feat(rln-relay-v2): update C FFI api's and serde #2385
Conversation
rymnc
force-pushed
the
update-rln-ffi-bindings
branch
2 times, most recently
from
4b327c1
to
e0fd50d
Compare
|
You can find the image built from this PR at Built from 4d72fa9 |
rymnc
force-pushed
the
update-rln-ffi-bindings
branch
from
e0fd50d
to
7bfd461
Compare
| when defined(rln_v2): | ||
| const | ||
| # pre-processed "rln/waku-rln-relay/v2.0.0" to array[32, byte] | ||
| DefaultRlnIdentifier*: RlnIdentifier = [114, 108, 110, 47, 119, 97, 107, 117, |
There was a problem hiding this comment.
imo this is the best way to have the DefaultRlnIdentifier stored - if we do decide to have it as a command line argument for rln-relay we can process it into an array of 32 bytes at that point.
| @@ -53,33 +53,60 @@ proc encodeLengthPrefix*(input: openArray[byte]): seq[byte] = | |||
| output = concat(@len, @input) | |||
| return output | |||
|
|
|||
| proc serialize*(idSecretHash: IdentitySecretHash, | |||
| when defined(rln_v2): | |||
There was a problem hiding this comment.
had to dupe the function because args are different
There was a problem hiding this comment.
have the hunch that having rlnv2 behind a flag will end up being more problematic than using a branch (where we completely replace v1 with v2)
There was a problem hiding this comment.
IMO, having a flag is much clearer and less error-prone than a separate branch.
| when defined(rln_v2): | ||
| ## the external nullifier used for the generation of the `proof` (derived from poseidon([epoch, rln_identifier])) | ||
| externalNullifier*: ExternalNullifier | ||
| else: | ||
| ## the epoch used for the generation of the `proof` | ||
| epoch*: Epoch | ||
| ## Application specific RLN Identifier | ||
| rlnIdentifier*: RlnIdentifier | ||
|
|
||
| when defined(rln_v2): | ||
| type ExtendedRateLimitProof* = ref object of RateLimitProof | ||
| ## epoch is the epoch for which the proof is generated | ||
| epoch*: Epoch | ||
| ## rlnIdentifier is the identifier of the RLN application | ||
| rlnIdentifier*: RlnIdentifier |
There was a problem hiding this comment.
The distinction between the two is made because now, RateLimitProof contains the proof with the public inputs/outputs. epoch and rlnIdentifier are no longer public inputs, and must not be confused this way. ExtendedRateLimitProof is what should be sent on the wire.
| when defined(rln_v2): | ||
| type ExtendedRateLimitProof* = ref object of RateLimitProof | ||
| ## epoch is the epoch for which the proof is generated | ||
| epoch*: Epoch |
There was a problem hiding this comment.
why is the epoch inside ExtendedRateLimitProof instead of RateLimitProof. I mean, both rln v1 and v2 should have this field, so? same for rlnIdentifier?
There was a problem hiding this comment.
the difference between rln-v1 and v2 also includes that the epoch and rlnIdentifier is not passed into the circuit, instead the externalNullifier is directly passed in after computing it from the epoch and rlnIdentifier. the RateLimitProof struct properly defines this behaviour, and ExtendedRateLimitProof includes them so that a receiving node can ensure the epoch is not too old, and that the rlnIdentifier is the same as they one they're validating for.
There was a problem hiding this comment.
I have the impression that the ExtendedRateLimitProof type is not needed. Could we only keep the RateLimitProof with the following?
## the epoch used for the generation of the `proof`
epoch*: Epoch
## Application specific RLN Identifier
rlnIdentifier*: RlnIdentifier
when defined(rln_v2):
## the external nullifier used for the generation of the `proof` (derived from poseidon([epoch, rln_identifier]))
externalNullifier*: ExternalNullifier
I think a good strategy to ease the future migration to rln_v2 is to keep a clear separation. Having such inheritance is some kind of messy IMO. Let me know if this is not feasible by another constraint that I'm missing.
There was a problem hiding this comment.
I understand the concern, and I thought of this approach initially as well. however, RateLimitProof and ExtendedRateLimitProof serve 2 entirely different functions, and it's better to separate their concerns.
| @@ -53,33 +53,60 @@ proc encodeLengthPrefix*(input: openArray[byte]): seq[byte] = | |||
| output = concat(@len, @input) | |||
| return output | |||
|
|
|||
| proc serialize*(idSecretHash: IdentitySecretHash, | |||
| when defined(rln_v2): | |||
There was a problem hiding this comment.
have the hunch that having rlnv2 behind a flag will end up being more problematic than using a branch (where we completely replace v1 with v2)
| @@ -15,7 +18,7 @@ const | |||
| # inputs of the membership contract constructor | |||
| # TODO may be able to make these constants private and put them inside the waku_rln_relay_utils | |||
| const | |||
| MembershipFee* = 1000000000000000.u256 | |||
| MembershipFee* = 0.u256 | |||
There was a problem hiding this comment.
Shall we indicate which units are being considered either in the const name or in a comment? Maybe wei?
| # Custom data types defined for waku rln relay ------------------------- | ||
| type RateLimitProof* = object | ||
| type RateLimitProof* = object of RootObj |
There was a problem hiding this comment.
I think we don't need inheritance as per my comment below.
| @@ -53,33 +53,60 @@ proc encodeLengthPrefix*(input: openArray[byte]): seq[byte] = | |||
| output = concat(@len, @input) | |||
| return output | |||
|
|
|||
| proc serialize*(idSecretHash: IdentitySecretHash, | |||
| when defined(rln_v2): | |||
There was a problem hiding this comment.
IMO, having a flag is much clearer and less error-prone than a separate branch.
| when defined(rln_v2): | ||
| type ExtendedRateLimitProof* = ref object of RateLimitProof | ||
| ## epoch is the epoch for which the proof is generated | ||
| epoch*: Epoch |
There was a problem hiding this comment.
I have the impression that the ExtendedRateLimitProof type is not needed. Could we only keep the RateLimitProof with the following?
## the epoch used for the generation of the `proof`
epoch*: Epoch
## Application specific RLN Identifier
rlnIdentifier*: RlnIdentifier
when defined(rln_v2):
## the external nullifier used for the generation of the `proof` (derived from poseidon([epoch, rln_identifier]))
externalNullifier*: ExternalNullifier
I think a good strategy to ease the future migration to rln_v2 is to keep a clear separation. Having such inheritance is some kind of messy IMO. Let me know if this is not feasible by another constraint that I'm missing.
|
|
||
| return output | ||
| when defined(rln_v2): |
There was a problem hiding this comment.
Would it be possible to only have one encode implementation if we only had RateLimitProof?
| rlnIdentifier*: RlnIdentifier | ||
| when defined(rln_v2): | ||
| ## the external nullifier used for the generation of the `proof` (derived from poseidon([epoch, rln_identifier])) | ||
| externalNullifier*: ExternalNullifier |
There was a problem hiding this comment.
Is is possible to use a different attribute name? externalNullifier is also part of the ProofMetadata and it is more difficult to follow its references.
There was a problem hiding this comment.
it's the same field/value though
| ## input_buffer is serialized as input_data as [ id_key<32> | path_elements<Vec<32>> | identity_path_index<Vec<1>> | x<32> | epoch<32> | rln_identifier<32> ] | ||
| ## input_buffer is serialized as input_data as [ identity_secret<32> | user_message_limit<32> | message_id<32> | path_elements<Vec<32>> | identity_path_index<Vec<1>> | x<32> | external_nullifier<32> ] |
There was a problem hiding this comment.
We are changing the param definition but this actually depends on the zerokit/rln implementation being used, right?
There was a problem hiding this comment.
yes, I can add a note which mentions what is the serde pattern for v1 and v2 respectively if you'd like.
rymnc
force-pushed
the
update-rln-ffi-bindings
branch
from
15bd0b2
to
561a967
Compare
Description
This PR introduces the changes required for serde, and creates a new type ExtendedRateLimitProof which contains all metadata required to verify a proof.
Changes
ExtendedRateLimitProofwhich includesepochandrlnIdentifierin calculation of theexternalNullifierIssue
closes #2377 and #2378