separate ghash from polyval gfmul test

Author: thor314

circuits/test/gfmulint/ghash_gfmul_int.test.ts

@@ -0,0 +1,51 @@
+import { assert } from "chai";
+import { WitnessTester } from "circomkit";
+import { circomkit } from "../common";
+
+// input and output type of GFMULInt
+type Arr128 = number[][];
+
+describe("gfmulint", () => {
+  let circuit: WitnessTester<["a", "b"], ["res"]>;
+
+  before(async () => {
+    circuit = await circomkit.WitnessTester("gfmulint", {
+      file: "aes-gcm/ghash_gfmul_int",
+      template: "GFMULInt",
+    });
+    console.log("#constraints:", await circuit.getConstraintCount());
+  });
+
+  it("should have correct number of constraints", async () => {
+    await circuit.expectConstraintCount(74626, true);
+  });
+
+  it("should output correct gfmul", async () => {
+    const a = 128;
+    const b = 128;
+    const expected = a * b;
+    const input = { a: pad_num_to_arr128(a), b: pad_num_to_arr128(b) };
+
+    let _res = await circuit.compute(input, ["res"]);
+    console.log(`res: ${_res.res}`);
+    let result = parse_arr128_to_number(_res.res as Arr128);
+    console.log(`${a} x ${b} = ${result}`);
+    assert.equal(result, expected);
+  });
+});
+
+function pad_num_to_arr128(value: number): Arr128 {
+  let tmp = value
+    .toString(2)
+    .padStart(128, "0")
+    .split("")
+    .map((bit) => parseInt(bit, 10));
+  return [tmp.slice(0, 64), tmp.slice(64, 128)];
+}
+
+function parse_arr128_to_number(res: Arr128): number {
+  let first_64: number[] = res[0];
+  let last_64: number[] = res[1];
+  let all_bits: number[] = first_64.concat(last_64);
+  return parseInt(all_bits.join(""), 2);
+}