npm - @inco/lightning - Versions diffs - 0.6.8 → 0.7.0 - Mend

@inco/lightning 0.6.8 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (87) hide show

package/CHANGELOG.md +6 -0
package/README.md +29 -2
package/manifest.yaml +35 -42
package/package.json +5 -2
package/src/CreateXHelper.sol +3 -1
package/src/DeployUtils.sol +36 -71
package/src/Errors.sol +1 -1
package/src/IIncoLightning.sol +2 -0
package/src/IncoLightning.sol +5 -17
package/src/IncoVerifier.sol +12 -18
package/src/Lib.alphanet.sol +1 -1
package/src/Lib.sol +1 -1
package/src/Lib.template.sol +35 -153
package/src/Types.sol +231 -97
package/src/interfaces/IIncoLightning.sol +2 -0
package/src/interfaces/IIncoVerifier.sol +6 -12
package/src/interfaces/automata-interfaces/BELE.sol +2 -0
package/src/interfaces/automata-interfaces/IAutomataEnclaveIdentityDao.sol +9 -11
package/src/interfaces/automata-interfaces/IFmspcTcbDao.sol +3 -3
package/src/interfaces/automata-interfaces/IPCCSRouter.sol +13 -47
package/src/interfaces/automata-interfaces/IPCCSRouterExtended.sol +2 -0
package/src/interfaces/automata-interfaces/IPcsDao.sol +6 -11
package/src/interfaces/automata-interfaces/IQuoteVerifier.sol +4 -7
package/src/interfaces/automata-interfaces/Types.sol +7 -6
package/src/libs/incoLightning_alphanet_v2_976644394.sol +478 -0
package/src/libs/incoLightning_devnet_v1_887305889.sol +5 -3
package/src/libs/incoLightning_testnet_v1_938327937.sol +5 -3
package/src/lightning-parts/AccessControl/AdvancedAccessControl.sol +39 -72
package/src/lightning-parts/AccessControl/BaseAccessControlList.sol +31 -62
package/src/lightning-parts/AccessControl/interfaces/IAdvancedAccessControl.sol +8 -15
package/src/lightning-parts/AccessControl/interfaces/IBaseAccessControlList.sol +5 -12
package/src/lightning-parts/AccessControl/test/TestAdvancedAccessControl.t.sol +44 -84
package/src/lightning-parts/AccessControl/test/TestBaseAccessControl.t.sol +2 -0
package/src/lightning-parts/DecryptionAttester.sol +14 -28
package/src/lightning-parts/EncryptedInput.sol +23 -52
package/src/lightning-parts/EncryptedOperations.sol +96 -438
package/src/lightning-parts/Fee.sol +3 -1
package/src/lightning-parts/TEELifecycle.sol +94 -223
package/src/lightning-parts/TEELifecycle.types.sol +4 -3
package/src/lightning-parts/TrivialEncryption.sol +6 -20
package/src/lightning-parts/interfaces/IDecryptionAttester.sol +7 -2
package/src/lightning-parts/interfaces/IEncryptedInput.sol +5 -12
package/src/lightning-parts/interfaces/IEncryptedOperations.sol +17 -61
package/src/lightning-parts/interfaces/ITEELifecycle.sol +7 -11
package/src/lightning-parts/interfaces/ITrivialEncryption.sol +2 -0
package/src/lightning-parts/primitives/EventCounter.sol +7 -8
package/src/lightning-parts/primitives/HandleGeneration.sol +20 -32
package/src/lightning-parts/primitives/HandleMetadata.sol +7 -17
package/src/lightning-parts/primitives/LightningAddressGetter.sol +3 -0
package/src/lightning-parts/primitives/SignatureVerifier.sol +91 -27
package/src/lightning-parts/primitives/VerifierAddressGetter.sol +3 -0
package/src/lightning-parts/primitives/interfaces/IEventCounter.sol +2 -0
package/src/lightning-parts/primitives/interfaces/IHandleGeneration.sol +10 -2
package/src/lightning-parts/primitives/interfaces/ISignatureVerifier.sol +4 -2
package/src/lightning-parts/primitives/interfaces/IVerifierAddressGetter.sol +2 -0
package/src/lightning-parts/primitives/test/SignatureVerifier.t.sol +838 -0
package/src/lightning-parts/test/Fee.t.sol +6 -6
package/src/lightning-parts/test/HandleMetadata.t.sol +21 -76
package/src/lightning-parts/test/InputsFee.t.sol +7 -28
package/src/lightning-parts/test/TestDecryptionAttestationInSynchronousFlow.t.sol +16 -48
package/src/pasted-dependencies/CreateX.sol +154 -455
package/src/pasted-dependencies/ICreateX.sol +55 -102
package/src/periphery/SessionVerifier.sol +10 -8
package/src/shared/IOwnable.sol +3 -0
package/src/shared/IUUPSUpgradable.sol +5 -1
package/src/shared/JsonUtils.sol +3 -5
package/src/shared/TestUtils.sol +15 -13
package/src/test/AddTwo.sol +9 -7
package/src/test/FakeIncoInfra/FakeComputeServer.sol +11 -53
package/src/test/FakeIncoInfra/FakeDecryptionAttester.sol +35 -119
package/src/test/FakeIncoInfra/FakeIncoInfraBase.sol +31 -48
package/src/test/FakeIncoInfra/FakeQuoteVerifier.sol +4 -7
package/src/test/FakeIncoInfra/KVStore.sol +2 -0
package/src/test/FakeIncoInfra/MockOpHandler.sol +9 -31
package/src/test/FakeIncoInfra/MockRemoteAttestation.sol +50 -21
package/src/test/IncoTest.sol +22 -9
package/src/test/OpsTest.sol +438 -0
package/src/test/TEELifecycle/TEELifecycleMockTest.t.sol +57 -104
package/src/test/TestAddTwo.t.sol +4 -3
package/src/test/TestDeploy.t.sol +5 -6
package/src/test/TestExtractDataOfEventTooLarge.t.sol +7 -9
package/src/test/TestFakeInfra.t.sol +15 -38
package/src/test/TestUpgrade.t.sol +40 -135
package/src/test/TestVersion.t.sol +6 -5
package/src/version/IncoLightningConfig.sol +2 -2
package/src/version/Version.sol +46 -48
package/src/version/interfaces/IVersion.sol +6 -0

package/src/interfaces/IIncoVerifier.sol CHANGED Viewed

@@ -7,18 +7,12 @@ import {ITEELifecycle} from "../lightning-parts/interfaces/ITEELifecycle.sol";
 import {IQuoteVerifier} from "./automata-interfaces/IQuoteVerifier.sol";
 import {ISignatureVerifier} from "../lightning-parts/primitives/interfaces/ISignatureVerifier.sol";
-interface IIncoVerifier is
-    IAdvancedAccessControl,
-    IDecryptionAttester,
-    ITEELifecycle,
-    ISignatureVerifier
-{
-    function initialize(
-        address owner,
-        string memory name,
-        string memory version,
-        IQuoteVerifier quoteVerifier
-    ) external;
+interface IIncoVerifier is IAdvancedAccessControl, IDecryptionAttester, ITEELifecycle, ISignatureVerifier {
+    function initialize(address owner, string memory name, string memory version, IQuoteVerifier quoteVerifier) external;
+    // forge-lint: disable-next-line(mixed-case-function)
     function getEIP712Name() external view returns (string memory);
+    // forge-lint: disable-next-line(mixed-case-function)
     function getEIP712Version() external view returns (string memory);
 }

package/src/interfaces/automata-interfaces/BELE.sol CHANGED Viewed

@@ -5,6 +5,7 @@ pragma solidity ^0.8.0;
  * @notice Converts a little-endian encoded bytes to a big-endian uint256 integer
  */
 library BELE {
     function leBytesToBeUint(bytes memory encoded) internal pure returns (uint256 decoded) {
         for (uint256 i = 0; i < encoded.length; i++) {
             uint256 digits = uint256(uint8(bytes1(encoded[i])));
@@ -17,4 +18,5 @@ library BELE {
             decoded += acc;
         }
     }
 }

package/src/interfaces/automata-interfaces/IAutomataEnclaveIdentityDao.sol CHANGED Viewed

@@ -5,24 +5,22 @@ import {EnclaveIdentityJsonObj, IdentityObj} from "./Types.sol";
 // only the functions we need have been included here
 interface IEnclaveIdentityHelper {
-    function parseIdentityString(
-        string calldata identityStr
-    )
+    function parseIdentityString(string calldata identityStr)
         external
         pure
         returns (IdentityObj memory identity, string memory identityTcbString);
 }
 // only the functions we need have been included here
 interface IAutomataEnclaveIdentityDao {
-    function upsertEnclaveIdentity(
-        uint256 id,
-        uint256 version,
-        EnclaveIdentityJsonObj calldata enclaveIdentityObj
-    ) external returns (bytes32 attestationId);
-    function EnclaveIdentityLib()
+    function upsertEnclaveIdentity(uint256 id, uint256 version, EnclaveIdentityJsonObj calldata enclaveIdentityObj)
         external
-        view
-        returns (IEnclaveIdentityHelper);
+        returns (bytes32 attestationId);
+    // forge-lint: disable-next-line(mixed-case-function)
+    function EnclaveIdentityLib() external view returns (IEnclaveIdentityHelper);
 }

package/src/interfaces/automata-interfaces/IFmspcTcbDao.sol CHANGED Viewed

@@ -4,7 +4,7 @@ pragma solidity ^0.8;
 import {TcbInfoJsonObj} from "./Types.sol";
 interface IFmspcTcbDao {
-    function upsertFmspcTcb(
-        TcbInfoJsonObj calldata tcbInfoObj
-    ) external returns (bytes32 attestationId);
+    function upsertFmspcTcb(TcbInfoJsonObj calldata tcbInfoObj) external returns (bytes32 attestationId);
 }

package/src/interfaces/automata-interfaces/IPCCSRouter.sol CHANGED Viewed

@@ -1,18 +1,7 @@
 //SPDX-License-Identifier: MIT
 pragma solidity >=0.8.0;
-import {
-    EnclaveIdentityJsonObj,
-    IdentityObj,
-    EnclaveId,
-    CA,
-    TcbInfoJsonObj,
-    TCBLevelsObj,
-    TcbInfoBasic,
-    TcbId,
-    TDXModule,
-    TDXModuleIdentity
-} from "./Types.sol";
+import {IdentityObj, EnclaveId, CA, TcbLevelsObj, TcbId, TdxModule, TdxModuleIdentity} from "./Types.sol";
 /**
  * @title PCCS Router Interface
@@ -20,6 +9,7 @@ import {
  * to fetch collaterals from the On Chain PCCS
  */
 interface IPCCSRouter {
     function qeIdDaoAddr() external view returns (address);
     function fmspcTcbDaoAddr() external view returns (address);
@@ -34,37 +24,18 @@ interface IPCCSRouter {
     function fmspcTcbHelperAddr() external view returns (address);
-    function getQeIdentity(
-        EnclaveId id,
-        uint256 quoteVersion
-    ) external view returns (IdentityObj memory);
+    function getQeIdentity(EnclaveId id, uint256 quoteVersion) external view returns (IdentityObj memory);
-    function getQeIdentityContentHash(
-        EnclaveId id,
-        uint256 version
-    ) external view returns (bytes32);
+    function getQeIdentityContentHash(EnclaveId id, uint256 version) external view returns (bytes32);
-    function getFmspcTcbV2(
-        bytes6 fmspc
-    ) external view returns (TCBLevelsObj[] memory);
+    function getFmspcTcbV2(bytes6 fmspc) external view returns (TcbLevelsObj[] memory);
-    function getFmspcTcbV3(
-        TcbId id,
-        bytes6 fmspc
-    )
+    function getFmspcTcbV3(TcbId id, bytes6 fmspc)
         external
         view
-        returns (
-            TCBLevelsObj[] memory,
-            TDXModule memory,
-            TDXModuleIdentity[] memory
-        );
-    function getFmspcTcbContentHash(
-        TcbId id,
-        bytes6 fmspc,
-        uint32 version
-    ) external view returns (bytes32);
+        returns (TcbLevelsObj[] memory, TdxModule memory, TdxModuleIdentity[] memory);
+    function getFmspcTcbContentHash(TcbId id, bytes6 fmspc, uint32 version) external view returns (bytes32);
     function getPckCert(
         string calldata qeid,
@@ -82,13 +53,8 @@ interface IPCCSRouter {
     function getCrlHash(CA ca) external view returns (bytes32);
     // *withTimestamp() methods to check collateral expiration status based on the provided timestamp
-    function getCertHashWithTimestamp(
-        CA ca,
-        uint64 timestamp
-    ) external view returns (bytes32);
-    function getCrlHashWithTimestamp(
-        CA ca,
-        uint64 timestamp
-    ) external view returns (bytes32);
+    function getCertHashWithTimestamp(CA ca, uint64 timestamp) external view returns (bytes32);
+    function getCrlHashWithTimestamp(CA ca, uint64 timestamp) external view returns (bytes32);
 }

package/src/interfaces/automata-interfaces/IPCCSRouterExtended.sol CHANGED Viewed

@@ -6,5 +6,7 @@ import {IPCCSRouter} from "./IPCCSRouter.sol";
 /// @dev we declare this interface because the one exported from the automata-dcap-attestation package is missing some
 ///      external functions.
 interface IPCCSRouterExtended is IPCCSRouter {
     function setAuthorized(address caller, bool authorized) external;
 }

package/src/interfaces/automata-interfaces/IPcsDao.sol CHANGED Viewed

@@ -4,15 +4,10 @@ pragma solidity ^0.8.0;
 import {CA} from "./Types.sol";
 interface IPcsDao {
-    function upsertPcsCertificates(
-        CA ca,
-        bytes calldata cert
-    ) external returns (bytes32 attestationId);
-    function upsertPckCrl(
-        CA ca,
-        bytes calldata crl
-    ) external returns (bytes32 attestationId);
-    function upsertRootCACrl(
-        bytes calldata rootcacrl
-    ) external returns (bytes32 attestationId);
+    function upsertPcsCertificates(CA ca, bytes calldata cert) external returns (bytes32 attestationId);
+    function upsertPckCrl(CA ca, bytes calldata crl) external returns (bytes32 attestationId);
+    // forge-lint: disable-next-line(mixed-case-function)
+    function upsertRootCACrl(bytes calldata rootcacrl) external returns (bytes32 attestationId);
 }

package/src/interfaces/automata-interfaces/IQuoteVerifier.sol CHANGED Viewed

@@ -9,6 +9,7 @@ import {Header} from "./Types.sol";
  * @notice Provides the interface to implement version-specific verifiers
  */
 interface IQuoteVerifier {
     /**
      * @dev this method must be immutable
      * @return an instance of the PCCSRouter interface
@@ -20,15 +21,11 @@ interface IQuoteVerifier {
      */
     function quoteVersion() external view returns (uint16);
-    function verifyQuote(
-        Header calldata,
-        bytes calldata
-    ) external view returns (bool, bytes memory);
+    function verifyQuote(Header calldata, bytes calldata) external view returns (bool, bytes memory);
     /**
      * @notice additional check on the public output obtained from the ZK Program execution
      */
-    function verifyZkOutput(
-        bytes calldata
-    ) external view returns (bool, bytes memory);
+    function verifyZkOutput(bytes calldata) external view returns (bool, bytes memory);
 }

package/src/interfaces/automata-interfaces/Types.sol CHANGED Viewed

@@ -41,7 +41,7 @@ struct TcbInfoBasic {
     bytes2 pceid;
 }
-struct TCBLevelsObj {
+struct TcbLevelsObj {
     uint16 pcesvn;
     uint8[] sgxComponentCpuSvns;
     uint8[] tdxComponentCpuSvns;
@@ -50,21 +50,21 @@ struct TCBLevelsObj {
     string[] advisoryIDs;
 }
-struct TDXModule {
+struct TdxModule {
     bytes mrsigner; // 48 bytes
     bytes8 attributes;
     bytes8 attributesMask;
 }
-struct TDXModuleIdentity {
+struct TdxModuleIdentity {
     string id;
     bytes8 attributes;
     bytes8 attributesMask;
     bytes mrsigner; // 48 bytes
-    TDXModuleTCBLevelsObj[] tcbLevels;
+    TdxModuleTcbLevelsObj[] tcbLevels;
 }
-struct TDXModuleTCBLevelsObj {
+struct TdxModuleTcbLevelsObj {
     uint8 isvsvn;
     uint64 tcbDateTimestamp;
     TCBStatus status;
@@ -154,12 +154,13 @@ struct Header {
  * @dev Section A.3.2 of Intel V4 TDX DCAP API Library Documentation
  * @dev https://github.com/intel/SGX-TDX-DCAP-QuoteVerificationLibrary/blob/7e5b2a13ca5472de8d97dd7d7024c2ea5af9a6ba/Src/AttestationLibrary/src/QuoteVerification/QuoteStructures.h#L82-L103
  */
-struct TD10ReportBody {
+struct Td10ReportBody {
     bytes16 teeTcbSvn;
     bytes mrSeam; // 48 bytes
     bytes mrsignerSeam; // 48 bytes
     bytes8 seamAttributes;
     bytes8 tdAttributes;
+    // forge-lint: disable-next-line(mixed-case-variable)
     bytes8 xFAM;
     bytes mrTd; // 48 bytes
     bytes mrConfigId; // 48 bytes