github/self
1
1
Fork 0
mirror of https://github.com/selfxyz/self.git synced 2026-04-27 03:01:15 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
4eb39188f86968375fe60d7b7ca4536cf13e95d1
self/common/src/utils/generateInputs.ts
0xturboblitz 4eb39188f8 fix IMT depth passed to circuit and contract
2024-05-22 01:22:52 +09:00

168 lines
6.2 KiB
TypeScript
Raw Blame History

import { MAX_DATAHASHES_LEN, SignatureAlgorithm, PUBKEY_TREE_DEPTH } from "../constants/constants";
import { assert, shaPad } from "./shaPad";
import { PassportData } from "./types";
import {
arraysAreEqual, bytesToBigDecimal, formatMrz, formatSigAlg, hash, splitToWords,
toUnsignedByte, getDigestLengthBytes, getCurrentDateYYMMDD,
generateMerkleProof
} from "./utils";
import { LeanIMT } from "@zk-kit/lean-imt";
import { IMT } from "@zk-kit/imt";
import { getLeaf } from "./pubkeyTree";
import serializedTree from "../../pubkeys/serialized_tree.json";
import { poseidon2, poseidon6 } from "poseidon-lite";
import { packBytes } from "../utils/utils";
import { mockPassportData_sha256WithRSAEncryption_65537 } from "./mockPassportData";
export function generateCircuitInputsRegister(
secret: string,
attestation_id: string,
passportData: PassportData,
options: { developmentMode?: boolean } = { developmentMode: false }
) {
const tree = new IMT(poseidon2, PUBKEY_TREE_DEPTH, 0, 2);
tree.setNodes(serializedTree);
if (options.developmentMode) {
tree.insert(getLeaf({
signatureAlgorithm: mockPassportData_sha256WithRSAEncryption_65537.signatureAlgorithm,
issuer: 'C = TS, O = Government of Syldavia, OU = Ministry of tests, CN = CSCA-TEST',
modulus: mockPassportData_sha256WithRSAEncryption_65537.pubKey.modulus,
exponent: mockPassportData_sha256WithRSAEncryption_65537.pubKey.exponent
}).toString());
}
if (!["sha256WithRSAEncryption", "sha1WithRSAEncryption"].includes(passportData.signatureAlgorithm)) {
console.error(`${passportData.signatureAlgorithm} not supported for proof right now.`);
throw new Error(`${passportData.signatureAlgorithm} not supported for proof right now.`);
}
const formattedMrz = formatMrz(passportData.mrz);
const concatenatedDataHashesHashDigest = hash(passportData.signatureAlgorithm, passportData.dataGroupHashes);
// console.log('concatenatedDataHashesHashDigest', concatenatedDataHashesHashDigest);
assert(
arraysAreEqual(passportData.eContent.slice(72, 72 + getDigestLengthBytes(passportData.signatureAlgorithm)),
concatenatedDataHashesHashDigest),
'concatenatedDataHashesHashDigest is at the right place in passportData.eContent'
);
// console.log('passportData.pubKey.exponent', passportData.pubKey.exponent);
const leaf = getLeaf({
signatureAlgorithm: passportData.signatureAlgorithm,
...passportData.pubKey,
}).toString();
// console.log('leaf', leaf);
const index = tree.indexOf(leaf);
// console.log(`Index of pubkey in the registry: ${index}`);
if (index === -1) {
throw new Error("Your public key was not found in the registry");
}
const proof = tree.createProof(index);
// console.log("verifyProof", tree.verifyProof(proof));
if (passportData.dataGroupHashes.length > MAX_DATAHASHES_LEN) {
console.error(`Data hashes too long. Max length is ${MAX_DATAHASHES_LEN} bytes.`);
throw new Error(`This number of datagroups is currently unsupported. Please contact us so we add support!`);
}
const [messagePadded, messagePaddedLen] = shaPad(
passportData.signatureAlgorithm,
new Uint8Array(passportData.dataGroupHashes),
MAX_DATAHASHES_LEN
);
const sigAlgFormatted = formatSigAlg(passportData.signatureAlgorithm, passportData.pubKey.exponent);
const sigAlgIndex = SignatureAlgorithm[sigAlgFormatted]
return {
secret: [secret],
mrz: formattedMrz.map(byte => String(byte)),
econtent: Array.from(messagePadded).map((x) => x.toString()),
datahashes_padded_length: [messagePaddedLen.toString()],
signed_attributes: passportData.eContent.map(toUnsignedByte).map(byte => String(byte)),
signature: splitToWords(
BigInt(bytesToBigDecimal(passportData.encryptedDigest)),
BigInt(64),
BigInt(32)
),
pubkey: splitToWords(
BigInt(passportData.pubKey.modulus as string),
BigInt(64),
BigInt(32)
),
merkle_root: [tree.root.toString()],
path: proof.pathIndices.map(index => index.toString()),
siblings: proof.siblings.flat().map(index => index.toString()),
attestation_id: [attestation_id],
};
}
export function generateCircuitInputsDisclose(
secret: string,
attestation_id: string,
passportData: PassportData,
merkletree: LeanIMT,
majority: string[],
bitmap: string[],
scope: string,
user_identifier: string,
) {
const pubkey_leaf = getLeaf({
signatureAlgorithm: passportData.signatureAlgorithm,
modulus: passportData.pubKey.modulus,
exponent: passportData.pubKey.exponent,
});
const formattedMrz = formatMrz(passportData.mrz);
const mrz_bytes = packBytes(formattedMrz);
const commitment = poseidon6([
secret,
attestation_id,
pubkey_leaf,
mrz_bytes[0],
mrz_bytes[1],
mrz_bytes[2]
]);
console.log('commitment', commitment.toString());
const index = findIndexInTree(merkletree, commitment);
const { merkleProofSiblings, merkleProofIndices, depthForThisOne } = generateMerkleProof(merkletree, index, PUBKEY_TREE_DEPTH)
return {
secret: [secret],
attestation_id: [attestation_id],
pubkey_leaf: [pubkey_leaf.toString()],
mrz: formattedMrz.map(byte => String(byte)),
merkle_root: [merkletree.root.toString()],
merkletree_size: [BigInt(depthForThisOne).toString()],
path: merkleProofIndices.map(index => BigInt(index).toString()),
siblings: merkleProofSiblings.map(index => BigInt(index).toString()),
bitmap: bitmap,
scope: [scope],
current_date: getCurrentDateYYMMDD().map(datePart => BigInt(datePart).toString()),
majority: majority.map(char => BigInt(char.charCodeAt(0)).toString()),
user_identifier: [user_identifier],
};
}
// this get the commitment index whether it is a string or a bigint
// this is necessary rn because when the tree is send from the server in a serialized form,
// the bigints are converted to strings and I can't figure out how to use tree.import to load bigints there
function findIndexInTree(tree: LeanIMT, commitment: bigint): number {
let index = tree.indexOf(commitment);
if (index === -1) {
index = tree.indexOf(commitment.toString() as unknown as bigint);
}
if (index === -1) {
throw new Error("This commitment was not found in the tree");
} else {
console.log(`Index of commitment in the registry: ${index}`);
}
return index;
}
Reference in New Issue View Git Blame Copy Permalink