@rolly-dev/wasm-signer 1.5.1 → 1.7.0

package/dist/node/rolly_wasm_signer.d.ts

@@ -51,6 +51,18 @@ export function compute_payout_dice(random: BigUint64Array, bet_atomic: bigint,
  */
 export function compute_payout_plinko(random: BigUint64Array, bet_atomic: bigint, sector: number, rows: number, is_extreme: boolean): BigUint64Array;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:   `(mode, pred_lo, pred_hi)`
+ *   Plinko: `(sector, rows, is_extreme)`
+ */
+export function compute_prediction_hash(game_id: number, p0: number, p1: number, p2: number): BigUint64Array;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -79,6 +91,19 @@ export function compute_roll_plinko(random: BigUint64Array, rows: number): numbe
  */
 export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64Array;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ */
+export function compute_user_seed_binding(game_id: number, bet: bigint, pred_hash: BigUint64Array, secret: BigUint64Array): BigUint64Array;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -97,6 +122,19 @@ export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64
  */
 export function derive_session_key(sig_bytes: Uint8Array): BigUint64Array;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ */
+export function generate_user_secret(): BigUint64Array;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *

package/dist/node/rolly_wasm_signer.js

@@ -130,6 +130,36 @@ function compute_payout_plinko(random, bet_atomic, sector, rows, is_extreme) {
 }
 exports.compute_payout_plinko = compute_payout_plinko;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:   `(mode, pred_lo, pred_hi)`
+ *   Plinko: `(sector, rows, is_extreme)`
+ * @param {number} game_id
+ * @param {number} p0
+ * @param {number} p1
+ * @param {number} p2
+ * @returns {BigUint64Array}
+ */
+function compute_prediction_hash(game_id, p0, p1, p2) {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        wasm.compute_prediction_hash(retptr, game_id, p0, p1, p2);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v1 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v1;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.compute_prediction_hash = compute_prediction_hash;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -192,6 +222,41 @@ function compute_server_seed_hash(server_seed) {
 }
 exports.compute_server_seed_hash = compute_server_seed_hash;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ * @param {number} game_id
+ * @param {bigint} bet
+ * @param {BigUint64Array} pred_hash
+ * @param {BigUint64Array} secret
+ * @returns {BigUint64Array}
+ */
+function compute_user_seed_binding(game_id, bet, pred_hash, secret) {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        const ptr0 = passArray64ToWasm0(pred_hash, wasm.__wbindgen_export3);
+        const len0 = WASM_VECTOR_LEN;
+        const ptr1 = passArray64ToWasm0(secret, wasm.__wbindgen_export3);
+        const len1 = WASM_VECTOR_LEN;
+        wasm.compute_user_seed_binding(retptr, game_id, bet, ptr0, len0, ptr1, len1);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v3 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v3;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.compute_user_seed_binding = compute_user_seed_binding;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -227,6 +292,33 @@ function derive_session_key(sig_bytes) {
 }
 exports.derive_session_key = derive_session_key;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ * @returns {BigUint64Array}
+ */
+function generate_user_secret() {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        wasm.generate_user_secret(retptr);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v1 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v1;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.generate_user_secret = generate_user_secret;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *

package/dist/node/rolly_wasm_signer_bg.wasm.d.ts

@@ -6,10 +6,13 @@ export const compute_address_hash: (a: number, b: number, c: number) => void;
 export const compute_multi_dice: (a: number) => bigint;
 export const compute_payout_dice: (a: number, b: number, c: number, d: bigint, e: number, f: number, g: number) => void;
 export const compute_payout_plinko: (a: number, b: number, c: number, d: bigint, e: number, f: number, g: number) => void;
+export const compute_prediction_hash: (a: number, b: number, c: number, d: number, e: number) => void;
 export const compute_roll_dice: (a: number, b: number) => number;
 export const compute_roll_plinko: (a: number, b: number, c: number) => number;
 export const compute_server_seed_hash: (a: number, b: number, c: number) => void;
+export const compute_user_seed_binding: (a: number, b: number, c: bigint, d: number, e: number, f: number, g: number) => void;
 export const derive_session_key: (a: number, b: number, c: number) => void;
+export const generate_user_secret: (a: number) => void;
 export const generate_user_seed: (a: number) => void;
 export const goldilocks_fields_to_hex: (a: number, b: number, c: number) => void;
 export const goldilocks_reduce: (a: bigint) => bigint;

package/dist/node-inline/rolly_wasm_signer.d.ts

@@ -51,6 +51,18 @@ export function compute_payout_dice(random: BigUint64Array, bet_atomic: bigint,
  */
 export function compute_payout_plinko(random: BigUint64Array, bet_atomic: bigint, sector: number, rows: number, is_extreme: boolean): BigUint64Array;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:   `(mode, pred_lo, pred_hi)`
+ *   Plinko: `(sector, rows, is_extreme)`
+ */
+export function compute_prediction_hash(game_id: number, p0: number, p1: number, p2: number): BigUint64Array;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -79,6 +91,19 @@ export function compute_roll_plinko(random: BigUint64Array, rows: number): numbe
  */
 export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64Array;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ */
+export function compute_user_seed_binding(game_id: number, bet: bigint, pred_hash: BigUint64Array, secret: BigUint64Array): BigUint64Array;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -97,6 +122,19 @@ export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64
  */
 export function derive_session_key(sig_bytes: Uint8Array): BigUint64Array;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ */
+export function generate_user_secret(): BigUint64Array;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *