Implement the TACo API module

[piotr-roslaniec]

Type of PR:

• Feature

Required reviews:

• 3

What this does:

• Implements a simplified API version for TACo

Issues fixed/closed:

• Fixes Alter PRE-adapted tDec API design for CBD-DKG #166

Why it's needed:

Explain how this PR fits in the greater context of the NuCypher Network.
E.g., if this PR address a nucypher/productdev issue, let reviewers know!

Notes for reviewers:

• Rebased over Apply PR suggestions for #273 #286
• Please see test/unit/taco.test.ts for usage examples

[codecov-commenter]

Codecov Report

Merging #263 (1dba09f) into alpha (c18f996) will decrease coverage by 0.01%.
The diff coverage is 72.09%.

@@            Coverage Diff             @@
##            alpha     #263      +/-   ##
==========================================
- Coverage   81.37%   81.36%   -0.01%     
==========================================
  Files          36       37       +1     
  Lines        1036     1068      +32     
  Branches      110      112       +2     
==========================================
+ Hits          843      869      +26     
- Misses        185      191       +6     
  Partials        8        8              

Files Changed	Coverage Δ
src/conditions/context/context.ts	96.82% <ø> (ø)
src/agents/coordinator.ts	24.48% <10.00%> (-2.79%)	⬇️
src/sdk/strategy/cbd-strategy.ts	93.33% <66.66%> (ø)
src/dkg.ts	33.33% <80.00%> (+5.12%)	⬆️
src/taco.ts	95.83% <95.83%> (ø)
src/characters/cbd-recipient.ts	92.72% <100.00%> (ø)

[theref]

This looks great, exactly what adopters want to use

[piotr-roslaniec]

Is there anything we can do to get rid of these parameters in the user-facing API?

[piotr-roslaniec]

Do we want to expose class TacoMessageKit.requireSigner so that decrypting users can detect when they need to pass signer in?

[derekpierre]

Given my comment above, I question whether this TacoMesageKit object is needed at all.

conditionExpr is in the ACP in the ThresholdMessageKit, and I don't believe ritualId and threshold are needed because they can be obtained from the Coordinator contract along with the ThresholdMessageKit.

My concern lies in returning objects that aren't subject to versioning, and the caller potentially serializing them. Ideally, encrypt would return a ThresholdMessageKit just like python.

Of course, if additional information is actually needed in the ThresholdMessageKit itself we can explore that.

[derekpierre]

See comment about TacoMessageKit.

[derekpierre]

Needs another rebase over #286.

[derekpierre]

A G1Point is 48 bytes and defined as follows.

Shouldn't word0 by (0,32) and word1 (32,48)?

[derekpierre]

I think we need to start thinking about "acceptance" tests in nucypher-ts that interact with actual contracts (cc @cygnusv , @KPrasch ).

[piotr-roslaniec]

IMHO acceptance tests with contracts are unnecessary. We're only supporting read operations (at this point), and setting those up is not different than existing mocks (so, just having simple pass-through facades for mock values). Yes, this is a bug that went unnoticed. But it would have been caught easily by QA which we do on every release.

I think the better solution to this particular problem is to enhance the BLS12381.G1PointStructOutput generated type with a wrapper that performs validation. The word0 and word fields are represented as strings by typechain in generated typings, which also prevented the TS compiler from catching this issue.

[derekpierre]

But it would have been caught easily by QA which we do on every release.

The goal of the "acceptance" tests is to catch these things before live QA. It is inefficient to catch these kind of bugs during live QA on a testnet. Doesn't mean we will catch everything in those tests, but it does reduce the need for subsequent fixes/releases after bugs are found during live testing.

My typescript philosophy knowledge is admittedly limited and I don't know what specifically the "acceptance" tests would entail and what it would require from the codebase to be set up, but having everything tested with mocks limits the breadth of testing and bugs that we can find in tests - who's testing the mocks is essentially the argument.

"Acceptance" tests is a broad term, and maybe there is more appropriate term here, but we should investigate how we can perform tests closer to what the actual testnet/production environment would be.

[piotr-roslaniec]

I understand the advantages of acceptance testing, I just don't think they are necessary at this point. We should probably get them before the release, but not until we're done with the monorepo or adapting viem: #271

That being said, I'd be happy to accept a PR that implements acceptance testing if anyone wants to chip in.

[derekpierre]

Definitely not something needed for this PR or this instant - but something we should nonetheless investigate. Filed #295 .

[derekpierre]

Are participants not stored in this struct? I guess maybe not needed...?

[piotr-roslaniec]

The contents of this struct are taken from types generated from contracts by typechain. I can trim them down to a size.

[derekpierre]

Is threshold still needed, even though it is now part of the ritual struct?

[piotr-roslaniec]

The client needs to know how many shares to fetch from the nodes (/cbd_decrypt responses)

[derekpierre]

Yes, but now if you have the ritual id, you can get the value of the threshold from the Coordinator agent when doing the retrieve, or am I misunderstanding.

[piotr-roslaniec]

If you inspect the usage of DeployedCbdStrategy.create you can see that this is exactly what happens:

• https://github.com/nucypher/nucypher-ts/blob/taco-api/src/sdk/strategy/cbd-strategy.ts#L47-L48
• https://github.com/nucypher/nucypher-ts/blob/taco-api/src/sdk/strategy/cbd-strategy.ts#L95-L96

[derekpierre]

Right 👍 . I mixed up my layers.

Side question: any reason we need the DkgRitualParameters object? This line could look nice as:

    const decrypter = ThresholdDecrypter.create(
      porterUri,
      dkgRitual.id,
      dkgRitual.threshold

? Anyways, just something to think about.

[derekpierre]

Not sure how I feel about Light as the term 😅 . Can this just be an overloaded function with the same name?

[piotr-roslaniec]

There is no support function overloading in JS/TS. I didn't have better ideas for an appropriate name, maybe we could use the blockchainy naming from the original TACo API issue.

[derekpierre]

^ cc @cygnusv , @KPrasch, @jMyles (naming things).

[manumonti]

I don't have a good name for it, but I would prefer something like

export const encryptWithDKG = async (

than the original one

TacoMessageKit was removed.

[manumonti]

LGTM. Great work! 👏

[manumonti]

This simplicity is great!

[derekpierre]

🎸 - nice work