circomlib/test/babyjub.js

114 lines
3.9 KiB
JavaScript
Raw Normal View History

2018-10-21 20:51:38 +03:00
const chai = require("chai");
const path = require("path");
2020-04-19 13:23:55 +03:00
const createBlakeHash = require("blake-hash");
2019-03-17 12:38:36 +03:00
const eddsa = require("../src/eddsa.js");
const F = require("../src/babyjub.js").F;
2018-10-21 20:51:38 +03:00
2019-03-17 12:38:36 +03:00
const assert = chai.assert;
2018-10-21 20:51:38 +03:00
2019-12-12 18:49:58 +03:00
const tester = require("circom").tester;
const utils = require("ffjavascript").utils;
const Scalar = require("ffjavascript").Scalar;
2018-10-21 20:51:38 +03:00
describe("Baby Jub test", function () {
let circuitAdd;
let circuitTest;
2019-12-12 18:49:58 +03:00
let circuitPbk;
2018-10-21 20:51:38 +03:00
this.timeout(100000);
2018-10-21 20:51:38 +03:00
before( async() => {
2019-12-12 18:49:58 +03:00
circuitAdd = await tester(path.join(__dirname, "circuits", "babyadd_tester.circom"));
2018-10-21 20:51:38 +03:00
2019-12-12 18:49:58 +03:00
circuitTest = await tester(path.join(__dirname, "circuits", "babycheck_test.circom"));
2019-03-17 12:38:36 +03:00
2019-12-12 18:49:58 +03:00
circuitPbk = await tester(path.join(__dirname, "circuits", "babypbk_test.circom"));
});
2018-10-21 20:51:38 +03:00
it("Should add point (0,1) and (0,1)", async () => {
2018-10-21 20:51:38 +03:00
const input={
x1: F.e(0),
y1: F.e(1),
x2: F.e(0),
y2: F.e(1)
};
2018-10-21 20:51:38 +03:00
2020-03-26 21:24:20 +03:00
const w = await circuitAdd.calculateWitness(input, true);
2018-10-21 20:51:38 +03:00
await circuitAdd.assertOut(w, {xout: F.e(0), yout: F.e(1)});
2018-10-21 20:51:38 +03:00
});
it("Should add 2 same numbers", async () => {
const input={
x1: F.e("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
y1: F.e("2626589144620713026669568689430873010625803728049924121243784502389097019475"),
x2: F.e("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
y2: F.e("2626589144620713026669568689430873010625803728049924121243784502389097019475")
};
2018-10-21 20:51:38 +03:00
2020-03-26 21:24:20 +03:00
const w = await circuitAdd.calculateWitness(input, true);
2018-10-21 20:51:38 +03:00
2019-12-12 18:49:58 +03:00
await circuitAdd.assertOut(w, {
xout: F.e("6890855772600357754907169075114257697580319025794532037257385534741338397365"),
yout: F.e("4338620300185947561074059802482547481416142213883829469920100239455078257889")
2019-12-12 18:49:58 +03:00
});
2018-10-21 20:51:38 +03:00
});
it("Should add 2 different numbers", async () => {
const input={
x1: F.e("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
y1: F.e("2626589144620713026669568689430873010625803728049924121243784502389097019475"),
x2: F.e("16540640123574156134436876038791482806971768689494387082833631921987005038935"),
y2: F.e("20819045374670962167435360035096875258406992893633759881276124905556507972311")
};
2018-10-21 20:51:38 +03:00
2020-03-26 21:24:20 +03:00
const w = await circuitAdd.calculateWitness(input, true);
2018-10-21 20:51:38 +03:00
2019-12-12 18:49:58 +03:00
await circuitAdd.assertOut(w, {
xout: F.e("7916061937171219682591368294088513039687205273691143098332585753343424131937"),
yout: F.e("14035240266687799601661095864649209771790948434046947201833777492504781204499")
2019-12-12 18:49:58 +03:00
});
2018-10-21 20:51:38 +03:00
});
2020-03-26 21:24:20 +03:00
it("Should check (0,1) is a valid point", async() => {
const w = await circuitTest.calculateWitness({x: 0, y:1}, true);
2019-12-16 23:35:52 +03:00
await circuitTest.checkConstraints(w);
});
2019-12-12 18:49:58 +03:00
it("Should check (1,0) is an invalid point", async() => {
try {
2020-03-26 21:24:20 +03:00
await circuitTest.calculateWitness({x: 1, y: 0}, true);
assert(false, "Should be a valid point");
} catch(err) {
assert(/Constraint\sdoesn't\smatch(.*)168700\s!=\s1/.test(err.message) );
}
});
it("Should extract the public key from the private one", async () => {
2019-03-17 12:38:36 +03:00
const rawpvk = Buffer.from("0001020304050607080900010203040506070809000102030405060708090021", "hex");
2020-04-19 13:23:55 +03:00
const pvk = eddsa.pruneBuffer(createBlakeHash("blake512").update(rawpvk).digest().slice(0,32));
const S = Scalar.shr(utils.leBuff2int(pvk), 3);
2019-03-17 12:38:36 +03:00
const A = eddsa.prv2pub(rawpvk);
const input = {
2019-12-12 18:49:58 +03:00
in : S
};
2020-03-26 21:24:20 +03:00
const w = await circuitPbk.calculateWitness(input, true);
2019-12-12 18:49:58 +03:00
await circuitPbk.assertOut(w, {Ax : A[0], Ay: A[1]});
2019-03-17 12:38:36 +03:00
2019-12-16 23:35:52 +03:00
await circuitPbk.checkConstraints(w);
2019-03-17 12:38:36 +03:00
});
2018-10-21 20:51:38 +03:00
});