enforce reserved identifier for private pda

2026-05-08 17:19:45 +00:00 · 2026-04-24 18:00:54 -03:00 · 2026-04-24 18:00:54 -03:00 · e09cb6284e
commit e09cb6284e
parent 52992a124a
1 changed files with 10 additions and 2 deletions
--- a/program_methods/guest/src/bin/privacy_preserving_circuit.rs
+++ b/program_methods/guest/src/bin/privacy_preserving_circuit.rs
@ -528,6 +528,10 @@ fn compute_circuit_output(
                let Some((npk, identifier, shared_secret)) = private_keys_iter.next() else {
                    panic!("Missing private account key");
                };
+                assert_ne!(
+                    *identifier, PRIVATE_PDA_FIXED_IDENTIFIER,
+                    "Identifier must be different from {PRIVATE_PDA_FIXED_IDENTIFIER}. This is reserved for private PDA."
+                );

                let account_id = AccountId::from((npk, *identifier));

@ -633,7 +637,10 @@ fn compute_circuit_output(
                    panic!("Missing private account key");
                };

-                assert_eq!(*identifier, PRIVATE_PDA_FIXED_IDENTIFIER);
+                assert_eq!(
+                    *identifier, PRIVATE_PDA_FIXED_IDENTIFIER,
+                    "Identifier for private PDAs must be {PRIVATE_PDA_FIXED_IDENTIFIER}."
+                );

                let (new_nullifier, new_nonce) = if pre_state.is_authorized {
                    // Existing private PDA with authentication (like mask 1)
@ -689,7 +696,8 @@ fn compute_circuit_output(
                let mut post_with_updated_nonce = post_state;
                post_with_updated_nonce.nonce = new_nonce;

-                let commitment_post = Commitment::new(&pre_state.account_id, &post_with_updated_nonce);
+                let commitment_post =
+                    Commitment::new(&pre_state.account_id, &post_with_updated_nonce);

                let encrypted_account = EncryptionScheme::encrypt(
                    &post_with_updated_nonce,