github/powdr
1
1
Fork 0
mirror of https://github.com/powdr-labs/powdr.git synced 2026-04-20 03:03:25 -04:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1053 from powdr-labs/test-malicious-prover

Browse Source 
Test that proving fails for unsatisfying witness
This commit is contained in:
Georg Wiese
2024-02-13 11:21:04 +00:00
committed by GitHub
parent 4fedb58bf3 d37116372d
commit a140624cfb
4 changed files with 90 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
halo2/src/prover.rs
View File

@@ -1,5 +1,4 @@
use halo2_proofs::{
dev::MockProver,
halo2curves::bn256::{Fr, G1Affine},
plonk::{create_proof, keygen_pk, keygen_vk, verify_proof, Circuit, ProvingKey, VerifyingKey},
poly::{
@@ -312,10 +311,6 @@ fn gen_proof<
circuit: C,
instances: &[Vec<Fr>],
) -> Vec<u8> {
MockProver::run(params.k(), &circuit, instances.to_vec().clone())
.unwrap()
.assert_satisfied();
let instances = instances
.iter()
.map(|instances| instances.as_slice())

22
pipeline/src/pipeline.rs
View File

@@ -451,6 +451,28 @@ impl<T: FieldElement> Pipeline<T> {
}
}
/// Advances to PilWithEvaluatedFixedCols and then sets the witness to the provided value,
/// skipping witness generation.
pub fn skip_witness_generation(mut self, witness: Vec<(String, Vec<T>)>) -> Self {
self.advance_to(Stage::PilWithEvaluatedFixedCols).unwrap();
let (pil, fixed_cols) = match self.artifact.unwrap() {
Artifact::PilWithEvaluatedFixedCols(PilWithEvaluatedFixedCols { pil, fixed_cols }) => {
(pil, fixed_cols)
}
_ => panic!(),
};
Pipeline {
artifact: Some(Artifact::GeneratedWitness(GeneratedWitness {
pil,
fixed_cols,
witness: Some(witness),
})),
..self
}
}
fn name_from_path(path: &Path) -> String {
path.file_stem().unwrap().to_str().unwrap().to_string()
}

64
pipeline/tests/pil.rs
View File

@@ -1,11 +1,73 @@
#[cfg(feature = "halo2")]
use powdr_number::Bn254Field;
use powdr_number::GoldilocksField;
use powdr_pipeline::test_util::{gen_estark_proof, test_halo2, verify_test_file};
use powdr_pipeline::{
test_util::{
gen_estark_proof, resolve_test_file, test_halo2, verify_pipeline, verify_test_file,
},
Pipeline,
};
use test_log::test;
pub fn verify_pil(file_name: &str, inputs: Vec<GoldilocksField>) {
verify_test_file(file_name, inputs, vec![]);
}
#[test]
#[should_panic = "Pil verifier run was unsuccessful."]
fn test_invalid_witness_pilcom() {
let f = "pil/trivial.pil";
let pipeline = Pipeline::default()
.from_file(resolve_test_file(f))
.skip_witness_generation(vec![(
"main.w".to_string(),
vec![GoldilocksField::from(0); 4],
)]);
verify_pipeline(pipeline);
}
#[test]
#[should_panic = "assertion failed: stark_verify::<MerkleTreeGL,\\n TranscriptGL>(&starkproof, &setup.const_root, &setup.starkinfo,\\n &self.params, &mut setup.program).unwrap()"]
fn test_invalid_witness_estark() {
let f = "pil/trivial.pil";
Pipeline::default()
.from_file(resolve_test_file(f))
.skip_witness_generation(vec![(
"main.w".to_string(),
vec![GoldilocksField::from(0); 4],
)])
.with_backend(powdr_backend::BackendType::EStark)
.proof()
.unwrap();
}
#[test]
#[should_panic = "circuit was not satisfied"]
#[cfg(feature = "halo2")]
fn test_invalid_witness_halo2mock() {
let f = "pil/trivial.pil";
Pipeline::default()
.from_file(resolve_test_file(f))
.skip_witness_generation(vec![("main.w".to_string(), vec![Bn254Field::from(0); 4])])
.with_backend(powdr_backend::BackendType::Halo2Mock)
.proof()
.unwrap();
}
// TODO: This test should panic but currently succeeds. See:
// https://github.com/powdr-labs/powdr/pull/1051
#[test]
#[cfg(feature = "halo2")]
fn test_invalid_witness_halo2() {
let f = "pil/trivial.pil";
Pipeline::default()
.from_file(resolve_test_file(f))
.skip_witness_generation(vec![("main.w".to_string(), vec![Bn254Field::from(0); 4])])
.with_backend(powdr_backend::BackendType::Halo2)
.proof()
.unwrap();
}
#[test]
fn test_fibonacci() {
let f = "pil/fibonacci.pil";

5
test_data/pil/trivial.pil Normal file
View File

@@ -0,0 +1,5 @@
// The the simplest PIL that doesn't get optimized away completely.
namespace main(4);
let index = |i| i;
let w;
w = index;