@waku/rln 0.1.6-a8ca168.0 → 0.1.6-ace7ca2.0

package/bundle/packages/rln/dist/contract/rln_base_contract.js

@@ -13,6 +13,7 @@ import '../../../../node_modules/multiformats/dist/src/bases/base8.js';
 import '../../../../node_modules/multiformats/dist/src/bases/identity.js';
 import '../../../../node_modules/multiformats/dist/src/codecs/json.js';
 import { Logger } from '../../../utils/dist/logger/index.js';
+import { buildBigIntFromUint8ArrayBE } from '../utils/bytes.js';
 import { RLN_ABI } from './abi.js';
 import { DEFAULT_Q, DEFAULT_RATE_LIMIT, RATE_LIMIT_PARAMS } from './constants.js';
 import { MembershipState } from './types.js';
@@ -344,11 +345,28 @@ class RLNBaseContract {
             log.error(`Error in withdraw: ${error.message}`);
         }
     }
+    getIdCommitmentBigInt(bytes) {
+        let idCommitmentBigIntBE = buildBigIntFromUint8ArrayBE(bytes);
+        log.info("getIdCommitmentBigInt", {
+            idCommitmentBigIntBE,
+            idCommitmentBigIntLimit: this.idCommitmentBigIntLimit
+        });
+        if (!this.contract) {
+            throw Error("RLN contract is not initialized");
+        }
+        const idCommitmentBigIntLimit = this.contract.idCommitmentBigIntLimit;
+        if (idCommitmentBigIntBE >= idCommitmentBigIntLimit) {
+            log.warn(`ID commitment is greater than Q, reducing it by Q(idCommitmentBigIntLimit): ${idCommitmentBigIntBE} % ${idCommitmentBigIntLimit}`);
+            idCommitmentBigIntBE = idCommitmentBigIntBE % idCommitmentBigIntLimit;
+        }
+        return idCommitmentBigIntBE;
+    }
     async registerWithIdentity(identity) {
         try {
             log.info(`Registering identity with rate limit: ${this.rateLimit} messages/epoch`);
+            const idCommitmentBigInt = this.getIdCommitmentBigInt(identity.IDCommitment);
             // Check if the ID commitment is already registered
-            const existingIndex = await this.getMemberIndex(identity.IDCommitmentBigInt);
+            const existingIndex = await this.getMemberIndex(idCommitmentBigInt);
             if (existingIndex) {
                 throw new Error(`ID commitment is already registered with index ${existingIndex}`);
             }
@@ -357,9 +375,11 @@ class RLNBaseContract {
             if (remainingRateLimit < this.rateLimit) {
                 throw new Error(`Not enough remaining rate limit. Requested: ${this.rateLimit}, Available: ${remainingRateLimit}`);
             }
-            const estimatedGas = await this.contract.estimateGas.register(identity.IDCommitmentBigInt, this.rateLimit, []);
+            const estimatedGas = await this.contract.estimateGas.register(idCommitmentBigInt, this.rateLimit, []);
             const gasLimit = estimatedGas.add(10000);
-            const txRegisterResponse = await this.contract.register(identity.IDCommitmentBigInt, this.rateLimit, [], { gasLimit });
+            const txRegisterResponse = await this.contract.register(idCommitmentBigInt, this.rateLimit, [], {
+                gasLimit
+            });
             const txRegisterReceipt = await txRegisterResponse.wait();
             if (txRegisterReceipt.status === 0) {
                 throw new Error("Transaction failed on-chain");
@@ -421,7 +441,7 @@ class RLNBaseContract {
     async registerWithPermitAndErase(identity, permit, idCommitmentsToErase) {
         try {
             log.info(`Registering identity with permit and rate limit: ${this.rateLimit} messages/epoch`);
-            const txRegisterResponse = await this.contract.registerWithPermit(permit.owner, permit.deadline, permit.v, permit.r, permit.s, identity.IDCommitmentBigInt, this.rateLimit, idCommitmentsToErase.map((id) => BigNumber.from(id)));
+            const txRegisterResponse = await this.contract.registerWithPermit(permit.owner, permit.deadline, permit.v, permit.r, permit.s, this.getIdCommitmentBigInt(identity.IDCommitment), this.rateLimit, idCommitmentsToErase.map((id) => BigNumber.from(id)));
             const txRegisterReceipt = await txRegisterResponse.wait();
             const memberRegistered = txRegisterReceipt.events?.find((event) => event.event === "MembershipRegistered");
             if (!memberRegistered || !memberRegistered.args) {

package/bundle/packages/rln/dist/credentials_manager.js

@@ -20,7 +20,7 @@ import { RLNBaseContract } from './contract/rln_base_contract.js';
 import { IdentityCredential } from './identity.js';
 import { Keystore } from './keystore/keystore.js';
 import { extractMetaMaskSigner } from './utils/metamask.js';
-import { buildBigIntFromUint8ArrayLE } from './utils/bytes.js';
+import { switchEndianness } from './utils/bytes.js';
 import './utils/epoch.js';
 
 const log = new Logger("waku:credentials");
@@ -198,22 +198,19 @@ class RLNCredentialsManager {
         const seedBytes = encoder.encode(seed);
         // Generate deterministic values using HMAC-SHA256
         // We use different context strings for each component to ensure they're different
-        const idTrapdoor = hmac(sha256, seedBytes, encoder.encode("IDTrapdoor"));
-        const idNullifier = hmac(sha256, seedBytes, encoder.encode("IDNullifier"));
-        const combinedBytes = new Uint8Array([...idTrapdoor, ...idNullifier]);
-        const idSecretHash = sha256(combinedBytes);
-        const idCommitment = sha256(idSecretHash);
-        let idCommitmentBigInt = buildBigIntFromUint8ArrayLE(idCommitment);
-        if (!this.contract) {
-            throw Error("RLN contract is not initialized");
-        }
-        const idCommitmentBigIntLimit = this.contract.idCommitmentBigIntLimit;
-        if (idCommitmentBigInt >= idCommitmentBigIntLimit) {
-            log.warn(`ID commitment is greater than Q, reducing it by Q(idCommitmentBigIntLimit): ${idCommitmentBigInt} % ${idCommitmentBigIntLimit}`);
-            idCommitmentBigInt = idCommitmentBigInt % idCommitmentBigIntLimit;
-        }
+        const idTrapdoorBE = hmac(sha256, seedBytes, encoder.encode("IDTrapdoor"));
+        const idNullifierBE = hmac(sha256, seedBytes, encoder.encode("IDNullifier"));
+        const combinedBytes = new Uint8Array([...idTrapdoorBE, ...idNullifierBE]);
+        const idSecretHashBE = sha256(combinedBytes);
+        const idCommitmentBE = sha256(idSecretHashBE);
+        // All hashing functions return big-endian bytes
+        // We need to switch to little-endian for the identity credential
+        const idTrapdoorLE = switchEndianness(idTrapdoorBE);
+        const idNullifierLE = switchEndianness(idNullifierBE);
+        const idSecretHashLE = switchEndianness(idSecretHashBE);
+        const idCommitmentLE = switchEndianness(idCommitmentBE);
         log.info("Successfully generated identity credential");
-        return new IdentityCredential(idTrapdoor, idNullifier, idSecretHash, idCommitment, idCommitmentBigInt);
+        return new IdentityCredential(idTrapdoorLE, idNullifierLE, idSecretHashLE, idCommitmentLE);
     }
 }
 

package/bundle/packages/rln/dist/identity.js

@@ -1,18 +1,16 @@
-import { buildBigIntFromUint8ArrayLE } from './utils/bytes.js';
-import './utils/epoch.js';
-
 class IdentityCredential {
     IDTrapdoor;
     IDNullifier;
     IDSecretHash;
     IDCommitment;
-    IDCommitmentBigInt;
-    constructor(IDTrapdoor, IDNullifier, IDSecretHash, IDCommitment, IDCommitmentBigInt) {
+    /**
+     * All variables are in little-endian format
+     */
+    constructor(IDTrapdoor, IDNullifier, IDSecretHash, IDCommitment) {
         this.IDTrapdoor = IDTrapdoor;
         this.IDNullifier = IDNullifier;
         this.IDSecretHash = IDSecretHash;
         this.IDCommitment = IDCommitment;
-        this.IDCommitmentBigInt = IDCommitmentBigInt;
     }
     static fromBytes(memKeys) {
         if (memKeys.length < 128) {
@@ -22,8 +20,7 @@ class IdentityCredential {
         const idNullifier = memKeys.subarray(32, 64);
         const idSecretHash = memKeys.subarray(64, 96);
         const idCommitment = memKeys.subarray(96, 128);
-        const idCommitmentBigInt = buildBigIntFromUint8ArrayLE(idCommitment);
-        return new IdentityCredential(idTrapdoor, idNullifier, idSecretHash, idCommitment, idCommitmentBigInt);
+        return new IdentityCredential(idTrapdoor, idNullifier, idSecretHash, idCommitment);
     }
 }
 

package/bundle/packages/rln/dist/keystore/keystore.js

@@ -17,7 +17,6 @@ import { Logger } from '../../../utils/dist/logger/index.js';
 import { sha256 } from '../../../../node_modules/ethereum-cryptography/esm/sha256.js';
 import { bytesToUtf8 } from '../../../../node_modules/ethereum-cryptography/esm/utils.js';
 import _ from '../../../../node_modules/lodash/lodash.js';
-import { buildBigIntFromUint8ArrayLE } from '../utils/bytes.js';
 import { keccak256Checksum, decryptEipKeystore } from './cipher.js';
 import { isKeystoreValid, isCredentialValid } from './schema_validator.js';
 import { __exports as lib } from '../../../../_virtual/index.js';
@@ -164,14 +163,16 @@ class Keystore {
         try {
             const str = bytesToUtf8(bytes);
             const obj = JSON.parse(str);
-            // TODO: add runtime validation of nwaku credentials
+            const idCommitmentLE = Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idCommitment", []));
+            const idTrapdoorLE = Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idTrapdoor", []));
+            const idNullifierLE = Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idNullifier", []));
+            const idSecretHashLE = Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idSecretHash", []));
             return {
                 identity: {
-                    IDCommitment: Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idCommitment", [])),
-                    IDTrapdoor: Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idTrapdoor", [])),
-                    IDNullifier: Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idNullifier", [])),
-                    IDCommitmentBigInt: buildBigIntFromUint8ArrayLE(Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idCommitment", []))),
-                    IDSecretHash: Keystore.fromArraylikeToBytes(_.get(obj, "identityCredential.idSecretHash", []))
+                    IDCommitment: idCommitmentLE,
+                    IDTrapdoor: idTrapdoorLE,
+                    IDNullifier: idNullifierLE,
+                    IDSecretHash: idSecretHashLE
                 },
                 membership: {
                     treeIndex: _.get(obj, "treeIndex"),
@@ -208,13 +209,16 @@ class Keystore {
     // follows nwaku implementation
     // https://github.com/waku-org/nwaku/blob/f05528d4be3d3c876a8b07f9bb7dfaae8aa8ec6e/waku/waku_keystore/protocol_types.nim#L98
     static fromIdentityToBytes(options) {
+        function toLittleEndian(bytes) {
+            return new Uint8Array(bytes).reverse();
+        }
         return utf8ToBytes(JSON.stringify({
             treeIndex: options.membership.treeIndex,
             identityCredential: {
-                idCommitment: Array.from(options.identity.IDCommitment),
-                idNullifier: Array.from(options.identity.IDNullifier),
-                idSecretHash: Array.from(options.identity.IDSecretHash),
-                idTrapdoor: Array.from(options.identity.IDTrapdoor)
+                idCommitment: Array.from(toLittleEndian(options.identity.IDCommitment)),
+                idNullifier: Array.from(toLittleEndian(options.identity.IDNullifier)),
+                idSecretHash: Array.from(toLittleEndian(options.identity.IDSecretHash)),
+                idTrapdoor: Array.from(toLittleEndian(options.identity.IDTrapdoor))
             },
             membershipContract: {
                 chainId: options.membership.chainId,

package/bundle/packages/rln/dist/utils/bytes.js

@@ -16,12 +16,12 @@ function concatenate(...input) {
     }
     return result;
 }
-// Adapted from https://github.com/feross/buffer
-function checkInt(buf, value, offset, ext, max, min) {
-    if (value > max || value < min)
-        throw new RangeError('"value" argument is out of bounds');
-    if (offset + ext > buf.length)
-        throw new RangeError("Index out of range");
+function switchEndianness(bytes) {
+    return new Uint8Array(bytes.reverse());
+}
+function buildBigIntFromUint8ArrayBE(bytes) {
+    // Interpret bytes as big-endian
+    return bytes.reduce((acc, byte) => (acc << 8n) + BigInt(byte), 0n);
 }
 function writeUIntLE(buf, value, offset, byteLength, noAssert) {
     value = +value;
@@ -39,9 +39,6 @@ function writeUIntLE(buf, value, offset, byteLength, noAssert) {
     }
     return buf;
 }
-function buildBigIntFromUint8ArrayLE(bytes) {
-    return bytes.reduce((acc, byte, i) => acc + BigInt(byte) * (1n << (8n * BigInt(i))), 0n);
-}
 /**
  * Fills with zeros to set length
  * @param array little endian Uint8Array
@@ -55,5 +52,12 @@ function zeroPadLE(array, length) {
     }
     return result;
 }
+// Adapted from https://github.com/feross/buffer
+function checkInt(buf, value, offset, ext, max, min) {
+    if (value > max || value < min)
+        throw new RangeError('"value" argument is out of bounds');
+    if (offset + ext > buf.length)
+        throw new RangeError("Index out of range");
+}
 
-export { buildBigIntFromUint8ArrayLE, concatenate, writeUIntLE, zeroPadLE };
+export { buildBigIntFromUint8ArrayBE, concatenate, switchEndianness, writeUIntLE, zeroPadLE };