@zkpassport/sdk 0.9.1 → 0.11.0-beta.1

package/dist/esm/{chunk-OOHOBXGU.js → chunk-6FIXE2II.js}

@@ -5,7 +5,7 @@ import {
   GOOGLE_APP_ATTEST_RSA_ROOT_KEY_HASH,
   ZKPASSPORT_ANDROID_APP_ID_HASH,
   ZKPASSPORT_IOS_APP_ID_HASH
-} from "./chunk-VJZDMGW3.js";
+} from "./chunk-JG37KYXW.js";
 
 // src/public-input-checker.ts
 import {
@@ -18,7 +18,7 @@ import {
   getCommitmentOutFromIntegrityProof,
   getCommitmentInFromDisclosureProof,
   getMerkleRootFromDSCProof,
-  getCurrentDateFromIntegrityProof,
+  getCurrentDateFromDisclosureProof,
   DisclosedData,
   formatName,
   getNumberOfPublicInputs,
@@ -992,12 +992,6 @@ var PublicInputChecker = class {
         };
       }
       const EXPECTED_ENVIRONMENT = "production";
-      console.log("facematchCommittedInputs.environment", facematchCommittedInputs.environment);
-      console.log("EXPECTED_ENVIRONMENT", EXPECTED_ENVIRONMENT);
-      console.log(
-        "facematchCommittedInputs.environment !== EXPECTED_ENVIRONMENT",
-        facematchCommittedInputs.environment !== EXPECTED_ENVIRONMENT
-      );
       if (facematchCommittedInputs.environment !== EXPECTED_ENVIRONMENT) {
         console.warn("Invalid facematch environment, it should be production");
         isCorrect = false;
@@ -1010,7 +1004,7 @@ var PublicInputChecker = class {
           }
         };
       }
-      if (facematchCommittedInputs.appId !== ZKPASSPORT_IOS_APP_ID_HASH && facematchCommittedInputs.appId !== ZKPASSPORT_ANDROID_APP_ID_HASH) {
+      if (facematchCommittedInputs.appIdHash !== ZKPASSPORT_IOS_APP_ID_HASH && facematchCommittedInputs.appIdHash !== ZKPASSPORT_ANDROID_APP_ID_HASH) {
         console.warn(
           "Invalid facematch app id hash, the attestation should be coming from the ZKPassport app"
         );
@@ -1019,7 +1013,7 @@ var PublicInputChecker = class {
           ...queryResultErrors.facematch,
           eq: {
             expected: `${ZKPASSPORT_IOS_APP_ID_HASH} (iOS) or ${ZKPASSPORT_ANDROID_APP_ID_HASH} (Android)`,
-            received: facematchCommittedInputs.appId,
+            received: facematchCommittedInputs.appIdHash,
             message: "Invalid facematch app id hash, the attestation should be coming from the ZKPassport app"
           }
         };
@@ -1027,6 +1021,36 @@ var PublicInputChecker = class {
     }
     return { isCorrect, queryResultErrors };
   }
+  static async checkCurrentDate(circuitName, proofData, validity, queryResultErrors) {
+    const currentTime = /* @__PURE__ */ new Date();
+    const today = new Date(
+      currentTime.getFullYear(),
+      currentTime.getMonth(),
+      currentTime.getDate(),
+      0,
+      0,
+      0,
+      0
+    );
+    const currentDate = getCurrentDateFromDisclosureProof(proofData);
+    const todayToCurrentDate = today.getTime() - currentDate.getTime();
+    const expectedDifference = validity ? validity * 1e3 : DEFAULT_VALIDITY * 1e3;
+    const actualDifference = today.getTime() - (today.getTime() - expectedDifference);
+    let isCorrect = true;
+    if (todayToCurrentDate >= actualDifference) {
+      console.warn("The date used to check the validity of the ID falls out of the validity period");
+      isCorrect = false;
+      if (!queryResultErrors[circuitName]) {
+        queryResultErrors[circuitName] = {};
+      }
+      queryResultErrors[circuitName].date = {
+        expected: `Difference: ${validity} seconds`,
+        received: `Difference: ${Math.round(todayToCurrentDate / 1e3)} seconds`,
+        message: "The date used to check the validity of the ID falls out of the validity period"
+      };
+    }
+    return { isCorrect, queryResultErrors };
+  }
   static async checkPublicInputs(domain, proofs, queryResult, validity, scope) {
     let commitmentIn;
     let commitmentOut;
@@ -1155,14 +1179,9 @@ var PublicInputChecker = class {
         if (!!committedInputs?.compare_age || !!committedInputs?.compare_age_evm) {
           const ageCommittedInputs = committedInputs?.compare_age ?? committedInputs?.compare_age_evm;
           const ageParameterCommitment = isForEVM ? await getAgeEVMParameterCommitment(
-            ageCommittedInputs.currentDateTimestamp,
-            ageCommittedInputs.minAge,
-            ageCommittedInputs.maxAge
-          ) : await getAgeParameterCommitment(
-            ageCommittedInputs.currentDateTimestamp,
             ageCommittedInputs.minAge,
             ageCommittedInputs.maxAge
-          );
+          ) : await getAgeParameterCommitment(ageCommittedInputs.minAge, ageCommittedInputs.maxAge);
           if (!paramCommitments.includes(ageParameterCommitment)) {
             console.warn("This proof does not verify the age");
             isCorrect = false;
@@ -1186,16 +1205,12 @@ var PublicInputChecker = class {
           const birthdateCommittedInputs = committedInputs?.compare_birthdate ?? committedInputs?.compare_birthdate_evm;
           const birthdateParameterCommitment = isForEVM ? await getDateEVMParameterCommitment(
             ProofType.BIRTHDATE,
-            birthdateCommittedInputs.currentDateTimestamp,
             birthdateCommittedInputs.minDateTimestamp,
-            birthdateCommittedInputs.maxDateTimestamp,
-            0
+            birthdateCommittedInputs.maxDateTimestamp
           ) : await getDateParameterCommitment(
             ProofType.BIRTHDATE,
-            birthdateCommittedInputs.currentDateTimestamp,
             birthdateCommittedInputs.minDateTimestamp,
-            birthdateCommittedInputs.maxDateTimestamp,
-            0
+            birthdateCommittedInputs.maxDateTimestamp
           );
           if (!paramCommitments.includes(birthdateParameterCommitment)) {
             console.warn("This proof does not verify the birthdate");
@@ -1225,7 +1240,6 @@ var PublicInputChecker = class {
             expiryCommittedInputs.maxDateTimestamp
           ) : await getDateParameterCommitment(
             ProofType.EXPIRY_DATE,
-            expiryCommittedInputs.currentDateTimestamp,
             expiryCommittedInputs.minDateTimestamp,
             expiryCommittedInputs.maxDateTimestamp
           );
@@ -1429,7 +1443,11 @@ var PublicInputChecker = class {
         if (!!committedInputs?.exclusion_check_sanctions || !!committedInputs?.exclusion_check_sanctions_evm) {
           const sanctionsBuilder = await SanctionsBuilder.create();
           const exclusionCheckSanctionsCommittedInputs = committedInputs?.exclusion_check_sanctions ?? committedInputs?.exclusion_check_sanctions_evm;
-          const exclusionCheckSanctionsParameterCommitment = isForEVM ? await sanctionsBuilder.getSanctionsEvmParameterCommitment() : await sanctionsBuilder.getSanctionsParameterCommitment();
+          const exclusionCheckSanctionsParameterCommitment = isForEVM ? await sanctionsBuilder.getSanctionsEvmParameterCommitment(
+            exclusionCheckSanctionsCommittedInputs.isStrict
+          ) : await sanctionsBuilder.getSanctionsParameterCommitment(
+            exclusionCheckSanctionsCommittedInputs.isStrict
+          );
           if (!paramCommitments.includes(exclusionCheckSanctionsParameterCommitment)) {
             console.warn("This proof does not verify the exclusion from the sanction lists");
             isCorrect = false;
@@ -1461,12 +1479,12 @@ var PublicInputChecker = class {
           const facematchParameterCommitment = isForEVM ? await getFacematchEvmParameterCommitment(
             BigInt(facematchCommittedInputs.rootKeyLeaf),
             facematchCommittedInputs.environment === "development" ? 0n : 1n,
-            BigInt(facematchCommittedInputs.appId),
+            BigInt(facematchCommittedInputs.appIdHash),
             facematchCommittedInputs.mode === "regular" ? 1n : 2n
           ) : await getFacematchParameterCommitment(
             BigInt(facematchCommittedInputs.rootKeyLeaf),
             facematchCommittedInputs.environment === "development" ? 0n : 1n,
-            BigInt(facematchCommittedInputs.appId),
+            BigInt(facematchCommittedInputs.appIdHash),
             facematchCommittedInputs.mode === "regular" ? 1n : 2n
           );
           if (!paramCommitments.includes(facematchParameterCommitment)) {
@@ -1538,24 +1556,6 @@ var PublicInputChecker = class {
           };
         }
         commitmentOut = getCommitmentOutFromIntegrityProof(proofData);
-        const currentDate = getCurrentDateFromIntegrityProof(proofData);
-        const todayToCurrentDate = today.getTime() - currentDate.getTime();
-        const expectedDifference = validity ? validity * 1e3 : DEFAULT_VALIDITY * 1e3;
-        const actualDifference = today.getTime() - (today.getTime() - expectedDifference);
-        if (todayToCurrentDate >= actualDifference) {
-          console.warn(
-            `The date used to check the validity of the ID is older than the validity period`
-          );
-          isCorrect = false;
-          queryResultErrors.data_check_integrity = {
-            ...queryResultErrors.data_check_integrity,
-            date: {
-              expected: `Difference: ${validity} seconds`,
-              received: `Difference: ${Math.round(todayToCurrentDate / 1e3)} seconds`,
-              message: "The date used to check the validity of the ID is older than the validity period"
-            }
-          };
-        }
       } else if (proof.name === "disclose_bytes") {
         commitmentIn = getCommitmentInFromDisclosureProof(proofData);
         if (commitmentIn !== commitmentOut) {
@@ -1608,6 +1608,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsDisclose,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "disclose",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "compare_age") {
@@ -1629,7 +1640,6 @@ var PublicInputChecker = class {
         const paramCommitment = getParameterCommitmentFromDisclosureProof(proofData);
         const committedInputs = proof.committedInputs?.compare_age;
         const calculatedParamCommitment = await getAgeParameterCommitment(
-          committedInputs.currentDateTimestamp,
           committedInputs.minAge,
           committedInputs.maxAge
         );
@@ -1655,6 +1665,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsAge,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "age",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "compare_birthdate") {
@@ -1677,7 +1698,6 @@ var PublicInputChecker = class {
         const committedInputs = proof.committedInputs?.compare_birthdate;
         const calculatedParamCommitment = await getDateParameterCommitment(
           ProofType.BIRTHDATE,
-          committedInputs.currentDateTimestamp,
           committedInputs.minDateTimestamp,
           committedInputs.maxDateTimestamp,
           0
@@ -1710,6 +1730,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsBirthdate,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "birthdate",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "compare_expiry") {
@@ -1732,7 +1763,6 @@ var PublicInputChecker = class {
         const committedInputs = proof.committedInputs?.compare_expiry;
         const calculatedParamCommitment = await getDateParameterCommitment(
           ProofType.EXPIRY_DATE,
-          committedInputs.currentDateTimestamp,
           committedInputs.minDateTimestamp,
           committedInputs.maxDateTimestamp
         );
@@ -1764,6 +1794,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsExpiryDate,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "expiry_date",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "exclusion_check_nationality") {
@@ -1820,6 +1861,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsNationalityExclusion,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "nationality",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "exclusion_check_issuing_country") {
@@ -1876,6 +1928,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsIssuingCountryExclusion,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "issuing_country",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "inclusion_check_nationality") {
@@ -1932,6 +1995,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsNationalityInclusion,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "nationality",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "inclusion_check_issuing_country") {
@@ -1988,6 +2062,17 @@ var PublicInputChecker = class {
           ...queryResultErrorsIssuingCountryInclusion,
           ...queryResultErrorsScope
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "issuing_country",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "bind") {
@@ -2014,12 +2099,25 @@ var PublicInputChecker = class {
           ...queryResultErrors,
           ...queryResultErrorsBind
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "bind",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name === "exclusion_check_sanctions") {
         const sanctionsBuilder = await SanctionsBuilder.create();
         const exclusionCheckSanctionsCommittedInputs = proof.committedInputs?.exclusion_check_sanctions;
-        const calculatedParamCommitment = await sanctionsBuilder.getSanctionsParameterCommitment();
+        const calculatedParamCommitment = await sanctionsBuilder.getSanctionsParameterCommitment(
+          exclusionCheckSanctionsCommittedInputs.isStrict
+        );
         const paramCommittment = getParameterCommitmentFromDisclosureProof(proofData);
         if (paramCommittment !== calculatedParamCommitment) {
           console.warn(
@@ -2048,6 +2146,17 @@ var PublicInputChecker = class {
           ...queryResultErrors,
           ...queryResultErrorsSanctionsExclusion
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "sanctions",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       } else if (proof.name?.startsWith("facematch") && !proof.name?.endsWith("_evm")) {
@@ -2056,7 +2165,7 @@ var PublicInputChecker = class {
         const calculatedParamCommitment = await getFacematchParameterCommitment(
           BigInt(facematchCommittedInputs.rootKeyLeaf),
           facematchCommittedInputs.environment === "development" ? 0n : 1n,
-          BigInt(facematchCommittedInputs.appId),
+          BigInt(facematchCommittedInputs.appIdHash),
           facematchCommittedInputs.mode === "regular" ? 1n : 2n
         );
         if (paramCommittment !== calculatedParamCommitment) {
@@ -2077,6 +2186,17 @@ var PublicInputChecker = class {
           ...queryResultErrors,
           ...queryResultErrorsFacematch
         };
+        const { isCorrect: isCorrectCurrentDate, queryResultErrors: queryResultErrorsCurrentDate } = await this.checkCurrentDate(
+          "facematch",
+          proofData,
+          validity ?? DEFAULT_VALIDITY,
+          queryResultErrors
+        );
+        isCorrect = isCorrect && isCorrectCurrentDate;
+        queryResultErrors = {
+          ...queryResultErrors,
+          ...queryResultErrorsCurrentDate
+        };
         uniqueIdentifier = getNullifierFromDisclosureProof(proofData).toString(10);
         uniqueIdentifierType = getNullifierTypeFromDisclosureProof(proofData);
       }