@rolly-dev/wasm-signer 1.5.1 → 1.9.0

package/dist/node/rolly_wasm_signer.d.ts

@@ -26,6 +26,17 @@ export function compute_address_hash(address_hex: string): BigUint64Array;
  */
 export function compute_multi_dice(win_numbers: number): bigint;
 
+/**
+ * Full coinflip payout computation — pure integer arithmetic, zero floats.
+ *
+ * `random`: 4 Goldilocks field elements (Poseidon2 output).
+ * `bet_atomic`: bet in atomic units (1 USDT = 1_000_000).
+ * `prediction`: 0 or 1.
+ *
+ * Returns `BigUint64Array[4]`: `[win_amount, roll (0|1), is_win (0|1), multiplier×10000]`.
+ */
+export function compute_payout_coinflip(random: BigUint64Array, bet_atomic: bigint, prediction: number): BigUint64Array;
+
 /**
  * Full dice payout computation — pure integer arithmetic, zero floats.
  *
@@ -51,6 +62,26 @@ export function compute_payout_dice(random: BigUint64Array, bet_atomic: bigint,
  */
 export function compute_payout_plinko(random: BigUint64Array, bet_atomic: bigint, sector: number, rows: number, is_extreme: boolean): BigUint64Array;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:     `(mode, pred_lo, pred_hi)`
+ *   Plinko:   `(sector, rows, is_extreme)`
+ *   CoinFlip: `(prediction, 0, 0)`
+ */
+export function compute_prediction_hash(game_id: number, p0: number, p1: number, p2: number): BigUint64Array;
+
+/**
+ * Extract coinflip roll (0 or 1) from Poseidon2 random output.
+ *
+ * `random` must be exactly 4 elements. Returns `random[0] % 2`.
+ */
+export function compute_roll_coinflip(random: BigUint64Array): number;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -79,6 +110,19 @@ export function compute_roll_plinko(random: BigUint64Array, rows: number): numbe
  */
 export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64Array;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ */
+export function compute_user_seed_binding(game_id: number, bet: bigint, pred_hash: BigUint64Array, secret: BigUint64Array): BigUint64Array;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -97,6 +141,19 @@ export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64
  */
 export function derive_session_key(sig_bytes: Uint8Array): BigUint64Array;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ */
+export function generate_user_secret(): BigUint64Array;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *

package/dist/node/rolly_wasm_signer.js

@@ -63,6 +63,36 @@ function compute_multi_dice(win_numbers) {
 }
 exports.compute_multi_dice = compute_multi_dice;
 
+/**
+ * Full coinflip payout computation — pure integer arithmetic, zero floats.
+ *
+ * `random`: 4 Goldilocks field elements (Poseidon2 output).
+ * `bet_atomic`: bet in atomic units (1 USDT = 1_000_000).
+ * `prediction`: 0 or 1.
+ *
+ * Returns `BigUint64Array[4]`: `[win_amount, roll (0|1), is_win (0|1), multiplier×10000]`.
+ * @param {BigUint64Array} random
+ * @param {bigint} bet_atomic
+ * @param {number} prediction
+ * @returns {BigUint64Array}
+ */
+function compute_payout_coinflip(random, bet_atomic, prediction) {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        const ptr0 = passArray64ToWasm0(random, wasm.__wbindgen_export3);
+        const len0 = WASM_VECTOR_LEN;
+        wasm.compute_payout_coinflip(retptr, ptr0, len0, bet_atomic, prediction);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v2 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v2;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.compute_payout_coinflip = compute_payout_coinflip;
+
 /**
  * Full dice payout computation — pure integer arithmetic, zero floats.
  *
@@ -130,6 +160,52 @@ function compute_payout_plinko(random, bet_atomic, sector, rows, is_extreme) {
 }
 exports.compute_payout_plinko = compute_payout_plinko;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:     `(mode, pred_lo, pred_hi)`
+ *   Plinko:   `(sector, rows, is_extreme)`
+ *   CoinFlip: `(prediction, 0, 0)`
+ * @param {number} game_id
+ * @param {number} p0
+ * @param {number} p1
+ * @param {number} p2
+ * @returns {BigUint64Array}
+ */
+function compute_prediction_hash(game_id, p0, p1, p2) {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        wasm.compute_prediction_hash(retptr, game_id, p0, p1, p2);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v1 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v1;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.compute_prediction_hash = compute_prediction_hash;
+
+/**
+ * Extract coinflip roll (0 or 1) from Poseidon2 random output.
+ *
+ * `random` must be exactly 4 elements. Returns `random[0] % 2`.
+ * @param {BigUint64Array} random
+ * @returns {number}
+ */
+function compute_roll_coinflip(random) {
+    const ptr0 = passArray64ToWasm0(random, wasm.__wbindgen_export3);
+    const len0 = WASM_VECTOR_LEN;
+    const ret = wasm.compute_roll_coinflip(ptr0, len0);
+    return ret >>> 0;
+}
+exports.compute_roll_coinflip = compute_roll_coinflip;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -192,6 +268,41 @@ function compute_server_seed_hash(server_seed) {
 }
 exports.compute_server_seed_hash = compute_server_seed_hash;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ * @param {number} game_id
+ * @param {bigint} bet
+ * @param {BigUint64Array} pred_hash
+ * @param {BigUint64Array} secret
+ * @returns {BigUint64Array}
+ */
+function compute_user_seed_binding(game_id, bet, pred_hash, secret) {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        const ptr0 = passArray64ToWasm0(pred_hash, wasm.__wbindgen_export3);
+        const len0 = WASM_VECTOR_LEN;
+        const ptr1 = passArray64ToWasm0(secret, wasm.__wbindgen_export3);
+        const len1 = WASM_VECTOR_LEN;
+        wasm.compute_user_seed_binding(retptr, game_id, bet, ptr0, len0, ptr1, len1);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v3 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v3;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.compute_user_seed_binding = compute_user_seed_binding;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -227,6 +338,33 @@ function derive_session_key(sig_bytes) {
 }
 exports.derive_session_key = derive_session_key;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ * @returns {BigUint64Array}
+ */
+function generate_user_secret() {
+    try {
+        const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+        wasm.generate_user_secret(retptr);
+        var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+        var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+        var v1 = getArrayU64FromWasm0(r0, r1).slice();
+        wasm.__wbindgen_export2(r0, r1 * 8, 8);
+        return v1;
+    } finally {
+        wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+}
+exports.generate_user_secret = generate_user_secret;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *

package/dist/node/rolly_wasm_signer_bg.wasm.d.ts

@@ -4,12 +4,17 @@ export const memory: WebAssembly.Memory;
 export const amount_split: (a: number, b: bigint) => void;
 export const compute_address_hash: (a: number, b: number, c: number) => void;
 export const compute_multi_dice: (a: number) => bigint;
+export const compute_payout_coinflip: (a: number, b: number, c: number, d: bigint, e: number) => void;
 export const compute_payout_dice: (a: number, b: number, c: number, d: bigint, e: number, f: number, g: number) => void;
 export const compute_payout_plinko: (a: number, b: number, c: number, d: bigint, e: number, f: number, g: number) => void;
+export const compute_prediction_hash: (a: number, b: number, c: number, d: number, e: number) => void;
+export const compute_roll_coinflip: (a: number, b: number) => number;
 export const compute_roll_dice: (a: number, b: number) => number;
 export const compute_roll_plinko: (a: number, b: number, c: number) => number;
 export const compute_server_seed_hash: (a: number, b: number, c: number) => void;
+export const compute_user_seed_binding: (a: number, b: number, c: bigint, d: number, e: number, f: number, g: number) => void;
 export const derive_session_key: (a: number, b: number, c: number) => void;
+export const generate_user_secret: (a: number) => void;
 export const generate_user_seed: (a: number) => void;
 export const goldilocks_fields_to_hex: (a: number, b: number, c: number) => void;
 export const goldilocks_reduce: (a: bigint) => bigint;

package/dist/node-inline/rolly_wasm_signer.d.ts

@@ -26,6 +26,17 @@ export function compute_address_hash(address_hex: string): BigUint64Array;
  */
 export function compute_multi_dice(win_numbers: number): bigint;
 
+/**
+ * Full coinflip payout computation — pure integer arithmetic, zero floats.
+ *
+ * `random`: 4 Goldilocks field elements (Poseidon2 output).
+ * `bet_atomic`: bet in atomic units (1 USDT = 1_000_000).
+ * `prediction`: 0 or 1.
+ *
+ * Returns `BigUint64Array[4]`: `[win_amount, roll (0|1), is_win (0|1), multiplier×10000]`.
+ */
+export function compute_payout_coinflip(random: BigUint64Array, bet_atomic: bigint, prediction: number): BigUint64Array;
+
 /**
  * Full dice payout computation — pure integer arithmetic, zero floats.
  *
@@ -51,6 +62,26 @@ export function compute_payout_dice(random: BigUint64Array, bet_atomic: bigint,
  */
 export function compute_payout_plinko(random: BigUint64Array, bet_atomic: bigint, sector: number, rows: number, is_extreme: boolean): BigUint64Array;
 
+/**
+ * Compute prediction hash: `Poseidon2(game_id, p0, p1, p2)` → 4 field elements.
+ *
+ * Matches `compute_prediction_hash_native` in the circuit (`games/shared.rs`)
+ * and the in-circuit `build_prediction_hash`.
+ *
+ * Semantics of p0–p2 depend on the game:
+ *   Dice:     `(mode, pred_lo, pred_hi)`
+ *   Plinko:   `(sector, rows, is_extreme)`
+ *   CoinFlip: `(prediction, 0, 0)`
+ */
+export function compute_prediction_hash(game_id: number, p0: number, p1: number, p2: number): BigUint64Array;
+
+/**
+ * Extract coinflip roll (0 or 1) from Poseidon2 random output.
+ *
+ * `random` must be exactly 4 elements. Returns `random[0] % 2`.
+ */
+export function compute_roll_coinflip(random: BigUint64Array): number;
+
 /**
  * Extract dice roll number [0, 1000) from Poseidon2 random output.
  *
@@ -79,6 +110,19 @@ export function compute_roll_plinko(random: BigUint64Array, rows: number): numbe
  */
 export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64Array;
 
+/**
+ * Compute user seed with bet-parameter binding:
+ * `Poseidon2(game_id, bet, pred_hash[4], secret[4])` → 4 field elements.
+ *
+ * Matches the circuit constraint in `slot/fairness.rs`.
+ * Prevents the operator from swapping bet parameters after the user commits.
+ *
+ * `bet` is the full bet amount in atomic units (u64).
+ * `pred_hash` must be 4 elements (output of `compute_prediction_hash`).
+ * `secret` must be 4 elements (output of `generate_user_secret`).
+ */
+export function compute_user_seed_binding(game_id: number, bet: bigint, pred_hash: BigUint64Array, secret: BigUint64Array): BigUint64Array;
+
 /**
  * Derive a session key from 32 bytes of entropy (e.g. MetaMask signature).
  *
@@ -97,6 +141,19 @@ export function compute_server_seed_hash(server_seed: BigUint64Array): BigUint64
  */
 export function derive_session_key(sig_bytes: Uint8Array): BigUint64Array;
 
+/**
+ * Generate a cryptographically random user secret — 4 Goldilocks field elements.
+ *
+ * Each element is reduced mod p for canonical representation (safe for circuit use).
+ * Uses `getrandom` (`crypto.getRandomValues` in browser, OS entropy in Node.js).
+ *
+ * ```js
+ * const secret = generate_user_secret();
+ * // secret.length === 4, each < GOLDILOCKS_P
+ * ```
+ */
+export function generate_user_secret(): BigUint64Array;
+
 /**
  * Generate a random user seed — 10 alphanumeric characters.
  *