Barretenberg: src/barretenberg/bbapi/bbapi.test.cpp Source File

#include "barretenberg/bbapi/bbapi.hpp"

#include "barretenberg/api/file_io.hpp"

#include "barretenberg/bbapi/bbapi_crypto.hpp"

#include "barretenberg/bbapi/bbapi_shared.hpp"

#include "barretenberg/chonk/private_execution_steps.hpp"

#include "barretenberg/common/assert.hpp"

#include "barretenberg/common/serialize.hpp"

#include "barretenberg/common/utils.hpp"

#include "barretenberg/serialize/test_helper.hpp"

#include "msgpack/v3/sbuffer_decl.hpp"

#include <gtest/gtest.h>


using namespace bb;


// Template for testing roundtrip serialization

template <typename T> class BBApiSerializationTest : public ::testing::Test {};


// Enumerate each command type

using Commands = ::testing::Types<bbapi::CircuitProve,

                                  bbapi::CircuitComputeVk,

                                  bbapi::CircuitStats,

                                  bbapi::CircuitVerify,

                                  bbapi::VkAsFields,

                                  bbapi::CircuitWriteSolidityVerifier,

                                  bbapi::ChonkStart,

                                  bbapi::ChonkLoad,

                                  bbapi::ChonkAccumulate,

                                  bbapi::ChonkProve,

                                  bbapi::ChonkComputeVk,

                                  bbapi::ChonkCheckPrecomputedVk,

                                  bbapi::ChonkBatchVerify>;


// Typed test suites

template <typename T> class BBApiMsgpack : public ::testing::Test {};


TYPED_TEST_SUITE(BBApiMsgpack, Commands);


// Test roundtrip serialization for UltraHonk commands


TYPED_TEST(BBApiMsgpack, DefaultConstructorRoundtrip)

{

    TypeParam command{};

    auto [actual_command, expected_command] = msgpack_roundtrip(command);

    EXPECT_EQ(actual_command, expected_command);


    typename TypeParam::Response response{};

    auto [actual_response, expected_response] = msgpack_roundtrip(response);

    EXPECT_EQ(actual_response, expected_response);

    std::cout << msgpack_schema_to_string(command) << " " << msgpack_schema_to_string(response) << std::endl;

}


// Regression tests for input validation at API boundaries.

// These ensure non-canonical field encodings and trailing bytes are rejected.


TEST(BBApiInputValidation, NonCanonicalPublicInputRejected)

{

    using Flavor = UltraFlavor;

    // A value >= BN254 scalar field modulus should be rejected

    uint256_t non_canonical = fr::modulus + 1;

    std::vector<uint256_t> bad_public_inputs = { non_canonical };

    std::vector<uint256_t> proof = { uint256_t(0) };


    EXPECT_THROW(bbapi::concatenate_proof<Flavor>(bad_public_inputs, proof), std::runtime_error);

}


TEST(BBApiInputValidation, NonCanonicalProofElementRejected)

{

    using Flavor = UltraFlavor;

    // The modulus itself is non-canonical (valid range is [0, modulus))

    uint256_t non_canonical = fr::modulus;

    std::vector<uint256_t> public_inputs = { uint256_t(42) };

    std::vector<uint256_t> bad_proof = { non_canonical };


    EXPECT_THROW(bbapi::concatenate_proof<Flavor>(public_inputs, bad_proof), std::runtime_error);

}


TEST(BBApiInputValidation, CanonicalValuesAccepted)

{

    using Flavor = UltraFlavor;

    // modulus - 1 is the largest canonical value

    uint256_t max_canonical = fr::modulus - 1;

    std::vector<uint256_t> public_inputs = { uint256_t(0), max_canonical };

    std::vector<uint256_t> proof = { uint256_t(1) };


    EXPECT_NO_THROW(bbapi::concatenate_proof<Flavor>(public_inputs, proof));

}


TEST(BBApiInputValidation, TrailingBytesInBinaryInputRejected)

{

    // A buffer that is not a multiple of 32 bytes should be rejected

    std::vector<uint8_t> buf(32 + 1, 0); // 33 bytes = 1 field element + 1 trailing byte

    EXPECT_THROW(many_from_buffer_exact<uint256_t>(buf, "test input"), std::runtime_error);

}


TEST(BBApiInputValidation, ExactBinaryInputAccepted)

{

    // A buffer that is exactly 2 field elements should parse fine

    std::vector<uint8_t> buf(64, 0);

    EXPECT_NO_THROW(many_from_buffer_exact<uint256_t>(buf, "test input"));

    auto result = many_from_buffer_exact<uint256_t>(buf, "test input");

    EXPECT_EQ(result.size(), 2UL);

}


TEST(BBApiInputValidation, VkWithTrailingBytesRejectedOnProveSide)

{

    using VK = UltraFlavor::VerificationKey;

    const size_t expected_size = VK::calc_num_data_types() * sizeof(bb::fr);

    // One extra byte beyond the expected VK size

    std::vector<uint8_t> bad_vk(expected_size + 1, 0);

    EXPECT_THROW(bbapi::validate_vk_size<VK>(bad_vk), std::runtime_error);

}


TEST(BBApiInputValidation, VkWithCorrectSizeAccepted)

{

    using VK = UltraFlavor::VerificationKey;

    const size_t expected_size = VK::calc_num_data_types() * sizeof(bb::fr);

    std::vector<uint8_t> good_vk(expected_size, 0);

    EXPECT_NO_THROW(bbapi::validate_vk_size<VK>(good_vk));

}


// Helper: pack a vector of PrivateExecutionStepRaw into a byte buffer via msgpack.

namespace {

std::vector<uint8_t> pack_steps(const std::vector<PrivateExecutionStepRaw>& steps)

{

    std::stringstream ss;

    msgpack::pack(ss, steps);

    const std::string s = ss.str();

    return { s.begin(), s.end() };

}

} // namespace


TEST(BBApiInputValidation, MsgpackParseUncompressedAcceptsCleanInput)

{

    PrivateExecutionStepRaw step{

        .bytecode = { 0xCA, 0xFE }, .witness = { 0xBE, 0xEF }, .vk = {}, .function_name = "test_fn"

    };


    auto buf = pack_steps({ step });

    auto result = PrivateExecutionStepRaw::parse_uncompressed(buf);


    ASSERT_EQ(result.size(), 1);

    EXPECT_EQ(result[0].bytecode, step.bytecode);

    EXPECT_EQ(result[0].witness, step.witness);

    EXPECT_EQ(result[0].function_name, "test_fn");

}


TEST(BBApiInputValidation, MsgpackParseUncompressedRejectsTrailingData)

{

    PrivateExecutionStepRaw step{ .bytecode = {}, .witness = {}, .vk = {}, .function_name = "x" };


    auto buf = pack_steps({ step });

    buf.push_back(0x00);


    EXPECT_THROW(PrivateExecutionStepRaw::parse_uncompressed(buf), std::invalid_argument);

}


TEST(BBApiInputValidation, MsgpackLoadAcceptsCleanFile)

{

    PrivateExecutionStepRaw step{ .bytecode = { 1, 2, 3 }, .witness = { 4, 5 }, .vk = {}, .function_name = "file_fn" };


    auto buf = pack_steps({ step });


    auto tmp = std::filesystem::temp_directory_path() / "bb_test_clean.msgpack";

    std::ofstream out(tmp, std::ios::binary);

    out.write(reinterpret_cast<const char*>(buf.data()), static_cast<std::streamsize>(buf.size()));

    out.close();


    auto result = PrivateExecutionStepRaw::load(tmp);

    std::filesystem::remove(tmp);


    ASSERT_EQ(result.size(), 1);

    EXPECT_EQ(result[0].function_name, "file_fn");

}


TEST(BBApiInputValidation, MsgpackLoadRejectsTrailingData)

{

    PrivateExecutionStepRaw step{ .bytecode = {}, .witness = {}, .vk = {}, .function_name = "x" };


    auto buf = pack_steps({ step });

    buf.push_back(0x00);


    auto tmp = std::filesystem::temp_directory_path() / "bb_test_tailed.msgpack";

    std::ofstream out(tmp, std::ios::binary);

    out.write(reinterpret_cast<const char*>(buf.data()), static_cast<std::streamsize>(buf.size()));

    out.close();


    EXPECT_THROW(PrivateExecutionStepRaw::load(tmp), std::invalid_argument);

    std::filesystem::remove(tmp);

}


// Regression tests for AesEncrypt/AesDecrypt input validation.

// Without these guards, a socket client could force a ~4 GB allocation via the

// uint32_t `length` field, or pass `length != plaintext.size()` and silently

// encrypt zero-padded tail bytes.


TEST(BBApiInputValidation, AesEncryptRejectsLengthMismatch)

{

    bbapi::BBApiRequest request{};

    bbapi::AesEncrypt cmd{ .plaintext = std::vector<uint8_t>(16, 0), .iv = {}, .key = {}, .length = 32 };

    EXPECT_THROW_OR_ABORT(std::move(cmd).execute(request), ".*length must equal plaintext.*");

}


TEST(BBApiInputValidation, AesEncryptRejectsNonBlockAlignedLength)

{

    bbapi::BBApiRequest request{};

    bbapi::AesEncrypt cmd{ .plaintext = std::vector<uint8_t>(17, 0), .iv = {}, .key = {}, .length = 17 };

    EXPECT_THROW_OR_ABORT(std::move(cmd).execute(request), ".*multiple of 16.*");

}


TEST(BBApiInputValidation, AesDecryptRejectsLengthMismatch)

{

    bbapi::BBApiRequest request{};

    bbapi::AesDecrypt cmd{ .ciphertext = std::vector<uint8_t>(16, 0), .iv = {}, .key = {}, .length = 32 };

    EXPECT_THROW_OR_ABORT(std::move(cmd).execute(request), ".*length must equal ciphertext.*");

}


TEST(BBApiInputValidation, AesDecryptRejectsNonBlockAlignedLength)

{

    bbapi::BBApiRequest request{};

    bbapi::AesDecrypt cmd{ .ciphertext = std::vector<uint8_t>(17, 0), .iv = {}, .key = {}, .length = 17 };

    EXPECT_THROW_OR_ABORT(std::move(cmd).execute(request), ".*multiple of 16.*");

}


assert.hpp

EXPECT_THROW_OR_ABORT
#define EXPECT_THROW_OR_ABORT(statement, matcher)
Definition assert.hpp:192

bytecode
std::shared_ptr< Napi::ThreadSafeFunction > bytecode
Definition avm_simulate_napi.cpp:131

bbapi.hpp

TYPED_TEST_SUITE
TYPED_TEST_SUITE(BBApiMsgpack, Commands)

TEST
TEST(BBApiInputValidation, NonCanonicalPublicInputRejected)
Definition bbapi.test.cpp:54

TYPED_TEST
TYPED_TEST(BBApiMsgpack, DefaultConstructorRoundtrip)
Definition bbapi.test.cpp:39

Commands
::testing::Types< bbapi::CircuitProve, bbapi::CircuitComputeVk, bbapi::CircuitStats, bbapi::CircuitVerify, bbapi::VkAsFields, bbapi::CircuitWriteSolidityVerifier, bbapi::ChonkStart, bbapi::ChonkLoad, bbapi::ChonkAccumulate, bbapi::ChonkProve, bbapi::ChonkComputeVk, bbapi::ChonkCheckPrecomputedVk, bbapi::ChonkBatchVerify > Commands
Definition bbapi.test.cpp:31

bbapi_crypto.hpp
Cryptographic primitives command definitions for the Barretenberg RPC API.

bbapi_shared.hpp
Shared type definitions for the Barretenberg RPC API.

BBApiMsgpack
Definition bbapi.test.cpp:34

BBApiSerializationTest
Definition bbapi.test.cpp:16

bb::ECCVMFlavor
Definition eccvm_flavor.hpp:37

bb::UltraFlavor
Definition ultra_flavor.hpp:32

bb::UltraFlavor::VerificationKey
NativeVerificationKey_< PrecomputedEntities< Commitment >, Codec, HashFunction, CommitmentKey > VerificationKey
The verification key stores commitments to the precomputed (non-witness) polynomials used by the veri...
Definition ultra_flavor.hpp:274

bb::numeric::uint256_t
Definition uint256.hpp:32

utils.hpp

file_io.hpp

bb
Entry point for Barretenberg command-line interface.
Definition api.hpp:5

bb::fr
field< Bn254FrParams > fr
Definition fr.hpp:155

std::get
constexpr decltype(auto) get(::tuplet::tuple< T... > &&t) noexcept
Definition tuple.hpp:13

private_execution_steps.hpp

msgpack_schema_to_string
std::string msgpack_schema_to_string(const auto &obj)
Print's an object's derived msgpack schema as a string.
Definition schema_impl.hpp:218

serialize.hpp

bb::PrivateExecutionStepRaw
This is the msgpack encoding of the objects returned by the following typescript: const stepToStruct ...
Definition private_execution_steps.hpp:29

bb::PrivateExecutionStepRaw::bytecode
std::vector< uint8_t > bytecode
Definition private_execution_steps.hpp:31

bb::PrivateExecutionStepRaw::parse_uncompressed
static std::vector< PrivateExecutionStepRaw > parse_uncompressed(const std::vector< uint8_t > &buf)
Definition private_execution_steps.cpp:125

bb::PrivateExecutionStepRaw::load
static std::vector< PrivateExecutionStepRaw > load(const std::filesystem::path &input_path)
Definition private_execution_steps.cpp:99

bb::bbapi::AesDecrypt
AES-128 CBC decryption.
Definition bbapi_crypto.hpp:196

bb::bbapi::AesDecrypt::ciphertext
std::vector< uint8_t > ciphertext
Definition bbapi_crypto.hpp:206

bb::bbapi::AesEncrypt
AES-128 CBC encryption.
Definition bbapi_crypto.hpp:173

bb::bbapi::AesEncrypt::plaintext
std::vector< uint8_t > plaintext
Definition bbapi_crypto.hpp:183

bb::bbapi::BBApiRequest
Definition bbapi_shared.hpp:178

bb::bbapi::ChonkAccumulate
Accumulate the previously loaded circuit into the IVC proof.
Definition bbapi_chonk.hpp:86

bb::bbapi::ChonkBatchVerify
Batch-verify multiple Chonk proofs with a single IPA SRS MSM.
Definition bbapi_chonk.hpp:295

bb::bbapi::ChonkCheckPrecomputedVk
Verify that a precomputed verification key matches the circuit.
Definition bbapi_chonk.hpp:229

bb::bbapi::ChonkComputeVk
Compute MegaHonk verification key for a circuit to be accumulated in Chonk.
Definition bbapi_chonk.hpp:198

bb::bbapi::ChonkLoad
Load a circuit into the Chonk instance for accumulation.
Definition bbapi_chonk.hpp:61

bb::bbapi::ChonkProve
Generate a proof for all accumulated circuits.
Definition bbapi_chonk.hpp:111

bb::bbapi::ChonkStart
Initialize a new Chonk instance for incremental proof accumulation.
Definition bbapi_chonk.hpp:37

bb::bbapi::CircuitComputeVk
Definition bbapi_ultra_honk.hpp:20

bb::bbapi::CircuitProve
Represents a request to generate a proof. Currently, UltraHonk is the only proving system supported b...
Definition bbapi_ultra_honk.hpp:47

bb::bbapi::CircuitStats
Consolidated command for retrieving circuit information. Combines gate count, circuit size,...
Definition bbapi_ultra_honk.hpp:78

bb::bbapi::CircuitVerify
Verify a proof against a verification key and public inputs.
Definition bbapi_ultra_honk.hpp:104

bb::bbapi::CircuitWriteSolidityVerifier
Command to generate Solidity verifier contract.
Definition bbapi_ultra_honk.hpp:173

bb::bbapi::VkAsFields
Convert a verification key to field elements representation. WORKTODO(bbapi): this should become most...
Definition bbapi_ultra_honk.hpp:131

bb::field< Bn254FrParams >::modulus
static constexpr uint256_t modulus
Definition field_declarations.hpp:234

test_helper.hpp

msgpack_roundtrip
std::pair< T, T > msgpack_roundtrip(const T &object)
Definition test_helper.hpp:10