Add functionality for decryption of sender ciphertexts

Author: iamalwaysuncomfortable

sdk/tests/data/records.ts

@@ -1,3 +1,15 @@
+/// V1 credits.aleo record.
+const CREDITS_RECORD_V1 = "{ owner: aleo12a4wll9ax6w5355jph0dr5wt2vla5sss2t4cnch0tc3vzh643v8qcfvc7a.private, microcredits: 1000000u64.private, _nonce: 3634848344765318974603121890869676775499130077229666060613233255327643175219group.public, _version: 1u8.public }";
+
+/// Record view key for the V1 credits.aleo record.
+const CREDITS_RECORD_VIEW_KEY = "5237002936265850807349726649400053591020997883662246784632368923777787639801field";
+
+/// Sender ciphertext of the credits.aleo record.
+const CREDITS_SENDER_CIPHERTEXT = "1182590395568997043375432557467567048762179115999922880321493200728848194550field";
+
+/// Sender plaintext of the credits.aleo record.
+const CREDITS_SENDER_PLAINTEXT = "aleo1j92w9mhqznj2hvufad796y8suykjppk7f6n6xmncmktfm95vggzqx4sjlh";
+
 // Ciphertext records
 const RECORD_CIPHERTEXT_STRING = "record1qyqsqpe2szk2wwwq56akkwx586hkndl3r8vzdwve32lm7elvphh37rsyqyxx66trwfhkxun9v35hguerqqpqzqrtjzeu6vah9x2me2exkgege824sd8x2379scspmrmtvczs0d93qttl7y92ga0k0rsexu409hu3vlehe3yxjhmey3frh2z5pxm5cmxsv4un97q";
 const RECORD_CIPHERTEXT_STRING_COPY = "record1qyqsqpe2szk2wwwq56akkwx586hkndl3r8vzdwve32lm7elvphh37rsyqyxx66trwfhkxun9v35hguerqqpqzqrtjzeu6vah9x2me2exkgege824sd8x2379scspmrmtvczs0d93qttl7y92ga0k0rsexu409hu3vlehe3yxjhmey3frh2z5pxm5cmxsv4un97q";
@@ -16,6 +28,10 @@ const VIEW_KEY_STRING = "AViewKey1ccEt8A2Ryva5rxnKcAbn7wgTaTsb79tzkKHFpeKsm9NX";
 const RECORD_VIEW_KEY_STRING = "4445718830394614891114647247073357094867447866913203502139893824059966201724field";
 
 export {
+    CREDITS_RECORD_V1,
+    CREDITS_RECORD_VIEW_KEY,
+    CREDITS_SENDER_CIPHERTEXT,
+    CREDITS_SENDER_PLAINTEXT,
     RECORD_CIPHERTEXT_STRING,
     RECORD_CIPHERTEXT_STRING_COPY,
     RECORD_CIPHERTEXT_STRING_NOT_OWNED,

sdk/tests/network-client.test.ts

@@ -368,7 +368,7 @@ describe("NodeConnection", () => {
             }
         });
 
-        it.only("should throw for a malformed tx ID", async () => {
+        it("should throw for a malformed tx ID", async () => {
             const connection = new AleoNetworkClient(host);
             try {
                 await connection.waitForTransactionConfirmation(invalidTx);

sdk/tests/wasm.test.ts

@@ -12,6 +12,10 @@ import {
     beaconPrivateKeyString
 } from "./data/account-data.js";
 import {
+    CREDITS_RECORD_V1,
+    CREDITS_RECORD_VIEW_KEY,
+    CREDITS_SENDER_CIPHERTEXT,
+    CREDITS_SENDER_PLAINTEXT,
     RECORD_CIPHERTEXT_STRING,
     RECORD_CIPHERTEXT_STRING_COPY,
     RECORD_CIPHERTEXT_STRING_NOT_OWNED,
@@ -20,6 +24,7 @@ import {
     RECORD_VIEW_KEY_STRING,
     VIEW_KEY_STRING,
 } from "./data/records.js";
+import process from "node:process";
 
 describe('WASM Objects', () => {
     describe('Address', () => {
@@ -483,6 +488,29 @@ describe('WASM Objects', () => {
             // Ensure the decrypted record is the same as the plaintext
             expect(decryptedRecords[0].toString()).equal(recordPlaintextCopy.toString());
         });
+        it('can decrypt sender ciphertexts', () => {
+            // Get the private key corresponding to the record.
+            const private_key = PrivateKey.from_string(<string>process.env["PUZZLE_PK"]);
+            const view_key = ViewKey.from_private_key(private_key);
+
+            // Construct the record and the sender ciphertext.
+            const record = RecordPlaintext.fromString(CREDITS_RECORD_V1);
+            const record_view_key = Field.fromString(CREDITS_RECORD_VIEW_KEY);
+            const sender_ciphertext = Field.fromString(CREDITS_SENDER_CIPHERTEXT);
+
+            // Decrypt the sender ciphertext using the record object and ensure it's from the expected address.
+            let sender = record.decryptSender(view_key, sender_ciphertext);
+            expect(sender.to_string()).to.equal(CREDITS_SENDER_PLAINTEXT);
+
+            // Decrypt the sender ciphertext using the EncryptionToolkit function and ensure it's from the expected address.
+            sender = EncryptionToolkit.decryptSender(view_key, record, sender_ciphertext);
+            expect(sender.to_string()).to.equal(CREDITS_SENDER_PLAINTEXT);
+
+            // Decrypt the sender ciphertext using only the record view key and ensure it's from the expected address.
+            sender = EncryptionToolkit.decryptSenderWithRvk(record_view_key, sender_ciphertext);
+            expect(sender.to_string()).to.equal(CREDITS_SENDER_PLAINTEXT);
+        })
+        it('can decryption')
     });
     describe('VerifyingKey', () => {
         it('can get the number of constraints', async () => {

wasm/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@provablehq/wasm",
   "version": "0.9.8",
-  "type": "module",
+  "type":"module",
   "description": "SnarkVM WASM binaries with javascript bindings",
   "collaborators": [
     "The Provable Team"

wasm/src/record/record_plaintext.rs

@@ -17,6 +17,7 @@
 use crate::{
     Address,
     Credits,
+    EncryptionToolkit,
     GraphKey,
     Plaintext,
     PrivateKey,
@@ -266,6 +267,18 @@ impl RecordPlaintext {
         Group::from_string(&self.nonce()).unwrap().scalar_multiply(&view_key.to_scalar()).to_x_coordinate()
     }
 
+    /// Decrypt the sender ciphertext associated with the record.
+    ///
+    /// @param {ViewKey} view_key View key associated with the record.
+    /// @param {Field} sender_ciphertext Sender ciphertext associated with the record.
+    ///
+    /// @returns {Address} address of the sender.
+    #[wasm_bindgen(js_name = decryptSender)]
+    pub fn decrypt_sender(&self, view_key: &ViewKey, sender_ciphertext: &Field) -> Result<Address, String> {
+        let record_view_key = self.record_view_key(view_key);
+        EncryptionToolkit::decrypt_sender_with_rvk(&record_view_key, sender_ciphertext)
+    }
+
     /// Clone the RecordPlaintext WASM object.
     ///
     /// @returns {RecordPlaintext} A clone of the RecordPlaintext WASM object.
@@ -319,6 +332,11 @@ impl FromStr for RecordPlaintext {
 mod tests {
     use super::*;
 
+    use crate::{
+        types::native::{PrivateKeyNative, ViewKeyNative},
+        utilities::test::{CREDITS_RECORD_V1, CREDITS_SENDER_CIPHERTEXT, CREDITS_SENDER_PLAINTEXT, get_env},
+    };
+
     use wasm_bindgen_test::*;
 
     const CREDITS_RECORD: &str = r"{
@@ -449,4 +467,19 @@ mod tests {
         );
         assert!(RecordPlaintext::from_string(invalid_bech32).is_err());
     }
+
+    #[wasm_bindgen_test]
+    fn test_record_decrypt_record_sender_ciphertext() {
+        // Get the private key corresponding to the record.
+        let private_key = PrivateKeyNative::from_str(&get_env("PUZZLE_PK")).unwrap();
+        let view_key = ViewKey::from(ViewKeyNative::try_from(private_key).unwrap());
+
+        // Construct the record and the sender ciphertext.
+        let record = RecordPlaintext::from_string(CREDITS_RECORD_V1).unwrap();
+        let sender_ciphertext = Field::from_string(CREDITS_SENDER_CIPHERTEXT).unwrap();
+
+        // Decrypt the sender ciphertext and ensure it's from the expected address.
+        let sender = record.decrypt_sender(&view_key, &sender_ciphertext).unwrap();
+        assert_eq!(sender.to_string(), CREDITS_SENDER_PLAINTEXT.to_string());
+    }
 }

wasm/src/utilities/encrypt.rs

@@ -15,24 +15,27 @@
 // along with the Provable SDK library. If not, see <https://www.gnu.org/licenses/>.
 
 use crate::{
+    Address,
     Field,
     Group,
     RecordCiphertext,
     RecordPlaintext,
     Transition,
     ViewKey,
     types::native::{
+        AddressNative,
         CiphertextEntryNative,
         CurrentNetwork,
         FieldNative,
+        GroupNative,
         PlaintextEntryNative,
         PlaintextNative,
         RecordPlaintextNative,
         U8Native,
     },
 };
 use rayon::iter::{IntoParallelIterator, IntoParallelRefIterator, ParallelIterator};
-use snarkvm_console::prelude::{FromFields, Itertools, Network, Visibility};
+use snarkvm_console::prelude::{FromField, FromFields, Itertools, Network, One, Visibility};
 
 use indexmap::IndexMap;
 use wasm_bindgen::prelude::wasm_bindgen;
@@ -253,12 +256,58 @@ impl EncryptionToolkit {
 
         Ok(owned_records)
     }
+
+    /// Decrypt the sender ciphertext associated with a record.
+    ///
+    /// @param {ViewKey} view_key View key associated with the record.
+    /// @param {RecordPlaintext} record Record plaintext associated with a sender.
+    /// @param {Field} sender_ciphertext Sender ciphertext associated with the record.
+    ///
+    /// @returns {Address} address of the sender.
+    #[wasm_bindgen(js_name = decryptSender)]
+    pub fn decrypt_sender(
+        view_key: &ViewKey,
+        record: &RecordPlaintext,
+        sender_ciphertext: &Field,
+    ) -> Result<Address, String> {
+        let record_view_key = record.record_view_key(view_key);
+        Self::decrypt_sender_with_rvk(&record_view_key, sender_ciphertext)
+    }
+
+    /// Decrypt the sender ciphertext associated with the record with the record view key.
+    ///
+    /// @param {Field} record_view_key Record view key associated with the record.
+    /// @param {Field} sender_ciphertext Sender ciphertext associated with the record.
+    ///
+    /// @return {Address} the address of the sender.
+    #[wasm_bindgen(js_name = decryptSenderWithRvk)]
+    pub fn decrypt_sender_with_rvk(record_view_key: &Field, sender_ciphertext: &Field) -> Result<Address, String> {
+        let encryption_domain = <CurrentNetwork as Network>::encryption_domain();
+        let record_view_key = FieldNative::from(record_view_key);
+        let randomizer =
+            <CurrentNetwork as Network>::hash_psd4(&[encryption_domain, record_view_key, FieldNative::one()])
+                .map_err(|e| e.to_string())?;
+        let address_x_coordinate = FieldNative::from(sender_ciphertext) - randomizer;
+        Ok(Address::from(AddressNative::new(
+            GroupNative::from_field(&address_x_coordinate).map_err(|e| e.to_string())?,
+        )))
+    }
 }
 
 #[cfg(test)]
 mod tests {
     use super::*;
 
+    use crate::{
+        test::{
+            CREDITS_RECORD_V1,
+            CREDITS_RECORD_VIEW_KEY,
+            CREDITS_SENDER_CIPHERTEXT,
+            CREDITS_SENDER_PLAINTEXT,
+            get_env,
+        },
+        types::native::{PrivateKeyNative, ViewKeyNative},
+    };
     use std::str::FromStr;
     use wasm_bindgen_test::wasm_bindgen_test;
 
@@ -366,4 +415,25 @@ mod tests {
         assert_eq!(owned_records.len(), 1, "Only one owned record should be returned");
         assert_eq!(owned_records[0].to_string(), OWNER_CIPHERTEXT, "Owned record should match the owner's ciphertext");
     }
+
+    #[wasm_bindgen_test]
+    fn test_encryption_toolkit_decrypt_record_sender_ciphertext() {
+        // Get the private key corresponding to the record.
+        let private_key = PrivateKeyNative::from_str(&get_env("PUZZLE_PK")).unwrap();
+        let view_key = ViewKey::from(ViewKeyNative::try_from(private_key).unwrap());
+
+        // Construct the record and the sender ciphertext.
+        let record = RecordPlaintext::from_string(CREDITS_RECORD_V1).unwrap();
+        let record_view_key = Field::from_string(CREDITS_RECORD_VIEW_KEY).unwrap();
+        let sender_ciphertext = Field::from_string(CREDITS_SENDER_CIPHERTEXT).unwrap();
+
+        // Decrypt the sender ciphertext using the view and record and ensure it's from the expected address.
+        let credits_sender = CREDITS_SENDER_PLAINTEXT.to_string();
+        let sender = EncryptionToolkit::decrypt_sender(&view_key, &record, &sender_ciphertext).unwrap();
+        assert_eq!(sender.to_string(), credits_sender);
+
+        // Decrypt the sender ciphertext using only the record view key and ensure it's from the expected address.
+        let sender = EncryptionToolkit::decrypt_sender_with_rvk(&record_view_key, &sender_ciphertext).unwrap();
+        assert_eq!(sender.to_string(), credits_sender);
+    }
 }

wasm/src/utilities/test/programs.rs

@@ -18,6 +18,20 @@ use crate::{array, object};
 
 use js_sys::{Array, Object};
 
+/// V1 credits.aleo record.
+pub const CREDITS_RECORD_V1: &str = "{ owner: aleo12a4wll9ax6w5355jph0dr5wt2vla5sss2t4cnch0tc3vzh643v8qcfvc7a.private, microcredits: 1000000u64.private, _nonce: 3634848344765318974603121890869676775499130077229666060613233255327643175219group.public, _version: 1u8.public }";
+
+/// Record view key for the V1 credits.aleo record.
+pub const CREDITS_RECORD_VIEW_KEY: &str =
+    "5237002936265850807349726649400053591020997883662246784632368923777787639801field";
+
+/// Sender ciphertext of the credits.aleo record.
+pub const CREDITS_SENDER_CIPHERTEXT: &str =
+    "1182590395568997043375432557467567048762179115999922880321493200728848194550field";
+
+/// Sender plaintext of the credits.aleo record.
+pub const CREDITS_SENDER_PLAINTEXT: &str = "aleo1j92w9mhqznj2hvufad796y8suykjppk7f6n6xmncmktfm95vggzqx4sjlh";
+
 pub const HELLO_PROGRAM: &str = r#"program hello.aleo;
 function main:
     input r0 as u32.public;