docs(docs): Voter Ballot seems finished

Author: stevenj

.config/dictionaries/project.dic

@@ -1,6 +1,7 @@
 aarch
 abcz
 ABNF
+abnfb
 addrr
 addrs
 adminer
@@ -43,6 +44,7 @@ childs
 Chotivichit
 chrono
 cids
+cidv
 ciphertext
 ciphertexts
 Coap
@@ -191,7 +193,9 @@ moka
 MPMC
 msvc
 Multiaddr
+multicodec
 multiera
+multihash
 mutlisig
 mypy
 nanos
@@ -252,6 +256,7 @@ REMOVEDIR
 renameat
 Replayability
 Repr
+reqs
 reqwest
 retriggering
 ristretto

.markdownlint.jsonc

@@ -27,11 +27,11 @@
     // MD007/ul-indent - Unordered list indentation
     "MD007": {
         // Spaces for indent
-        "indent": 2,
+        "indent": 4,
         // Whether to indent the first level of the list
         "start_indented": false,
         // Spaces for first level indent (when start_indented is set)
-        "start_indent": 2
+        "start_indent": 4
     },
     // MD009/no-trailing-spaces - Trailing spaces
     "MD009": {

docs/src/architecture/08_concepts/signed_doc/cddl/aes_ctr_encrypted_block.cddl

@@ -0,0 +1,12 @@
+; AES-CTR encrypted data.
+; The Nonce/IV is the UUIDv7 `document_ver`.
+; This is the correct size, and has the necessary randomness properties.
+; The first block uses the `document_ver` the second `document_ver+1` and so on.
+; The document_ver is interpreted as a Big Endian 128bit integer for the purpose
+; of the addition.
+;
+; As the CTR is predictable, the blocks can be decrypted in parallel for maximum performance.
+
+
+; AES-CTR Encrypted Data Block
+aes-ctr-encrypted-block = bytes .size 16

docs/src/architecture/08_concepts/signed_doc/cddl/aes_ctr_encrypted_choices.cddl

@@ -0,0 +1,23 @@
+; Choices are constructed as a CBOR multidimensional array of the form:
+; `[ +[+choice] ]`
+; reflecting the choices in the rows and columns as present 1:1 in the encrypted
+; choices.
+;
+; This data is then compressed using `brotli` compression, and the result is encrypted
+; using AES-CTR and encoded as a sequence of blocks here.
+;
+; Data needs to be pre-compressed before encryption as encryption will make the data
+; incompressible.
+;
+; The Encryption Key is to be derived from the Voters catalyst key-chain and not to be
+; published.
+; Derivation *MUST* include the contest Document ID and Version, so that the same
+; encryption key is never used twice for different contests, but can still be re-derived
+; by a voter that holds their catalyst key-chain recovery keys.
+
+
+; Encrypted Voter Choices
+aes-ctr-encrypted-choices = +aes-ctr-encrypted-block
+
+; AES-CTR Encrypted Data Block
+aes-ctr-encrypted-block = bytes .size 16

docs/src/architecture/08_concepts/signed_doc/cddl/cbor_cid.cddl

@@ -0,0 +1,12 @@
+; CIDv1 ABNF Constrained for SHA2-256
+
+
+; CIDv1 ABNF Constrained for SHA2-256
+cbor-cid = '
+    cid = cidv1 codec-cbor sha2-256 digest-32 digest
+    cidv1 = %x00 %x01
+    codec-cbor = %x51
+    sha2-256 = %x12
+    digest-32 = %x20
+    digest = 32(%x00-FF)
+'

docs/src/architecture/08_concepts/signed_doc/cddl/chain.cddl

@@ -42,9 +42,19 @@ document_ver = uuid_v7
 
 ; Where a document can be located, must be a unique identifier.
 document_locator = {
-  "cid" => cid
+  "cid" : cid
 }
 
-; IPLD content identifier
-; TODO: add size limits if possible
-cid = #6.42(bytes)
+; IPLD content identifier.
+; Currently limited to SHA2-256 based CIDs.
+cid = #6.42(bytes .abnfb ("cid" .det cbor-cid ))
+
+; CIDv1 ABNF Constrained for SHA2-256
+cbor-cid = '
+    cid = cidv1 codec-cbor sha2-256 digest-32 digest
+    cidv1 = %x00 %x01
+    codec-cbor = %x51
+    sha2-256 = %x12
+    digest-32 = %x20
+    digest = 32(%x00-FF)
+'

docs/src/architecture/08_concepts/signed_doc/cddl/choices.cddl

@@ -0,0 +1,47 @@
+; Choices are an array of encrypted  or unencrypted choices.
+
+
+; Voters Choices.
+choices = [ 0, clear-choices ] /
+[ 1, elgamal-ristretto255-encrypted-choices ]
+
+; Universal Unencrypted Set of Choices
+clear-choices = ( +clear-choice )
+
+; Universal Unencrypted Choice
+clear-choice = int
+
+; elgamal/ristretto255 Encrypted Choices
+elgamal-ristretto255-encrypted-choices = [
+  [+ elgamal-ristretto255-encrypted-choice],
+  ? row-proof
+]
+
+; The elgamal encrypted ciphertext `(c1, c2)`.
+elgamal-ristretto255-encrypted-choice = [
+  c1: elgamal-ristretto255-group-element,
+  c2: elgamal-ristretto255-group-element,
+]
+
+; An individual Elgamal group element that composes the elgamal cipher text.
+elgamal-ristretto255-group-element = bytes .size 32
+
+; Universal Encrypted Row Proof
+row-proof = [0, zkproof-elgamal-ristretto255-unit-vector-with-single-selection ]
+
+zkproof-elgamal-ristretto255-unit-vector-with-single-selection = [ +zkproof-elgamal-ristretto255-unit-vector-with-single-selection-item, zkproof-ed25519-scalar ]
+
+; Proof that the row is a unit vector with a single selection.
+zkproof-elgamal-ristretto255-unit-vector-with-single-selection-item = ( zkproof-elgamal-announcement, ~elgamal-ristretto255-encrypted-choice, zkproof-ed25519-r-response )
+
+; ZK Proof Announcement values for Elgamal.
+zkproof-elgamal-announcement = ( zkproof-elgamal-group-element, zkproof-elgamal-group-element, zkproof-elgamal-group-element )
+
+; An individual Elgamal group element used in ZK Proofs.
+zkproof-elgamal-group-element = bytes .size 32
+
+; ZK Proof Response values for Ed25519.
+zkproof-ed25519-r-response = ( zkproof-ed25519-scalar, zkproof-ed25519-scalar, zkproof-ed25519-scalar )
+
+; An individual Ed25519 scalar used in ZK Proofs.
+zkproof-ed25519-scalar = bytes .size 32

docs/src/architecture/08_concepts/signed_doc/cddl/cid.cddl

@@ -0,0 +1,20 @@
+; IPLD content identifier.
+; Also known as an IPFS CID.
+; Currently limited to SHA2-256 based CIDs.
+; See: https://docs.ipfs.tech/concepts/content-addressing/#what-is-a-cid
+;      https://github.com/ipld/cid-cbor/
+
+
+; IPLD content identifier.
+; Currently limited to SHA2-256 based CIDs.
+cid = #6.42(bytes .abnfb ("cid" .det cbor-cid ))
+
+; CIDv1 ABNF Constrained for SHA2-256
+cbor-cid = '
+    cid = cidv1 codec-cbor sha2-256 digest-32 digest
+    cidv1 = %x00 %x01
+    codec-cbor = %x51
+    sha2-256 = %x12
+    digest-32 = %x20
+    digest = 32(%x00-FF)
+'

docs/src/architecture/08_concepts/signed_doc/cddl/clear_choice.cddl

@@ -0,0 +1,8 @@
+; An Choice Selection (clear/unencrypted).
+;
+; This can be a positive or negative integer, and is
+; constrained by the parameters of the contest.
+
+
+; Universal Unencrypted Choice
+clear-choice = int

docs/src/architecture/08_concepts/signed_doc/cddl/clear_choices.cddl

@@ -0,0 +1,11 @@
+; A Choice Selection (clear/unencrypted).
+;
+; This can be a positive or negative integer, and is
+; constrained by the parameters of the contest.
+
+
+; Universal Unencrypted Set of Choices
+clear-choices = ( +clear-choice )
+
+; Universal Unencrypted Choice
+clear-choice = int