ed255/pod2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

New Native Operation PublicKeyOf (#355)

Browse source 
* wrote some initial code

* added way to input private key into circuit

* TypedValue::SecretKey hashed as 10 32-bit limbs

* Check PublicKeyOf in Frontend and Middleware

* Diff review

* PR review

* Finish utest

* Fix bounds check

* added giving secret key witness to circuit

* Test & doc improvements

* added private key comparison to circuit and added test cases

* cargo fmt

* Add frontend tests for PublicKeyOf

* Add public_key_of and hash_of to op! macro

* Add ownership check to ticket example

* Group order checking in tests

* More negative test cases at circuit level

* Cleanups after self review

* clippy fixes

* Fixes after merge.  Temporarily remove plonky2 commit hash

* Add a nullifier to the ticket test example

* Test PublicKeyOf with a real prover (not mock)

* plonky-u32 dependency

* feat: optimize operation checks

Skip the circuits that verify operation checks other than None, Copy or
NewEntry for the public statements.  This works because public
statements are created by copying private statements, so we never use
the other operation checks in those slots.

---------

Co-authored-by: Andrew Twyman <artwyman@gmail.com>
Co-authored-by: Eduard S. <eduardsanou@posteo.net>
This commit is contained in:
brian6l 2025-07-28 15:53:01 -07:00 committed by GitHub
parent 9f8335756c
commit 5b04b2a360
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
15 changed files with 958 additions and 76 deletions
Download patch file Download diff file Expand all files Collapse all files

424
src/backends/plonky2/circuits/mainpod.rs
View file

@ -1,6 +1,7 @@
use std::{array, iter, sync::Arc};
use itertools::{izip, zip_eq, Itertools};
use num::{BigUint, One};
use plonky2::{
field::types::Field,
hash::{
@ -14,6 +15,7 @@ use plonky2::{
},
plonk::config::AlgebraicHasher,
};
use plonky2_u32::gadgets::multiple_comparison::list_le_circuit;
use serde::{Deserialize, Serialize};
use crate::{
@ -31,9 +33,15 @@ use crate::{
},
emptypod::{cache_get_standard_empty_pod_circuit_data, EmptyPod},
error::Result,
mainpod::{self, pad_statement},
primitives::merkletree::{
verify_merkle_proof_circuit, MerkleClaimAndProof, MerkleClaimAndProofTarget,
mainpod::{self, pad_statement, OperationArg},
primitives::{
ec::{
bits::{BigUInt320Target, CircuitBuilderBits},
curve::{CircuitBuilderElliptic, Point, WitnessWriteCurve, GROUP_ORDER},
},
merkletree::{
verify_merkle_proof_circuit, MerkleClaimAndProof, MerkleClaimAndProofTarget,
},
},
recursion::{InnerCircuit, VerifiedProofTarget},
signedpod::SignedPod,
@ -41,11 +49,10 @@ use crate::{
measure_gates_begin, measure_gates_end,
middleware::{
AnchoredKey, CustomPredicate, CustomPredicateBatch, CustomPredicateRef, NativeOperation,
NativePredicate, Params, PodType, PredicatePrefix, Statement, StatementArg, ToFields,
Value, ValueRef, F, HASH_SIZE, KEY_TYPE, SELF, VALUE_SIZE,
NativePredicate, OperationType, Params, PodType, PredicatePrefix, Statement, StatementArg,
ToFields, TypedValue, Value, ValueRef, F, HASH_SIZE, KEY_TYPE, SELF, VALUE_SIZE,
},
};
//
// MainPod verification
//
@ -137,6 +144,47 @@ impl StatementCache {
}
}
/// Specialized implementation of `verify_operation_circuit` for operations that generate public
/// statement. This only allows operations to be None, NewEntry or Copy and accounts for the fact
/// that public statements in the current implementation are always generated by copying private
/// statements (or NewEntry for the `KEY_TYPE` public entry).
fn verify_operation_public_statement_circuit(
params: &Params,
builder: &mut CircuitBuilder,
st: &StatementTarget,
op: &OperationTarget,
prev_statements: &[StatementTarget],
input_statements_offset: usize,
) -> Result<()> {
let measure = measure_gates_begin!(builder, "OpVerify");
// Verify that the operation `op` correctly generates the statement `st`. The operation
// can reference any of the `prev_statements`.
// TODO: Clean this up.
let measure_resolve_op_args = measure_gates_begin!(builder, "ResolveOpArgs");
let cache = StatementCache::new(params, builder, op, st, prev_statements);
measure_gates_end!(builder, measure_resolve_op_args);
let op_checks = vec![
verify_none_circuit(params, builder, st, &op.op_type),
verify_new_entry_circuit(
params,
builder,
st,
&op.op_type,
prev_statements,
input_statements_offset,
),
verify_copy_circuit(builder, st, &op.op_type, &cache.op_args),
];
let ok = builder.any(op_checks);
builder.assert_one(ok.target);
measure_gates_end!(builder, measure);
Ok(())
}
#[allow(clippy::too_many_arguments)]
fn verify_operation_circuit(
params: &Params,
@ -146,6 +194,7 @@ fn verify_operation_circuit(
prev_statements: &[StatementTarget],
input_statements_offset: usize,
merkle_claims: &[MerkleClaimTarget],
secret_key: &BigUInt320Target,
custom_predicate_verification_table: &[HashOutTarget],
) -> Result<()> {
let measure = measure_gates_begin!(builder, "OpVerify");
@ -218,6 +267,7 @@ fn verify_operation_circuit(
verify_transitive_eq_circuit(params, builder, st, &op.op_type, &cache.op_args),
verify_lt_to_neq_circuit(params, builder, st, &op.op_type, &cache.op_args),
verify_hash_of_circuit(params, builder, st, &op.op_type, &cache),
verify_public_key_of_circuit(params, builder, st, &op.op_type, secret_key, &cache),
verify_sum_of_circuit(params, builder, st, &op.op_type, &cache),
verify_product_of_circuit(params, builder, st, &op.op_type, &cache),
verify_max_of_circuit(params, builder, st, &op.op_type, &cache),
@ -539,6 +589,69 @@ fn verify_hash_of_circuit(
ok
}
fn verify_public_key_of_circuit(
params: &Params,
builder: &mut CircuitBuilder,
st: &StatementTarget,
op_type: &OperationTypeTarget,
secret_key: &BigUInt320Target,
cache: &StatementCache,
) -> BoolTarget {
let measure = measure_gates_begin!(builder, "OpPublicKeyOf");
let op_code_ok = op_type.has_native(builder, NativeOperation::PublicKeyOf);
let (arg_types_ok, [arg1_value, arg2_value]) = cache.first_n_args_as_values();
// inputting public_key, secret_key
let public_key_hash = arg1_value.elements;
let secret_key_hash = arg2_value.elements;
let secret_key_hash_v =
builder.hash_n_to_hash_no_pad::<PoseidonHash>(secret_key.limbs.to_vec());
let skey_hash_ok = builder.is_equal_slice(&secret_key_hash, &secret_key_hash_v.elements);
let invgenerator = builder.constant_point(Point::generator().inverse());
let secret_key_bits = secret_key.bits;
let group_orderm1 = &*GROUP_ORDER - BigUint::one();
let group_orderm1target = builder.constant_biguint320(&group_orderm1);
let compare_ok = list_le_circuit(
builder,
secret_key.limbs.to_vec(),
group_orderm1target.limbs.to_vec(),
32,
);
// public_key = g^-secret key
let public_key = builder.multiply_point(&secret_key_bits, &invgenerator);
let public_key_hash_v = builder.hash_n_to_hash_no_pad::<PoseidonHash>(
public_key
.x
.components
.into_iter()
.chain(public_key.u.components)
.collect(),
);
let pkey_hash_ok = builder.is_equal_slice(&public_key_hash, &public_key_hash_v.elements);
let arg1_expected = cache.equations[0].lhs.clone();
let arg2_expected = cache.equations[1].lhs.clone();
let expected_statement = StatementTarget::new_native(
builder,
params,
NativePredicate::PublicKeyOf,
&[arg1_expected, arg2_expected],
);
let st_ok = builder.is_equal_flattenable(st, &expected_statement);
let ok = builder.all([
op_code_ok,
arg_types_ok,
pkey_hash_ok,
skey_hash_ok,
compare_ok,
st_ok,
]);
measure_gates_end!(builder, measure);
ok
}
fn verify_sum_of_circuit(
params: &Params,
builder: &mut CircuitBuilder,
@ -1239,8 +1352,8 @@ fn verify_main_pod_circuit(
for statement in &main_pod.input_statements {
statements.push(statement.clone());
}
let pub_statements = &main_pod.input_statements
[main_pod.input_statements.len() - params.max_public_statements..];
let public_statements_offset = main_pod.input_statements.len() - params.max_public_statements;
let pub_statements = &main_pod.input_statements[public_statements_offset..];
// Verify Merkle claim/proof targets
let merkle_claims = main_pod
@ -1288,16 +1401,28 @@ fn verify_main_pod_circuit(
// 5. Verify input statements
for (i, (st, op)) in izip!(&main_pod.input_statements, &main_pod.operations).enumerate() {
let prev_statements = &statements[..input_statements_offset + i];
verify_operation_circuit(
params,
builder,
st,
op,
prev_statements,
input_statements_offset,
&merkle_claims,
&custom_predicate_verification_table,
)?;
if i < public_statements_offset {
verify_operation_circuit(
params,
builder,
st,
op,
prev_statements,
input_statements_offset,
&merkle_claims,
&main_pod.secret_keys[i],
&custom_predicate_verification_table,
)?;
} else {
verify_operation_public_statement_circuit(
params,
builder,
st,
op,
prev_statements,
input_statements_offset,
)?;
}
}
measure_gates_end!(builder, measure);
@ -1315,6 +1440,7 @@ pub struct MainPodVerifyTarget {
input_statements: Vec<StatementTarget>,
operations: Vec<OperationTarget>,
merkle_proofs: Vec<MerkleClaimAndProofTarget>,
secret_keys: Vec<BigUInt320Target>,
custom_predicate_batches: Vec<CustomPredicateBatchTarget>,
custom_predicate_verifications: Vec<CustomPredicateVerifyEntryTarget>,
}
@ -1348,6 +1474,9 @@ impl MainPodVerifyTarget {
MerkleClaimAndProofTarget::new_virtual(params.max_depth_mt_containers, builder)
})
.collect(),
secret_keys: (0..params.max_statements)
.map(|_| builder.add_virtual_biguint320_target())
.collect(),
custom_predicate_batches: (0..params.max_custom_predicate_batches)
.map(|_| builder.add_virtual_custom_predicate_batch(params))
.collect(),
@ -1484,6 +1613,41 @@ impl InnerCircuit for MainPodVerifyTarget {
for (i, (st, op)) in zip_eq(&input.statements, &input.operations).enumerate() {
self.input_statements[i].set_targets(pw, &self.params, st)?;
self.operations[i].set_targets(pw, &self.params, op)?;
if matches!(
op.op_type(),
OperationType::Native(NativeOperation::PublicKeyOf)
) {
if let StatementArg::Literal(value) = &st.1[1] {
if let TypedValue::SecretKey(sk) = value.typed() {
pw.set_biguint320_target(&self.secret_keys[i], &sk.0)?;
} else {
panic!("SecretKey literal of incorrect type!")
}
} else if let OperationArg::Index(ind) = op.1[1] {
// TODO: This adjustment only works if the secret key came
// from a statement in the current POD, which is the most
// common case. A more general solution needs to be able
// index across the virtual array of statements from all
// input PODs, similar to what's done in
// plonky2::mainpod::layout_statements.
let adjusted_index = ind
- (1 + self.params.max_input_signed_pods
* self.params.max_signed_pod_values
+ self.params.max_input_recursive_pods
* self.params.max_public_statements);
if let StatementArg::Literal(value) = &input.statements[adjusted_index].1[1] {
if let TypedValue::SecretKey(sk) = value.typed() {
pw.set_biguint320_target(&self.secret_keys[i], &sk.0)?;
} else {
panic!("SecretKey literal of incorrect type!")
}
}
} else {
panic!("SecretKey arg not found!")
}
} else {
pw.set_biguint320_target(&self.secret_keys[i], &BigUint::ZERO)?;
}
}
assert!(input.merkle_proofs.len() <= self.params.max_merkle_proofs_containers);
@ -1556,7 +1720,10 @@ mod tests {
basetypes::C,
circuits::common::tests::I64_TEST_PAIRS,
mainpod::{calculate_id, OperationArg, OperationAux},
primitives::merkletree::{MerkleClaimAndProof, MerkleTree},
primitives::{
ec::schnorr::SecretKey,
merkletree::{MerkleClaimAndProof, MerkleTree},
},
},
frontend::{self, literal, CustomPredicateBatchBuilder, StatementTmplBuilder},
middleware::{
@ -1570,6 +1737,7 @@ mod tests {
op: mainpod::Operation,
prev_statements: Vec<mainpod::Statement>,
merkle_proofs: Vec<MerkleClaimAndProof>,
secret_key: &SecretKey,
) -> Result<()> {
let params = Params {
max_custom_predicate_batches: 0,
@ -1601,6 +1769,7 @@ mod tests {
.into_iter()
.map(|pf| pf.into())
.collect();
let secret_key_target = builder.constant_biguint320(&secret_key.0);
let custom_predicate_verification_table = vec![];
verify_operation_circuit(
@ -1611,6 +1780,7 @@ mod tests {
&prev_statements_target,
0,
&merkle_claims_target,
&secret_key_target,
&custom_predicate_verification_table,
)?;
@ -1771,7 +1941,13 @@ mod tests {
.into_iter()
.for_each(|(op, st)| {
let check = std::panic::catch_unwind(|| {
operation_verify(st, op, prev_statements.to_vec(), vec![])
operation_verify(
st,
op,
prev_statements.to_vec(),
vec![],
&SecretKey(BigUint::ZERO),
)
});
match check {
Err(e) => {
@ -1836,7 +2012,14 @@ mod tests {
]
.into_iter()
.for_each(|(op, st)| {
assert!(operation_verify(st, op, prev_statements.to_vec(), vec![]).is_err())
assert!(operation_verify(
st,
op,
prev_statements.to_vec(),
vec![],
&SecretKey(BigUint::ZERO)
)
.is_err())
});
}
@ -1849,7 +2032,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![Statement::None.into()];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -1867,7 +2050,7 @@ mod tests {
vec![],
OperationAux::None,
);
operation_verify(st1, op, prev_statements, vec![])
operation_verify(st1, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -1879,7 +2062,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![Statement::None.into()];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -1902,7 +2085,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -1925,7 +2108,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -1948,7 +2131,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2.clone()];
operation_verify(st, op, prev_statements, vec![])?;
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))?;
// Also check negative < negative
let st3: mainpod::Statement = Statement::equal(
@ -1972,7 +2155,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st3.clone(), st4];
operation_verify(st, op, prev_statements, vec![])?;
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))?;
// Also check negative < positive
let st: mainpod::Statement = Statement::lt(
@ -1986,7 +2169,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st3, st2];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -2009,7 +2192,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2.clone()];
operation_verify(st, op, prev_statements, vec![])?;
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))?;
// Also check negative <= negative
let st3: mainpod::Statement = Statement::equal(
@ -2033,7 +2216,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st3.clone(), st4];
operation_verify(st, op, prev_statements, vec![])?;
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))?;
// Also check negative <= positive
let st: mainpod::Statement = Statement::lt_eq(
@ -2047,7 +2230,13 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st3, st2];
operation_verify(st, op, prev_statements.clone(), vec![])?;
operation_verify(
st,
op,
prev_statements.clone(),
vec![],
&SecretKey(BigUint::ZERO),
)?;
// Also check equality, both positive and negative.
let st: mainpod::Statement = Statement::lt_eq(
@ -2060,7 +2249,13 @@ mod tests {
vec![OperationArg::Index(0), OperationArg::Index(0)],
OperationAux::None,
);
operation_verify(st, op, prev_statements.clone(), vec![])?;
operation_verify(
st,
op,
prev_statements.clone(),
vec![],
&SecretKey(BigUint::ZERO),
)?;
let st: mainpod::Statement = Statement::lt_eq(
AnchoredKey::from((PodId(RawValue::from(88).into()), "hello")),
AnchoredKey::from((PodId(RawValue::from(88).into()), "hello")),
@ -2071,7 +2266,7 @@ mod tests {
vec![OperationArg::Index(1), OperationArg::Index(1)],
OperationAux::None,
);
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -2120,7 +2315,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2, st3];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -2166,7 +2361,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2, st3];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
})
}
@ -2213,7 +2408,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2, st3];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
})
}
@ -2255,7 +2450,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2, st3];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
})
}
@ -2300,7 +2495,13 @@ mod tests {
let prev_statements = [st1, st2, st3];
let check = std::panic::catch_unwind(|| {
operation_verify(st, op, prev_statements.to_vec(), vec![])
operation_verify(
st,
op,
prev_statements.to_vec(),
vec![],
&SecretKey(BigUint::ZERO),
)
});
match check {
Err(e) => {
@ -2333,7 +2534,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -2359,7 +2560,7 @@ mod tests {
OperationAux::None,
);
let prev_statements = vec![st1, st2];
operation_verify(st, op, prev_statements, vec![])
operation_verify(st, op, prev_statements, vec![], &SecretKey(BigUint::ZERO))
}
#[test]
@ -2399,7 +2600,13 @@ mod tests {
no_key_pf,
)];
let prev_statements = vec![root_st, key_st];
operation_verify(st, op, prev_statements, merkle_proofs)
operation_verify(
st,
op,
prev_statements,
merkle_proofs,
&SecretKey(BigUint::ZERO),
)
}
#[test]
@ -2446,7 +2653,138 @@ mod tests {
key_pf,
)];
let prev_statements = vec![root_st, key_st, value_st];
operation_verify(st, op, prev_statements, merkle_proofs)
operation_verify(
st,
op,
prev_statements,
merkle_proofs,
&SecretKey(BigUint::ZERO),
)
}
#[test]
fn test_operation_verify_publickeyof() -> Result<()> {
[
&SecretKey(BigUint::one()),
&SecretKey::new_rand(),
&SecretKey(&*GROUP_ORDER - BigUint::one()),
]
.into_iter()
.try_for_each(|secret_key| {
let public_key = secret_key.public_key();
let public_key_value = Value::from(TypedValue::from(public_key));
let secret_key_value = Value::from(TypedValue::from(secret_key.clone()));
let public_key_ak = AnchoredKey::from((PodId(RawValue::from(88).into()), "public key"));
let secret_key_ak = AnchoredKey::from((PodId(RawValue::from(70).into()), "secret key"));
let public_key_st: mainpod::Statement =
Statement::equal(public_key_ak.clone(), public_key_value.clone()).into();
let secret_key_st: mainpod::Statement =
Statement::equal(secret_key_ak.clone(), secret_key_value.clone()).into();
let st: mainpod::Statement =
Statement::public_key_of(public_key_ak, secret_key_ak).into();
let op = mainpod::Operation(
OperationType::Native(NativeOperation::PublicKeyOf),
vec![OperationArg::Index(0), OperationArg::Index(1)],
OperationAux::None,
);
let prev_statements = vec![public_key_st, secret_key_st];
operation_verify(st, op, prev_statements, vec![], secret_key)
})
}
#[test]
fn test_operation_verify_publickeyof_failure_wrong_key() {
let secret_key = SecretKey(BigUint::one());
let public_key = SecretKey(BigUint::ZERO).public_key();
let public_key_value = Value::from(TypedValue::from(public_key));
let secret_key_value = Value::from(TypedValue::from(secret_key.clone()));
let public_key_ak = AnchoredKey::from((PodId(RawValue::from(88).into()), "public key"));
let secret_key_ak = AnchoredKey::from((PodId(RawValue::from(70).into()), "secret key"));
let public_key_st: mainpod::Statement =
Statement::equal(public_key_ak.clone(), public_key_value.clone()).into();
let secret_key_st: mainpod::Statement =
Statement::equal(secret_key_ak.clone(), secret_key_value.clone()).into();
let st: mainpod::Statement = Statement::public_key_of(public_key_ak, secret_key_ak).into();
let op = mainpod::Operation(
OperationType::Native(NativeOperation::PublicKeyOf),
vec![OperationArg::Index(0), OperationArg::Index(1)],
OperationAux::None,
);
let prev_statements = vec![public_key_st, secret_key_st];
assert!(operation_verify(st, op, prev_statements, vec![], &secret_key).is_err())
}
#[test]
fn test_operation_verify_publickeyof_failure_pk_type() {
let secret_key = SecretKey(BigUint::one());
let public_key = 123i64;
let public_key_value = Value::from(TypedValue::from(public_key));
let secret_key_value = Value::from(TypedValue::from(secret_key.clone()));
let public_key_ak = AnchoredKey::from((PodId(RawValue::from(88).into()), "public key"));
let secret_key_ak = AnchoredKey::from((PodId(RawValue::from(70).into()), "secret key"));
let public_key_st: mainpod::Statement =
Statement::equal(public_key_ak.clone(), public_key_value.clone()).into();
let secret_key_st: mainpod::Statement =
Statement::equal(secret_key_ak.clone(), secret_key_value.clone()).into();
let st: mainpod::Statement = Statement::public_key_of(public_key_ak, secret_key_ak).into();
let op = mainpod::Operation(
OperationType::Native(NativeOperation::PublicKeyOf),
vec![OperationArg::Index(0), OperationArg::Index(1)],
OperationAux::None,
);
let prev_statements = vec![public_key_st, secret_key_st];
assert!(operation_verify(st, op, prev_statements, vec![], &secret_key).is_err())
}
#[test]
fn test_operation_verify_publickeyof_failure_sk_type() {
let secret_key = 123i64;
let public_key = SecretKey(BigUint::from(123u32)).public_key();
let public_key_value = Value::from(TypedValue::from(public_key));
let secret_key_value = Value::from(TypedValue::from(secret_key));
let public_key_ak = AnchoredKey::from((PodId(RawValue::from(88).into()), "public key"));
let secret_key_ak = AnchoredKey::from((PodId(RawValue::from(70).into()), "secret key"));
let public_key_st: mainpod::Statement =
Statement::equal(public_key_ak.clone(), public_key_value.clone()).into();
let secret_key_st: mainpod::Statement =
Statement::equal(secret_key_ak.clone(), secret_key_value.clone()).into();
let st: mainpod::Statement = Statement::public_key_of(public_key_ak, secret_key_ak).into();
let op = mainpod::Operation(
OperationType::Native(NativeOperation::PublicKeyOf),
vec![OperationArg::Index(0), OperationArg::Index(1)],
OperationAux::None,
);
let prev_statements = vec![public_key_st, secret_key_st];
assert!(operation_verify(
st,
op,
prev_statements,
vec![],
&SecretKey(BigUint::from(123u32))
)
.is_err())
}
#[test]
fn test_operation_verify_publickeyof_failure_sk_size() {
let secret_key = SecretKey(&*GROUP_ORDER - BigUint::ZERO);
let public_key = secret_key.public_key();
let public_key_value = Value::from(TypedValue::from(public_key));
let secret_key_value = Value::from(TypedValue::from(secret_key.clone()));
let public_key_ak = AnchoredKey::from((PodId(RawValue::from(88).into()), "public key"));
let secret_key_ak = AnchoredKey::from((PodId(RawValue::from(70).into()), "secret key"));
let public_key_st: mainpod::Statement =
Statement::equal(public_key_ak.clone(), public_key_value.clone()).into();
let secret_key_st: mainpod::Statement =
Statement::equal(secret_key_ak.clone(), secret_key_value.clone()).into();
let st: mainpod::Statement = Statement::public_key_of(public_key_ak, secret_key_ak).into();
let op = mainpod::Operation(
OperationType::Native(NativeOperation::PublicKeyOf),
vec![OperationArg::Index(0), OperationArg::Index(1)],
OperationAux::None,
);
let prev_statements = vec![public_key_st, secret_key_st];
assert!(operation_verify(st, op, prev_statements, vec![], &secret_key).is_err())
}
fn helper_statement_arg_from_template(