lssa-zkvm-testing/risc0-selective-privacy-poc/examples/private_execution.rs

use core::{
    account::Account,
    bytes_to_words,
    input::InputVisibiility,
    types::{Address, AuthenticationPath, Commitment, Nullifier},
};
use nssa::program::TransferMultipleProgram;
use program_methods::OUTER_ID;
use sparse_merkle_tree::SparseMerkleTree;

fn mint_fresh_account(address: Address) -> Account {
    let nonce = [0; 8];
    Account::new(address, nonce)
}

/// A private execution of the transfer function.
/// This actually "burns" a sender private account and "mints" two new private accounts:
/// one for the recipient with the transferred balance, and another owned by the sender with the remaining balance.
fn main() {
    // This is supposed to be an existing private account (UTXO) with balance equal to 150.
    // And it is supposed to be a private account of the user running this private execution (hence the access to the private key)
    let sender_private_key = [1, 2, 3, 4, 4, 3, 2, 1];
    let sender = {
        // Creating it now but it's supposed to be already created by other previous transactions.
        let mut account = Account::new_from_private_key(sender_private_key, [1; 8]);
        account.balance = 150;
        account
    };

    let commitment_tree = SparseMerkleTree::new([sender.commitment()].into_iter().collect());
    let root = bytes_to_words(&commitment_tree.root());
    let auth_path: Vec<[u32; 8]> = commitment_tree
        .get_authentication_path_for_value(sender.commitment())
        .iter()
        .map(bytes_to_words)
        .collect();
    let auth_path: AuthenticationPath = auth_path.try_into().unwrap();

    let balance_to_move: u128 = 3;

    // This is the new private account (UTXO) being minted by this private execution. (The `receiver_address` would be <Npk> in UTXO's terminology)
    let receiver_address_1 = [99; 8];
    let receiver_1 = mint_fresh_account(receiver_address_1);

    let receiver_address_2 = [100; 8];
    let receiver_2 = mint_fresh_account(receiver_address_2);

    let visibilities = vec![
        InputVisibiility::Private(Some((sender_private_key, auth_path))),
        InputVisibiility::Private(None),
        InputVisibiility::Private(None),
    ];

    let (receipt, _) = nssa::invoke_privacy_execution::<TransferMultipleProgram>(
        &[sender, receiver_1, receiver_2],
        vec![30, 40],
        &visibilities,
        root,
    )
    .unwrap();

    let output: (Vec<Account>, Vec<Nullifier>, Vec<Commitment>, [u32; 8]) =
        receipt.journal.decode().unwrap();
    println!("public_outputs: {:?}", output.0);
    println!("nullifiers: {:?}", output.1);
    println!("commitments: {:?}", output.2);
    println!("commitment_tree_root: {:?}", output.3);

    assert!(
        nssa::verify_privacy_execution(receipt, &output.0, &output.1, &output.2, &output.3).is_ok()
    );
}
rename crates 2025-07-17 10:10:39 -03:00			`use core::{`
refactor 2025-07-16 15:37:49 -03:00			`account::Account,`
			`bytes_to_words,`
make commitment a u32 value for the POC 2025-07-15 09:21:55 -03:00			`input::InputVisibiility,`
add verification function 2025-07-17 09:20:03 -03:00			`types::{Address, AuthenticationPath, Commitment, Nullifier},`
make commitment a u32 value for the POC 2025-07-15 09:21:55 -03:00			`};`
add tansfer multiple program 2025-07-17 11:07:18 -03:00			`use nssa::program::TransferMultipleProgram;`
wip 2025-07-17 11:34:56 -03:00			`use program_methods::OUTER_ID;`
sequencer wip 2025-07-17 12:46:57 -03:00			`use sparse_merkle_tree::SparseMerkleTree;`
add public pre and post states to the output of the outer program 2025-07-15 08:07:27 -03:00
name types 2025-07-15 09:26:34 -03:00			`fn mint_fresh_account(address: Address) -> Account {`
add program trait 2025-07-16 16:45:07 -03:00			`let nonce = [0; 8];`
add variable number of inputs/outputs with visibility 2025-07-14 19:25:41 -03:00			`Account::new(address, nonce)`
			`}`
refactor 2025-07-11 19:21:06 -03:00
add comments 2025-07-11 19:35:54 -03:00			`/// A private execution of the transfer function.`
			`/// This actually "burns" a sender private account and "mints" two new private accounts:`
minor changes 2025-07-11 19:44:43 -03:00			`/// one for the recipient with the transferred balance, and another owned by the sender with the remaining balance.`
moved examples to examples dir 2025-07-16 17:25:03 -03:00			`fn main() {`
add comments 2025-07-11 19:35:54 -03:00			`// This is supposed to be an existing private account (UTXO) with balance equal to 150.`
			`// And it is supposed to be a private account of the user running this private execution (hence the access to the private key)`
name types 2025-07-15 09:26:34 -03:00			`let sender_private_key = [1, 2, 3, 4, 4, 3, 2, 1];`
minor changes 2025-07-11 19:44:43 -03:00			`let sender = {`
			`// Creating it now but it's supposed to be already created by other previous transactions.`
			`let mut account = Account::new_from_private_key(sender_private_key, [1; 8]);`
			`account.balance = 150;`
			`account`
			`};`
add implementation of is_in_tree 2025-07-15 13:54:59 -03:00
dummy 2025-07-15 13:08:13 -03:00			`let commitment_tree = SparseMerkleTree::new([sender.commitment()].into_iter().collect());`
add implementation of is_in_tree 2025-07-15 13:54:59 -03:00			`let root = bytes_to_words(&commitment_tree.root());`
			`let auth_path: Vec<[u32; 8]> = commitment_tree`
			`.get_authentication_path_for_value(sender.commitment())`
			`.iter()`
			`.map(bytes_to_words)`
			`.collect();`
			`let auth_path: AuthenticationPath = auth_path.try_into().unwrap();`
add variable number of inputs/outputs with visibility 2025-07-14 19:25:41 -03:00
refactor 2025-07-11 19:21:06 -03:00			`let balance_to_move: u128 = 3;`

add program trait 2025-07-16 16:45:07 -03:00			// This is the new private account (UTXO) being minted by this private execution. (The `receiver_address` would be <Npk> in UTXO's terminology)
add tansfer multiple program 2025-07-17 11:07:18 -03:00			`let receiver_address_1 = [99; 8];`
			`let receiver_1 = mint_fresh_account(receiver_address_1);`

			`let receiver_address_2 = [100; 8];`
			`let receiver_2 = mint_fresh_account(receiver_address_2);`
add comments 2025-07-11 19:35:54 -03:00
add variable number of inputs/outputs with visibility 2025-07-14 19:25:41 -03:00			`let visibilities = vec![`
add implementation of is_in_tree 2025-07-15 13:54:59 -03:00			`InputVisibiility::Private(Some((sender_private_key, auth_path))),`
add variable number of inputs/outputs with visibility 2025-07-14 19:25:41 -03:00			`InputVisibiility::Private(None),`
add tansfer multiple program 2025-07-17 11:07:18 -03:00			`InputVisibiility::Private(None),`
add variable number of inputs/outputs with visibility 2025-07-14 19:25:41 -03:00			`];`
rename 2025-07-17 09:43:44 -03:00
add tx types 2025-07-17 15:34:35 -03:00			`let (receipt, _) = nssa::invoke_privacy_execution::<TransferMultipleProgram>(`
add tansfer multiple program 2025-07-17 11:07:18 -03:00			`&[sender, receiver_1, receiver_2],`
add happy paths 2025-07-17 16:05:24 -03:00			`vec![30, 40],`
generalize code to prove any privacy execution 2025-07-16 17:01:50 -03:00			`&visibilities,`
			`root,`
			`)`
			`.unwrap();`
refactor 2025-07-11 19:21:06 -03:00
add verification function 2025-07-17 09:20:03 -03:00			`let output: (Vec<Account>, Vec<Nullifier>, Vec<Commitment>, [u32; 8]) =`
			`receipt.journal.decode().unwrap();`
add public pre and post states to the output of the outer program 2025-07-15 08:07:27 -03:00			`println!("public_outputs: {:?}", output.0);`
			`println!("nullifiers: {:?}", output.1);`
			`println!("commitments: {:?}", output.2);`
add verification function 2025-07-17 09:20:03 -03:00			`println!("commitment_tree_root: {:?}", output.3);`

			`assert!(`
			`nssa::verify_privacy_execution(receipt, &output.0, &output.1, &output.2, &output.3).is_ok()`
			`);`
refactor 2025-07-11 19:21:06 -03:00			`}`