test: added signature, invalid sig, mrz

2026-04-27 03:01:15 -04:00 · 2024-07-30 18:49:25 +00:00
parent 991c26c756
commit 5846b36fb4
1 changed files with 185 additions and 0 deletions
--- a/circuits/tests/register/register_sha256_ecdsa.test.ts
+++ b/circuits/tests/register/register_sha256_ecdsa.test.ts
@@ -0,0 +1,185 @@
+import { describe } from 'mocha';
+import path from 'path';
+import { poseidon1, poseidon6 } from 'poseidon-lite';
+import { mockPassportData_sha256_ecdsa } from '../../../common/src/constants/mockPassportData';
+import { generateCircuitInputsRegister } from '../../../common/src/utils/generateInputs';
+import {
+  BigintToArray,
+  extractRSFromSignature,
+  hexToDecimal,
+  packBytes,
+} from '../../../common/src/utils/utils';
+import { expect } from 'chai';
+import { getLeaf } from '../../../common/src/utils/pubkeyTree';
+const wasm_tester = require('circom_tester').wasm;
+
+describe('Register - SHA256 WITH ECDSA', function () {
+  this.timeout(0);
+  let inputs: any;
+  let circuit: any;
+  let passportData = mockPassportData_sha256_ecdsa;
+  let attestation_id: string;
+  const attestation_name = 'E-PASSPORT';
+  const n_dsc = 43; // 43 * 6 = 258 > 254 Cirom field size
+  const k_dsc = 6;
+
+  const secret = BigInt(Math.floor(Math.random() * Math.pow(2, 254))).toString();
+  const dscSecret = BigInt(Math.floor(Math.random() * Math.pow(2, 254))).toString();
+  attestation_id = poseidon1([BigInt(Buffer.from(attestation_name).readUIntBE(0, 6))]).toString();
+
+  inputs = generateCircuitInputsRegister(
+    secret,
+    dscSecret,
+    attestation_id,
+    passportData,
+    n_dsc,
+    k_dsc
+  );
+
+  let qx = BigInt(hexToDecimal(inputs.dsc_modulus[0]));
+  let qy = BigInt(hexToDecimal(inputs.dsc_modulus[1]));
+  let dsc_modulus = [BigintToArray(43, 6, qx), BigintToArray(43, 6, qy)];
+
+  let signature = inputs.signature;
+  let { r, s } = extractRSFromSignature(signature);
+  let signature_r = BigintToArray(43, 6, BigInt(hexToDecimal(r)));
+  let signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s)));
+
+  before(async () => {
+    circuit = await wasm_tester(
+      path.join(__dirname, '../../circuits/register/register_ecdsaWithSHA256Encryption.circom'),
+      {
+        include: [
+          'node_modules',
+          './node_modules/@zk-kit/binary-merkle-root.circom/src',
+          './node_modules/circomlib/circuits',
+        ],
+      }
+    );
+  });
+
+  it('should compile and load the circuit', async function () {
+    expect(circuit).to.not.be.undefined;
+  });
+
+  it('should calculate the witness with correct inputs', async function () {
+    let qx = BigInt(hexToDecimal(inputs.dsc_modulus[0]));
+    let qy = BigInt(hexToDecimal(inputs.dsc_modulus[1]));
+    let dsc_modulus = [BigintToArray(43, 6, qx), BigintToArray(43, 6, qy)];
+
+    let signature = inputs.signature;
+    let { r, s } = extractRSFromSignature(signature);
+    let signature_r = BigintToArray(43, 6, BigInt(hexToDecimal(r)));
+    let signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s)));
+
+    const w = await circuit.calculateWitness({
+      secret: inputs.secret,
+      mrz: inputs.mrz,
+      dg1_hash_offset: inputs.dg1_hash_offset[0],
+      econtent: inputs.econtent,
+      datahashes_padded_length: inputs.datahashes_padded_length[0],
+      signed_attributes: inputs.signed_attributes,
+      signature_r: signature_r,
+      signature_s: signature_s,
+      dsc_modulus: dsc_modulus,
+      dsc_secret: inputs.dsc_secret,
+      attestation_id: inputs.attestation_id,
+    });
+
+    await circuit.checkConstraints(w);
+
+    const nullifier = (await circuit.getOutput(w, ['nullifier'])).nullifier;
+    console.log('\x1b[34m%s\x1b[0m', 'nullifier', nullifier);
+    const commitment_circom = (await circuit.getOutput(w, ['commitment'])).commitment;
+    console.log('\x1b[34m%s\x1b[0m', 'commitment', commitment_circom);
+    const blinded_dsc_commitment = (await circuit.getOutput(w, ['blinded_dsc_commitment']))
+      .blinded_dsc_commitment;
+    console.log('\x1b[34m%s\x1b[0m', 'blinded_dsc_commitment', blinded_dsc_commitment);
+
+    const mrz_bytes = packBytes(inputs.mrz);
+    const leaf = getLeaf({
+      signatureAlgorithm: passportData.signatureAlgorithm,
+      publicKeyQ: passportData.pubKey.publicKeyQ,
+    }).toString();
+
+    const commitment_bytes = poseidon6([
+      inputs.secret[0],
+      attestation_id,
+      leaf,
+      mrz_bytes[0],
+      mrz_bytes[1],
+      mrz_bytes[2],
+    ]);
+    const commitment_js = commitment_bytes.toString();
+    expect(commitment_circom).to.be.equal(commitment_js);
+  });
+
+  it('should fail to calculate witness with invalid econtent', async function () {
+    try {
+      const invalidInputs = {
+        secret: inputs.secret,
+        mrz: inputs.mrz,
+        dg1_hash_offset: inputs.dg1_hash_offset[0],
+        econtent: inputs.econtent.map((byte: string) => String((parseInt(byte, 10) + 1) % 256)),
+        datahashes_padded_length: inputs.datahashes_padded_length[0],
+        signed_attributes: inputs.signed_attributes,
+        signature_r: signature_r,
+        signature_s: signature_s,
+        dsc_modulus: dsc_modulus,
+        dsc_secret: inputs.dsc_secret,
+        attestation_id: inputs.attestation_id,
+      };
+      await circuit.calculateWitness(invalidInputs);
+      expect.fail('Expected an error but none was thrown.');
+    } catch (error) {
+      expect(error.message).to.include('Assert Failed');
+    }
+  });
+
+  it('should fail to calculate witness with invalid mrz', async function () {
+    try {
+      const invalidInputs = {
+        secret: inputs.secret,
+        mrz: Array(93)
+          .fill(0)
+          .map((byte) => BigInt(byte).toString()),
+        dg1_hash_offset: inputs.dg1_hash_offset[0],
+        econtent: inputs.econtent,
+        datahashes_padded_length: inputs.datahashes_padded_length[0],
+        signed_attributes: inputs.signed_attributes,
+        signature_r: signature_r,
+        signature_s: signature_s,
+        dsc_modulus: dsc_modulus,
+        dsc_secret: inputs.dsc_secret,
+        attestation_id: inputs.attestation_id,
+      };
+      await circuit.calculateWitness(invalidInputs);
+      expect.fail('Expected an error but none was thrown.');
+    } catch (error) {
+      expect(error.message).to.include('Assert Failed');
+    }
+  });
+
+  it('should fail to calculate witness with invalid signature', async function () {
+    let wrong_signature_s = BigintToArray(43, 6, BigInt(hexToDecimal(s) + 1));
+    try {
+      const invalidInputs = {
+        secret: inputs.secret,
+        mrz: inputs.mrz,
+        dg1_hash_offset: inputs.dg1_hash_offset[0],
+        econtent: inputs.econtent,
+        datahashes_padded_length: inputs.datahashes_padded_length[0],
+        signed_attributes: inputs.signed_attributes,
+        signature_r: signature_r,
+        signature_s: wrong_signature_s,
+        dsc_modulus: dsc_modulus,
+        dsc_secret: inputs.dsc_secret,
+        attestation_id: inputs.attestation_id,
+      };
+      await circuit.calculateWitness(invalidInputs);
+      expect.fail('Expected an error but none was thrown.');
+    } catch (error) {
+      expect(error.message).to.include('Assert Failed');
+    }
+  });
+});