr)->multiply();
-    return NULL;
+    return new typename T::Multiplier(*this, i);
 }
 
 template<class T>
-void NPartyTripleGenerator::generate()
+void NPartyTripleGenerator<T>::generate()
 {
-    vector< OTMultiplier<T>* > ot_multipliers(nparties-1);
+    bigint::init_thread();
 
     timers["Generator thread"].start();
 
-    for (int i = 0; i < nparties-1; i++)
-    {
-        ot_multipliers[i] = new OTMultiplier<T>(*this, i);
-        pthread_mutex_lock(&ot_multipliers[i]->mutex);
-        pthread_create(&(ot_multipliers[i]->thread), 0, run_ot_thread<T>, ot_multipliers[i]);
-    }
-
     // add up the shares from each thread and write to file
     stringstream ss;
     ss << machine.prep_data_dir;
@@ -217,53 +136,93 @@ void NPartyTripleGenerator::generate()
         ss << "Bits-";
     else
         ss << "Triples-";
-    ss << T::type_char() << "-P" << my_num;
+    ss << T::type_short() << "-P" << my_num;
     if (thread_num != 0)
         ss << "-" << thread_num;
-    ofstream outputFile;
     if (machine.output)
         outputFile.open(ss.str().c_str());
 
     if (machine.generateBits)
-    	generateBits(ot_multipliers, outputFile);
+        generateBits();
     else
-    	generateTriples(ot_multipliers, outputFile);
+        generateTriples();
 
     timers["Generator thread"].stop();
     if (machine.output)
-        cout << "Written " << nTriples << " outputs to " << ss.str() << endl;
+        cout << "Written " << nTriples << " " << T::type_string() << " outputs to " << ss.str() << endl;
+#ifdef VERBOSE
     else
-        cout << "Generated " << nTriples << " outputs" << endl;
+        cout << "Generated " << nTriples << " " << T::type_string() << " outputs" << endl;
+#endif
+}
 
-    // wait for threads to finish
-    for (int i = 0; i < nparties-1; i++)
+template<class W>
+void NPartyTripleGenerator<W>::generateInputs(int player)
+{
+    typedef open_type T;
+
+    // extra value for sacrifice
+    int toCheck = nTriplesPerLoop + 1;
+    signal_multipliers({player, toCheck});
+    bool mine = player == globalPlayer.my_num();
+    valueBits.resize(1);
+
+    if (mine)
     {
-        pthread_mutex_unlock(&ot_multipliers[i]->mutex);
-        pthread_join(ot_multipliers[i]->thread, NULL);
-        cout << "OT thread " << i << " finished\n" << flush;
+        valueBits[0].resize(toCheck * field_size);
+        valueBits[0].template randomize_blocks<T>(share_prg);
+        signal_multipliers({});
     }
-    cout << "OT threads finished\n";
 
-    for (size_t i = 0; i < ot_multipliers.size(); i++)
-        delete ot_multipliers[i];
+    wait_for_multipliers();
+
+    GlobalPRNG G(globalPlayer);
+    Share<T> check_sum;
+    inputs.resize(toCheck);
+    auto mac_key = machine.get_mac_key<mac_key_type>();
+    for (int j = 0; j < toCheck; j++)
+    {
+        T share, mac_sum;
+        if (mine)
+            share = valueBits[0].template get_portion<T>(j);
+        if (mine)
+        {
+            mac_sum = share * mac_key;
+            for (int i = 0; i < nparties-1; i++)
+                mac_sum += (ot_multipliers[i])->input_macs[j];
+        }
+        else
+        {
+            int i_thread = player - (player > globalPlayer.my_num() ? 1 : 0);
+            mac_sum = (ot_multipliers[i_thread])->input_macs[j];
+        }
+        inputs[j] = {{share, mac_sum}, share};
+        check_sum += inputs[j].share * G.get<T>();
+    }
+    inputs.resize(nTriplesPerLoop);
+
+    typename W::MAC_Check MC(mac_key);
+    MC.POpen(check_sum, globalPlayer);
+    // use zero element because all is perfectly randomized
+    MC.set_random_element({});
+    MC.Check(globalPlayer);
 }
 
 template<>
-void NPartyTripleGenerator::generateBits(vector< OTMultiplier<gf2n>* >& ot_multipliers,
-		ofstream& outputFile)
+void NPartyTripleGenerator<Share<gf2n>>::generateBits()
 {
-    PRNG share_prg;
-    share_prg.ReSeed();
+    for (int i = 0; i < nparties-1; i++)
+        ot_multipliers[i]->inbox.push(DATA_BIT);
 
     int nBitsToCheck = nTriplesPerLoop + field_size;
     valueBits.resize(1);
     valueBits[0].resize(ceil(1.0 * nBitsToCheck / field_size) * field_size);
-    MAC_Check<gf2n> MC(machine.get_mac_key<gf2n>());
-    vector< Share<gf2n> > bits(nBitsToCheck);
+    bits.resize(nBitsToCheck);
     vector< Share<gf2n> > to_open(1);
     vector<gf2n> opened(1);
+    MAC_Check<gf2n> MC(machine.get_mac_key<gf2n>());
 
-    start_progress(ot_multipliers);
+    start_progress();
 
     for (int k = 0; k < nloops; k++)
     {
@@ -272,10 +231,10 @@ void NPartyTripleGenerator::generateBits(vector< OTMultiplier<gf2n>* >& ot_multi
     	valueBits[0].randomize_blocks<gf2n>(share_prg);
 
         for (int i = 0; i < nparties-1; i++)
-            pthread_cond_signal(&ot_multipliers[i]->ready);
+            ot_multipliers[i]->inbox.push({});
         timers["Authentication OTs"].start();
         for (int i = 0; i < nparties-1; i++)
-            pthread_cond_wait(&ot_multipliers[i]->ready, &ot_multipliers[i]->mutex);
+            ot_multipliers[i]->outbox.pop();
         timers["Authentication OTs"].stop();
 
         octet seed[SEED_SIZE];
@@ -289,12 +248,13 @@ void NPartyTripleGenerator::generateBits(vector< OTMultiplier<gf2n>* >& ot_multi
         {
             gf2n mac_sum = bool(valueBits[0].get_bit(j)) * machine.get_mac_key<gf2n>();
             for (int i = 0; i < nparties-1; i++)
-                mac_sum += ot_multipliers[i]->macs[0][j];
+                mac_sum += ((MascotMultiplier<gf2n>*)ot_multipliers[i])->macs[0][j];
             bits[j].set_share(valueBits[0].get_bit(j));
             bits[j].set_mac(mac_sum);
             r.randomize(G);
             check_sum += r * bits[j];
         }
+        bits.resize(nTriplesPerLoop);
 
         to_open[0] = check_sum;
         MC.POpen_Begin(opened, to_open, globalPlayer);
@@ -304,25 +264,161 @@ void NPartyTripleGenerator::generateBits(vector< OTMultiplier<gf2n>* >& ot_multi
         if (machine.output)
             for (int j = 0; j < nTriplesPerLoop; j++)
                 bits[j].output(outputFile, false);
-
-        for (int i = 0; i < nparties-1; i++)
-            pthread_cond_signal(&ot_multipliers[i]->ready);
    }
 }
 
 template<>
-void NPartyTripleGenerator::generateBits(vector< OTMultiplier<gfp>* >& ot_multipliers,
-		ofstream& outputFile)
+void NPartyTripleGenerator<Share<gfp1>>::generateBits()
+{
+	generateTriples();
+}
+
+template <class T>
+void NPartyTripleGenerator<T>::generateBits()
 {
-	generateTriples(ot_multipliers, outputFile);
+    (void)ot_multipliers;
+    (void)outputFile;
+    throw not_implemented();
 }
 
 template<class T>
-void NPartyTripleGenerator::generateTriples(vector< OTMultiplier<T>* >& ot_multipliers,
-    ofstream& outputFile)
+template<int K, int S>
+void NPartyTripleGenerator<T>::generateTriplesZ2k()
+{
+	(void) outputFile;
+	signal_multipliers(DATA_TRIPLE);
+
+	const int TAU = Spdz2kMultiplier<K, S>::TAU;
+	const int TAU_ROUNDED = (TAU + 7) / 8 * 8;
+	valueBits.resize(3);
+	for (int i = 0; i < 2; i++)
+		valueBits[2*i].resize(max(2 * 8 * Z2<K + 2 * S>::N_BYTES, TAU_ROUNDED) * nTriplesPerLoop);
+	valueBits[1].resize(8 * Z2<K + S>::N_BYTES * (nTriplesPerLoop + 1));
+	b_padded_bits.resize(8 * Z2<K + 2 * S>::N_BYTES * (nTriplesPerLoop + 1));
+	vector< PlainTriple_<Z2<K + 2 * S>, Z2<K + S>, 2> > amplifiedTriples(nTriplesPerLoop);
+	uncheckedTriples.resize(nTriplesPerLoop);
+	MAC_Check_Z2k<Z2<K + 2 * S>, Z2<S>, Z2<K + S>, Share<Z2<K + 2 * S>> > MC(machine.get_mac_key<Z2<S> >());
+
+	start_progress();
+
+	for (int k = 0; k < nloops; k++)
+	{
+		print_progress(k);
+
+		for (int j = 0; j < 2; j++)
+			valueBits[j].template randomize_blocks<gf2n>(share_prg);
+
+		for (int j = 0; j < nTriplesPerLoop + 1; j++)
+		{
+			Z2<K + S> b(valueBits[1].get_ptr_to_byte(j, Z2<K + S>::N_BYTES));
+			b_padded_bits.set_portion(j, Z2<K + 2 * S>(b));
+		}
+
+		timers["OTs"].start();
+		signal_multipliers({});
+		wait_for_multipliers();
+		timers["OTs"].stop();
+
+		octet seed[SEED_SIZE];
+		Create_Random_Seed(seed, globalPlayer, SEED_SIZE);
+		PRNG G;
+		G.SetSeed(seed);
+
+		BitVector aBits = valueBits[0];
+
+		for (int j = 0; j < nTriplesPerLoop; j++)
+		{
+			BitVector a(aBits.get_ptr_to_bit(j, TAU_ROUNDED), TAU);
+			Z2<K + S> b(valueBits[1].get_ptr_to_byte(j, Z2<K + S>::N_BYTES));
+			Z2kRectangle<TAU, K + S> c;
+			c.mul(a, b);
+			timers["Triple computation"].start();
+			for (int i = 0; i < nparties-1; i++)
+			{
+				c += ((Spdz2kMultiplier<K, S>*)ot_multipliers[i])->c_output[j];
+			}
+
+#ifdef DEBUG_SPDZ2K
+			for (int l = 0; l < c.N_ROWS; l++)
+			{
+				Z2<K + S> z = fake.POpen({c.rows[l], {}}, globalPlayer);
+				auto x = fake.POpen({a.get_bit(l), {}}, globalPlayer);
+				auto y = fake.POpen({b, {}}, globalPlayer);
+				Z2<K + S> zz = x * y;
+				if (z != zz)
+				{
+					cout << dec << j << " " << l << " " << hex << z << " " << zz
+							<< " " << y << " " << x << " " << a.get_byte(l / 8) << endl;
+				}
+			}
+#endif
+
+			timers["Triple computation"].stop();
+			amplifiedTriples[j].amplify(a, b, c, G);
+			amplifiedTriples[j].to(valueBits, j);
+		}
+
+		signal_multipliers({});
+		wait_for_multipliers();
+
+		for (int j = 0; j < nTriplesPerLoop; j++)
+		{
+			uncheckedTriples[j].from(amplifiedTriples[j], j, *this);
+		}
+
+		// we can skip the consistency check since we're doing a mac-check next
+		// get piggy-backed random value
+		Z2<K + 2 * S> r_share = b_padded_bits.get_ptr_to_byte(nTriplesPerLoop, Z2<K + 2 * S>::N_BYTES);
+		Z2<K + 2 * S> r_mac;
+		r_mac.mul(r_share, this->machine.template get_mac_key<Z2<S>>());
+		for (int i = 0; i < this->nparties-1; i++)
+			r_mac += (ot_multipliers[i])->macs.at(1).at(nTriplesPerLoop);
+		Share<Z2<K + 2 * S>> r;
+		r.set_share(r_share);
+		r.set_mac(r_mac);
+
+		MC.set_random_element(r);
+		sacrificeZ2k(uncheckedTriples, MC, G);
+	}
+}
+
+template<>
+void NPartyTripleGenerator<Spdz2kShare<32, 32>>::generateTriples()
+{
+    this->generateTriplesZ2k<32, 32>();
+}
+
+template<>
+void NPartyTripleGenerator<Spdz2kShare<64, 64>>::generateTriples()
+{
+    this->generateTriplesZ2k<64, 64>();
+}
+
+template<>
+void NPartyTripleGenerator<Spdz2kShare<64, 48>>::generateTriples()
+{
+    this->generateTriplesZ2k<64, 48>();
+}
+
+template<>
+void NPartyTripleGenerator<Spdz2kShare<66, 64>>::generateTriples()
+{
+    this->generateTriplesZ2k<66, 64>();
+}
+
+template<>
+void NPartyTripleGenerator<Spdz2kShare<66, 48>>::generateTriples()
+{
+    this->generateTriplesZ2k<66, 48>();
+}
+
+template<class U>
+void NPartyTripleGenerator<U>::generateTriples()
 {
-	PRNG share_prg;
-	share_prg.ReSeed();
+    typedef typename U::open_type T;
+
+	for (int i = 0; i < nparties-1; i++)
+	    ot_multipliers[i]->inbox.push(DATA_TRIPLE);
 
     valueBits.resize(3);
     for (int i = 0; i < 2; i++)
@@ -330,7 +426,6 @@ void NPartyTripleGenerator::generateTriples(vector< OTMultiplier<T>* >& ot_multi
     valueBits[1].resize(field_size * nTriplesPerLoop);
     vector< PlainTriple<T,N_AMPLIFY> > preampTriples;
     vector< PlainTriple<T,2> > amplifiedTriples;
-    vector< ShareTriple<T,2> > uncheckedTriples;
     MAC_Check<T> MC(machine.get_mac_key<T>());
 
     if (machine.amplify)
@@ -341,29 +436,30 @@ void NPartyTripleGenerator::generateTriples(vector< OTMultiplier<T>* >& ot_multi
 	uncheckedTriples.resize(nTriplesPerLoop);
       }
 
-    start_progress(ot_multipliers);
+    start_progress();
 
     for (int k = 0; k < nloops; k++)
     {
         print_progress(k);
 
         for (int j = 0; j < 2; j++)
-            valueBits[j].randomize_blocks<T>(share_prg);
+            valueBits[j].template randomize_blocks<T>(share_prg);
 
         timers["OTs"].start();
         for (int i = 0; i < nparties-1; i++)
-            pthread_cond_wait(&ot_multipliers[i]->ready, &ot_multipliers[i]->mutex);
+            ot_multipliers[i]->inbox.push({});
+        wait_for_multipliers();
         timers["OTs"].stop();
 
         for (int j = 0; j < nPreampTriplesPerLoop; j++)
         {
-            T a(valueBits[0].get_int128(j));
-            T b(valueBits[1].get_int128(j / nAmplify));
+            T a((char*)valueBits[0].get_ptr() + j * T::size());
+            T b((char*)valueBits[1].get_ptr() + j / nAmplify * T::size());
             T c = a * b;
             timers["Triple computation"].start();
             for (int i = 0; i < nparties-1; i++)
             {
-                c += ot_multipliers[i]->c_output[j];
+                c += ((MascotMultiplier<T>*)ot_multipliers[i])->c_output[j];
             }
             timers["Triple computation"].stop();
             if (machine.amplify)
@@ -409,15 +505,14 @@ void NPartyTripleGenerator::generateTriples(vector< OTMultiplier<T>* >& ot_multi
                     amplifiedTriples[iTriple].to(valueBits, iTriple);
 
                 for (int i = 0; i < nparties-1; i++)
-                    pthread_cond_signal(&ot_multipliers[i]->ready);
+                    ot_multipliers[i]->inbox.push({});
                 timers["Authentication OTs"].start();
-                for (int i = 0; i < nparties-1; i++)
-                    pthread_cond_wait(&ot_multipliers[i]->ready, &ot_multipliers[i]->mutex);
+                wait_for_multipliers();
                 timers["Authentication OTs"].stop();
 
                 for (int iTriple = 0; iTriple < nTriplesPerLoop; iTriple++)
                 {
-                    uncheckedTriples[iTriple].from(amplifiedTriples[iTriple], ot_multipliers, iTriple, *this);
+                    uncheckedTriples[iTriple].from(amplifiedTriples[iTriple], iTriple, *this);
 
                     if (!machine.check and machine.output)
                     {
@@ -429,67 +524,126 @@ void NPartyTripleGenerator::generateTriples(vector< OTMultiplier<T>* >& ot_multi
 
                 if (machine.check)
                 {
-                    vector< Share<T> > maskedAs(nTriplesPerLoop);
-                    vector< ShareTriple<T,1> > maskedTriples(nTriplesPerLoop);
-                    for (int j = 0; j < nTriplesPerLoop; j++)
-                    {
-                        maskedTriples[j].amplify(uncheckedTriples[j], G);
-                        maskedAs[j] = maskedTriples[j].a[0];
-                    }
+                    sacrifice(uncheckedTriples, MC, G);
+                }
+            }
+        }
+    }
+}
 
-                    vector<T> openedAs(nTriplesPerLoop);
-                    MC.POpen_Begin(openedAs, maskedAs, globalPlayer);
-                    MC.POpen_End(openedAs, maskedAs, globalPlayer);
+template<class T>
+void NPartyTripleGenerator<T>::sacrifice(
+		vector<ShareTriple_<open_type, mac_key_type, 2> >& uncheckedTriples, typename T::MAC_Check& MC, PRNG& G)
+{
+    vector<T> maskedAs(nTriplesPerLoop);
+    vector<TripleToSacrifice<open_type> > maskedTriples(nTriplesPerLoop);
+    for (int j = 0; j < nTriplesPerLoop; j++)
+    {
+        maskedTriples[j].prepare_sacrifice(uncheckedTriples[j], G);
+        maskedAs[j] = maskedTriples[j].a[0];
+    }
 
-                    for (int j = 0; j < nTriplesPerLoop; j++)
-                        MC.AddToCheck(maskedTriples[j].computeCheckMAC(openedAs[j]), int128(0), globalPlayer);
+    vector<open_type> openedAs(nTriplesPerLoop);
+    MC.POpen_Begin(openedAs, maskedAs, globalPlayer);
+    MC.POpen_End(openedAs, maskedAs, globalPlayer);
 
-                    MC.Check(globalPlayer);
+    for (int j = 0; j < nTriplesPerLoop; j++) {
+        MC.AddToCheck(maskedTriples[j].computeCheckShare(openedAs[j]), 0,
+                globalPlayer);
+    }
 
-                    if (machine.generateBits)
-                        generateBitsFromTriples(uncheckedTriples, MC, outputFile);
-                    else
-                        if (machine.output)
-                            for (int j = 0; j < nTriplesPerLoop; j++)
-                                uncheckedTriples[j].output(outputFile, 1);
-                }
-            }
-        }
+    MC.Check(globalPlayer);
 
-        for (int i = 0; i < nparties-1; i++)
-            pthread_cond_signal(&ot_multipliers[i]->ready);
+    if (machine.generateBits)
+        generateBitsFromTriples(uncheckedTriples, MC, outputFile);
+    else
+        if (machine.output)
+            for (int j = 0; j < nTriplesPerLoop; j++)
+                uncheckedTriples[j].output(outputFile, 1);
+}
+
+template<class W>
+template<class U>
+void NPartyTripleGenerator<W>::sacrificeZ2k(
+        vector<ShareTriple_<sacri_type, mac_key_type, 2> >& uncheckedTriples, U& MC, PRNG& G)
+{
+    typedef sacri_type T;
+    typedef open_type V;
+
+    vector< Share<T> > maskedAs(nTriplesPerLoop);
+    vector<TripleToSacrifice<T> > maskedTriples(nTriplesPerLoop);
+    for (int j = 0; j < nTriplesPerLoop; j++)
+    {
+        // compute [p] = t * [a] - [ahat]
+        // and first part of [sigma], i.e., t * [c] - [chat] 
+        maskedTriples[j].prepare_sacrifice(uncheckedTriples[j], G);
+        maskedAs[j] = maskedTriples[j].a[0];
+    }
+
+    vector<T> openedAs(nTriplesPerLoop);
+    MC.POpen_Begin(openedAs, maskedAs, globalPlayer);
+    MC.POpen_End(openedAs, maskedAs, globalPlayer);
+
+    vector<Share<T>> sigmas;
+    for (int j = 0; j < nTriplesPerLoop; j++) {
+        // compute t * [c] - [chat] - [b] * p
+        sigmas.push_back(maskedTriples[j].computeCheckShare(V(openedAs[j])));
     }
+    vector<T> open_sigmas;
+    
+    MC.POpen_Begin(open_sigmas, sigmas, globalPlayer);
+    MC.POpen_End(open_sigmas, sigmas, globalPlayer);
+    MC.Check(globalPlayer);
+
+    for (int j = 0; j < nTriplesPerLoop; j++) {
+        if (V(open_sigmas[j]) != 0)
+        {
+            throw runtime_error("sacrifice fail");
+        }
+    }
+    
+    if (machine.generateBits)
+        generateBitsFromTriples(uncheckedTriples, MC, outputFile);
+    else
+        if (machine.output)
+            for (int j = 0; j < nTriplesPerLoop; j++)
+                uncheckedTriples[j].template reduce<V>().output(outputFile, 1);
 }
 
 template<>
-void NPartyTripleGenerator::generateBitsFromTriples(
-        vector< ShareTriple<gfp,2> >& triples, MAC_Check<gfp>& MC, ofstream& outputFile)
+template<class U, class V, class W, int N>
+void NPartyTripleGenerator<Share<gfp1>>::generateBitsFromTriples(
+        vector< ShareTriple_<U, V, N> >& triples, W& MC, ofstream& outputFile)
 {
-    vector< Share<gfp> > a_plus_b(nTriplesPerLoop), a_squared(nTriplesPerLoop);
+    vector< Share<gfp1> > a_plus_b(nTriplesPerLoop), a_squared(nTriplesPerLoop);
     for (int i = 0; i < nTriplesPerLoop; i++)
         a_plus_b[i] = triples[i].a[0] + triples[i].b;
-    vector<gfp> opened(nTriplesPerLoop);
+    vector<gfp1> opened(nTriplesPerLoop);
     MC.POpen_Begin(opened, a_plus_b, globalPlayer);
     MC.POpen_End(opened, a_plus_b, globalPlayer);
     for (int i = 0; i < nTriplesPerLoop; i++)
         a_squared[i] = triples[i].a[0] * opened[i] - triples[i].c[0];
     MC.POpen_Begin(opened, a_squared, globalPlayer);
     MC.POpen_End(opened, a_squared, globalPlayer);
-    Share<gfp> one(gfp(1), globalPlayer.my_num(), MC.get_alphai());
+    Share<gfp1> one(gfp1(1), globalPlayer.my_num(), MC.get_alphai());
+    bits.clear();
     for (int i = 0; i < nTriplesPerLoop; i++)
     {
-        gfp root = opened[i].sqrRoot();
+        gfp1 root = opened[i].sqrRoot();
         if (root.is_zero())
             continue;
-        Share<gfp> bit = (triples[i].a[0] / root + one) / gfp(2);
+        Share<gfp1> bit = (triples[i].a[0] / root + one) / gfp1(2);
         if (machine.output)
             bit.output(outputFile, false);
+        else
+            bits.push_back(bit);
     }
 }
 
-template<>
-void NPartyTripleGenerator::generateBitsFromTriples(
-        vector< ShareTriple<gf2n,2> >& triples, MAC_Check<gf2n>& MC, ofstream& outputFile)
+template<class T>
+template<class U, class V, class W, int N>
+void NPartyTripleGenerator<T>::generateBitsFromTriples(
+        vector< ShareTriple_<U, V, N> >& triples, W& MC, ofstream& outputFile)
 {
     throw how_would_that_work();
     // warning gymnastics
@@ -499,19 +653,17 @@ void NPartyTripleGenerator::generateBitsFromTriples(
 }
 
 template <class T>
-void NPartyTripleGenerator::start_progress(vector< OTMultiplier<T>* >& ot_multipliers)
+void NPartyTripleGenerator<T>::start_progress()
 {
-    for (int i = 0; i < nparties-1; i++)
-        pthread_cond_wait(&ot_multipliers[i]->ready, &ot_multipliers[i]->mutex);
+    wait_for_multipliers();
     lock();
     signal();
     wait();
     gettimeofday(&last_lap, 0);
-    for (int i = 0; i < nparties-1; i++)
-        pthread_cond_signal(&ot_multipliers[i]->ready);
 }
 
-void NPartyTripleGenerator::print_progress(int k)
+template<class T>
+void NPartyTripleGenerator<T>::print_progress(int k)
 {
     if (thread_num == 0 && my_num == 0)
     {
@@ -530,26 +682,56 @@ void NPartyTripleGenerator::print_progress(int k)
     }
 }
 
-void NPartyTripleGenerator::lock()
+void MascotGenerator::lock()
 {
     pthread_mutex_lock(&mutex);
 }
 
-void NPartyTripleGenerator::unlock()
+void MascotGenerator::unlock()
 {
     pthread_mutex_unlock(&mutex);
 }
 
-void NPartyTripleGenerator::signal()
+void MascotGenerator::signal()
 {
     pthread_cond_signal(&ready);
 }
 
-void NPartyTripleGenerator::wait()
+void MascotGenerator::wait()
+{
+    if (multi_threaded)
+        pthread_cond_wait(&ready, &mutex);
+}
+
+template<class T>
+void NPartyTripleGenerator<T>::signal_multipliers(MultJob job)
+{
+    for (int i = 0; i < nparties-1; i++)
+        ot_multipliers[i]->inbox.push(job);
+}
+
+template<class T>
+void NPartyTripleGenerator<T>::wait_for_multipliers()
 {
-    pthread_cond_wait(&ready, &mutex);
+    for (int i = 0; i < nparties-1; i++)
+        ot_multipliers[i]->outbox.pop();
 }
 
+template<class T>
+size_t NPartyTripleGenerator<T>::data_sent()
+{
+    size_t res = globalPlayer.sent;
+    for (auto& player : players)
+        res += player->sent;
+    return res;
+}
+
+
+template class NPartyTripleGenerator<Share<gf2n>>;
+template class NPartyTripleGenerator<Share<gfp1>>;
 
-template void NPartyTripleGenerator::generate<gf2n>();
-template void NPartyTripleGenerator::generate<gfp>();
+template class NPartyTripleGenerator<Spdz2kShare<32, 32>>;
+template class NPartyTripleGenerator<Spdz2kShare<64, 64>>;
+template class NPartyTripleGenerator<Spdz2kShare<64, 48>>;
+template class NPartyTripleGenerator<Spdz2kShare<66, 64>>;
+template class NPartyTripleGenerator<Spdz2kShare<66, 48>>;
diff --git a/OT/NPartyTripleGenerator.h b/OT/NPartyTripleGenerator.h
index 9777d8252..0900788be 100644
--- a/OT/NPartyTripleGenerator.h
+++ b/OT/NPartyTripleGenerator.h
@@ -7,6 +7,7 @@
 #include "Tools/time-func.h"
 #include "Math/gfp.h"
 #include "Auth/MAC_Check.h"
+#include "Processor/InputTuple.h"
 
 #include "OT/OTTripleSetup.h"
 #include "OT/TripleMachine.h"
@@ -17,45 +18,93 @@
 
 #define N_AMPLIFY 3
 
+template <class T, class U, int N>
+class ShareTriple_;
+
 template <class T, int N>
-class ShareTriple;
+using ShareTriple = ShareTriple_<T, T, N>;
+
+class MascotGenerator
+{
+protected:
+    pthread_mutex_t mutex;
+    pthread_cond_t ready;
+
+public:
+    int nTriples;
+
+    map<string,Timer> timers;
+
+    bool multi_threaded;
+
+    MascotGenerator() : nTriples(0), multi_threaded(true) {}
+    virtual ~MascotGenerator() {};
+    virtual void generate() = 0;
+
+    void lock();
+    void unlock();
+    void signal();
+    void wait();
+};
 
-class NPartyTripleGenerator
+template<class T>
+class NPartyTripleGenerator : public MascotGenerator
 {
+    typedef typename T::open_type open_type;
+    typedef typename T::mac_key_type mac_key_type;
+    typedef typename T::sacri_type sacri_type;
+
     //OTTripleSetup* setup;
-    PlainPlayer globalPlayer;
+    Player& globalPlayer;
+    Player* parentPlayer;
 
     int thread_num;
-    int my_num;
     int nbase;
 
     struct timeval last_lap;
 
-    pthread_mutex_t mutex;
-    pthread_cond_t ready;
+    ofstream outputFile;
+
+    SeededPRNG share_prg;
 
-    template <class T>
-    void generateTriples(vector< OTMultiplier<T>* >& ot_multipliers, ofstream& outputFile);
-    template <class T>
-    void generateBits(vector< OTMultiplier<T>* >& ot_multipliers, ofstream& outputFile);
-    template <class T, int N>
-    void generateBitsFromTriples(vector<ShareTriple<T, N> >& triples,
-            MAC_Check<T>& MC, ofstream& outputFile);
+    template <int K, int S>
+    void generateTriplesZ2k();
 
-    template <class T>
-    void start_progress(vector< OTMultiplier<T>* >& ot_multipliers);
+    void generateTriples();
+    void generateBits();
+    template<class U, class V, class W, int N>
+    void generateBitsFromTriples(vector<ShareTriple_<U, V, N> >& triples,
+            W& MC, ofstream& outputFile);
+
+    void sacrifice(vector<ShareTriple_<open_type, mac_key_type, 2> >& uncheckedTriples,
+            typename T::MAC_Check& MC, PRNG& G);
+    template<class U>
+    void sacrificeZ2k(vector<ShareTriple_<sacri_type, mac_key_type, 2> >& uncheckedTriples,
+            U& MC, PRNG& G);
+
+    void start_progress();
     void print_progress(int k);
 
+    void signal_multipliers(MultJob job);
+    void wait_for_multipliers();
+
+    typename T::Multiplier* new_multiplier(int i);
+
 public:
     // TwoPartyPlayer's for OTs, n-party Player for sacrificing
     vector<TwoPartyPlayer*> players;
+    vector<OTMultiplierMac<sacri_type, open_type>*> ot_multipliers;
     //vector<OTMachine*> machines;
     BitVector baseReceiverInput; // same for every set of OTs
     vector< vector< vector<BitVector> > > baseSenderInputs;
     vector< vector<BitVector> > baseReceiverOutputs;
     vector<BitVector> valueBits;
+    vector< ShareTriple_<sacri_type, mac_key_type, 2> > uncheckedTriples;
+    vector<T> bits;
+    vector<InputTuple<Share<sacri_type>>> inputs;
+    BitVector b_padded_bits;
 
-    int nTriples;
+    int my_num;
     int nTriplesPerLoop;
     int nloops;
     int field_size;
@@ -64,19 +113,16 @@ class NPartyTripleGenerator
     int repeat[3];
     int nparties;
 
-    TripleMachine& machine;
-
-    map<string,Timer> timers;
+    MascotParams& machine;
 
-    NPartyTripleGenerator(OTTripleSetup& setup, const Names& names, int thread_num, int nTriples, int nloops, TripleMachine& machine);
+    NPartyTripleGenerator(OTTripleSetup& setup, const Names& names,
+            int thread_num, int nTriples, int nloops, MascotParams& machine,
+            Player* parentPlayer = 0);
     ~NPartyTripleGenerator();
-    template <class T>
     void generate();
+    void generateInputs(int player);
 
-    void lock();
-    void unlock();
-    void signal();
-    void wait();
+    size_t data_sent();
 };
 
 #endif
diff --git a/OT/OTExtension.cpp b/OT/OTExtension.cpp
index 101390820..2e0c5a5dd 100644
--- a/OT/OTExtension.cpp
+++ b/OT/OTExtension.cpp
@@ -543,8 +543,8 @@ void OTExtension::hash_outputs(int nOTs, vector<BitVector>& receiverOutput)
 
             if (senderOutput[0][i].size() == 128)
             {
-                mmo.hashOneBlock<gf2n>(senderOutput[0][i].get_ptr(), senderOutput[0][i].get_ptr());
-                mmo.hashOneBlock<gf2n>(senderOutput[1][i].get_ptr(), tmp.get_ptr());
+                mmo.hashOneBlock<gf2n_long>(senderOutput[0][i].get_ptr(), senderOutput[0][i].get_ptr());
+                mmo.hashOneBlock<gf2n_long>(senderOutput[1][i].get_ptr(), tmp.get_ptr());
             }
             else
             {
@@ -566,7 +566,7 @@ void OTExtension::hash_outputs(int nOTs, vector<BitVector>& receiverOutput)
         if (ot_role & RECEIVER)
         {
             if (receiverOutput[i].size() == 128)
-                mmo.hashOneBlock<gf2n>(receiverOutput[i].get_ptr(), receiverOutput[i].get_ptr());
+                mmo.hashOneBlock<gf2n_long>(receiverOutput[i].get_ptr(), receiverOutput[i].get_ptr());
             else
             {
                 os.reset_write_head();
@@ -788,7 +788,7 @@ void OTExtension::check_iteration(__m128i delta, __m128i q, __m128i q2,
             cout << "rec t = " << __m128i_toString<octet>(received_t) << endl;
             cout << "tmp1  = " << __m128i_toString<octet>(tmp1) << endl;
             cout << "q  = " << __m128i_toString<octet>(q) << endl;
-            exit(1);
+            throw runtime_error("correlation check");
         }
     }
 }
diff --git a/OT/OTExtension.h b/OT/OTExtension.h
index cc42945a4..3adbf7700 100644
--- a/OT/OTExtension.h
+++ b/OT/OTExtension.h
@@ -35,32 +35,47 @@ class OTExtension
     OTExtension(int nbaseOTs, int baseLength,
                 int nloops, int nsubloops,
                 TwoPartyPlayer* player,
-                BitVector& baseReceiverInput,
-                vector< vector<BitVector> >& baseSenderInput,
-                vector<BitVector>& baseReceiverOutput,
+                const BitVector& baseReceiverInput,
+                const vector< vector<BitVector> >& baseSenderInput,
+                const vector<BitVector>& baseReceiverOutput,
                 OT_ROLE role=BOTH,
                 bool passive=false)
         : baseReceiverInput(baseReceiverInput), passive_only(passive), nbaseOTs(nbaseOTs),
           baseLength(baseLength), nloops(nloops), nsubloops(nsubloops), ot_role(role), player(player)
     {
+        init(baseReceiverInput, baseSenderInput, baseReceiverOutput);
+    }
+
+    void init(const BitVector& baseReceiverInput,
+            const vector< vector<BitVector> >& baseSenderInput,
+            const vector<BitVector>& baseReceiverOutput)
+    {
+        nbaseOTs = baseReceiverInput.size();
+        this->baseReceiverInput = baseReceiverInput;
         init(baseSenderInput, baseReceiverOutput);
     }
 
-    void init(vector< vector<BitVector> >& baseSenderInput,
-            vector<BitVector>& baseReceiverOutput)
+    void init(const vector< vector<BitVector> >& baseSenderInput,
+            const vector<BitVector>& baseReceiverOutput)
     {
+        if (baseSenderInput.size() != baseReceiverOutput.size())
+            throw runtime_error("mismatch in number of base OTs");
+        assert(baseReceiverInput.size() == baseSenderInput.size());
         G_sender.resize(nbaseOTs, vector<PRNG>(2));
         G_receiver.resize(nbaseOTs);
 
         // set up PRGs for expanding the seed OTs
         for (int i = 0; i < nbaseOTs; i++)
         {
+            assert(baseSenderInput[i].size() == 2);
             assert(baseSenderInput[i][0].size_bytes() >= AES_BLK_SIZE);
             assert(baseSenderInput[i][1].size_bytes() >= AES_BLK_SIZE);
             assert(baseReceiverOutput[i].size_bytes() >= AES_BLK_SIZE);
 
             if (ot_role & RECEIVER)
             {
+                if (baseSenderInput[i][0].get_int128(0) == baseSenderInput[i][1].get_int128(0))
+                    throw runtime_error("base sender outputs are the same");
                 G_sender[i][0].SetSeed(baseSenderInput[i][0].get_ptr());
                 G_sender[i][1].SetSeed(baseSenderInput[i][1].get_ptr());
             }
@@ -108,6 +123,8 @@ class OTExtension
     virtual octet* get_receiver_output(int i);
     virtual octet* get_sender_output(int choice, int i);
 
+    void set_role(OT_ROLE role) { ot_role = role; }
+
 protected:
     bool passive_only;
     int nbaseOTs, baseLength, nloops, nsubloops;
diff --git a/OT/OTExtensionWithMatrix.cpp b/OT/OTExtensionWithMatrix.cpp
index 22dc06397..b5391d060 100644
--- a/OT/OTExtensionWithMatrix.cpp
+++ b/OT/OTExtensionWithMatrix.cpp
@@ -4,7 +4,11 @@
  */
 
 #include "OTExtensionWithMatrix.h"
+#include "Rectangle.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
+
+#include "OT/Rectangle.hpp"
 
 OTExtensionWithMatrix OTExtensionWithMatrix::setup(TwoPartyPlayer& player,
         int128 delta, OT_ROLE role, bool passive)
@@ -18,7 +22,7 @@ OTExtensionWithMatrix OTExtensionWithMatrix::setup(TwoPartyPlayer& player,
 }
 
 OTExtensionWithMatrix::OTExtensionWithMatrix(BaseOT& baseOT, TwoPartyPlayer* player,
-        bool passive) : OTExtension(baseOT, player, passive)
+        bool passive) : OTCorrelator(baseOT, player, passive)
 {
     G.ReSeed();
 }
@@ -64,7 +68,7 @@ void OTExtensionWithMatrix::transfer(int nOTs,
 
     for (int loop = 0; loop < nloops; loop++)
     {
-        extend<gf2n>(nOTs, newReceiverInput);
+        extend<gf2n_long>(nOTs, newReceiverInput);
 #ifdef OTEXT_TIMER
         gettimeofday(&totalendv, NULL);
         double elapsed = timeval_diff(&totalstartv, &totalendv);
@@ -78,14 +82,15 @@ void OTExtensionWithMatrix::transfer(int nOTs,
 #endif
 }
 
-void OTExtensionWithMatrix::resize(int nOTs)
+template <class U>
+void OTCorrelator<U>::resize(int nOTs)
 {
-    t1.resize(nOTs);
-    u.resize(nOTs);
+    t1.resize_vertical(nOTs);
+    u.resize_vertical(nOTs);
     senderOutputMatrices.resize(2);
     for (int i = 0; i < 2; i++)
-        senderOutputMatrices[i].resize(nOTs);
-    receiverOutputMatrix.resize(nOTs);
+        senderOutputMatrices[i].resize_vertical(nOTs);
+    receiverOutputMatrix.resize_vertical(nOTs);
 }
 
 // the template is used to denote the field of the hash output
@@ -96,20 +101,27 @@ void OTExtensionWithMatrix::extend(int nOTs_requested, BitVector& newReceiverInp
     hash_outputs<T>(nOTs_requested);
 }
 
+void OTExtensionWithMatrix::extend_correlated(BitVector& newReceiverInput)
+{
+    extend_correlated(newReceiverInput.size(), newReceiverInput);
+}
+
 void OTExtensionWithMatrix::extend_correlated(int nOTs_requested, BitVector& newReceiverInput)
 {
 //    if (nOTs % nbaseOTs != 0)
 //        throw invalid_length(); //"nOTs must be a multiple of nbaseOTs\n");
     if (nOTs_requested == 0)
         return;
-    nOTs_requested = DIV_CEIL(nOTs_requested, 128) * 128;
+    if ((ot_role & RECEIVER) and (size_t)nOTs_requested != newReceiverInput.size())
+        throw runtime_error("wrong number of choice bits");
+    int nOTs_requested_rounded = (nOTs_requested + 127) / 128 * 128;
     // add k + s to account for discarding k OTs
-    int nOTs = nOTs_requested + 2 * 128;
+    int nOTs = nOTs_requested_rounded + 2 * 128;
 
     int slice = nOTs / nsubloops / 128;
     nOTs = slice * nsubloops * 128;
     resize(nOTs);
-    newReceiverInput.resize(nOTs);
+    newReceiverInput.resize_zero(nOTs);
 
     // randomize last 128 + 128 bits that will be discarded
     for (int i = 0; i < 4; i++)
@@ -118,8 +130,8 @@ void OTExtensionWithMatrix::extend_correlated(int nOTs_requested, BitVector& new
     // subloop for first part to interleave communication with computation
     for (int start = 0; start < nOTs / 128; start += slice)
     {
-        expand<gf2n>(start, slice);
-        correlate<gf2n>(start, slice, newReceiverInput, true);
+        expand<gf2n_long>(start, slice);
+        this->correlate<gf2n_long>(start, slice, newReceiverInput, true);
         transpose(start, slice);
     }
 
@@ -142,29 +154,31 @@ void OTExtensionWithMatrix::extend_correlated(int nOTs_requested, BitVector& new
 #endif
     }
 
-    receiverOutputMatrix.resize(nOTs_requested);
-    senderOutputMatrices[0].resize(nOTs_requested);
-    senderOutputMatrices[1].resize(nOTs_requested);
+    receiverOutputMatrix.resize(nOTs_requested_rounded);
+    senderOutputMatrices[0].resize(nOTs_requested_rounded);
+    senderOutputMatrices[1].resize(nOTs_requested_rounded);
     newReceiverInput.resize(nOTs_requested);
 }
 
+template <class U>
 template <class T>
-void OTExtensionWithMatrix::expand(int start, int slice)
+void OTCorrelator<U>::expand(int start, int slice)
 {
-    BitMatrixSlice receiverOutputSlice(receiverOutputMatrix, start, slice);
-    BitMatrixSlice senderOutputSlices[2] = {
-            BitMatrixSlice(senderOutputMatrices[0], start, slice),
-            BitMatrixSlice(senderOutputMatrices[1], start, slice)
+    (void)start, (void)slice;
+    Slice<U> receiverOutputSlice(receiverOutputMatrix, start, slice);
+    Slice<U> senderOutputSlices[2] = {
+            Slice<U>(senderOutputMatrices[0], start, slice),
+            Slice<U>(senderOutputMatrices[1], start, slice)
     };
-    BitMatrixSlice t1Slice(t1, start, slice);
+    Slice<U> t1Slice(t1, start, slice);
 
     // expand with PRG
     if (ot_role & RECEIVER)
     {
         for (int i = 0; i < nbaseOTs; i++)
         {
-            receiverOutputSlice.randomize<T>(i, G_sender[i][0]);
-            t1Slice.randomize<T>(i, G_sender[i][1]);
+            receiverOutputSlice.template randomize<T>(i, G_sender[i][0]);
+            t1Slice.template randomize<T>(i, G_sender[i][1]);
         }
     }
 
@@ -172,7 +186,7 @@ void OTExtensionWithMatrix::expand(int start, int slice)
     {
         for (int i = 0; i < nbaseOTs; i++)
             // randomize base receiver output
-            senderOutputSlices[0].randomize<T>(i, G_receiver[i]);
+            senderOutputSlices[0].template randomize<T>(i, G_receiver[i]);
     }
 }
 
@@ -193,34 +207,38 @@ void OTExtensionWithMatrix::expand_transposed()
     }
 }
 
-void OTExtensionWithMatrix::setup_for_correlation(vector<BitMatrix>& baseSenderOutputs, BitMatrix& baseReceiverOutput)
+template <class U>
+void OTCorrelator<U>::setup_for_correlation(BitVector& baseReceiverInput,
+        vector<U>& baseSenderOutputs,
+        U& baseReceiverOutput)
 {
+    this->baseReceiverInput = baseReceiverInput;
     receiverOutputMatrix = baseSenderOutputs[0];
     t1 = baseSenderOutputs[1];
-    u.resize(t1.size());
+    u.squares.resize(t1.squares.size());
     senderOutputMatrices.resize(2);
     senderOutputMatrices[0] = baseReceiverOutput;
 }
 
+template <class U>
 template <class T>
-void OTExtensionWithMatrix::correlate(int start, int slice,
+void OTCorrelator<U>::correlate(int start, int slice,
         BitVector& newReceiverInput, bool useConstantBase, int repeat)
 {
     vector<octetStream> os(2);
 
-    BitMatrixSlice receiverOutputSlice(receiverOutputMatrix, start, slice);
-    BitMatrixSlice senderOutputSlices[2] = {
-            BitMatrixSlice(senderOutputMatrices[0], start, slice),
-            BitMatrixSlice(senderOutputMatrices[1], start, slice)
+    Slice<U> receiverOutputSlice(receiverOutputMatrix, start, slice);
+    Slice<U> senderOutputSlices[] = {
+            Slice<U>(senderOutputMatrices[0], start, slice),
     };
-    BitMatrixSlice t1Slice(t1, start, slice);
-    BitMatrixSlice uSlice(u, start, slice);
+    Slice<U> t1Slice(t1, start, slice);
+    Slice<U> uSlice(u, start, slice);
 
     // create correlation
     if (ot_role & RECEIVER)
     {
-        t1Slice.rsub<T>(receiverOutputSlice);
-        t1Slice.add<T>(newReceiverInput, repeat);
+        t1Slice.template rsub<T>(receiverOutputSlice);
+        t1Slice.template sub<T>(newReceiverInput, repeat);
         t1Slice.pack(os[0]);
 
 //        t1 = receiverOutputMatrix;
@@ -239,7 +257,7 @@ void OTExtensionWithMatrix::correlate(int start, int slice,
     {
         // u = t0 + t1 + x
         uSlice.unpack(os[1]);
-        senderOutputSlices[0].conditional_add<T>(baseReceiverInput, u, !useConstantBase);
+        senderOutputSlices[0].template conditional_add<T>(baseReceiverInput, u, !useConstantBase);
     }
 #ifdef OTEXT_TIMER
     gettimeofday(&commst2, NULL);
@@ -283,28 +301,57 @@ void OTExtensionWithMatrix::transpose(int start, int slice)
  */
 template <class T>
 void OTExtensionWithMatrix::hash_outputs(int nOTs)
+{
+    hash_outputs<T>(nOTs, senderOutputMatrices, receiverOutputMatrix);
+}
+
+template <class T, class V>
+void OTExtensionWithMatrix::hash_outputs(int nOTs, vector<V>& senderOutput, V& receiverOutput)
 {
     //cout << "Hashing... " << flush;
     octetStream os, h_os(HASH_SIZE);
-    square128 tmp;
     MMO mmo;
 #ifdef OTEXT_TIMER
     timeval startv, endv;
     gettimeofday(&startv, NULL);
 #endif
 
-    for (int i = 0; i < nOTs / 128; i++)
+
+    int n_rows = V::PartType::N_ROWS_ALLOCATED;
+    int n = (nOTs + n_rows - 1) / n_rows * V::PartType::N_ROWS;
+    for (int i = 0; i < 2; i++)
+        senderOutput[i].resize_vertical(n);
+    receiverOutput.resize_vertical(n);
+
+    if (V::PartType::N_ROW_BYTES != T::size())
+        throw runtime_error("length mismatch for MMO hash");
+    if (nOTs % 8 != 0)
+        throw runtime_error("number of OTs must be divisible by 8");
+
+    for (int i = 0; i < nOTs; i += 8)
     {
+        int i_outer_input = i / 128;
+        int i_inner_input = i % 128;
+        int i_outer_output = i / n_rows;
+        int i_inner_output = i % n_rows;
         if (ot_role & SENDER)
         {
-            tmp = senderOutputMatrices[0].squares[i];
-            tmp ^= baseReceiverInput;
-            senderOutputMatrices[0].squares[i].hash_row_wise<T>(mmo, senderOutputMatrices[0].squares[i]);
-            senderOutputMatrices[1].squares[i].hash_row_wise<T>(mmo, tmp);
+            int128 tmp[2][8];
+            for (int j = 0; j < 8; j++)
+            {
+                tmp[0][j] = senderOutputMatrices[0].squares[i_outer_input].rows[i_inner_input + j];
+                tmp[1][j] = tmp[0][j] ^ baseReceiverInput.get_int128(0);
+            }
+            for (int j = 0; j < 2; j++)
+                mmo.hashBlocks<T, 8>(
+                        &senderOutput[j].squares[i_outer_output].rows[i_inner_output],
+                        &tmp[j]);
         }
         if (ot_role & RECEIVER)
         {
-            receiverOutputMatrix.squares[i].hash_row_wise<T>(mmo, receiverOutputMatrix.squares[i]);
+            mmo.hashBlocks<T, 8>(
+                    &receiverOutput.squares[i_outer_output].rows[i_inner_output],
+                    &receiverOutputMatrix.squares[i_outer_input].rows[i_inner_input]);
         }
     }
     //cout << "done.\n";
@@ -316,18 +363,16 @@ void OTExtensionWithMatrix::hash_outputs(int nOTs)
 #endif
 }
 
+template <class U>
 template <class T>
-void OTExtensionWithMatrix::reduce_squares(unsigned int nTriples, vector<T>& output)
+void OTCorrelator<U>::reduce_squares(unsigned int nTriples, vector<T>& output)
 {
     if (receiverOutputMatrix.squares.size() < nTriples)
         throw invalid_length();
     output.resize(nTriples);
     for (unsigned int j = 0; j < nTriples; j++)
     {
-        T c1, c2;
-        receiverOutputMatrix.squares[j].to(c1);
-        senderOutputMatrices[0].squares[j].to(c2);
-        output[j] = c1 - c2;
+        receiverOutputMatrix.squares[j].template sub<T>(senderOutputMatrices[0].squares[j]).to(output[j]);
     }
 }
 
@@ -464,23 +509,56 @@ void OTExtensionWithMatrix::print_pre_expand()
     }
 }
 
-template void OTExtensionWithMatrix::correlate<gf2n>(int start, int slice,
-        BitVector& newReceiverInput, bool useConstantBase, int repeat);
-template void OTExtensionWithMatrix::correlate<gfp>(int start, int slice,
-        BitVector& newReceiverInput, bool useConstantBase, int repeat);
-template void OTExtensionWithMatrix::print_post_correlate<gf2n_long>(
-        BitVector& newReceiverInput, int j, int offset, int sender);
-template void OTExtensionWithMatrix::print_post_correlate<gfp>(
-        BitVector& newReceiverInput, int j, int offset, int sender);
-template void OTExtensionWithMatrix::extend<gf2n>(int nOTs_requested,
-        BitVector& newReceiverInput);
-template void OTExtensionWithMatrix::extend<gfp>(int nOTs_requested,
-        BitVector& newReceiverInput);
-template void OTExtensionWithMatrix::expand<gf2n>(int start, int slice);
-template void OTExtensionWithMatrix::expand<gfp>(int start, int slice);
-template void OTExtensionWithMatrix::expand_transposed<gf2n>();
-template void OTExtensionWithMatrix::expand_transposed<gfp>();
-template void OTExtensionWithMatrix::reduce_squares(unsigned int nTriples,
-        vector<gf2n_long>& output);
-template void OTExtensionWithMatrix::reduce_squares(unsigned int nTriples,
-        vector<gfp>& output);
+template class OTCorrelator<BitMatrix>;
+template class OTCorrelator<Matrix<square128> >;
+
+#define Z(BM,GF) \
+template void OTCorrelator<BM>::correlate<GF>(int start, int slice, \
+        BitVector& newReceiverInput, bool useConstantBase, int repeat); \
+template void OTCorrelator<BM>::expand<GF>(int start, int slice); \
+template void OTCorrelator<BM>::reduce_squares<GF>(unsigned int nTriples, \
+        vector<GF>& output);
+#define ZZ(BM) Z(BM, gfp1) Z(BM, gf2n_long)
+
+ZZ(BitMatrix)
+ZZ(Matrix<square128> )
+
+#define ZZZZ(GF) \
+ZZZ(GF, Matrix<square128>) \
+template void OTExtensionWithMatrix::print_post_correlate<GF>( \
+        BitVector& newReceiverInput, int j, int offset, int sender); \
+template void OTExtensionWithMatrix::extend<GF>(int nOTs_requested, \
+        BitVector& newReceiverInput); \
+template void OTExtensionWithMatrix::expand_transposed<GF>();
+
+#define ZZZ(GF, M) \
+template void OTExtensionWithMatrix::hash_outputs<GF, M >(int, vector<M >&, M&);
+#define MM Matrix<Rectangle<Z2<512>, Z2<160> > >
+
+ZZZZ(gfp1)
+ZZZZ(gf2n_long)
+ZZZ(Z2<160>, MM)
+
+#undef X
+#define X(N,L) \
+template class OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >; \
+template void OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >::correlate<Z2<L> >(int start, int slice, \
+        BitVector& newReceiverInput, bool useConstantBase, int repeat); \
+template void OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >::expand<Z2<L> >(int start, int slice); \
+template void OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >::reduce_squares(unsigned int nTriples, \
+        vector<Z2<N> >& output); \
+template void OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >::reduce_squares(unsigned int nTriples, \
+        vector<Z2<L> >& output); \
+template void OTCorrelator<Matrix<Rectangle<Z2<N>, Z2<L> > > >::reduce_squares(unsigned int nTriples, \
+        vector<Z2kRectangle<N, L> >& output); \
+template void OTExtensionWithMatrix::hash_outputs<Z2<L>, Matrix<Rectangle<Z2<N>, Z2<L> > > >(int, \
+        std::vector<Matrix<Rectangle<Z2<N>, Z2<L> > >, std::allocator<Matrix<Rectangle<Z2<N>, Z2<L> > > > >&, \
+        Matrix<Rectangle<Z2<N>, Z2<L> > >&);
+
+//X(96, 160)
+
+Y(64, 64)
+Y(64, 48)
+Y(66, 64)
+Y(66, 48)
+Y(32, 32)
diff --git a/OT/OTExtensionWithMatrix.h b/OT/OTExtensionWithMatrix.h
index ba34b1198..c76f6f4d8 100644
--- a/OT/OTExtensionWithMatrix.h
+++ b/OT/OTExtensionWithMatrix.h
@@ -10,12 +10,49 @@
 #include "BitMatrix.h"
 #include "Math/gf2n.h"
 
-class OTExtensionWithMatrix : public OTExtension
+template <class U>
+class OTCorrelator : public OTExtension
+{
+public:
+    vector<U> senderOutputMatrices;
+    vector<U> matrices;
+    U& receiverOutputMatrix;
+    U& t1;
+    U u;
+
+    OTCorrelator(int nbaseOTs, int baseLength,
+                int nloops, int nsubloops,
+                TwoPartyPlayer* player,
+                const BitVector& baseReceiverInput,
+                const vector< vector<BitVector> >& baseSenderInput,
+                const vector<BitVector>& baseReceiverOutput,
+                OT_ROLE role=BOTH,
+                bool passive=false)
+    : OTExtension(nbaseOTs, baseLength, nloops, nsubloops, player, baseReceiverInput,
+            baseSenderInput, baseReceiverOutput, role, passive),
+            senderOutputMatrices(2), matrices(2),
+            receiverOutputMatrix(matrices[0]), t1(matrices[1]) {}
+
+    OTCorrelator(BaseOT& baseOT, TwoPartyPlayer* player, bool passive) :
+            OTExtension(baseOT, player, passive),
+            senderOutputMatrices(2), matrices(2),
+            receiverOutputMatrix(matrices[0]), t1(matrices[1]) {}
+
+    void resize(int nOTs);
+    template <class T>
+    void expand(int start, int slice);
+    void setup_for_correlation(BitVector& baseReceiverInput,
+            vector<U>& baseSenderOutputs,
+            U& baseReceiverOutput);
+    template <class T>
+    void correlate(int start, int slice, BitVector& newReceiverInput, bool useConstantBase, int repeat = 1);
+    template <class T>
+    void reduce_squares(unsigned int nTriples, vector<T>& output);
+};
+
+class OTExtensionWithMatrix : public OTCorrelator<BitMatrix>
 {
 public:
-    vector<BitMatrix> senderOutputMatrices;
-    BitMatrix receiverOutputMatrix;
-    BitMatrix t1, u;
     PRNG G;
 
     static OTExtensionWithMatrix setup(TwoPartyPlayer& player,
@@ -24,12 +61,12 @@ class OTExtensionWithMatrix : public OTExtension
     OTExtensionWithMatrix(int nbaseOTs, int baseLength,
                 int nloops, int nsubloops,
                 TwoPartyPlayer* player,
-                BitVector& baseReceiverInput,
-                vector< vector<BitVector> >& baseSenderInput,
-                vector<BitVector>& baseReceiverOutput,
+                const BitVector& baseReceiverInput,
+                const vector< vector<BitVector> >& baseSenderInput,
+                const vector<BitVector>& baseReceiverOutput,
                 OT_ROLE role=BOTH,
                 bool passive=false)
-    : OTExtension(nbaseOTs, baseLength, nloops, nsubloops, player, baseReceiverInput,
+    : OTCorrelator<BitMatrix>(nbaseOTs, baseLength, nloops, nsubloops, player, baseReceiverInput,
             baseSenderInput, baseReceiverOutput, role, passive) {
       G.ReSeed();
     }
@@ -39,20 +76,15 @@ class OTExtensionWithMatrix : public OTExtension
     void seed(vector<BitMatrix>& baseSenderInput,
             BitMatrix& baseReceiverOutput);
     void transfer(int nOTs, const BitVector& receiverInput);
-    void resize(int nOTs);
     template <class T>
     void extend(int nOTs, BitVector& newReceiverInput);
+    void extend_correlated(BitVector& newReceiverInput);
     void extend_correlated(int nOTs, BitVector& newReceiverInput);
-    template <class T>
-    void expand(int start, int slice);
-    template <class T>
-    void expand_transposed();
-    template <class T>
-    void correlate(int start, int slice, BitVector& newReceiverInput, bool useConstantBase, int repeat = 1);
     void transpose(int start, int slice);
-    void setup_for_correlation(vector<BitMatrix>& baseSenderOutputs, BitMatrix& baseReceiverOutput);
     template <class T>
-    void reduce_squares(unsigned int nTriples, vector<T>& output);
+    void expand_transposed();
+    template <class T, class V>
+    void hash_outputs(int nOTs, vector<V>& senderOutput, V& receiverOutput);
 
     void print(BitVector& newReceiverInput, int i = 0);
     template <class T>
diff --git a/OT/OTMachine.cpp b/OT/OTMachine.cpp
index c497cbdba..7d16cd0fc 100644
--- a/OT/OTMachine.cpp
+++ b/OT/OTMachine.cpp
@@ -225,7 +225,7 @@ OTMachine::OTMachine(int argc, const char** argv)
         N.push_back(new Names(my_num, portnum_base + 1000 * N.size(), names));
     }
 
-    P = new TwoPartyPlayer(*N[0], 1 - my_num, 500);
+    P = new RealTwoPartyPlayer(*N[0], 1 - my_num, 500);
 
     timeval baseOTstart, baseOTend;
     gettimeofday(&baseOTstart, NULL);
@@ -321,7 +321,7 @@ void OTMachine::run()
         }
         // now setup resources for each thread
         // round robin with the names
-        players[i] = new TwoPartyPlayer(*N[i%N.size()], 1 - my_num, (i+1) * 1000);
+        players[i] = new RealTwoPartyPlayer(*N[i%N.size()], 1 - my_num, (i+1) * 1000);
         tinfos[i].thread_num = i+1;
         tinfos[i].other_player_num = 1 - my_num;
         tinfos[i].nOTs = nOTs;
diff --git a/OT/OTMultiplier.cpp b/OT/OTMultiplier.cpp
index a4e386743..44ea79f37 100644
--- a/OT/OTMultiplier.cpp
+++ b/OT/OTMultiplier.cpp
@@ -3,42 +3,77 @@
  *
  */
 
+#include "OT/config.h"
+
 #include "OT/OTMultiplier.h"
 #include "OT/NPartyTripleGenerator.h"
+#include "OT/Rectangle.h"
+#include "Math/Z2k.h"
+
+#include "OT/OTVole.hpp"
+#include "OT/Row.hpp"
+#include "OT/Rectangle.hpp"
 
 #include <math.h>
 
+//#define OTCORR_TIMER
+
 template<class T>
-OTMultiplier<T>::OTMultiplier(NPartyTripleGenerator& generator,
+OTMultiplier<T>::OTMultiplier(NPartyTripleGenerator<T>& generator,
         int thread_num) :
         generator(generator), thread_num(thread_num),
         rot_ext(128, 128, 0, 1,
                 generator.players[thread_num], generator.baseReceiverInput,
                 generator.baseSenderInputs[thread_num],
-                generator.baseReceiverOutputs[thread_num], BOTH, !generator.machine.check)
+                generator.baseReceiverOutputs[thread_num], BOTH, !generator.machine.check),
+        otCorrelator(0, 0, 0, 0, generator.players[thread_num], {}, {}, {}, BOTH, true)
+{
+    this->thread = 0;
+}
+
+template<class T>
+MascotMultiplier<T>::MascotMultiplier(NPartyTripleGenerator<Share<T>>& generator,
+        int thread_num) :
+        OTMultiplier<Share<T>>(generator, thread_num),
+		auth_ot_ext(128, 128, 0, 1, generator.players[thread_num], {}, {}, {}, BOTH, true)
 {
     c_output.resize(generator.nTriplesPerLoop);
-    pthread_mutex_init(&mutex, 0);
-    pthread_cond_init(&ready, 0);
-    thread = 0;
+}
+
+template <int K, int S>
+Spdz2kMultiplier<K, S>::Spdz2kMultiplier(NPartyTripleGenerator<Spdz2kShare<K, S>>& generator, int thread_num) :
+        OTMultiplier<Spdz2kShare<K, S>>
+        (generator, thread_num)
+{
+#ifdef USE_OPT_VOLE
+		mac_vole = new OTVole<Z2<MAC_BITS>, Z2<S>>(128, 128, 0, 1, generator.players[thread_num], {}, {}, {}, BOTH, false);
+		input_mac_vole = new OTVole<Z2<K + S>, Z2<S>>(128, 128, 0, 1, generator.players[thread_num], {}, {}, {}, BOTH, false);
+#else
+		mac_vole = new OTVoleBase<Z2<MAC_BITS>, Z2<S>>(128, 128, 0, 1, generator.players[thread_num], {}, {}, {}, BOTH, false);
+		input_mac_vole = new OTVoleBase<Z2<K + S>, Z2<S>>(128, 128, 0, 1, generator.players[thread_num], {}, {}, {}, BOTH, false);
+#endif
+}
+
+template<int K, int S>
+Spdz2kMultiplier<K, S>::~Spdz2kMultiplier()
+{
+    delete mac_vole;
+    delete input_mac_vole;
 }
 
 template<class T>
 OTMultiplier<T>::~OTMultiplier()
 {
-    pthread_mutex_destroy(&mutex);
-    pthread_cond_destroy(&ready);
 }
 
 template<class T>
 void OTMultiplier<T>::multiply()
 {
-    BitVector keyBits(generator.field_size);
-    keyBits.set_int128(0, generator.machine.get_mac_key<T>().to_m128i());
-    rot_ext.extend<T>(generator.field_size, keyBits);
-    vector< vector<BitVector> > senderOutput(128);
-    vector<BitVector> receiverOutput;
-    for (int j = 0; j < 128; j++)
+    keyBits.set(generator.machine.template get_mac_key<typename T::mac_key_type>());
+    rot_ext.extend<gf2n>(keyBits.size(), keyBits);
+    this->outbox.push({});
+    senderOutput.resize(keyBits.size());
+    for (size_t j = 0; j < keyBits.size(); j++)
     {
         senderOutput[j].resize(2);
         for (int i = 0; i < 2; i++)
@@ -48,99 +83,190 @@ void OTMultiplier<T>::multiply()
         }
     }
     rot_ext.receiverOutputMatrix.to(receiverOutput);
-    OTExtensionWithMatrix auth_ot_ext(128, 128, 0, 1,
-            generator.players[thread_num], keyBits, senderOutput,
-            receiverOutput, BOTH, true);
+    receiverOutput.resize(keyBits.size());
+    init_authenticator(keyBits, senderOutput, receiverOutput);
 
-    if (generator.machine.generateBits)
-    	multiplyForBits(auth_ot_ext);
-    else
-    	multiplyForTriples(auth_ot_ext);
+    MultJob job;
+    while (this->inbox.pop(job))
+    {
+        if (job.input)
+        {
+            if (job.player == generator.my_num
+                    or job.player == generator.players[thread_num]->other_player_num())
+                multiplyForInputs(job);
+            else
+                this->outbox.push(job);
+        }
+        else
+        {
+            switch (job.type)
+            {
+            case DATA_BIT:
+                multiplyForBits();
+                break;
+            case DATA_TRIPLE:
+                multiplyForTriples();
+                break;
+            default:
+                throw not_implemented();
+            }
+        }
+    }
 }
 
-template<class T>
-void OTMultiplier<T>::multiplyForTriples(OTExtensionWithMatrix& auth_ot_ext)
+template<class W>
+void OTMultiplier<W>::multiplyForTriples()
 {
-    auth_ot_ext.resize(generator.nPreampTriplesPerLoop * generator.field_size);
+    typedef typename W::open_type T;
+    typedef typename W::Rectangle X;
 
     // dummy input for OT correlator
     vector<BitVector> _;
     vector< vector<BitVector> > __;
     BitVector ___;
 
-    OTExtensionWithMatrix otCorrelator(0, 0, 0, 0, generator.players[thread_num],
-            ___, __, _, BOTH, true);
-    otCorrelator.resize(128 * generator.nPreampTriplesPerLoop);
+    otCorrelator.resize(X::N_COLUMNS * generator.nPreampTriplesPerLoop);
 
-    rot_ext.resize(generator.field_size * generator.nPreampTriplesPerLoop + 2 * 128);
+    rot_ext.resize(X::N_ROWS * generator.nPreampTriplesPerLoop + 2 * 128);
     
-    pthread_mutex_lock(&mutex);
-    pthread_cond_signal(&ready);
-    pthread_cond_wait(&ready, &mutex);
+    vector<Matrix<X> >& baseSenderOutputs = otCorrelator.matrices;
+    Matrix<X>& baseReceiverOutput = otCorrelator.senderOutputMatrices[0];
+
+    MultJob job;
+    auto& outbox = this->outbox;
+    outbox.push(job);
 
     for (int i = 0; i < generator.nloops; i++)
     {
+        this->inbox.pop(job);
         BitVector aBits = generator.valueBits[0];
         //timers["Extension"].start();
-        rot_ext.extend<T>(generator.field_size * generator.nPreampTriplesPerLoop, aBits);
+        rot_ext.extend_correlated(aBits);
+        rot_ext.hash_outputs<T>(aBits.size(), baseSenderOutputs, baseReceiverOutput);
         //timers["Extension"].stop();
 
         //timers["Correlation"].start();
-        otCorrelator.baseReceiverInput = aBits;
-        otCorrelator.setup_for_correlation(rot_ext.senderOutputMatrices, rot_ext.receiverOutputMatrix);
-        otCorrelator.correlate<T>(0, generator.nPreampTriplesPerLoop, generator.valueBits[1], false, generator.nAmplify);
+        otCorrelator.setup_for_correlation(aBits, baseSenderOutputs,
+                baseReceiverOutput);
+        otCorrelator.template correlate<T>(0, generator.nPreampTriplesPerLoop,
+                generator.valueBits[1], false, generator.nAmplify);
         //timers["Correlation"].stop();
 
         //timers["Triple computation"].start();
 
-        otCorrelator.reduce_squares(generator.nPreampTriplesPerLoop, c_output);
+        this->after_correlation();
+    }
+}
 
-        pthread_cond_signal(&ready);
-        pthread_cond_wait(&ready, &mutex);
+template <class T>
+void MascotMultiplier<T>::init_authenticator(const BitVector& keyBits,
+		const vector< vector<BitVector> >& senderOutput,
+		const vector<BitVector>& receiverOutput) {
+	this->auth_ot_ext.init(keyBits, senderOutput, receiverOutput);
+}
 
-        if (generator.machine.generateMACs)
-        {
-            macs.resize(3);
-            for (int j = 0; j < 3; j++)
-            {
-                int nValues = generator.nTriplesPerLoop;
-                if (generator.machine.check && (j % 2 == 0))
-                    nValues *= 2;
-                auth_ot_ext.expand<T>(0, nValues);
-                auth_ot_ext.correlate<T>(0, nValues, generator.valueBits[j], true);
-                auth_ot_ext.reduce_squares(nValues, macs[j]);
-            }
+template <int K, int S>
+void Spdz2kMultiplier<K, S>::init_authenticator(const BitVector& keyBits,
+		const vector< vector<BitVector> >& senderOutput,
+		const vector<BitVector>& receiverOutput) {
+	this->mac_vole->init(keyBits, senderOutput, receiverOutput);
+	input_mac_vole->init(keyBits, senderOutput, receiverOutput);
+}
+
+template <class T>
+void MascotMultiplier<T>::after_correlation()
+{
+	this->auth_ot_ext.resize(this->generator.nPreampTriplesPerLoop * square128::N_COLUMNS);
+	this->auth_ot_ext.set_role(BOTH);
+
+    this->otCorrelator.reduce_squares(this->generator.nPreampTriplesPerLoop,
+            this->c_output);
 
-            pthread_cond_signal(&ready);
-            pthread_cond_wait(&ready, &mutex);
+    this->outbox.push({});
+
+    if (this->generator.machine.generateMACs)
+    {
+        this->macs.resize(3);
+        MultJob job;
+        this->inbox.pop(job);
+        for (int j = 0; j < 3; j++)
+        {
+            int nValues = this->generator.nTriplesPerLoop;
+            if (this->generator.machine.check && (j % 2 == 0))
+                nValues *= 2;
+            this->auth_ot_ext.template expand<T>(0, nValues);
+            this->auth_ot_ext.template correlate<T>(0, nValues,
+                    this->generator.valueBits[j], true);
+            this->auth_ot_ext.reduce_squares(nValues, this->macs[j]);
         }
+        this->outbox.push(job);
     }
+}
 
-    pthread_mutex_unlock(&mutex);
+template <int K, int S>
+void Spdz2kMultiplier<K, S>::after_correlation()
+{
+    this->otCorrelator.reduce_squares(this->generator.nTriplesPerLoop,
+            this->c_output);
+
+    this->outbox.push({});
+    this->inbox.pop();
+
+    this->macs.resize(3);
+#ifdef OTCORR_TIMER
+        timeval totalstartv, totalendv;
+        gettimeofday(&totalstartv, NULL);
+#endif
+    for (int j = 0; j < 3; j++)
+    {
+        int nValues = this->generator.nTriplesPerLoop;
+        BitVector* bits; 
+        if (//this->generator.machine.check &&
+                (j % 2 == 0)){
+            nValues *= 2;
+            bits = &(this->generator.valueBits[j]);
+        }
+        else {
+            // piggy-backing mask after the b's
+            nValues++;
+            bits = &(this->generator.b_padded_bits);
+        }
+        this->mac_vole->evaluate(this->macs[j], nValues, *bits);
+    }
+#ifdef OTCORR_TIMER
+        gettimeofday(&totalendv, NULL);
+        double elapsed = timeval_diff(&totalstartv, &totalendv);
+        cout << "\t\tCorrelated OT time: " << elapsed/1000000 << endl << flush;
+#endif
+    this->outbox.push({});
 }
 
 template<>
-void OTMultiplier<gfp>::multiplyForBits(OTExtensionWithMatrix& auth_ot_ext)
+void OTMultiplier<Share<gfp1>>::multiplyForBits()
 {
-	multiplyForTriples(auth_ot_ext);
+    multiplyForTriples();
 }
 
 template<>
-void OTMultiplier<gf2n>::multiplyForBits(OTExtensionWithMatrix& auth_ot_ext)
+void OTMultiplier<Share<gf2n>>::multiplyForBits()
 {
     int nBits = generator.nTriplesPerLoop + generator.field_size;
     int nBlocks = ceil(1.0 * nBits / generator.field_size);
+    OTExtensionWithMatrix auth_ot_ext(128, 128, 0, 1,
+            generator.players[thread_num], keyBits, senderOutput,
+            receiverOutput, BOTH, true);
+    auth_ot_ext.set_role(BOTH);
     auth_ot_ext.resize(nBlocks * generator.field_size);
     macs.resize(1);
     macs[0].resize(nBits);
 
-    pthread_mutex_lock(&mutex);
-    pthread_cond_signal(&ready);
-    pthread_cond_wait(&ready, &mutex);
+    MultJob job;
+    outbox.push(job);
 
     for (int i = 0; i < generator.nloops; i++)
     {
         auth_ot_ext.expand<gf2n>(0, nBlocks);
+        inbox.pop(job);
         auth_ot_ext.correlate<gf2n>(0, nBlocks, generator.valueBits[0], true);
         auth_ot_ext.transpose(0, nBlocks);
 
@@ -151,12 +277,66 @@ void OTMultiplier<gf2n>::multiplyForBits(OTExtensionWithMatrix& auth_ot_ext)
             macs[0][j] = r ^ s;
         }
 
-        pthread_cond_signal(&ready);
-        pthread_cond_wait(&ready, &mutex);
+        outbox.push(job);
     }
+}
+
+template<class T>
+void MascotMultiplier<T>::multiplyForInputs(MultJob job)
+{
+    assert(job.input);
+    auto& generator = this->generator;
+    bool mine = job.player == generator.my_num;
+    auth_ot_ext.set_role(mine ? RECEIVER : SENDER);
+    int nOTs = job.n_inputs * generator.field_size;
+    auth_ot_ext.resize(nOTs);
+    auth_ot_ext.expand<T>(0, job.n_inputs);
+    if (mine)
+        this->inbox.pop();
+    auth_ot_ext.correlate<T>(0, job.n_inputs, generator.valueBits[0], true);
+    auth_ot_ext.transpose(0, job.n_inputs);
+    auto& input_macs = this->input_macs;
+    input_macs.resize(job.n_inputs);
+    if (mine)
+        for (int j = 0; j < job.n_inputs; j++)
+            auth_ot_ext.receiverOutputMatrix.squares[j].to(input_macs[j]);
+    else
+        for (int j = 0; j < job.n_inputs; j++)
+        {
+            auth_ot_ext.senderOutputMatrices[0].squares[j].to(input_macs[j]);
+            input_macs[j].negate();
+        }
+    this->outbox.push(job);
+}
+
+template<int K, int S>
+void Spdz2kMultiplier<K, S>::multiplyForInputs(MultJob job)
+{
+    assert(job.input);
+    bool mine = job.player == this->generator.my_num;
+    input_mac_vole->set_role(mine ? SENDER : RECEIVER);
+    if (mine)
+        this->inbox.pop();
+    input_mac_vole->evaluate(this->input_macs, job.n_inputs, this->generator.valueBits[0]);
+    this->outbox.push(job);
+}
 
-    pthread_mutex_unlock(&mutex);
+template<class T>
+void OTMultiplier<T>::multiplyForBits()
+{
+    throw runtime_error("bit generation not implemented in this case");
 }
 
-template class OTMultiplier<gf2n>;
-template class OTMultiplier<gfp>;
+template class OTMultiplier<Share<gf2n>>;
+template class OTMultiplier<Share<gfp1>>;
+template class MascotMultiplier<gf2n>;
+template class MascotMultiplier<gfp1>;
+
+#define X(K, S) \
+        template class Spdz2kMultiplier<K, S>; \
+        template class OTMultiplier<Spdz2kShare<K, S>>;
+X(64, 64)
+X(64, 48)
+X(66, 64)
+X(66, 48)
+X(32, 32)
diff --git a/OT/OTMultiplier.h b/OT/OTMultiplier.h
index 68c4d3973..f4796cd73 100644
--- a/OT/OTMultiplier.h
+++ b/OT/OTMultiplier.h
@@ -10,30 +10,113 @@
 using namespace std;
 
 #include "OT/OTExtensionWithMatrix.h"
+#include "OT/OTVole.h"
+#include "OT/Rectangle.h"
 #include "Tools/random.h"
+#include "Math/Spdz2kShare.h"
 
+template<class T>
 class NPartyTripleGenerator;
 
+class MultJob
+{
+public:
+    Dtype type;
+    bool input;
+    int player;
+    int n_inputs;
+    MultJob(Dtype type = N_DTYPE) : type(type), input(false), player(-1), n_inputs(0) {}
+    MultJob(int player, int n_inputs) : type(N_DTYPE), input(true), player(player), n_inputs(n_inputs) {}
+};
+
+class OTMultiplierBase
+{
+public:
+    pthread_t thread;
+    WaitQueue<MultJob> inbox;
+    WaitQueue<MultJob> outbox;
+
+    virtual ~OTMultiplierBase() {}
+    virtual void multiply() = 0;
+};
+
+template <class V, class W>
+class OTMultiplierMac : public OTMultiplierBase
+{
+public:
+    vector< vector<V> > macs;
+    vector<W> input_macs;
+};
+
 template <class T>
-class OTMultiplier
+class OTMultiplier : public OTMultiplierMac<typename T::sacri_type, typename T::mac_type>
 {
-	void multiplyForTriples(OTExtensionWithMatrix& auth_ot_ext);
-	void multiplyForBits(OTExtensionWithMatrix& auth_ot_ext);
+protected:
+    BitVector keyBits;
+    vector< vector<BitVector> > senderOutput;
+    vector<BitVector> receiverOutput;
+
+    void multiplyForTriples();
+    void multiplyForBits();
+	virtual void multiplyForInputs(MultJob job) = 0;
+
+    virtual void after_correlation() = 0;
+    virtual void init_authenticator(const BitVector& baseReceiverInput,
+            const vector< vector<BitVector> >& baseSenderInput,
+            const vector<BitVector>& baseReceiverOutput) = 0;
+
 public:
-    NPartyTripleGenerator& generator;
+    NPartyTripleGenerator<T>& generator;
     int thread_num;
     OTExtensionWithMatrix rot_ext;
-    //OTExtensionWithMatrix* auth_ot_ext;
-    vector<T> c_output;
-    vector< vector<T> > macs;
 
-    pthread_t thread;
-    pthread_mutex_t mutex;
-    pthread_cond_t ready;
+    OTCorrelator<Matrix<typename T::Rectangle> > otCorrelator;
 
-    OTMultiplier(NPartyTripleGenerator& generator, int thread_num);
-    ~OTMultiplier();
+    OTMultiplier(NPartyTripleGenerator<T>& generator, int thread_num);
+    virtual ~OTMultiplier();
     void multiply();
 };
 
+template <class T>
+class MascotMultiplier : public OTMultiplier<Share<T>>
+{
+    OTExtensionWithMatrix auth_ot_ext;
+    void after_correlation();
+    void init_authenticator(const BitVector& baseReceiverInput,
+            const vector< vector<BitVector> >& baseSenderInput,
+            const vector<BitVector>& baseReceiverOutput);
+
+public:
+    vector<T> c_output;
+
+    MascotMultiplier(NPartyTripleGenerator<Share<T>>& generator, int thread_num);
+
+	void multiplyForInputs(MultJob job);
+};
+
+template <int K, int S>
+class Spdz2kMultiplier: public OTMultiplier<Spdz2kShare<K, S>>
+{
+    typedef Spdz2kShare<K, S> T;
+
+    void after_correlation();
+    void init_authenticator(const BitVector& baseReceiverInput,
+            const vector< vector<BitVector> >& baseSenderInput,
+            const vector<BitVector>& baseReceiverOutput);
+
+    void multiplyForInputs(MultJob job);
+
+public:
+    static const int TAU = TAU(K, S);
+    static const int PASSIVE_MULT_BITS = K + S;
+    static const int MAC_BITS = K + 2 * S;
+
+    vector<Z2kRectangle<TAU, PASSIVE_MULT_BITS> > c_output;
+    OTVoleBase<Z2<MAC_BITS>, Z2<S>>* mac_vole;
+    OTVoleBase<Z2<K + S>, Z2<S>>* input_mac_vole;
+
+    Spdz2kMultiplier(NPartyTripleGenerator<T>& generator, int thread_num);
+    ~Spdz2kMultiplier();
+};
+
 #endif /* OT_OTMULTIPLIER_H_ */
diff --git a/OT/OTTripleSetup.cpp b/OT/OTTripleSetup.cpp
index 45c35e858..bc0a01aba 100644
--- a/OT/OTTripleSetup.cpp
+++ b/OT/OTTripleSetup.cpp
@@ -16,10 +16,19 @@ void OTTripleSetup::setup()
     {
         baseOTs[i]->set_receiver_inputs(base_receiver_inputs);
         baseOTs[i]->exec_base(false);
+        baseSenderInputs[i] = baseOTs[i]->sender_inputs;
+        baseReceiverOutputs[i] = baseOTs[i]->receiver_outputs;
     }
     gettimeofday(&baseOTend, NULL);
+#ifdef VERBOSE
     double basetime = timeval_diff(&baseOTstart, &baseOTend);
     cout << "\t\tBaseTime: " << basetime/1000000 << endl << flush;
+#endif
+
+    for (size_t i = 0; i < baseOTs.size(); i++)
+    {
+        delete baseOTs[i];
+    }
 
     // Receiver send something to force synchronization
     // (since Sender finishes baseOTs before Receiver)
@@ -32,11 +41,3 @@ void OTTripleSetup::close_connections()
         delete players[i];
     }
 }
-
-OTTripleSetup::~OTTripleSetup()
-{
-    for (size_t i = 0; i < baseOTs.size(); i++)
-    {
-        delete baseOTs[i];
-    }
-}
diff --git a/OT/OTTripleSetup.h b/OT/OTTripleSetup.h
index d6a4e0eea..cba9082bf 100644
--- a/OT/OTTripleSetup.h
+++ b/OT/OTTripleSetup.h
@@ -14,8 +14,7 @@
 class OTTripleSetup
 {
     vector<int> base_receiver_inputs;
-    vector< vector< vector<BitVector> > > baseSenderInputs;
-    vector< vector<BitVector> > baseReceiverOutputs;
+    vector<BaseOT*> baseOTs;
 
     PRNG G;
     int nparties;
@@ -24,43 +23,40 @@ class OTTripleSetup
 
 public:
     map<string,Timer> timers;
-    vector<BaseOT*> baseOTs;
-    vector<TwoPartyPlayer*> players;
+    vector<OffsetPlayer*> players;
+    vector< vector< vector<BitVector> > > baseSenderInputs;
+    vector< vector<BitVector> > baseReceiverOutputs;
 
     int get_nparties() { return nparties; }
     int get_nbase() { return nbase; }
     int get_my_num() { return my_num; }
     int get_base_receiver_input(int i) { return base_receiver_inputs[i]; }
 
-    OTTripleSetup(Names& N, bool real_OTs)
+    OTTripleSetup(Player& N, bool real_OTs)
         : nparties(N.num_players()), my_num(N.my_num()), nbase(128)
     {
         base_receiver_inputs.resize(nbase);
-        players.resize(nparties - 1);
         baseOTs.resize(nparties - 1);
         baseSenderInputs.resize(nparties - 1);
         baseReceiverOutputs.resize(nparties - 1);
 
+#ifdef VERBOSE
         if (real_OTs)
             cout << "Doing real base OTs\n";
         else
             cout << "Doing fake base OTs\n";
+#endif
 
         for (int i = 0; i < nparties - 1; i++)
         {
-            int other_player, id;
+            int other_player;
             // i for indexing, other_player is actual number
             if (i >= my_num)
                 other_player = i + 1;
             else
                 other_player = i;
-            // unique id per pair of parties (to assign port no.)
-            if (my_num < other_player)
-                id = my_num*nparties + other_player;
-            else
-                id = other_player*nparties + my_num;
 
-            players[i] = new TwoPartyPlayer(N, other_player, id);
+            players.push_back(new OffsetPlayer(N, N.get_offset(other_player)));
 
             // sets up a pair of base OTs, playing both roles
             if (real_OTs)
@@ -72,8 +68,10 @@ class OTTripleSetup
                 baseOTs[i] = new FakeOT(nbase, 128, players[i]);
             }
         }
+
+        setup();
+        close_connections();
     }
-    ~OTTripleSetup();
 
     // run the Base OTs
     void setup();
diff --git a/OT/OTVole.h b/OT/OTVole.h
new file mode 100644
index 000000000..2bb1a9580
--- /dev/null
+++ b/OT/OTVole.h
@@ -0,0 +1,89 @@
+
+#ifndef _OTVOLE
+#define _OTVOLE
+
+#include "Math/Z2k.h"
+#include "OTExtension.h"
+#include "Row.h"
+
+using namespace std;
+
+template <class T, class U>
+class OTVoleBase : public OTExtension
+{
+public:
+	static const int S = U::N_BITS;
+
+	OTVoleBase(int nbaseOTs, int baseLength,
+	                int nloops, int nsubloops,
+	                TwoPartyPlayer* player,
+	                const BitVector& baseReceiverInput,
+	                const vector< vector<BitVector> >& baseSenderInput,
+	                const vector<BitVector>& baseReceiverOutput,
+	                OT_ROLE role=BOTH,
+	                bool passive=false)
+	    : OTExtension(nbaseOTs, baseLength, nloops, nsubloops, player, baseReceiverInput,
+	            baseSenderInput, baseReceiverOutput, INV_ROLE(role), passive),
+	        corr_prime(),
+	        t0(U::N_BITS),
+	        t1(U::N_BITS),
+	        u(U::N_BITS),
+	        t(U::N_BITS),
+	        a(U::N_BITS) {
+	            // need to flip roles for OT extension init, reset to original role here
+	            this->ot_role = role;
+	            local_prng.ReSeed();
+	        }
+
+	    void evaluate(vector<T>& output, const vector<T>& newReceiverInput);
+
+	    void evaluate(vector<T>& output, int nValues, const BitVector& newReceiverInput);
+
+	protected:
+
+		// Sender fields
+		Row<T> corr_prime;
+		vector<Row<T>> t0, t1;
+		// Receiver fields
+		vector<Row<T>> u, t, a;
+		// Both
+		PRNG local_prng;
+
+		Row<T> tmp;
+
+	    virtual void consistency_check (vector<octetStream>& os);
+
+	    void set_coeffs(__m128i* coefficients, PRNG& G, int num_elements) const;
+
+	    void hash_row(octetStream& os, const Row<T>& row, const __m128i* coefficients);
+
+	    void hash_row(octet* hash, const Row<T>& row, const __m128i* coefficients);
+
+};
+
+template <class T, class U>
+class OTVole : public OTVoleBase<T, U>
+{
+
+public:
+    OTVole(int nbaseOTs, int baseLength,
+                int nloops, int nsubloops,
+                TwoPartyPlayer* player,
+                const BitVector& baseReceiverInput,
+                const vector< vector<BitVector> >& baseSenderInput,
+                const vector<BitVector>& baseReceiverOutput,
+                OT_ROLE role=BOTH,
+                bool passive=false)
+    : OTVoleBase<T, U>(nbaseOTs, baseLength, nloops, nsubloops, player, baseReceiverInput,
+            baseSenderInput, baseReceiverOutput, INV_ROLE(role), passive) {
+    }
+
+protected:
+
+    Row<T> tmp;
+
+    void consistency_check(vector<octetStream>& os);
+
+};
+
+#endif
diff --git a/OT/OTVole.hpp b/OT/OTVole.hpp
new file mode 100644
index 000000000..4cd9b8fc8
--- /dev/null
+++ b/OT/OTVole.hpp
@@ -0,0 +1,356 @@
+#include "config.h"
+
+#include "OTVole.h"
+#include "Tools/oct.h"
+#include "Auth/Subroutines.h"
+
+//#define OTVOLE_TIMER
+
+template <class T, class U>
+void OTVoleBase<T, U>::evaluate(vector<T>& output, const vector<T>& newReceiverInput) {
+    const int N1 = newReceiverInput.size() + 1;
+    output.resize(newReceiverInput.size());
+    vector<octetStream> os(2);
+
+    if (this->ot_role & SENDER) {
+        T extra;
+        extra.randomize(local_prng);
+        vector<T> _corr(newReceiverInput);
+        _corr.push_back(extra);
+        corr_prime = Row<T>(_corr);
+        for (int i = 0; i < S; ++i)
+        {
+            t0[i] = Row<T>(N1);
+            t0[i].randomize(this->G_sender[i][0]);
+            t1[i] = Row<T>(N1);
+            t1[i].randomize(this->G_sender[i][1]);
+            Row<T> u  = corr_prime + t1[i] + t0[i];
+            u.pack(os[0]);
+        }
+    }
+    send_if_ot_sender(this->player, os, this->ot_role);
+    if (this->ot_role & RECEIVER) {
+        for (int i = 0; i < S; ++i)
+        {
+            t[i] = Row<T>(N1);
+            t[i].randomize(this->G_receiver[i]);
+
+            int choice_bit = this->baseReceiverInput.get_bit(i);
+            if (choice_bit == 1) {
+                u[i].unpack(os[1]);
+                a[i] = u[i] - t[i];
+            } else {
+                a[i] = t[i];
+                u[i].unpack(os[1]);
+            }
+        }
+    }
+    os[0].reset_write_head();
+    os[1].reset_write_head();
+
+    if (!this->passive_only) {
+        this->consistency_check(os);
+    }
+
+    Row<T> res(N1);
+    if (this->ot_role & RECEIVER) {
+        for (int i = 0; i < S; ++i)
+            res += (a[i] << i);
+    }
+    if (this->ot_role & SENDER) {
+        for (int i = 0; i < S; ++i)
+            res -= (t0[i] << i);
+    }
+    for (int i = 0; i < N1 - 1; ++i)
+        output[i] = res.rows[i];
+}
+
+template <class T, class U>
+void OTVoleBase<T, U>::evaluate(vector<T>& output, int nValues, const BitVector& newReceiverInput) {
+    vector<T> values(nValues);
+    if (ot_role & SENDER)
+    {
+        if (newReceiverInput.size() != (size_t) nValues * 8 * T::N_BYTES)
+            throw invalid_length();
+        for (int i = 0; i < nValues; ++i)
+            values[i] = T(newReceiverInput.get_ptr_to_byte(i, T::N_BYTES));
+    }
+    evaluate(output, values);
+}
+
+template <class T, class U>
+void OTVoleBase<T, U>::set_coeffs(__m128i* coefficients, PRNG& G, int num_blocks) const {
+	avx_memzero(coefficients, num_blocks);
+	for (int i = 0; i < num_blocks; ++i)
+		coefficients[i] = G.get_doubleword();
+}
+
+template <class T, class U>
+void OTVoleBase<T, U>::hash_row(octetStream& os, const Row<T>& row, const __m128i* coefficients) {
+	octet hash[VOLE_HASH_SIZE] = {0};
+	this->hash_row(hash, row, coefficients);
+	os.append(hash, VOLE_HASH_SIZE);
+}
+
+template <class T, class U>
+void OTVoleBase<T, U>::hash_row(octet* hash, const Row<T>& row, const __m128i* coefficients) {
+	const __m128i* blocks = (const __m128i*) row.get_ptr();
+
+	int num_blocks = (row.size() * T::size()) / 16;
+	__m128i prods[2];
+	avx_memzero(prods, sizeof(prods));
+	__m128i res[2];
+	avx_memzero(res, sizeof(res));
+
+	for (int i = 0; i < num_blocks; ++i) {
+		mul128(blocks[i], coefficients[i], &prods[0], &prods[1]);
+		res[0] ^= prods[0];
+		res[1] ^= prods[1];
+	}
+
+	int total_bytes = row.size() * T::size();
+	if (total_bytes % 16 != 0) {
+		// need to handle "tail" bytes that did not evenly fit into block
+		int overflow_size = total_bytes % 16;
+		const octet* overflow_bytes = ((octet*) row.get_ptr()) + total_bytes - overflow_size;
+		octet bytes[16] = {0};
+		memcpy(bytes, overflow_bytes, overflow_size);
+		const __m128i* extra = (const __m128i*) bytes;
+		mul128(*extra, coefficients[num_blocks], &prods[0], &prods[1]);
+		res[0] ^= prods[0];
+		res[1] ^= prods[1];
+	}
+
+	crypto_generichash(hash, crypto_generichash_BYTES,
+			(octet*) res, crypto_generichash_BYTES, NULL, 0);
+}
+
+template <class T, class U>
+void OTVoleBase<T, U>::consistency_check(vector<octetStream>& os) {
+	PRNG coef_prng_sender;
+	PRNG coef_prng_receiver;
+
+    if (this->ot_role & RECEIVER) {
+    	coef_prng_receiver.ReSeed();
+    	os[0].append(coef_prng_receiver.get_seed(), SEED_SIZE);
+    }
+    send_if_ot_receiver(this->player, os, this->ot_role);
+    if (this->ot_role & SENDER) {
+        octet seed[SEED_SIZE];
+        os[1].consume(seed, SEED_SIZE);
+        coef_prng_sender.SetSeed(seed);
+    }
+    os[0].reset_write_head();
+    os[1].reset_write_head();
+
+    if (this->ot_role & SENDER) {
+#ifdef OTVOLE_TIMER
+        timeval totalstartv, totalendv;
+        gettimeofday(&totalstartv, NULL);
+#endif
+        int total_bytes = t0[0].size() * T::size();
+        int num_blocks = (total_bytes) / 16 + ((total_bytes % 16) != 0);
+        __m128i coefficients[num_blocks];
+        this->set_coeffs(coefficients, coef_prng_sender, num_blocks);
+
+        Row<T> t00(t0.size()), t01(t0.size()), t10(t0.size()), t11(t0.size());
+        for (int alpha = 0; alpha < S; ++alpha)
+        {
+            for (int beta = 0; beta < S; ++beta)
+            {
+                t00 = t0[alpha] - t0[beta];
+                t01 = t0[alpha] - t1[beta];
+                t10 = t1[alpha] - t0[beta];
+                t11 = t1[alpha] - t1[beta];
+
+                this->hash_row(os[0], t00, coefficients);
+                this->hash_row(os[0], t01, coefficients);
+                this->hash_row(os[0], t10, coefficients);
+                this->hash_row(os[0], t11, coefficients);
+            }
+        }
+#ifdef OTVOLE_TIMER
+        gettimeofday(&totalendv, NULL);
+        double elapsed = timeval_diff(&totalstartv, &totalendv);
+        cout << "\t\tCheck time sender: " << elapsed/1000000 << endl << flush;
+#endif
+    }
+    
+    send_if_ot_sender(this->player, os, this->ot_role);
+    if (this->ot_role & RECEIVER) {
+#ifdef OTVOLE_TIMER
+        timeval totalstartv, totalendv;
+        gettimeofday(&totalstartv, NULL);
+#endif
+        int total_bytes = t[0].size() * T::size();
+        int num_blocks = (total_bytes) / 16 + ((total_bytes % 16) != 0);
+        __m128i coefficients[num_blocks];
+        this->set_coeffs(coefficients, coef_prng_receiver, num_blocks);
+
+        octet h00[VOLE_HASH_SIZE] = {0};
+        octet h01[VOLE_HASH_SIZE] = {0};
+        octet h10[VOLE_HASH_SIZE] = {0};
+        octet h11[VOLE_HASH_SIZE] = {0};
+        vector<vector<octet*>> hashes(2);
+        hashes[0] = {h00, h01};
+        hashes[1] = {h10, h11};
+
+        for (int alpha = 0; alpha < S; ++alpha)
+        {
+            for (int beta = 0; beta < S; ++beta)
+            {
+                os[1].consume(hashes[0][0], VOLE_HASH_SIZE);
+                os[1].consume(hashes[0][1], VOLE_HASH_SIZE);
+                os[1].consume(hashes[1][0], VOLE_HASH_SIZE);
+                os[1].consume(hashes[1][1], VOLE_HASH_SIZE);
+
+                int choice_alpha = this->baseReceiverInput.get_bit(alpha);
+                int choice_beta = this->baseReceiverInput.get_bit(beta);
+
+                tmp = t[alpha] - t[beta];
+                octet* choice_hash = hashes[choice_alpha][choice_beta];
+                octet diff_t[VOLE_HASH_SIZE] = {0};
+                this->hash_row(diff_t, tmp, coefficients);
+                
+                octet* not_choice_hash = hashes[1 - choice_alpha][1 - choice_beta];
+                octet other_diff[VOLE_HASH_SIZE] = {0};
+                tmp = u[alpha] - u[beta];
+                tmp -= t[alpha];
+                tmp += t[beta];
+                this->hash_row(other_diff, tmp, coefficients);
+                
+                if (!OCTETS_EQUAL(choice_hash, diff_t, VOLE_HASH_SIZE)) {
+                    throw consistency_check_fail();
+                }
+                if (!OCTETS_EQUAL(not_choice_hash, other_diff, VOLE_HASH_SIZE)) {
+                    throw consistency_check_fail();
+                }
+                if (alpha != beta && u[alpha] == u[beta]) {
+                    throw consistency_check_fail();
+                }
+            }
+        }
+#ifdef OTVOLE_TIMER
+        gettimeofday(&totalendv, NULL);
+        double elapsed = timeval_diff(&totalstartv, &totalendv);
+        cout << "\t\tCheck receiver: " << elapsed/1000000 << endl << flush;
+#endif
+    }
+}
+
+template <class T, class U>
+void OTVole<T, U>::consistency_check(vector<octetStream>& os) {
+	PRNG sender_prg;
+	PRNG receiver_prg;
+
+    if (this->ot_role & RECEIVER) {
+    	receiver_prg.ReSeed();
+    	os[0].append(receiver_prg.get_seed(), SEED_SIZE);
+    }
+    send_if_ot_receiver(this->player, os, this->ot_role);
+    if (this->ot_role & SENDER) {
+        octet seed[SEED_SIZE];
+        os[1].consume(seed, SEED_SIZE);
+        sender_prg.SetSeed(seed);
+    }
+    os[0].reset_write_head();
+    os[1].reset_write_head();
+
+    if (this->ot_role & SENDER) {
+#ifdef OTVOLE_TIMER
+        timeval totalstartv, totalendv;
+        gettimeofday(&totalstartv, NULL);
+#endif
+        int total_bytes = this->t0[0].size() * T::size();
+        int num_blocks = (total_bytes) / 16 + ((total_bytes % 16) != 0);
+        __m128i coefficients[num_blocks];
+        this->set_coeffs(coefficients, sender_prg, num_blocks);
+
+        Row<T> t00(this->t0.size()), t01(this->t0.size()), t10(this->t0.size()), t11(this->t0.size());
+        for (int alpha = 0; alpha < U::N_BITS; ++alpha)
+        {
+            for (int i = 0; i < NUM_VOLE_CHALLENGES; ++i)
+            {
+            	int beta = sender_prg.get_uint(U::N_BITS);
+
+                t00 = this->t0[alpha] - this->t0[beta];
+                t01 = this->t0[alpha] - this->t1[beta];
+                t10 = this->t1[alpha] - this->t0[beta];
+                t11 = this->t1[alpha] - this->t1[beta];
+
+                this->hash_row(os[0], t00, coefficients);
+                this->hash_row(os[0], t01, coefficients);
+                this->hash_row(os[0], t10, coefficients);
+                this->hash_row(os[0], t11, coefficients);
+            }
+        }
+#ifdef OTVOLE_TIMER
+        gettimeofday(&totalendv, NULL);
+        double elapsed = timeval_diff(&totalstartv, &totalendv);
+        cout << "\t\tCheck time sender: " << elapsed/1000000 << endl << flush;
+#endif
+    }
+
+    send_if_ot_sender(this->player, os, this->ot_role);
+    if (this->ot_role & RECEIVER) {
+#ifdef OTVOLE_TIMER
+        timeval totalstartv, totalendv;
+        gettimeofday(&totalstartv, NULL);
+#endif
+        int total_bytes = this->t[0].size() * T::size();
+        int num_blocks = (total_bytes) / 16 + ((total_bytes % 16) != 0);
+        __m128i coefficients[num_blocks];
+        this->set_coeffs(coefficients, receiver_prg, num_blocks);
+
+        octet h00[VOLE_HASH_SIZE] = {0};
+        octet h01[VOLE_HASH_SIZE] = {0};
+        octet h10[VOLE_HASH_SIZE] = {0};
+        octet h11[VOLE_HASH_SIZE] = {0};
+        vector<vector<octet*>> hashes(2);
+        hashes[0] = {h00, h01};
+        hashes[1] = {h10, h11};
+
+        for (int alpha = 0; alpha < U::N_BITS; ++alpha)
+        {
+            for (int i = 0; i < NUM_VOLE_CHALLENGES; ++i)
+            {
+            	int beta = receiver_prg.get_uint(U::N_BITS);
+
+                os[1].consume(hashes[0][0], VOLE_HASH_SIZE);
+                os[1].consume(hashes[0][1], VOLE_HASH_SIZE);
+                os[1].consume(hashes[1][0], VOLE_HASH_SIZE);
+                os[1].consume(hashes[1][1], VOLE_HASH_SIZE);
+
+                int choice_alpha = this->baseReceiverInput.get_bit(alpha);
+                int choice_beta = this->baseReceiverInput.get_bit(beta);
+
+                tmp = this->t[alpha] - this->t[beta];
+                octet* choice_hash = hashes[choice_alpha][choice_beta];
+                octet diff_t[VOLE_HASH_SIZE] = {0};
+                this->hash_row(diff_t, tmp, coefficients);
+
+                octet* not_choice_hash = hashes[1 - choice_alpha][1 - choice_beta];
+                octet other_diff[VOLE_HASH_SIZE] = {0};
+                tmp = this->u[alpha] - this->u[beta];
+                tmp -= this->t[alpha];
+                tmp += this->t[beta];
+                this->hash_row(other_diff, tmp, coefficients);
+
+                if (!OCTETS_EQUAL(choice_hash, diff_t, VOLE_HASH_SIZE)) {
+                    throw consistency_check_fail();
+                }
+                if (!OCTETS_EQUAL(not_choice_hash, other_diff, VOLE_HASH_SIZE)) {
+                    throw consistency_check_fail();
+                }
+                if (alpha != beta && this->u[alpha] == this->u[beta]) {
+                    throw consistency_check_fail();
+                }
+            }
+        }
+#ifdef OTVOLE_TIMER
+        gettimeofday(&totalendv, NULL);
+        double elapsed = timeval_diff(&totalstartv, &totalendv);
+        cout << "\t\tCheck receiver: " << elapsed/1000000 << endl << flush;
+#endif
+    }
+}
diff --git a/OT/Rectangle.h b/OT/Rectangle.h
new file mode 100644
index 000000000..96374b49e
--- /dev/null
+++ b/OT/Rectangle.h
@@ -0,0 +1,77 @@
+/*
+ * Rectangle.h
+ *
+ */
+
+#ifndef OT_RECTANGLE_H_
+#define OT_RECTANGLE_H_
+
+#include "Tools/random.h"
+#include "OT/BitVector.h"
+#include "Math/Z2k.h"
+
+#define TAU(K, S) 2 * K + 4 * S
+#define Y(K, S) X(TAU(K, S), K + S)
+
+template <class U, class V>
+class Rectangle
+{
+public:
+	typedef V RowType;
+
+	static const int N_ROWS = U::N_BITS;
+	static const int N_COLUMNS = V::N_BITS;
+	static const int N_ROW_BYTES = V::N_BYTES;
+
+	// make sure number of allocated rows matches the number of bytes
+	static const int N_ROWS_ALLOCATED = 8 * U::N_BYTES;
+
+	V rows[N_ROWS_ALLOCATED];
+
+	static size_t size() { return N_ROWS * RowType::size(); }
+
+	bool operator==(const Rectangle<U,V>& other) const;
+	bool operator!=(const Rectangle<U,V>& other) const
+			{ return not (*this == other); }
+
+	bool get_bit(int i, int j) { return rows[i].get_bit(j); }
+
+	Rectangle<U, V>& operator+=(const Rectangle<U, V>& other);
+	Rectangle<U, V> operator-(const Rectangle<U, V> & other);
+
+	template <class T>
+	Rectangle<U, V>& sub(Rectangle<U, V>& other) { return other.rsub_(*this); }
+	template <class T>
+	Rectangle<U, V>& rsub(Rectangle<U, V>& other) { return rsub_(other); }
+	Rectangle<U, V>& rsub_(Rectangle<U, V>& other);
+	template <class T>
+	Rectangle<U, V>& sub(const void* other) { return sub_(other); }
+	Rectangle<U, V>& sub_(const void* other);
+
+	void mul(const BitVector& a, const V& b);
+
+	void randomize(PRNG& G);
+	template <class T>
+	void randomize(int row, PRNG& G) { rows[row].randomize(G); }
+	template <class T>
+	void conditional_add(BitVector& conditions, Rectangle<U, V>& other,
+			int offset) { conditional_add_(conditions, other, offset); }
+	void conditional_add_(BitVector& conditions, Rectangle<U, V>& other,
+			int offset);
+	template <class T>
+	void to(T& result);
+	void to(Rectangle<U, V>& result) { result = *this; }
+
+	void pack(octetStream& o) const;
+	void unpack(octetStream& o);
+
+	void print(int i, int j);
+};
+
+template <int K, int L>
+using Z2kRectangle = Rectangle<Z2<K>, Z2<L> >;
+
+template <int K>
+using Z2kSquare = Rectangle<Z2<K>, Z2<K>>;
+
+#endif /* OT_RECTANGLE_H_ */
diff --git a/OT/Rectangle.hpp b/OT/Rectangle.hpp
new file mode 100644
index 000000000..56037ffba
--- /dev/null
+++ b/OT/Rectangle.hpp
@@ -0,0 +1,116 @@
+/*
+ * Rectangle.cpp
+ *
+ */
+
+#include "Rectangle.h"
+#include "Math/Z2k.h"
+#include "OT/BitMatrix.h"
+
+#include <assert.h>
+
+template<class U, class V>
+const int Rectangle<U, V>::N_ROWS;
+template<class U, class V>
+const int Rectangle<U, V>::N_COLUMNS;
+template<class U, class V>
+const int Rectangle<U, V>::N_ROW_BYTES;
+template<class U, class V>
+const int Rectangle<U, V>::N_ROWS_ALLOCATED;
+
+template<class U, class V>
+bool Rectangle<U, V>::operator ==(const Rectangle<U, V>& other) const
+{
+	for (int i = 0; i < N_ROWS; i++)
+		if (rows[i] != other.rows[i])
+			return false;
+	return true;
+}
+
+template<class U, class V>
+Rectangle<U, V>& Rectangle<U, V>::operator +=(const Rectangle<U, V>& other)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i] += other.rows[i];
+	return *this;
+}
+
+template<class U, class V>
+Rectangle<U, V> Rectangle<U, V>::operator -(const Rectangle<U, V>& other)
+{
+	Rectangle<U, V> res = other;
+	res.rsub_(*this);
+	return res;
+}
+
+template<class U, class V>
+Rectangle<U, V>& Rectangle<U, V>::rsub_(Rectangle<U, V>& other)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i] = other.rows[i] - rows[i];
+	return *this;
+}
+
+template<class U, class V>
+Rectangle<U, V>& Rectangle<U, V>::sub_(const void* other)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i] = rows[i] - V(other);
+	return *this;
+}
+
+template<class U, class V>
+void Rectangle<U, V>::mul(const BitVector& a, const V& b)
+{
+	assert(a.size() == N_ROWS);
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i] = b * a.get_bit(i);
+}
+
+template<class U, class V>
+void Rectangle<U, V>::randomize(PRNG& G)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i].randomize(G);
+}
+
+template<class U, class V>
+void Rectangle<U, V>::conditional_add_(BitVector& conditions,
+		Rectangle<U, V>& other, int offset)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		if (conditions.get_bit(N_ROWS_ALLOCATED * offset + i))
+			rows[i] += other.rows[i];
+}
+
+template<class U, class V>
+template<class T>
+void Rectangle<U, V>::to(T& result)
+{
+	result = bigint(0);
+	for (int i = 0; i < min(N_ROWS, result.N_BITS); i++)
+	{
+		result += T(rows[i]) << i;
+	}
+}
+
+template<class U, class V>
+void Rectangle<U, V>::pack(octetStream& o) const
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i].pack(o);
+}
+
+template<class U, class V>
+void Rectangle<U, V>::unpack(octetStream& o)
+{
+	for (int i = 0; i < N_ROWS; i++)
+		rows[i].unpack(o);
+}
+
+template<class U, class V>
+void Rectangle<U, V>::print(int i, int j)
+{
+	(void) j;
+	cout << dec << i << ": " << hex << rows[i] << endl;
+}
diff --git a/OT/Row.h b/OT/Row.h
new file mode 100644
index 000000000..9ece2a84b
--- /dev/null
+++ b/OT/Row.h
@@ -0,0 +1,70 @@
+#ifndef OT_ROW_H_
+#define OT_ROW_H_
+
+#include "Math/Z2k.h"
+#include "Math/gf2nlong.h"
+#define VOLE_HASH_SIZE crypto_generichash_BYTES
+
+template <class T> class DeferredMinus;
+
+template <class T>
+class Row
+{
+public:
+
+    vector<T> rows;
+
+    Row(int size) : rows(size) {}
+
+    Row() : rows() {}
+
+    Row(const vector<T>& _rows) : rows(_rows) {}
+
+
+    bool operator==(const Row<T>& other) const;
+    bool operator!=(const Row<T>& other) const { return not (*this == other); }
+
+    Row<T>& operator+=(const Row<T>& other);
+    Row<T>& operator-=(const Row<T>& other);
+    
+    Row<T>& operator*=(const T& other);
+
+    Row<T> operator*(const T& other);
+    Row<T> operator+(const Row<T> & other);
+    DeferredMinus<T> operator-(const Row<T> & other);
+
+    Row<T>& operator=(DeferredMinus<T> d);
+
+    Row<T> operator<<(int i) const;
+
+    // fine, since elements in vector are allocated contiguously
+    const void* get_ptr() const { return rows[0].get_ptr(); }
+    
+    void randomize(PRNG& G);
+
+    void pack(octetStream& o) const;
+    void unpack(octetStream& o);
+
+    size_t size() const { return rows.size(); }
+
+    template <class V>
+    friend ostream& operator<<(ostream& o, const Row<V>& x);
+};
+
+template <int K>
+using Z2kRow = Row<Z2<K>>;
+
+template <class T>
+class DeferredMinus
+{
+public:
+    const Row<T>& x;
+    const Row<T>& y;
+
+    DeferredMinus(const Row<T>& x, const Row<T>& y) : x(x), y(y)
+    {
+        assert(x.size() == y.size());
+    }
+};
+
+#endif /* OT_ROW_H_ */
diff --git a/OT/Row.hpp b/OT/Row.hpp
new file mode 100644
index 000000000..464c0ace1
--- /dev/null
+++ b/OT/Row.hpp
@@ -0,0 +1,114 @@
+#include "OT/Row.h"
+#include "Exceptions/Exceptions.h"
+
+template<class T>
+bool Row<T>::operator ==(const Row<T>& other) const
+{
+    return rows == other.rows;
+}
+
+template<class T>
+Row<T>& Row<T>::operator +=(const Row<T>& other)
+{
+    if (rows.size() != other.size()) {
+        throw invalid_length();
+    }
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i] += other.rows[i];
+    return *this;
+}
+
+template<class T>
+Row<T>& Row<T>::operator -=(const Row<T>& other)
+{
+    if (rows.size() != other.size()) {
+        throw invalid_length();
+    }
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i] -= other.rows[i];
+    return *this;
+}
+
+template<class T>
+Row<T>& Row<T>::operator *=(const T& other)
+{
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i] = rows[i] * other;
+    return *this;
+}
+
+template<class T>
+Row<T> Row<T>::operator *(const T& other)
+{
+    Row<T> res = *this;
+    res *= other;
+    return res;
+}
+
+template<class T>
+Row<T> Row<T>::operator +(const Row<T>& other)
+{
+    Row<T> res = other;
+    res += *this;
+    return res;
+}
+
+template<class T>
+DeferredMinus<T> Row<T>::operator -(const Row<T>& other)
+{
+    return DeferredMinus<T>(*this, other);
+}
+
+template<class T>
+Row<T>& Row<T>::operator=(DeferredMinus<T> d)
+{
+    size_t size = d.x.size();
+    rows.resize(size);
+    for (size_t i = 0; i < size; i++)
+        rows[i] = d.x.rows[i] - d.y.rows[i];
+    return *this;
+}
+
+template<class T>
+void Row<T>::randomize(PRNG& G)
+{
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i].randomize(G);
+}
+
+template<class T>
+Row<T> Row<T>::operator<<(int i) const {
+    if (i >= T::size() * 8) {
+        throw invalid_params();
+    }
+    Row<T> res = *this;
+    for (size_t j = 0; j < this->size(); j++)
+        res.rows[j] = res.rows[j] << i;
+    return res;
+}
+
+template<class T>
+void Row<T>::pack(octetStream& o) const
+{
+    o.store(this->size());
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i].pack(o);
+}
+
+template<class T>
+void Row<T>::unpack(octetStream& o)
+{
+    size_t size;
+    o.get(size);
+    this->rows.resize(size);
+    for (size_t i = 0; i < this->size(); i++)
+        rows[i].unpack(o);
+}
+
+template <class V>
+ostream& operator<<(ostream& o, const Row<V>& x)
+{
+    for (size_t i = 0; i < x.size(); ++i)
+        o << x.rows[i] << " | ";
+    return o;
+}
diff --git a/OT/Triple.hpp b/OT/Triple.hpp
new file mode 100644
index 000000000..9565386e6
--- /dev/null
+++ b/OT/Triple.hpp
@@ -0,0 +1,195 @@
+/*
+ * Triple.hpp
+ *
+ */
+
+#ifndef OT_TRIPLE_HPP_
+#define OT_TRIPLE_HPP_
+
+template <class T, int N>
+class Triple
+{
+public:
+    T a[N];
+    T b;
+    T c[N];
+
+    int repeat(int l)
+    {
+        switch (l)
+        {
+        case 0:
+        case 2:
+            return N;
+        case 1:
+            return 1;
+        default:
+            throw bad_value();
+        }
+    }
+
+    T& byIndex(int l, int j)
+    {
+        switch (l)
+        {
+        case 0:
+            return a[j];
+        case 1:
+            return b;
+        case 2:
+            return c[j];
+        default:
+            throw bad_value();
+        }
+    }
+
+    template <int M>
+    void amplify(const Triple<T,M>& uncheckedTriple, PRNG& G)
+    {
+        b = uncheckedTriple.b;
+        for (int i = 0; i < N; i++)
+            for (int j = 0; j < M; j++)
+            {
+                typename T::value_type r;
+                r.randomize(G);
+                a[i] += r * uncheckedTriple.a[j];
+                c[i] += r * uncheckedTriple.c[j];
+            }
+    }
+
+    void output(ostream& outputStream, int n = N, bool human = false)
+    {
+        for (int i = 0; i < n; i++)
+        {
+            a[i].output(outputStream, human);
+            b.output(outputStream, human);
+            c[i].output(outputStream, human);
+        }
+    }
+};
+
+template <class T, int N>
+class PlainTriple : public Triple<T,N>
+{
+public:
+    // this assumes that valueBits[1] is still set to the bits of b
+    void to(vector<BitVector>& valueBits, int i)
+    {
+        for (int j = 0; j < N; j++)
+        {
+            valueBits[0].set_portion(i * N + j, this->a[j]);
+            valueBits[2].set_portion(i * N + j, this->c[j]);
+        }
+    }
+};
+
+// T is Z2<K + 2S>, U is Z2<K + S>
+template <class T, class U, int N>
+class PlainTriple_ : public PlainTriple<T,N>
+{
+public:
+
+    template <int M>
+    void amplify(BitVector& a, U& b, Rectangle<Z2<M>, U>& c, PRNG& G)
+    {
+        assert(a.size() == M);
+        this->b = b;
+        for (int i = 0; i < N; i++)
+        {
+            U aa = 0, cc = 0;
+            for (int j = 0; j < M; j++)
+            {
+                U r;
+                r.randomize(G);
+                if (a.get_bit(j))
+                    aa += r;
+                cc += U::Mul(r, c.rows[j]);
+            }
+            this->a[i] = aa;
+            this->c[i] = cc;
+        }
+    }
+};
+
+template <class T, class U, int N>
+class ShareTriple_ : public Triple<Share<T>, N>
+{
+public:
+    template<class V>
+    void from(PlainTriple<T,N>& triple,
+            int iTriple, const NPartyTripleGenerator<V>& generator)
+    {
+        for (int l = 0; l < 3; l++)
+        {
+            int repeat = this->repeat(l);
+            for (int j = 0; j < repeat; j++)
+            {
+                T value = triple.byIndex(l,j);
+                T mac;
+                mac.mul(value, generator.machine.template get_mac_key<U>());
+                for (int i = 0; i < generator.nparties-1; i++)
+                    mac += generator.ot_multipliers[i]->macs.at(l).at(iTriple * repeat + j);
+                Share<T>& share = this->byIndex(l,j);
+                share.set_share(value);
+                share.set_mac(mac);
+            }
+        }
+    }
+
+    Share<T> get_check_value(PRNG& G)
+    {
+        Share<T> res;
+        res += G.get<T>() * this->b;
+        for (int i = 0; i < N; i++)
+        {
+            res += G.get<T>() * this->a[i];
+            res += G.get<T>() * this->c[i];
+        }
+        return res;
+    }
+
+    template<class V>
+    Triple<Share<V>, 1> reduce() {
+        Triple<Share<V>, 1> triple;
+
+        Share<V> _a;
+        _a.set_share(V(this->a[0].get_share()));
+        _a.set_mac(V(this->a[0].get_mac()));
+        triple.a[0] = _a;
+
+        Share<V> _b;
+        _b.set_share(V(this->b.get_share()));
+        _b.set_mac(V(this->b.get_mac()));
+        triple.b = _b;
+
+        Share<V> _c;
+        _c.set_share(V(this->c[0].get_share()));
+        _c.set_mac(V(this->c[0].get_mac()));
+        triple.c[0] = _c;
+
+        return triple;
+    }
+
+};
+
+template <class T>
+class TripleToSacrifice : public Triple<Share<T>, 1>
+{
+public:
+    template <class U>
+    void prepare_sacrifice(const ShareTriple_<T, U, 2>& uncheckedTriple, PRNG& G)
+    {
+        this->b = uncheckedTriple.b;
+        U t;
+        t.randomize(G);
+        this->a[0] = uncheckedTriple.a[0] * t - uncheckedTriple.a[1];
+        this->c[0] = uncheckedTriple.c[0] * t - uncheckedTriple.c[1];
+    }
+
+    Share<T> computeCheckShare(const T& maskedA)
+    {
+        return this->c[0] - maskedA * this->b;
+    }
+};
+
+#endif /* OT_TRIPLE_HPP_ */
diff --git a/OT/TripleMachine.cpp b/OT/TripleMachine.cpp
index 0bcba0736..af8468ca4 100644
--- a/OT/TripleMachine.cpp
+++ b/OT/TripleMachine.cpp
@@ -11,20 +11,31 @@
 #include "Math/Setup.h"
 #include "Tools/ezOptionParser.h"
 #include "Math/Setup.h"
+#include "Auth/fake-stuff.h"
+
+#include "Auth/fake-stuff.hpp"
 
 #include <iostream>
 #include <fstream>
 using namespace std;
 
-template <class T>
 void* run_ngenerator_thread(void* ptr)
 {
-    ((NPartyTripleGenerator*)ptr)->generate<T>();
+    ((MascotGenerator*)ptr)->generate();
     return 0;
 }
 
+MascotParams::MascotParams()
+{
+    generateMACs = true;
+    amplify = true;
+    check = true;
+    generateBits = false;
+    timerclear(&start);
+}
+
 TripleMachine::TripleMachine(int argc, const char** argv) :
-        bonding(0), generateBits(0)
+        nConnections(1), bonding(0)
 {
     opt.add(
         "1", // Default.
@@ -67,7 +78,7 @@ TripleMachine::TripleMachine(int argc, const char** argv) :
         0, // Required?
         0, // Number of args expected.
         0, // Delimiter if expecting multiple args.
-        "GF(p) triples", // Help description.
+        "GF(p) items", // Help description.
         "-P", // Flag token.
         "--prime-field" // Flag token.
     );
@@ -89,6 +100,24 @@ TripleMachine::TripleMachine(int argc, const char** argv) :
         "-B", // Flag token.
         "--bits" // Flag token.
     );
+    opt.add(
+        "", // Default.
+        0, // Required?
+        1, // Number of args expected.
+        0, // Delimiter if expecting multiple args.
+        "SPDZ2k parameter, e.g., 64", // Help description.
+        "-Z", // Flag token.
+        "--Z2k" // Flag token.
+    );
+    opt.add(
+        "64", // Default.
+        0, // Required?
+        1, // Number of args expected.
+        0, // Delimiter if expecting multiple args.
+        "SPDZ2k security parameter (default: 64)", // Help description.
+        "-S", // Flag token.
+        "--security" // Flag token.
+    );
 
     parse_options(argc, argv);
 
@@ -99,6 +128,11 @@ TripleMachine::TripleMachine(int argc, const char** argv) :
     amplify = opt.get("-a")->isSet || generateMACs;
     primeField = opt.get("-P")->isSet;
     bonding = opt.get("-b")->isSet;
+    opt.get("-Z")->getInt(z2k);
+    check |= z2k;
+    z2s = z2k;
+    if (opt.isSet("-S"))
+        opt.get("-S")->getInt(z2s);
 
     bigint p;
     if (output)
@@ -114,37 +148,60 @@ TripleMachine::TripleMachine(int argc, const char** argv) :
     }
 
     // doesn't work with Montgomery multiplication
-    gfp::init_field(p, false);
+    gfp1::init_field(p, false);
     gf2n::init_field(128);
     
     PRNG G;
     G.ReSeed();
     mac_key2.randomize(G);
     mac_keyp.randomize(G);
+    mac_keyz.randomize(G);
+}
+
+template<class T>
+NPartyTripleGenerator<T>* TripleMachine::new_generator(OTTripleSetup& setup, int i)
+{
+    return new NPartyTripleGenerator<T>(setup, N[i%nConnections], i, nTriplesPerThread, nloops, *this);
 }
 
 void TripleMachine::run()
 {
     cout << "my_num: " << my_num << endl;
-    Names N[2];
     N[0].init(my_num, 10000, "HOSTS", nplayers);
-    int nConnections = 1;
+    nConnections = 1;
     if (bonding)
     {
         N[1].init(my_num, 11000, "HOSTS2", nplayers);
         nConnections = 2;
     }
     // do the base OTs
-    OTTripleSetup setup(N[0], true);
-    setup.setup();
-    setup.close_connections();
+    PlainPlayer P(N[0], 0xF000);
+    OTTripleSetup setup(P, true);
 
-    vector<NPartyTripleGenerator*> generators(nthreads);
+    vector<MascotGenerator*> generators(nthreads);
     vector<pthread_t> threads(nthreads);
 
     for (int i = 0; i < nthreads; i++)
     {
-        generators[i] = new NPartyTripleGenerator(setup, N[i%nConnections], i, nTriplesPerThread, nloops, *this);
+        if (primeField)
+            generators[i] = new_generator<Share<gfp1>>(setup, i);
+        else if (z2k)
+        {
+            if (z2k == 32 and z2s == 32)
+                generators[i] = new_generator<Spdz2kShare<32, 32>>(setup, i);
+            else if (z2k == 64 and z2s == 64)
+                generators[i] = new_generator<Spdz2kShare<64, 64>>(setup, i);
+            else if (z2k == 64 and z2s == 48)
+                generators[i] = new_generator<Spdz2kShare<64, 48>>(setup, i);
+            else if (z2k == 66 and z2s == 64)
+                generators[i] = new_generator<Spdz2kShare<66, 64>>(setup, i);
+            else if (z2k == 66 and z2s == 48)
+                generators[i] = new_generator<Spdz2kShare<66, 48>>(setup, i);
+            else
+                throw runtime_error("not compiled for k=" + to_string(z2k) + " and s=" + to_string(z2s));
+        }
+        else
+            generators[i] = new_generator<Share<gf2n>>(setup, i);
     }
     ntriples = generators[0]->nTriples * nthreads;
     cout <<"Setup generators\n";
@@ -152,10 +209,7 @@ void TripleMachine::run()
     {
         // lock before starting thread to avoid race condition
         generators[i]->lock();
-        if (primeField)
-            pthread_create(&threads[i], 0, run_ngenerator_thread<gfp>, generators[i]);
-        else
-            pthread_create(&threads[i], 0, run_ngenerator_thread<gf2n>, generators[i]);
+        pthread_create(&threads[i], 0, run_ngenerator_thread, generators[i]);
     }
 
     // wait for initialization, then start clock and computation
@@ -200,20 +254,54 @@ void TripleMachine::run()
 
 void TripleMachine::output_mac_keys()
 {
-    stringstream ss;
-    ss << prep_data_dir << "Player-MAC-Keys-P" << my_num;
-    cout << "Writing MAC key to " << ss.str() << endl;
-    ofstream outputFile(ss.str().c_str());
-    outputFile << nplayers << endl;
-    outputFile << mac_keyp << " " << mac_key2 << endl;
+    if (z2k) {
+        write_mac_keys(prep_data_dir, my_num, nplayers, mac_keyz, mac_key2);
+    }
+    else
+        write_mac_keys(prep_data_dir, my_num, nplayers, mac_keyp, mac_key2);
 }
 
-template<> gf2n TripleMachine::get_mac_key()
+template<> gf2n MascotParams::get_mac_key()
 {
     return mac_key2;
 }
 
-template<> gfp TripleMachine::get_mac_key()
+template<> gfp1 MascotParams::get_mac_key()
 {
     return mac_keyp;
 }
+
+template<> Z2<48> MascotParams::get_mac_key()
+{
+    return mac_keyz;
+}
+
+template<> Z2<64> MascotParams::get_mac_key()
+{
+    return mac_keyz;
+}
+
+template<> Z2<32> MascotParams::get_mac_key()
+{
+    return mac_keyz;
+}
+
+template<> void MascotParams::set_mac_key(gf2n key)
+{
+    mac_key2 = key;
+}
+
+template<> void MascotParams::set_mac_key(gfp1 key)
+{
+    mac_keyp = key;
+}
+
+template<> void MascotParams::set_mac_key(Z2<64> key)
+{
+    mac_keyz = key;
+}
+
+template<> void MascotParams::set_mac_key(Z2<48> key)
+{
+    mac_keyz = key;
+}
diff --git a/OT/TripleMachine.h b/OT/TripleMachine.h
index 495fe2bfc..dbd6a4574 100644
--- a/OT/TripleMachine.h
+++ b/OT/TripleMachine.h
@@ -8,29 +8,53 @@
 
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
 #include "Tools/OfflineMachineBase.h"
+#include "OT/OTTripleSetup.h"
 
-class TripleMachine : public OfflineMachineBase
+template<class T> class NPartyTripleGenerator;
+
+class MascotParams : virtual public OfflineParams
 {
+protected:
     gf2n mac_key2;
-    gfp mac_keyp;
+    gfp1 mac_keyp;
+    Z2<128> mac_keyz;
 
 public:
-    int nloops;
     string prep_data_dir;
     bool generateMACs;
     bool amplify;
     bool check;
-    bool primeField;
-    bool bonding;
     bool generateBits;
     struct timeval start, stop;
 
-    TripleMachine(int argc, const char** argv);
-    void run();
+    MascotParams();
 
     template <class T>
     T get_mac_key();
+    template <class T>
+    void set_mac_key(T key);
+};
+
+class TripleMachine : public OfflineMachineBase, public MascotParams
+{
+    Names N[2];
+    int nConnections;
+
+public:
+    int nloops;
+    bool primeField;
+    bool bonding;
+    int z2k, z2s;
+
+    TripleMachine(int argc, const char** argv);
+
+    template<class T>
+    NPartyTripleGenerator<T>* new_generator(OTTripleSetup& setup, int i);
+
+    void run();
+
     void output_mac_keys();
 };
 
diff --git a/OT/config.h b/OT/config.h
new file mode 100644
index 000000000..634d0613c
--- /dev/null
+++ b/OT/config.h
@@ -0,0 +1,12 @@
+/*
+ * config.h
+ *
+ */
+
+#ifndef OT_CONFIG_H_
+#define OT_CONFIG_H_
+
+#define USE_OPT_VOLE 1
+#define NUM_VOLE_CHALLENGES 3
+
+#endif /* OT_CONFIG_H_ */
diff --git a/Player-Online.cpp b/Player-Online.cpp
index a8d59fac8..8f2919d49 100644
--- a/Player-Online.cpp
+++ b/Player-Online.cpp
@@ -1,285 +1,14 @@
-#include "Processor/Machine.h"
-#include "Processor/OnlineOptions.h"
-#include "Math/Setup.h"
-#include "Tools/ezOptionParser.h"
-#include "Tools/Config.h"
-#include "Networking/Server.h"
+/*
+ * Player-Online.cpp
+ *
+ */
 
-#include "Processor/Online-Thread.hpp"
+#include "Processor/config.h"
 
-#include <iostream>
-#include <map>
-#include <string>
-#include <stdio.h>
-using namespace std;
+#include "Player-Online.hpp"
 
 int main(int argc, const char** argv)
 {
     ez::ezOptionParser opt;
-    OnlineOptions online_opts(opt, argc, argv);
-
-    opt.syntax = "./Player-Online.x [OPTIONS] <playernum> <progname>\n";
-    opt.example = "./Player-Online.x -lgp 64 -lg2 128 -m new 0 sample-prog\n./Player-Online.x -pn 13000 -h localhost 1 sample-prog\n";
-
-    opt.add(
-          to_string(gf2n::default_degree()).c_str(), // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          ("Bit length of GF(2^n) field (default: " + to_string(gf2n::default_degree()) + ")").c_str(), // Help description.
-          "-lg2", // Flag token.
-          "--lg2" // Flag token.
-    );
-    opt.add(
-          "5000", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Port number base to attempt to start connections from (default: 5000)", // Help description.
-          "-pn", // Flag token.
-          "--portnumbase" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Port to listen on (default: port number base + player number)", // Help description.
-          "-mp", // Flag token.
-          "--my-port" // Flag token.
-    );
-    opt.add(
-          "localhost", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Host where Server.x is running to coordinate startup (default: localhost). Ignored if --ip-file-name is used.", // Help description.
-          "-h", // Flag token.
-          "--hostname" // Flag token.
-    );
-    opt.add(
-      "", // Default.
-      0, // Required?
-      1, // Number of args expected.
-      0, // Delimiter if expecting multiple args.
-      "Filename containing list of party ip addresses. Alternative to --hostname and running Server.x for startup coordination.", // Help description.
-      "-ip", // Flag token.
-      "--ip-file-name" // Flag token.
-    );
-    opt.add(
-          "empty", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Where to obtain memory, new|old|empty (default: empty)\n\t"
-            "new: copy from Player-Memory-P<i> file\n\t"
-            "old: reuse previous memory in Memory-P<i>\n\t"
-            "empty: create new empty memory", // Help description.
-          "-m", // Flag token.
-          "--memory" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          0, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Direct communication instead of star-shaped", // Help description.
-          "-d", // Flag token.
-          "--direct" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          0, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Star-shaped communication handled by background threads", // Help description.
-          "-P", // Flag token.
-          "--parallel" // Flag token.
-    );
-    opt.add(
-          "0", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Sum at most n shares at once when using indirect communication", // Help description.
-          "-s", // Flag token.
-          "--opening-sum" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          0, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Use player-specific threads for communication", // Help description.
-          "-t", // Flag token.
-          "--threads" // Flag token.
-    );
-    opt.add(
-          "0", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Maximum number of parties to send to at once", // Help description.
-          "-b", // Flag token.
-          "--max-broadcast" // Flag token.
-    );
-    opt.add(
-          "0", // Default.
-          0, // Required?
-          0, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Use communications security between SPDZ players", // Help description.
-          "-c", // Flag token.
-          "--player-to-player-commsec" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          1, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Number of players. Server.x is not used if given. "
-          "Player 0 must run on host given with -h then. "
-          "Default: Use Server.x or IP file", // Help description.
-          "-N", // Flag token.
-          "--nparties" // Flag token.
-    );
-    opt.add(
-          "", // Default.
-          0, // Required?
-          0, // Number of args expected.
-          0, // Delimiter if expecting multiple args.
-          "Use encrypted channels.", // Help description.
-          "-e", // Flag token.
-          "--encrypted" // Flag token.
-    );
-
-    opt.resetArgs();
-    opt.parse(argc, argv);
-
-    vector<string*> allArgs(opt.firstArgs);
-    allArgs.insert(allArgs.end(), opt.lastArgs.begin(), opt.lastArgs.end());
-    string progname;
-    int playerno;
-    string usage;
-    vector<string> badOptions;
-    unsigned int i;
-
-    if (allArgs.size() != 3)
-    {
-        cerr << "ERROR: incorrect number of arguments to Player-Online.x\n";
-        cerr << "Arguments given were:\n";
-        for (unsigned int j = 1; j < allArgs.size(); j++)
-            cout << "'" << *allArgs[j] << "'" << endl;
-        opt.getUsage(usage);
-        cout << usage;
-        return 1;
-    }
-    else
-    {
-        playerno = atoi(allArgs[1]->c_str());
-        progname = *allArgs[2];
-
-    }
-
-    if(!opt.gotRequired(badOptions))
-    {
-      for (i=0; i < badOptions.size(); ++i)
-        cerr << "ERROR: Missing required option " << badOptions[i] << ".";
-      opt.getUsage(usage);
-      cout << usage;
-      return 1;
-    }
-
-    if(!opt.gotExpected(badOptions))
-    {
-      for(i=0; i < badOptions.size(); ++i)
-        cerr << "ERROR: Got unexpected number of arguments for option " << badOptions[i] << ".";
-      opt.getUsage(usage);
-      cout << usage;
-      return 1;
-    }
-
-    string memtype, hostname, ipFileName;
-    int lg2, pnbase, opening_sum, max_broadcast;
-    int p2pcommsec;
-    int my_port;
-
-    opt.get("--portnumbase")->getInt(pnbase);
-    opt.get("--lg2")->getInt(lg2);
-    opt.get("--memory")->getString(memtype);
-    opt.get("--hostname")->getString(hostname);
-    opt.get("--ip-file-name")->getString(ipFileName);
-    opt.get("--opening-sum")->getInt(opening_sum);
-    opt.get("--max-broadcast")->getInt(max_broadcast);
-    opt.get("--player-to-player-commsec")->getInt(p2pcommsec);
-
-    ez::OptionGroup* mp_opt = opt.get("--my-port");
-    if (mp_opt->isSet)
-      mp_opt->getInt(my_port);
-    else
-      my_port = Names::DEFAULT_PORT;
-
-    int mynum;
-    sscanf((*allArgs[1]).c_str(), "%d", &mynum);
-
-    CommsecKeysPackage *keys = NULL;
-    if(p2pcommsec) {
-        vector<public_signing_key> pubkeys;
-        secret_signing_key mykey;
-        public_signing_key mypublickey;
-        string prep_data_prefix = get_prep_dir(2, online_opts.lgp, lg2);
-        Config::read_player_config(prep_data_prefix,mynum,pubkeys,mykey,mypublickey);
-        keys = new CommsecKeysPackage(pubkeys,mykey,mypublickey);
-    }
-
-    Names playerNames;
-    Server* server = 0;
-    if (ipFileName.size() > 0) {
-      if (my_port != Names::DEFAULT_PORT)
-        throw runtime_error("cannot set port number when using IP file");
-      playerNames.init(playerno, pnbase, ipFileName);
-    } else {
-      if (opt.get("-N")->isSet)
-      {
-        if (my_port != Names::DEFAULT_PORT)
-          throw runtime_error("cannot set port number when not using Server.x");
-        int nplayers;
-        opt.get("-N")->getInt(nplayers);
-        server = Server::start_networking(playerNames, mynum, nplayers,
-            hostname, pnbase);
-      }
-      else
-        playerNames.init(playerno, pnbase, my_port, hostname.c_str());
-    }
-    playerNames.set_keys(keys);
-        
-#ifndef INSECURE
-    try
-#endif
-    {
-        Machine<sgfp, Share<gf2n>>(playerno, playerNames, progname, memtype, lg2,
-                opt.get("--direct")->isSet, opening_sum, opt.get("--parallel")->isSet,
-                opt.get("--threads")->isSet, max_broadcast,
-                opt.get("--encrypted")->isSet, false,
-                online_opts).run();
-
-        if (server)
-          delete server;
-
-        cerr << "Command line:";
-        for (int i = 0; i < argc; i++)
-            cerr << " " << argv[i];
-        cerr << endl;
-    }
-#ifndef INSECURE
-    catch(...)
-    {
-        Machine<sgfp, Share<gf2n>> machine(playerNames);
-        machine.live_prep = false;
-        thread_info<sgfp, Share<gf2n>>::purge_preprocessing(machine);
-        throw;
-    }
-#endif
+    return spdz_main<sgfp>(argc, argv, opt);
 }
-
-
diff --git a/Player-Online.hpp b/Player-Online.hpp
new file mode 100644
index 000000000..bcf00b027
--- /dev/null
+++ b/Player-Online.hpp
@@ -0,0 +1,244 @@
+#include "Processor/Machine.h"
+#include "Processor/OnlineOptions.h"
+#include "Math/Setup.h"
+#include "Tools/ezOptionParser.h"
+#include "Tools/Config.h"
+#include "Networking/Server.h"
+
+#include <iostream>
+#include <map>
+#include <string>
+#include <stdio.h>
+using namespace std;
+
+template<class T>
+int spdz_main(int argc, const char** argv, ez::ezOptionParser& opt)
+{
+    OnlineOptions online_opts(opt, argc, argv);
+
+    opt.example = "./Player-Online.x -lgp 64 -lg2 128 -m new 0 sample-prog\n./Player-Online.x -pn 13000 -h localhost 1 sample-prog\n";
+
+    opt.add(
+          to_string(gf2n::default_degree()).c_str(), // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          ("Bit length of GF(2^n) field (default: " + to_string(gf2n::default_degree()) + ")").c_str(), // Help description.
+          "-lg2", // Flag token.
+          "--lg2" // Flag token.
+    );
+    opt.add(
+          "5000", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Port number base to attempt to start connections from (default: 5000)", // Help description.
+          "-pn", // Flag token.
+          "--portnumbase" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Port to listen on (default: port number base + player number)", // Help description.
+          "-mp", // Flag token.
+          "--my-port" // Flag token.
+    );
+    opt.add(
+          "localhost", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Host where Server.x is running to coordinate startup (default: localhost). Ignored if --ip-file-name is used.", // Help description.
+          "-h", // Flag token.
+          "--hostname" // Flag token.
+    );
+    opt.add(
+      "", // Default.
+      0, // Required?
+      1, // Number of args expected.
+      0, // Delimiter if expecting multiple args.
+      "Filename containing list of party ip addresses. Alternative to --hostname and running Server.x for startup coordination.", // Help description.
+      "-ip", // Flag token.
+      "--ip-file-name" // Flag token.
+    );
+    opt.add(
+          "empty", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Where to obtain memory, new|old|empty (default: empty)\n\t"
+            "new: copy from Player-Memory-P<i> file\n\t"
+            "old: reuse previous memory in Memory-P<i>\n\t"
+            "empty: create new empty memory", // Help description.
+          "-m", // Flag token.
+          "--memory" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          0, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Direct communication instead of star-shaped", // Help description.
+          "-d", // Flag token.
+          "--direct" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          0, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Star-shaped communication handled by background threads", // Help description.
+          "-P", // Flag token.
+          "--parallel" // Flag token.
+    );
+    opt.add(
+          "0", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Sum at most n shares at once when using indirect communication", // Help description.
+          "-s", // Flag token.
+          "--opening-sum" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          0, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Use player-specific threads for communication", // Help description.
+          "-t", // Flag token.
+          "--threads" // Flag token.
+    );
+    opt.add(
+          "0", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Maximum number of parties to send to at once", // Help description.
+          "-b", // Flag token.
+          "--max-broadcast" // Flag token.
+    );
+    opt.add(
+          "0", // Default.
+          0, // Required?
+          0, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Use communications security between SPDZ players", // Help description.
+          "-c", // Flag token.
+          "--player-to-player-commsec" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          1, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Number of players. Server.x is not used if given. "
+          "Player 0 must run on host given with -h then. "
+          "Default: Use Server.x or IP file", // Help description.
+          "-N", // Flag token.
+          "--nparties" // Flag token.
+    );
+    opt.add(
+          "", // Default.
+          0, // Required?
+          0, // Number of args expected.
+          0, // Delimiter if expecting multiple args.
+          "Use encrypted channels.", // Help description.
+          "-e", // Flag token.
+          "--encrypted" // Flag token.
+    );
+
+    string memtype, hostname, ipFileName;
+    int lg2, pnbase, opening_sum, max_broadcast;
+    int p2pcommsec;
+    int my_port;
+
+    online_opts.finalize(opt, argc, argv);
+    opt.get("--portnumbase")->getInt(pnbase);
+    opt.get("--lg2")->getInt(lg2);
+    opt.get("--memory")->getString(memtype);
+    opt.get("--hostname")->getString(hostname);
+    opt.get("--ip-file-name")->getString(ipFileName);
+    opt.get("--opening-sum")->getInt(opening_sum);
+    opt.get("--max-broadcast")->getInt(max_broadcast);
+    opt.get("--player-to-player-commsec")->getInt(p2pcommsec);
+
+    ez::OptionGroup* mp_opt = opt.get("--my-port");
+    if (mp_opt->isSet)
+      mp_opt->getInt(my_port);
+    else
+      my_port = Names::DEFAULT_PORT;
+
+    int mynum = online_opts.playerno;
+    int playerno = online_opts.playerno;
+
+    CommsecKeysPackage *keys = NULL;
+    if(p2pcommsec) {
+        vector<public_signing_key> pubkeys;
+        secret_signing_key mykey;
+        public_signing_key mypublickey;
+        string prep_data_prefix = get_prep_dir(2, online_opts.lgp, lg2);
+        Config::read_player_config(prep_data_prefix,mynum,pubkeys,mykey,mypublickey);
+        keys = new CommsecKeysPackage(pubkeys,mykey,mypublickey);
+    }
+
+    Names playerNames;
+    Server* server = 0;
+    if (ipFileName.size() > 0) {
+      if (my_port != Names::DEFAULT_PORT)
+        throw runtime_error("cannot set port number when using IP file");
+      playerNames.init(playerno, pnbase, ipFileName);
+    } else {
+      if (opt.get("-N")->isSet)
+      {
+        if (my_port != Names::DEFAULT_PORT)
+          throw runtime_error("cannot set port number when not using Server.x");
+        int nplayers;
+        opt.get("-N")->getInt(nplayers);
+        server = Server::start_networking(playerNames, mynum, nplayers,
+            hostname, pnbase);
+      }
+      else
+      {
+        cerr << "Number of players not given, relying on external Server.x" << endl;
+        playerNames.init(playerno, pnbase, my_port, hostname.c_str());
+      }
+    }
+    playerNames.set_keys(keys);
+        
+#ifndef INSECURE
+    try
+#endif
+    {
+        Machine<T, Share<gf2n>>(playerno, playerNames, online_opts.progname, memtype, lg2,
+                opt.get("--direct")->isSet, opening_sum, opt.get("--parallel")->isSet,
+                opt.get("--threads")->isSet, max_broadcast,
+                opt.get("--encrypted")->isSet, online_opts.live_prep,
+                online_opts).run();
+
+        if (server)
+          delete server;
+
+#ifdef VERBOSE
+        cerr << "Command line:";
+        for (int i = 0; i < argc; i++)
+            cerr << " " << argv[i];
+        cerr << endl;
+#endif
+    }
+#ifndef INSECURE
+    catch(...)
+    {
+        Machine<T, Share<gf2n>> machine(playerNames);
+        machine.live_prep = false;
+        thread_info<T, Share<gf2n>>::purge_preprocessing(machine);
+        throw;
+    }
+#endif
+
+    return 0;
+}
+
+
diff --git a/Processor/BaseMachine.cpp b/Processor/BaseMachine.cpp
index 0c16d0662..311b5e19e 100644
--- a/Processor/BaseMachine.cpp
+++ b/Processor/BaseMachine.cpp
@@ -6,6 +6,7 @@
 #include "BaseMachine.h"
 
 #include <iostream>
+#include <sodium.h>
 using namespace std;
 
 BaseMachine* BaseMachine::singleton = 0;
@@ -20,6 +21,8 @@ BaseMachine& BaseMachine::s()
 
 BaseMachine::BaseMachine() : nthreads(0)
 {
+  if (sodium_init() == -1)
+    throw runtime_error("couldn't initialize libsodium");
   if (not singleton)
     singleton = this;
 }
@@ -28,7 +31,9 @@ void BaseMachine::load_schedule(string progname)
 {
   this->progname = progname;
   string fname = "Programs/Schedules/" + progname + ".sch";
+#ifdef DEBUG_FILES
   cerr << "Opening file " << fname << endl;
+#endif
   inpf.open(fname);
   if (inpf.fail()) { throw file_error("Missing '" + fname + "'. Did you compile '" + progname + "'?"); }
 
@@ -36,15 +41,19 @@ void BaseMachine::load_schedule(string progname)
   inpf >> nthreads;
   inpf >> nprogs;
 
+#ifdef DEBUG_FILES
   cerr << "Number of threads I will run in parallel = " << nthreads << endl;
   cerr << "Number of program sequences I need to load = " << nprogs << endl;
+#endif
 
   // Load in the programs
   string threadname;
   for (int i=0; i<nprogs; i++)
     { inpf >> threadname;
       string filename = "Programs/Bytecode/" + threadname + ".bc";
+#ifdef DEBUG_FILES
       cerr << "Loading program " << i << " from " << filename << endl;
+#endif
       load_program(threadname, filename);
     }
 }
@@ -55,8 +64,10 @@ void BaseMachine::print_compiler()
   char compiler[1000];
   inpf.get();
   inpf.getline(compiler, 1000);
+#ifdef VERBOSE
   if (compiler[0] != 0)
     cerr << "Compiler: " << compiler << endl;
+#endif
   inpf.close();
 }
 
diff --git a/Processor/BaseMachine.h b/Processor/BaseMachine.h
index 9c3008ee1..0250ad22f 100644
--- a/Processor/BaseMachine.h
+++ b/Processor/BaseMachine.h
@@ -7,6 +7,7 @@
 #define PROCESSOR_BASEMACHINE_H_
 
 #include "Tools/time-func.h"
+#include "OT/OTTripleSetup.h"
 
 #include <map>
 #include <fstream>
@@ -29,6 +30,8 @@ class BaseMachine
     string progname;
     int nthreads;
 
+    vector<vector<OTTripleSetup>> ot_setups;
+
     static BaseMachine& s();
 
     BaseMachine();
diff --git a/Processor/Beaver.h b/Processor/Beaver.h
index a284456a3..834070851 100644
--- a/Processor/Beaver.h
+++ b/Processor/Beaver.h
@@ -20,9 +20,9 @@ template<class T>
 class Beaver : public ProtocolBase<T>
 {
     vector<T> shares;
-    vector<typename T::clear> opened;
+    vector<typename T::open_type> opened;
     vector<array<T, 3>> triples;
-    typename vector<typename T::clear>::iterator it;
+    typename vector<typename T::open_type>::iterator it;
     typename vector<array<T, 3>>::iterator triple;
     SubProcessor<T>* proc;
 
diff --git a/Processor/DataPositions.cpp b/Processor/DataPositions.cpp
new file mode 100644
index 000000000..564d4c51e
--- /dev/null
+++ b/Processor/DataPositions.cpp
@@ -0,0 +1,103 @@
+/*
+ * DataPositions.cpp
+ *
+ */
+
+#include "Data_Files.h"
+
+#include <iomanip>
+#include <numeric>
+
+const char* DataPositions::field_names[] = { "int", "gf2n", "bit" };
+
+const int DataPositions::tuple_size[N_DTYPE] = { 3, 2, 1, 2, 3, 3 };
+
+void DataPositions::set_num_players(int num_players)
+{
+  files.resize(N_DATA_FIELD_TYPE, vector<long long>(N_DTYPE));
+  inputs.resize(num_players, vector<long long>(N_DATA_FIELD_TYPE));
+}
+
+void DataPositions::increase(const DataPositions& delta)
+{
+  if (inputs.size() != delta.inputs.size())
+    throw invalid_length();
+  for (unsigned int field_type = 0; field_type < N_DATA_FIELD_TYPE; field_type++)
+    {
+      for (unsigned int dtype = 0; dtype < N_DTYPE; dtype++)
+        files[field_type][dtype] += delta.files[field_type][dtype];
+      for (unsigned int j = 0; j < inputs.size(); j++)
+        inputs[j][field_type] += delta.inputs[j][field_type];
+
+      map<DataTag, long long>::const_iterator it;
+      const map<DataTag, long long>& delta_ext = delta.extended[field_type];
+      for (it = delta_ext.begin(); it != delta_ext.end(); it++)
+          extended[field_type][it->first] += it->second;
+    }
+}
+
+void DataPositions::print_cost() const
+{
+  ifstream file("cost");
+  bool print_verbose = file.good();
+  double total_cost = 0;
+  for (int i = 0; i < N_DATA_FIELD_TYPE; i++)
+    {
+      if (accumulate(files[i].begin(), files[i].end(), 0) > 0)
+        cerr << "  Type " << field_names[i] << endl;
+      bool reading_field = true;
+      for (int j = 0; j < N_DTYPE; j++)
+        process_line(files[i][j], dtype_names[j], file, print_verbose, total_cost, reading_field);
+
+      long long n_inputs = 0;
+      stringstream ss;
+      ss << " (";
+      for (auto& x : inputs)
+        {
+          n_inputs += x[i];
+          ss << x[i] << " ";
+        }
+      string s = ss.str();
+      s.pop_back();
+      s += ")";
+      process_line(n_inputs, "Input tuples", file, print_verbose, total_cost, reading_field, s);
+
+      for (map<DataTag, long long>::const_iterator it = extended[i].begin();
+          it != extended[i].end(); it++)
+        {
+          cerr.fill(' ');
+          cerr << setw(27) << it->second << " " << setw(14) << it->first.get_string() << endl;
+        }
+    }
+
+  if (total_cost > 0)
+    cerr << "Total cost: " << total_cost << endl;
+}
+
+void DataPositions::process_line(long long items_used, const char* name,
+    ifstream& file, bool print_verbose, double& total_cost,
+    bool& reading_field, string suffix) const
+{
+  double cost_per_item = 0;
+  if (reading_field)
+    file >> cost_per_item;
+  if (cost_per_item < 0)
+    {
+      reading_field = false;
+      cost_per_item = 0;
+    }
+  double cost = items_used * cost_per_item;
+  total_cost += cost;
+  cerr.fill(' ');
+  if (items_used)
+    {
+      cerr << "    ";
+      if (print_verbose)
+        cerr << setw(10) << cost << " = ";
+      cerr << setw(10) << items_used << " " << setw(14)
+                      << name;
+      if (print_verbose)
+        cerr << " @ " << setw(11) << cost_per_item;
+      cerr << suffix << endl;
+    }
+}
diff --git a/Processor/Data_Files.h b/Processor/Data_Files.h
index 019d82a88..b8a5dd28e 100644
--- a/Processor/Data_Files.h
+++ b/Processor/Data_Files.h
@@ -42,9 +42,14 @@ class DataTag
   }
 };
 
-struct DataPositions
+class DataPositions
 {
-  static const char* dtype_names[N_DTYPE];
+  void process_line(long long items_used, const char* name, ifstream& file,
+      bool print_verbose, double& total_cost, bool& reading_field,
+      string suffix = "") const;
+
+public:
+  static const char* dtype_names[];
   static const char* field_names[N_DATA_FIELD_TYPE];
   static const int tuple_size[N_DTYPE];
 
@@ -53,7 +58,9 @@ struct DataPositions
   map<DataTag, long long> extended[N_DATA_FIELD_TYPE];
 
   DataPositions(int num_players = 0) { set_num_players(num_players); }
+  void reset() { *this = DataPositions(inputs.size()); }
   void set_num_players(int num_players);
+  int num_players() { return inputs.size(); }
   void increase(const DataPositions& delta);
   void print_cost() const;
 };
@@ -65,12 +72,20 @@ template<class sint, class sgf2n> class Machine;
 template<class T>
 class Preprocessing
 {
+  DataPositions& usage;
+
+  void count(Dtype dtype) { usage.files[T::field_type()][dtype]++; }
+  void count(DataTag tag, int n = 1) { usage.extended[T::field_type()][tag] += n; }
+  void count_input(int player) { usage.inputs[player][T::field_type()]++; }
+
 public:
   template<class U, class V>
   static Preprocessing<T>* get_new(Machine<U, V>& machine, DataPositions& usage,
       SubProcessor<T>* proc);
-  static Preprocessing<T>* get_live_prep(SubProcessor<T>* proc);
+  static Preprocessing<T>* get_live_prep(SubProcessor<T>* proc,
+      DataPositions& usage);
 
+  Preprocessing(DataPositions& usage) : usage(usage) {}
   virtual ~Preprocessing() {}
 
   virtual void set_protocol(typename T::Protocol& protocol) = 0;
@@ -79,13 +94,21 @@ class Preprocessing
   virtual void prune() {}
   virtual void purge() {}
 
-  virtual void get(Dtype dtype, T* a);
-  virtual void get_three(Dtype dtype, T& a, T& b, T& c) = 0;
-  virtual void get_two(Dtype dtype, T& a, T& b) = 0;
-  virtual void get_one(Dtype dtype, T& a) = 0;
-  virtual void get_input(T& a, typename T::clear& x, int i) = 0;
-  virtual void get(vector<T>& S, DataTag tag, const vector<int>& regs,
+  virtual size_t data_sent() { return 0; }
+
+  virtual void get_three_no_count(Dtype dtype, T& a, T& b, T& c) = 0;
+  virtual void get_two_no_count(Dtype dtype, T& a, T& b) = 0;
+  virtual void get_one_no_count(Dtype dtype, T& a) = 0;
+  virtual void get_input_no_count(T& a, typename T::open_type& x, int i) = 0;
+  virtual void get_no_count(vector<T>& S, DataTag tag, const vector<int>& regs,
       int vector_size) = 0;
+
+  void get(Dtype dtype, T* a);
+  void get_three(Dtype dtype, T& a, T& b, T& c);
+  void get_two(Dtype dtype, T& a, T& b);
+  void get_one(Dtype dtype, T& a);
+  void get_input(T& a, typename T::open_type& x, int i);
+  void get(vector<T>& S, DataTag tag, const vector<int>& regs, int vector_size);
 };
 
 template<class T>
@@ -107,8 +130,6 @@ class Sub_Data_Files : public Preprocessing<T>
 
   const string prep_data_dir;
 
-  DataPositions& usage;
-
 public:
   static string get_suffix(int thread_num);
 
@@ -130,32 +151,28 @@ class Sub_Data_Files : public Preprocessing<T>
   bool eof(Dtype dtype);
   bool input_eof(int player);
 
-  void get(Dtype dtype, T* a);
+  void get_no_count(Dtype dtype, T* a);
 
-  void get_three(Dtype dtype, T& a, T& b, T& c)
+  void get_three_no_count(Dtype dtype, T& a, T& b, T& c)
   {
-    usage.files[T::field_type()][dtype]++;
     buffers[dtype].input(a);
     buffers[dtype].input(b);
     buffers[dtype].input(c);
   }
 
-  void get_two(Dtype dtype, T& a, T& b)
+  void get_two_no_count(Dtype dtype, T& a, T& b)
   {
-    usage.files[T::field_type()][dtype]++;
     buffers[dtype].input(a);
     buffers[dtype].input(b);
   }
 
-  void get_one(Dtype dtype, T& a)
+  void get_one_no_count(Dtype dtype, T& a)
   {
-    usage.files[T::field_type()][dtype]++;
     buffers[dtype].input(a);
   }
 
-  void get_input(T& a,typename T::clear& x,int i)
+  void get_input_no_count(T& a,typename T::open_type& x,int i)
   {
-    usage.inputs[i][T::field_type()]++;
     RefInputTuple<T> tuple(a, x);
     if (i==my_num)
       my_input_buffers.input(tuple);
@@ -164,7 +181,7 @@ class Sub_Data_Files : public Preprocessing<T>
   }
 
   void setup_extended(const DataTag& tag, int tuple_size = 0);
-  void get(vector<T>& S, DataTag tag, const vector<int>& regs, int vector_size);
+  void get_no_count(vector<T>& S, DataTag tag, const vector<int>& regs, int vector_size);
 };
 
 template<class sint, class sgf2n>
@@ -191,6 +208,10 @@ class Data_Files
   {
     return usage;
   }
+
+  void reset_usage() { usage.reset(); }
+
+  size_t data_sent() { return DataFp.data_sent() + DataF2.data_sent(); }
 };
 
 template<class T> inline
@@ -207,9 +228,8 @@ bool Sub_Data_Files<T>::input_eof(int player)
 }
 
 template<class T>
-inline void Sub_Data_Files<T>::get(Dtype dtype, T* a)
+inline void Sub_Data_Files<T>::get_no_count(Dtype dtype, T* a)
 {
-  usage.files[T::field_type()][dtype]++;
   for (int i = 0; i < DataPositions::tuple_size[dtype]; i++)
     buffers[dtype].input(a[i]);
 }
@@ -234,4 +254,47 @@ inline void Preprocessing<T>::get(Dtype dtype, T* a)
   }
 }
 
+template<class T>
+inline void Preprocessing<T>::get_three(Dtype dtype, T& a, T& b, T& c)
+{
+  count(dtype);
+  get_three_no_count(dtype, a, b, c);
+}
+
+template<class T>
+inline void Preprocessing<T>::get_two(Dtype dtype, T& a, T& b)
+{
+  count(dtype);
+  get_two_no_count(dtype, a, b);
+}
+
+template<class T>
+inline void Preprocessing<T>::get_one(Dtype dtype, T& a)
+{
+  count(dtype);
+  get_one_no_count(dtype, a);
+}
+
+template<class T>
+inline void Preprocessing<T>::get_input(T& a, typename T::open_type& x, int i)
+{
+  count_input(i);
+  get_input_no_count(a, x, i);
+}
+
+template<class T>
+inline void Preprocessing<T>::get(vector<T>& S, DataTag tag,
+    const vector<int>& regs, int vector_size)
+{
+  count(tag, vector_size);
+  get_no_count(S, tag, regs, vector_size);
+}
+
+template<class sint, class sgf2n>
+inline void Data_Files<sint, sgf2n>::purge()
+{
+  DataFp.purge();
+  DataF2.purge();
+}
+
 #endif
diff --git a/Processor/Data_Files.hpp b/Processor/Data_Files.hpp
index 9e4f1328e..749d32b69 100644
--- a/Processor/Data_Files.hpp
+++ b/Processor/Data_Files.hpp
@@ -16,22 +16,16 @@
 //#include "Processor/Shamir.hpp"
 //#include "Auth/MaliciousShamirMC.hpp"
 
-#include <iomanip>
-#include <numeric>
-
-const char* DataPositions::field_names[] = { "int", "gf2n", "bit" };
-
-const int DataPositions::tuple_size[N_DTYPE] = { 3, 2, 1, 2, 3, 3 };
-
 template<class T>
 Lock Sub_Data_Files<T>::tuple_lengths_lock;
 template<class T>
 map<DataTag, int> Sub_Data_Files<T>::tuple_lengths;
 
 template<class T>
-Preprocessing<T>* Preprocessing<T>::get_live_prep(SubProcessor<T>* proc)
+Preprocessing<T>* Preprocessing<T>::get_live_prep(SubProcessor<T>* proc,
+    DataPositions& usage)
 {
-  (void) proc;
+  (void) proc, (void) usage;
   throw not_implemented();
 }
 
@@ -42,75 +36,11 @@ Preprocessing<T>* Preprocessing<T>::get_new(
     DataPositions& usage, SubProcessor<T>* proc)
 {
   if (machine.live_prep)
-    return get_live_prep(proc);
+    return get_live_prep(proc, usage);
   else
     return new Sub_Data_Files<T>(machine.get_N(), machine.prep_dir_prefix, usage);
 }
 
-void DataPositions::set_num_players(int num_players)
-{
-  files.resize(N_DATA_FIELD_TYPE, vector<long long>(N_DTYPE));
-  inputs.resize(num_players, vector<long long>(N_DATA_FIELD_TYPE));
-}
-
-void DataPositions::increase(const DataPositions& delta)
-{
-  if (inputs.size() != delta.inputs.size())
-    throw invalid_length();
-  for (unsigned int field_type = 0; field_type < N_DATA_FIELD_TYPE; field_type++)
-    {
-      for (unsigned int dtype = 0; dtype < N_DTYPE; dtype++)
-        files[field_type][dtype] += delta.files[field_type][dtype];
-      for (unsigned int j = 0; j < inputs.size(); j++)
-        inputs[j][field_type] += delta.inputs[j][field_type];
-
-      map<DataTag, long long>::const_iterator it;
-      const map<DataTag, long long>& delta_ext = delta.extended[field_type];
-      for (it = delta_ext.begin(); it != delta_ext.end(); it++)
-          extended[field_type][it->first] += it->second;
-    }
-}
-
-void DataPositions::print_cost() const
-{
-  ifstream file("cost");
-  double total_cost = 0;
-  for (int i = 0; i < N_DATA_FIELD_TYPE; i++)
-    {
-      if (accumulate(files[i].begin(), files[i].end(), 0) > 0)
-        cerr << "  Type " << field_names[i] << endl;
-      bool reading_field = true;
-      for (int j = 0; j < N_DTYPE; j++)
-        {
-          double cost_per_item = 0;
-          if (reading_field)
-            file >> cost_per_item;
-          if (cost_per_item < 0)
-            {
-              reading_field = false;
-              cost_per_item = 0;
-            }
-          long long items_used = files[i][j];
-          double cost = items_used * cost_per_item;
-          total_cost += cost;
-          cerr.fill(' ');
-          if (items_used)
-              cerr << "    " << setw(10) << cost << " = " << setw(10) << items_used
-                  << " " << setw(14) << dtype_names[j] << " @ " << setw(11)
-                  << cost_per_item << endl;
-        }
-        for (map<DataTag, long long>::const_iterator it = extended[i].begin();
-                it != extended[i].end(); it++)
-        {
-          cerr.fill(' ');
-          cerr << setw(27) << it->second << " " << setw(14) << it->first.get_string() << endl;
-        }
-    }
-
-  if (total_cost > 0)
-    cerr << "Total cost: " << total_cost << endl;
-}
-
 
 template<class T>
 int Sub_Data_Files<T>::tuple_length(int dtype)
@@ -135,10 +65,12 @@ string Sub_Data_Files<T>::get_suffix(int thread_num)
 template<class T>
 Sub_Data_Files<T>::Sub_Data_Files(int my_num, int num_players,
     const string& prep_data_dir, DataPositions& usage, int thread_num) :
-    my_num(my_num), num_players(num_players), prep_data_dir(prep_data_dir),
-    usage(usage)
+    Preprocessing<T>(usage),
+    my_num(my_num), num_players(num_players), prep_data_dir(prep_data_dir)
 {
+#ifdef DEBUG_FILES
   cerr << "Setting up Data_Files in: " << prep_data_dir << endl;
+#endif
   char filename[1024];
   string suffix = get_suffix(thread_num);
   for (int dtype = 0; dtype < N_DTYPE; dtype++)
@@ -165,7 +97,9 @@ Sub_Data_Files<T>::Sub_Data_Files(int my_num, int num_players,
             T::size());
     }
 
+#ifdef DEBUG_FILES
   cerr << "done\n";
+#endif
 }
 
 template<class sint, class sgf2n>
@@ -264,13 +198,6 @@ void Sub_Data_Files<T>::purge()
     it.second.purge();
 }
 
-template<class sint, class sgf2n>
-void Data_Files<sint, sgf2n>::purge()
-{
-  DataFp.purge();
-  DataF2.purge();
-}
-
 template<class T>
 void Sub_Data_Files<T>::setup_extended(const DataTag& tag, int tuple_size)
 {
@@ -302,9 +229,8 @@ void Sub_Data_Files<T>::setup_extended(const DataTag& tag, int tuple_size)
 }
 
 template<class T>
-void Sub_Data_Files<T>::get(vector<T>& S, DataTag tag, const vector<int>& regs, int vector_size)
+void Sub_Data_Files<T>::get_no_count(vector<T>& S, DataTag tag, const vector<int>& regs, int vector_size)
 {
-  usage.extended[T::field_type()][tag] += vector_size;
   setup_extended(tag, regs.size());
   for (int j = 0; j < vector_size; j++)
     for (unsigned int i = 0; i < regs.size(); i++)
diff --git a/Processor/DummyProtocol.h b/Processor/DummyProtocol.h
index bf38a542e..ba8de7995 100644
--- a/Processor/DummyProtocol.h
+++ b/Processor/DummyProtocol.h
@@ -67,4 +67,24 @@ class NotImplementedInput
     }
 };
 
+class NotImplementedOutput
+{
+public:
+    template<class T>
+    NotImplementedOutput(SubProcessor<T>& proc)
+    {
+        (void) proc;
+    }
+
+    void start(int player, int target, int source)
+    {
+        (void) player, (void) target, (void) source;
+        throw not_implemented();
+    }
+    void stop(int player, int source)
+    {
+        (void) player, (void) source;
+    }
+};
+
 #endif /* PROCESSOR_DUMMYPROTOCOL_H_ */
diff --git a/Processor/Input.h b/Processor/Input.h
index cd3e052d6..a03fd7165 100644
--- a/Processor/Input.h
+++ b/Processor/Input.h
@@ -12,6 +12,8 @@ using namespace std;
 #include "Math/Share.h"
 #include "Tools/Buffer.h"
 #include "Tools/time-func.h"
+#include "Tools/PointerVector.h"
+#include "Auth/MAC_Check.h"
 
 class ArithmeticProcessor;
 
@@ -32,23 +34,32 @@ class InputBase
 };
 
 template<class T>
-class Input : public InputBase<Share<T>>
+class Input : public InputBase<T>
 {
-    SubProcessor<Share<T>>& proc;
-    MAC_Check<T>& MC;
-    vector< vector< Share<T> > > shares;
+    typedef typename T::open_type open_type;
+    typedef typename T::clear clear;
+    typedef typename T::MAC_Check MAC_Check;
+
+    SubProcessor<T>& proc;
+    MAC_Check& MC;
+    vector< PointerVector<T> > shares;
     octetStream o;
+    open_type rr, t, xi;
 
-    void adjust_mac(Share<T>& share, T& value);
+    void adjust_mac(T& share, const open_type& value);
 
 public:
-    Input(SubProcessor<Share<T>>& proc, MAC_Check<T>& mc);
+    Input(SubProcessor<T>& proc, MAC_Check& mc);
+    Input(SubProcessor<T>* proc, Player& P);
 
     void reset(int player);
-    void add_mine(const T& input);
+    void add_mine(const clear& input);
     void add_other(int player);
     void send_mine();
 
+    T finalize_mine();
+    void finalize_other(int player, T& target, octetStream& o);
+
     void start(int player, int n_inputs);
     void stop(int player, const vector<int>& targets);
 };
diff --git a/Processor/Input.hpp b/Processor/Input.hpp
index 0eb98f7ae..ec9c07b92 100644
--- a/Processor/Input.hpp
+++ b/Processor/Input.hpp
@@ -16,22 +16,32 @@ InputBase<T>::InputBase(ArithmeticProcessor* proc) :
 }
 
 template<class T>
-Input<T>::Input(SubProcessor<Share<T>>& proc, MAC_Check<T>& mc) :
-        InputBase<Share<T>>(&proc.Proc), proc(proc), MC(mc), shares(proc.P.num_players())
+Input<T>::Input(SubProcessor<T>& proc, MAC_Check& mc) :
+        InputBase<T>(&proc.Proc), proc(proc), MC(mc), shares(proc.P.num_players())
 {
 }
 
+template<class T>
+Input<T>::Input(SubProcessor<T>* proc, Player& P) :
+        InputBase<T>(&proc->Proc), proc(*proc), MC(proc->MC), shares(
+                P.num_players())
+{
+    assert (proc != 0);
+}
+
 template<class T>
 InputBase<T>::~InputBase()
 {
+#ifdef VERBOSE
     if (timer.elapsed() > 0)
         cerr << T::type_string() << " inputs: " << timer.elapsed() << endl;
+#endif
 }
 
 template<class T>
-void Input<T>::adjust_mac(Share<T>& share, T& value)
+void Input<T>::adjust_mac(T& share, const open_type& value)
 {
-    T tmp;
+    typename T::mac_type tmp;
     tmp.mul(MC.get_alphai(), value);
     tmp.add(share.get_mac(),tmp);
     share.set_mac(tmp);
@@ -46,15 +56,13 @@ void Input<T>::reset(int player)
 }
 
 template<class T>
-void Input<T>::add_mine(const T& input)
+void Input<T>::add_mine(const clear& input)
 {
     int player = proc.P.my_num();
-    T rr, t = input;
     shares[player].push_back({});
-    Share<T>& share = shares[player].back();
+    T& share = shares[player].back();
     proc.DataF.get_input(share, rr, player);
-    T xi;
-    t.sub(t, rr);
+    t.sub(input, rr);
     t.pack(o);
     xi.add(t, share.get_share());
     share.set_share(xi);
@@ -65,7 +73,7 @@ void Input<T>::add_mine(const T& input)
 template<class T>
 void Input<T>::add_other(int player)
 {
-    T t;
+    open_type t;
     shares[player].push_back({});
     proc.DataF.get_input(shares[player].back(), t, player);
 }
@@ -84,7 +92,7 @@ void Input<T>::start(int player, int n_inputs)
     {
         for (int i = 0; i < n_inputs; i++)
         {
-            T t;
+            clear t;
             try
             {
                 this->buffer.input(t);
@@ -107,25 +115,37 @@ void Input<T>::start(int player, int n_inputs)
 template<class T>
 void Input<T>::stop(int player, const vector<int>& targets)
 {
-    for (unsigned int i = 0; i < targets.size(); i++)
-        proc.get_S_ref(targets[i]) = shares[player][i];
-
-    if (proc.P.my_num() != player)
+    if (proc.P.my_num() == player)
+        for (unsigned int i = 0; i < targets.size(); i++)
+            proc.get_S_ref(targets[i]) = finalize_mine();
+    else
     {
-        T t;
         octetStream o;
         this->timer.start();
         proc.P.receive_player(player, o, true);
         this->timer.stop();
         for (unsigned int i = 0; i < targets.size(); i++)
         {
-            Share<T>& share = proc.get_S_ref(targets[i]);
-            t.unpack(o);
-            adjust_mac(share, t);
+            finalize_other(player, proc.get_S_ref(targets[i]), o);
         }
     }
 }
 
+template<class T>
+T Input<T>::finalize_mine()
+{
+    return shares[proc.P.my_num()].next();
+}
+
+template<class T>
+void Input<T>::finalize_other(int player, T& target,
+        octetStream& o)
+{
+    target = shares[player].next();
+    t.unpack(o);
+    adjust_mac(target, t);
+}
+
 template<class T>
 void InputBase<T>::input(SubProcessor<T>& Proc,
         const vector<int>& args)
diff --git a/Processor/InputTuple.h b/Processor/InputTuple.h
index d81dc8a10..e7a1c9cef 100644
--- a/Processor/InputTuple.h
+++ b/Processor/InputTuple.h
@@ -11,14 +11,21 @@ template <class T>
 struct InputTuple
 {
   T share;
-  typename T::clear value;
+  typename T::open_type value;
 
   static int size()
-    { return T::clear::size() + T::size(); }
+    { return T::open_type::size() + T::size(); }
 
   static string type_string()
     { return T::type_string(); }
 
+  InputTuple() {}
+
+  InputTuple(const T& share, const typename T::open_type& value) : share(share), value(value) {}
+
+  template<class U>
+  InputTuple(const InputTuple<U>& other) : share(other.share), value(other.value) {}
+
   void assign(const char* buffer)
     {
       share.assign(buffer);
@@ -31,8 +38,8 @@ template <class T>
 struct RefInputTuple
 {
   T& share;
-  typename T::clear& value;
-  RefInputTuple(T& share, typename T::clear& value) : share(share), value(value) {}
+  typename T::open_type& value;
+  RefInputTuple(T& share, typename T::open_type& value) : share(share), value(value) {}
   void operator=(InputTuple<T>& other) { share = other.share; value = other.value; }
 };
 
diff --git a/Processor/Instruction.h b/Processor/Instruction.h
index 35d2fc01d..9783232dc 100644
--- a/Processor/Instruction.h
+++ b/Processor/Instruction.h
@@ -283,12 +283,7 @@ struct TempVars {
   typename sint::clear ansp;
   sint Sansp;
   bigint aa,aa2;
-  // INPUT and LDSI
-  typename sint::value_type rrp,tp,tmpp;
-  typename sint::clear xip;
-  // GINPUT and GLDSI
-  gf2n rr2,t2,tmp2;
-  gf2n xi2;
+  typename sint::open_type rrp, xip;
   // assign without allocation
   void assign_ansp(int n)
   {
@@ -320,7 +315,7 @@ class BaseInstruction
   unsigned get_max_reg(int reg_type) const;
 };
 
-struct DataPositions;
+class DataPositions;
 
 class Instruction : public BaseInstruction
 {
diff --git a/Processor/Instruction.hpp b/Processor/Instruction.hpp
index 7d98b3a5b..d6f310d9d 100644
--- a/Processor/Instruction.hpp
+++ b/Processor/Instruction.hpp
@@ -29,9 +29,6 @@
 
 #include "Tools/callgrind.h"
 
-// broken
-#undef DEBUG
-
 // Convert modp to signed bigint of a given bit length
 inline
 void to_signed_bigint(bigint& bi, const gfp& x, int len)
@@ -565,7 +562,6 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
   auto& Procp = Proc.Procp;
   auto& Proc2 = Proc.Proc2;
 
-#ifndef DEBUG
   // optimize some instructions
   switch (opcode)
   {
@@ -627,7 +623,6 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
         Procp.DataF.get_one(DATA_BIT, Proc.get_Sp_ref(r[0] + i));
       return;
   }
-#endif
 
   int r[3] = {this->r[0], this->r[1], this->r[2]};
   int n = this->n;
@@ -763,148 +758,58 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
         Proc.set_arg(Proc.read_Ci(r[0]));
         break;
       case ADDC:
-	#ifdef DEBUG
-           Proc.temp.ansp.add(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).add(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GADDC:
-	#ifdef DEBUG
-           ans2.add(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).add(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case ADDS:
-	#ifdef DEBUG
-           Sansp.add(Proc.read_Sp(r[1]),Proc.read_Sp(r[2]));
-           Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).add(Proc.read_Sp(r[1]),Proc.read_Sp(r[2]));
-        #endif
         break;
       case GADDS:
-	#ifdef DEBUG
-           Sans2.add(Proc.read_S2(r[1]),Proc.read_S2(r[2]));
-           Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).add(Proc.read_S2(r[1]),Proc.read_S2(r[2]));
-        #endif
         break;
       case ADDM:
-        #ifdef DEBUG
-           Sansp.add(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).add(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-        #endif
         break;
       case GADDM:
-        #ifdef DEBUG
-           Sans2.add(Proc.read_S2(r[1]),Proc.read_C2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).add(Proc.read_S2(r[1]),Proc.read_C2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-        #endif
         break;
       case SUBC:
-	#ifdef DEBUG
-          ansp.sub(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-          Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
           Proc.get_Cp_ref(r[0]).sub(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GSUBC:
-	#ifdef DEBUG
-          Proc.temp.ans2.sub(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-          Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
           Proc.get_C2_ref(r[0]).sub(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case SUBS:
-	#ifdef DEBUG
-           Sansp.sub(Proc.read_Sp(r[1]),Proc.read_Sp(r[2]));
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).sub(Proc.read_Sp(r[1]),Proc.read_Sp(r[2]));
-	#endif
         break;
       case GSUBS:
-	#ifdef DEBUG
-           Sans2.sub(Proc.read_S2(r[1]),Proc.read_S2(r[2]));
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).sub(Proc.read_S2(r[1]),Proc.read_S2(r[2]));
-	#endif
         break;
       case SUBML:
-	#ifdef DEBUG
-           Sansp.sub(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).sub(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-        #endif
         break;
       case GSUBML:
-	#ifdef DEBUG
-           Sans2.sub(Proc.read_S2(r[1]),Proc.read_C2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).sub(Proc.read_S2(r[1]),Proc.read_C2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-        #endif
         break;
       case SUBMR:
-        #ifdef DEBUG
-           Sansp.sub(Proc.read_Cp(r[1]),Proc.read_Sp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).sub(Proc.read_Cp(r[1]),Proc.read_Sp(r[2]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	#endif
         break;
       case GSUBMR:
-        #ifdef DEBUG
-           Sans2.sub(Proc.read_C2(r[1]),Proc.read_S2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).sub(Proc.read_C2(r[1]),Proc.read_S2(r[2]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	#endif
         break;
       case MULC:
-	#ifdef DEBUG
-          ansp.mul(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-          Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
           Proc.get_Cp_ref(r[0]).mul(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GMULC:
-	#ifdef DEBUG
-          Proc.temp.ans2.mul(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-          Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
           Proc.get_C2_ref(r[0]).mul(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case MULM:
-	#ifdef DEBUG
-           Sansp.mul(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]));
-	   Proc.write_Sp(r[0],Sansp);
-	#else
            Proc.get_Sp_ref(r[0]).mul(Proc.read_Sp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GMULM:
-	#ifdef DEBUG
-           Sans2.mul(Proc.read_S2(r[1]),Proc.read_C2(r[2]));
-	   Proc.write_S2(r[0],Sans2);
-	#else
            Proc.get_S2_ref(r[0]).mul(Proc.read_S2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case DIVC:
         if (Proc.read_Cp(r[2]).is_zero())
@@ -976,164 +881,74 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
         Proc.write_Cp(r[0],Proc.temp.ansp);
         break;
       case GMULBITC:
-  #ifdef DEBUG
-          Proc.temp.ans2.mul_by_bit(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-          Proc.write_C2(r[0],Proc.temp.ans2);
-  #else
           Proc.get_C2_ref(r[0]).mul_by_bit(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-  #endif
         break;
       case GMULBITM:
-  #ifdef DEBUG
-          Sans2.mul_by_bit(Proc.read_S2(r[1]),Proc.read_C2(r[2]));
-          Proc.write_S2(r[0],Sans2);
-  #else
           Proc.get_S2_ref(r[0]).mul_by_bit(Proc.read_S2(r[1]),Proc.read_C2(r[2]));
-  #endif
         break;
       case ADDCI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Proc.temp.ansp.add(Proc.temp.ansp,Proc.read_Cp(r[1]));
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).add(Proc.temp.ansp,Proc.read_Cp(r[1]));
-	#endif
         break;
       case GADDCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.add(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).add(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       case ADDSI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Sansp.add(Proc.read_Sp(r[1]),Proc.temp.ansp,Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).add(Proc.read_Sp(r[1]),Proc.temp.ansp,Proc.P.my_num(),Proc.MCp.get_alphai());
-	#endif
         break;
       case GADDSI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Sans2.add(Proc.read_S2(r[1]),Proc.temp.ans2,Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).add(Proc.read_S2(r[1]),Proc.temp.ans2,Proc.P.my_num(),Proc.MC2.get_alphai());
-	#endif
         break;
       case SUBCI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Proc.temp.ansp.sub(Proc.read_Cp(r[1]),Proc.temp.ansp);
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).sub(Proc.read_Cp(r[1]),Proc.temp.ansp);
-	#endif
         break;
       case GSUBCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.sub(Proc.read_C2(r[1]),Proc.temp.ans2);
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).sub(Proc.read_C2(r[1]),Proc.temp.ans2);
-	#endif
         break;
       case SUBSI:
         Proc.temp.assign_ansp(n);
-  	#ifdef DEBUG
-           Sansp.sub(Proc.read_Sp(r[1]),Proc.temp.ansp,Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-        #else
            Proc.get_Sp_ref(r[0]).sub(Proc.read_Sp(r[1]),Proc.temp.ansp,Proc.P.my_num(),Proc.MCp.get_alphai());
-        #endif
         break;
       case GSUBSI:
         Proc.temp.ans2.assign(n);
-  	#ifdef DEBUG
-           Sans2.sub(Proc.read_S2(r[1]),Proc.temp.ans2,Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-        #else
            Proc.get_S2_ref(r[0]).sub(Proc.read_S2(r[1]),Proc.temp.ans2,Proc.P.my_num(),Proc.MC2.get_alphai());
-        #endif
         break;
       case SUBCFI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Proc.temp.ansp.sub(Proc.temp.ansp,Proc.read_Cp(r[1]));
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).sub(Proc.temp.ansp,Proc.read_Cp(r[1]));
-	#endif
         break;
       case GSUBCFI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.sub(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).sub(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       case SUBSFI:
         Proc.temp.assign_ansp(n);
- 	#ifdef DEBUG
-           Sansp.sub(Proc.temp.ansp,Proc.read_Sp(r[1]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	   Proc.write_Sp(r[0],Sansp);
-	#else
            Proc.get_Sp_ref(r[0]).sub(Proc.temp.ansp,Proc.read_Sp(r[1]),Proc.P.my_num(),Proc.MCp.get_alphai());
-	#endif
         break;
       case GSUBSFI:
         Proc.temp.ans2.assign(n);
- 	#ifdef DEBUG
-           Sans2.sub(Proc.temp.ans2,Proc.read_S2(r[1]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	   Proc.write_S2(r[0],Sans2);
-	#else
            Proc.get_S2_ref(r[0]).sub(Proc.temp.ans2,Proc.read_S2(r[1]),Proc.P.my_num(),Proc.MC2.get_alphai());
-	#endif
         break;
       case MULCI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Proc.temp.ansp.mul(Proc.temp.ansp,Proc.read_Cp(r[1]));
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).mul(Proc.temp.ansp,Proc.read_Cp(r[1]));
-	#endif
         break;
       case GMULCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.mul(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).mul(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       case MULSI:
         Proc.temp.assign_ansp(n);
-	#ifdef DEBUG
-           Sansp.mul(Proc.read_Sp(r[1]),Proc.temp.ansp);
-	   Proc.write_Sp(r[0],Sansp);
-	#else
            Proc.get_Sp_ref(r[0]).mul(Proc.read_Sp(r[1]),Proc.temp.ansp);
-	#endif
         break;
       case GMULSI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Sans2.mul(Proc.read_S2(r[1]),Proc.temp.ans2);
-	   Proc.write_S2(r[0],Sans2);
-	#else
            Proc.get_S2_ref(r[0]).mul(Proc.read_S2(r[1]),Proc.temp.ans2);
-	#endif
         break;
       case TRIPLE:
         Procp.DataF.get_three(DATA_TRIPLE, Proc.get_Sp_ref(r[0]),Proc.get_Sp_ref(r[1]),Proc.get_Sp_ref(r[2]));
@@ -1194,106 +1009,46 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
         Proc.Proc2.input.stop(n,start);
         break;
       case ANDC:
-	#ifdef DEBUG
-           ansp.AND(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).AND(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GANDC:
-	#ifdef DEBUG
-           Proc.temp.ans2.AND(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).AND(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case XORC:
-	#ifdef DEBUG
-           Proc.temp.ansp.XOR(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).XOR(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GXORC:
-	#ifdef DEBUG
-           Proc.temp.ans2.XOR(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).XOR(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case ORC:
-	#ifdef DEBUG
-           Proc.temp.ansp.OR(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).OR(Proc.read_Cp(r[1]),Proc.read_Cp(r[2]));
-	#endif
         break;
       case GORC:
-	#ifdef DEBUG
-           Proc.temp.ans2.OR(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).OR(Proc.read_C2(r[1]),Proc.read_C2(r[2]));
-	#endif
         break;
       case ANDCI:
         Proc.temp.aa=n;
-	#ifdef DEBUG
-           Proc.temp.ansp.AND(Proc.read_Cp(r[1]),Proc.temp.aa);
-           Proc.write_Cp(r[0],ansp);
-	#else
            Proc.get_Cp_ref(r[0]).AND(Proc.read_Cp(r[1]),Proc.temp.aa);
-	#endif
         break;
       case GANDCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.AND(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).AND(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       case XORCI:
         Proc.temp.aa=n;
-	#ifdef DEBUG
-           ansp.XOR(Proc.read_Cp(r[1]),Proc.temp.aa);
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).XOR(Proc.read_Cp(r[1]),Proc.temp.aa);
-	#endif
         break;
       case GXORCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.XOR(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).XOR(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       case ORCI:
         Proc.temp.aa=n;
-	#ifdef DEBUG
-           Proc.temp.ansp.OR(Proc.read_Cp(r[1]),Proc.temp.aa);
-           Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
 	   Proc.get_Cp_ref(r[0]).OR(Proc.read_Cp(r[1]),Proc.temp.aa);
-	#endif
         break;
       case GORCI:
         Proc.temp.ans2.assign(n);
-	#ifdef DEBUG
-           Proc.temp.ans2.OR(Proc.temp.ans2,Proc.read_C2(r[1]));
-           Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
 	   Proc.get_C2_ref(r[0]).OR(Proc.temp.ans2,Proc.read_C2(r[1]));
-	#endif
         break;
       // Note: Fp version has different semantics for NOTC than GNOTC
       case NOTC:
@@ -1306,66 +1061,31 @@ inline void Instruction::execute(Processor<sint, sgf2n>& Proc) const
         Proc.write_Cp(r[0],Proc.temp.ansp);
         break;
       case GNOTC:
-	#ifdef DEBUG
-           Proc.temp.ans2.NOT(Proc.read_C2(r[1]));
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).NOT(Proc.read_C2(r[1]));
-	#endif
         break;
       case SHLC:
         to_bigint(Proc.temp.aa,Proc.read_Cp(r[2]));
         if (Proc.temp.aa > 63)
           throw not_implemented();
-	#ifdef DEBUG
-           Proc.temp.ansp.SHL(Proc.read_Cp(r[1]),Proc.temp.aa);
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).SHL(Proc.read_Cp(r[1]),Proc.temp.aa);
-	#endif
         break;
       case SHRC:
         to_bigint(Proc.temp.aa,Proc.read_Cp(r[2]));
         if (Proc.temp.aa > 63)
           throw not_implemented();
-	#ifdef DEBUG
-           Proc.temp.ansp.SHR(Proc.read_Cp(r[1]),Proc.temp.aa);
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).SHR(Proc.read_Cp(r[1]),Proc.temp.aa);
-	#endif
         break;
       case SHLCI:
-	#ifdef DEBUG
-           Proc.temp.ansp.SHL(Proc.read_Cp(r[1]),Proc.temp.aa);
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).SHL(Proc.read_Cp(r[1]),n);
-	#endif
         break;
       case GSHLCI:
-	#ifdef DEBUG
-           Proc.temp.ans2.SHL(Proc.read_C2(r[1]),n);
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).SHL(Proc.read_C2(r[1]),n);
-	#endif
         break;
       case SHRCI:
-	#ifdef DEBUG
-           Proc.temp.ansp.SHR(Proc.read_Cp(r[1]),Proc.temp.aa);
-	   Proc.write_Cp(r[0],Proc.temp.ansp);
-	#else
            Proc.get_Cp_ref(r[0]).SHR(Proc.read_Cp(r[1]),n);
-	#endif
         break;
       case GSHRCI:
-	#ifdef DEBUG
-           Proc.temp.ans2.SHR(Proc.read_C2(r[1]),n);
-	   Proc.write_C2(r[0],Proc.temp.ans2);
-	#else
            Proc.get_C2_ref(r[0]).SHR(Proc.read_C2(r[1]),n);
-	#endif
         break;
       case GBITDEC:
         for (int j = 0; j < size; j++)
diff --git a/Processor/Machine.h b/Processor/Machine.h
index 6d84945d6..4167982fa 100644
--- a/Processor/Machine.h
+++ b/Processor/Machine.h
@@ -35,7 +35,7 @@ class Machine : public BaseMachine
 
   int my_number;
   Names& N;
-  typename sint::value_type alphapi;
+  typename sint::mac_key_type alphapi;
   gf2n alpha2i;
 
   // Keep record of used offline data
diff --git a/Processor/Machine.hpp b/Processor/Machine.hpp
index b2c78c668..fb24b6f46 100644
--- a/Processor/Machine.hpp
+++ b/Processor/Machine.hpp
@@ -17,6 +17,7 @@
 #include "Math/MaliciousRep3Share.h"
 #include "Math/ShamirShare.h"
 #include "Math/MaliciousShamirShare.h"
+#include "Tools/mkpath.h"
 
 #include <iostream>
 #include <vector>
@@ -43,7 +44,8 @@ Machine<sint, sgf2n>::Machine(int my_number, Names& playerNames,
 
   // Set up the fields
   prep_dir_prefix = get_prep_dir(N.num_players(), opts.lgp, lg2);
-  char filename[1024];
+  char filename[2048];
+  bool read_mac_keys = false;
 
   try
     {
@@ -68,22 +70,48 @@ Machine<sint, sgf2n>::Machine(int my_number, Names& playerNames,
 
       alphapi.input(inpf,true);
       alpha2i.input(inpf,true);
-      cerr << "MAC Key p = " << alphapi << endl;
-      cerr << "MAC Key 2 = " << alpha2i << endl;
       inpf.close();
+      read_mac_keys = true;
     }
   catch (file_error& e)
     {
+#ifdef VERBOSE
       cerr << "Field or MAC key setup failed, using defaults"
           << endl;
+#endif
       sint::clear::init_default(opts.lgp);
       gf2n::init_field(gf2n::default_degree());
+      // make directory for outputs if necessary
+      mkdir_p(PREP_DIR);
     }
   catch (end_of_file& e)
     {
       cerr << "End of file reading MAC key but maybe we don't need it" << endl;
     }
 
+  if (not read_mac_keys)
+    {
+#ifdef VERBOSE
+      cerr << "Generating fresh MAC keys" << endl;
+#endif
+      SeededPRNG G;
+      alphapi.randomize(G);
+      alpha2i.randomize(G);
+
+#ifdef DEBUG_MAC
+      alpha2i = my_number;
+      alphapi = my_number;
+      alphapi = alphapi << 60;
+#endif
+    }
+
+#ifdef DEBUG_MAC
+  cerr << "MAC Key p = " << alphapi << endl;
+  cerr << "MAC Key 2 = " << alpha2i << endl;
+#endif
+
+  gfp1::init_field(gfp::pr(), false);
+
   // Initialize the global memory
   if (memtype.compare("new")==0)
      {sprintf(filename, PREP_DIR "Player-Memory-P%d", my_number);
@@ -111,7 +139,23 @@ Machine<sint, sgf2n>::Machine(int my_number, Names& playerNames,
 
   load_schedule(progname_str);
 
+#ifdef VERBOSE
   progs[0].print_offline_cost();
+#endif
+
+  if (live_prep and (sint::needs_ot or sgf2n::needs_ot))
+  {
+    Player* P;
+    if (use_encryption)
+      P = new CryptoPlayer(playerNames, 0xF000);
+    else
+      P = new PlainPlayer(playerNames, 0xF000);
+    ot_setups.resize(nthreads);
+    for (int i = 0; i < nthreads; i++)
+      for (int j = 0; j < 3; j++)
+        ot_setups.at(i).push_back({ *P, true });
+    delete P;
+  }
 
   /* Set up the threads */
   tinfo.resize(nthreads);
@@ -143,7 +187,9 @@ Machine<sint, sgf2n>::Machine(int my_number, Names& playerNames,
     {
       while (!tinfo[i].ready)
         {
+#ifdef DEBUG_THREADS
           cerr << "Waiting for thread " << i << " to be ready" << endl;
+#endif
           pthread_cond_wait(&client_ready[i],&t_mutex[i]);
         }
       pthread_mutex_unlock(&t_mutex[i]);
@@ -273,7 +319,12 @@ void Machine<sint, sgf2n>::run()
       pthread_mutex_unlock(&t_mutex[i]);
     }
 
+  // reset to sum actual usage
+  pos.reset();
+
+#ifdef DEBUG_THREADS
   cerr << "Waiting for all clients to finish" << endl;
+#endif
   // Wait until all clients have signed out
   for (int i=0; i<nthreads; i++)
     {
@@ -285,16 +336,21 @@ void Machine<sint, sgf2n>::run()
       pthread_mutex_destroy(&t_mutex[i]);
       pthread_cond_destroy(&client_ready[i]);
       pthread_cond_destroy(&server_ready[i]);
+      pos.increase(tinfo[i].pos);
     }
   finish_timer.stop();
   
+#ifdef VERBOSE
   for (unsigned int i = 0; i < join_timer.size(); i++)
     cerr << "Join timer: " << i << " " << join_timer[i].elapsed() << endl;
   cerr << "Finish timer: " << finish_timer.elapsed() << endl;
   cerr << "Process timer: " << proc_timer.elapsed() << endl;
+#endif
+
   print_timers();
   cerr << "Data sent = " << data_sent / 1e6 << " MB" << endl;
 
+#ifdef VERBOSE
   if (opening_sum < N.num_players() && !direct)
     cerr << "Summed at most " << opening_sum << " shares at once with indirect communication" << endl;
   else
@@ -304,6 +360,7 @@ void Machine<sint, sgf2n>::run()
     cerr << "Send to at most " << max_broadcast << " parties at once" << endl;
   else
     cerr << "Full broadcast" << endl;
+#endif
 
   // Reduce memory size to speed up
   unsigned max_size = 1 << 20;
@@ -317,6 +374,7 @@ void Machine<sint, sgf2n>::run()
   outf << M2 << Mp << Mi;
   outf.close();
 
+#ifdef OLD_USAGE
   for (int dtype = 0; dtype < N_DTYPE; dtype++)
     {
       cerr << "Num " << DataPositions::dtype_names[dtype] << "\t=";
@@ -331,9 +389,12 @@ void Machine<sint, sgf2n>::run()
         cerr << " " << pos.inputs[i][field_type];
       cerr << endl;
     }
+#endif
 
-  cerr << "Total cost of program:" << endl;
+#ifdef VERBOSE
+  cerr << "Actual cost of program:" << endl;
   pos.print_cost();
+#endif
 
 #ifndef INSECURE
   Data_Files<sint, sgf2n> df(*this);
@@ -341,7 +402,9 @@ void Machine<sint, sgf2n>::run()
   df.prune();
 #endif
 
+#ifdef VERBOSE
   cerr << "End of prog" << endl;
+#endif
 }
 
 template<class sint, class sgf2n>
diff --git a/Processor/MaliciousRepPrep.h b/Processor/MaliciousRepPrep.h
index d91e8b723..c1a0d8759 100644
--- a/Processor/MaliciousRepPrep.h
+++ b/Processor/MaliciousRepPrep.h
@@ -18,6 +18,7 @@ class MaliciousRepPrep : public BufferPrep<T>
 {
     typedef BufferPrep<T> super;
 
+    DataPositions honest_usage;
     ReplicatedPrep<typename T::Honest> honest_prep;
     typename T::Honest::Protocol* replicated;
     typename T::MAC_Check MC;
@@ -37,7 +38,7 @@ class MaliciousRepPrep : public BufferPrep<T>
     void buffer_bits();
 
 public:
-    MaliciousRepPrep(SubProcessor<T>* proc);
+    MaliciousRepPrep(SubProcessor<T>* proc, DataPositions& usage);
     ~MaliciousRepPrep();
 
     void set_protocol(Beaver<T>& protocol);
diff --git a/Processor/MaliciousRepPrep.hpp b/Processor/MaliciousRepPrep.hpp
index e36d203d6..f81f9fa38 100644
--- a/Processor/MaliciousRepPrep.hpp
+++ b/Processor/MaliciousRepPrep.hpp
@@ -8,8 +8,9 @@
 //#include "Auth/MaliciousRepMC.hpp"
 
 template<class T>
-MaliciousRepPrep<T>::MaliciousRepPrep(SubProcessor<T>* proc) :
-        honest_prep(0), replicated(0)
+MaliciousRepPrep<T>::MaliciousRepPrep(SubProcessor<T>* proc, DataPositions& usage) :
+        BufferPrep<T>(usage), honest_usage(usage.num_players()),
+        honest_prep(0, honest_usage), replicated(0)
 {
     (void) proc;
 }
@@ -49,8 +50,8 @@ void MaliciousRepPrep<T>::buffer_triples()
     {
         T a, b, c;
         T f, g, h;
-        honest_prep.get_three(DATA_TRIPLE, a, b, c);
-        honest_prep.get_three(DATA_TRIPLE, f, g, h);
+        honest_prep.get_three_no_count(DATA_TRIPLE, a, b, c);
+        honest_prep.get_three_no_count(DATA_TRIPLE, f, g, h);
         triples.push_back({{a, b, c}});
         check_triples.push_back({{f, g, h}});
     }
diff --git a/Processor/MascotPrep.h b/Processor/MascotPrep.h
new file mode 100644
index 000000000..8a0a140cd
--- /dev/null
+++ b/Processor/MascotPrep.h
@@ -0,0 +1,45 @@
+/*
+ * MascotPrep.h
+ *
+ */
+
+#ifndef PROCESSOR_MASCOTPREP_H_
+#define PROCESSOR_MASCOTPREP_H_
+
+#include "ReplicatedPrep.h"
+#include "OT/NPartyTripleGenerator.h"
+
+template<class T>
+class MascotPrep : public RingPrep<T>
+{
+protected:
+    NPartyTripleGenerator<typename T::prep_type>* triple_generator;
+
+public:
+    MascotParams params;
+
+    MascotPrep<T>(SubProcessor<T>* proc, DataPositions& usage);
+    ~MascotPrep();
+
+    void set_protocol(typename T::Protocol& protocol);
+
+    void buffer_triples();
+    void buffer_inputs(int player);
+
+    T get_random();
+
+    size_t data_sent();
+};
+
+template<class T>
+class MascotFieldPrep : public MascotPrep<T>
+{
+    void buffer_inverses();
+    void buffer_bits();
+
+public:
+    MascotFieldPrep<T>(SubProcessor<T>* proc, DataPositions& usage) :
+            MascotPrep<T>(proc, usage) {}
+};
+
+#endif /* PROCESSOR_MASCOTPREP_H_ */
diff --git a/Processor/MascotPrep.hpp b/Processor/MascotPrep.hpp
new file mode 100644
index 000000000..224960473
--- /dev/null
+++ b/Processor/MascotPrep.hpp
@@ -0,0 +1,106 @@
+/*
+ * MascotPrep.cpp
+ *
+ */
+
+#include "MascotPrep.h"
+#include "Processor.h"
+#include "OT/OTTripleSetup.h"
+#include "OT/Triple.hpp"
+
+template<class T>
+MascotPrep<T>::MascotPrep(SubProcessor<T>* proc, DataPositions& usage) :
+        RingPrep<T>(proc, usage), triple_generator(0)
+{
+    this->buffer_size = 1000;
+}
+
+template<class T>
+MascotPrep<T>::~MascotPrep()
+{
+    if (triple_generator)
+        delete triple_generator;
+}
+
+template<class T>
+void MascotPrep<T>::set_protocol(typename T::Protocol& protocol)
+{
+    RingPrep<T>::set_protocol(protocol);
+    SubProcessor<T>* proc = this->proc;
+    assert(proc != 0);
+    auto& ot_setups = BaseMachine::s().ot_setups[proc->Proc.thread_num];
+    assert(not ot_setups.empty());
+    OTTripleSetup setup = ot_setups.back();
+    ot_setups.pop_back();
+    params.set_mac_key(typename T::mac_key_type::next(proc->MC.get_alphai()));
+    triple_generator = new NPartyTripleGenerator<typename T::prep_type>(setup,
+            proc->P.N, proc->Proc.thread_num, this->buffer_size, 1,
+            params, &proc->P);
+    triple_generator->multi_threaded = false;
+}
+
+template<class T>
+void MascotPrep<T>::buffer_triples()
+{
+    params.generateBits = false;
+    triple_generator->generate();
+    triple_generator->unlock();
+    assert(triple_generator->uncheckedTriples.size() != 0);
+    for (auto& triple : triple_generator->uncheckedTriples)
+        this->triples.push_back(
+        { triple.a[0], triple.b, triple.c[0] });
+}
+
+template<class T>
+void MascotFieldPrep<T>::buffer_inverses()
+{
+    assert(this->proc != 0);
+    BufferPrep<T>::buffer_inverses(this->proc->MC, this->proc->P);
+}
+
+template<class T>
+void MascotFieldPrep<T>::buffer_bits()
+{
+    this->params.generateBits = true;
+    auto& triple_generator = this->triple_generator;
+    triple_generator->generate();
+    triple_generator->unlock();
+    assert(triple_generator->bits.size() != 0);
+    for (auto& bit : triple_generator->bits)
+        this->bits.push_back(bit);
+}
+
+template<class T>
+void MascotPrep<T>::buffer_inputs(int player)
+{
+    assert(triple_generator);
+    triple_generator->generateInputs(player);
+    if (this->inputs.size() <= (size_t)player)
+        this->inputs.resize(player + 1);
+    for (auto& input : triple_generator->inputs)
+        this->inputs[player].push_back(input);
+}
+
+template<class T>
+T MascotPrep<T>::get_random()
+{
+    assert(this->proc);
+    T res;
+    for (int j = 0; j < this->proc->P.num_players(); j++)
+    {
+        T tmp;
+        typename T::open_type _;
+        this->get_input(tmp, _, j);
+        res += tmp;
+    }
+    return res;
+}
+
+template<class T>
+size_t MascotPrep<T>::data_sent()
+{
+    if (triple_generator)
+        return triple_generator->data_sent();
+    else
+        return 0;
+}
diff --git a/Processor/Memory.hpp b/Processor/Memory.hpp
index 2d0b9ce1e..5aae26071 100644
--- a/Processor/Memory.hpp
+++ b/Processor/Memory.hpp
@@ -9,17 +9,22 @@
 template<class T>
 void Memory<T>::minimum_size(RegType reg_type, const Program& program, string threadname)
 {
+  (void) threadname;
   const unsigned* sizes = program.direct_mem(reg_type);
   if (sizes[SECRET] > size_s())
     {
+#ifdef DEBUG_MEMORY
       cerr << threadname << " needs more secret " << T::type_string() << " memory, resizing to "
           << sizes[SECRET] << endl;
+#endif
       resize_s(sizes[SECRET]);
     }
   if (sizes[CLEAR] > size_c())
     {
+#ifdef DEBUG_MEMORY
       cerr << threadname << " needs more clear " << T::type_string() << " memory, resizing to "
           << sizes[CLEAR] << endl;
+#endif
       resize_c(sizes[CLEAR]);
     }
 }
@@ -65,7 +70,7 @@ ostream& operator<<(ostream& s,const Memory<T>& M)
   s << M.MS.size() << endl;
   s << M.MC.size() << endl;
 
-#ifdef DEBUG
+#ifdef OUTPUT_HUMAN_READABLE_MEMORY
   for (unsigned int i=0; i<M.MS.size(); i++)
     { M.MS[i].output(s,true); s << endl; }
   s << endl;
diff --git a/Processor/Online-Thread.h b/Processor/Online-Thread.h
index 240e7c3e4..ff998e29c 100644
--- a/Processor/Online-Thread.h
+++ b/Processor/Online-Thread.h
@@ -21,7 +21,7 @@ class thread_info
   int covert;
   Names*  Nms;
   gf2n *alpha2i;
-  typename sint::value_type *alphapi;
+  typename sint::mac_key_type *alphapi;
   int prognum;
   bool finished;
   bool ready;
diff --git a/Processor/Online-Thread.hpp b/Processor/Online-Thread.hpp
index 0caf313e2..65294c88d 100644
--- a/Processor/Online-Thread.hpp
+++ b/Processor/Online-Thread.hpp
@@ -22,6 +22,8 @@ using namespace std;
 template<class sint, class sgf2n>
 void* Sub_Main_Func(void* ptr)
 {
+  bigint::init_thread();
+
   thread_info<sint, sgf2n> *tinfo=(thread_info<sint, sgf2n> *) ptr;
   Machine<sint, sgf2n>& machine=*(tinfo->machine);
   vector<pthread_mutex_t>& t_mutex      = machine.t_mutex;
@@ -30,16 +32,22 @@ void* Sub_Main_Func(void* ptr)
   vector<Program>& progs                = machine.progs;
 
   int num=tinfo->thread_num;
+#ifdef DEBUG_THREADS
   fprintf(stderr, "\tI am in thread %d\n",num);
+#endif
   Player* player;
   if (machine.use_encryption)
     {
+#ifdef VERBOSE
       cerr << "Using encrypted single-threaded communication" << endl;
+#endif
       player = new CryptoPlayer(*(tinfo->Nms), num << 16);
     }
   else if (!machine.receive_threads or machine.direct or machine.parallel)
     {
+#ifdef VERBOSE
       cerr << "Using single-threaded receiving" << endl;
+#endif
       player = new PlainPlayer(*(tinfo->Nms), num << 16);
     }
   else
@@ -48,7 +56,9 @@ void* Sub_Main_Func(void* ptr)
       player = new ThreadPlayer(*(tinfo->Nms), num << 16);
     }
   Player& P = *player;
+#ifdef DEBUG_THREADS
   fprintf(stderr, "\tSet up player in thread %d\n",num);
+#endif
 
   typename sgf2n::MAC_Check* MC2;
   typename sint::MAC_Check*  MCp;
@@ -69,7 +79,9 @@ void* Sub_Main_Func(void* ptr)
     }
   else
     {
+#ifdef VERBOSE
       cerr << "Using indirect communication." << endl;
+#endif
       MC2 = new typename sgf2n::MAC_Check(*(tinfo->alpha2i), machine.opening_sum, machine.max_broadcast);
       MCp = new typename sint::MAC_Check(*(tinfo->alphapi), machine.opening_sum, machine.max_broadcast);
     }
@@ -83,12 +95,15 @@ void* Sub_Main_Func(void* ptr)
   // int exec=0;
 
   // synchronize
+#ifdef DEBUG_THREADS
   cerr << "Locking for sync of thread " << num << endl;
+#endif
   pthread_mutex_lock(&t_mutex[num]);
   tinfo->ready=true;
   pthread_cond_signal(&client_ready[num]);
   pthread_mutex_unlock(&t_mutex[num]);
 
+  DataPositions actual_usage(P.num_players());
   Timer thread_timer(CLOCK_THREAD_CPUTIME_ID), wait_timer;
   thread_timer.start();
 
@@ -106,7 +121,9 @@ void* Sub_Main_Func(void* ptr)
 
       if (program==-1)
         { flag=false;
+#ifdef DEBUG_THREADS
           fprintf(stderr, "\tThread %d terminating\n",num);
+#endif
         }
       else
         { // RUN PROGRAM
@@ -115,14 +132,18 @@ void* Sub_Main_Func(void* ptr)
 
           // Bits, Triples, Squares, and Inverses skipping
           Proc.DataF.seekg(tinfo->pos);
+          // reset for actual usage
+          Proc.DataF.reset_usage();
              
           //printf("\tExecuting program");
           // Execute the program
           progs[program].execute(Proc);
 
+          actual_usage.increase(Proc.DataF.get_usage());
+
          if (progs[program].usage_unknown())
            { // communicate file positions to main thread
-             tinfo->pos = Proc.DataF.get_usage();
+             tinfo->pos.increase(Proc.DataF.get_usage());
            }
 
           //double elapsed = timeval_diff(&startv, &endv);
@@ -163,14 +184,17 @@ void* Sub_Main_Func(void* ptr)
   pthread_mutex_unlock(&t_mutex[num]);
   wait_timer.stop();
 
+#ifdef VERBOSE
   cerr << num << " : MAC Checking" << endl;
   cerr << "\tMC2.number=" << MC2->number() << endl;
   cerr << "\tMCp.number=" << MCp->number() << endl;
 
   cerr << "Thread " << num << " timer: " << thread_timer.elapsed() << endl;
   cerr << "Thread " << num << " wait timer: " << wait_timer.elapsed() << endl;
+#endif
 
-  machine.data_sent += P.sent;
+  machine.data_sent += P.sent + Proc.DataF.data_sent();
+  tinfo->pos = actual_usage;
 
   delete MC2;
   delete MCp;
diff --git a/Processor/OnlineOptions.cpp b/Processor/OnlineOptions.cpp
index 8001a2aa3..0dff6ac96 100644
--- a/Processor/OnlineOptions.cpp
+++ b/Processor/OnlineOptions.cpp
@@ -5,15 +5,20 @@
 
 #include "OnlineOptions.h"
 
-OnlineOptions::OnlineOptions()
+using namespace std;
+
+OnlineOptions::OnlineOptions() : playerno(-1)
 {
     interactive = false;
     lgp = 128;
+    live_prep = true;
 }
 
 OnlineOptions::OnlineOptions(ez::ezOptionParser& opt, int argc,
-        const char** argv)
+        const char** argv) : OnlineOptions()
 {
+    opt.syntax = std::string(argv[0]) + " [OPTIONS] [<playerno>] <progname>";
+
     opt.add(
           "", // Default.
           0, // Required?
@@ -32,11 +37,81 @@ OnlineOptions::OnlineOptions(ez::ezOptionParser& opt, int argc,
           "-lgp", // Flag token.
           "--lgp" // Flag token.
     );
+    opt.add(
+            "", // Default.
+            0, // Required?
+            0, // Number of args expected.
+            0, // Delimiter if expecting multiple args.
+            "Preprocessing from files", // Help description.
+            "-F", // Flag token.
+            "--file-preprocessing" // Flag token.
+    );
+    opt.add(
+            "", // Default.
+            0, // Required?
+            1, // Number of args expected.
+            0, // Delimiter if expecting multiple args.
+            "This player's number (required if not given before program name)", // Help description.
+            "-p", // Flag token.
+            "--player" // Flag token.
+    );
 
     opt.parse(argc, argv);
 
     interactive = opt.isSet("-I");
     opt.get("--lgp")->getInt(lgp);
+    live_prep = not opt.get("-F")->isSet;
 
     opt.resetArgs();
 }
+
+void OnlineOptions::finalize(ez::ezOptionParser& opt, int argc,
+        const char** argv)
+{
+    opt.resetArgs();
+    opt.parse(argc, argv);
+
+    vector<string*> allArgs(opt.firstArgs);
+    allArgs.insert(allArgs.end(), opt.lastArgs.begin(), opt.lastArgs.end());
+    string usage;
+    vector<string> badOptions;
+    unsigned int i;
+
+    if (allArgs.size() != 3u - opt.isSet("-p"))
+    {
+        cerr << "ERROR: incorrect number of arguments to Player-Online.x\n";
+        cerr << "Arguments given were:\n";
+        for (unsigned int j = 1; j < allArgs.size(); j++)
+            cout << "'" << *allArgs[j] << "'" << endl;
+        opt.getUsage(usage);
+        cout << usage;
+        exit(1);
+    }
+    else
+    {
+        if (opt.isSet("-p"))
+            opt.get("-p")->getInt(playerno);
+        else
+            sscanf((*allArgs[1]).c_str(), "%d", &playerno);
+        progname = *allArgs[2 - opt.isSet("-p")];
+    }
+
+    if (!opt.gotRequired(badOptions))
+    {
+        for (i = 0; i < badOptions.size(); ++i)
+            cerr << "ERROR: Missing required option " << badOptions[i] << ".";
+        opt.getUsage(usage);
+        cout << usage;
+        exit(1);
+    }
+
+    if (!opt.gotExpected(badOptions))
+    {
+        for (i = 0; i < badOptions.size(); ++i)
+            cerr << "ERROR: Got unexpected number of arguments for option "
+                    << badOptions[i] << ".";
+        opt.getUsage(usage);
+        cout << usage;
+        exit(1);
+    }
+}
diff --git a/Processor/OnlineOptions.h b/Processor/OnlineOptions.h
index 715be973c..329c401e3 100644
--- a/Processor/OnlineOptions.h
+++ b/Processor/OnlineOptions.h
@@ -13,9 +13,13 @@ class OnlineOptions
 public:
     bool interactive;
     int lgp;
+    bool live_prep;
+    int playerno;
+    std::string progname;
 
     OnlineOptions();
     OnlineOptions(ez::ezOptionParser& opt, int argc, const char** argv);
+    void finalize(ez::ezOptionParser& opt, int argc, const char** argv);
 };
 
 #endif /* PROCESSOR_ONLINEOPTIONS_H_ */
diff --git a/Processor/Processor.h b/Processor/Processor.h
index e6ed8c9ba..0c848dbda 100644
--- a/Processor/Processor.h
+++ b/Processor/Processor.h
@@ -34,7 +34,7 @@ class SubProcessor
 
   // This is the vector of partially opened values and shares we need to store
   // as the Open commands are split in two
-  vector<typename T::clear> PO;
+  vector<typename T::open_type> PO;
   vector<T> Sh_PO;
 
   void resize(int size)       { C.resize(size); S.resize(size); }
@@ -113,12 +113,6 @@ class Processor : public ArithmeticProcessor
   // Data structure used for reading/writing data to/from a socket (i.e. an external party to SPDZ)
   octetStream socket_stream;
 
-  #ifdef DEBUG
-    vector<int> rw2;
-    vector<int> rwp;
-    vector<int> rwi;
-  #endif
-
   template <class T>
   vector< Share<T> >& get_S();
   template <class T>
@@ -170,76 +164,6 @@ class Processor : public ArithmeticProcessor
     {
       return thread_num;
     }
-
-  #ifdef DEBUG  
-    const gf2n& read_C2(int i) const
-      { if (rw2[i]==0)
-	  { throw Processor_Error("Invalid read on clear register"); }
-        return Proc2.C.at(i);
-      }
-    const Share<gf2n> & read_S2(int i) const
-      { if (rw2[i+reg_max2]==0)
-          { throw Processor_Error("Invalid read on shared register"); }
-        return Proc2.S.at(i);
-      }
-    gf2n& get_C2_ref(int i)
-      { rw2[i]=1;
-        return Proc2.C.at(i);
-      }
-    Share<gf2n> & get_S2_ref(int i)
-      { rw2[i+reg_max2]=1;
-        return Proc2.S.at(i);
-      }
-    void write_C2(int i,const gf2n& x)
-      { rw2[i]=1;
-        Proc2.C.at(i)=x;
-      }
-    void write_S2(int i,const Share<gf2n> & x)
-      { rw2[i+reg_max2]=1;
-        Proc2.S.at(i)=x;
-      }
-
-    const sint::clear& read_Cp(int i) const
-      { if (rwp[i]==0)
-	  { throw Processor_Error("Invalid read on clear register"); }
-        return Procp.C.at(i);
-      }
-    const sint & read_Sp(int i) const
-      { if (rwp[i+reg_maxp]==0)
-          { throw Processor_Error("Invalid read on shared register"); }
-        return Procp.S.at(i);
-      }
-    sint::clear& get_Cp_ref(int i)
-      { rwp[i]=1;
-        return Procp.C.at(i);
-      }
-    sint & get_Sp_ref(int i)
-      { rwp[i+reg_maxp]=1;
-        return Procp.S.at(i);
-      }
-    void write_Cp(int i,const sint::clear& x)
-      { rwp[i]=1;
-        Procp.C.at(i)=x;
-      }
-    void write_Sp(int i,const sint & x)
-      { rwp[i+reg_maxp]=1;
-        Procp.S.at(i)=x;
-      }
-
-    const long& read_Ci(int i) const
-      { if (rwi[i]==0)
-          { throw Processor_Error("Invalid read on integer register"); }
-        return Ci.at(i);
-      }
-    long& get_Ci_ref(int i)
-      { rwi[i]=1;
-        return Ci.at(i);
-      }
-    void write_Ci(int i,const long& x)
-      { rwi[i]=1;
-        Ci.at(i)=x;
-      }
- #else
     const gf2n& read_C2(int i) const
       { return Proc2.C[i]; }
     const sgf2n& read_S2(int i) const
@@ -272,7 +196,6 @@ class Processor : public ArithmeticProcessor
       { return Ci[i]; }
     void write_Ci(int i,const long& x)
       { Ci[i]=x; }
-  #endif
 
   // Access to external client sockets for reading clear/shared data
   void read_socket_ints(int client_id, const vector<int>& registers);
diff --git a/Processor/Processor.hpp b/Processor/Processor.hpp
index 3f8a1eaac..e7aba2e45 100644
--- a/Processor/Processor.hpp
+++ b/Processor/Processor.hpp
@@ -50,7 +50,10 @@ Processor<sint, sgf2n>::Processor(int thread_num,Player& P,
 template<class sint, class sgf2n>
 Processor<sint, sgf2n>::~Processor()
 {
-  cerr << "Opened " << sent << " elements in " << rounds << " rounds" << endl;
+#ifdef VERBOSE
+  if (sent)
+    cerr << "Opened " << sent << " elements in " << rounds << " rounds" << endl;
+#endif
 }
 
 template<class sint, class sgf2n>
@@ -64,7 +67,9 @@ string Processor<sint, sgf2n>::get_filename(const char* prefix, bool use_number)
     filename << P.my_num();
   if (thread_num > 0)
     filename << "-" << thread_num;
+#ifdef DEBUG_FILES
   cerr << "Opening file " << filename.str() << endl;
+#endif
   return filename.str();
 }
 
@@ -79,15 +84,6 @@ void Processor<sint, sgf2n>::reset(const Program& program,int arg)
   Procp.resize(reg_maxp);
   Ci.resize(reg_maxi);
   this->arg = arg;
-
-  #ifdef DEBUG
-    rw2.resize(2*reg_max2);
-    for (int i=0; i<2*reg_max2; i++) { rw2[i]=0; }
-    rwp.resize(2*reg_maxp);
-    for (int i=0; i<2*reg_maxp; i++) { rwp[i]=0; }
-    rwi.resize(2*reg_maxi);
-    for (int i=0; i<2*reg_maxi; i++) { rwi[i]=0; }
-  #endif
 }
 
 #include "Networking/sockets.h"
diff --git a/Processor/ProcessorBase.cpp b/Processor/ProcessorBase.cpp
index 2b6d1f1c1..8c75656f9 100644
--- a/Processor/ProcessorBase.cpp
+++ b/Processor/ProcessorBase.cpp
@@ -10,7 +10,9 @@
 
 void ProcessorBase::open_input_file(const string& name)
 {
+#ifdef DEBUG_FILES
     cerr << "opening " << name << endl;
+#endif
     input_file.open(name);
     input_filename = name;
 }
diff --git a/Processor/Replicated.h b/Processor/Replicated.h
index 617eb2835..283277de1 100644
--- a/Processor/Replicated.h
+++ b/Processor/Replicated.h
@@ -43,7 +43,7 @@ class ProtocolBase
     ProtocolBase();
     virtual ~ProtocolBase();
 
-    void muls(const vector<int>& reg, SubProcessor<T>& proc, MAC_Check_Base<T>& MC,
+    void muls(const vector<int>& reg, SubProcessor<T>& proc, typename T::MAC_Check& MC,
             int size);
     void mulrs(const vector<int>& reg, SubProcessor<T>& proc);
     void dotprods(const vector<int>& reg, SubProcessor<T>& proc);
diff --git a/Processor/Replicated.hpp b/Processor/Replicated.hpp
index e830151fa..3e1e188cc 100644
--- a/Processor/Replicated.hpp
+++ b/Processor/Replicated.hpp
@@ -40,13 +40,15 @@ inline ReplicatedBase::ReplicatedBase(Player& P) : P(P)
 template<class T>
 ProtocolBase<T>::~ProtocolBase()
 {
+#ifdef VERBOSE
     if (counter)
         cerr << "Number of multiplications: " << counter << endl;
+#endif
 }
 
 template<class T>
 void ProtocolBase<T>::muls(const vector<int>& reg,
-        SubProcessor<T>& proc, MAC_Check_Base<T>& MC, int size)
+        SubProcessor<T>& proc, typename T::MAC_Check& MC, int size)
 {
     (void)MC;
     proc.muls(reg, size);
diff --git a/Processor/ReplicatedMachine.hpp b/Processor/ReplicatedMachine.hpp
index 5a8ead25c..52f27f57a 100644
--- a/Processor/ReplicatedMachine.hpp
+++ b/Processor/ReplicatedMachine.hpp
@@ -14,6 +14,8 @@ template<class T, class U>
 ReplicatedMachine<T, U>::ReplicatedMachine(int argc, const char** argv,
           string name, ez::ezOptionParser& opt, int nplayers)
 {
+    (void) name;
+
     OnlineOptions online_opts(opt, argc, argv);
     opt.add(
             "localhost", // Default.
@@ -42,48 +44,16 @@ ReplicatedMachine<T, U>::ReplicatedMachine(int argc, const char** argv,
             "-u", // Flag token.
             "--unencrypted" // Flag token.
     );
-    opt.add(
-            "", // Default.
-            0, // Required?
-            0, // Number of args expected.
-            0, // Delimiter if expecting multiple args.
-            "Preprocessing from files", // Help description.
-            "-F", // Flag token.
-            "--file-preprocessing" // Flag token.
-    );
-    opt.syntax = "./" + name + "-party.x [OPTIONS] <playerno> <progname>";
-    opt.resetArgs();
-    opt.parse(argc, argv);
-    vector<string*> allArgs(opt.firstArgs);
-    allArgs.insert(allArgs.end(), opt.lastArgs.begin(), opt.lastArgs.end());
-
-    int playerno;
-    string progname;
-
-    if (allArgs.size() != 3)
-    {
-        cerr << "ERROR: incorrect number of arguments to " << argv[0] << endl;
-        cerr << "Arguments given were:\n";
-        for (unsigned int j = 1; j < allArgs.size(); j++)
-            cout << "'" << *allArgs[j] << "'" << endl;
-        string usage;
-        opt.getUsage(usage);
-        cout << usage;
-        exit(1);
-    }
-    else
-    {
-        playerno = atoi(allArgs[1]->c_str());
-        progname = *allArgs[2];
+    online_opts.finalize(opt, argc, argv);
 
-    }
+    int playerno = online_opts.playerno;
+    string progname = online_opts.progname;
 
     int pnb;
     string hostname;
     opt.get("-pn")->getInt(pnb);
     opt.get("-h")->getString(hostname);
     bool use_encryption = not opt.get("-u")->isSet;
-    bool live_prep = not opt.get("-F")->isSet;
 
     if (not use_encryption)
         insecure("unencrypted communication");
@@ -92,7 +62,7 @@ ReplicatedMachine<T, U>::ReplicatedMachine(int argc, const char** argv,
 
     Machine<T, U>(playerno, N, progname, "empty",
             gf2n::default_degree(), 0, 0, 0, 0, 0, use_encryption,
-            live_prep, online_opts).run();
+            online_opts.live_prep, online_opts).run();
 
     if (server)
         delete server;
diff --git a/Processor/ReplicatedPrep.h b/Processor/ReplicatedPrep.h
index f482242dc..adab93816 100644
--- a/Processor/ReplicatedPrep.h
+++ b/Processor/ReplicatedPrep.h
@@ -19,29 +19,32 @@ class BufferPrep : public Preprocessing<T>
     vector<array<T, 2>> squares;
     vector<array<T, 2>> inverses;
     vector<T> bits;
+    vector<vector<InputTuple<T>>> inputs;
 
     virtual void buffer_triples() = 0;
     virtual void buffer_squares() = 0;
     virtual void buffer_inverses() = 0;
     virtual void buffer_bits() = 0;
+    virtual void buffer_inputs(int player);
 
     virtual void buffer_inverses(MAC_Check_Base<T>& MC, Player& P);
 
 public:
-    static const int buffer_size = 10000;
+    int buffer_size;
 
+    BufferPrep(DataPositions& usage) : Preprocessing<T>(usage), buffer_size(10000) {}
     virtual ~BufferPrep() {}
 
-    void get_three(Dtype dtype, T& a, T& b, T& c);
-    void get_two(Dtype dtype, T& a, T& b);
-    void get_one(Dtype dtype, T& a);
-    void get_input(T& a, typename T::clear& x, int i);
-    void get(vector<T>& S, DataTag tag, const vector<int>& regs,
+    void get_three_no_count(Dtype dtype, T& a, T& b, T& c);
+    void get_two_no_count(Dtype dtype, T& a, T& b);
+    void get_one_no_count(Dtype dtype, T& a);
+    void get_input_no_count(T& a, typename T::open_type& x, int i);
+    void get_no_count(vector<T>& S, DataTag tag, const vector<int>& regs,
             int vector_size);
 };
 
 template<class T>
-class ReplicatedRingPrep : public BufferPrep<T>
+class RingPrep : public BufferPrep<T>
 {
 protected:
     template<class U> friend class MaliciousRepPrep;
@@ -51,26 +54,37 @@ class ReplicatedRingPrep : public BufferPrep<T>
 
     int base_player;
 
-    void buffer_triples();
     void buffer_squares();
     void buffer_inverses() { throw runtime_error("not inverses in rings"); }
 
 public:
-    ReplicatedRingPrep(SubProcessor<T>* proc);
-    virtual ~ReplicatedRingPrep() {}
+    RingPrep(SubProcessor<T>* proc, DataPositions& usage);
+    virtual ~RingPrep() {}
 
     void set_protocol(typename T::Protocol& protocol);
 
     virtual void buffer_bits();
 };
 
+template<class T>
+class ReplicatedRingPrep : public RingPrep<T>
+{
+protected:
+    void buffer_triples();
+    void buffer_squares();
+
+public:
+    ReplicatedRingPrep(SubProcessor<T>* proc, DataPositions& usage) :
+        RingPrep<T>(proc, usage) {};
+};
+
 template<class T>
 class ReplicatedPrep: public ReplicatedRingPrep<T>
 {
     void buffer_inverses();
 
 public:
-    ReplicatedPrep(SubProcessor<T>* proc = 0) : ReplicatedRingPrep<T>(proc) {}
+    ReplicatedPrep(SubProcessor<T>* proc, DataPositions& usage) : ReplicatedRingPrep<T>(proc, usage) {}
 
     void buffer_bits();
 };
diff --git a/Processor/ReplicatedPrep.hpp b/Processor/ReplicatedPrep.hpp
index d8ac78c54..39ec66d61 100644
--- a/Processor/ReplicatedPrep.hpp
+++ b/Processor/ReplicatedPrep.hpp
@@ -10,24 +10,24 @@
 #include "Auth/ShamirMC.h"
 
 template<class T>
-ReplicatedRingPrep<T>::ReplicatedRingPrep(SubProcessor<T>* proc) :
-        protocol(0), proc(proc)
+RingPrep<T>::RingPrep(SubProcessor<T>* proc, DataPositions& usage) :
+        BufferPrep<T>(usage), protocol(0), proc(proc), base_player(0)
 {
 }
 
 template<class T>
-void ReplicatedRingPrep<T>::set_protocol(typename T::Protocol& protocol)
+void RingPrep<T>::set_protocol(typename T::Protocol& protocol)
 {
     this->protocol = &protocol;
     if (proc)
         base_player = proc->Proc.thread_num;
-    else
-        base_player = 0;
 }
 
 template<class T>
 void ReplicatedRingPrep<T>::buffer_triples()
 {
+    auto protocol = this->protocol;
+    auto proc = this->proc;
     assert(protocol != 0);
     auto& triples = this->triples;
     triples.resize(this->buffer_size);
@@ -45,7 +45,7 @@ void ReplicatedRingPrep<T>::buffer_triples()
 }
 
 template<class T>
-void BufferPrep<T>::get_three(Dtype dtype, T& a, T& b, T& c)
+void BufferPrep<T>::get_three_no_count(Dtype dtype, T& a, T& b, T& c)
 {
     if (dtype != DATA_TRIPLE)
         throw not_implemented();
@@ -59,9 +59,30 @@ void BufferPrep<T>::get_three(Dtype dtype, T& a, T& b, T& c)
     triples.pop_back();
 }
 
+template<class T>
+void RingPrep<T>::buffer_squares()
+{
+    auto proc = this->proc;
+    auto buffer_size = this->buffer_size;
+    assert(proc != 0);
+    vector<T> a_plus_b(buffer_size), as(buffer_size), cs(buffer_size);
+    T b;
+    for (int i = 0; i < buffer_size; i++)
+    {
+        this->get_three_no_count(DATA_TRIPLE, as[i], b, cs[i]);
+        a_plus_b[i] = as[i] + b;
+    }
+    vector<typename T::open_type> opened(buffer_size);
+    proc->MC.POpen(opened, a_plus_b, proc->P);
+    for (int i = 0; i < buffer_size; i++)
+        this->squares.push_back({as[i], as[i] * opened[i] - cs[i]});
+}
+
 template<class T>
 void ReplicatedRingPrep<T>::buffer_squares()
 {
+    auto protocol = this->protocol;
+    auto proc = this->proc;
     assert(protocol != 0);
     auto& squares = this->squares;
     squares.resize(this->buffer_size);
@@ -93,10 +114,10 @@ void BufferPrep<T>::buffer_inverses(MAC_Check_Base<T>& MC, Player& P)
     vector<T> c;
     for (int i = 0; i < buffer_size; i++)
     {
-        get_three(DATA_TRIPLE, triples[i][0], triples[i][1], triples[i][2]);
+        get_three_no_count(DATA_TRIPLE, triples[i][0], triples[i][1], triples[i][2]);
         c.push_back(triples[i][2]);
     }
-    vector<typename T::clear> c_open;
+    vector<typename T::open_type> c_open;
     MC.POpen(c_open, c, P);
     for (size_t i = 0; i < c.size(); i++)
         if (c_open[i] != 0)
@@ -108,7 +129,7 @@ void BufferPrep<T>::buffer_inverses(MAC_Check_Base<T>& MC, Player& P)
 }
 
 template<class T>
-void BufferPrep<T>::get_two(Dtype dtype, T& a, T& b)
+void BufferPrep<T>::get_two_no_count(Dtype dtype, T& a, T& b)
 {
     switch (dtype)
     {
@@ -180,7 +201,7 @@ void buffer_bits_spec(ReplicatedPrep<T<gfp>>& prep, vector<T<gfp>>& bits,
 }
 
 template<class T>
-void ReplicatedRingPrep<T>::buffer_bits()
+void RingPrep<T>::buffer_bits()
 {
     assert(protocol != 0);
     auto buffer_size = this->buffer_size;
@@ -191,21 +212,22 @@ void ReplicatedRingPrep<T>::buffer_bits()
     typename T::Input input(proc, P);
     for (int i = 0; i < P.num_players(); i++)
         input.reset(i);
-    if (positive_modulo(P.my_num() - base_player, P.num_players()) < n_relevant_players)
-    {
-        SeededPRNG G;
-        for (int i = 0; i < buffer_size; i++)
-            input.add_mine(G.get_bit());
-        input.send_mine();
-    }
     for (int i = 0; i < n_relevant_players; i++)
     {
         int input_player = (base_player + i) % P.num_players();
         if (input_player == P.my_num())
+        {
+            SeededPRNG G;
+            for (int i = 0; i < buffer_size; i++)
+                input.add_mine(G.get_bit());
+            input.send_mine();
             for (auto& x : player_bits[i])
                 x = input.finalize_mine();
+        }
         else
         {
+            for (int i = 0; i < buffer_size; i++)
+                input.add_other(input_player);
             octetStream os;
             P.receive_player(input_player, os, true);
             for (auto& x : player_bits[i])
@@ -221,7 +243,7 @@ void ReplicatedRingPrep<T>::buffer_bits()
 
 template<>
 inline
-void ReplicatedRingPrep<Rep3Share<gf2n>>::buffer_bits()
+void RingPrep<Rep3Share<gf2n>>::buffer_bits()
 {
     assert(protocol != 0);
     for (int i = 0; i < DIV_CEIL(buffer_size, gf2n::degree()); i++)
@@ -251,7 +273,7 @@ void ReplicatedPrep<T>::buffer_bits()
 }
 
 template<class T>
-void BufferPrep<T>::get_one(Dtype dtype, T& a)
+void BufferPrep<T>::get_one_no_count(Dtype dtype, T& a)
 {
     if (dtype != DATA_BIT)
         throw not_implemented();
@@ -264,14 +286,25 @@ void BufferPrep<T>::get_one(Dtype dtype, T& a)
 }
 
 template<class T>
-void BufferPrep<T>::get_input(T& a, typename T::clear& x, int i)
+void BufferPrep<T>::get_input_no_count(T& a, typename T::open_type& x, int i)
 {
     (void) a, (void) x, (void) i;
+    if (inputs.size() <= (size_t)i or inputs.at(i).empty())
+        buffer_inputs(i);
+    a = inputs[i].back().share;
+    x = inputs[i].back().value;
+    inputs[i].pop_back();
+}
+
+template<class T>
+inline void BufferPrep<T>::buffer_inputs(int player)
+{
+    (void) player;
     throw not_implemented();
 }
 
 template<class T>
-void BufferPrep<T>::get(vector<T>& S, DataTag tag,
+void BufferPrep<T>::get_no_count(vector<T>& S, DataTag tag,
         const vector<int>& regs, int vector_size)
 {
     (void) S, (void) tag, (void) regs, (void) vector_size;
diff --git a/Processor/SPDZ.h b/Processor/SPDZ.h
index 38f5c6a77..48007033d 100644
--- a/Processor/SPDZ.h
+++ b/Processor/SPDZ.h
@@ -12,25 +12,29 @@
 using namespace std;
 
 template<class T> class SubProcessor;
-template<class T> class MAC_Check;
 template<class T> class Share;
 class Player;
 
 template <class T>
-class SPDZ : public Beaver<Share<T>>
+class SPDZ : public Beaver<T>
 {
 public:
-    SPDZ(Player& P) : Beaver<Share<T>>(P)
+    SPDZ(Player& P) : Beaver<T>(P)
     {
     }
 
-    static void assign(T& share, const T& clear, int my_num)
+    static void assign(typename T::clear& share, const typename T::clear& clear, int my_num)
     {
         if (my_num == 0)
             share = clear;
         else
             share = 0;
     }
+
+    int get_n_relevant_players()
+    {
+        return this->P.num_players();
+    }
 };
 
 #endif /* PROCESSOR_SPDZ_H_ */
diff --git a/Processor/Spdz2kPrep.h b/Processor/Spdz2kPrep.h
new file mode 100644
index 000000000..d9dbe73d0
--- /dev/null
+++ b/Processor/Spdz2kPrep.h
@@ -0,0 +1,34 @@
+/*
+ * Spdz2kPrep.h
+ *
+ */
+
+#ifndef PROCESSOR_SPDZ2KPREP_H_
+#define PROCESSOR_SPDZ2KPREP_H_
+
+#include "MascotPrep.h"
+
+template<class T>
+class Spdz2kPrep : public MascotPrep<T>
+{
+    typedef Spdz2kShare<T::k + 2, T::s> BitShare;
+    DataPositions bit_pos;
+    MascotPrep<BitShare>* bit_prep;
+    SubProcessor<BitShare>* bit_proc;
+    typename BitShare::MAC_Check* bit_MC;
+    Sub_Data_Files<BitShare>* bit_DataF;
+    typename BitShare::Protocol* bit_protocol;
+
+public:
+    Spdz2kPrep(SubProcessor<T>* proc, DataPositions& usage);
+    ~Spdz2kPrep();
+
+    void set_protocol(typename T::Protocol& protocol);
+
+    void buffer_inverses() { throw division_by_zero(); }
+    void buffer_bits();
+
+    size_t data_sent();
+};
+
+#endif /* PROCESSOR_SPDZ2KPREP_H_ */
diff --git a/Processor/Spdz2kPrep.hpp b/Processor/Spdz2kPrep.hpp
new file mode 100644
index 000000000..8cc304674
--- /dev/null
+++ b/Processor/Spdz2kPrep.hpp
@@ -0,0 +1,108 @@
+/*
+ * Spdz2kPrep.cpp
+ *
+ */
+
+#include "Processor/Spdz2kPrep.h"
+
+template<class T>
+Spdz2kPrep<T>::Spdz2kPrep(SubProcessor<T>* proc, DataPositions& usage) :
+        MascotPrep<T>(proc, usage)
+{
+    this->params.amplify = false;
+    bit_MC = 0;
+    bit_DataF = 0;
+    bit_proc = 0;
+    bit_prep = 0;
+    bit_protocol = 0;
+}
+
+template<class T>
+Spdz2kPrep<T>::~Spdz2kPrep()
+{
+    if (bit_prep != 0)
+    {
+        delete bit_prep;
+        delete bit_proc;
+        delete bit_DataF;
+        delete bit_MC;
+        delete bit_protocol;
+    }
+}
+
+template<class T>
+void Spdz2kPrep<T>::set_protocol(typename T::Protocol& protocol)
+{
+    MascotPrep<T>::set_protocol(protocol);
+    assert(this->proc != 0);
+    auto& proc = this->proc;
+    bit_MC = new typename BitShare::MAC_Check(proc->MC.get_alphai());
+    // just dummies
+    bit_pos = DataPositions(proc->P.num_players());
+    bit_DataF = new Sub_Data_Files<BitShare>(0, 0, "", bit_pos, 0);
+    bit_proc = new SubProcessor<BitShare>(proc->Proc, *bit_MC, *bit_DataF, proc->P);
+    bit_prep = new MascotPrep<BitShare>(bit_proc, bit_pos);
+    bit_prep->params.amplify = false;
+    bit_protocol = new typename BitShare::Protocol(proc->P);
+    bit_prep->set_protocol(*bit_protocol);
+    bit_MC->set_prep(*bit_prep);
+    this->proc->MC.set_prep(*this);
+}
+
+template<class T>
+void Spdz2kPrep<T>::buffer_bits()
+{
+    assert(this->proc != 0);
+
+#ifdef SPDZ2K_SIMPLE_BITS
+    RingPrep<T>::buffer_bits();
+    assert(this->protocol != 0);
+    auto& protocol = *this->protocol;
+    protocol.init_mul(this->proc);
+    T one = typename T::super(1, protocol.P.my_num(), this->proc->MC.get_alphai());
+    for (auto& bit : this->bits)
+        // one of the two is not a zero divisor, so if the product is zero, one of them is too
+        protocol.prepare_mul(one - bit, bit);
+    protocol.exchange();
+    vector<T> checks(this->bits.size());
+    for (size_t i = 0; i < this->bits.size(); i++)
+        checks.push_back(protocol.finalize_mul());
+    vector<typename T::open_type> opened;
+    this->proc->MC.POpen(opened, checks, protocol.P);
+    this->proc->MC.Check(protocol.P);
+    for (auto& x : opened)
+        if (typename T::clear(x) != 0)
+            throw runtime_error("not a bit");
+#else
+    vector<BitShare> squares, random_shares;
+    typename BitShare::super one(1, bit_proc->P.my_num(), bit_MC->get_alphai());
+    auto buffer_size = this->buffer_size;
+    for (int i = 0; i < buffer_size; i++)
+    {
+        BitShare a, a2;
+        bit_prep->get_two(DATA_SQUARE, a, a2);
+        squares.push_back((a2 + a) * 4 + one);
+        random_shares.push_back(2 * a + one);
+    }
+    vector<typename BitShare::open_type> opened;
+    bit_MC->POpen(opened, squares, bit_proc->P);
+    for (int i = 0; i < buffer_size; i++)
+    {
+        Z2<BitShare::k> root = opened[i];
+        if (root.get_bit(0) != 1)
+            throw runtime_error("square not odd");
+        BitShare tmp = random_shares[i] * root.sqrRoot().invert() + one;
+        this->bits.push_back(typename BitShare::super(tmp.get_share() >> 1, tmp.get_mac() >> 1));
+    }
+    bit_MC->Check(bit_proc->P);
+#endif
+}
+
+template<class T>
+size_t Spdz2kPrep<T>::data_sent()
+{
+    size_t res = MascotPrep<T>::data_sent();
+    if (bit_prep)
+        res += bit_prep->data_sent();
+    return res;
+}
diff --git a/Programs/Source/tutorial.mpc b/Programs/Source/tutorial.mpc
index f4ff0ed11..e948a2b71 100644
--- a/Programs/Source/tutorial.mpc
+++ b/Programs/Source/tutorial.mpc
@@ -18,8 +18,12 @@ test(a + b, 3)
 test(a * b, 2)
 test(a - b, -1)
 
-# but division doesn't, don't do the following
-# test(b / a, 2)
+# Division can mean different things in different domains
+# and there has be a specified bit length in some,
+# so we use int_div() for integer division.
+# k-bit division requires 4k-bit computation.
+
+test(b.int_div(a, 16), 2)
 
 # comparisons produce 1 for true and 0 for false
 
diff --git a/README.md b/README.md
index ae4a38b69..93222610d 100644
--- a/README.md
+++ b/README.md
@@ -20,11 +20,11 @@ Scripts/tldr.sh
 ./compile.py tutorial
 echo 1 2 3 > Player-Data/Input-P0-0
 echo 1 2 3 > Player-Data/Input-P1-0
-Scripts/mal-rep-field.sh tutorial
+Scripts/mascot.sh tutorial
 ```
 
-This runs [the tutorial](Programs/Source/tutorial.mpc) with three
-parties, an honest majority, and malicious security.
+This runs [the tutorial](Programs/Source/tutorial.mpc) with two
+parties parties and malicious security.
 
 #### TL;DR (Source Distribution)
 
@@ -36,33 +36,38 @@ apt-get install automake build-essential git libboost-dev libboost-thread-dev li
 On MacOS, this requires [brew](https://brew.sh) to be installed,
 which will be used for all dependencies.
 It will execute [the
-tutorial](Programs/Source/tutorial.mpc) with three
-parties, an honest majority, and malicious security.
+tutorial](Programs/Source/tutorial.mpc) with two parties and malicious
+security.
 
 ```
 make -j 8 tldr
 ./compile.py tutorial
-Scripts/setup-replicated.sh
 echo 1 2 3 > Player-Data/Input-P0-0
 echo 1 2 3 > Player-Data/Input-P1-0
-Scripts/mal-rep-field.sh tutorial
+Scripts/mascot.sh tutorial
 ```
 
 #### Preface
 
-The primary aim of this software is to benchmark the same computation
-in various protocols in order to compare the performance. In order to
-do, it sometimes uses functionality that is not secure. Many MPC protocols
-involve several phases that have to be executed in a secure manner for
-the whole protocol to be sure. However, for benchmarking it does not
-make a difference whether a previous phase was executed securely or
-whether its output were generated insecurely. The focus on this
-software is to benchmark each phases individually rather than running
-the whole sequence of phases at once.
+The primary aim of this software is to run the same computation in
+various protocols in order to compare the performance. All protocols
+in the matrix below are fully implemented. In addition, there are
+further protocols implemented only partially, most notably the
+Overdrive protocols. They are deactivated by default in order to avoid
+confusion over security. See the [section on compilation](#Compilation)
+on how to activate them.
 
-In order to make it clear where insecure functionality is used, it is
-disabled by default but can be activated as explained in the section
-on compilation. Some parts of the software will not work without doing so.
+#### Protocols
+
+The following table lists all protocols that are fully supported. Rep3
+stands for three-party replicated secret sharing.
+
+| Security model | Mod prime / GF(2^n) | Mod 2^k | Binary |
+| --- | --- | --- | --- |
+| Malicious, dishonest majority | [MASCOT](#arithmetic-circuits-mascot--spdz2k) | [SPDZ2k](#arithmetic-circuits-mascot--spdz2k) | N/A |
+| Semi-honest, dishonest majority | N/A | N/A | [Yao's GC](#yaos-garbled-circuits) |
+| [Malicious, honest majority](#honest-majority) | Shamir / Rep3 | N/A | N/A |
+| [Semi-honest, honest majority](#honest-majority) | Shamir / Rep3 | Rep3 | Rep3 |
 
 #### History
 
@@ -80,11 +85,16 @@ following repositories:
 #### Alternatives
 
 There is another fork of SPDZ-2 called
-[SCALE-MAMBA](https://github.com/KULeuven-COSIC/SCALE-MAMBA). It
-focuses on providing an integrated system for computations modulo a
-large prime, using the SPDZ protocol (based on lattic-based
-homomorphic encryption) for a dishonest majority or using secret
-sharing for an honest majority. More information can be found here:
+[SCALE-MAMBA](https://github.com/KULeuven-COSIC/SCALE-MAMBA).
+The main differences at the time of writing are as follows:
+- It provides honest-majority computation for any Q2 structure.
+- For dishonest majority computation, it provides integration of
+SPDZ/Overdrive offline and online phases but without secure key
+generation.
+- It only provides computation modulo a prime.
+- It only provides malicious security.
+
+More information can be found here:
 https://homes.esat.kuleuven.be/~nsmart/SCALE
 
 #### Overview
@@ -101,18 +111,9 @@ arithmetic circuits and one for boolean circuits. The high-level code
 slightly differs between the two variants, but we aim to keep these
 differences a at minimum.
 
-The SPDZ protocol uses preprocessing, that is, in a first (sometimes
-called offline) phase correlated randomness is generated independent
-of the actual inputs of the computation. Only the second ("online")
-phase combines this randomness with the actual inputs in order to
-produce the desired results. The preprocessed data can only be used
-once, thus more computation requires more preprocessing. MASCOT and
-Overdrive are the names for two alternative preprocessing phases to go
-with the SPDZ online phase.
-
-In the section on computation we will explain how to run the SPDZ
-online phase and the various honest-majority three-party comptuation as well
-as BMR and Yao's garbled circuits.
+In the section on computation we will explain how to compile a
+high-level program for the various computation domains and then how to
+run it with different protocols.
 
 The section on offline phases will then explain how to benchmark the
 offline phases required for the SPDZ protocol. Running the online
@@ -120,22 +121,26 @@ phase outputs the amount of offline material required, which allows to
 compute the preprocessing time for a particulor computation.
 
 #### Requirements
- - GCC 4.8 or later (tested with 7.3) or LLVM (tested with 6.0)
+ - GCC 5 or later (tested with 7.3) or LLVM (tested with 6.0)
  - MPIR library, compiled with C++ support (use flag --enable-cxx when running configure)
  - libsodium library, tested against 1.0.16
  - OpenSSL, tested against and 1.0.2 and 1.1.0
  - Boost.Asio with SSL support (`libboost-dev` on Ubuntu), tested against 1.65
  - Boost.Thread for BMR (`libboost-thread-dev` on Ubuntu), tested against 1.65
- - CPU supporting AES-NI, PCLMUL, AVX2
+ - 64-bit CPU
  - Python 2.x
  - NTL library for the SPDZ-2 and Overdrive offline phases (optional; tested with NTL 10.5)
- - If using macOS, Sierra or later (see comment about LLVM)
+ - If using macOS, Sierra or later
 
 #### Compilation
 
 1) Edit `CONFIG` or `CONFIG.mine` to your needs:
 
- - To benchmark malicious SPDZ or BMR, add the following line at the top: `MY_CFLAGS = -DINSECURE`
+ - By default, a CPU supporting AES-NI, PCLMUL, AVX2, BMI2 is
+   required. This includes mainstream processors released 2013 or later.
+   For older models you need to deactivate the respective
+   extensions in the `ARCH` variable.
+ - To benchmark online-only protocols or Overdrive, add the following line at the top: `MY_CFLAGS = -DINSECURE`
  - `PREP_DIR` should point to should be a local, unversioned directory to store preprocessing data (default is `Player-Data` in the current directory).
  - For the SPDZ-2 and Overdrive offline phases, set `USE_NTL = 1` and `MOD = -DMAX_MOD_SZ=6`.
  - To use GF(2^40), in particular for the SPDZ-2 offline phase, set `USE_GF2N_LONG = 0`. This will deactive anything that requires GF(2^128) such as MASCOT.
@@ -145,65 +150,52 @@ compilation multiple threads). See below on how to compile specific
 parts only. Remember to run `make clean` first after changing `CONFIG`
 or `CONFIG.mine`.
 
-# Benchmarking computation
+# Running computation
 
 See `Programs/Source/` for some example MPC programs, in particular
 `tutorial.mpc`.
 
-## Arithmetic circuits
+### Compiling high-level programs
 
-### SPDZ
+There are three computation domains, and the high-level programs have
+to be compiled accordingly.
 
-All programs required in this section can be compiled with the target `online`:
+#### Arithmetic modulo a prime
 
-`make -j 8 online`
+```./compile.py [-F <integer bit length>] <program>```
 
-#### To setup for benchmarking the online phase
-
-This requires the INSECURE flag to be set before compilation as explained above. For a secure offline phase, see the section on SPDZ-2 below.
-
-Run the command below. **If you haven't added `MY_CFLAGS = -DINSECURE` to `CONFIG.mine` before compiling, it will fail.**
+The integer bit length defaults to 64.
 
-`Scripts/setup-online.sh`
-
-This sets up parameters for the online phase for 2 parties with a 128-bit prime field and 128-bit binary field, and creates fake offline data (multiplication triples etc.) for these parameters.
-
-Parameters can be customised by running
-
-`Scripts/setup-online.sh <nparties> <nbitsp> <nbits2>`
-
-
-#### To compile a program
-
-To compile for example the program in `./Programs/Source/tutorial.mpc`, run:
-
-`./compile.py tutorial`
-
-This creates the bytecode and schedule files in Programs/Bytecode/ and Programs/Schedules/
-
-#### To run a program
+Note that in this context integers do not wrap around as expected, so
+it is the responsibility of the user to make sure that they don't grow
+too large. If necessary `sint.Mod2m()` can be used to wrap around
+manually.
 
-To run the above program with two parties on one machine, run:
+The integer bit length together with the computation mandate a minimum
+for the size of the prime, which will be output by the compiler. It is
+also communicated to the virtual machine in the bytecode, which will
+fail if the minimum is not met.
 
-`./Player-Online.x -N 2 0 tutorial`
+#### Arithmetic modulo 2^k
 
-`./Player-Online.x -N 2 1 tutorial` (in a separate terminal)
+```./compile.py -R <integer bit length> <program>```
 
-Or, you can use a script to do the above automatically:
+Currently, 64 is the only supported bit length, but it still has to be
+specified for future compatibility.
 
-`Scripts/run-online.sh tutorial`
+#### Binary circuits
 
-To run a program on two different machines, firstly the preprocessing data must be
-copied across to the second machine (or shared using sshfs), and secondly, Player-Online.x
-needs to be passed the machine where the first party is running.
-e.g. if this machine is name `diffie` on the local network:
+```./compile.py -B <integer bit length> <program>```
 
-`./Player-Online.x -N 2 -h diffie 0 test_all`
+The integer length can be any number up to a maximum depending on the
+protocol. All protocols support at least 64-bit integers.
 
-`./Player-Online.x -N 2 -h diffie 1 test_all`
+Fixed-point numbers (`sfix`) always use 16/16-bit precision by default in
+binary circuits. This can be changed with `sfix.set_precision`. See
+[the tutorial](Programs/Source/tutorial.mpc).
 
-The software uses TCP ports around 5000 by default, use the `-pn`
-argument to change that.
+If you would like to use integers of various precisions, you can use
+`sbitint.get_type(n)` to get a type for `n`-bit arithmetic.
 
 #### Compiling and running programs from external directories
 
@@ -224,99 +216,135 @@ Player-Data Programs
 $ ../spdz/Scripts/run-online.sh test
 ```
 
-### Honest-majority computation based on Shamir secret sharing
+## Dishonest majority
 
-Compile the virtual machines:
+All current full implementations requires oblivious transfer, which is
+implemented as OT extension based on
+https://github.com/mkskeller/SimpleOT.
 
-`make -j 8 shamir`
+### Arithmetic circuits (MASCOT / SPDZ2k)
 
-Run setup to generate SSL keys and certificates. See the section replicated secret sharing for binary circuits below for details.
+The two protocols are implemented in `Player-Online.x` and
+`spdz2k-party.x`,
+respectively. [MASCOT](https://eprint.iacr.org/2016/505) works modulo
+a prime, while a [SPDZ2k](https://eprint.iacr.org/2018/482) works
+modulo 2^k. We will use MASCOT to demonstrate the use,
+but SPDZ2k works similarly.
 
-`Scripts/setup-ssl.sh <nparties>`
+First compile the virtual machine:
 
-In order to compile a program, use `./compile.py`, for example:
+`make -j8 Player-Online.x`
 
-`./compile.py tutorial`
+and a high-level program, for example the tutorial (use `-R 64` for SPDZ2k):
 
-Running the computation is similar to SPDZ but you will need to start
-at least three parties:
+`./compile.py -F 64 tutorial`
 
-`./malicious-shamir-party.x -N 3 -I 0 tutorial`
+To run the tutorial with two parties on one machine, run:
 
-`./malicious-shamir-party.x -N 3 -I 1 tutorial` (in a separate terminal)
+`./Player-Online.x -N 2 -I -p 0 tutorial`
 
-`./malicious-shamir-party.x -N 3 -I 2 tutorial` (in a separate terminal)
+`./Player-Online.x -N 2 -I -p 1 tutorial` (in a separate terminal)
 
-The `-I` enable interactive inputs, and in the tutorial party 0 and 1
-will be asked to provide three numbers. Using
-`./shamir-party.x` will provide semi-honest security instead
-of malicious.
-
-You can run all parties at once with
+Using `-I` activates interactive mode, which means that inputs are
+solicitated from standard input, and outputs are given to any
+party. Omitting `-I` leads to inputs being read from
+`Player-Data/Input-P<party number>-0` in text format.
 
-`Scripts/mal-shamir.sh tutorial`
+Or, you can use a script to do run two parties in non-interactive mode
+automatically (the script for SPDZ2k is `Scripts/spdz2k.sh`):
 
-for malicious security or
+`Scripts/mascot.sh tutorial`
 
-`Scripts/shamir.sh tutorial`
+To run a program on two different machines, `Player-Online.x`
+needs to be passed the machine where the first party is running,
+e.g. if this machine is name `diffie` on the local network:
 
-for semi-honest security. In this case, the inputs are read from
-`Player-Data/Input-P<playerno>-0`.
+`./Player-Online.x -N 2 -h diffie 0 tutorial`
 
-### Three-party honest-majority computation modulo a prime
+`./Player-Online.x -N 2 -h diffie 1 tutorial`
 
-Compile the virtual machines:
+The software uses TCP ports around 5000 by default, use the `-pn`
+argument to change that.
 
-`make -j 8 rep-field`
+### Yao's garbled circuits
 
-Run setup to generate a 128-bit prime. This will also generate SSL keys and certificates. See the section replicated secret sharing for binary circuits below for details.
+We use the implementation optimized for AES-NI by [Bellare et al.](https://eprint.iacr.org/2013/426)
 
-`Scripts/setup-replicated.sh`
+Compile the virtual machine:
 
-In order to compile a program, use `./compile.py`, for example:
+`make -j 8 yao`
 
-`./compile.py tutorial`
+and the high-level program:
 
-Running the computation is similar to SPDZ but you will need to start
-three parties:
+`./compile.py -B <integer bit length> <program>`
 
-`./malicious-rep-field-party.x -I 0 tutorial`
+Then run as follows:
+  - Garbler: ```./yao-player.x [-I] -p 0 <program>```
+  - Evaluator: ```./yao-player.x [-I] -p 1 -h <garbler host> <program>```
 
-`./malicious-rep-field-party.x -I 1 tutorial` (in a separate terminal)
+When running locally, you can omit the host argument. As above, `-I`
+activates interactive input, otherwise inputs are read from
+`Player-Data/Input-P<playerno>-0`.
 
-`./malicious-rep-field-party.x -I 2 tutorial` (in a separate terminal)
+By default, the circuit is garbled at once and stored on the evaluator
+side before evaluating. You can activate a more continuous operation
+by adding `-C` to the command line on both sides.
 
-The `-I` enable interactive inputs, and in the tutorial party 0 and 1
-will be asked to provide three numbers. Using
-`./replicated-field-party.x` will provide semi-honest security instead
-of malicious.
+## Honest majority
 
-You can run all parties at once with
+The following table shows all programs for honest-majority computation:
 
-`Scripts/mal-rep-field.sh tutorial`
+| Program | Sharing | Domain | Malicious | \# parties | Script |
+| --- | --- | --- | --- | --- | --- |
+| `replicated-ring-party.x` | Replicated | Mod 2^k | N | 3 | `ring.sh` |
+| `replicated-bin-party.x` | Replicated | Binary | N | 3 | `replicated.sh` |
+| `replicated-field-party.x` | Replicated | Mod prime | N | 3 | `rep-field.sh` |
+| `malicious-rep-field-party.x` | Replicated | Mod prime | Y | 3 | `mal-rep-field.sh` |
+| `shamir-party.x` | Shamir | Mod prime | N | 3 or more | `shamir.sh` |
+| `malicious-shamir-party.x` | Shamir | Mod prime | Y | 3 or more | `mal-shamir.sh` |
 
-for malicious security or
+We use the "generate random triple optimistically/sacrifice/Beaver"
+methodology described by [Lindell and
+Nof](https://eprint.iacr.org/2017/816) to achieve malicious
+security. Otherwise, we use resharing by [Cramer et
+al.](https://eprint.iacr.org/2000/037) for Shamir's secret sharing and
+the optimized approach by [Araki et
+al.](https://eprint.iacr.org/2016/768) for replicated secret sharing.
 
-`Scripts/rep-field.sh tutorial`
+All protocols in this section require encrypted channels because the
+information received by the honest majority suffices the reconstruct
+all secrets. Therefore, an eavesdropper on the network could learn all
+information.
 
-for semi-honest security. In this case, the inputs are read from
-`Player-Data/Input-P<playerno>-0`.
+MP-SPDZ uses OpenSSL for secure channels. You can generate the
+necessary certificates and keys as follows:
 
-### Semi-honest honest-majority computation modulo 2^64
+`Scripts/setup-ssl.sh [<number of parties>]`
 
-Compile the necessary programs:
+The programs expect the keys and certificates to be in
+`Player-Data/P<i>.key` and `Player-Data/P<i>.pem`, respectively, and
+the certificates to have the common name `P<i>` for player
+`<i>`. Furthermore, the relevant root certificates have to be in
+`Player-Data` such that OpenSSL can find them (run `c_rehash
+Player-Data`). The script above takes care of all this by generating
+self-signed certificates. Therefore, if you are running the programs
+on different hosts you will need to copy the certificate files.
 
-`make -j 8 rep-ring`
+In the following, we will walk through running the tutorial modulo
+2^k with three parties. The other programs work similarly.
 
-Run setup to generate SSL keys and certificates. See the section replicated secret sharing for binary circuits below for details.
+First, compile the virtual machine:
 
-`Scripts/setup-ssl.sh`
+`make -j 8 replicated-ring-party.x`
 
-In order to compile a program, use `./compile.py -R 64`, for example:
+In order to compile a high-level program, use `./compile.py -R 64`:
 
 `./compile.py -R 64 tutorial`
 
-Then, run the three parties as follows:
+If using another computation domain, use `-F` or `-B` as described in
+[the relevant section above](#compiling-high-level-programs).
+
+Finally, run the three parties as follows:
 
 `./replicated-ring-party.x -I 0 tutorial`
 
@@ -328,73 +356,103 @@ or
 
 `Scripts/ring.sh tutorial`
 
-Again, `-I` activates interactive input, otherwise inputs are read
-from `Player-Data/Input-P<playerno>-0`.
+The `-I` enable interactive inputs, and in the tutorial party 0 and 1
+will be asked to provide three numbers. Otherwise, and when using the
+script, the inputs are read from `Player-Data/Input-P<playerno>-0`.
 
-## Binary circuits
+When using programs based on Shamir's secret sharing, you can specify
+the number of parties with `-N` and the maximum number of corrupted
+parties with `-T`. The latter can be at most half the number of
+parties.
 
-For binary circuits, you can compile your programs giving the desired
-integer length, for example:
+## Online-only benchmarking
 
-`./compile.py -B 32 tutorial`
+In this section we show how to benchmark purely the data-dependent
+(often called online) phase of some protocols. This requires to
+generate the output of a previous phase insecurely. You will have to
+(re)compile the software after adding `MY_CFLAGS = -DINSECURE` to
+`CONFIG.mine` in order to run this insecure generation.
 
-for using 32-bit integers with `sint` and 16/16-bit fixed-point
-numbers for `sfix`. The latter is independent of the `-B` option and
-can be changed with `sfix.set_precision`. See [the
-tutorial](Programs/Source/tutorial.mpc).
+### SPDZ
 
-Alternatively, you can directly use `sbitint.get_type(n)` and
-`sbitfix` instead of `sint`and `sfix`, respectively.
+The SPDZ protocol uses preprocessing, that is, in a first (sometimes
+called offline) phase correlated randomness is generated independent
+of the actual inputs of the computation. Only the second ("online")
+phase combines this randomness with the actual inputs in order to
+produce the desired results. The preprocessed data can only be used
+once, thus more computation requires more preprocessing. MASCOT and
+Overdrive are the names for two alternative preprocessing phases to go
+with the SPDZ online phase.
 
-### Honest-majority three-party computation
+All programs required in this section can be compiled with the target `online`:
 
-Compile the virtual machines:
+`make -j 8 online`
 
-`make -j 8 rep-bin`
+#### To setup for benchmarking the online phase
 
-Set up SSL certificate and keys:
+This requires the INSECURE flag to be set before compilation as explained above. For a secure offline phase, see the section on SPDZ-2 below.
 
-`Scripts/setup-ssl.sh`
+Run the command below. **If you haven't added `MY_CFLAGS = -DINSECURE` to `CONFIG.mine` before compiling, it will fail.**
 
-The programs expect the keys and certificates to be in `Player-Data/P<i>.key` and `Player-Data/P<i>.pem`, respectively, and the certificates to have the common name `P<i>` for player `<i>`. Furthermore, the relevant root certificates have to be in `Player-Data` such that OpenSSL can find them (run `c_rehash Player-Data`). The script above takes care of all this by generating self-signed certificates. Therefore, if you are running the programs on different hosts you will need to copy the certificate files.
+`Scripts/setup-online.sh`
 
-After compilating the mpc file, run as follows:
+This sets up parameters for the online phase for 2 parties with a 128-bit prime field and 128-bit binary field, and creates fake offline data (multiplication triples etc.) for these parameters.
 
-`replicated-bin-party.x [-I] -h <host of party 0> -p <0/1/2> tutorial`
+Parameters can be customised by running
 
-When running locally, you can omit the host argument. As above, `-I`
-activates interactive input, otherwise inputs are read from
-`Player-Data/Input-P<playerno>-0`.
+`Scripts/setup-online.sh <nparties> <nbitsp> <nbits2>`
 
-The program above runs a semi-honest computation. For malicious
-security you have to generate some preprocessing data (requires
-compilation with the INSECURE flag):
 
-`Scripts/setup-online.sh 3`
+#### To compile a program
 
-and then use `malicious-rep-bin-party.x` instead of
-`replicated-bin-party.x`.
+To compile for example the program in `./Programs/Source/tutorial.mpc`, run:
 
-### Yao's garbled circuits
+`./compile.py tutorial`
 
-We use the implementation optimized for AES-NI by [Bellare et al.](https://eprint.iacr.org/2013/426)
+This creates the bytecode and schedule files in Programs/Bytecode/ and Programs/Schedules/
 
-Compile the virtual machine:
+#### To run a program
 
-`make -j 8 yao`
+To run the above program with two parties on one machine, run:
+
+`./Player-Online.x -N 2 0 tutorial`
+
+`./Player-Online.x -N 2 1 tutorial` (in a separate terminal)
+
+Or, you can use a script to do the above automatically:
+
+`Scripts/run-online.sh tutorial`
+
+To run a program on two different machines, firstly the preprocessing data must be
+copied across to the second machine (or shared using sshfs), and secondly, Player-Online.x
+needs to be passed the machine where the first party is running.
+e.g. if this machine is name `diffie` on the local network:
+
+`./Player-Online.x -N 2 -h diffie 0 test_all`
+
+`./Player-Online.x -N 2 -h diffie 1 test_all`
+
+The software uses TCP ports around 5000 by default, use the `-pn`
+argument to change that.
+
+### Honest-majority three-party computation of binary circuits with malicious security
+
+Compile the virtual machines:
+
+`make -j 8 rep-bin`
+
+Generate preprocessing data:
+
+`Scripts/setup-online.sh 3`
 
 After compilating the mpc file, run as follows:
-  - Garbler: ```./yao-player.x [-I] -p 0 <program>```
-  - Evaluator: ```./yao-player.x [-I] -p 1 -h <garbler host> <program>```
+
+`malicious-rep-bin-party.x [-I] -h <host of party 0> -p <0/1/2> tutorial`
 
 When running locally, you can omit the host argument. As above, `-I`
 activates interactive input, otherwise inputs are read from
 `Player-Data/Input-P<playerno>-0`.
 
-By default, the circuit is garbled at once and stored on the evaluator
-side before evaluating. You can activate a more continuous operation
-by adding `-C` to the command line on both sides.
-
 ### BMR
 
 This part has been developed to benchmark ORAM for the [Eurocrypt 2018
@@ -429,7 +487,7 @@ compiler to remove dead code. This is useful for more complex programs
 such as this one.
 3) Run `gc_oram` in the virtual machines as explained above.
 
-# Benchmarking offline phases
+## Benchmarking offline phases
 
 #### SPDZ-2 offline phase
 
@@ -451,15 +509,19 @@ The number of parties are counted from 0. As seen in the quick example, you can
 
 The program will generate every kind of randomness required by the online phase until you stop it. You can shut it down gracefully pressing Ctrl-c (or sending the interrupt signal `SIGINT`), but only after an initial phase, the end of which is marked by the output `Starting to produce gf2n`. Note that the initial phase has been reported to take up to an hour. Furthermore, 3 GB of RAM are required per party.
 
-#### Benchmarking the MASCOT offline phase
+#### Benchmarking the MASCOT or SPDZ2k offline phase
 
-The MASCOT implementation is not suitable to generate the preprocessed data for the online phase because it can only generate either multiplication triples or bits. Nevertheless, an online computation only using data of one kind can run from the output of MASCOT offline phase if `Player-Online.x` is run with the options `-lg2 128 -lgp 128`.
+These implementations are not suitable to generate the preprocessed
+data for the online phase because they can only generate either
+multiplication triples or bits.
 
-In order to compile the MASCOT code, the following must be set in CONFIG or CONFIG.mine:
+In order to compile the code, the following must be set in CONFIG or
+CONFIG.mine:
 
 `USE_GF2N_LONG = 1`
 
-If SPDZ has been built before with `USE_GF2N_LONG = 0`, any compiled code needs to be removed:
+If the software has been built before with `USE_GF2N_LONG = 0`, any
+compiled code needs to be removed:
 
 `make clean`
 
@@ -471,6 +533,15 @@ Then, MASCOT can be run as follows:
 
 `host2:$ ./ot-offline.x -p 1 -c`
 
+For SPDZ2k, use `-Z <k>` to set the computation domain to Z_{2^k}, and
+`-S` to set the security parameter. The latter defaults to k. At the
+time of writing, the following combinations are available: 32/32,
+64/64, 64/48, and 66/48.
+
+Running './ot-offline.x' without parameters give the full menu of
+options such as how many items to generate in how many threads and
+loops.
+
 #### Benchmarking Overdrive offline phases
 
 We have implemented several protocols to measure the maximal throughput for the [Overdrive paper](https://eprint.iacr.org/2017/1230). As for MASCOT, these implementations are not suited to generate data for the online phase because they only generate one type at a time.
diff --git a/Scripts/build.sh b/Scripts/build.sh
index 95e91b187..661c12155 100755
--- a/Scripts/build.sh
+++ b/Scripts/build.sh
@@ -7,7 +7,7 @@ function build
     make clean
     rm -R static
     mkdir static
-    make -j 12 static-hm
+    make -j 12 static-release
     mkdir bin
     dest=bin/`uname`-$2
     rm -R $dest
diff --git a/Scripts/mascot.sh b/Scripts/mascot.sh
new file mode 100755
index 000000000..ca66ebe3d
--- /dev/null
+++ b/Scripts/mascot.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+HERE=$(cd `dirname $0`; pwd)
+SPDZROOT=$HERE/..
+
+bits=${2:-128}
+g=${3:-0}
+mem=${4:-empty}
+
+. $HERE/run-common.sh
+
+run_player Player-Online.x ${1:-test_all} -lgp ${bits} -lg2 ${g} -m ${mem} || exit 1
diff --git a/Scripts/run-online.sh b/Scripts/run-online.sh
index ca66ebe3d..a2dcebc72 100755
--- a/Scripts/run-online.sh
+++ b/Scripts/run-online.sh
@@ -9,4 +9,4 @@ mem=${4:-empty}
 
 . $HERE/run-common.sh
 
-run_player Player-Online.x ${1:-test_all} -lgp ${bits} -lg2 ${g} -m ${mem} || exit 1
+run_player Player-Online.x ${1:-test_all} -F -lgp ${bits} -lg2 ${g} -m ${mem} || exit 1
diff --git a/Scripts/spdz2k.sh b/Scripts/spdz2k.sh
new file mode 100755
index 000000000..e579c3ead
--- /dev/null
+++ b/Scripts/spdz2k.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+
+HERE=$(cd `dirname $0`; pwd)
+SPDZROOT=$HERE/..
+
+. $HERE/run-common.sh
+
+run_player spdz2k-party.x $* || exit 1
diff --git a/Scripts/tldr.sh b/Scripts/tldr.sh
index 91ea90bf8..9db68ad52 100755
--- a/Scripts/tldr.sh
+++ b/Scripts/tldr.sh
@@ -32,4 +32,4 @@ if test "$flags"; then
     cp -av bin/`uname`-$cpu/* .
 fi
 
-Scripts/setup-ssl.sh
+mkdir Player-Data 2> /dev/null
diff --git a/Scripts/yao.sh b/Scripts/yao.sh
index 385c2432b..84e8ce0ca 100755
--- a/Scripts/yao.sh
+++ b/Scripts/yao.sh
@@ -1,5 +1,7 @@
 #!/bin/bash
 
+. Scripts/run-common.sh
+
 for i in 0 1; do
     IFS=""
     log="yao-$*-$i"
diff --git a/SimpleOT b/SimpleOT
index 97c4b4cb7..66a9d3923 160000
--- a/SimpleOT
+++ b/SimpleOT
@@ -1 +1 @@
-Subproject commit 97c4b4cb7f02c9e77932ff16fd684f1d838bc60d
+Subproject commit 66a9d392362ca6d8e1cdd78e9e4ed85a76df284d
diff --git a/Tools/FlexBuffer.cpp b/Tools/FlexBuffer.cpp
index d82697b51..1dabd8c26 100644
--- a/Tools/FlexBuffer.cpp
+++ b/Tools/FlexBuffer.cpp
@@ -15,9 +15,11 @@ using namespace std;
 
 ReceivedMsgStore::~ReceivedMsgStore()
 {
-	cout << "Stored " << (double)total_size / 1e9 << " GB in "
+#ifdef VERBOSE
+	cerr << "Stored " << (double)total_size / 1e9 << " GB in "
 			<< push_timer.elapsed() << " seconds and retrieved them in "
 			<< pop_timer.elapsed() << " seconds " << endl;
+#endif
 }
 
 void ReceivedMsgStore::push(ReceivedMsg& msg)
diff --git a/Tools/MMO.cpp b/Tools/MMO.cpp
index 0b0978d67..e8ca280f5 100644
--- a/Tools/MMO.cpp
+++ b/Tools/MMO.cpp
@@ -8,20 +8,27 @@
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
 #include "Math/bigint.h"
+#include "Math/Z2k.h"
 #include <unistd.h>
 
 
 void MMO::zeroIV()
 {
-    octet key[AES_BLK_SIZE];
-    memset(key,0,AES_BLK_SIZE*sizeof(octet));
-    setIV(key);
+    if (N_KEYS > (1 << 8))
+        throw not_implemented();
+    for (int i = 0; i < N_KEYS; i++)
+    {
+        octet key[AES_BLK_SIZE];
+        memset(key, 0, AES_BLK_SIZE * sizeof(octet));
+        key[i] = i;
+        setIV(i, key);
+    }
 }
 
 
-void MMO::setIV(octet key[AES_BLK_SIZE])
+void MMO::setIV(int i, octet key[AES_BLK_SIZE])
 {
-    aes_schedule(IV,key);
+    aes_schedule(IV[i],key);
 }
 
 
@@ -37,78 +44,105 @@ void MMO::encrypt_and_xor(void* output, const void* input, const octet* key,
         _mm_storeu_si128(((__m128i*)output) + indices[i], out[i]);
 }
 
-template <>
-void MMO::hashOneBlock<gf2n>(octet* output, octet* input)
+template <class T, int N>
+void MMO::hashBlocks(void* output, const void* input)
 {
-    encrypt_and_xor<1>(output, input, IV);
+    int n_blocks = DIV_CEIL(T::size(), 16);
+    if (n_blocks > N_KEYS)
+        throw runtime_error("not enough MMO keys");
+    __m128i tmp[N];
+    int block_size = sizeof(tmp[0]);
+    for (int i = 0; i < n_blocks; i++)
+    {
+        encrypt_and_xor<N>(tmp, input, IV[i]);
+        for (int j = 0; j < N; j++)
+            memcpy((char*)output + j * sizeof(T) + i * block_size, &tmp[j],
+                    min(T::size() - i * block_size, block_size));
+    }
 }
 
-
 template <>
-void MMO::hashOneBlock<gfp>(octet* output, octet* input)
+void MMO::hashBlocks<gfp1, 1>(void* output, const void* input)
 {
-    encrypt_and_xor<1>(output, input, IV);
-    while (mpn_cmp((mp_limb_t*)output, gfp::get_ZpD().get_prA(), gfp::t()) >= 0)
-        encrypt_and_xor<1>(output, output, IV);
+    if (gfp1::get_ZpD().get_t() != 2)
+        throw not_implemented();
+    encrypt_and_xor<1>(output, input, IV[0]);
+    while (mpn_cmp((mp_limb_t*)output, gfp1::get_ZpD().get_prA(), gfp1::t()) >= 0)
+        encrypt_and_xor<1>(output, output, IV[0]);
 }
 
 template <>
 void MMO::hashBlockWise<gf2n,128>(octet* output, octet* input)
 {
     for (int i = 0; i < 16; i++)
-        encrypt_and_xor<8>(&((__m128i*)output)[i*8], &((__m128i*)input)[i*8], IV);
+        encrypt_and_xor<8>(&((__m128i*)output)[i*8], &((__m128i*)input)[i*8], IV[0]);
 }
 
 template <>
-void MMO::hashBlockWise<gfp,128>(octet* output, octet* input)
+void MMO::hashBlocks<gfp1, 8>(void* output, const void* input)
+{
+    if (gfp1::get_ZpD().get_t() != 2)
+        throw not_implemented();
+    __m128i* in = (__m128i*)input;
+    __m128i* out = (__m128i*)output;
+    encrypt_and_xor<8>(out, in, IV[0]);
+    int left = 8;
+    int indices[8] = {0, 1, 2, 3, 4, 5, 6, 7};
+    while (left)
+    {
+        int now_left = 0;
+        for (int j = 0; j < left; j++)
+            if (mpn_cmp((mp_limb_t*)&out[indices[j]], gfp1::get_ZpD().get_prA(), gfp1::t()) >= 0)
+            {
+                indices[now_left] = indices[j];
+                now_left++;
+            }
+        left = now_left;
+
+        // and now my favorite hack
+        switch (left) {
+        case 8:
+            ecb_aes_128_encrypt<8>(out, out, IV[0], indices);
+            break;
+        case 7:
+            ecb_aes_128_encrypt<7>(out, out, IV[0], indices);
+            break;
+        case 6:
+            ecb_aes_128_encrypt<6>(out, out, IV[0], indices);
+            break;
+        case 5:
+            ecb_aes_128_encrypt<5>(out, out, IV[0], indices);
+            break;
+        case 4:
+            ecb_aes_128_encrypt<4>(out, out, IV[0], indices);
+            break;
+        case 3:
+            ecb_aes_128_encrypt<3>(out, out, IV[0], indices);
+            break;
+        case 2:
+            ecb_aes_128_encrypt<2>(out, out, IV[0], indices);
+            break;
+        case 1:
+            ecb_aes_128_encrypt<1>(out, out, IV[0], indices);
+            break;
+        default:
+            break;
+        }
+    }
+}
+
+template <>
+void MMO::hashBlockWise<gfp1,128>(octet* output, octet* input)
 {
     for (int i = 0; i < 16; i++)
     {
         __m128i* in = &((__m128i*)input)[i*8];
         __m128i* out = &((__m128i*)output)[i*8];
-        encrypt_and_xor<8>(out, in, IV);
-        int left = 8;
-        int indices[8] = {0, 1, 2, 3, 4, 5, 6, 7};
-        while (left)
-        {
-            int now_left = 0;
-            for (int j = 0; j < left; j++)
-                if (mpn_cmp((mp_limb_t*)&out[indices[j]], gfp::get_ZpD().get_prA(), gfp::t()) >= 0)
-                {
-                    indices[now_left] = indices[j];
-                    now_left++;
-                }
-            left = now_left;
-
-            // and now my favorite hack
-            switch (left) {
-            case 8:
-                ecb_aes_128_encrypt<8>(out, out, IV, indices);
-                break;
-            case 7:
-                ecb_aes_128_encrypt<7>(out, out, IV, indices);
-                break;
-            case 6:
-                ecb_aes_128_encrypt<6>(out, out, IV, indices);
-                break;
-            case 5:
-                ecb_aes_128_encrypt<5>(out, out, IV, indices);
-                break;
-            case 4:
-                ecb_aes_128_encrypt<4>(out, out, IV, indices);
-                break;
-            case 3:
-                ecb_aes_128_encrypt<3>(out, out, IV, indices);
-                break;
-            case 2:
-                ecb_aes_128_encrypt<2>(out, out, IV, indices);
-                break;
-            case 1:
-                ecb_aes_128_encrypt<1>(out, out, IV, indices);
-                break;
-            default:
-                break;
-            }
-        }
+        hashBlocks<gfp1,8>(out, in);
     }
 }
+
+#define ZZ(F,N) \
+    template void MMO::hashBlocks<F,N>(void*, const void*);
+#define Z(F) ZZ(F,1) ZZ(F,2) ZZ(F,8)
+Z(gf2n_long) Z(Z2<64>) Z(Z2<112>) Z(Z2<128>) Z(Z2<160>) Z(Z2<114>) Z(Z2<130>)
diff --git a/Tools/MMO.h b/Tools/MMO.h
index 12df89aa2..b7821a354 100644
--- a/Tools/MMO.h
+++ b/Tools/MMO.h
@@ -12,7 +12,8 @@
 // Matyas-Meyer-Oseas hashing
 class MMO
 {
-    octet IV[176]  __attribute__((aligned (16)));
+    static const int N_KEYS = 2;
+    octet IV[N_KEYS][176]  __attribute__((aligned (16)));
 
     template<int N>
     static void encrypt_and_xor(void* output, const void* input,
@@ -24,9 +25,11 @@ class MMO
 public:
     MMO() { zeroIV(); }
     void zeroIV();
-    void setIV(octet key[AES_BLK_SIZE]);
+    void setIV(int i, octet key[AES_BLK_SIZE]);
     template <class T>
-    void hashOneBlock(octet* output, octet* input);
+    void hashOneBlock(void* output, const void* input) { hashBlocks<T, 1>((T*)output, input); }
+    template <class T, int N>
+    void hashBlocks(void* output, const void* input);
     template <class T, int N>
     void hashBlockWise(octet* output, octet* input);
     template <class T>
@@ -50,14 +53,14 @@ inline void MMO::encrypt_and_xor(void* output, const void* input, const octet* k
 inline Key MMO::hash(const Key& input)
 {
     Key res;
-    encrypt_and_xor<1>(&res.r, &input.r, IV);
+    encrypt_and_xor<1>(&res.r, &input.r, IV[0]);
     return res;
 }
 
 template <int N>
 inline void MMO::hash(Key* output, const Key* input)
 {
-    encrypt_and_xor<N>(output, input, IV);
+    encrypt_and_xor<N>(output, input, IV[0]);
 }
 
 #endif /* TOOLS_MMO_H_ */
diff --git a/Tools/OfflineMachineBase.cpp b/Tools/OfflineMachineBase.cpp
index 37801404d..0f86eb518 100644
--- a/Tools/OfflineMachineBase.cpp
+++ b/Tools/OfflineMachineBase.cpp
@@ -11,8 +11,8 @@ using namespace std;
 
 
 OfflineMachineBase::OfflineMachineBase() :
-        server(0), my_num(0), nplayers(0), nthreads(0), ntriples(0),
-        nTriplesPerThread(0), output(0)
+        server(0), my_num(0), nplayers(0), ntriples(0),
+        nTriplesPerThread(0)
 {
 }
 
diff --git a/Tools/OfflineMachineBase.h b/Tools/OfflineMachineBase.h
index 8363b9954..c096c78db 100644
--- a/Tools/OfflineMachineBase.h
+++ b/Tools/OfflineMachineBase.h
@@ -10,7 +10,16 @@
 #include "Networking/Server.h"
 #include "Networking/Player.h"
 
-class OfflineMachineBase
+class OfflineParams
+{
+public:
+    bool output;
+    int nthreads;
+
+    OfflineParams() : output(false), nthreads(0) {}
+};
+
+class OfflineMachineBase : virtual public OfflineParams
 {
 protected:
     ez::ezOptionParser opt;
@@ -18,9 +27,8 @@ class OfflineMachineBase
 
 public:
     Names N;
-    int my_num, nplayers, nthreads;
+    int my_num, nplayers;
     long long ntriples, nTriplesPerThread;
-    bool output;
 
     OfflineMachineBase();
     ~OfflineMachineBase();
diff --git a/Tools/PointerVector.h b/Tools/PointerVector.h
new file mode 100644
index 000000000..5ee6ef49d
--- /dev/null
+++ b/Tools/PointerVector.h
@@ -0,0 +1,30 @@
+/*
+ * PointerVector.h
+ *
+ */
+
+#ifndef TOOLS_POINTERVECTOR_H_
+#define TOOLS_POINTERVECTOR_H_
+
+#include <vector>
+using namespace std;
+
+template<class T>
+class PointerVector : public vector<T>
+{
+    int i;
+
+public:
+    PointerVector() : i(0) {}
+    void clear()
+    {
+        vector<T>::clear();
+        i = 0;
+    }
+    T& next()
+    {
+        return (*this)[i++];
+    }
+};
+
+#endif /* TOOLS_POINTERVECTOR_H_ */
diff --git a/Tools/WaitQueue.h b/Tools/WaitQueue.h
index 1c6948416..28e4e9a3f 100644
--- a/Tools/WaitQueue.h
+++ b/Tools/WaitQueue.h
@@ -77,6 +77,13 @@ class WaitQueue
         return running;
     }
 
+    T pop()
+    {
+        T res;
+        pop(res);
+        return res;
+    }
+
     bool pop_dont_stop(T& value)
     {
         lock();
diff --git a/Tools/aes-ni.cpp b/Tools/aes-ni.cpp
index 3f678c3e9..ec2d4ece4 100644
--- a/Tools/aes-ni.cpp
+++ b/Tools/aes-ni.cpp
@@ -31,11 +31,12 @@ inline __m128i AES_128_ASSIST (__m128i temp1, __m128i temp2)
 
 
 void aes_128_schedule( octet* key, const octet* userkey )
-{ __m128i temp1, temp2; 
+{
+#ifdef __AES__
+  __m128i temp1, temp2;
   __m128i *Key_Schedule = (__m128i*)key; 
   temp1 = _mm_loadu_si128((__m128i*)userkey); 
   Key_Schedule[0] = temp1;
-#ifdef __AES__
   temp2 = _mm_aeskeygenassist_si128 (temp1 ,0x1); 
   temp1 = AES_128_ASSIST(temp1, temp2); 
   Key_Schedule[1] = temp1; 
@@ -67,8 +68,7 @@ void aes_128_schedule( octet* key, const octet* userkey )
   temp1 = AES_128_ASSIST(temp1, temp2); 
   Key_Schedule[10] = temp1; 
 #else
-  (void) temp2;
-  throw runtime_error("need to compile with AES-NI support");
+  aes_128_schedule((uint*) key, userkey);
 #endif
 }
 
diff --git a/Tools/aes.cpp b/Tools/aes.cpp
index 0d11943d0..fb0204615 100644
--- a/Tools/aes.cpp
+++ b/Tools/aes.cpp
@@ -406,7 +406,7 @@ uint RC[] ={ 0x00000001, 0x00000002, 0x00000004, 0x00000008,
 
 
 
-void aes_schedule( int nb, int nr, octet* k, uint* RK ) 
+void aes_schedule( int nb, int nr, const octet* k, uint* RK )
 {
   for( int i =  0;        i < (       nb       ); i++ ) 
     { U8_TO_U32_LE( RK[ i ], k, 4*i ); }
diff --git a/Tools/aes.h b/Tools/aes.h
index 799f5c4a5..1e2049c46 100644
--- a/Tools/aes.h
+++ b/Tools/aes.h
@@ -11,11 +11,11 @@ typedef unsigned int  uint;
 
 /************* C Version *************/
 // Key Schedule
-void aes_schedule( int nb, int nr, octet* k, uint* RK );
+void aes_schedule( int nb, int nr, const octet* k, uint* RK );
 
 inline void aes_schedule( uint* RK, octet* K )
 { aes_schedule(4,10,K,RK); }
-inline void aes_128_schedule( uint* RK, octet* K )
+inline void aes_128_schedule( uint* RK, const octet* K )
 { aes_schedule(4,10,K,RK); }
 inline void aes_192_schedule( uint* RK, octet* K )
 { aes_schedule(6,12,K,RK); }
@@ -71,10 +71,10 @@ __attribute__((optimize("unroll-loops")))
 #endif
 inline void ecb_aes_128_encrypt(__m128i* out, __m128i* in, const octet* key)
 {
+#ifdef __AES__
     __m128i tmp[N];
     for (int i = 0; i < N; i++)
         tmp[i] = _mm_xor_si128 (in[i],((__m128i*)key)[0]);
-#ifdef __AES__
     int j;
     for(j=1; j <10; j++)
         for (int i = 0; i < N; i++)
@@ -82,8 +82,8 @@ inline void ecb_aes_128_encrypt(__m128i* out, __m128i* in, const octet* key)
     for (int i = 0; i < N; i++)
         out[i] = _mm_aesenclast_si128 (tmp[i],((__m128i*)key)[j]);
 #else
-    (void) tmp, (void) out;
-    throw runtime_error("need to compile with AES-NI support");
+    for (int i = 0; i < N; i++)
+        aes_128_encrypt((octet*)&out[i], (octet*)&in[i], (uint*)key);
 #endif
 }
 
diff --git a/Tools/avx_memcpy.h b/Tools/avx_memcpy.h
index f506983c6..5e3281d30 100644
--- a/Tools/avx_memcpy.h
+++ b/Tools/avx_memcpy.h
@@ -11,6 +11,13 @@
 
 inline void avx_memcpy(void* dest, const void* source, size_t length)
 {
+	memcpy(dest, source, length);
+}
+
+template<size_t L>
+inline void avx_memcpy(void* dest, const void* source)
+{
+	size_t length = L;
 	__m256i* d = (__m256i*)dest, *s = (__m256i*)source;
 #ifdef __AVX__
 	while (length >= 32)
diff --git a/Tools/names.cpp b/Tools/names.cpp
index bf010d83e..75446ec67 100644
--- a/Tools/names.cpp
+++ b/Tools/names.cpp
@@ -1,3 +1,3 @@
 #include "Processor/Data_Files.h"
 
-const char* DataPositions::dtype_names[N_DTYPE] = { "Triples", "Squares", "Bits", "Inverses", "BitTriples", "BitGF2NTriples" };
+const char* DataPositions::dtype_names[N_DTYPE + 1] = { "Triples", "Squares", "Bits", "Inverses", "BitTriples", "BitGF2NTriples", "None" };
diff --git a/Tools/oct.h b/Tools/oct.h
new file mode 100644
index 000000000..e0fdec0b0
--- /dev/null
+++ b/Tools/oct.h
@@ -0,0 +1,19 @@
+#ifndef TOOLS_OCT_H_
+#define TOOLS_OCT_H_
+
+typedef unsigned char octet;
+
+inline void PRINT_OCTET(const octet* bytes, size_t size) {
+    for (size_t i = 0; i < size; ++i)
+        cout << hex << (int) bytes[i];
+    cout << flush << endl;
+}
+
+inline bool OCTETS_EQUAL(const octet* left, const octet* right, int size) {
+    for (int i = 0; i < size; ++i)
+        if (left[i] != right[i])
+            return false;
+    return true;
+}
+
+#endif
diff --git a/Tools/octetStream.cpp b/Tools/octetStream.cpp
index b0e9b6e00..3b3aea4f8 100644
--- a/Tools/octetStream.cpp
+++ b/Tools/octetStream.cpp
@@ -186,7 +186,7 @@ void octetStream::get(bigint& ans)
 
 
 template<class T>
-void octetStream::exchange(T send_socket, T receive_socket, octetStream& receive_stream)
+void octetStream::exchange(T send_socket, T receive_socket, octetStream& receive_stream) const
 {
   send(send_socket, len, LENGTH_SIZE);
   const size_t buffer_size = 100000;
diff --git a/Tools/octetStream.h b/Tools/octetStream.h
index 98d4ec930..dc5d80863 100644
--- a/Tools/octetStream.h
+++ b/Tools/octetStream.h
@@ -47,6 +47,7 @@ class octetStream
   void resize(size_t l);
   void resize_precise(size_t l);
   void resize_min(size_t l);
+  void reserve(size_t l);
   void clear();
 
   void assign(const octetStream& os);
@@ -162,7 +163,7 @@ class octetStream
   template<class T>
   void exchange(T send_socket, T receive_socket) { exchange(send_socket, receive_socket, *this); }
   template<class T>
-  void exchange(T send_socket, T receive_socket, octetStream& receive_stream);
+  void exchange(T send_socket, T receive_socket, octetStream& receive_stream) const;
 
   friend ostream& operator<<(ostream& s,const octetStream& o);
   friend class PRNG;
@@ -198,6 +199,11 @@ inline void octetStream::resize_min(size_t l)
     resize_precise(l);
 }
 
+inline void octetStream::reserve(size_t l)
+{
+  if (len + l > mxlen)
+    resize_precise(len + l);
+}
 
 inline void octetStream::append(const octet* x, const size_t l)
 {
diff --git a/Tools/random.cpp b/Tools/random.cpp
index d45a2b3c0..48bdd2d25 100644
--- a/Tools/random.cpp
+++ b/Tools/random.cpp
@@ -1,6 +1,7 @@
 
 #include "Tools/random.h"
 #include "Math/bigint.h"
+#include "Auth/Subroutines.h"
 #include <stdio.h>
 #include <sodium.h>
 
@@ -23,8 +24,14 @@ void PRNG::ReSeed()
   InitSeed();
 }
 
+void PRNG::SeedGlobally(Player& P)
+{
+  octet seed[SEED_SIZE];
+  Create_Random_Seed(seed, P, SEED_SIZE);
+  SetSeed(seed);
+}
 
-void PRNG::SetSeed(octet* inp)
+void PRNG::SetSeed(const octet* inp)
 {
   memcpy(seed,inp,SEED_SIZE*sizeof(octet));
   InitSeed();
@@ -37,6 +44,12 @@ void PRNG::SetSeed(PRNG& G)
   SetSeed(tmp);
 }
 
+void PRNG::SecureSeed(Player& player)
+{
+  Create_Random_Seed(seed, player, SEED_SIZE);
+  InitSeed();
+}
+
 void PRNG::InitSeed()
 {
   #ifdef USE_AES
@@ -135,7 +148,25 @@ unsigned int PRNG::get_uint()
   return ans;
 }
 
-
+unsigned int PRNG::get_uint(int upper)
+{
+	// adopting Java 7 implementation of bounded nextInt here
+	if (upper <= 0)
+		throw invalid_argument("Must be positive");
+	// power of 2 case
+	if ((upper & (upper - 1)) == 0) {
+		unsigned int r = (upper < 255) ? get_uchar() : get_uint();
+		// zero out higher order bits
+		return r % upper;
+	}
+	// not power of 2
+	int r, reduced;
+	do {
+		r = (upper < 255) ? get_uchar() : get_uint();
+		reduced = r % upper;
+	} while (r - reduced + (upper - 1) < 0);
+	return reduced;
+}
 
 void PRNG::get_octetStream(octetStream& ans,int len)
 {
diff --git a/Tools/random.h b/Tools/random.h
index 48ad68725..bc6a8d30d 100644
--- a/Tools/random.h
+++ b/Tools/random.h
@@ -25,6 +25,7 @@
   #define RAND_SIZE   (PIPELINES * AES_BLK_SIZE)
 #endif
 
+class Player;
 
 /* This basically defines a randomness expander, if using
  * as a real PRG on an input stream you should first collapse
@@ -69,15 +70,20 @@ class PRNG
    // Set seed from dev/random
    void ReSeed();
 
+   // Agree securely on seed
+   void SeedGlobally(Player& P);
+
    // Set seed from array
-   void SetSeed(unsigned char*);
+   void SetSeed(const unsigned char*);
    void SetSeed(PRNG& G);
+   void SecureSeed(Player& player);
    void InitSeed();
    
    double get_double();
    bool get_bit() { return get_uchar() & 1; }
    unsigned char get_uchar();
    unsigned int get_uint();
+   unsigned int get_uint(int upper);
    void get_bigint(bigint& res, int n_bits, bool positive = true);
    void get(bigint& res, int n_bits, bool positive = true);
    void get(int& res, int n_bits, bool positive = true);
@@ -113,6 +119,14 @@ class SeededPRNG : public PRNG
   }
 };
 
+class GlobalPRNG : public PRNG
+{
+public:
+  GlobalPRNG(Player& P)
+  {
+    SeedGlobally(P);
+  }
+};
 
 inline unsigned char PRNG::get_uchar()
 {
@@ -154,7 +168,7 @@ inline void PRNG::get_octets(octet* ans)
 {
    if (L < RAND_SIZE - cnt)
    {
-     avx_memcpy(ans, random + cnt, L);
+     avx_memcpy<L>(ans, random + cnt);
      cnt += L;
    }
    else
diff --git a/Yao/YaoAndJob.h b/Yao/YaoAndJob.h
index b379e4a99..3eb72d9c1 100644
--- a/Yao/YaoAndJob.h
+++ b/Yao/YaoAndJob.h
@@ -35,8 +35,10 @@ class YaoAndJob
 
 	~YaoAndJob()
 	{
+#ifdef VERBOSE
 		for (auto& x : timers)
-			cout << x.first << " time:" << x.second.elapsed() << endl;
+			cerr << x.first << " time:" << x.second.elapsed() << endl;
+#endif
 	}
 
 	void dispatch(GC::Memory<GC::Secret<YaoGarbleWire> >& S, const vector<int>& args,
diff --git a/Yao/YaoEvaluator.h b/Yao/YaoEvaluator.h
index 2335c5558..8c19be9bd 100644
--- a/Yao/YaoEvaluator.h
+++ b/Yao/YaoEvaluator.h
@@ -30,7 +30,7 @@ class YaoEvaluator : public GC::Thread<Secret<YaoEvalWire>>, public YaoCommon
 
 	MMO mmo;
 
-	TwoPartyPlayer player;
+	RealTwoPartyPlayer player;
 	OTExtensionWithMatrix ot_ext;
 
 	static YaoEvaluator& s();
diff --git a/Yao/YaoGarbler.cpp b/Yao/YaoGarbler.cpp
index 0fc399e92..090bf04f5 100644
--- a/Yao/YaoGarbler.cpp
+++ b/Yao/YaoGarbler.cpp
@@ -29,7 +29,9 @@ YaoGarbler::~YaoGarbler()
 {
 	for (auto& job : and_jobs)
 		delete job;
-	cout << "Number of AND gates: " << counter << endl;
+#ifdef VERBOSE
+	cerr << "Number of AND gates: " << counter << endl;
+#endif
 #ifdef YAO_TIMINGS
 	cout << "AND time: " << and_timer.elapsed() << endl;
 	cout << "AND process timer: " << and_proc_timer.elapsed() << endl;
diff --git a/Yao/YaoGarbler.h b/Yao/YaoGarbler.h
index ea8744791..6c047515b 100644
--- a/Yao/YaoGarbler.h
+++ b/Yao/YaoGarbler.h
@@ -48,7 +48,7 @@ class YaoGarbler : public GC::Thread<GC::Secret<YaoGarbleWire>>, public YaoCommo
 
 	map<string, Timer> timers;
 
-	TwoPartyPlayer player;
+	RealTwoPartyPlayer player;
 	OTExtensionWithMatrix ot_ext;
 
 	deque<vector<Key>> receiver_input_keys;
diff --git a/check-passive.cpp b/check-passive.cpp
index 76e503da7..e68e7d2df 100644
--- a/check-passive.cpp
+++ b/check-passive.cpp
@@ -1,5 +1,6 @@
 #include "Math/gf2n.h"
 #include "Math/gfp.h"
+#include "Math/Z2k.h"
 #include "Math/Setup.h"
 
 #include <fstream>
@@ -7,13 +8,18 @@
 #include <numeric>
 
 template <class T>
-void check_triples(int n_players)
+void check_triples(int n_players, string type_char = "")
 {
     ifstream* inputFiles = new ifstream[n_players];
     for (int i = 0; i < n_players; i++)
     {
         stringstream ss;
-        ss << get_prep_dir(n_players, 128, 128) << "Triples-" << T::type_char() << "-P" << i;
+        ss << get_prep_dir(n_players, 128, 128) << "Triples-";
+        if (type_char.size())
+            ss << type_char;
+        else
+            ss << T::type_char();
+        ss << "-P" << i;
         inputFiles[i].open(ss.str().c_str());
         cout << "Opening file " << ss.str() << endl;
     }
@@ -21,7 +27,7 @@ void check_triples(int n_players)
     int j = 0;
     while (inputFiles[0].peek() != EOF)
     {
-        T a,b,c,cc,tmp;
+        T a,b,c,cc,tmp,prod;
         vector<T> as(n_players), bs(n_players), cs(n_players);
         for (int i = 0; i < n_players; i++)
         {
@@ -34,7 +40,8 @@ void check_triples(int n_players)
         b = accumulate(bs.begin(), bs.end(), T());
         c = accumulate(cs.begin(), cs.end(), T());
 
-        if (a * b != c)
+        prod = a * b;
+        if (prod != c)
         {
             cout << T::type_string() << ": Error in " << j << endl;
             cout << "a " << a << " " << as[0] << " " << as[1] << endl;
@@ -48,7 +55,7 @@ void check_triples(int n_players)
                     cout << "a" << i << " * b" << j << " " << tmp << endl;
                 }
             cout << "cc " << cc << endl;
-            cout << "a*b " << a*b << endl;
+            cout << "a*b " << prod << endl;
             cout << "DID YOU INDICATE THE CORRECT NUMBER OF PLAYERS?" << endl;
 
             return;
@@ -61,6 +68,75 @@ void check_triples(int n_players)
     delete[] inputFiles;
 }
 
+template <class T, class U>
+void check_triples_Z2k(int n_players, string type_char = "", bool macs = true)
+{
+    ifstream* inputFiles = new ifstream[n_players];
+    for (int i = 0; i < n_players; i++)
+    {
+        stringstream ss;
+        ss << get_prep_dir(n_players, 128, 128) << "Triples-";
+        if (type_char.size())
+            ss << type_char;
+        else
+            ss << T::type_char();
+        ss << "-P" << i;
+        inputFiles[i].open(ss.str().c_str());
+        cout << "Opening file " << ss.str() << endl;
+    }
+
+    int j = 0;
+    while (inputFiles[0].peek() != EOF)
+    {
+        U a,b,c,cc,tmp,prod;
+        T dummy;
+        vector<T> as(n_players), bs(n_players), cs(n_players);
+        for (int i = 0; i < n_players; i++)
+        {
+            as[i].input(inputFiles[i], false);
+            if (macs)
+                dummy.input(inputFiles[i], false);
+            bs[i].input(inputFiles[i], false);
+            if (macs)
+                dummy.input(inputFiles[i], false);
+            cs[i].input(inputFiles[i], false);
+            if (macs)
+                dummy.input(inputFiles[i], false);
+        }
+
+        a = accumulate(as.begin(), as.end(), U());
+        b = accumulate(bs.begin(), bs.end(), U());
+        c = accumulate(cs.begin(), cs.end(), U());
+
+        prod = a * b;
+        if (prod != c)
+        {
+            cout << T::type_string() << ": Error in " << j << endl;
+            cout << "a " << a << " " << as[0] << " " << as[1] << endl;
+            cout << "b " << b << " " << bs[0] << " " << bs[1] << endl;
+            cout << "c " << c << " " << cs[0] << " " << cs[1] << endl;
+            for (int i = 0; i < 2; i++)
+                for (int j = 0; j < 2; j++)
+                {
+                    tmp = as[i] * bs[j];
+                    cc += tmp;
+                    cout << "a" << i << " * b" << j << " " << tmp << endl;
+                }
+            cout << "c " << c << endl;
+            cout << "cc " << cc << endl;
+            cout << "a*b " << prod << endl;
+            cout << "DID YOU INDICATE THE CORRECT NUMBER OF PLAYERS?" << endl;
+
+            return;
+        }
+
+        j++;
+    }
+
+    cout << dec << j << " correct triples of type " << T::type_string() << endl;
+    delete[] inputFiles;
+}
+
 int main(int argc, char** argv)
 {
     int n_players = 2;
@@ -70,4 +146,5 @@ int main(int argc, char** argv)
     gfp::init_field(gfp::pr(), false);
     check_triples<gf2n>(n_players);
     check_triples<gfp>(n_players);
+    check_triples_Z2k<Z2<160>, Z2<64>>(n_players);
 }
diff --git a/compile.py b/compile.py
index f7a27c186..a7d363bc3 100755
--- a/compile.py
+++ b/compile.py
@@ -61,6 +61,8 @@ def main():
                       help="bit length of ring (default: 0 for field)")
     parser.add_option("-B", "--binary", dest="binary", default=0,
                       help="bit length of sint in binary circuit (default: 0 for arithmetic)")
+    parser.add_option("-F", "--field", dest="field", default=0,
+                      help="bit length of sint modulo prime (default: 64)")
     options,args = parser.parse_args()
     if len(args) < 1:
         parser.print_help()
diff --git a/spdz2-offline.cpp b/spdz2-offline.cpp
index bdcfd5097..c434a2c9a 100644
--- a/spdz2-offline.cpp
+++ b/spdz2-offline.cpp
@@ -17,6 +17,8 @@ using namespace std;
 #include "Tools/mkpath.h"
 #include "Math/Setup.h"
 
+#include "Auth/MAC_Check.hpp"
+
 class Spdz2
 {
 public:
diff --git a/spdz2k-party.cpp b/spdz2k-party.cpp
new file mode 100644
index 000000000..3655b4a73
--- /dev/null
+++ b/spdz2k-party.cpp
@@ -0,0 +1,38 @@
+/*
+ * spdz2k-party.cpp
+ *
+ */
+
+#include "Processor/Machine.h"
+#include "Math/Spdz2kShare.h"
+#include "Math/gf2n.h"
+#include "Networking/Server.h"
+
+#include "Player-Online.hpp"
+
+int main(int argc, const char** argv)
+{
+    ez::ezOptionParser opt;
+    opt.add(
+        "64", // Default.
+        0, // Required?
+        1, // Number of args expected.
+        0, // Delimiter if expecting multiple args.
+        "SPDZ2k security parameter (default: 64)", // Help description.
+        "-S", // Flag token.
+        "--security" // Flag token.
+    );
+    opt.parse(argc, argv);
+    int s;
+    opt.get("-S")->getInt(s);
+    opt.resetArgs();
+#ifdef VERBOSE
+    cerr << "Using SPDZ2k with security parameter " << s << endl;
+#endif
+    if (s == 64)
+        return spdz_main<Spdz2kShare<64, 64>>(argc, argv, opt);
+    else if (s == 48)
+        return spdz_main<Spdz2kShare<64, 48>>(argc, argv, opt);
+    else
+        throw runtime_error("not compiled for s=" + to_string(s));
+}