data-anchor-proofs 0.4.6

Proofs regarding the presence or absence of a blob uploaded using the Blober program.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158

//! Proof of the contents of a blob uploaded to the blober program.

use std::{cmp::min, fmt::Debug};

use anchor_lang::solana_program::hash::{self, HASH_BYTES, Hash};
use data_anchor_blober::{CHUNK_SIZE, compute_blob_digest};
use serde::{Deserialize, Serialize};
use thiserror::Error;

/// A proof that a specific blob has been uploaded to the blober program. The proof consists of two
/// parts: The digest of the blob, and the order in which its chunks arrived. The digest is computed
/// incrementally by hashing the current hash (starting from the default hash) with the chunk index
/// and data, see [`compute_blob_digest`] for the exact implementation.
#[derive(Serialize, Deserialize, Clone, PartialEq, Eq)]
pub struct BlobProof {
    /// The SHA-256 hash of the blob.
    pub digest: [u8; HASH_BYTES],
    pub chunk_order: Vec<u16>,
}

impl Debug for BlobProof {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("Proof")
            .field("digest", &Hash::new_from_array(self.digest))
            .field("chunk_order", &self.chunk_order)
            .finish()
    }
}

/// Failures that can occur when verifying a [`BlobProof`].
#[derive(Debug, Clone, Error, PartialEq, Eq)]
pub enum BlobProofError {
    #[error("Invalid structure when checking blob against stored chunks.")]
    InvalidStructure,
    #[error("Digest does not match the expected value. Expected {expected:?}, found {found:?}")]
    DigestMismatch {
        expected: [u8; HASH_BYTES],
        found: [u8; HASH_BYTES],
    },
}

pub type BlobProofResult<T = ()> = Result<T, BlobProofError>;

impl BlobProof {
    /// Creates a new proof for the given blob. The blob must be at least one byte in size.
    pub fn new<A: AsRef<[u8]>>(chunks: &[(u16, A)]) -> Self {
        let digest = compute_blob_digest(chunks);
        let chunk_order = chunks.iter().map(|(i, _)| *i).collect();
        Self {
            digest,
            chunk_order,
        }
    }

    pub fn hash_proof(&self) -> [u8; HASH_BYTES] {
        let order_bytes: Vec<_> = self
            .chunk_order
            .iter()
            .flat_map(|&i| i.to_le_bytes())
            .collect();
        hash::hashv(&[&self.digest, &order_bytes]).to_bytes()
    }

    /// Verifies that the given blob matches the proof.
    pub fn verify(&self, blob: &[u8]) -> BlobProofResult {
        let chunks = self
            .chunk_order
            .iter()
            .map(|&i| {
                let start_offset = i as usize * CHUNK_SIZE as usize;
                let end_offset = min(start_offset + CHUNK_SIZE as usize, blob.len());

                match blob.get(start_offset..end_offset) {
                    Some(chunk) => Ok((i, chunk)),
                    None => Err(BlobProofError::InvalidStructure),
                }
            })
            .collect::<BlobProofResult<Vec<_>>>()?;

        let digest = compute_blob_digest(&chunks);

        if self.digest == digest {
            Ok(())
        } else {
            Err(BlobProofError::DigestMismatch {
                expected: self.digest,
                found: digest,
            })
        }
    }
}

#[cfg(test)]
mod tests {
    use arbtest::arbtest;
    use data_anchor_blober::CHUNK_SIZE;

    use super::*;

    #[test]
    fn empty_blob() {
        BlobProof::new::<&[u8]>(&[]).verify(&[]).unwrap();
    }

    #[test]
    fn proof() {
        arbtest(|u| {
            let data = u.arbitrary::<Vec<u8>>()?;
            if data.is_empty() {
                // Empty blob, invalid test.
                return Ok(());
            }
            let mut chunks = data
                .chunks(CHUNK_SIZE as usize)
                .enumerate()
                .map(|(i, c)| (i as u16, c))
                .collect::<Vec<_>>();
            for _ in 0..u.arbitrary_len::<usize>()? {
                let a = u.choose_index(chunks.len())?;
                let b = u.choose_index(chunks.len())?;
                chunks.swap(a, b);
            }
            let proof = BlobProof::new(&chunks);
            proof.verify(&data).unwrap();
            Ok(())
        })
        .size_max(100_000_000);
    }

    #[test]
    fn false_proof() {
        arbtest(|u| {
            let mut data = u.arbitrary::<Vec<u8>>()?;
            if data.is_empty() {
                // Empty blob, invalid test.
                return Ok(());
            }
            let chunks = data
                .chunks(CHUNK_SIZE as usize)
                .enumerate()
                .map(|(i, c)| (i as u16, c))
                .collect::<Vec<_>>();

            let proof = BlobProof::new(&chunks);
            // Swap the 0th byte with some other byte, which should change the digest.
            let other = 1 + u.choose_index(data.len() - 1)?;
            let before = data.clone();
            data.swap(0, other);
            if data == before {
                // No change, invalid test.
                return Ok(());
            }
            proof.verify(&data).unwrap_err();
            Ok(())
        })
        .size_max(100_000_000);
    }
}