arnaucube
/
circomlib
mirror of https://github.com/arnaucube/circomlib.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
7 Branches
7 Tags
12 MiB
Tree: 81665efaae
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '81665efaae'
${ noResults }
circomlib/test/exp.js

168 lines
5.1 KiB
Raw Normal View History

first commit
5 years ago
  1. const chai = require("chai");
  2. const path = require("path");
  3. const zkSnark = require("zksnark");
  4. const compiler = require("circom");
  6. const assert = chai.assert;
  8. const bigInt = require("big-integer");
  11. const q=21888242871839275222246405745257275088548364400416034343698204186575808495617n
  12. function addPoint(a,b) {
  13. const cta = 168700n;
  14. const d = 168696n;
  16. const res = [];
  17. res[0] = bigInt((a[0]*b[1] + b[0]*a[1]) * bigInt(1n + d*a[0]*b[0]*a[1]*b[1]).inverse(q)).affine(q);
  18. res[1] = bigInt((a[1]*b[1] - cta*a[0]*b[0]) * bigInt(1n - d*a[0]*b[0]*a[1]*b[1]).inverse(q)).affine(q);
  19. return res;
  20. }
  22. function print(circuit, w, s) {
  23. console.log(s + ": " + w[circuit.getSignalIdx(s)]);
  24. }
  26. describe("Exponentioation test", () => {
  27. it("Should generate the Exponentiation table in k=0", async () => {
  29. const cirDef = await compiler(path.join(__dirname, "circuits", "expw4table_test.circom"));
  31. // console.log(JSON.stringify(cirDef, null, 1));
  33. // assert.equal(cirDef.nVars, 2);
  35. const circuit = new zkSnark.Circuit(cirDef);
  37. console.log("NConstrains: " + circuit.nConstraints);
  39. const w = circuit.calculateWitness({});
  41. let g = [zkSnark.bigInt("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
  42. zkSnark.bigInt("2626589144620713026669568689430873010625803728049924121243784502389097019475")]
  44. dbl= [zkSnark.bigInt("0"), zkSnark.bigInt("1")];
  46. for (let i=0; i<16; i++) {
  47. const xout1 = w[circuit.getSignalIdx(`main.out[${i}][0]`)];
  48. const yout1 = w[circuit.getSignalIdx(`main.out[${i}][1]`)];
  49. /*
  50. console.log(xout1.toString());
  51. console.log(yout1.toString());
  52. console.log(dbl[0]);
  53. console.log(dbl[1]);
  54. */
  55. assert(xout1.equals(dbl[0]));
  56. assert(yout1.equals(dbl[1]));
  58. dbl = addPoint([xout1, yout1],g);
  59. }
  61. });
  63. it("Should generate the Exponentiation table in k=3", async () => {
  65. const cirDef = await compiler(path.join(__dirname, "circuits", "expw4table_test3.circom"));
  67. // console.log(JSON.stringify(cirDef, null, 1));
  69. // assert.equal(cirDef.nVars, 2);
  71. const circuit = new zkSnark.Circuit(cirDef);
  73. console.log("NConstrains: " + circuit.nConstraints);
  75. const w = circuit.calculateWitness({});
  77. let g = [zkSnark.bigInt("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
  78. zkSnark.bigInt("2626589144620713026669568689430873010625803728049924121243784502389097019475")]
  80. for (let i=0; i<12;i++) {
  81. g = addPoint(g,g);
  82. }
  84. dbl= [zkSnark.bigInt("0"), zkSnark.bigInt("1")];
  86. for (let i=0; i<16; i++) {
  87. const xout1 = w[circuit.getSignalIdx(`main.out[${i}][0]`)];
  88. const yout1 = w[circuit.getSignalIdx(`main.out[${i}][1]`)];
  90. /*
  91. console.log(xout1.toString());
  92. console.log(yout1.toString());
  93. console.log(dbl[0]);
  94. console.log(dbl[1]);
  95. */
  96. assert(xout1.equals(dbl[0]));
  97. assert(yout1.equals(dbl[1]));
  99. dbl = addPoint([xout1, yout1],g);
  100. }
  102. });
  104. it("Should exponentiate g^31", async () => {
  105. const cirDef = await compiler(path.join(__dirname, "circuits", "exp_test.circom"));
  107. // console.log(JSON.stringify(cirDef, null, 1));
  109. // assert.equal(cirDef.nVars, 2);
  111. const circuit = new zkSnark.Circuit(cirDef);
  113. console.log("NConstrains: " + circuit.nConstraints);
  115. const w = circuit.calculateWitness({"in": 31});
  117. assert(circuit.checkWitness(w));
  119. let g = [zkSnark.bigInt("17777552123799933955779906779655732241715742912184938656739573121738514868268"),
  120. zkSnark.bigInt("2626589144620713026669568689430873010625803728049924121243784502389097019475")]
  122. let c = [0n, 1n];
  124. for (let i=0; i<31;i++) {
  125. c = addPoint(c,g);
  126. }
  128. const xout = w[circuit.getSignalIdx(`main.out[0]`)];
  129. const yout = w[circuit.getSignalIdx(`main.out[1]`)];
  131. /*
  132. console.log(xout.toString());
  133. console.log(yout.toString());
  134. */
  135. assert(xout.equals(c[0]));
  136. assert(yout.equals(c[1]));
  138. console.log("-------")
  139. const w2 = circuit.calculateWitness({"in": (1n<<252n)+1n});
  141. const xout2 = w2[circuit.getSignalIdx(`main.out[0]`)];
  142. const yout2 = w2[circuit.getSignalIdx(`main.out[1]`)];
  144. c = [g[0], g[1]];
  145. for (let i=0; i<252;i++) {
  146. c = addPoint(c,c);
  147. }
  148. c = addPoint(c,g);
  149. /*
  150. console.log(xout2.toString());
  151. console.log(yout2.toString());
  152. console.log(c[0].toString());
  153. console.log(c[1].toString());
  154. */
  155. assert(xout2.equals(c[0]));
  156. assert(yout2.equals(c[1]));
  158. }).timeout(10000000);
  160. it("Number of constrains for 256 bits", async () => {
  161. const cirDef = await compiler(path.join(__dirname, "circuits", "exp_test_min.circom"));
  163. const circuit = new zkSnark.Circuit(cirDef);
  165. console.log("NConstrains: " + circuit.nConstraints);
  166. }).timeout(10000000);
  168. });