proof verification working
This commit is contained in:
psippl
parent
9cc93c98e3
commit
e7958440ef
|
|
@ -2161,7 +2161,10 @@ version = "0.1.0"
|
||||||
dependencies = [
|
dependencies = [
|
||||||
"ark-bn254",
|
"ark-bn254",
|
||||||
"ark-circom",
|
"ark-circom",
|
||||||
|
"ark-ec",
|
||||||
|
"ark-ff",
|
||||||
"ark-groth16",
|
"ark-groth16",
|
||||||
|
"ark-relations",
|
||||||
"ark-std",
|
"ark-std",
|
||||||
"color-eyre",
|
"color-eyre",
|
||||||
"ethers",
|
"ethers",
|
||||||
|
|
|
||||||
|
|
@ -10,6 +10,9 @@ ark-circom = { git = "https://github.com/philsippl/ark-circom", features=["circo
|
||||||
ark-std = { version = "0.3.0", default-features = false, features = ["parallel"] }
|
ark-std = { version = "0.3.0", default-features = false, features = ["parallel"] }
|
||||||
ark-bn254 = { version = "0.3.0" }
|
ark-bn254 = { version = "0.3.0" }
|
||||||
ark-groth16 = { git = "https://github.com/arkworks-rs/groth16", rev = "765817f", features = ["parallel"] }
|
ark-groth16 = { git = "https://github.com/arkworks-rs/groth16", rev = "765817f", features = ["parallel"] }
|
||||||
|
ark-ec = { version = "0.3.0", default-features = false, features = ["parallel"] }
|
||||||
|
ark-ff = { version = "0.3.0", default-features = false, features = ["parallel", "asm"] }
|
||||||
|
ark-relations = { version = "0.3.0", default-features = false }
|
||||||
num-bigint = { version = "0.4", default-features = false, features = ["rand"] }
|
num-bigint = { version = "0.4", default-features = false, features = ["rand"] }
|
||||||
ff = { package="ff_ce", version="0.11"}
|
ff = { package="ff_ce", version="0.11"}
|
||||||
poseidon-rs = "0.0.8"
|
poseidon-rs = "0.0.8"
|
||||||
|
|
|
||||||
Binary file not shown.
Binary file not shown.
Binary file not shown.
|
|
@ -1,5 +1,5 @@
|
||||||
mod identity;
|
mod identity;
|
||||||
mod proof;
|
mod protocol;
|
||||||
mod merkle_tree;
|
mod merkle_tree;
|
||||||
mod poseidon_tree;
|
mod poseidon_tree;
|
||||||
mod hash;
|
mod hash;
|
||||||
|
|
|
||||||
23
src/main.rs
23
src/main.rs
|
|
@ -1,4 +1,4 @@
|
||||||
mod proof;
|
mod protocol;
|
||||||
mod identity;
|
mod identity;
|
||||||
mod merkle_tree;
|
mod merkle_tree;
|
||||||
mod poseidon_tree;
|
mod poseidon_tree;
|
||||||
|
|
@ -7,7 +7,7 @@ mod hash;
|
||||||
use num_bigint::BigInt;
|
use num_bigint::BigInt;
|
||||||
use poseidon_rs::Poseidon;
|
use poseidon_rs::Poseidon;
|
||||||
use hex_literal::hex;
|
use hex_literal::hex;
|
||||||
use {identity::*, poseidon_tree::*, hash::*, proof::*};
|
use {identity::*, poseidon_tree::*, hash::*, protocol::*};
|
||||||
|
|
||||||
fn main() {
|
fn main() {
|
||||||
|
|
||||||
|
|
@ -21,29 +21,22 @@ fn main() {
|
||||||
"0000000000000000000000000000000000000000000000000000000000000000"
|
"0000000000000000000000000000000000000000000000000000000000000000"
|
||||||
));
|
));
|
||||||
|
|
||||||
let mut tree = PoseidonTree::new(3, LEAF);
|
let mut tree = PoseidonTree::new(21, LEAF);
|
||||||
|
|
||||||
let (_, leaf) = id.identity_commitment().to_bytes_be();
|
let (_, leaf) = id.identity_commitment().to_bytes_be();
|
||||||
dbg!(&leaf);
|
dbg!(&leaf);
|
||||||
|
|
||||||
tree.set(2, leaf.into());
|
tree.set(0, leaf.into());
|
||||||
|
|
||||||
let root: BigInt = tree.root().into();
|
let root: BigInt = tree.root().into();
|
||||||
dbg!(root);
|
dbg!(root);
|
||||||
|
|
||||||
let proof = tree.proof(2).expect("proof should exist");
|
let proof = tree.proof(0).expect("proof should exist");
|
||||||
|
|
||||||
dbg!(proof.path_index());
|
dbg!(&proof);
|
||||||
|
|
||||||
// let proof: Vec<BigInt> = proof.0.iter().map(|x| {
|
dbg!(&proof.path_index());
|
||||||
// match x {
|
|
||||||
// Branch::Left(value) => value.into(),
|
|
||||||
// Branch::Right(value) => value.into(),
|
|
||||||
// }
|
|
||||||
// }).collect();
|
|
||||||
|
|
||||||
// dbg!(proof);
|
generate_proof(&id, &proof, BigInt::from(123), b"xxx");
|
||||||
|
|
||||||
generate(&id, &proof, BigInt::from(123), b"xxx");
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -1,18 +1,18 @@
|
||||||
use ark_bn254::Bn254;
|
use ark_bn254::{Bn254};
|
||||||
use ark_circom::{read_zkey, CircomReduction, WitnessCalculator};
|
use ark_circom::{read_zkey, CircomReduction, WitnessCalculator};
|
||||||
|
use ark_ff::{Fp256};
|
||||||
|
use ark_relations::r1cs::SynthesisError;
|
||||||
use ark_std::rand::thread_rng;
|
use ark_std::rand::thread_rng;
|
||||||
use color_eyre::Result;
|
use color_eyre::Result;
|
||||||
use ethers::utils::keccak256;
|
use ethers::utils::keccak256;
|
||||||
use num_bigint::{BigInt, Sign};
|
use num_bigint::{BigInt, Sign};
|
||||||
|
|
||||||
use std::{collections::HashMap, fs::File, ops::Shr};
|
use std::{collections::HashMap, fs::File, ops::Shr};
|
||||||
|
use ark_groth16::{create_proof_with_reduction_and_matrices, prepare_verifying_key, Proof};
|
||||||
|
|
||||||
use crate::{identity::*, merkle_tree::Branch, poseidon_tree::Proof};
|
use crate::{identity::*, merkle_tree::{Branch, self}, poseidon_tree::{PoseidonHash}};
|
||||||
|
|
||||||
use ark_groth16::{create_proof_with_reduction_and_matrices, prepare_verifying_key, verify_proof};
|
|
||||||
|
|
||||||
// TODO: we should create a From trait for this
|
// TODO: we should create a From trait for this
|
||||||
fn proof_to_vec(proof: &Proof) -> Vec<BigInt> {
|
fn merkle_proof_to_vec(proof: &merkle_tree::Proof<PoseidonHash>) -> Vec<BigInt> {
|
||||||
proof
|
proof
|
||||||
.0
|
.0
|
||||||
.iter()
|
.iter()
|
||||||
|
|
@ -28,12 +28,13 @@ fn hash_signal(signal: &[u8]) -> BigInt {
|
||||||
}
|
}
|
||||||
|
|
||||||
// WIP: uses dummy proofs for now
|
// WIP: uses dummy proofs for now
|
||||||
pub fn generate(
|
pub fn generate_proof(
|
||||||
identity: &Identity,
|
identity: &Identity,
|
||||||
merkle_proof: &Proof,
|
merkle_proof: &merkle_tree::Proof<PoseidonHash>,
|
||||||
external_nullifier: BigInt,
|
external_nullifier: BigInt,
|
||||||
signal: &[u8],
|
signal: &[u8],
|
||||||
) -> Result<()> {
|
) -> Result<()> {
|
||||||
|
// ) -> Result<Proof<Bn<Parameters>>, SynthesisError> {
|
||||||
let mut file = File::open("./snarkfiles/semaphore.zkey").unwrap();
|
let mut file = File::open("./snarkfiles/semaphore.zkey").unwrap();
|
||||||
let (params, matrices) = read_zkey(&mut file).unwrap();
|
let (params, matrices) = read_zkey(&mut file).unwrap();
|
||||||
let num_inputs = matrices.num_instance_variables;
|
let num_inputs = matrices.num_instance_variables;
|
||||||
|
|
@ -51,13 +52,29 @@ pub fn generate(
|
||||||
vec![identity.trapdoor.clone()],
|
vec![identity.trapdoor.clone()],
|
||||||
);
|
);
|
||||||
inputs.insert("identity_path_index".to_string(), merkle_proof.path_index());
|
inputs.insert("identity_path_index".to_string(), merkle_proof.path_index());
|
||||||
inputs.insert("path_elements".to_string(), proof_to_vec(merkle_proof));
|
inputs.insert("path_elements".to_string(), merkle_proof_to_vec(merkle_proof));
|
||||||
inputs.insert("external_nullifier".to_string(), vec![external_nullifier]);
|
inputs.insert("external_nullifier".to_string(), vec![external_nullifier]);
|
||||||
inputs.insert("signal_hash".to_string(), vec![hash_signal(signal)]);
|
inputs.insert("signal_hash".to_string(), vec![hash_signal(signal)]);
|
||||||
|
|
||||||
inputs
|
inputs
|
||||||
};
|
};
|
||||||
|
|
||||||
|
dbg!(&inputs);
|
||||||
|
|
||||||
|
let nullifier = BigInt::parse_bytes(
|
||||||
|
b"2073423254391230197488930967618194527029511360562414420050239137722181518699",
|
||||||
|
10,
|
||||||
|
)
|
||||||
|
.unwrap();
|
||||||
|
|
||||||
|
let root = BigInt::parse_bytes(
|
||||||
|
b"9194628565321423830640339892337438998798131617576196335312343809896770847079",
|
||||||
|
10,
|
||||||
|
)
|
||||||
|
.unwrap();
|
||||||
|
|
||||||
|
dbg!(nullifier.sign(), root.sign());
|
||||||
|
|
||||||
let mut wtns = WitnessCalculator::new("./snarkfiles/semaphore.wasm").unwrap();
|
let mut wtns = WitnessCalculator::new("./snarkfiles/semaphore.wasm").unwrap();
|
||||||
|
|
||||||
let full_assignment = wtns
|
let full_assignment = wtns
|
||||||
|
|
@ -82,8 +99,7 @@ pub fn generate(
|
||||||
num_inputs,
|
num_inputs,
|
||||||
num_constraints,
|
num_constraints,
|
||||||
full_assignment.as_slice(),
|
full_assignment.as_slice(),
|
||||||
)
|
);
|
||||||
.unwrap();
|
|
||||||
|
|
||||||
let elapsed = now.elapsed();
|
let elapsed = now.elapsed();
|
||||||
println!("proof generation took: {:.2?}", elapsed);
|
println!("proof generation took: {:.2?}", elapsed);
|
||||||
|
|
@ -91,10 +107,32 @@ pub fn generate(
|
||||||
dbg!(&proof);
|
dbg!(&proof);
|
||||||
|
|
||||||
let pvk = prepare_verifying_key(¶ms.vk);
|
let pvk = prepare_verifying_key(¶ms.vk);
|
||||||
let inputs = &full_assignment[1..num_inputs];
|
|
||||||
let verified = verify_proof(&pvk, &proof, inputs).unwrap();
|
|
||||||
|
|
||||||
assert!(verified);
|
let public_inputs = vec![
|
||||||
|
Fp256::from(root.to_biguint().unwrap()),
|
||||||
|
Fp256::from(nullifier.to_biguint().unwrap()),
|
||||||
|
full_assignment[3],
|
||||||
|
full_assignment[4]
|
||||||
|
];
|
||||||
|
|
||||||
|
dbg!(&public_inputs);
|
||||||
|
|
||||||
|
let verified = ark_groth16::verify_proof(&pvk, &proof.unwrap(), &public_inputs).unwrap();
|
||||||
|
|
||||||
|
dbg!(verified);
|
||||||
|
|
||||||
|
// proof
|
||||||
Ok(())
|
Ok(())
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// fn verify_proof(nullifier_hash: BigInt, root: BigInt, proof: &Proof<Bn<Parameters>>) -> Result<()> {
|
||||||
|
// let mut file = File::open("./snarkfiles/semaphore.zkey").unwrap();
|
||||||
|
// let (params, matrices) = read_zkey(&mut file).unwrap();
|
||||||
|
|
||||||
|
// let pvk = prepare_verifying_key(¶ms.vk);
|
||||||
|
// // let inputs = &full_assignment[1..num_inputs];
|
||||||
|
// let verified = ark_groth16::verify_proof(&pvk, proof, inputs).unwrap();
|
||||||
|
|
||||||
|
// // assert!(verified);
|
||||||
|
// Ok(())
|
||||||
|
// }
|
||||||
Loading…
Reference in New Issue