npm - @bolyra/sdk - Versions diffs - 0.2.0 → 0.3.0 - Mend

@bolyra/sdk 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (51) hide show

package/LICENSE +201 -0
package/NOTICE +63 -0
package/README.md +2 -2
package/dist/delegation.d.ts +64 -16
package/dist/delegation.d.ts.map +1 -1
package/dist/delegation.js +200 -17
package/dist/delegation.js.map +1 -1
package/dist/errors.d.ts +12 -0
package/dist/errors.d.ts.map +1 -1
package/dist/errors.js +32 -1
package/dist/errors.js.map +1 -1
package/dist/handshake.d.ts +2 -0
package/dist/handshake.d.ts.map +1 -1
package/dist/handshake.js +55 -13
package/dist/handshake.js.map +1 -1
package/dist/identity.d.ts +24 -0
package/dist/identity.d.ts.map +1 -1
package/dist/identity.js +46 -0
package/dist/identity.js.map +1 -1
package/dist/index.d.ts +8 -3
package/dist/index.d.ts.map +1 -1
package/dist/index.js +26 -3
package/dist/index.js.map +1 -1
package/dist/model-binding.d.ts +113 -0
package/dist/model-binding.d.ts.map +1 -0
package/dist/model-binding.js +195 -0
package/dist/model-binding.js.map +1 -0
package/dist/offchain.d.ts +89 -0
package/dist/offchain.d.ts.map +1 -0
package/dist/offchain.js +300 -0
package/dist/offchain.js.map +1 -0
package/dist/prover.d.ts +21 -0
package/dist/prover.d.ts.map +1 -0
package/dist/prover.js +171 -0
package/dist/prover.js.map +1 -0
package/dist/types.d.ts +29 -0
package/dist/types.d.ts.map +1 -1
package/dist/utils.d.ts +4 -0
package/dist/utils.d.ts.map +1 -1
package/dist/utils.js +14 -0
package/dist/utils.js.map +1 -1
package/package.json +5 -3
package/src/delegation.ts +268 -30
package/src/errors.ts +46 -0
package/src/handshake.ts +69 -20
package/src/identity.ts +55 -1
package/src/index.ts +29 -2
package/src/offchain.ts +344 -0
package/src/prover.ts +178 -0
package/src/types.ts +32 -0
package/src/utils.ts +23 -0

package/dist/prover.js ADDED Viewed

@@ -0,0 +1,171 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.proveGroth16 = proveGroth16;
+exports.activeProverBackend = activeProverBackend;
+const snarkjs = __importStar(require("snarkjs"));
+const path = __importStar(require("path"));
+const fs = __importStar(require("fs"));
+const os = __importStar(require("os"));
+const child_process_1 = require("child_process");
+const util_1 = require("util");
+const execFileAsync = (0, util_1.promisify)(child_process_1.execFile);
+let cachedRapidsnarkPath = undefined;
+const wcCache = new Map();
+const wcQueue = new Map();
+function getWitnessCalculator(wasmPath) {
+    const cached = wcCache.get(wasmPath);
+    if (cached)
+        return cached;
+    const promise = (async () => {
+        // witness_calculator.js sits next to the .wasm in circuit_js/
+        const wcDir = path.dirname(wasmPath);
+        const builderPath = path.join(wcDir, 'witness_calculator.js');
+        // eslint-disable-next-line @typescript-eslint/no-var-requires
+        const builder = require(builderPath);
+        const wasmBuf = fs.readFileSync(wasmPath);
+        return (await builder(wasmBuf));
+    })();
+    wcCache.set(wasmPath, promise);
+    return promise;
+}
+/**
+ * Compute a witness using the cached calculator for `wasmPath`, serialized so
+ * concurrent calls on the same wasm don't race on the shared WASM instance.
+ */
+async function computeWitness(wasmPath, input) {
+    const wc = await getWitnessCalculator(wasmPath);
+    const prev = wcQueue.get(wasmPath) ?? Promise.resolve();
+    const next = prev.then(() => wc.calculateWTNSBin(input, 0));
+    // Keep the chain alive but swallow errors so a failing call doesn't poison the queue.
+    wcQueue.set(wasmPath, next.catch(() => undefined));
+    return next;
+}
+/** Find the rapidsnark prover binary, or return null if not available. */
+function findRapidsnarkBinary() {
+    if (cachedRapidsnarkPath !== undefined)
+        return cachedRapidsnarkPath;
+    // 1) Explicit env override
+    if (process.env.BOLYRA_RAPIDSNARK) {
+        if (fs.existsSync(process.env.BOLYRA_RAPIDSNARK)) {
+            cachedRapidsnarkPath = process.env.BOLYRA_RAPIDSNARK;
+            return cachedRapidsnarkPath;
+        }
+    }
+    // 2) Bundled in circuits/build/rapidsnark_prover (matches benchmark setup)
+    const bundled = path.join(__dirname, '../../circuits/build/rapidsnark_prover');
+    if (fs.existsSync(bundled)) {
+        cachedRapidsnarkPath = bundled;
+        return cachedRapidsnarkPath;
+    }
+    // 3) PATH lookup for `prover` or `rapidsnark`
+    for (const name of ['rapidsnark_prover', 'rapidsnark', 'prover']) {
+        try {
+            const out = (0, child_process_1.execFileSync)('which', [name], { encoding: 'utf8' }).trim();
+            if (out) {
+                cachedRapidsnarkPath = out;
+                return cachedRapidsnarkPath;
+            }
+        }
+        catch {
+            // not in PATH
+        }
+    }
+    cachedRapidsnarkPath = null;
+    return null;
+}
+/** Generate a Groth16 proof using rapidsnark (witness gen via snarkjs WASM). */
+async function proveWithRapidsnark(input, wasmPath, zkeyPath, binary) {
+    const tmp = fs.mkdtempSync(path.join(os.tmpdir(), 'bolyra-rs-'));
+    try {
+        const wtnsPath = path.join(tmp, 'witness.wtns');
+        const proofPath = path.join(tmp, 'proof.json');
+        const publicPath = path.join(tmp, 'public.json');
+        const wtnsBuf = await computeWitness(wasmPath, input);
+        fs.writeFileSync(wtnsPath, Buffer.from(wtnsBuf));
+        // Async exec so concurrent proofs (e.g., human + agent in a handshake)
+        // actually run in parallel instead of serializing on the event loop.
+        await execFileAsync(binary, [zkeyPath, wtnsPath, proofPath, publicPath]);
+        const proof = JSON.parse(fs.readFileSync(proofPath, 'utf8'));
+        const publicSignals = JSON.parse(fs.readFileSync(publicPath, 'utf8'));
+        return { proof, publicSignals };
+    }
+    finally {
+        try {
+            fs.rmSync(tmp, { recursive: true, force: true });
+        }
+        catch {
+            // best-effort cleanup
+        }
+    }
+}
+/**
+ * Generate a Groth16 proof using the fastest available backend.
+ * rapidsnark is ~5x faster than snarkjs but requires the native binary.
+ *
+ * @param input - Circuit input (string-encoded bigints)
+ * @param wasmPath - Path to circuit_js/circuit.wasm (witness generator)
+ * @param zkeyPath - Path to circuit_final.zkey
+ * @param backend - 'auto' (default), 'rapidsnark', or 'snarkjs'
+ */
+async function proveGroth16(input, wasmPath, zkeyPath, backend = 'auto') {
+    if (backend === 'snarkjs') {
+        const { proof, publicSignals } = await snarkjs.groth16.fullProve(input, wasmPath, zkeyPath);
+        return { proof, publicSignals };
+    }
+    if (backend === 'rapidsnark') {
+        const bin = findRapidsnarkBinary();
+        if (!bin) {
+            throw new Error('rapidsnark requested but not found. Set BOLYRA_RAPIDSNARK=/path/to/prover, place binary at circuits/build/rapidsnark_prover, or install on PATH.');
+        }
+        return proveWithRapidsnark(input, wasmPath, zkeyPath, bin);
+    }
+    // auto: try rapidsnark, fall back to snarkjs
+    const bin = findRapidsnarkBinary();
+    if (bin) {
+        return proveWithRapidsnark(input, wasmPath, zkeyPath, bin);
+    }
+    const { proof, publicSignals } = await snarkjs.groth16.fullProve(input, wasmPath, zkeyPath);
+    return { proof, publicSignals };
+}
+/** Returns the active backend that would be used (for diagnostics/logging). */
+function activeProverBackend(backend = 'auto') {
+    if (backend === 'snarkjs')
+        return 'snarkjs';
+    if (backend === 'rapidsnark')
+        return 'rapidsnark';
+    return findRapidsnarkBinary() ? 'rapidsnark' : 'snarkjs';
+}
+//# sourceMappingURL=prover.js.map

package/dist/prover.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"prover.js","sourceRoot":"","sources":["../src/prover.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8IA,oCA4BC;AAGD,kDAIC;AAjLD,iDAAmC;AACnC,2CAA6B;AAC7B,uCAAyB;AACzB,uCAAyB;AACzB,iDAAuD;AACvD,+BAAiC;AAEjC,MAAM,aAAa,GAAG,IAAA,gBAAS,EAAC,wBAAQ,CAAC,CAAC;AAW1C,IAAI,oBAAoB,GAA8B,SAAS,CAAC;AAUhE,MAAM,OAAO,GAAG,IAAI,GAAG,EAAsC,CAAC;AAC9D,MAAM,OAAO,GAAG,IAAI,GAAG,EAA4B,CAAC;AAEpD,SAAS,oBAAoB,CAAC,QAAgB;IAC5C,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACrC,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAC1B,MAAM,OAAO,GAAG,CAAC,KAAK,IAAI,EAAE;QAC1B,8DAA8D;QAC9D,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACrC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,uBAAuB,CAAC,CAAC;QAC9D,8DAA8D;QAC9D,MAAM,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;QAC1C,OAAO,CAAC,MAAM,OAAO,CAAC,OAAO,CAAC,CAAsB,CAAC;IACvD,CAAC,CAAC,EAAE,CAAC;IACL,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC/B,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,KAAK,UAAU,cAAc,CAC3B,QAAgB,EAChB,KAA8B;IAE9B,MAAM,EAAE,GAAG,MAAM,oBAAoB,CAAC,QAAQ,CAAC,CAAC;IAChD,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IACxD,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC;IAC5D,sFAAsF;IACtF,OAAO,CAAC,GAAG,CACT,QAAQ,EACR,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAC5B,CAAC;IACF,OAAO,IAAI,CAAC;AACd,CAAC;AAED,0EAA0E;AAC1E,SAAS,oBAAoB;IAC3B,IAAI,oBAAoB,KAAK,SAAS;QAAE,OAAO,oBAAoB,CAAC;IAEpE,2BAA2B;IAC3B,IAAI,OAAO,CAAC,GAAG,CAAC,iBAAiB,EAAE,CAAC;QAClC,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,EAAE,CAAC;YACjD,oBAAoB,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;YACrD,OAAO,oBAAoB,CAAC;QAC9B,CAAC;IACH,CAAC;IAED,2EAA2E;IAC3E,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,wCAAwC,CAAC,CAAC;IAC/E,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,oBAAoB,GAAG,OAAO,CAAC;QAC/B,OAAO,oBAAoB,CAAC;IAC9B,CAAC;IAED,8CAA8C;IAC9C,KAAK,MAAM,IAAI,IAAI,CAAC,mBAAmB,EAAE,YAAY,EAAE,QAAQ,CAAC,EAAE,CAAC;QACjE,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAA,4BAAY,EAAC,OAAO,EAAE,CAAC,IAAI,CAAC,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;YACvE,IAAI,GAAG,EAAE,CAAC;gBACR,oBAAoB,GAAG,GAAG,CAAC;gBAC3B,OAAO,oBAAoB,CAAC;YAC9B,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,cAAc;QAChB,CAAC;IACH,CAAC;IAED,oBAAoB,GAAG,IAAI,CAAC;IAC5B,OAAO,IAAI,CAAC;AACd,CAAC;AAED,gFAAgF;AAChF,KAAK,UAAU,mBAAmB,CAChC,KAA8B,EAC9B,QAAgB,EAChB,QAAgB,EAChB,MAAc;IAEd,MAAM,GAAG,GAAG,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,YAAY,CAAC,CAAC,CAAC;IACjE,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;QAC/C,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;QAEjD,MAAM,OAAO,GAAG,MAAM,cAAc,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACtD,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;QACjD,uEAAuE;QACvE,qEAAqE;QACrE,MAAM,aAAa,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,UAAU,CAAC,CAAC,CAAC;QAEzE,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC;QAC7D,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;QACtE,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC;IAClC,CAAC;YAAS,CAAC;QACT,IAAI,CAAC;YACH,EAAE,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACnD,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;GAQG;AACI,KAAK,UAAU,YAAY,CAChC,KAA8B,EAC9B,QAAgB,EAChB,QAAgB,EAChB,UAAyB,MAAM;IAE/B,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC5F,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC;IAClC,CAAC;IAED,IAAI,OAAO,KAAK,YAAY,EAAE,CAAC;QAC7B,MAAM,GAAG,GAAG,oBAAoB,EAAE,CAAC;QACnC,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CACb,kJAAkJ,CACnJ,CAAC;QACJ,CAAC;QACD,OAAO,mBAAmB,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAC7D,CAAC;IAED,6CAA6C;IAC7C,MAAM,GAAG,GAAG,oBAAoB,EAAE,CAAC;IACnC,IAAI,GAAG,EAAE,CAAC;QACR,OAAO,mBAAmB,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAC7D,CAAC;IACD,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC5F,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC;AAClC,CAAC;AAED,+EAA+E;AAC/E,SAAgB,mBAAmB,CAAC,UAAyB,MAAM;IACjE,IAAI,OAAO,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAC5C,IAAI,OAAO,KAAK,YAAY;QAAE,OAAO,YAAY,CAAC;IAClD,OAAO,oBAAoB,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;AAC3D,CAAC"}

package/dist/types.d.ts CHANGED Viewed

@@ -60,14 +60,43 @@ export interface DelegationResult {
     newScopeCommitment: bigint;
     /** Delegation nullifier (unique per delegation per session) */
     delegationNullifier: bigint;
+    /** Delegatee Merkle root — checked on-chain against agentRootExists (CIP-1) */
+    delegateeMerkleRoot: bigint;
     /** Hop number in the chain (0-indexed) */
     hopIndex: number;
 }
+/** Optional Merkle inclusion proof for the delegatee's enrollment in agentTree.
+ *  If omitted, delegate() defaults to the single-leaf pattern (depth 1, index 0,
+ *  20 zero siblings) — matches the conformance test layout. Real deployments
+ *  pass the actual proof against the live agentTree.
+ */
+export interface DelegateeMerkleProof {
+    length: number;
+    index: number;
+    /** Always length 20 (Delegation circuit MAX_DEPTH) */
+    siblings: bigint[];
+}
 /** Proof with public signals ready for on-chain verification */
 export interface Proof {
     proof: any;
     publicSignals: string[];
 }
+/** Result of an off-chain handshake verification (batched for later on-chain checkpoint) */
+export interface OffchainVerificationResult extends HandshakeResult {
+    /** Index of this session within the current batch */
+    batchIndex: number;
+    /** Merkle root of the batch at the time this result was added (undefined until batch is sealed) */
+    batchRoot?: bigint;
+}
+/** On-chain checkpoint representing a batch of off-chain verified sessions */
+export interface BatchCheckpoint {
+    /** Poseidon Merkle root of all session commitments in the batch */
+    root: bigint;
+    /** Unix timestamp (seconds) when the batch was posted on-chain */
+    timestamp: number;
+    /** Number of sessions included in this batch */
+    sessionCount: number;
+}
 /** Configuration for the SDK */
 export interface BolyraConfig {
     /** RPC URL for the target chain (default: Base Sepolia) */

package/dist/types.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAC7C,MAAM,WAAW,aAAa;IAC5B,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,SAAS,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACpC,4CAA4C;IAC5C,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,0BAA0B;AAC1B,MAAM,WAAW,eAAe;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,iBAAiB,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC5C,iBAAiB,EAAE,MAAM,CAAC;IAC1B,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,SAAS,EAAE;QAAE,EAAE,EAAE;YAAE,CAAC,EAAE,MAAM,CAAC;YAAC,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACvD,wEAAwE;IACxE,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,4CAA4C;AAC5C,oBAAY,UAAU;IACpB,SAAS,IAAI;IACb,UAAU,IAAI;IACd,eAAe,IAAI,CAAM,SAAS;IAClC,gBAAgB,IAAI,CAAK,4BAA4B;IACrD,mBAAmB,IAAI,CAAE,qCAAqC;IAC9D,cAAc,IAAI;IAClB,YAAY,IAAI;IAChB,UAAU,IAAI;CACf;AAED,gDAAgD;AAChD,MAAM,WAAW,eAAe;IAC9B,2CAA2C;IAC3C,cAAc,EAAE,MAAM,CAAC;IACvB,6CAA6C;IAC7C,cAAc,EAAE,MAAM,CAAC;IACvB,yBAAyB;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,2DAA2D;IAC3D,eAAe,EAAE,MAAM,CAAC;IACxB,kDAAkD;IAClD,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,6BAA6B;AAC7B,MAAM,WAAW,gBAAgB;IAC/B,4CAA4C;IAC5C,kBAAkB,EAAE,MAAM,CAAC;IAC3B,+DAA+D;IAC/D,mBAAmB,EAAE,MAAM,CAAC;IAC5B,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,gEAAgE;AAChE,MAAM,WAAW,KAAK;IACpB,KAAK,EAAE,GAAG,CAAC;IACX,aAAa,EAAE,MAAM,EAAE,CAAC;CACzB;AAED,gCAAgC;AAChC,MAAM,WAAW,YAAY;IAC3B,2DAA2D;IAC3D,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,+CAA+C;IAC/C,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oDAAoD;IACpD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB"}
1	+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAC7C,MAAM,WAAW,aAAa;IAC5B,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,SAAS,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACpC,4CAA4C;IAC5C,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,0BAA0B;AAC1B,MAAM,WAAW,eAAe;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,iBAAiB,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC5C,iBAAiB,EAAE,MAAM,CAAC;IAC1B,eAAe,EAAE,MAAM,CAAC;IACxB,6DAA6D;IAC7D,SAAS,EAAE;QAAE,EAAE,EAAE;YAAE,CAAC,EAAE,MAAM,CAAC;YAAC,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACvD,wEAAwE;IACxE,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,4CAA4C;AAC5C,oBAAY,UAAU;IACpB,SAAS,IAAI;IACb,UAAU,IAAI;IACd,eAAe,IAAI,CAAM,SAAS;IAClC,gBAAgB,IAAI,CAAK,4BAA4B;IACrD,mBAAmB,IAAI,CAAE,qCAAqC;IAC9D,cAAc,IAAI;IAClB,YAAY,IAAI;IAChB,UAAU,IAAI;CACf;AAED,gDAAgD;AAChD,MAAM,WAAW,eAAe;IAC9B,2CAA2C;IAC3C,cAAc,EAAE,MAAM,CAAC;IACvB,6CAA6C;IAC7C,cAAc,EAAE,MAAM,CAAC;IACvB,yBAAyB;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,2DAA2D;IAC3D,eAAe,EAAE,MAAM,CAAC;IACxB,kDAAkD;IAClD,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,6BAA6B;AAC7B,MAAM,WAAW,gBAAgB;IAC/B,4CAA4C;IAC5C,kBAAkB,EAAE,MAAM,CAAC;IAC3B,+DAA+D;IAC/D,mBAAmB,EAAE,MAAM,CAAC;IAC5B,+EAA+E;IAC/E,mBAAmB,EAAE,MAAM,CAAC;IAC5B,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;GAIG;AACH,MAAM,WAAW,oBAAoB;IACnC,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,sDAAsD;IACtD,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,gEAAgE;AAChE,MAAM,WAAW,KAAK;IACpB,KAAK,EAAE,GAAG,CAAC;IACX,aAAa,EAAE,MAAM,EAAE,CAAC;CACzB;AAED,4FAA4F;AAC5F,MAAM,WAAW,0BAA2B,SAAQ,eAAe;IACjE,qDAAqD;IACrD,UAAU,EAAE,MAAM,CAAC;IACnB,mGAAmG;IACnG,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,8EAA8E;AAC9E,MAAM,WAAW,eAAe;IAC9B,mEAAmE;IACnE,IAAI,EAAE,MAAM,CAAC;IACb,kEAAkE;IAClE,SAAS,EAAE,MAAM,CAAC;IAClB,gDAAgD;IAChD,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,gCAAgC;AAChC,MAAM,WAAW,YAAY;IAC3B,2DAA2D;IAC3D,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,+CAA+C;IAC/C,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oDAAoD;IACpD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB"}

package/dist/utils.d.ts CHANGED Viewed

@@ -4,6 +4,10 @@
  */
 /** Poseidon hash with 2 inputs. Returns a bigint. */
 export declare function poseidon2(a: bigint, b: bigint): Promise<bigint>;
+/** Poseidon hash with 3 inputs. Returns a bigint. */
+export declare function poseidon3(a: bigint, b: bigint, c: bigint): Promise<bigint>;
+/** Poseidon hash with 4 inputs. Returns a bigint. */
+export declare function poseidon4(a: bigint, b: bigint, c: bigint, d: bigint): Promise<bigint>;
 /** Poseidon hash with 5 inputs. Returns a bigint. */
 export declare function poseidon5(a: bigint, b: bigint, c: bigint, d: bigint, e: bigint): Promise<bigint>;
 /**

package/dist/utils.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgBH,qDAAqD;AACrD,wBAAsB,SAAS,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAIrE;AAED,qDAAqD;AACrD,wBAAsB,SAAS,CAC7B,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,GACR,OAAO,CAAC,MAAM,CAAC,CAIjB;AAED;;;;;;;;;GASG;AACH,wBAAsB,eAAe,CACnC,MAAM,EAAE,MAAM,GAAG,MAAM,GACtB,OAAO,CAAC;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAYnC;AAED;;;GAGG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAOnC;AAED,iDAAiD;AACjD,wBAAsB,SAAS,CAC7B,UAAU,EAAE,MAAM,GAAG,MAAM,EAC3B,OAAO,EAAE,MAAM,GACd,OAAO,CAAC;IAAE,EAAE,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAYtD"}
1	+ {"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgBH,qDAAqD;AACrD,wBAAsB,SAAS,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAIrE;AAED,qDAAqD;AACrD,wBAAsB,SAAS,CAC7B,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,GACR,OAAO,CAAC,MAAM,CAAC,CAIjB;AAED,qDAAqD;AACrD,wBAAsB,SAAS,CAC7B,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,GACR,OAAO,CAAC,MAAM,CAAC,CAIjB;AAED,qDAAqD;AACrD,wBAAsB,SAAS,CAC7B,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,GACR,OAAO,CAAC,MAAM,CAAC,CAIjB;AAED;;;;;;;;;GASG;AACH,wBAAsB,eAAe,CACnC,MAAM,EAAE,MAAM,GAAG,MAAM,GACtB,OAAO,CAAC;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAYnC;AAED;;;GAGG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAOnC;AAED,iDAAiD;AACjD,wBAAsB,SAAS,CAC7B,UAAU,EAAE,MAAM,GAAG,MAAM,EAC3B,OAAO,EAAE,MAAM,GACd,OAAO,CAAC;IAAE,EAAE,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAYtD"}

package/dist/utils.js CHANGED Viewed

@@ -38,6 +38,8 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.poseidon2 = poseidon2;
+exports.poseidon3 = poseidon3;
+exports.poseidon4 = poseidon4;
 exports.poseidon5 = poseidon5;
 exports.derivePublicKey = derivePublicKey;
 exports.derivePublicKeyScalar = derivePublicKeyScalar;
@@ -61,6 +63,18 @@ async function poseidon2(a, b) {
     const hash = _poseidon([a, b]);
     return _F.toObject(hash);
 }
+/** Poseidon hash with 3 inputs. Returns a bigint. */
+async function poseidon3(a, b, c) {
+    await ensureCrypto();
+    const hash = _poseidon([a, b, c]);
+    return _F.toObject(hash);
+}
+/** Poseidon hash with 4 inputs. Returns a bigint. */
+async function poseidon4(a, b, c, d) {
+    await ensureCrypto();
+    const hash = _poseidon([a, b, c, d]);
+    return _F.toObject(hash);
+}
 /** Poseidon hash with 5 inputs. Returns a bigint. */
 async function poseidon5(a, b, c, d, e) {
     await ensureCrypto();

package/dist/utils.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBH,8BAIC;AAGD,8BAUC;AAYD,0CAcC;AAMD,sDASC;AAGD,8BAeC;~~AA3FD~~,IAAI,SAAS,GAAQ,IAAI,CAAC;AAC1B,IAAI,MAAM,GAAQ,IAAI,CAAC;AACvB,IAAI,QAAQ,GAAQ,IAAI,CAAC;AACzB,IAAI,EAAE,GAAQ,IAAI,CAAC;AAEnB,KAAK,UAAU,YAAY;IACzB,IAAI,SAAS;QAAE,OAAO;IACtB,MAAM,WAAW,GAAG,wDAAa,aAAa,GAAC,CAAC;IAChD,SAAS,GAAG,MAAM,WAAW,CAAC,aAAa,EAAE,CAAC;IAC9C,MAAM,GAAG,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;IACxC,QAAQ,GAAG,MAAM,WAAW,CAAC,YAAY,EAAE,CAAC;IAC5C,EAAE,GAAG,SAAS,CAAC,CAAC,CAAC;AACnB,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAAC,CAAS,EAAE,CAAS;IAClD,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/B,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAC7B,CAAS,EACT,CAAS,EACT,CAAS,EACT,CAAS,EACT,CAAS;IAET,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACxC,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED;;;;;;;;;GASG;AACI,KAAK,UAAU,eAAe,CACnC,MAAuB;IAEvB,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,GAAG,GACP,OAAO,MAAM,KAAK,QAAQ;QACxB,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC;QAC3D,CAAC,CAAC,MAAM,CAAC;IACb,yEAAyE;IACzE,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACnC,OAAO;QACL,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;KAC1B,CAAC;AACJ,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,qBAAqB,CACzC,MAAc;IAEd,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,MAAM,GAAG,QAAQ,CAAC,eAAe,CAAC,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAChE,OAAO;QACL,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;KAC1B,CAAC;AACJ,CAAC;AAED,iDAAiD;AAC1C,KAAK,UAAU,SAAS,CAC7B,UAA2B,EAC3B,OAAe;IAEf,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,GAAG,GACP,OAAO,UAAU,KAAK,QAAQ;QAC5B,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC;QAC/D,CAAC,CAAC,UAAU,CAAC;IACjB,MAAM,KAAK,GAAG,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC5B,MAAM,GAAG,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAC5C,OAAO;QACL,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE;QAC5D,CAAC,EAAE,GAAG,CAAC,CAAC;KACT,CAAC;AACJ,CAAC"}
1	+ {"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBH,8BAIC;AAGD,8BAQC;AAGD,8BASC;AAGD,8BAUC;AAYD,0CAcC;AAMD,sDASC;AAGD,8BAeC;AAlHD,IAAI,SAAS,GAAQ,IAAI,CAAC;AAC1B,IAAI,MAAM,GAAQ,IAAI,CAAC;AACvB,IAAI,QAAQ,GAAQ,IAAI,CAAC;AACzB,IAAI,EAAE,GAAQ,IAAI,CAAC;AAEnB,KAAK,UAAU,YAAY;IACzB,IAAI,SAAS;QAAE,OAAO;IACtB,MAAM,WAAW,GAAG,wDAAa,aAAa,GAAC,CAAC;IAChD,SAAS,GAAG,MAAM,WAAW,CAAC,aAAa,EAAE,CAAC;IAC9C,MAAM,GAAG,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;IACxC,QAAQ,GAAG,MAAM,WAAW,CAAC,YAAY,EAAE,CAAC;IAC5C,EAAE,GAAG,SAAS,CAAC,CAAC,CAAC;AACnB,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAAC,CAAS,EAAE,CAAS;IAClD,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/B,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAC7B,CAAS,EACT,CAAS,EACT,CAAS;IAET,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAClC,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAC7B,CAAS,EACT,CAAS,EACT,CAAS,EACT,CAAS;IAET,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACrC,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED,qDAAqD;AAC9C,KAAK,UAAU,SAAS,CAC7B,CAAS,EACT,CAAS,EACT,CAAS,EACT,CAAS,EACT,CAAS;IAET,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACxC,OAAO,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAED;;;;;;;;;GASG;AACI,KAAK,UAAU,eAAe,CACnC,MAAuB;IAEvB,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,GAAG,GACP,OAAO,MAAM,KAAK,QAAQ;QACxB,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC;QAC3D,CAAC,CAAC,MAAM,CAAC;IACb,yEAAyE;IACzE,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACnC,OAAO;QACL,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;KAC1B,CAAC;AACJ,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,qBAAqB,CACzC,MAAc;IAEd,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,MAAM,GAAG,QAAQ,CAAC,eAAe,CAAC,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAChE,OAAO;QACL,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;KAC1B,CAAC;AACJ,CAAC;AAED,iDAAiD;AAC1C,KAAK,UAAU,SAAS,CAC7B,UAA2B,EAC3B,OAAe;IAEf,MAAM,YAAY,EAAE,CAAC;IACrB,MAAM,GAAG,GACP,OAAO,UAAU,KAAK,QAAQ;QAC5B,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC;QAC/D,CAAC,CAAC,UAAU,CAAC;IACjB,MAAM,KAAK,GAAG,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC5B,MAAM,GAAG,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAC5C,OAAO;QACL,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE;QAC5D,CAAC,EAAE,GAAG,CAAC,CAAC;KACT,CAAC;AACJ,CAAC"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@bolyra/sdk",
-  "version": "0.2.0",
+  "version": "0.3.0",
   "description": "TypeScript SDK for Bolyra — mutual ZKP authentication for humans and AI agents",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -24,7 +24,9 @@
   },
   "files": [
     "dist/",
-    "src/"
+    "src/",
+    "LICENSE",
+    "NOTICE"
   ],
   "repository": {
     "type": "git",
@@ -33,5 +35,5 @@
   "publishConfig": {
     "access": "public"
   },
-  "license": "MIT"
+  "license": "Apache-2.0"
 }

package/src/delegation.ts CHANGED Viewed

@@ -1,45 +1,283 @@
-import { BolyraError } from './errors';
-import { DelegationResult, Proof, BolyraConfig, AgentCredential } from './types';
+import * as snarkjs from 'snarkjs';
+import * as path from 'path';
+import * as fs from 'fs';
+import {
+  AgentCredential,
+  BolyraConfig,
+  DelegateeMerkleProof,
+  DelegationResult,
+  Proof,
+} from './types';
+import {
+  BolyraError,
+  CircuitArtifactNotFoundError,
+  ProofGenerationError,
+  ScopeEscalationError,
+  VerificationError,
+} from './errors';
+import { eddsaSign, poseidon3, poseidon4 } from './utils';
+import { proveGroth16, ProverBackend } from './prover';
+const DEFAULT_CIRCUIT_DIR =
+  process.env.BOLYRA_CIRCUITS_DIR ?? path.join(__dirname, '../../circuits/build');
+/** Delegation circuit MAX_DEPTH constant (matches circuits/src/Delegation.circom). */
+const DELEGATION_MAX_DEPTH = 20;
+/** snarkjs publicSignals layout for the Delegation circuit (outputs first):
+ *    [0] newScopeCommitment
+ *    [1] delegationNullifier
+ *    [2] delegateeMerkleRoot
+ *    [3] previousScopeCommitment
+ *    [4] sessionNonce
+ *    [5] currentTimestamp
+ *  This MUST match IdentityRegistry.verifyDelegation()'s pubSignals layout.
+ */
+const PUBSIG_NEW_SCOPE = 0;
+const PUBSIG_NULLIFIER = 1;
+const PUBSIG_DELEGATEE_ROOT = 2;
+const PUBSIG_PREV_SCOPE = 3;
+const PUBSIG_SESSION_NONCE = 4;
+const PUBSIG_CURRENT_TS = 5;
+/** Build the single-leaf Merkle proof default (matches the conformance test pattern). */
+function defaultMerkleProof(): DelegateeMerkleProof {
+  return {
+    length: 1,
+    index: 0,
+    siblings: new Array(DELEGATION_MAX_DEPTH).fill(0n),
+  };
+}
+export interface DelegateInput {
+  /** The delegating agent's credential (provides modelHash, operator pubkey, scope, expiry). */
+  delegator: AgentCredential;
+  /** Operator's EdDSA private key — used to sign the delegation token.
+   *  Same key that minted the delegator credential. */
+  delegatorOperatorPrivateKey: bigint | Buffer;
+  /** Identity commitment of the recipient (leaf in agentTree). */
+  delegateeCommitment: bigint;
+  /** Narrowed scope being granted. Must be a subset of delegator.permissionBitmask
+   *  under the cumulative-bit rules. Circuit enforces; SDK pre-checks for a clean error. */
+  delegateeScope: bigint;
+  /** Expiry being granted. Must be <= delegator.expiryTimestamp. */
+  delegateeExpiry: bigint;
+  /** Scope commitment from the prior chain link.
+   *  For hop 1, this is the agent's scopeCommitment output from the handshake.
+   *  For hop N+1, this is the previous delegation's newScopeCommitment. */
+  previousScopeCommitment: bigint;
+  /** Session nonce. Must match the nonce of the originating handshake. */
+  sessionNonce: bigint;
+  /** Unix-seconds timestamp the proof is bound to. Must be within MAX_CLOCK_SKEW
+   *  of block.timestamp at on-chain verification time (300s in IdentityRegistry).
+   *  Defaults to floor(Date.now() / 1000). */
+  currentTimestamp?: bigint;
+  /** Optional Merkle inclusion proof for the delegatee in agentTree.
+   *  Defaults to the single-leaf pattern (sufficient for tests and demos). */
+  delegateeMerkleProof?: DelegateeMerkleProof;
+  /** Informational hop index (0-indexed). Not consumed by the circuit;
+   *  echoed in DelegationResult for caller bookkeeping. */
+  hopIndex?: number;
+  config?: BolyraConfig;
+  backend?: ProverBackend;
+}
 /**
- * Delegate scoped permissions to another agent.
- * Currently a stub -- full implementation requires the delegation circuit zkey.
+ * Generate a Delegation proof.
+ *
+ * Produces a Groth16 proof matching the Delegation circuit. The caller submits
+ * `{ proof, publicSignals }` to `IdentityRegistry.verifyDelegation()` along with
+ * the session nonce.
  *
- * @param delegator - The delegating agent's credential
- * @param delegatee - The receiving agent's credential
- * @param parentScopeCommitment - Scope commitment from the parent handshake or delegation
- * @param hopIndex - Current hop index in the delegation chain (0-indexed)
- * @param config - SDK configuration
- * @returns Delegation proof ready for on-chain verification
+ * Scope narrowing is one-way: the circuit (and contract) reject any delegatee
+ * scope that is not a subset of the delegator's, and any expiry past the
+ * delegator's. The cumulative-bit invariants (bit 4 ⇒ 2+3, bit 3 ⇒ 2) are
+ * enforced on the delegatee scope.
+ *
+ * @example
+ * ```ts
+ * const { proof, result } = await delegate({
+ *   delegator: parentCredential,
+ *   delegatorOperatorPrivateKey: operatorSecret,
+ *   delegateeCommitment: childCredential.commitment,
+ *   delegateeScope: 0b00000011n,                    // read + write (narrower)
+ *   delegateeExpiry: parentCredential.expiryTimestamp - 3600n,
+ *   previousScopeCommitment: handshake.scopeCommitment,
+ *   sessionNonce: handshake.sessionNonce,
+ * });
+ * ```
  */
 export async function delegate(
-  _delegator: AgentCredential,
-  _delegatee: AgentCredential,
-  _parentScopeCommitment: bigint,
-  _hopIndex: number,
-  _config?: BolyraConfig,
+  input: DelegateInput,
 ): Promise<{ proof: Proof; result: DelegationResult }> {
-  throw new BolyraError(
-    'delegate() coming in @bolyra/sdk v0.3 — delegation circuit integration.',
-    'NOT_IMPLEMENTED',
+  // Pre-flight scope check — gives a clean error before paying for proof generation.
+  if (
+    (input.delegateeScope & ~input.delegator.permissionBitmask) !== 0n
+  ) {
+    throw new ScopeEscalationError(
+      input.delegator.permissionBitmask,
+      input.delegateeScope,
+    );
+  }
+  if (input.delegateeExpiry > input.delegator.expiryTimestamp) {
+    throw new BolyraError(
+      `Delegatee expiry (${input.delegateeExpiry}) exceeds delegator expiry (${input.delegator.expiryTimestamp}). Delegations may only narrow expiry, not extend it.`,
+      'EXPIRY_ESCALATION',
+      {
+        delegateeExpiry: input.delegateeExpiry.toString(),
+        delegatorExpiry: input.delegator.expiryTimestamp.toString(),
+      },
+    );
+  }
+  // Sanity check: the previousScopeCommitment passed in must equal the
+  // identity-bound chain link Poseidon3(delegatorScope, delegatorCredCommitment,
+  // delegatorExpiry). The circuit will assert this; we precheck for a clean error.
+  // Ordered before artifact loading so CI environments without circuits still
+  // surface CHAIN_LINK_MISMATCH instead of CIRCUIT_ARTIFACT_NOT_FOUND.
+  const expectedPrev = await poseidon3(
+    input.delegator.permissionBitmask,
+    input.delegator.commitment,
+    input.delegator.expiryTimestamp,
+  );
+  if (expectedPrev !== input.previousScopeCommitment) {
+    throw new BolyraError(
+      `previousScopeCommitment does not match the delegator's identity-bound chain link. Got ${input.previousScopeCommitment}, expected ${expectedPrev} (= Poseidon3(scope, credCommitment, expiry) for this delegator). For hop 1, pass the agent's scopeCommitment output from proveHandshake.`,
+      'CHAIN_LINK_MISMATCH',
+    );
+  }
+  const circuitDir = input.config?.circuitDir ?? DEFAULT_CIRCUIT_DIR;
+  const backend = input.backend ?? 'auto';
+  const currentTimestamp =
+    input.currentTimestamp ?? BigInt(Math.floor(Date.now() / 1000));
+  const merkleProof = input.delegateeMerkleProof ?? defaultMerkleProof();
+  if (merkleProof.siblings.length !== DELEGATION_MAX_DEPTH) {
+    throw new BolyraError(
+      `Delegatee Merkle proof must have exactly ${DELEGATION_MAX_DEPTH} siblings (got ${merkleProof.siblings.length}).`,
+      'INVALID_MERKLE_PROOF',
+    );
+  }
+  const wasmPath = path.join(circuitDir, 'Delegation_js/Delegation.wasm');
+  const zkeyPath = path.join(circuitDir, 'Delegation_final.zkey');
+  if (!fs.existsSync(wasmPath)) {
+    throw new CircuitArtifactNotFoundError(wasmPath, 'wasm');
+  }
+  if (!fs.existsSync(zkeyPath)) {
+    throw new CircuitArtifactNotFoundError(zkeyPath, 'zkey');
+  }
+  // The delegator signs the delegation token, binding this delegation to a
+  // specific recipient with specific scope+expiry.
+  // Token = Poseidon4(previousScopeCommitment, delegateeCommitment, delegateeScope, delegateeExpiry).
+  const tokenHash = await poseidon4(
+    input.previousScopeCommitment,
+    input.delegateeCommitment,
+    input.delegateeScope,
+    input.delegateeExpiry,
   );
+  const sig = await eddsaSign(input.delegatorOperatorPrivateKey, tokenHash);
+  const witnessInput: Record<string, unknown> = {
+    delegatorScope: input.delegator.permissionBitmask.toString(),
+    delegateeScope: input.delegateeScope.toString(),
+    delegateeExpiry: input.delegateeExpiry.toString(),
+    delegatorExpiry: input.delegator.expiryTimestamp.toString(),
+    delegatorModelHash: input.delegator.modelHash.toString(),
+    delegatorPubkeyAx: input.delegator.operatorPublicKey.x.toString(),
+    delegatorPubkeyAy: input.delegator.operatorPublicKey.y.toString(),
+    sigR8x: sig.R8.x.toString(),
+    sigR8y: sig.R8.y.toString(),
+    sigS: sig.S.toString(),
+    delegatorCredCommitment: input.delegator.commitment.toString(),
+    delegateeCredCommitment: input.delegateeCommitment.toString(),
+    delegateeMerkleProofLength: merkleProof.length.toString(),
+    delegateeMerkleProofIndex: merkleProof.index.toString(),
+    delegateeMerkleProofSiblings: merkleProof.siblings.map((s) => s.toString()),
+    previousScopeCommitment: input.previousScopeCommitment.toString(),
+    sessionNonce: input.sessionNonce.toString(),
+    currentTimestamp: currentTimestamp.toString(),
+  };
+  let proof: Proof;
+  try {
+    proof = await proveGroth16(witnessInput, wasmPath, zkeyPath, backend);
+  } catch (err: any) {
+    throw new ProofGenerationError('Delegation', err.message ?? String(err));
+  }
+  const result: DelegationResult = {
+    newScopeCommitment: BigInt(proof.publicSignals[PUBSIG_NEW_SCOPE]),
+    delegationNullifier: BigInt(proof.publicSignals[PUBSIG_NULLIFIER]),
+    delegateeMerkleRoot: BigInt(proof.publicSignals[PUBSIG_DELEGATEE_ROOT]),
+    hopIndex: input.hopIndex ?? 0,
+  };
+  return { proof, result };
 }
 /**
- * Verify a delegation proof on-chain.
+ * Verify a delegation proof off-chain (snarkjs Groth16 verify).
  *
- * @param proof - The delegation ZK proof
- * @param parentScopeCommitment - Expected parent scope commitment
- * @param config - SDK configuration
- * @returns DelegationResult with new scope commitment and hop index
+ * For on-chain enforcement, submit `proof` and `proof.publicSignals` to
+ * `IdentityRegistry.verifyDelegation(proof, pubSignals, sessionNonce)` — that
+ * call additionally enforces chain state, hop count, expiry binding, and
+ * nullifier replay. Off-chain verify here only confirms the proof itself is
+ * mathematically valid and that the publicSignals match the expected chain link.
  */
 export async function verifyDelegation(
-  _proof: Proof,
-  _parentScopeCommitment: bigint,
-  _config?: BolyraConfig,
+  proof: Proof,
+  previousScopeCommitment: bigint,
+  sessionNonce: bigint,
+  currentTimestamp: bigint,
+  config?: BolyraConfig,
 ): Promise<DelegationResult> {
-  throw new BolyraError(
-    'verifyDelegation() coming in @bolyra/sdk v0.3.',
-    'NOT_IMPLEMENTED',
-  );
+  if (!proof || !proof.proof || !Array.isArray(proof.publicSignals)) {
+    throw new VerificationError(
+      'Invalid Delegation proof structure: expected { proof: object, publicSignals: string[] }.',
+    );
+  }
+  if (proof.publicSignals.length < 6) {
+    throw new VerificationError(
+      `Delegation proof has ${proof.publicSignals.length} public signals, expected 6.`,
+    );
+  }
+  // Bind the public signals to the expected chain context before trusting the proof.
+  if (BigInt(proof.publicSignals[PUBSIG_PREV_SCOPE]) !== previousScopeCommitment) {
+    throw new VerificationError(
+      `previousScopeCommitment mismatch: proof binds ${proof.publicSignals[PUBSIG_PREV_SCOPE]}, caller expected ${previousScopeCommitment}.`,
+    );
+  }
+  if (BigInt(proof.publicSignals[PUBSIG_SESSION_NONCE]) !== sessionNonce) {
+    throw new VerificationError(
+      `sessionNonce mismatch: proof binds ${proof.publicSignals[PUBSIG_SESSION_NONCE]}, caller expected ${sessionNonce}.`,
+    );
+  }
+  if (BigInt(proof.publicSignals[PUBSIG_CURRENT_TS]) !== currentTimestamp) {
+    throw new VerificationError(
+      `currentTimestamp mismatch: proof binds ${proof.publicSignals[PUBSIG_CURRENT_TS]}, caller expected ${currentTimestamp}.`,
+    );
+  }
+  const circuitDir = config?.circuitDir ?? DEFAULT_CIRCUIT_DIR;
+  const vkeyPath = path.join(circuitDir, 'Delegation_groth16_vkey.json');
+  if (!fs.existsSync(vkeyPath)) {
+    throw new CircuitArtifactNotFoundError(vkeyPath, 'vkey');
+  }
+  // eslint-disable-next-line @typescript-eslint/no-var-requires
+  const vkey = require(vkeyPath);
+  const valid = await snarkjs.groth16.verify(vkey, proof.publicSignals, proof.proof);
+  if (!valid) {
+    throw new VerificationError('Delegation proof failed Groth16 verification.');
+  }
+  return {
+    newScopeCommitment: BigInt(proof.publicSignals[PUBSIG_NEW_SCOPE]),
+    delegationNullifier: BigInt(proof.publicSignals[PUBSIG_NULLIFIER]),
+    delegateeMerkleRoot: BigInt(proof.publicSignals[PUBSIG_DELEGATEE_ROOT]),
+    hopIndex: 0,
+  };
 }