使用nodejs与sanrkjs生成零知识证明并进行验证

企业开发 2020-08-13 10:18:12 阅读次数: 0

以Merkle Tree路径证明为例,使用nodejs与sanrkjs生成零知识证明,并进行本地验证。

版本

"circom": "0.0.35",
"circomlib": "0.0.20",
"snarkjs": "0.1.20"

源码

genKeypair.js
setup,生成pk和vk

const { compiler } = require("circom");
const { Circuit, groth ,stringifyBigInts } = require("snarkjs");
const path = require("path");
const fs = require("fs");

const genKeypair = async () => {
  console.log("start....");
  
  console.log("Get circtui definition....");
  const circuitDef = await compiler(  
	path.join(__dirname, "./withdraw.circom"),{}
  );
  const circuit = new Circuit(circuitDef);
  
  console.log("Setup....");
  const {vk_proof,vk_verifier} = groth.setup(circuit);
  //save pk,vk file
  fs.writeFileSync("proving_key.json", JSON.stringify(stringifyBigInts(vk_proof)), 'utf8');
  fs.writeFileSync("verification_key.json", JSON.stringify(stringifyBigInts(vk_verifier)), 'utf8');

  console.log("finish....");
  process.exit(0);
};

genKeypair();

index.js
生成proof并进行本地验证

const { binarifyWitness } = require("./utils/binarify");
const bigInt = require("big-integer");
const { compiler } = require("circom");
const { Circuit, groth ,stringifyBigInts ,unstringifyBigInts} = require("snarkjs");
const path = require("path");
const fs = require("fs");

const SNARK_FIELD_SIZE = bigInt(
  "21888242871839275222246405745257275088548364400416034343698204186575808495617"
);

//read input
const fileData = fs.readFileSync('input.json');
const inputObj = JSON.parse(fileData);
const root = bigInt(inputObj.root);
const nullifierHash = bigInt(inputObj.nullifierHash);
const secret =  bigInt(inputObj.secret);
const paths2_root = [
	bigInt(inputObj.paths2_root[0]),
	bigInt(inputObj.paths2_root[1]),
	bigInt(inputObj.paths2_root[2])
];
const paths2_root_pos = bigInt(inputObj.paths2_root_pos);

const provingKey = require("./proving_key.json");
const verifyingKey = require("./verification_key.json");

//gen wintness proof
const generateProofAndVerify = async circuitInputs => {
  console.log("Get circtui definition....");
  const circuitDef = await compiler(  
	path.join(__dirname, "./withdraw.circom"),{}
  );
  const circuit = new Circuit(circuitDef);
  
  console.log("loading pk,vk....");
  const vk_proof = unstringifyBigInts(provingKey);
  const vk_verifier = unstringifyBigInts(verifyingKey);

  console.log("Generating witness....");
  const witness = circuit.calculateWitness(stringifyBigInts(circuitInputs));  
  //save witness file
  const witnessString = witness.map(x => x.toString());
  fs.writeFileSync("witness.json",JSON.stringify(witnessString));   

  console.log("Generating proof and publicSignals....");
  const {proof,publicSignals} = await groth.genProof(vk_proof,witness); 
  //save proof file
  const proofJson = JSON.stringify({
	    pi_a: stringifyBigInts(proof.pi_a).slice(0, 3),
		pi_b: stringifyBigInts(proof.pi_b).slice(0, 3), 
		pi_c: stringifyBigInts(proof.pi_c).slice(0, 3),
		protocol: "groth"
	});
  fs.writeFileSync("proof.json", proofJson);
   //save public file
  console.log("Generating public.json....");
  const  pS = publicSignals.map(x => bigInt(x));
  const publicInputs = pS.map(x => x.mod(SNARK_FIELD_SIZE).toString());
  console.log("Generating public.json....");
  const publicJson = [
     publicInputs[0],publicInputs[1]
  ];
  fs.writeFileSync("public.json", JSON.stringify(publicJson)); 
 
  
  console.log("Check isValid....");
  const isValid = groth.isValid(vk_verifier,proof,publicSignals);
  console.log(`Passed local zk-snark verification: ${isValid}`);
   
   
  console.log("Generating solidityProof....");
  const solidityProof = {
    a: stringifyBigInts(proof.pi_a).slice(0, 2),
    b: stringifyBigInts(proof.pi_b).slice(0, 2),
    c: stringifyBigInts(proof.pi_c).slice(0, 2),
    inputs: publicInputs
  };
  //save solidityProof file
  fs.writeFileSync("solidityProof.json", JSON.stringify(solidityProof)); 

  //// Submit to smart contract
  //const solidityIsValid = await zkIdentityContract.isInGroup(
  //  solidityProof.a,
  //  solidityProof.b,
  //  solidityProof.c,
  //  solidityProof.inputs
  //);
  //console.log(`Verified user is in group (via solidity): ${solidityIsValid}`);
  
};

const main = async () => {
  console.log("zkp start....");

  await generateProofAndVerify({
    root: root,
    nullifierHash: nullifierHash,
	secret: secret,
	paths2_root: paths2_root,
	paths2_root_pos: paths2_root_pos
  });

  console.log("zkp finish....");
  process.exit(0);
};

main();

还可添加与verify.sol交互进行链上验证的部分。

完整代码放在我的github上面了。

遇到过的问题

  1. Cannot read property’prime’ of undefined
    解决:compile()第二个参数写成{}
  2. Circuit is not a constructor
    解决:改用旧版本的circom和snarkjs,circom的index.js改为module.exports.compiler = require("./src/compiler.js");
  3. WebAssembly.Memory(): could not allocate memory
    解决:应该是电脑内存不够了,换成服务器运行ok
  4. index.js运行过程中verify通过,使用命令行verify却失败
    解决:proof.json输出格式写错了

参考

https://www.jianshu.com/p/45ef81cc77b9
https://github.com/kendricktan/hello-world-zk-dapp

猜你喜欢

转载自blog.csdn.net/apianmuse/article/details/107950991
今日推荐
TIOBE 5 月榜单:Fortran “复活”进入 Top 10
GCC 14.1 发布
面壁智能发布 Eurux-8x22B 开源大模型 —— 堪称「理科状元」
开源日报 | 谷歌扶持鸿蒙上位;开源Rabbit R1;Docker加持的安卓手机;微软的焦虑和野心;海尔电器把开放平台关了
中国码农的“35岁魔咒”
蘭雅 CorelDRAW 插件 2024.5.1 国际劳动节版,免费下载
Arc Browser for Windows 1.0 正式 GA
90后程序员开发视频搬运软件、不到一年获利超 700 万,结局很刑!
周排行
Java自定义时间格式
同步整形电路
在开发中最最最常用的字符串的属性大集合
Linux 查看端口占用并杀掉
Java基础四:ArrayList
多线程之死锁就是这么简单
mysql 基础命令集
awk 命令详解
Centos6.3编译安装nginx+php步骤
OCR (Optical Character Recognition,光学字符识别)
每日归档
更多
2024-05-08(42)
2024-05-07(14)
2024-05-06(40)
2024-05-05(0)
2024-05-04(7)
2024-05-03(19)
2024-05-02(0)
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022