UNPKG

poseidon-encryption

Version:

Standalone package for Poseidon encryption. All credits to https://github.com/weijiekoh/circomlib/tree/feat/poseidon-encryption

99 lines (68 loc) 2.9 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
const chai = require("chai"); const path = require("path"); const wasm_tester = require("circom_tester").wasm; const eddsa = require("circomlibjs").eddsa; const F1Field = require("ffjavascript").F1Field; const Scalar = require("ffjavascript").Scalar; exports.p = Scalar.fromString("21888242871839275222246405745257275088548364400416034343698204186575808495617"); const Fr = new F1Field(exports.p); const assert = chai.assert; describe("EdDSA MiMC test", function () { let circuit; this.timeout(100000); before( async () => { circuit = await wasm_tester(path.join(__dirname, "circuits", "eddsamimc_test.circom")); }); it("Sign a single number", async () => { const msg = Scalar.e(1234); const prvKey = Buffer.from("0001020304050607080900010203040506070809000102030405060708090001", "hex"); const pubKey = eddsa.prv2pub(prvKey); const signature = eddsa.signMiMC(prvKey, msg); assert(eddsa.verifyMiMC(msg, signature, pubKey)); const w = await circuit.calculateWitness({ enabled: 1, Ax: pubKey[0], Ay: pubKey[1], R8x: signature.R8[0], R8y: signature.R8[1], S: signature.S, M: msg}, true); await circuit.checkConstraints(w); }); it("Detect Invalid signature", async () => { const msg = Scalar.e(1234); const prvKey = Buffer.from("0001020304050607080900010203040506070809000102030405060708090001", "hex"); const pubKey = eddsa.prv2pub(prvKey); const signature = eddsa.signMiMC(prvKey, msg); assert(eddsa.verifyMiMC(msg, signature, pubKey)); try { const w = await circuit.calculateWitness({ enabled: 1, Ax: pubKey[0], Ay: pubKey[1], R8x: Fr.toString(Fr.add(Fr.e(signature.R8[0]), Fr.e(1))), R8y: Fr.toString(Fr.e(signature.R8[1])), S: signature.S, M: msg}, true); assert(false); } catch(err) { assert(err.message.includes("Assert Failed")); } }); it("Test a dissabled circuit with a bad signature", async () => { const msg = Scalar.e(1234); const prvKey = Buffer.from("0001020304050607080900010203040506070809000102030405060708090001", "hex"); const pubKey = eddsa.prv2pub(prvKey); const signature = eddsa.signMiMC(prvKey, msg); assert(eddsa.verifyMiMC(msg, signature, pubKey)); const w = await circuit.calculateWitness({ enabled: 0, Ax: pubKey[0], Ay: pubKey[1], R8x: Fr.toString(Fr.add(Fr.e(signature.R8[0]), Fr.e(1))), R8y: Fr.toString(Fr.e(signature.R8[1])), S: signature.S, M: msg}, true); await circuit.checkConstraints(w); }); });