# DID:merkle

In [70]:
from pymerkle import MerkleTree
from multibase import encode, decode

from hdwallet import BIP44HDWallet
from hdwallet.cryptocurrencies import EthereumMainnet
from hdwallet.derivations import BIP44Derivation
from hdwallet.utils import generate_mnemonic
from typing import Optional

import hashlib
from multihash import multihash
import base58

import json

## Generate Holder Wallets

### Juliet

In [71]:
# Generate english mnemonic words
MNEMONIC: str = generate_mnemonic(language="english", strength=128)
# Secret passphrase/password for mnemonic
PASSPHRASE: Optional[str] = None  # "meherett"

# Initialize Ethereum mainnet BIP44HDWallet
bip44_hdwallet_juliet: BIP44HDWallet = BIP44HDWallet(cryptocurrency=EthereumMainnet)
# Get Ethereum BIP44HDWallet from mnemonic
bip44_hdwallet_juliet.from_mnemonic(
    mnemonic=MNEMONIC, language="english", passphrase=PASSPHRASE
)
# Clean default BIP44 derivation indexes/paths
bip44_hdwallet_juliet.clean_derivation()

print("Juliet")
print("Mnemonic:", bip44_hdwallet_juliet.mnemonic())
print("Base HD Path:  m/44'/60'/0'/0/{address_index}", "\n")

Juliet
Mnemonic: hungry liberty strategy moon pig arena sheriff chef local cattle shaft gun
Base HD Path:  m/44'/60'/0'/0/{address_index} 



### Federico

In [72]:
# Generate english mnemonic words
MNEMONIC: str = generate_mnemonic(language="english", strength=128)
# Secret passphrase/password for mnemonic
PASSPHRASE: Optional[str] = None  # "meherett"

# Initialize Ethereum mainnet BIP44HDWallet
bip44_hdwallet_federico: BIP44HDWallet = BIP44HDWallet(cryptocurrency=EthereumMainnet)
# Get Ethereum BIP44HDWallet from mnemonic
bip44_hdwallet_federico.from_mnemonic(
    mnemonic=MNEMONIC, language="english", passphrase=PASSPHRASE
)
# Clean default BIP44 derivation indexes/paths
bip44_hdwallet_federico.clean_derivation()

print("Norma")
print("Mnemonic:", bip44_hdwallet_federico.mnemonic())
print("Base HD Path:  m/44'/60'/0'/0/{address_index}", "\n")

Norma
Mnemonic: arena term garlic figure unhappy lobster split figure balance host fit note
Base HD Path:  m/44'/60'/0'/0/{address_index} 



### Mario

In [73]:
# Generate english mnemonic words
MNEMONIC: str = generate_mnemonic(language="english", strength=128)
# Secret passphrase/password for mnemonic
PASSPHRASE: Optional[str] = None  # "meherett"

# Initialize Ethereum mainnet BIP44HDWallet
bip44_hdwallet_mario: BIP44HDWallet = BIP44HDWallet(cryptocurrency=EthereumMainnet)
# Get Ethereum BIP44HDWallet from mnemonic
bip44_hdwallet_mario.from_mnemonic(
    mnemonic=MNEMONIC, language="english", passphrase=PASSPHRASE
)
# Clean default BIP44 derivation indexes/paths
bip44_hdwallet_mario.clean_derivation()

print("Norma")
print("Mnemonic:", bip44_hdwallet_mario.mnemonic())
print("Base HD Path:  m/44'/60'/0'/0/{address_index}", "\n")

Norma
Mnemonic: crisp diamond lottery absent cheap sand size skill share enforce chaos stomach
Base HD Path:  m/44'/60'/0'/0/{address_index} 



### Generate public keys for Juliet, Federico and Mario

In [74]:
# Get Ethereum BIP44HDWallet information's from address index

juliet_pubkeys = {"hd-path":[],"pubkey":[]}
federico_pubkeys = {"hd-path":[],"pubkey":[]}
mario_pubkeys = {"hd-path":[],"pubkey":[]}

for address_index in range(20):
    # Derivation from Ethereum BIP44 derivation path
    bip44_derivation: BIP44Derivation = BIP44Derivation(
        cryptocurrency=EthereumMainnet, account=0, change=False, address=address_index
    )
    # Drive Ethereum BIP44HDWallet
    bip44_hdwallet_juliet.from_path(path=bip44_derivation)
    bip44_hdwallet_federico.from_path(path=bip44_derivation)
    bip44_hdwallet_mario.from_path(path=bip44_derivation)
    
    # Add hd-key-index and public key to arrays
    juliet_pubkeys["pubkey"].append(bip44_hdwallet_juliet.public_key())
    federico_pubkeys["pubkey"].append(bip44_hdwallet_federico.public_key())
    mario_pubkeys["pubkey"].append(bip44_hdwallet_mario.public_key())
    
    # Clean derivation indexes/paths
    bip44_hdwallet_juliet.clean_derivation()
    bip44_hdwallet_federico.clean_derivation()
    bip44_hdwallet_mario.clean_derivation()

In [75]:
juliet_pubkeys['pubkey']

['03d83c8bebd78a43720635dcdd023b7001e6203e0a81c4e38772093bd4fddf361f',
 '0239ed70f47459a98917bc28059452589b64005fd19e9d5fe5e1e83a221f72bea1',
 '027e2859cda8aa146f198c054f1357d4116f619c5e1044a9722391c19463dd5ec9',
 '0244a6d5ed9924b42cd9b541697c073b8f184506ab97d674e56bdbfb12b29d7b0c',
 '0372ded6c3445125661497c597d2939785d9dfb4ff5688ac5b51972b6d4aba3e38',
 '03a10e8adef37eeb8a69716212ce6ee4beb257751abcca848d27d20dd79abddbb7',
 '02c191cbd23ac61a8819f6270199292f36daf9478fbf47eb81bd95b5ac5e724d74',
 '0367c058a00ee997cc2810f78d8602dc7ec41a1223d5610bd1287501e87556b5ed',
 '02a48308ca929ff19b859956d0d3b694697685637e7d35a5a2998e49ef6f6e58cf',
 '02fcce10a317a85d1e677c35a16fa5b7e07cd374ed20e11eef857df5a1aa0532c3',
 '024273aa67c47df634bc6a0265d55282ac6a2721cc251ced13e0be788a7aa0e818',
 '03dc35be05d30b8907cf75bccb8220efc3ca4e07c22afa590d5395c44965ba1cf7',
 '0214212b088e6a5b3a0e19396a87e1d99953f3aacf70d8e6c0f36cf143e39d0957',
 '0351950db7755e1effc7a95e745014c0480393e33fb1783cd8832bcf2892feb38b',
 '0313

In [76]:
federico_pubkeys['pubkey']

['0341507db88903ee88bf42394ac251f0938fe8a1d8340ca0b6a5efba2ad40444c6',
 '0298e870aa347c5d0ee35ad434b3aed21e5b9ac7c2ede52144baeaafa68bf858bd',
 '02db58a5dff7af7abaaada7f6c02711c0714290b9f0ec0c7fb66010edc8dbe13e9',
 '020f1db58eb342a43ee7ec40f29f9f050bb27d3e90fe908df226c387bc4fe1712b',
 '03ef6bc168533c80880b2f8f2ed656e0ddb43ea1e7aed9695f99b566189263ff12',
 '035b8a85fd5c4ebdfd150229a662264658abe17023769449bef0ca5d06ca1c4894',
 '03e523380bd4894569be045f9427ae0d7280148d34b7b2618806c0b73d2e699c68',
 '03bc4107d08cac8545b95c3c48486b7599b1165adccd86e6a7e3510aa15c65713d',
 '033e21b34f9d18682aab44c6a273c95d97a5fc1669296d5527a1b036dfea891d65',
 '022224b6b4e08a27ee3e9be121fe700229fd57f5d0aa86be174acc3f57d1c90025',
 '02b1dd2baa5c706c02960527bfdf49f3809ae295a17d95e0b096ad9f7945b0a9b5',
 '0262e9e3cf34d9861d9132c80cde3e846b9ac58b17d67bb7a2e706ef12a56b5b90',
 '0349dfbcdcb2b7c02e48db85891462ef6b9bd13d90d6287b79872cc1503d3e2bb0',
 '026b7257b60817af6b1705e6c02d881a1df02c5610512f68bce05b8afb866848a8',
 '02c8

In [77]:
mario_pubkeys['pubkey']

['02eca3b250cdde29fd2160f8da77169a28f62f64c097307984ee348fc461dd12d2',
 '024c684477a98a6adc8c94c0431cb5c7cc5883843d80d944fcc8b5920af20f7303',
 '02db382620064cb2e4f7727baaf56fd01884355ebaba9be22c352efc3183aa1c41',
 '036092ed9e89bae96672a4a94a1d5be11d9332c17a8d4feaef9a8f4f3ed1fcd94c',
 '025223252db9a6a8a1e7243e42c3d0db61bcd8b55f8d2faf995e9b649b1e56ebb8',
 '02ba8fe013ec556d60a075647761df7eaf4439310cf8a0c51a12a1786060ce55b3',
 '037af6944f2be215f3eccb84d8483bc74dd77c8cbe93ca3b9aa80f5d4afded02ed',
 '03d0762824976e68fba2eb71a3bfdd2c65ebb8b97bb5f2ba5faa03e01da8a1d2bc',
 '033d32f2c068669f5add32331e621a18994944f0b8e6a0bb24b09a0c2e8f3c791d',
 '03f5df4c81147d9b0a310dab3f1d9e6a5696b08d516a434be2754498c4cb8f415c',
 '03e42ccee21d110bd7663d85682ef5559be84b52e3c132fa227e9a1c08cbed947e',
 '035399ca2f30901e21cc31a5d263c54e5adb44fa611da82687e93c59ae0e559d42',
 '022d4d98518d43de1aa7f4441831658f5d24bfac11718c949fd3c8c9a1fabab54b',
 '035cbe35195afaf51cb18867781f49cd62017055fad677f11bbdf59bf4744ed0f4',
 '0249

## Generate Array of pubkeys

In [78]:
group_pubkeys = juliet_pubkeys['pubkey'] + mario_pubkeys['pubkey'] + federico_pubkeys['pubkey']

In [79]:
group_pubkeys

['03d83c8bebd78a43720635dcdd023b7001e6203e0a81c4e38772093bd4fddf361f',
 '0239ed70f47459a98917bc28059452589b64005fd19e9d5fe5e1e83a221f72bea1',
 '027e2859cda8aa146f198c054f1357d4116f619c5e1044a9722391c19463dd5ec9',
 '0244a6d5ed9924b42cd9b541697c073b8f184506ab97d674e56bdbfb12b29d7b0c',
 '0372ded6c3445125661497c597d2939785d9dfb4ff5688ac5b51972b6d4aba3e38',
 '03a10e8adef37eeb8a69716212ce6ee4beb257751abcca848d27d20dd79abddbb7',
 '02c191cbd23ac61a8819f6270199292f36daf9478fbf47eb81bd95b5ac5e724d74',
 '0367c058a00ee997cc2810f78d8602dc7ec41a1223d5610bd1287501e87556b5ed',
 '02a48308ca929ff19b859956d0d3b694697685637e7d35a5a2998e49ef6f6e58cf',
 '02fcce10a317a85d1e677c35a16fa5b7e07cd374ed20e11eef857df5a1aa0532c3',
 '024273aa67c47df634bc6a0265d55282ac6a2721cc251ced13e0be788a7aa0e818',
 '03dc35be05d30b8907cf75bccb8220efc3ca4e07c22afa590d5395c44965ba1cf7',
 '0214212b088e6a5b3a0e19396a87e1d99953f3aacf70d8e6c0f36cf143e39d0957',
 '0351950db7755e1effc7a95e745014c0480393e33fb1783cd8832bcf2892feb38b',
 '0313

## Merkle-tree

### Generate merkle-tree

In [80]:
tree = MerkleTree()

# Populate tree with some records
for data in group_pubkeys:
    tree.encrypt(data)

In [81]:
tree.serialize()

{'hash_type': 'sha256',
 'encoding': 'utf_8',
 'security': True,
 'hashes': ['9b00f3dd4a4009b833bf57e13c2df608ee288e6156edd8ffc0c75be3c50add9b',
  'd687344890c0655581b86378f1a609e3e99031597cfbefa9434563136ea2481b',
  'd339d7be966f11614fd130ca6493f5189bff2d60d38efb64a0fb0ea4babf737e',
  '4fa54c0225eb4e467b8b703ccb7a06dcd43745af817fb8a3f0a5def774d447da',
  '841d297cc2d531ab6f3ce94b65e79a3e774f69c7e8cfe678ac417d8404acfc6d',
  '730d7c27af0f92bf4b2116f4527e823ab5e6c923833087a558b3ce82a5f34d5e',
  '81db6887953389f47d00458615204dd5e7f7091c48a2a6d02f800d81dfc5fe36',
  'b60e991988823da94ed451c7fe32523ba80cb8adc6be7a0a71a3f04a922e0b2c',
  '542186cd9900b415ec96a6237afad434d115c9c8192851000803e8ee9ecb231a',
  'ce3ffa0400e0b85ecd442013619cca896311cb8e60927010b51152ede47b5462',
  'e7c9a8f7db11cc6f1c28c1753f22858a4d02bce9c0d8852131d68f33be3046f2',
  'c9a19a9f41b1a8d85f9d51c2db3bddf14151df30e11310fd2f37211f258aa644',
  'c6a0d56ce2d2088a28e7eee6f0ddcf620fea238a11f7ce6e93ca0bb6dcd9bd1b',
  '5ebcdc470140

In [82]:
root_hash = tree.get_root_hash()
print(root_hash)
root_hash_hex = tree.get_root_hash().hex()
print(root_hash_hex)
root_hash_test = bytes.fromhex(root_hash_hex)
print(root_hash_test)

b'2d311adc67b04502c75d38137c0fadb1a421876cd4e4a148462f9fd27acbd2e3'
32643331316164633637623034353032633735643338313337633066616462316134323138373663643465346131343834363266396664323761636264326533
b'2d311adc67b04502c75d38137c0fadb1a421876cd4e4a148462f9fd27acbd2e3'


In [83]:
print(tree)


 └─2d311adc67b04502c75d38137c0fadb1a421876cd4e4a148462f9fd27acbd2e3
     ├──9a151e7d976a5c0faf38181d27d53965f7b3b65aba2890dc970abdc45e585898
     │    ├──7f67c845666b3eab9f72e3c12cf7c02d677758ede51915ff3fd0044b20a86f36
     │    │    ├──1ce81f0082ec6bf7b0a4ccd55b8ccfb5cbd4ee06715a1305b9c26ced3581eeb9
     │    │    │    ├──a9194f4227c683b65035aa39fe6f1a7290c4506dd4c44a2b52b44fe9e6c47731
     │    │    │    │    ├──c043f37f34cb464b599ed3d0096b26cbc89e0403ceef02e31f17716cb65b0ae5
     │    │    │    │    │    ├──9b00f3dd4a4009b833bf57e13c2df608ee288e6156edd8ffc0c75be3c50add9b
     │    │    │    │    │    └──d687344890c0655581b86378f1a609e3e99031597cfbefa9434563136ea2481b
     │    │    │    │    └──a6f0dc4ffde91372f442eda41e20669171ce73a32281eb6cae08afb16f581297
     │    │    │    │         ├──d339d7be966f11614fd130ca6493f5189bff2d60d38efb64a0fb0ea4babf737e
     │    │    │    │         └──4fa54c0225eb4e467b8b703ccb7a06dcd43745af817fb8a3f0a5def774d447da
     │    │    │    └──731b9119

### Multibase DID merkle-tree root encoding

In [84]:
root_hash_encoded = base58.b58encode(bytes.fromhex(root_hash.decode('utf8')))

In [85]:
root_hash_encoded

b'43QmxFTrroJaV447BRu9TzfA5xWXSV5wC3StUbnFhp9x'

In [86]:
root_hash_decoded = base58.b58decode(root_hash_encoded).hex()

In [87]:
root_hash_decoded

'2d311adc67b04502c75d38137c0fadb1a421876cd4e4a148462f9fd27acbd2e3'

## Create Merkle DID

In [88]:
didmerkle = "did:merkle:" + root_hash_encoded.decode()

In [89]:
didmerkle

'did:merkle:43QmxFTrroJaV447BRu9TzfA5xWXSV5wC3StUbnFhp9x'

## Resolve DID

In [96]:
did_format_template = '''
{
  "@context": "https://www.w3.org/ns/did/v1",
  "id": "did:merkle:zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
'''
did_format_json = json.loads(did_format_template)
type(did_format_json)

dict

### Construct Deterministic DID Document

In [97]:
did_format_json["id"] = didmerkle

In [98]:
did_format_json

{'@context': 'https://www.w3.org/ns/did/v1',
 'id': 'did:merkle:43QmxFTrroJaV447BRu9TzfA5xWXSV5wC3StUbnFhp9x'}

# Issue Verifiable Credential to Holders

## VC Template

In [99]:
vc_format_template = '''
{
  "@context": [
    "https://www.w3.org/2018/credentials/v1",
    "https://www.w3.org/2018/credentials/examples/v1",
    "https://hackmd.io/@JoeAndrieu/Hk_2NMmfi/download"
  ],
  "type": [
    "VerifiableCredential"
  ],
  "issuer": "did:ex:italy",
  "issuanceDate": "2010-01-01T19:23:24Z",
  "credentialSubject": {
    "@context": "https://hackmd.io/@JoeAndrieu/r1ADDMQGs/download",
    "id": "did:merkle:zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV",
    "citizenship": "it"
  },
  "proof": {
    "type": "RsaSignature2018",
    "created": "2017-06-18T21:19:10Z",
    "proofPurpose": "assertionMethod",
    "verificationMethod": "did:ex:italy#key-1",
    "proof": "eyJhbGciOiJSUzI1NiIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..TCYt5XsITJX1CxPCT8yAV-TVkIEq_PbChOMqsLfRoPsnsgw5WEuts01mq-pQy7UJiN5mgRxD-WUcX16dUEMGlv50aqzpqh4Qktb3rk-BuQy72IFLOqV0G_zS245-kronKb78cPN25DGlcTwLtjPAYuNzVBAh4vGHSrQyHUdBBPM"
  }
}
'''
vc_format_template_json = json.loads(vc_format_template)
type(vc_format_template_json)

dict

## Create DID of Issuer

In [100]:
import asyncio
import didkit
import json

jwk = didkit.generate_ed25519_key()
did = didkit.key_to_did("key", jwk)

### Issue credential

In [107]:
credential = {
  "@context": "https://www.w3.org/2018/credentials/v1",
  "id": "http://example.org/credentials/3731",
  "type": [
    "VerifiableCredential"
  ],
  "issuer": did,
  "issuanceDate": "2022-09-30T11:20:50Z",
  "credentialSubject": {
    "@context": "https://github.com/WebOfTrustInfo/rwot11-the-hague/raw/master/draft-documents/didmerkle/context",
    "id": didmerkle,
    "citizenship": "IT"
  }
}

async def main():
    signed_credential = await didkit.issue_credential(
        json.dumps(credential),
        json.dumps({}),
        jwk)
    print(json.loads(signed_credential))

await(main())

unknown context https://github.com/WebOfTrustInfo/rwot11-the-hague/raw/master/draft-documents/didmerkle/context


DIDKitException: loading remote context failed

In [34]:
import asyncio
import didkit
import json

jwk = didkit.generate_ed25519_key()
did = didkit.key_to_did("key", jwk)
credential = {
  "@context": [
    "https://www.w3.org/2018/credentials/v1",
    "https://www.w3.org/2018/credentials/examples/v1",
    "https://hackmd.io/@JoeAndrieu/Hk_2NMmfi/download"
  ],
  "type": [
    "VerifiableCredential"
  ],
  "issuer": did,
  "issuanceDate": "2010-01-01T19:23:24Z",
  "credentialSubject": {
    "@context": "https://hackmd.io/@JoeAndrieu/r1ADDMQGs/download",
    "id": didmerkle,
    "citizenship": "it"
  },
  "proof": {
    "type": "RsaSignature2018",
    "created": "2017-06-18T21:19:10Z",
    "proofPurpose": "assertionMethod",
    "verificationMethod": "did:ex:italy#key-1",
    "proof": "eyJhbGciOiJSUzI1NiIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..TCYt5XsITJX1CxPCT8yAV-TVkIEq_PbChOMqsLfRoPsnsgw5WEuts01mq-pQy7UJiN5mgRxD-WUcX16dUEMGlv50aqzpqh4Qktb3rk-BuQy72IFLOqV0G_zS245-kronKb78cPN25DGlcTwLtjPAYuNzVBAh4vGHSrQyHUdBBPM"
  }
}

async def main():
    signed_credential = await didkit.issue_credential(
        json.dumps(credential),
        json.dumps({}),
        jwk)
    print(json.loads(signed_credential))

await(main())

unknown context https://hackmd.io/@JoeAndrieu/Hk_2NMmfi/download


DIDKitException: loading remote context failed

### Prove and verify encryption of `Juliet Pubkey 5`

In [65]:
# TODO: Generate hashes from pubkeys that can be used in merkle-trees
m = hashlib.sha256()
m.update(juliet_pubkeys['pubkey'][4].encode())
m.hexdigest().encode()

b'7f59ef987e293d9275913cc5c16d9f9a5a2a0d2408eac86b0ee5b734d8a6131e'

In [66]:
challenge = tree.serialize()["hashes"][5].encode()
proof = tree.generate_audit_proof(challenge)
proof.verify()

True

In [67]:
proof


    ----------------------------------- PROOF ------------------------------------

    uuid        : 064b2eb4-40a1-11ed-86de-0242ac110002

    timestamp   : 1664529585 (Fri Sep 30 09:19:45 2022)
    provider    : c2a337d8-40a0-11ed-86de-0242ac110002

    hash-type   : SHA256
    encoding    : UTF-8
    security    : ACTIVATED

    
       [0]   +1   7d9ba80c4c9d18459f0d24626b0ef0d28570951b12575bc3aab176e0660cf664
       [1]   +1   7acb25b3abe8409f5214ac003018c859e1034f7a0a697437a3096ada6d7f5787
       [2]   -1   da179c6013e96cdbafcd86f642f8ff26b417ec4b4f67e0549eb44f5f08101ff1
       [3]   -1   e266f6765db79bf1a5c0a798f5593d7ea3792700d3a2146ff548c94e44ddfec2
       [4]   +1   2c03288a873edf49a093b992072be86509527af5b43d4f4cd578d20cfbf532d6
       [5]   +1   cacf4fe24bba125ac74993705ee43533372e8ff7e9034949bb971b0bc4fc52cb
       [6]   -1   d1880ea59ac550100ec29e4d40814ef6fb80e3027820469662000e8638c60f8f

    offset      : 2

    commitment  : 705b48a99a4308193c646927c25d9238ae4c6b7d133

# Save current tree state

In [359]:
state = tree.get_root_hash()

# Append further leaves

In [363]:
for data in [b'corge', b'grault', b'garlpy']:
    tree.encrypt(data)

# Prove and verify saved state

In [364]:
proof = tree.generate_consistency_proof(challenge=state)
print(proof)
proof.verify()


    ----------------------------------- PROOF ------------------------------------

    uuid        : 616e79a4-3f75-11ed-a675-0242ac110002

    timestamp   : 1664400889 (Wed Sep 28 21:34:49 2022)
    provider    : fcef7358-3f73-11ed-a675-0242ac110002

    hash-type   : SHA256
    encoding    : UTF-8
    security    : ACTIVATED

    
       [0]   +1   7618cd8c59e5f61ce0316dcb4444254fd313446e83495597986b2e4a67b42966
       [1]   +1   416eed5ffe8892e9771acca4f8bfd2c079291e301f9364ce8103ddd337cc5e6a
       [2]   -1   0570c973d66716843c3d29166667da6ce4aa99c9439d8762582abb56d3df8c9d

    offset      : 1

    commitment  : 62778d4e041a000aa17e1ba26024d4a418c8a04ee15ad2ee6c462cf96d4c0fda

    -------------------------------- END OF PROOF --------------------------------



True