-
Notifications
You must be signed in to change notification settings - Fork 27
/
Copy pathkzg_single_proofs_test.go
70 lines (59 loc) · 1.93 KB
/
kzg_single_proofs_test.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
//go:build !bignum_pure && !bignum_hol256
// +build !bignum_pure,!bignum_hol256
package kzg
import (
"github.com/protolambda/go-kzg/bls"
"testing"
)
func TestKZGSettings_CommitToEvalPoly(t *testing.T) {
fs := NewFFTSettings(4)
s1, s2 := GenerateTestingSetup("1927409816240961209460912649124", 16+1)
ks := NewKZGSettings(fs, s1, s2)
polynomial := testPoly(1, 2, 3, 4, 7, 7, 7, 7, 13, 13, 13, 13, 13, 13, 13, 13)
evalPoly, err := fs.FFT(polynomial, false)
if err != nil {
t.Fatal(err)
}
secretG1IFFT, err := fs.FFTG1(ks.SecretG1[:16], true)
if err != nil {
t.Fatal(err)
}
commitmentByCoeffs := ks.CommitToPoly(polynomial)
commitmentByEval := CommitToEvalPoly(secretG1IFFT, evalPoly)
if !bls.EqualG1(commitmentByEval, commitmentByCoeffs) {
t.Fatalf("expected commitments to be equal, but got:\nby eval: %s\nby coeffs: %s",
commitmentByEval, commitmentByCoeffs)
}
}
func TestKZGSettings_CheckProofSingle(t *testing.T) {
fs := NewFFTSettings(4)
s1, s2 := GenerateTestingSetup("1927409816240961209460912649124", 16+1)
ks := NewKZGSettings(fs, s1, s2)
for i := 0; i < len(ks.SecretG1); i++ {
t.Logf("secret g1 %d: %s", i, bls.StrG1(&ks.SecretG1[i]))
}
polynomial := testPoly(1, 2, 3, 4, 7, 7, 7, 7, 13, 13, 13, 13, 13, 13, 13, 13)
for i := 0; i < len(polynomial); i++ {
t.Logf("poly coeff %d: %s", i, bls.FrStr(&polynomial[i]))
}
commitment := ks.CommitToPoly(polynomial)
t.Log("commitment\n", bls.StrG1(commitment))
proof := ks.ComputeProofSingle(polynomial, 17)
t.Log("proof\n", bls.StrG1(proof))
var x bls.Fr
bls.AsFr(&x, 17)
var value bls.Fr
bls.EvalPolyAt(&value, polynomial, &x)
t.Log("value\n", bls.FrStr(&value))
if !ks.CheckProofSingle(commitment, proof, &x, &value) {
t.Fatal("could not verify proof")
}
}
func testPoly(polynomial ...uint64) []bls.Fr {
n := len(polynomial)
polynomialFr := make([]bls.Fr, n, n)
for i := 0; i < n; i++ {
bls.AsFr(&polynomialFr[i], polynomial[i])
}
return polynomialFr
}