github/self
1
1
Fork 0
mirror of https://github.com/selfxyz/self.git synced 2026-04-05 03:00:53 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
ec450fd2e93b16506597f807827598222e6b7a67
self/circuits/test/passport.test.ts

259 lines
8.8 KiB
TypeScript
Raw Blame History

import { describe } from 'mocha'
import chai, { assert, expect } from 'chai'
import chaiAsPromised from 'chai-as-promised'
import { hash, toUnsignedByte, bytesToBigDecimal, formatAndConcatenateDataHashes, formatMrz, splitToWords, formatSigAlg, bigIntToChunkedBytes } from '../../common/src/utils/utils'
import { groth16 } from 'snarkjs'
import { DataHash, PassportData } from '../../common/src/utils/types'
import { genSampleData } from '../../common/src/utils/passportData'
import { buildPubkeyTree } from '../../common/src/utils/pubkeyTree'
import { attributeToPosition, SignatureAlgorithm } from '../../common/src/constants/constants'
import { poseidon12 } from "poseidon-lite"
import { IMT } from '@zk-kit/imt'
import fs from 'fs'
import path from 'path'
const wasm_tester = require("../node_modules/circom_tester").wasm;
chai.use(chaiAsPromised)
console.log("The following snarkjs error logs are normal and expected if the tests pass.")
describe('Circuit tests', function () {
this.timeout(0)
let inputs: any;
let tree: IMT;
let pubkeys: any[];
let passportData: PassportData;
this.beforeAll(async () => {
pubkeys = JSON.parse(fs.readFileSync("../common/pubkeys/publicKeysParsed.json") as unknown as string)
passportData = genSampleData();
// for testing purposes
pubkeys = pubkeys.slice(0, 100);
pubkeys.push({
signatureAlgorithm: passportData.signatureAlgorithm,
issuer: 'C = TS, O = Government of Syldavia, OU = Ministry of tests, CN = CSCA-TEST',
modulus: passportData.pubKey.modulus,
exponent: passportData.pubKey.exponent
})
tree = buildPubkeyTree(pubkeys);
const formattedMrz = formatMrz(passportData.mrz);
const mrzHash = hash(formatMrz(passportData.mrz));
const concatenatedDataHashes = formatAndConcatenateDataHashes(
mrzHash,
passportData.dataGroupHashes as DataHash[],
);
const reveal_bitmap = Array(88).fill('1');
const sigAlgFormatted = formatSigAlg(passportData.signatureAlgorithm, passportData.pubKey.exponent)
const pubkeyChunked = bigIntToChunkedBytes(BigInt(passportData.pubKey.modulus as string), 192, 11);
const leaf = poseidon12([SignatureAlgorithm[sigAlgFormatted], ...pubkeyChunked])
// console.log('leaf', leaf)
const index = tree.indexOf(leaf)
// console.log('index', index)
const proof = tree.createProof(index)
// console.log("proof", proof)
// console.log("verifyProof", tree.verifyProof(proof))
inputs = {
mrz: formattedMrz.map(byte => String(byte)),
dataHashes: concatenatedDataHashes.map(toUnsignedByte).map(byte => String(byte)),
eContentBytes: passportData.eContent.map(toUnsignedByte).map(byte => String(byte)),
signature: splitToWords(
BigInt(bytesToBigDecimal(passportData.encryptedDigest)),
BigInt(64),
BigInt(32)
),
signatureAlgorithm: SignatureAlgorithm[sigAlgFormatted],
pubkey: splitToWords(
BigInt(passportData.pubKey.modulus as string),
BigInt(64),
BigInt(32)
),
pathIndices: proof.pathIndices,
siblings: proof.siblings.flat(),
root: tree.root,
reveal_bitmap: reveal_bitmap.map(byte => String(byte)),
address: "0x70997970c51812dc3a010c7d01b50e0d17dc79c8",
}
console.log('inputs', inputs)
})
describe('Proof', function() {
it('should prove and verify with valid inputs', async function () {
// testing with wasm_tester
const circuit = await wasm_tester(
path.join(__dirname, "../circuits/proof_of_passport.circom"),
{ include: ["node_modules"] },
);
const w = await circuit.calculateWitness(inputs);
console.log("witness calculated");
await circuit.checkConstraints(w);
console.log("finished checking constraints");
// proving
const { proof: zk_proof, publicSignals } = await groth16.fullProve(
inputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)
// console.log('proof done');
console.log('zk_proof', zk_proof);
console.log('publicSignals', publicSignals);
const vKey = JSON.parse(fs.readFileSync("build/proof_of_passport_vkey.json") as unknown as string);
const verified = await groth16.verify(
vKey,
publicSignals,
zk_proof
)
assert(verified == true, 'Should verify')
console.log('verified', verified)
})
it('should fail to prove with invalid mrz', async function () {
const invalidInputs = {
...inputs,
mrz: inputs.mrz.map((byte: string) => String((parseInt(byte, 10) + 1) % 256)),
}
return expect(groth16.fullProve(
invalidInputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)).to.be.rejected;
})
it('should fail to prove with invalid eContentBytes', async function () {
const invalidInputs = {
...inputs,
eContentBytes: inputs.eContentBytes.map((byte: string) => String((parseInt(byte, 10) + 1) % 256)),
}
return expect(groth16.fullProve(
invalidInputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)).to.be.rejected;
})
it('should fail to prove with invalid signature', async function () {
const invalidInputs = {
...inputs,
signature: inputs.signature.map((byte: string) => String((parseInt(byte, 10) + 1) % 256)),
}
return expect(groth16.fullProve(
invalidInputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)).to.be.rejected;
})
it("shouldn't allow address maleability", async function () {
const { proof, publicSignals } = await groth16.fullProve(
inputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)
publicSignals[publicSignals.length - 1] = BigInt("0xC5B4F2A7Ea7F675Fca6EF724d6E06FFB40dFC93F").toString();
const vKey = JSON.parse(fs.readFileSync("build/proof_of_passport_vkey.json").toString());
return expect(await groth16.verify(
vKey,
publicSignals,
proof
)).to.be.false;
})
})
describe('Selective disclosure', function() {
const attributeCombinations = [
['issuing_state', 'name'],
['passport_number', 'nationality', 'date_of_birth'],
['gender', 'expiry_date'],
];
attributeCombinations.forEach(combination => {
it(`Disclosing ${combination.join(", ")}`, async function () {
const attributeToReveal = Object.keys(attributeToPosition).reduce((acc, attribute) => {
acc[attribute] = combination.includes(attribute);
return acc;
}, {});
const bitmap = Array(88).fill('0');
Object.entries(attributeToReveal).forEach(([attribute, reveal]) => {
if (reveal) {
const [start, end] = attributeToPosition[attribute];
bitmap.fill('1', start, end + 1);
}
});
inputs = {
...inputs,
reveal_bitmap: bitmap.map(String),
}
const { proof, publicSignals } = await groth16.fullProve(
inputs,
"build/proof_of_passport_js/proof_of_passport.wasm",
"build/proof_of_passport_final.zkey"
)
console.log('proof done');
const vKey = JSON.parse(fs.readFileSync("build/proof_of_passport_vkey.json").toString());
const verified = await groth16.verify(
vKey,
publicSignals,
proof
)
assert(verified == true, 'Should verifiable')
console.log('proof verified');
const firstThreeElements = publicSignals.slice(0, 3);
const bytesCount = [31, 31, 26]; // nb of bytes in each of the first three field elements
const bytesArray = firstThreeElements.flatMap((element: string, index: number) => {
const bytes = bytesCount[index];
const elementBigInt = BigInt(element);
const byteMask = BigInt(255); // 0xFF
const bytesOfElement = [...Array(bytes)].map((_, byteIndex) => {
return (elementBigInt >> (BigInt(byteIndex) * BigInt(8))) & byteMask;
});
return bytesOfElement;
});
const result = bytesArray.map((byte: bigint) => String.fromCharCode(Number(byte)));
console.log(result);
for(let i = 0; i < result.length; i++) {
if (bitmap[i] == '1') {
const char = String.fromCharCode(Number(inputs.mrz[i + 5]));
assert(result[i] == char, 'Should reveal the right one');
} else {
assert(result[i] == '\x00', 'Should not reveal');
}
}
});
});
})
})
Reference in New Issue View Git Blame Copy Permalink