lssa-zkvm-testing/risc0-selective-privacy-poc/examples/mocked_components/sequencer/process_privacy_execution.rs

use core::types::PrivacyExecutionOutput;

use risc0_zkvm::Receipt;

use super::error::Error;
use super::MockedSequencer;

impl MockedSequencer {
    /// Processes a privacy execution request.
    /// Verifies the proof of the privacy execution and updates the state of the chain.
    pub fn process_privacy_execution(&mut self, receipt: Receipt) -> Result<(), Error> {
        // Parse the output of the "outer" program
        let output: PrivacyExecutionOutput = receipt.journal.decode().unwrap();

        // Reject in case the root used in the privacy execution is not the current root.
        if output.commitment_tree_root != self.get_commitment_tree_root() {
            return Err(Error::Generic);
        }

        // Reject in case the number of accounts pre states is different from the post states
        if output.public_accounts_pre.len() != output.public_accounts_post.len() {
            return Err(Error::Generic);
        }

        // Reject if the states of the public input accounts used in the inner execution do not
        // coincide with the on-chain state.
        for account in output.public_accounts_pre.iter() {
            let current_account = self.get_account(&account.address).ok_or(Error::Generic)?;
            if &current_account != account {
                return Err(Error::Generic);
            }
        }

        // Reject if the nullifiers of this privacy execution have already been published.
        if output
            .nullifiers
            .iter()
            .any(|nullifier| self.nullifier_set.contains(nullifier))
        {
            return Err(Error::Generic);
        }

        // Reject if the commitments have already been seen.
        if output
            .private_output_commitments
            .iter()
            .any(|commitment| self.commitment_tree.values().contains(commitment))
        {
            return Err(Error::Generic);
        }

        // Verify the proof of the privacy execution.
        // This includes a proof of the following statements
        // - Public inputs, public outputs, commitments and nullifiers are consistent with the
        //   execution of some program.
        // - The given nullifiers correctly correspond to commitments that currently belong to
        //   the commitment tree.
        // - The given commitments are correctly computed from valid accounts.
        nssa::verify_privacy_execution(receipt).map_err(|_| Error::Generic)?;

        // At this point the privacy execution is considered valid.
        //
        // Update the state of the public accounts with the post-state of this privacy execution
        output.public_accounts_post.into_iter().for_each(|account_post_state| {
            self.accounts.insert(account_post_state.address, account_post_state);
        });

        // Add all nullifiers to the nullifier set.
        self.nullifier_set.extend(output.nullifiers);

        // Add commitments to the commitment tree.
        for commitment in output.private_output_commitments.iter() {
            self.commitment_tree.add_value(*commitment);
        }

        Ok(())
    }
}
clippy 2025-07-19 19:12:56 -03:00			`use core::types::PrivacyExecutionOutput;`
add missing files 2025-07-18 10:29:41 -03:00
			`use risc0_zkvm::Receipt;`

add sequencer error 2025-07-19 22:31:25 -03:00			`use super::error::Error;`
add missing files 2025-07-18 10:29:41 -03:00			`use super::MockedSequencer;`

			`impl MockedSequencer {`
add comments 2025-07-18 16:42:55 -03:00			`/// Processes a privacy execution request.`
			`/// Verifies the proof of the privacy execution and updates the state of the chain.`
add sequencer error 2025-07-19 22:31:25 -03:00			`pub fn process_privacy_execution(&mut self, receipt: Receipt) -> Result<(), Error> {`
refactor 2025-07-19 18:08:57 -03:00			`// Parse the output of the "outer" program`
			`let output: PrivacyExecutionOutput = receipt.journal.decode().unwrap();`
add missing files 2025-07-18 10:29:41 -03:00
add comments 2025-07-18 16:42:55 -03:00			`// Reject in case the root used in the privacy execution is not the current root.`
refactor 2025-07-19 18:08:57 -03:00			`if output.commitment_tree_root != self.get_commitment_tree_root() {`
add sequencer error 2025-07-19 22:31:25 -03:00			`return Err(Error::Generic);`
add missing files 2025-07-18 10:29:41 -03:00			`}`

refactor 2025-07-19 18:08:57 -03:00			`// Reject in case the number of accounts pre states is different from the post states`
			`if output.public_accounts_pre.len() != output.public_accounts_post.len() {`
add sequencer error 2025-07-19 22:31:25 -03:00			`return Err(Error::Generic);`
add missing files 2025-07-18 10:29:41 -03:00			`}`

add comments 2025-07-18 16:42:55 -03:00			`// Reject if the states of the public input accounts used in the inner execution do not`
			`// coincide with the on-chain state.`
refactor 2025-07-19 18:08:57 -03:00			`for account in output.public_accounts_pre.iter() {`
add sequencer error 2025-07-19 22:31:25 -03:00			`let current_account = self.get_account(&account.address).ok_or(Error::Generic)?;`
add missing files 2025-07-18 10:29:41 -03:00			`if &current_account != account {`
add sequencer error 2025-07-19 22:31:25 -03:00			`return Err(Error::Generic);`
add missing files 2025-07-18 10:29:41 -03:00			`}`
			`}`

add comments 2025-07-18 16:42:55 -03:00			`// Reject if the nullifiers of this privacy execution have already been published.`
refactor 2025-07-19 18:08:57 -03:00			`if output`
			`.nullifiers`
add missing files 2025-07-18 10:29:41 -03:00			`.iter()`
			`.any(\|nullifier\| self.nullifier_set.contains(nullifier))`
			`{`
add sequencer error 2025-07-19 22:31:25 -03:00			`return Err(Error::Generic);`
add missing files 2025-07-18 10:29:41 -03:00			`}`

add comments 2025-07-18 16:42:55 -03:00			`// Reject if the commitments have already been seen.`
refactor 2025-07-19 18:08:57 -03:00			`if output`
			`.private_output_commitments`
add missing files 2025-07-18 10:29:41 -03:00			`.iter()`
			`.any(\|commitment\| self.commitment_tree.values().contains(commitment))`
			`{`
add sequencer error 2025-07-19 22:31:25 -03:00			`return Err(Error::Generic);`
add missing files 2025-07-18 10:29:41 -03:00			`}`

add comments 2025-07-18 16:42:55 -03:00			`// Verify the proof of the privacy execution.`
			`// This includes a proof of the following statements`
			`// - Public inputs, public outputs, commitments and nullifiers are consistent with the`
			`// execution of some program.`
			`// - The given nullifiers correctly correspond to commitments that currently belong to`
			`// the commitment tree.`
			`// - The given commitments are correctly computed from valid accounts.`
add sequencer error 2025-07-19 22:31:25 -03:00			`nssa::verify_privacy_execution(receipt).map_err(\|_\| Error::Generic)?;`
add missing files 2025-07-18 10:29:41 -03:00
add comments 2025-07-18 16:42:55 -03:00			`// At this point the privacy execution is considered valid.`
			`//`
			`// Update the state of the public accounts with the post-state of this privacy execution`
refactor 2025-07-19 18:08:57 -03:00			`output.public_accounts_post.into_iter().for_each(\|account_post_state\| {`
			`self.accounts.insert(account_post_state.address, account_post_state);`
			`});`
add missing files 2025-07-18 10:29:41 -03:00
add comments 2025-07-18 16:42:55 -03:00			`// Add all nullifiers to the nullifier set.`
refactor 2025-07-19 18:08:57 -03:00			`self.nullifier_set.extend(output.nullifiers);`
add missing files 2025-07-18 10:29:41 -03:00
add comments 2025-07-18 16:42:55 -03:00			`// Add commitments to the commitment tree.`
refactor 2025-07-19 18:08:57 -03:00			`for commitment in output.private_output_commitments.iter() {`
add missing files 2025-07-18 10:29:41 -03:00			`self.commitment_tree.add_value(*commitment);`
			`}`

			`Ok(())`
			`}`
			`}`