WasmStealthCrypto

Defined in: ootle/src/stealth/wasm-crypto.ts:54

The real StealthCryptoProvider, backed by @tari-project/ootle-wasm@0.32.0.

Marshals between the step-02 domain types (Mask, Output, statements) and the raw WASM ABI (snake_case result fields, positional args, raw Uint8Arrays/bigints). Async signatures wrap synchronous WASM calls — see StealthCryptoProvider.

Implements

• StealthCryptoProvider

Constructors

Constructor

new WasmStealthCrypto(network?): WasmStealthCrypto

Defined in: ootle/src/stealth/wasm-crypto.ts:61

Parameters

network?

Network = Network.LocalNet

Returns

WasmStealthCrypto

Methods

aggregateInputMasks()

aggregateInputMasks(masks): Promise<Mask>

Defined in: ootle/src/stealth/wasm-crypto.ts:180

Aggregate input commitment masks into a single scalar. masks must be non-empty; the revealed-only case (no stealth inputs) must short-circuit to Mask.zero() at the caller instead of calling this method.

Parameters

masks

Mask[]

Returns

Promise<Mask>

Implementation of

StealthCryptoProvider.aggregateInputMasks

---

buildInputsStatement()

buildInputsStatement(inputs, revealedAmount): Promise<StealthInputsStatement>

Defined in: ootle/src/stealth/wasm-crypto.ts:113

Build the inputs (spend) side of a transfer as canonical WASM wire JSON.

Parameters

inputs

StealthInput[]

The stealth inputs being spent (empty for a revealed-only spend).

revealedAmount

bigint

The un-confidential (revealed) µTari input amount.

Returns

Promise<StealthInputsStatement>

A StealthInputsStatement carrying the WASM-produced statementJson.

Implementation of

StealthCryptoProvider.buildInputsStatement

---

deriveAeadKey()

deriveAeadKey(privateKey, publicKey): Promise<Uint8Array<ArrayBufferLike>>

Defined in: ootle/src/stealth/wasm-crypto.ts:155

Derive the 32-byte AEAD encryption key for an output’s encrypted data via DH+KDF.

• Receivers: (viewSecret, sender_public_nonce).
• Senders: (sender_secret_nonce, recipient_view_pub).

Split from unblindOutput to mirror the WASM (encryptedDataDhKdfAead then unblindOutput).

Parameters

privateKey

Uint8Array

publicKey

Uint8Array

Returns

Promise<Uint8Array<ArrayBufferLike>>

Implementation of

StealthCryptoProvider.deriveAeadKey

---

generateBalanceProofSignature()

generateBalanceProofSignature(inputMask, outputMask, inputsStatementJson, outputsStatementJson): Promise<BalanceProofSignature>

Defined in: ootle/src/stealth/wasm-crypto.ts:123

Sign the balance proof over the two statements’ canonical wire JSONs.

A transfer with no stealth inputs passes inputMask = Mask.zero().

Parameters

inputMask

Mask

outputMask

Mask

inputsStatementJson

string

outputsStatementJson

string

Returns

Promise<BalanceProofSignature>

The (public_nonce, signature) balance-proof signature.

Implementation of

StealthCryptoProvider.generateBalanceProofSignature

---

generateOutputsStatement()

generateOutputsStatement(specs, revealedOutputAmount): Promise<{ outputMask: Mask; statement: StealthOutputsStatement; }>

Defined in: ootle/src/stealth/wasm-crypto.ts:65

Build the outputs (sender) side of a transfer: one witness per spec, aggregated into a canonical WASM outputs-statement plus the summed output mask.

Parameters

specs

Output[]

The outputs to create (incl. change).

revealedOutputAmount

bigint

The un-confidential (revealed) µTari output amount.

Returns

Promise<{ outputMask: Mask; statement: StealthOutputsStatement; }>

The WASM-produced StealthOutputsStatement and the aggregated outputMask for the balance proof.

Implementation of

StealthCryptoProvider.generateOutputsStatement

---

stealthDhSecret()

stealthDhSecret(networkByte, ownerSecret, publicNonce): Promise<Uint8Array<ArrayBufferLike>>

Defined in: ootle/src/stealth/wasm-crypto.ts:189

Derive the one-time stealth spend scalar (c + k) via DH for an owned stealth UTXO.

Parameters

networkByte

number

The network byte (see Network).

ownerSecret

Uint8Array

The owner’s secret key.

publicNonce

Uint8Array

The output’s sender public nonce.

Returns

Promise<Uint8Array<ArrayBufferLike>>

The 32-byte spend scalar.

Implementation of

StealthCryptoProvider.stealthDhSecret

---

unblindOutput()

unblindOutput(commitment, encryptedData, aeadKey, skipMemo): Promise<DecryptedData>

Defined in: ootle/src/stealth/wasm-crypto.ts:163

Decrypt an owned output using a precomputed AEAD key (from deriveAeadKey).

Throws on AEAD failure / commitment mismatch — i.e. the output is not owned. The receive helper catches this to mean “skip this UTXO”.

Parameters

commitment

Uint8Array

The output’s 32-byte Pedersen commitment (from its substate id).

encryptedData

Uint8Array

The raw ciphertext bytes.

aeadKey

Uint8Array

The 32-byte AEAD key from deriveAeadKey.

skipMemo

boolean

When true, the memo is not decrypted.

Returns

Promise<DecryptedData>

Implementation of

StealthCryptoProvider.unblindOutput

---

validateBalanceProofSignature()

validateBalanceProofSignature(proof, inputsStatementJson, outputsStatementJson): Promise<boolean>

Defined in: ootle/src/stealth/wasm-crypto.ts:142

Optional client-side pre-flight check of a balance-proof signature. The engine is authoritative at submission — implement as a cheap debug aid only.

Parameters

proof

BalanceProofSignature

inputsStatementJson

string

outputsStatementJson

string

Returns

Promise<boolean>

Implementation of

StealthCryptoProvider.validateBalanceProofSignature

---

validateTransfer()

validateTransfer(statement): Promise<void>

Defined in: ootle/src/stealth/wasm-crypto.ts:201

Structurally validate a complete transfer envelope (balance proof filled). Throws on invalid. This is a client pre-flight (view_key = null); the engine is authoritative for viewable-resource validation at submission.

Parameters

statement

StealthTransferStatement

Returns

Promise<void>

Implementation of

StealthCryptoProvider.validateTransfer