UNPKG

@navigators-exploration-team/mina-mastermind

Version:

[![Integration tests](https://github.com/navigators-exploration-team/recursive-mastermind-zkApp/actions/workflows/ci.yml/badge.svg)](https://github.com/navigators-exploration-team/recursive-mastermind-zkApp/actions/workflows/ci.yml)

154 lines 8.71 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
import { Field, Poseidon, PublicKey, SelfProof, Signature, Struct, UInt8, ZkProgram, } from 'o1js'; import { Combination, Clue } from './utils.js'; export { StepProgram, PublicInputs, PublicOutputs, StepProgramProof }; /** * authPubKey and authSignature is used for the authenticity of the data transferred. It enables a p2p authenticated communication. */ class PublicInputs extends Struct({ authPubKey: PublicKey, authSignature: Signature, }) { } /** * @param `codeMasterId` and `codeBreakerId` should be same with the on-chain values of players. * @param `solutionHash` should also be same with the one on-chain value. * @param `lastCompressedGuess` and `lastcompressedClue` are the values obtained from the `makeGuess` and `giveClue` methods, respectively. * @param `turnCount` is the turn count of the game. Even turn counts represent the turns of code master and odd turn counts represent the turn of the code breaker. * @param `packedGuessHistory` is a compressed data that keeps all guesses done so far. * @param `packedClueHistory` is a compressed data that keeps all clues given so far. */ class PublicOutputs extends Struct({ codeMasterId: Field, codeBreakerId: Field, solutionHash: Field, lastCompressedGuess: Field, lastcompressedClue: Field, turnCount: UInt8, packedGuessHistory: Field, packedClueHistory: Field, }) { } const StepProgram = ZkProgram({ name: 'StepProgram', publicInput: PublicInputs, publicOutput: PublicOutputs, methods: { /** * Creates a new game by setting the **secret combination** and salt. You can think of this as base case of the recursion. * @param authInputs contains the public key and signature of the code master to verify the authenticity of the caller. * Signature message should be the concatenation of the **secret combination** digits and `salt`. * @param secretCombination secret combination to be solved by the codeBreaker. * @param salt the salt to be used in the hash function to prevent pre-image attacks. * @returns the proof of the new game and the public output. */ createGame: { privateInputs: [Combination, Field], async method(authInputs, secretCombination, salt) { secretCombination.validate(); authInputs.authSignature .verify(authInputs.authPubKey, [...secretCombination.digits, salt]) .assertTrue('Invalid signature!'); return { publicOutput: new PublicOutputs({ codeMasterId: Poseidon.hash(authInputs.authPubKey.toFields()), codeBreakerId: Field.from(0), solutionHash: Poseidon.hash([...secretCombination.digits, salt]), lastCompressedGuess: Field.from(0), lastcompressedClue: Field.from(0), turnCount: UInt8.from(1), packedGuessHistory: Field.from(0), packedClueHistory: Field.from(0), }), }; }, }, /** * Allows the codeBreaker to make a guess and then gives it to the codeMaster to provide a clue. * @param authInputs contains the public key and signature of the code breaker to verify the authenticity of the caller. * Signature message should be the concatenation of the `guessCombination` and `turnCount`. * @param previousClue the proof of the previous game state. It contains the last clue given by the codeMaster. * @param guessCombination the guess made by the codeBreaker. * @returns the proof of the updated game state and the public output. * The codeBreaker can only make a guess if it is their turn and the secret combination is not solved yet, and if they have not reached the limit number of attempts. */ makeGuess: { privateInputs: [SelfProof, Combination], async method(authInputs, previousClue, guessCombination) { previousClue.verify(); guessCombination.validate(); const turnCount = previousClue.publicOutput.turnCount.value; turnCount .isEven() .assertFalse('Please wait for the codeMaster to give you a clue!'); const computedCodebreakerId = Poseidon.hash(authInputs.authPubKey.toFields()); previousClue.publicOutput.codeBreakerId .equals(computedCodebreakerId) .or(turnCount.equals(1)) .assertTrue('You are not the codeBreaker of this game!'); authInputs.authSignature .verify(authInputs.authPubKey, [ ...guessCombination.digits, turnCount, ]) .assertTrue('Invalid signature!'); Clue.decompress(previousClue.publicOutput.lastcompressedClue) .isSolved() .assertFalse('You have already solved the secret combination!'); const packedGuessHistory = Combination.updateHistory(guessCombination, previousClue.publicOutput.packedGuessHistory, turnCount.sub(1).div(2)); return { publicOutput: new PublicOutputs({ ...previousClue.publicOutput, codeBreakerId: computedCodebreakerId, lastCompressedGuess: guessCombination.compress(), turnCount: previousClue.publicOutput.turnCount.add(1), packedGuessHistory, }), }; }, }, /** * Allows the codeMaster to give a clue to the codeBreaker based on the guess made. * @param authInputs contains the public key and signature of the code master to verify the authenticity of the caller. * Signature message should be the concatenation of the `secretCombination`, `salt`, and `turnCount`. * @param previousGuess the proof of the previous game state. It contains the last guess made by the codeBreaker. * @param secretCombination the secret combination to be solved by the codeBreaker. * @param salt the salt to be used in the hash function to prevent pre-image attacks. * @returns the proof of the updated game state and the public output. * The codeMaster can only give a clue if it is their turn and the secret combination is not solved yet, and if they have not reached the limit number of attempts. */ giveClue: { privateInputs: [SelfProof, Combination, Field], async method(authInputs, previousGuess, secretCombination, salt) { previousGuess.verify(); const turnCount = previousGuess.publicOutput.turnCount.value; turnCount .isEven() .and(turnCount.equals(0).not()) .assertTrue('Please wait for the codeBreaker to make a guess!'); previousGuess.publicOutput.codeMasterId.assertEquals(Poseidon.hash(authInputs.authPubKey.toFields()), 'Only the codeMaster of this game is allowed to give clue!'); previousGuess.publicOutput.solutionHash.assertEquals(Poseidon.hash([...secretCombination.digits, salt]), 'The secret combination is not compliant with the initial hash from game creation!'); authInputs.authSignature .verify(authInputs.authPubKey, [ ...secretCombination.digits, salt, turnCount, ]) .assertTrue('Invalid signature!'); const lastGuess = Combination.decompress(previousGuess.publicOutput.lastCompressedGuess); const clue = Clue.giveClue(lastGuess.digits, secretCombination.digits); const packedClueHistory = Clue.updateHistory(clue, previousGuess.publicOutput.packedClueHistory, turnCount.div(2).sub(1)); return { publicOutput: new PublicOutputs({ ...previousGuess.publicOutput, lastcompressedClue: clue.compress(), turnCount: previousGuess.publicOutput.turnCount.add(1), packedClueHistory, }), }; }, }, }, }); class StepProgramProof extends ZkProgram.Proof(StepProgram) { } //# sourceMappingURL=stepProgram.js.map