-
Notifications
You must be signed in to change notification settings - Fork 57
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
test: added signature, invalid sig, mrz
- Loading branch information
1 parent
991c26c
commit 5846b36
Showing
1 changed file
with
185 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,185 @@ | ||
| import { describe } from 'mocha'; | ||
| import path from 'path'; | ||
| import { poseidon1, poseidon6 } from 'poseidon-lite'; | ||
| import { mockPassportData_sha256_ecdsa } from '../../../common/src/constants/mockPassportData'; | ||
| import { generateCircuitInputsRegister } from '../../../common/src/utils/generateInputs'; | ||
| import { | ||
| BigintToArray, | ||
| extractRSFromSignature, | ||
| hexToDecimal, | ||
| packBytes, | ||
| } from '../../../common/src/utils/utils'; | ||
| import { expect } from 'chai'; | ||
| import { getLeaf } from '../../../common/src/utils/pubkeyTree'; | ||
| const wasm_tester = require('circom_tester').wasm; | ||
|
|
||
| describe('Register - SHA256 WITH ECDSA', function () { | ||
| this.timeout(0); | ||
| let inputs: any; | ||
| let circuit: any; | ||
| let passportData = mockPassportData_sha256_ecdsa; | ||
| let attestation_id: string; | ||
| const attestation_name = 'E-PASSPORT'; | ||
| const n_dsc = 43; // 43 * 6 = 258 > 254 Cirom field size | ||
| const k_dsc = 6; | ||
|
|
||
| const secret = BigInt(Math.floor(Math.random() * Math.pow(2, 254))).toString(); | ||
| const dscSecret = BigInt(Math.floor(Math.random() * Math.pow(2, 254))).toString(); | ||
| attestation_id = poseidon1([BigInt(Buffer.from(attestation_name).readUIntBE(0, 6))]).toString(); | ||
|
|
||
| inputs = generateCircuitInputsRegister( | ||
| secret, | ||
| dscSecret, | ||
| attestation_id, | ||
| passportData, | ||
| n_dsc, | ||
| k_dsc | ||
| ); | ||
|
|
||
| let qx = BigInt(hexToDecimal(inputs.dsc_modulus[0])); | ||
| let qy = BigInt(hexToDecimal(inputs.dsc_modulus[1])); | ||
| let dsc_modulus = [BigintToArray(43, 6, qx), BigintToArray(43, 6, qy)]; | ||
|
|
||
| let signature = inputs.signature; | ||
| let { r, s } = extractRSFromSignature(signature); | ||
| let signature_r = BigintToArray(43, 6, BigInt(hexToDecimal(r))); | ||
| let signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s))); | ||
|
|
||
| before(async () => { | ||
| circuit = await wasm_tester( | ||
| path.join(__dirname, '../../circuits/register/register_ecdsaWithSHA256Encryption.circom'), | ||
| { | ||
| include: [ | ||
| 'node_modules', | ||
| './node_modules/@zk-kit/binary-merkle-root.circom/src', | ||
| './node_modules/circomlib/circuits', | ||
| ], | ||
| } | ||
| ); | ||
| }); | ||
|
|
||
| it('should compile and load the circuit', async function () { | ||
| expect(circuit).to.not.be.undefined; | ||
| }); | ||
|
|
||
| it('should calculate the witness with correct inputs', async function () { | ||
| let qx = BigInt(hexToDecimal(inputs.dsc_modulus[0])); | ||
| let qy = BigInt(hexToDecimal(inputs.dsc_modulus[1])); | ||
| let dsc_modulus = [BigintToArray(43, 6, qx), BigintToArray(43, 6, qy)]; | ||
|
|
||
| let signature = inputs.signature; | ||
| let { r, s } = extractRSFromSignature(signature); | ||
| let signature_r = BigintToArray(43, 6, BigInt(hexToDecimal(r))); | ||
| let signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s))); | ||
|
|
||
| const w = await circuit.calculateWitness({ | ||
| secret: inputs.secret, | ||
| mrz: inputs.mrz, | ||
| dg1_hash_offset: inputs.dg1_hash_offset[0], | ||
| econtent: inputs.econtent, | ||
| datahashes_padded_length: inputs.datahashes_padded_length[0], | ||
| signed_attributes: inputs.signed_attributes, | ||
| signature_r: signature_r, | ||
| signature_s: signature_s, | ||
| dsc_modulus: dsc_modulus, | ||
| dsc_secret: inputs.dsc_secret, | ||
| attestation_id: inputs.attestation_id, | ||
| }); | ||
|
|
||
| await circuit.checkConstraints(w); | ||
|
|
||
| const nullifier = (await circuit.getOutput(w, ['nullifier'])).nullifier; | ||
| console.log('\x1b[34m%s\x1b[0m', 'nullifier', nullifier); | ||
| const commitment_circom = (await circuit.getOutput(w, ['commitment'])).commitment; | ||
| console.log('\x1b[34m%s\x1b[0m', 'commitment', commitment_circom); | ||
| const blinded_dsc_commitment = (await circuit.getOutput(w, ['blinded_dsc_commitment'])) | ||
| .blinded_dsc_commitment; | ||
| console.log('\x1b[34m%s\x1b[0m', 'blinded_dsc_commitment', blinded_dsc_commitment); | ||
|
|
||
| const mrz_bytes = packBytes(inputs.mrz); | ||
| const leaf = getLeaf({ | ||
| signatureAlgorithm: passportData.signatureAlgorithm, | ||
| publicKeyQ: passportData.pubKey.publicKeyQ, | ||
| }).toString(); | ||
|
|
||
| const commitment_bytes = poseidon6([ | ||
| inputs.secret[0], | ||
| attestation_id, | ||
| leaf, | ||
| mrz_bytes[0], | ||
| mrz_bytes[1], | ||
| mrz_bytes[2], | ||
| ]); | ||
| const commitment_js = commitment_bytes.toString(); | ||
| expect(commitment_circom).to.be.equal(commitment_js); | ||
| }); | ||
|
|
||
| it('should fail to calculate witness with invalid econtent', async function () { | ||
| try { | ||
| const invalidInputs = { | ||
| secret: inputs.secret, | ||
| mrz: inputs.mrz, | ||
| dg1_hash_offset: inputs.dg1_hash_offset[0], | ||
| econtent: inputs.econtent.map((byte: string) => String((parseInt(byte, 10) + 1) % 256)), | ||
| datahashes_padded_length: inputs.datahashes_padded_length[0], | ||
| signed_attributes: inputs.signed_attributes, | ||
| signature_r: signature_r, | ||
| signature_s: signature_s, | ||
| dsc_modulus: dsc_modulus, | ||
| dsc_secret: inputs.dsc_secret, | ||
| attestation_id: inputs.attestation_id, | ||
| }; | ||
| await circuit.calculateWitness(invalidInputs); | ||
| expect.fail('Expected an error but none was thrown.'); | ||
| } catch (error) { | ||
| expect(error.message).to.include('Assert Failed'); | ||
| } | ||
| }); | ||
|
|
||
| it('should fail to calculate witness with invalid mrz', async function () { | ||
| try { | ||
| const invalidInputs = { | ||
| secret: inputs.secret, | ||
| mrz: Array(93) | ||
| .fill(0) | ||
| .map((byte) => BigInt(byte).toString()), | ||
| dg1_hash_offset: inputs.dg1_hash_offset[0], | ||
| econtent: inputs.econtent, | ||
| datahashes_padded_length: inputs.datahashes_padded_length[0], | ||
| signed_attributes: inputs.signed_attributes, | ||
| signature_r: signature_r, | ||
| signature_s: signature_s, | ||
| dsc_modulus: dsc_modulus, | ||
| dsc_secret: inputs.dsc_secret, | ||
| attestation_id: inputs.attestation_id, | ||
| }; | ||
| await circuit.calculateWitness(invalidInputs); | ||
| expect.fail('Expected an error but none was thrown.'); | ||
| } catch (error) { | ||
| expect(error.message).to.include('Assert Failed'); | ||
| } | ||
| }); | ||
|
|
||
| it('should fail to calculate witness with invalid signature', async function () { | ||
| let wrong_signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s) + 1)); | ||
| try { | ||
| const invalidInputs = { | ||
| secret: inputs.secret, | ||
| mrz: inputs.mrz, | ||
| dg1_hash_offset: inputs.dg1_hash_offset[0], | ||
| econtent: inputs.econtent, | ||
| datahashes_padded_length: inputs.datahashes_padded_length[0], | ||
| signed_attributes: inputs.signed_attributes, | ||
| signature_r: signature_r, | ||
| signature_s: wrong_signature_s, | ||
| dsc_modulus: dsc_modulus, | ||
| dsc_secret: inputs.dsc_secret, | ||
| attestation_id: inputs.attestation_id, | ||
| }; | ||
| await circuit.calculateWitness(invalidInputs); | ||
| expect.fail('Expected an error but none was thrown.'); | ||
| } catch (error) { | ||
| expect(error.message).to.include('Assert Failed'); | ||
| } | ||
| }); | ||
| }); |