72/WAKU-RLN-KEYSTORE: add new RFC

[jimstir]

New RFC for 72/WAKU-RLN-KEYSTORE

[kaiserd]

Thank you :). Converting this to a draft PR for now. Feel free to open it for review, once you feel it is ready for a first review round.

(Just glancing over it, I saw a few spots that do not follow sembr.)

[kaiserd]

@jimstir see my comment here: #629
The directory structure is mixed up.

Also, you named this document waku-keystore.md. It should be XX/README.md
As discussed, feel free to allocate the next new RFC number, and also name this PR accordingly please.
In this case, it would be 72/
Generally, just check the existing RFCs, issues and PRs, and assign the next free number.
If deemed necessary in the future, we might come up with a different number allocation process, but for now, this is the simplest and straightforward.

[jimstir]

@kaiserd Created this draft in the old repo and did not notice. I deleted the keystore file from the push notification repo and changed the name in this repo.

[rymnc]

hey @jimstir let me know if this is ready for another pass! thanks

[jimstir]

hey @jimstir let me know if this is ready for another pass! thanks

@rymnc I am ready for another round of feedback, thank you.

[rymnc]

Thanks, left a few comments

[rymnc]

Suggested change

	IDCommitmentBigInt: buildBigIntFromUint8Array(
	new Uint8Array([
	112, 216, 27, 89, 188, 135, 203, 19, 168, 211, 117, 13, 231, 135, 229,
	58, 94, 20, 246, 8, 33, 65, 238, 37, 112, 97, 65, 241, 255, 93, 171,
	15,
	])
	)

[jimstir]

Does the identityCredential belong in the decryption section? I recently moved it from the input section. @rymnc

[rymnc]

its part of the input actually, it isn't used to decrypt the keystore.

[jimstir]

@rymc Yes, I see now, so I forgot to add contractId to the membershipHash creation, which made me a little confused. I changed it to include the four attributes, instead of three previously, here and here

[rymnc]

Added some comments ! thanks

[rymnc]

does this hashFunction refer to the hash function used by the rln protocol, or by the keystore? it is necessary to differentiate between the two because we use sha256 to generate the keys for the multiple credentials in the keystore, and poseidon in the protocol which will not change anytime soon. if we do decide to move from poseidon to a different hash function, that will be reflected in the keystore version field, which we will update and ensure the rfc has the reference to it for other implementers as well.

[jimstir]

@rymnc clarified where poseidon is being used in the test vector section. Also clarified for identity_commitment here.

[rymnc]

LGTM, minor changes, but looks good to merge after they have been resolved. Thanks @jimstir !!

[rymnc]

Suggested change

	The `WakuCredential` will store values used for encryting and decrypting user's keystores.
	The `WakuCredential` will store values used for encrypting and decrypting user's keystores.

[rymnc]

Suggested change

	- it MAY use [SHA256](https://www.rfc-editor.org/rfc/rfc4634.txt) as the hash function
	- it SHOULD use [SHA256](https://www.rfc-editor.org/rfc/rfc4634.txt) as the hash function to derive the `membershipHash`

[rymnc]

Suggested change

	The `chainId` SHOULD be the blockchain identifier used for `membershipcontract`.
	The `chainId` SHOULD be the blockchain identifier used for `membershipcontract`. It uniquely defines the chain upon which the registration has occurred.

[rymnc]

refer to https://github.com/ethereum/EIPs/blob/master/EIPS/eip-155.md

[kaiserd]

LGTM. Thanks. Ready for merge.

[jimstir]

Continue discussion: waku-org/specs#2. The RFC process has been changed separating raw specs and the draft/stable specs into different repositories.