@rolly-dev/wasm-signer 0.12.0 → 0.13.1

package/README.md

@@ -23,7 +23,6 @@ const {
   poseidon2_hash,
   derive_session_key,
   session_public_key,
-  create_bet_auth,
 } = require('@rolly-dev/wasm-signer');
 
 const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
@@ -36,10 +35,11 @@ const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
 import {
   poseidon2_hash,
   derive_session_key,
-  create_bet_auth,
+  session_public_key,
 } from '@rolly-dev/wasm-signer';
 
-const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
+const sessionKey = derive_session_key(metamaskSignatureBytes);
+const pkHash = session_public_key(sessionKey, BigInt(expiryTimestamp));
 ```
 
 ### React
@@ -47,17 +47,15 @@ const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
 ```jsx
 import { useRollyWasm } from '@rolly-dev/wasm-signer/react';
 
-function BetButton({ sessionKey, amount, nonce }) {
-  const { ready, create_bet_auth } = useRollyWasm();
+function SessionInfo({ sessionKey, expiry }) {
+  const { ready, session_public_key } = useRollyWasm();
 
   if (!ready) return <span>Loading...</span>;
 
-  const handleBet = () => {
-    const auth = create_bet_auth(sessionKey, BigInt(amount), BigInt(nonce));
-    // send auth to server...
-  };
+  const pkHash = session_public_key(sessionKey, BigInt(expiry));
+  // register pkHash on-chain via key_register tx...
 
-  return <button onClick={handleBet}>Place Bet</button>;
+  return <div>Session active until {new Date(Number(expiry) * 1000).toLocaleString()}</div>;
 }
 ```
 
@@ -89,8 +87,7 @@ poseidon2_hash(BigUint64Array.from([1n]));
 | `poseidon2_hash`           | `BigUint64Array`               | `BigUint64Array(4)` | Hash N field elements                        |
 | `poseidon2_two_to_one`     | `BigUint64Array(4)` × 2        | `BigUint64Array(4)` | Merkle hash: H(left‖right)                   |
 | `derive_session_key`       | `Uint8Array(32)`               | `BigUint64Array(4)` | MetaMask sig → session key                   |
-| `session_public_key`       | `BigUint64Array(4)`            | `BigUint64Array(4)` | session_pk = H(session_key)                  |
-| `create_bet_auth`          | `(BigUint64Array(4), bigint, bigint)` | `BigUint64Array(4)` | MAC = H(sk‖amount_lo‖amount_hi‖nonce)  |
+| `session_public_key`       | `(BigUint64Array(4), bigint)` | `BigUint64Array(4)` | pk_hash = Poseidon2(session_key, expiry)       |
 | `compute_server_seed_hash` | `BigUint64Array(8)`            | `BigUint64Array(4)` | Full hash of server seed                     |
 | `seed_hash_truncated`      | `BigUint64Array(8)`            | `BigUint64Array(2)` | First 2 elements (circuit leaf format)       |
 | `goldilocks_modulus`       | —                              | `bigint`          | Returns p = 2^64 - 2^32 + 1                   |

package/dist/node/README.md

@@ -23,7 +23,6 @@ const {
   poseidon2_hash,
   derive_session_key,
   session_public_key,
-  create_bet_auth,
 } = require('@rolly-dev/wasm-signer');
 
 const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
@@ -36,10 +35,11 @@ const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
 import {
   poseidon2_hash,
   derive_session_key,
-  create_bet_auth,
+  session_public_key,
 } from '@rolly-dev/wasm-signer';
 
-const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
+const sessionKey = derive_session_key(metamaskSignatureBytes);
+const pkHash = session_public_key(sessionKey, BigInt(expiryTimestamp));
 ```
 
 ### React
@@ -47,17 +47,15 @@ const hash = poseidon2_hash(BigUint64Array.from([1n, 2n, 3n]));
 ```jsx
 import { useRollyWasm } from '@rolly-dev/wasm-signer/react';
 
-function BetButton({ sessionKey, amount, nonce }) {
-  const { ready, create_bet_auth } = useRollyWasm();
+function SessionInfo({ sessionKey, expiry }) {
+  const { ready, session_public_key } = useRollyWasm();
 
   if (!ready) return <span>Loading...</span>;
 
-  const handleBet = () => {
-    const auth = create_bet_auth(sessionKey, BigInt(amount), BigInt(nonce));
-    // send auth to server...
-  };
+  const pkHash = session_public_key(sessionKey, BigInt(expiry));
+  // register pkHash on-chain via key_register tx...
 
-  return <button onClick={handleBet}>Place Bet</button>;
+  return <div>Session active until {new Date(Number(expiry) * 1000).toLocaleString()}</div>;
 }
 ```
 
@@ -89,8 +87,7 @@ poseidon2_hash(BigUint64Array.from([1n]));
 | `poseidon2_hash`           | `BigUint64Array`               | `BigUint64Array(4)` | Hash N field elements                        |
 | `poseidon2_two_to_one`     | `BigUint64Array(4)` × 2        | `BigUint64Array(4)` | Merkle hash: H(left‖right)                   |
 | `derive_session_key`       | `Uint8Array(32)`               | `BigUint64Array(4)` | MetaMask sig → session key                   |
-| `session_public_key`       | `BigUint64Array(4)`            | `BigUint64Array(4)` | session_pk = H(session_key)                  |
-| `create_bet_auth`          | `(BigUint64Array(4), bigint, bigint)` | `BigUint64Array(4)` | MAC = H(sk‖amount_lo‖amount_hi‖nonce)  |
+| `session_public_key`       | `(BigUint64Array(4), bigint)` | `BigUint64Array(4)` | pk_hash = Poseidon2(session_key, expiry)       |
 | `compute_server_seed_hash` | `BigUint64Array(8)`            | `BigUint64Array(4)` | Full hash of server seed                     |
 | `seed_hash_truncated`      | `BigUint64Array(8)`            | `BigUint64Array(2)` | First 2 elements (circuit leaf format)       |
 | `goldilocks_modulus`       | —                              | `bigint`          | Returns p = 2^64 - 2^32 + 1                   |

package/dist/node/rolly_wasm_signer.d.ts

@@ -30,45 +30,6 @@ export function compute_address_hash(address_hex: string): BigUint64Array;
  */
 export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64Array;
 
-/**
- * Compute the transaction message hash (for debugging / verification).
- *
- * Returns `BigUint64Array` of length 4 — the same hash the circuit computes.
- *
- * ```js
- * const hash = compute_tx_msg_hash(5, userId, 0, amountLo, amountHi);
- * ```
- */
-export function compute_tx_msg_hash(tx_type: number, user_id: number, currency_id: number, amount_lo: number, amount_hi: number, session_expiry: bigint): BigUint64Array;
-
-/**
- * Create a `bet_auth` MAC that proves the user authorized this specific bet.
- *
- * ```text
- * bet_auth = Poseidon2(
- *     session_key[0..4],   // 4 field elements (private)
- *     amount_lo,           // lower  32 bits of bet_amount
- *     amount_hi,           // upper  32 bits of bet_amount
- *     nonce,               // monotonic counter, prevents replay
- * )
- * ```
- *
- * The circuit verifies two things:
- *   1. `session_pk == Poseidon2(session_key)` — knowledge of key
- *   2. `bet_auth  == Poseidon2(session_key ‖ amount_lo ‖ amount_hi ‖ nonce)`
- *
- * The lo/hi split matches `src/circuit/main_circuit.rs` witness assignment:
- *   `amount as u32` / `(amount >> 32) as u32`, both via `from_canonical_u32`.
- *
- * **Parameters**
- * - `session_key` : 4 × u64  (private, from `derive_session_key`)
- * - `bet_amount`  : u64      (in smallest currency units)
- * - `nonce`       : u64      (incrementing per-session counter)
- *
- * **Returns**: 4 × u64 (`bet_auth` hash)
- */
-export function create_bet_auth(session_key: BigUint64Array, bet_amount: bigint, nonce: bigint): BigUint64Array;
-
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -151,106 +112,6 @@ export function poseidon2_hash(input: BigUint64Array): BigUint64Array;
  */
 export function poseidon2_two_to_one(left: BigUint64Array, right: BigUint64Array): BigUint64Array;
 
-/**
- * Derive a Schnorr secret key from entropy bytes (e.g. MetaMask signature).
- *
- * Takes at least 32 bytes, uses `Scalar::decode_reduce` to map them into
- * the ECgFp5 scalar field. Returns hex-encoded secret key (80 chars = 40 bytes).
- *
- * ```js
- * const skHex = schnorr_keygen(sigBytes.slice(0, 32));
- * ```
- */
-export function schnorr_keygen(entropy: Uint8Array): string;
-
-/**
- * Get the w-encoding of a public key as 5 Goldilocks field elements (for circuit witness).
- *
- * Returns `BigUint64Array` of length 5.
- *
- * ```js
- * const encode = schnorr_pk_encode(pkHex);
- * // encode.length === 5
- * ```
- */
-export function schnorr_pk_encode(pk_hex: string): BigUint64Array;
-
-/**
- * Compute pk_hash = Poseidon2(w_encoding[5]) from a hex-encoded public key.
- *
- * The w-encoding is the 40-byte (80 hex) representation returned by `schnorr_pubkey`.
- * pk_hash is stored in the Merkle tree to bind the Schnorr key to an account.
- *
- * Returns `BigUint64Array` of length 4.
- *
- * ```js
- * const pkHash = schnorr_pk_hash(pkHex);
- * ```
- */
-export function schnorr_pk_hash(pk_hex: string): BigUint64Array;
-
-/**
- * Compute pk_hash as a hex string (for convenience).
- *
- * ```js
- * const pkHashHex = schnorr_pk_hash_hex(pkHex);
- * ```
- */
-export function schnorr_pk_hash_hex(pk_hex: string): string;
-
-/**
- * Compute the Schnorr public key from a hex-encoded secret key.
- *
- * Returns hex-encoded w-encoding of the ECgFp5 point (80 chars = 40 bytes).
- *
- * ```js
- * const pkHex = schnorr_pubkey(skHex);
- * ```
- */
-export function schnorr_pubkey(sk_hex: string): string;
-
-/**
- * Sign a ChangePubKey (tx_type=9) transaction in (s, e) format.
- *
- * msg_hash = Poseidon2(9, user_id, new_pk_hash[0..4])
- *
- * The old key signs this message to authorize key rotation.
- *
- * Returns a JS object: `{ pubkey: "hex", sig_s: "hex", sig_e: "hex" }`
- *
- * ```js
- * const sig = schnorr_sign_cpk(oldSkHex, userId, newPkHashArray);
- * ```
- */
-export function schnorr_sign_cpk(old_sk_hex: string, user_id: number, new_pk_hash: BigUint64Array): any;
-
-/**
- * Sign a transaction with Schnorr (ECgFp5) in (s, e) format.
- *
- * msg_hash = Poseidon2(tx_type, user_id, currency_id, amount_lo, amount_hi)
- *
- * Returns a JS object: `{ pubkey: "hex", sig_s: "hex", sig_e: "hex" }`
- *
- * ```js
- * const sig = schnorr_sign_tx(skHex, 5, userId, 0, amountLo, amountHi);
- * // sig.pubkey (80 hex), sig.sig_s (80 hex), sig.sig_e (80 hex)
- * ```
- */
-export function schnorr_sign_tx(sk_hex: string, tx_type: number, user_id: number, currency_id: number, amount_lo: number, amount_hi: number, session_expiry: bigint): any;
-
-/**
- * Verify a Schnorr signature (s, e) for a transaction.
- *
- * Algorithm: R_v = s·G + e·pk, e_v = H(R_v‖pk‖msg), check e == e_v.
- *
- * Returns `true` if signature is valid, `false` otherwise.
- *
- * ```js
- * const ok = schnorr_verify_tx(pubkeyHex, sigSHex, sigEHex, 5, userId, 0, amountLo, amountHi);
- * ```
- */
-export function schnorr_verify_tx(pk_hex: string, sig_s_hex: string, sig_e_hex: string, tx_type: number, user_id: number, currency_id: number, amount_lo: number, amount_hi: number, session_expiry: bigint): boolean;
-
 /**
  * Truncated seed hash — first 2 elements of `Poseidon2(server_seed)`.
  *
@@ -263,14 +124,15 @@ export function schnorr_verify_tx(pk_hex: string, sig_s_hex: string, sig_e_hex:
 export function seed_hash_truncated(server_seed: BigUint64Array): BigUint64Array;
 
 /**
- * Compute the public key for a session: `session_pk = Poseidon2(session_key)`.
+ * Compute the public key for a session: `pk_hash = Poseidon2(session_key[4], expiry)`.
  *
- * The public key is stored in the user-asset Merkle leaf and verified
- * inside the circuit (the prover must know the preimage `session_key`).
+ * The public key hash is stored in the user-asset Merkle leaf and verified
+ * inside the circuit (the prover must know the preimage `session_key` + `expiry`).
  *
  * `session_key` must be exactly 4 elements (output of `derive_session_key`).
+ * `session_expiry` is the Unix timestamp after which the session is invalid.
  */
-export function session_public_key(session_key: BigUint64Array): BigUint64Array;
+export function session_public_key(session_key: BigUint64Array, session_expiry: bigint): BigUint64Array;
 
 /**
  * Convert a user seed string to 4 Goldilocks field elements.