npm - @auditable/privacy-pool-zk-sdk - Versions diffs - 0.1.0 → 0.6.1-rc.5 - Mend

@auditable/privacy-pool-zk-sdk 0.1.0 → 0.6.1-rc.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/assets/main.wasm +0 -0
package/assets/main_final.zkey +0 -0
package/dist/cli.js +511 -101
package/dist/cli.js.map +1 -1
package/dist/index.d.ts +11 -1
package/dist/index.mjs +1600 -127
package/dist/index.mjs.map +1 -1
package/dist/kyt-flow.d.ts +54 -0
package/dist/kyt-onboarding.d.ts +36 -0
package/dist/kyt-passage.d.ts +71 -0
package/dist/output-note-encryption.d.ts +42 -0
package/dist/sdk.d.ts +18 -6
package/dist/transaction-audit.d.ts +25 -0
package/dist/types.d.ts +9 -0
package/dist/withdrawal-transaction-input.d.ts +60 -4
package/package.json +8 -2
package/pkg/client_sdk_wasm.d.ts +10 -9
package/pkg/client_sdk_wasm.js +58 -82
package/pkg/client_sdk_wasm_bg.wasm +0 -0
package/pkg/client_sdk_wasm_bg.wasm.d.ts +4 -4

package/dist/kyt-flow.d.ts ADDED Viewed

@@ -0,0 +1,54 @@
+import { Keypair } from '@stellar/stellar-sdk';
+import { buildKytPassageAuthorization, derivePassageFromTransactContext, hashPublicSignalBytes, type InspectKytPassageRequest, type PublicLegContextInput } from './kyt-passage.js';
+import { type OnboardingPayloadInput } from './kyt-onboarding.js';
+export interface RegisterPassageParams {
+    kytRegistryId: string;
+    poolContract: string;
+    owner: string;
+    publicSignalsBytes: Buffer | string;
+    publicLegContext: PublicLegContextInput;
+    onboarding?: OnboardingPayloadInput | null;
+    signature: string;
+    expiresAtLedger: number;
+    source: Keypair;
+    networkPassphrase: string;
+    rpcUrl: string;
+}
+export interface SubmitKytTransactParams {
+    poolContract: string;
+    owner: string;
+    proofBytes: Buffer;
+    publicSignalsBytes: Buffer;
+    onboarding?: OnboardingPayloadInput | null;
+    source: Keypair;
+    networkPassphrase: string;
+    rpcUrl: string;
+}
+export interface SubmitWithKytPassageParams extends SubmitKytTransactParams {
+    kytRegistryId: string;
+    kytSubmitHelperId?: string;
+    inspectRequest: InspectKytPassageRequest;
+    publicLegContext: PublicLegContextInput;
+    inspectFn?: (request: InspectKytPassageRequest) => Promise<{
+        passageId: string;
+        signature: string;
+        expiresAtLedger: number;
+    }>;
+}
+export interface SubmitApprovedKytPassageParams extends SubmitKytTransactParams {
+    kytSubmitHelperId: string;
+    passageId: string;
+    signature: string;
+    expiresAtLedger: number;
+}
+export interface AtomicKytSubmitPlan {
+    atomic: boolean;
+    operations: Array<'helper.submit_with_passage' | 'register_passage' | 'pool.transact'>;
+}
+export declare function planKytSubmit(registerFirst: boolean, helperAvailable?: boolean): AtomicKytSubmitPlan;
+export declare function registerKytPassage(params: RegisterPassageParams): Promise<string>;
+export declare function submitPoolTransact(params: SubmitKytTransactParams): Promise<string>;
+export declare function submitApprovedKytPassage(params: SubmitApprovedKytPassageParams): Promise<string>;
+export declare function submitWithKytPassage(params: SubmitWithKytPassageParams): Promise<string>;
+export declare function localSignKytPassageAuthorization(secretSeed: string, authorization: ReturnType<typeof buildKytPassageAuthorization>): string;
+export { buildKytPassageAuthorization, derivePassageFromTransactContext, hashPublicSignalBytes };

package/dist/kyt-onboarding.d.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import { xdr } from '@stellar/stellar-sdk';
+export interface PlaintextNotePayload {
+    value: bigint;
+    asset_hi: Buffer;
+    asset_lo: Buffer;
+    nullifier: Buffer;
+    secret: Buffer;
+    deposited_ephemeral_scalar?: Buffer;
+}
+export type OptionalPrivateAddressRegistrationPayload = {
+    tag: 'None';
+} | {
+    tag: 'Some';
+    values: readonly [
+        {
+            owner: string;
+            public_key_x: Buffer;
+            public_key_y: Buffer;
+        }
+    ];
+};
+export interface OnboardingPayloadInput {
+    owner: string;
+    temp_public_key_x: Buffer;
+    temp_public_key_y: Buffer;
+    encrypted_private_key: Buffer;
+    notes: PlaintextNotePayload[];
+    private_address_registration: OptionalPrivateAddressRegistrationPayload;
+}
+declare const ONBOARDING_ZERO_DOMAIN = "privacy-pool-onboarding-zero-v1";
+/** Canonical `onboardingHash` matching `libs/kyt-passage/src/lib.rs::hash_onboarding`. */
+export declare function hashOnboardingCanonical(onboarding: OnboardingPayloadInput | null | undefined): string;
+export declare function onboardingToScVal(onboarding: OnboardingPayloadInput): xdr.ScVal;
+export declare function onboardingOptionToScVal(onboarding: OnboardingPayloadInput | null | undefined): xdr.ScVal;
+export declare function addressToScVal(address: string): xdr.ScVal;
+export { ONBOARDING_ZERO_DOMAIN };

package/dist/kyt-passage.d.ts ADDED Viewed

@@ -0,0 +1,71 @@
+import { type OnboardingPayloadInput } from './kyt-onboarding.js';
+export declare const KYT_PASSAGE_AUTH_DOMAIN = "privacy-pool-kyt-passage-v1";
+export declare const PUBLIC_LEG_CONTEXT_DOMAIN = "privacy-pool-public-leg-context-v1";
+export declare const PASSAGE_ID_DOMAIN = "privacy-pool-passage-id-v1";
+export declare const ONBOARDING_ZERO_DOMAIN = "privacy-pool-onboarding-zero-v1";
+export declare const NOTE_AUDIT_LEN = 9;
+export declare const TOTAL_PUBLIC_SIGNALS = 79;
+export interface PublicLegLayout {
+    publicNInputs: number;
+    publicNOutputs: number;
+}
+export interface PublicLegContextInput {
+    owner: string;
+    withdrawAddress: string;
+    publicDeposits: string[];
+    publicWithdrawals: string[];
+    publicDepositedAssets: [string, string][];
+    publicWithdrawnAssets: [string, string][];
+}
+export interface KytPassageDerivation {
+    publicSignalHash: string;
+    publicLegContextHash: string;
+    onboardingHash: string;
+    passageId: string;
+}
+export interface KytPassageAuthorization {
+    authorizationHash: string;
+    poolContract: string;
+    kytRegistry: string;
+    passageId: string;
+    expiresAtLedger: number;
+}
+/** Canonical zero-address sentinel for absent public-leg slots: `u32_be(0)` with no XDR bytes. */
+export declare function zeroAddressSentinelBuffer(): Buffer;
+export declare function addressToCanonicalXdr(address: string): Buffer;
+export declare function hashPublicSignalBytes(publicSignalsBytes: Buffer | string): string;
+export declare function hashPublicLegContext(layout: PublicLegLayout, input: PublicLegContextInput): string;
+export declare function hashOnboarding(onboarding: OnboardingPayloadInput | null | undefined): string;
+export declare function derivePassageId(owner: string, publicSignalHash: string, publicLegContextHash: string, onboardingHash: string): string;
+export declare function buildKytPassageAuthorization(input: {
+    poolContract: string;
+    kytRegistry: string;
+    passageId: string;
+    expiresAtLedger: number;
+}): KytPassageAuthorization;
+export declare function derivePassageFromTransactContext(input: {
+    owner: string;
+    publicSignalsBytes: Buffer | string;
+    publicLegContext: PublicLegContextInput;
+    layout?: PublicLegLayout;
+    onboarding?: OnboardingPayloadInput | null;
+}): KytPassageDerivation;
+export declare function accountIdFromAddress(address: string): Buffer;
+export interface InspectKytPassageRequest {
+    owner: string;
+    poolContract: string;
+    kytRegistry: string;
+    proofBytes: string;
+    publicSignalsBytes: string;
+    applicationIdsPlaintext: [string, string, string, string];
+    onboarding?: OnboardingPayloadInput | null;
+    nonce?: string;
+}
+export interface InspectKytPassageApproved {
+    status: 'approved';
+    passageId: string;
+    signature: string;
+    expiresAtLedger: number;
+}
+export declare function inspectKytPassage(backendUrl: string, request: InspectKytPassageRequest): Promise<InspectKytPassageApproved>;
+export declare function signatureBase64ToBytes(signature: string): Buffer;

package/dist/output-note-encryption.d.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import type { DepositObject } from './withdrawal-transaction-input.js';
+import type { EcdhSharedKeyFn } from './shared-secret.js';
+export declare const NOTE_OUTPUT_LEN = 6;
+export declare const OUTPUT_NOTE_TAG_DOMAIN = 3n;
+export declare const STREAM_DOMAIN = 1n;
+export declare const FR_SIZE = 32;
+export type OutputNotePlaintext = {
+    value: string;
+    assetHi: string;
+    assetLo: string;
+    nullifier: string;
+    secret: string;
+    applicationId: string;
+};
+export type OutputNoteEncryption = {
+    ciphertext: [string, string, string, string, string, string];
+    tag: string;
+};
+export type DecryptedOutputNote = OutputNotePlaintext & {
+    commitmentHex: string;
+    commitmentMatches: boolean;
+};
+export type OutputNoteEventInput = {
+    recipientScalarHex: string;
+    commitmentHashHex: string;
+    createdEphemeralKey: readonly [string, string];
+    ciphertext: readonly string[];
+    tag: string;
+};
+export declare function secretFromDepositEphemeralScalarDecimal(ephemeralKeyScalarDecimal: string): Promise<string>;
+export declare function encryptOutputNoteForDeposit(parameters: {
+    deposit: DepositObject;
+    ecdhShared: EcdhSharedKeyFn;
+}): Promise<OutputNoteEncryption>;
+export declare function buildOutputNoteEncryptionPublicInputs(parameters: {
+    deposits: [DepositObject, DepositObject];
+    ecdhShared: EcdhSharedKeyFn;
+}): Promise<{
+    outputNoteCiphertexts: [OutputNoteEncryption['ciphertext'], OutputNoteEncryption['ciphertext']];
+    outputNoteTags: [string, string];
+}>;
+export declare function decryptOutputNoteEvent(input: OutputNoteEventInput): Promise<DecryptedOutputNote>;

package/dist/sdk.d.ts CHANGED Viewed

@@ -2,7 +2,8 @@ import { type DecodedDepositorSharedSecretPreimage, type DecodedEphemeralKey, ty
 import { type SharedSecret } from './shared-secret';
 import type { DecodedRecipientSharedSecretPreimage } from './stealth-address';
 import type { CoinData, GeneratedCoin, SDKOptions, StateFile, WithdrawMerkleWitness, WithdrawResult } from './types';
-import { type DepositSlot, type WithdrawalProofPublicParams, type WithdrawSlot } from './withdrawal-transaction-input';
+import { type DepositSlot, type TransactionPublicLegParams, type WithdrawalProofPublicParams, type WithdrawSlot } from './withdrawal-transaction-input';
+import { type TransactionAuditParams } from './transaction-audit';
 export declare class PrivacyPoolSDK {
     private wasm;
     private options;
@@ -32,29 +33,33 @@ export declare class PrivacyPoolSDK {
     /**
      * Generate a new coin with random nullifier, secret, and random shared-secret field elements (dev / self-contained tests).
      * @param amount Stroops encoded as `bigint` or integer `number` (WASM `u64`).
+     * @param assetHiDecimal / assetLoDecimal Decimal Fr strings for Stellar asset contract id (two limbs).
      */
-    generateCoin(amount: bigint | number): GeneratedCoin;
+    generateCoin(amount: bigint | number, assetHiDecimal: string, assetLoDecimal: string, applicationIdDecimal?: string): GeneratedCoin;
     /**
      * Generate a coin with the same commitment shape as on-chain deposit: pass `ecdhSharedKey` output (hex x, y).
      * @param amount Stroops (`bigint` | `number`).
      */
-    generateCoinWithSharedSecret(shared: SharedSecret, amount: bigint | number): GeneratedCoin;
+    generateCoinWithSharedSecret(shared: SharedSecret, amount: bigint | number, assetHiDecimal: string, assetLoDecimal: string, applicationIdDecimal?: string): GeneratedCoin;
     /**
      * Coin for a depositor `ephemeralKeyScalar` (32-byte hex): `coin.secret = Poseidon255(1)(scalar)` as in `deposit.circom`.
      * @param amount Stroops (`bigint` | `number`).
      */
-    generateCoinFromDepositEphemeralScalarHex(scalarHex: string, amount: bigint | number): GeneratedCoin;
+    generateCoinFromDepositEphemeralScalarHex(scalarHex: string, amount: bigint | number, assetHiDecimal: string, assetLoDecimal: string, applicationIdDecimal?: string): GeneratedCoin;
     /**
      * Aligned deposit coin: `secret = Poseidon₁(scalar)` and ECDH shared key from hex coords (e.g. `ecdhSharedKey(scalar, recipient_x, recipient_y)`).
      * @param amount Stroops (`bigint` | `number`).
      */
-    generateCoinForDepositWithSharedHex(scalarHex: string, sharedXHex: string, sharedYHex: string, amount: bigint | number): GeneratedCoin;
+    generateCoinForDepositWithSharedHex(scalarHex: string, sharedXHex: string, sharedYHex: string, amount: bigint | number, assetHiDecimal: string, assetLoDecimal: string, applicationIdDecimal?: string): GeneratedCoin;
     /**
      * Merkle root, path, and coin fields for the first withdraw leg (Rust LeanIMT + Poseidon).
      */
     buildWithdrawMerkleWitness(coin: CoinData, state: StateFile): WithdrawMerkleWitness;
     /**
      * Full `Transaction(20,2,2)` withdrawal proof: one real withdraw + dummies, using coin/state and depositor ECDH point (hex).
+     *
+     * Optional **partial public withdraw**: spend the full coin commitment `coin.value` (V), send `publicWithdrawStroops` (W) to the
+     * Stellar receiver, and re-deposit the remainder (V−W) as a new private note to `changeRecipientStealthAddress` (same circuit balance).
      */
     proveWithdrawal(coin: CoinData, state: StateFile, params: {
         withdrawAddressHi: string;
@@ -62,6 +67,12 @@ export declare class PrivacyPoolSDK {
         privKeyScalar: string;
         ephemeralXHex: string;
         ephemeralYHex: string;
+        /** If set, public leg amount W (stroops). Must satisfy 0 < W < V. Remainder (V−W) stays in the pool as a new commitment. */
+        publicWithdrawStroops?: bigint;
+        /** Required when `publicWithdrawStroops` is set: stealth recipient for the change note (typically same as deposit). */
+        changeRecipientStealthAddress?: string;
+        applicationId?: string;
+        audit?: TransactionAuditParams;
     }): Promise<WithdrawResult>;
     /**
      * Convert a snarkjs proof JSON to hex bytes for Soroban.
@@ -84,10 +95,11 @@ export declare class PrivacyPoolSDK {
      * `Transaction(20,2,2)` proof from high-level legs: maps to witness input (incl. `"dummy"` ECDH via WASM), then Groth16 → Soroban hex.
      *
      * @param publicParams Public inputs: `stateRoot`, `withdrawAddressHi` / `withdrawAddressLo`, `privKeyScalar` (decimal field strings).
+     * @param publicLegs Public token legs (`publicWithdrawnAssets`, `publicDepositedAssets`, `publicDeposits`, `publicWithdrawals`).
      * @param withdraws Exactly two withdraw slots (`WithdrawObject` or `"dummy"`).
      * @param deposits Exactly two deposit slots (`DepositObject` or `"dummy"`).
      */
-    proveTransaction(publicParams: WithdrawalProofPublicParams, withdraws: [WithdrawSlot, WithdrawSlot], deposits: [DepositSlot, DepositSlot]): Promise<WithdrawResult>;
+    proveTransaction(publicParams: WithdrawalProofPublicParams, publicLegs: TransactionPublicLegParams, withdraws: [WithdrawSlot, WithdrawSlot], deposits: [DepositSlot, DepositSlot], audit: TransactionAuditParams): Promise<WithdrawResult>;
     /**
      * Calculate nullifier hash: Poseidon(nullifier)
      * @param nullifier Nullifier decimal string from coin data

package/dist/transaction-audit.d.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import { type DepositObject, type DepositSlot, type WithdrawObject, type WithdrawSlot } from './withdrawal-transaction-input';
+export declare const TRANSACTION_N_AUDIT_SLOTS = 4;
+export declare const DEFAULT_APPLICATION_ID = "101";
+/** BabyJub audit public key (decimal Fr) used in BDD / local demo when env is unset. */
+export declare const DEMO_AUDIT_PUBLIC_KEY: AuditPublicKey;
+export type AuditPublicKey = [string, string];
+export interface TransactionAuditParams {
+    applicationId: string;
+    noteAuditPublicKeys: [
+        AuditPublicKey,
+        AuditPublicKey,
+        AuditPublicKey,
+        AuditPublicKey
+    ];
+    auditEphemeralScalars: [string, string, string, string];
+}
+export interface TransactionSlotApplicationIds {
+    inputApplicationIds: [string, string];
+    outputApplicationIds: [string, string];
+}
+export declare function buildUniformAuditParams(applicationId: string | undefined, auditPublicKey: AuditPublicKey): TransactionAuditParams;
+export declare function resolveSlotApplicationIds(audit: TransactionAuditParams, withdrawSlots: [WithdrawSlot, WithdrawSlot], depositSlots: [DepositSlot, DepositSlot]): TransactionSlotApplicationIds;
+export declare function withApplicationIdOnDeposit(deposit: DepositObject, applicationId: string): DepositObject;
+export declare function withApplicationIdOnWithdraw(withdraw: WithdrawObject, applicationId: string): WithdrawObject;
+export declare function resolveTransactionAuditParams(applicationId: string, auditPublicKey?: AuditPublicKey): TransactionAuditParams;

package/dist/types.d.ts CHANGED Viewed

@@ -3,10 +3,17 @@ export interface CoinData {
     nullifier: string;
     secret: string;
     commitment: string;
+    /** Decimal Fr strings for Stellar asset contract id (`asset[0]`, `asset[1]` in `commitment.circom`). */
+    asset_hi: string;
+    asset_lo: string;
+    /** Decimal Fr application id (per-note KYT slot); optional on legacy coins. */
+    application_id?: string;
 }
 export interface GeneratedCoin {
     coin: CoinData;
     commitment_hex: string;
+    /** 64-char lowercase hex (no `0x`), Fr big-endian for audit `precommitement`. */
+    precommitement_hex: string;
 }
 /** Pool Merkle tree depth (matches `coin::TREE_DEPTH` / `Transaction` circuit). */
 export declare const POOL_MERKLE_TREE_DEPTH = 20;
@@ -23,6 +30,8 @@ export interface WithdrawMerkleWitness {
     value: string;
     nullifier: string;
     secret: string;
+    /** `[asset_hi, asset_lo]` decimal Fr strings (Stellar asset contract id). */
+    withdrawnAsset: [string, string];
     stateRoot: string;
     stateIndex: string;
     /** Length is always {@link POOL_MERKLE_TREE_DEPTH}; each entry is a decimal field element. */

package/dist/withdrawal-transaction-input.d.ts CHANGED Viewed

@@ -1,8 +1,15 @@
+import type { TransactionAuditParams } from './transaction-audit';
 import type { WithdrawMerkleWitness } from './types';
-/** Matches `Transaction(20, 2, 2)` in `circuits/main.circom`. */
+/** Matches `Transaction(20, 2, 2, publicNInputs, publicNOutputs, 4, 9)` in `circuits/main.circom`. */
 export declare const TRANSACTION_TREE_DEPTH = 20;
 export declare const TRANSACTION_N_INS = 2;
 export declare const TRANSACTION_N_OUTS = 2;
+export declare const TRANSACTION_N_AUDIT_SLOTS = 4;
+export declare const NOTE_AUDIT_LEN = 9;
+export declare const NOTE_OUTPUT_LEN = 6;
+/** Must match `Transaction(..., publicNInputs, publicNOutputs)` and contract `get_public_slot_config`. */
+export declare const TRANSACTION_PUBLIC_N_INPUTS = 1;
+export declare const TRANSACTION_PUBLIC_N_OUTPUTS = 1;
 /** BN254 scalar field modulus (ark `Fr`, circom signals). */
 export declare const BN254_SCALAR_MOD = 21888242871839275222246405745257275088548364400416034343698204186575808495617n;
 /**
@@ -20,11 +27,24 @@ export interface WithdrawalProofPublicParams {
     /** Decimal string, circom `privKeyScalar`. */
     privKeyScalar: string;
 }
+/** Public accounting legs (`publicWithdrawnAssets`, `publicDepositedAssets`, `publicDeposits`, `publicWithdrawals`). */
+export interface TransactionPublicLegParams {
+    publicWithdrawnAssets: Array<[string, string]>;
+    publicDepositedAssets: Array<[string, string]>;
+    publicDeposits: string[];
+    publicWithdrawals: string[];
+}
+/** All-zero public legs (private-only pool moves). */
+export declare function zeroPublicLegs(): TransactionPublicLegParams;
 /** Real withdraw leg; coordinates are decimal field strings (same as `CoinData`). */
 export interface WithdrawObject {
     value: string;
     nullifier: string;
     secret: string;
+    /** Asset contract id as two decimal Fr strings (`asset[0]`, `asset[1]`). */
+    asset: [string, string];
+    /** BN254 Fr decimal; `0` for dummy slots. */
+    applicationId: string;
     /** Depositor ECDH point `[x, y]` as decimal strings. */
     ephemeralKeys: [string, string];
     stateSiblings: string[];
@@ -34,12 +54,16 @@ export interface DepositObject {
     value: string;
     nullifier: string;
     ephemeralKeyScalar: string;
+    /** Asset contract id as two decimal Fr strings. */
+    asset: [string, string];
+    /** BN254 Fr decimal; `0` for dummy slots. */
+    applicationId: string;
     /** Recipient public key `[x, y]` as decimal strings. */
     recipientPublicKeys: [string, string];
 }
 export type WithdrawSlot = WithdrawObject | 'dummy';
 export type DepositSlot = DepositObject | 'dummy';
-/** Witness calculator input for `circuits/main.circom` `Transaction(20,2,2)`. */
+/** Witness calculator input for `circuits/main.circom` `Transaction(20,2,2,publicNInputs,publicNOutputs)`. */
 export interface TransactionWitnessInput {
     stateRoot: string;
     withdrawAddressHi: string;
@@ -48,13 +72,40 @@ export interface TransactionWitnessInput {
     withdrawnValues: [string, string];
     withdrawnNullifiers: [string, string];
     withdrawnSecrets: [string, string];
+    withdrawnAssets: [[string, string], [string, string]];
     ephemeralKeys: [[string, string], [string, string]];
     stateSiblings: [string[], string[]];
     stateIndex: [string, string];
     depositedValues: [string, string];
     depositedNullifiers: [string, string];
+    depositedAssets: [[string, string], [string, string]];
     depositedEphemeralKeyScalars: [string, string];
     depositedRecipientPublicKeys: [[string, string], [string, string]];
+    publicWithdrawnAssets: Array<[string, string]>;
+    publicDepositedAssets: Array<[string, string]>;
+    publicDeposits: string[];
+    publicWithdrawals: string[];
+    inputApplicationIds: [string, string];
+    outputApplicationIds: [string, string];
+    auditEphemeralScalars: [string, string, string, string];
+    noteAuditPublicKeys: [
+        [
+            string,
+            string
+        ],
+        [
+            string,
+            string
+        ],
+        [
+            string,
+            string
+        ],
+        [
+            string,
+            string
+        ]
+    ];
 }
 export interface WasmEcdhPointFns {
     ecdhEphemeralPublicKeyFromScalarHex(scalarHex: string): {
@@ -77,15 +128,20 @@ export declare function ed25519PubkeyPayloadHexToWithdrawFrDecimals(hex: string)
     hi: string;
     lo: string;
 };
+/**
+ * Stellar contract id (`C…`) → two circom field decimals for `asset[0]`, `asset[1]` (same 32-byte split as accounts).
+ */
+export declare function stellarContractAddressToAssetFrDecimals(address: string): [string, string];
 /** Uniform random `Fr` as decimal (32 random bytes, mod r). For Poseidon-only inputs (e.g. nullifiers). */
 export declare function randomFrDecimal(): string;
 /** Random scalar < 2^253 for BabyJub ECDH / `Num2Bits(253)` (uses {@link generateRandomScalarHex32}). */
 export declare function randomFrDecimal253(): string;
-export declare function buildTransactionWitnessInput(publicParams: WithdrawalProofPublicParams, withdrawSlots: [WithdrawSlot, WithdrawSlot], depositSlots: [DepositSlot, DepositSlot], wasm: WasmEcdhPointFns): TransactionWitnessInput;
+export declare function resolveDepositsForWitness(depositSlots: [DepositSlot, DepositSlot], wasm: WasmEcdhPointFns): [DepositObject, DepositObject];
+export declare function buildTransactionWitnessInput(publicParams: WithdrawalProofPublicParams, publicLegs: TransactionPublicLegParams, withdrawSlots: [WithdrawSlot, WithdrawSlot], depositSlots: [DepositSlot, DepositSlot], audit: TransactionAuditParams, wasm: WasmEcdhPointFns): TransactionWitnessInput;
 /** `stpl1…` stealth address → `[x, y]` as decimal field strings for `depositedRecipientPublicKeys`. */
 export declare function recipientPublicKeysDecimalFromStealthAddress(stealthAddress: string): [string, string];
 /** First withdraw leg: Merkle witness + depositor ECDH point coordinates (hex). */
 export declare function withdrawObjectFromMerkleWitness(witness: WithdrawMerkleWitness, depositorEphemeralHex: {
     x: string;
     y: string;
-}): WithdrawObject;
+}, applicationId: string): WithdrawObject;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@auditable/privacy-pool-zk-sdk",
-  "version": "0.1.0",
+  "version": "0.6.1-rc.5",
   "description": "Client SDK for Soroban Privacy Pools - coin generation, withdrawal proofs, and proof serialization",
   "main": "dist/index.mjs",
   "module": "dist/index.mjs",
@@ -35,10 +35,16 @@
     "build:wasm": "cd crate && wasm-pack build --target web --out-dir ../pkg",
     "build:ts": "rollup -c",
     "build": "rollup -c",
-    "cli": "node dist/cli.js"
+    "cli": "node dist/cli.js",
+    "test:kyt": "node test/kyt-onboarding-hash.mjs && node test/kyt-flow-atomic.mjs && node test/kyt-public-leg-context.mjs && node test/kyt-passage-id-auth.mjs",
+    "test:output-note": "node test/output-note-encryption.mjs"
   },
   "dependencies": {
+    "@noble/hashes": "^2.2.0",
+    "@stellar/stellar-sdk": "^16.0.1",
     "bech32": "^2.0.0",
+    "circomlibjs": "^0.1.7",
+    "ffjavascript": "^0.3.0",
     "snarkjs": "^0.7.0"
   },
   "devDependencies": {

package/pkg/client_sdk_wasm.d.ts CHANGED Viewed

@@ -31,24 +31,25 @@ export function ecdhSharedKey(priv_hex: string, pub_x_hex: string, pub_y_hex: st
 /**
  * Generate a new coin with random nullifier, secret, and shared-secret field elements.
  * `amount` is stroops (u64); JS passes `bigint`.
- * Returns JSON: { coin: { value, nullifier, secret, commitment }, commitment_hex }
+ * `asset_hi_decimal` / `asset_lo_decimal` are decimal Fr strings for the Stellar asset contract id (two limbs).
+ * Returns JSON: { coin: { value, nullifier, secret, commitment, asset_hi, asset_lo }, commitment_hex, precommitement_hex }
  */
-export function generateCoin(amount: bigint): any;
+export function generateCoin(amount: bigint, asset_hi_decimal: string, asset_lo_decimal: string, application_id_decimal: string): any;
 /**
  * `Poseidon₁(scalar)` secret + fixed ECDH shared coords (hex), matching an aligned deposit witness.
  */
-export function generateCoinForDepositWithSharedHex(scalar_hex: string, shared_x_hex: string, shared_y_hex: string, amount: bigint): any;
+export function generateCoinForDepositWithSharedHex(scalar_hex: string, shared_x_hex: string, shared_y_hex: string, amount: bigint, asset_hi_decimal: string, asset_lo_decimal: string, application_id_decimal: string): any;
 /**
  * `secret` in coin = `Poseidon255(1)(scalar)` per `deposit.circom`; scalar is 32-byte hex (64 chars, optional `0x`).
  */
-export function generateCoinFromDepositEphemeralScalarHex(scalar_hex: string, amount: bigint): any;
+export function generateCoinFromDepositEphemeralScalarHex(scalar_hex: string, amount: bigint, asset_hi_decimal: string, asset_lo_decimal: string, application_id_decimal: string): any;
 /**
  * Same as `generateCoin`, but commitment uses the given ECDH shared key (64-char hex coords from `ecdhSharedKey`); shared coords are not stored in `coin` JSON.
  */
-export function generateCoinWithSharedSecretHex(shared_x_hex: string, shared_y_hex: string, amount: bigint): any;
+export function generateCoinWithSharedSecretHex(shared_x_hex: string, shared_y_hex: string, amount: bigint, asset_hi_decimal: string, asset_lo_decimal: string, application_id_decimal: string): any;
 /**
  * Convert snarkjs proof JSON to hex bytes for Soroban contract.
@@ -69,10 +70,10 @@ export interface InitOutput {
     readonly ecdhEphemeralPublicKey: (a: number, b: number, c: number) => void;
     readonly ecdhEphemeralPublicKeyFromScalarHex: (a: number, b: number, c: number) => void;
     readonly ecdhSharedKey: (a: number, b: number, c: number, d: number, e: number, f: number, g: number) => void;
-    readonly generateCoin: (a: bigint) => number;
-    readonly generateCoinForDepositWithSharedHex: (a: number, b: number, c: number, d: number, e: number, f: number, g: number, h: bigint) => void;
-    readonly generateCoinFromDepositEphemeralScalarHex: (a: number, b: number, c: number, d: bigint) => void;
-    readonly generateCoinWithSharedSecretHex: (a: number, b: number, c: number, d: number, e: number, f: bigint) => void;
+    readonly generateCoin: (a: number, b: bigint, c: number, d: number, e: number, f: number, g: number, h: number) => void;
+    readonly generateCoinForDepositWithSharedHex: (a: number, b: number, c: number, d: number, e: number, f: number, g: number, h: bigint, i: number, j: number, k: number, l: number, m: number, n: number) => void;
+    readonly generateCoinFromDepositEphemeralScalarHex: (a: number, b: number, c: number, d: bigint, e: number, f: number, g: number, h: number, i: number, j: number) => void;
+    readonly generateCoinWithSharedSecretHex: (a: number, b: number, c: number, d: number, e: number, f: bigint, g: number, h: number, i: number, j: number, k: number, l: number) => void;
     readonly proofToHex: (a: number, b: number, c: number) => void;
     readonly publicToHex: (a: number, b: number, c: number) => void;
     readonly __wbindgen_export: (a: number, b: number) => number;