PrivacyLayer/sdk/src/errors.ts at a28a12bde53c961bc92f8e0b4d42db2d94f521c1 · ANAVHEOBA/PrivacyLayer · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
/**

/** Thrown by `assertStructuralValidity` for shape violations. */
export class StructuralError extends Error {
  constructor(message: string) {
    super(message);
    this.name = 'StructuralError';
  }
}
 * Thrown when withdrawal witness or proof inputs fail structural validation
 * (lengths, encodings) before a proving backend is invoked. Use
 * `code` to distinguish from honest proving/verification errors.
 */
export class WitnessValidationError extends Error {
  constructor(
    message: string,
    public readonly code:
      | 'MERKLE_PATH'
      | 'MERKLE_ROOT'
      | 'LEAF_INDEX'
      | 'FIELD_ENCODING'
      | 'ADDRESS'
      | 'WITNESS_SEMANTICS'
      | 'PUBLIC_INPUT_SCHEMA'
      | 'PROOF_FORMAT'
      | 'DENOMINATION',
    public readonly reason?: 'structure' | 'domain'
  ) {
    super(message);
    this.name = 'WitnessValidationError';
    this.reason = reason ?? 'structure';
  }
}

/**
 * ZK-116: Differentiated withdraw failure taxonomy.
 *
 * SDK prechecks and contract error codes map onto these classes so
 * integrations can respond safely without leaking internal ZK state.
 *
 * | Class           | Meaning                                              |
 * |-----------------|------------------------------------------------------|
 * | STALE_ROOT      | Merkle root not in pool's rolling root history       |
 * | SPENT_NULLIFIER | Nullifier already used — double-spend attempt        |
 * | MALFORMED_INPUT | Proof bytes or public inputs are structurally wrong  |
 * | INVALID_PROOF   | Groth16 verification failed for well-formed inputs   |
 * | PRECHECK_FAILED | SDK-side validation failed before proof submission   |
 */
export type WithdrawFailureClass =
  | 'STALE_ROOT'
  | 'SPENT_NULLIFIER'
  | 'MALFORMED_INPUT'
  | 'INVALID_PROOF'
  | 'PRECHECK_FAILED';

/**
 * Contract error codes (from Error enum in errors.rs) mapped to their
 * WithdrawFailureClass (ZK-116).
 */
export const CONTRACT_ERROR_CLASS: Record<number, WithdrawFailureClass> = {
  40: 'STALE_ROOT',       // Error::UnknownRoot
  41: 'SPENT_NULLIFIER',  // Error::NullifierAlreadySpent
  42: 'INVALID_PROOF',    // Error::InvalidProof
  60: 'MALFORMED_INPUT',  // Error::MalformedProofA
  61: 'MALFORMED_INPUT',  // Error::MalformedProofB
  62: 'MALFORMED_INPUT',  // Error::MalformedProofC
  70: 'MALFORMED_INPUT',  // Error::PublicInputsTooShort
  71: 'MALFORMED_INPUT',  // Error::PublicInputsTooLong
};

/**
 * Map a raw contract error code to a WithdrawFailureClass.
 * Returns undefined for codes outside the withdraw-failure range.
 */
export function classifyWithdrawError(contractErrorCode: number): WithdrawFailureClass | undefined {
  return CONTRACT_ERROR_CLASS[contractErrorCode];
}

/**
 * Thrown by SDK withdraw helpers to surface a typed withdraw failure
 * instead of a generic Error.  Mirrors the contract error taxonomy (ZK-116).
 */
export class WithdrawFailureError extends Error {
  constructor(
    message: string,
    public readonly failureClass: WithdrawFailureClass,
    public readonly contractErrorCode?: number,
  ) {
    super(message);
    this.name = 'WithdrawFailureError';
  }
}