arnaucube
/
go-snark-study
mirror of https://github.com/arnaucube/go-snark-study.git
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26 Commits
1 Branch
4 Tags
11 MiB
Tree: 66629d2158
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '66629d2158'
${ noResults }
go-snark-study/snark_test.go

329 lines
9.8 KiB
Raw Normal View History

key generation for proofs, snark files to the root directory
6 years ago
doing trusted setup
6 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
doing trusted setup
6 years ago
flat circuit code to R1CS working
5 years ago
doing trusted setup
6 years ago
snark.Utils packed
5 years ago
doing trusted setup
6 years ago
starting circuitcompiler, lexer and parser (simple version)
5 years ago
doing trusted setup
6 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
minimal clean & update tests
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
minimal clean & update tests
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
minimal clean & update tests
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
minimal clean & update tests
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
minimal clean & update tests
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
minimal clean & update tests
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
minimal clean & update tests
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
small update, fix trusted setup ops over Field R
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
small update, fix trusted setup ops over Field R
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
small update, fix trusted setup ops over Field R
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
small update, fix trusted setup ops over Field R
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
minimal clean & update tests
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
fixed full flow, now works, need to update circuit parser&compiler, and clean the code
5 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
minimal clean & update tests
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
doing trusted setup
6 years ago
fixing Z(x), VkIC, Vkz, piH calculations
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
cli
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
circuit CalculateWitness, added - & / in GenerateR1CS(), added doc
5 years ago
snark.Utils packed
5 years ago
minimal clean & update tests
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
doing trusted setup
6 years ago
snark.Utils packed
5 years ago
minimal clean & update tests
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
doing trusted setup
6 years ago
snark.Utils packed
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
starting circuitcompiler, lexer and parser (simple version)
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
doing trusted setup
6 years ago
minimal clean & update tests
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
e(Vb, piB) == e(piB', g2) proof
6 years ago
add rho's for proof keys and verification keys calculation, Vk.IC, add alphas input soundness when generating trusted setup
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
doing trusted setup
6 years ago
add circuit compiler equals(a, b) syntax, complete flow working well (from compiler to verification)
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
cli
5 years ago
minimal clean & update tests
5 years ago
flat circuit code to R1CS working
5 years ago
  1. package snark
  3. import (
  4. "bytes"
  5. "fmt"
  6. "math/big"
  7. "strings"
  8. "testing"
  9. "time"
  11. "github.com/arnaucube/go-snark/circuitcompiler"
  12. "github.com/arnaucube/go-snark/r1csqap"
  13. "github.com/stretchr/testify/assert"
  14. )
  16. func TestZkFromFlatCircuitCode(t *testing.T) {
  17. // compile circuit and get the R1CS
  19. // circuit function
  20. // y = x^3 + x + 5
  21. flatCode := `
  22. func test(private s0, public s1):
  23. s2 = s0 * s0
  24. s3 = s2 * s0
  25. s4 = s3 + s0
  26. s5 = s4 + 5
  27. equals(s1, s5)
  28. out = 1 * 1
  29. `
  30. fmt.Print("\nflat code of the circuit:")
  31. fmt.Println(flatCode)
  33. // parse the code
  34. parser := circuitcompiler.NewParser(strings.NewReader(flatCode))
  35. circuit, err := parser.Parse()
  36. assert.Nil(t, err)
  37. // fmt.Println("\ncircuit data:", circuit)
  38. // circuitJson, _ := json.Marshal(circuit)
  39. // fmt.Println("circuit:", string(circuitJson))
  41. b3 := big.NewInt(int64(3))
  42. privateInputs := []*big.Int{b3}
  43. b35 := big.NewInt(int64(35))
  44. publicSignals := []*big.Int{b35}
  46. // wittness
  47. w, err := circuit.CalculateWitness(privateInputs, publicSignals)
  48. assert.Nil(t, err)
  50. // flat code to R1CS
  51. fmt.Println("\ngenerating R1CS from flat code")
  52. a, b, c := circuit.GenerateR1CS()
  53. fmt.Println("\nR1CS:")
  54. fmt.Println("a:", a)
  55. fmt.Println("b:", b)
  56. fmt.Println("c:", c)
  58. // R1CS to QAP
  59. // TODO zxQAP is not used and is an old impl, TODO remove
  60. alphas, betas, gammas, zxQAP := Utils.PF.R1CSToQAP(a, b, c)
  61. fmt.Println("qap")
  62. assert.Equal(t, 8, len(alphas))
  63. assert.Equal(t, 8, len(alphas))
  64. assert.Equal(t, 8, len(alphas))
  65. assert.Equal(t, 7, len(zxQAP))
  66. assert.True(t, !bytes.Equal(alphas[1][1].Bytes(), big.NewInt(int64(0)).Bytes()))
  68. ax, bx, cx, px := Utils.PF.CombinePolynomials(w, alphas, betas, gammas)
  69. assert.Equal(t, 7, len(ax))
  70. assert.Equal(t, 7, len(bx))
  71. assert.Equal(t, 7, len(cx))
  72. assert.Equal(t, 13, len(px))
  74. hxQAP := Utils.PF.DivisorPolynomial(px, zxQAP)
  75. assert.Equal(t, 7, len(hxQAP))
  77. // hx==px/zx so px==hx*zx
  78. assert.Equal(t, px, Utils.PF.Mul(hxQAP, zxQAP))
  80. // p(x) = a(x) * b(x) - c(x) == h(x) * z(x)
  81. abc := Utils.PF.Sub(Utils.PF.Mul(ax, bx), cx)
  82. assert.Equal(t, abc, px)
  83. hzQAP := Utils.PF.Mul(hxQAP, zxQAP)
  84. assert.Equal(t, abc, hzQAP)
  86. div, rem := Utils.PF.Div(px, zxQAP)
  87. assert.Equal(t, hxQAP, div)
  88. assert.Equal(t, rem, r1csqap.ArrayOfBigZeros(6))
  90. // calculate trusted setup
  91. setup, err := GenerateTrustedSetup(len(w), *circuit, alphas, betas, gammas)
  92. assert.Nil(t, err)
  93. fmt.Println("\nt:", setup.Toxic.T)
  95. // zx and setup.Pk.Z should be the same (currently not, the correct one is the calculation used inside GenerateTrustedSetup function), the calculation is repeated. TODO avoid repeating calculation
  96. assert.Equal(t, zxQAP, setup.Pk.Z)
  98. hx := Utils.PF.DivisorPolynomial(px, setup.Pk.Z)
  99. assert.Equal(t, hx, hxQAP)
  100. // assert.Equal(t, hxQAP, hx)
  101. div, rem = Utils.PF.Div(px, setup.Pk.Z)
  102. assert.Equal(t, hx, div)
  103. assert.Equal(t, rem, r1csqap.ArrayOfBigZeros(6))
  105. assert.Equal(t, px, Utils.PF.Mul(hxQAP, zxQAP))
  106. // hx==px/zx so px==hx*zx
  107. assert.Equal(t, px, Utils.PF.Mul(hx, setup.Pk.Z))
  109. // check length of polynomials H(x) and Z(x)
  110. assert.Equal(t, len(hx), len(px)-len(setup.Pk.Z)+1)
  111. assert.Equal(t, len(hxQAP), len(px)-len(zxQAP)+1)
  113. proof, err := GenerateProofs(*circuit, setup, w, px)
  114. assert.Nil(t, err)
  116. // fmt.Println("\n proofs:")
  117. // fmt.Println(proof)
  119. // fmt.Println("public signals:", proof.PublicSignals)
  120. fmt.Println("\nsignals:", circuit.Signals)
  121. fmt.Println("witness:", w)
  122. b35Verif := big.NewInt(int64(35))
  123. publicSignalsVerif := []*big.Int{b35Verif}
  124. before := time.Now()
  125. assert.True(t, VerifyProof(*circuit, setup, proof, publicSignalsVerif, true))
  126. fmt.Println("verify proof time elapsed:", time.Since(before))
  128. // check that with another public input the verification returns false
  129. bOtherWrongPublic := big.NewInt(int64(34))
  130. wrongPublicSignalsVerif := []*big.Int{bOtherWrongPublic}
  131. assert.True(t, !VerifyProof(*circuit, setup, proof, wrongPublicSignalsVerif, true))
  132. }
  134. func TestZkMultiplication(t *testing.T) {
  135. flatCode := `
  136. func test(private a, private b, public c):
  137. d = a * b
  138. equals(c, d)
  139. out = 1 * 1
  140. `
  141. fmt.Println("flat code", flatCode)
  143. // parse the code
  144. parser := circuitcompiler.NewParser(strings.NewReader(flatCode))
  145. circuit, err := parser.Parse()
  146. assert.Nil(t, err)
  148. b3 := big.NewInt(int64(3))
  149. b4 := big.NewInt(int64(4))
  150. privateInputs := []*big.Int{b3, b4}
  151. b12 := big.NewInt(int64(12))
  152. publicSignals := []*big.Int{b12}
  154. // wittness
  155. w, err := circuit.CalculateWitness(privateInputs, publicSignals)
  156. assert.Nil(t, err)
  158. // flat code to R1CS
  159. fmt.Println("\ngenerating R1CS from flat code")
  160. a, b, c := circuit.GenerateR1CS()
  161. fmt.Println("\nR1CS:")
  162. fmt.Println("a:", a)
  163. fmt.Println("b:", b)
  164. fmt.Println("c:", c)
  166. // R1CS to QAP
  167. // TODO zxQAP is not used and is an old impl. TODO remove
  168. alphas, betas, gammas, zxQAP := Utils.PF.R1CSToQAP(a, b, c)
  169. assert.Equal(t, 6, len(alphas))
  170. assert.Equal(t, 6, len(betas))
  171. assert.Equal(t, 6, len(betas))
  172. assert.Equal(t, 5, len(zxQAP))
  173. assert.True(t, !bytes.Equal(alphas[1][1].Bytes(), big.NewInt(int64(0)).Bytes()))
  175. ax, bx, cx, px := Utils.PF.CombinePolynomials(w, alphas, betas, gammas)
  176. assert.Equal(t, 4, len(ax))
  177. assert.Equal(t, 4, len(bx))
  178. assert.Equal(t, 4, len(cx))
  179. assert.Equal(t, 7, len(px))
  181. hxQAP := Utils.PF.DivisorPolynomial(px, zxQAP)
  182. assert.Equal(t, 3, len(hxQAP))
  184. // hx==px/zx so px==hx*zx
  185. assert.Equal(t, px, Utils.PF.Mul(hxQAP, zxQAP))
  187. // p(x) = a(x) * b(x) - c(x) == h(x) * z(x)
  188. abc := Utils.PF.Sub(Utils.PF.Mul(ax, bx), cx)
  189. assert.Equal(t, abc, px)
  190. hzQAP := Utils.PF.Mul(hxQAP, zxQAP)
  191. assert.Equal(t, abc, hzQAP)
  193. div, rem := Utils.PF.Div(px, zxQAP)
  194. assert.Equal(t, hxQAP, div)
  195. assert.Equal(t, rem, r1csqap.ArrayOfBigZeros(4))
  197. // calculate trusted setup
  198. setup, err := GenerateTrustedSetup(len(w), *circuit, alphas, betas, gammas)
  199. assert.Nil(t, err)
  200. // fmt.Println("\nt:", setup.Toxic.T)
  202. // zx and setup.Pk.Z should be the same (currently not, the correct one is the calculation used inside GenerateTrustedSetup function), the calculation is repeated. TODO avoid repeating calculation
  203. assert.Equal(t, zxQAP, setup.Pk.Z)
  205. hx := Utils.PF.DivisorPolynomial(px, setup.Pk.Z)
  206. assert.Equal(t, 3, len(hx))
  207. assert.Equal(t, hx, hxQAP)
  209. div, rem = Utils.PF.Div(px, setup.Pk.Z)
  210. assert.Equal(t, hx, div)
  211. assert.Equal(t, rem, r1csqap.ArrayOfBigZeros(4))
  213. assert.Equal(t, px, Utils.PF.Mul(hxQAP, zxQAP))
  214. // hx==px/zx so px==hx*zx
  215. assert.Equal(t, px, Utils.PF.Mul(hx, setup.Pk.Z))
  217. // check length of polynomials H(x) and Z(x)
  218. assert.Equal(t, len(hx), len(px)-len(setup.Pk.Z)+1)
  219. assert.Equal(t, len(hxQAP), len(px)-len(zxQAP)+1)
  221. proof, err := GenerateProofs(*circuit, setup, w, px)
  222. assert.Nil(t, err)
  224. // fmt.Println("\n proofs:")
  225. // fmt.Println(proof)
  227. // fmt.Println("public signals:", proof.PublicSignals)
  228. fmt.Println("\n", circuit.Signals)
  229. fmt.Println("witness", w)
  230. b12Verif := big.NewInt(int64(12))
  231. publicSignalsVerif := []*big.Int{b12Verif}
  232. before := time.Now()
  233. assert.True(t, VerifyProof(*circuit, setup, proof, publicSignalsVerif, true))
  234. fmt.Println("verify proof time elapsed:", time.Since(before))
  236. // check that with another public input the verification returns false
  237. bOtherWrongPublic := big.NewInt(int64(11))
  238. wrongPublicSignalsVerif := []*big.Int{bOtherWrongPublic}
  239. assert.True(t, !VerifyProof(*circuit, setup, proof, wrongPublicSignalsVerif, true))
  240. }
  242. func TestMinimalFlow(t *testing.T) {
  243. // circuit function
  244. // y = x^3 + x + 5
  245. flatCode := `
  246. func test(private s0, public s1):
  247. s2 = s0 * s0
  248. s3 = s2 * s0
  249. s4 = s3 + s0
  250. s5 = s4 + 5
  251. equals(s1, s5)
  252. out = 1 * 1
  253. `
  254. fmt.Print("\nflat code of the circuit:")
  255. fmt.Println(flatCode)
  257. // parse the code
  258. parser := circuitcompiler.NewParser(strings.NewReader(flatCode))
  259. circuit, err := parser.Parse()
  260. assert.Nil(t, err)
  262. b3 := big.NewInt(int64(3))
  263. privateInputs := []*big.Int{b3}
  264. b35 := big.NewInt(int64(35))
  265. publicSignals := []*big.Int{b35}
  267. // wittness
  268. w, err := circuit.CalculateWitness(privateInputs, publicSignals)
  269. assert.Nil(t, err)
  271. // flat code to R1CS
  272. fmt.Println("\ngenerating R1CS from flat code")
  273. a, b, c := circuit.GenerateR1CS()
  274. fmt.Println("\nR1CS:")
  275. fmt.Println("a:", a)
  276. fmt.Println("b:", b)
  277. fmt.Println("c:", c)
  279. // R1CS to QAP
  280. // TODO zxQAP is not used and is an old impl, TODO remove
  281. alphas, betas, gammas, _ := Utils.PF.R1CSToQAP(a, b, c)
  282. fmt.Println("qap")
  283. assert.Equal(t, 8, len(alphas))
  284. assert.Equal(t, 8, len(alphas))
  285. assert.Equal(t, 8, len(alphas))
  286. assert.True(t, !bytes.Equal(alphas[1][1].Bytes(), big.NewInt(int64(0)).Bytes()))
  288. ax, bx, cx, px := Utils.PF.CombinePolynomials(w, alphas, betas, gammas)
  289. assert.Equal(t, 7, len(ax))
  290. assert.Equal(t, 7, len(bx))
  291. assert.Equal(t, 7, len(cx))
  292. assert.Equal(t, 13, len(px))
  294. // calculate trusted setup
  295. setup, err := GenerateTrustedSetup(len(w), *circuit, alphas, betas, gammas)
  296. assert.Nil(t, err)
  297. fmt.Println("\nt:", setup.Toxic.T)
  299. hx := Utils.PF.DivisorPolynomial(px, setup.Pk.Z)
  300. div, rem := Utils.PF.Div(px, setup.Pk.Z)
  301. assert.Equal(t, hx, div)
  302. assert.Equal(t, rem, r1csqap.ArrayOfBigZeros(6))
  304. // hx==px/zx so px==hx*zx
  305. assert.Equal(t, px, Utils.PF.Mul(hx, setup.Pk.Z))
  307. // check length of polynomials H(x) and Z(x)
  308. assert.Equal(t, len(hx), len(px)-len(setup.Pk.Z)+1)
  310. proof, err := GenerateProofs(*circuit, setup, w, px)
  311. assert.Nil(t, err)
  313. // fmt.Println("\n proofs:")
  314. // fmt.Println(proof)
  316. // fmt.Println("public signals:", proof.PublicSignals)
  317. fmt.Println("\nsignals:", circuit.Signals)
  318. fmt.Println("witness:", w)
  319. b35Verif := big.NewInt(int64(35))
  320. publicSignalsVerif := []*big.Int{b35Verif}
  321. before := time.Now()
  322. assert.True(t, VerifyProof(*circuit, setup, proof, publicSignalsVerif, true))
  323. fmt.Println("verify proof time elapsed:", time.Since(before))
  325. // check that with another public input the verification returns false
  326. bOtherWrongPublic := big.NewInt(int64(34))
  327. wrongPublicSignalsVerif := []*big.Int{bOtherWrongPublic}
  328. assert.True(t, !VerifyProof(*circuit, setup, proof, wrongPublicSignalsVerif, true))
  329. }