@alejoamiras/tee-rex 4.0.0-devnet.2-patch.0

package/README.md

@@ -0,0 +1,155 @@
+# @alejoamiras/tee-rex
+
+Delegate [Aztec](https://aztec.network) transaction proving to a Trusted Execution Environment.
+
+[![npm](https://img.shields.io/npm/v/@alejoamiras/tee-rex)](https://www.npmjs.com/package/@alejoamiras/tee-rex)
+
+## Installation
+
+```sh
+npm add @alejoamiras/tee-rex
+```
+
+## Quick Start
+
+Drop `TeeRexProver` into your PXE as a custom prover:
+
+```ts
+import { createAztecNodeClient } from "@aztec/aztec.js/node";
+import { createPXE } from "@aztec/pxe/client/lazy";
+import { getPXEConfig } from "@aztec/pxe/config";
+import { WASMSimulator } from "@aztec/simulator/client";
+import { TeeRexProver, ProvingMode } from "@alejoamiras/tee-rex";
+
+const TEE_REX_API = "http://localhost:4000";
+const node = createAztecNodeClient("<aztec-node-rpc-url>");
+
+const prover = new TeeRexProver(TEE_REX_API, new WASMSimulator());
+const pxe = await createPXE(node, getPXEConfig(), {
+  proverOrOptions: prover,
+});
+
+// use the PXE as usual — proving is delegated to the TEE
+```
+
+### Switch proving modes
+
+```ts
+import { ProvingMode } from "@alejoamiras/tee-rex";
+
+// delegate proving to a remote TEE (default)
+prover.setProvingMode(ProvingMode.remote);
+
+// or prove locally in WASM (fallback)
+prover.setProvingMode(ProvingMode.local);
+```
+
+### Configure attestation verification
+
+```ts
+prover.setAttestationConfig({
+  // reject servers not running in a TEE
+  requireAttestation: true,
+  // verify enclave identity via PCR values
+  expectedPCRs: { 0: "abc123..." },
+  // attestation freshness (default: 5 minutes)
+  maxAgeMs: 5 * 60 * 1000,
+});
+```
+
+## API
+
+### `TeeRexProver`
+
+Aztec private kernel prover that can generate proofs locally or on a remote
+tee-rex server running inside an AWS Nitro Enclave.
+
+```ts
+class TeeRexProver extends BBLazyPrivateKernelProver {
+  constructor(apiUrl: string, ...args: ConstructorParameters<typeof BBLazyPrivateKernelProver>)
+  setProvingMode(mode: ProvingMode): void
+  setApiUrl(url: string): void
+  setAttestationConfig(config: TeeRexAttestationConfig): void
+  createChonkProof(executionSteps: PrivateExecutionStep[]): Promise<ChonkProofWithPublicInputs>
+}
+```
+
+- **`apiUrl`** — TEE-Rex server endpoint (e.g. `http://localhost:4000`)
+- **`...args`** — forwarded to `BBLazyPrivateKernelProver` (typically a `CircuitSimulator` instance)
+- **`setProvingMode(mode)`** — switch between `"remote"` (TEE) and `"local"` (WASM) proving
+- **`setApiUrl(url)`** — update the tee-rex server URL at runtime
+- **`setAttestationConfig(config)`** — configure attestation verification (PCR checks, freshness, require TEE)
+- **`createChonkProof(steps)`** — overrides the parent to route proofs through the TEE server in remote mode
+
+### `ProvingMode`
+
+```ts
+const ProvingMode = { local: "local", remote: "remote" } as const;
+type ProvingMode = "local" | "remote";
+```
+
+### `TeeRexAttestationConfig`
+
+```ts
+interface TeeRexAttestationConfig {
+  requireAttestation?: boolean;  // reject servers in standard (non-TEE) mode
+  expectedPCRs?: Record<number, string>;  // expected PCR values (hex strings)
+  maxAgeMs?: number;  // max attestation age in ms (default: 5 min)
+}
+```
+
+### `verifyNitroAttestation`
+
+Verify a Nitro attestation document and extract the embedded public key. Used internally by `TeeRexProver` but exported for advanced use cases.
+
+```ts
+function verifyNitroAttestation(
+  attestationDocumentBase64: string,
+  options?: AttestationVerifyOptions,
+): Promise<{ publicKey: string; document: NitroAttestationDocument }>
+```
+
+### `AttestationError`
+
+Error thrown when attestation verification fails. Includes a machine-readable `code` for programmatic handling.
+
+```ts
+class AttestationError extends Error {
+  readonly code: AttestationErrorCode;
+}
+
+const AttestationErrorCode = {
+  INVALID_COSE: "INVALID_COSE",
+  INVALID_DOCUMENT: "INVALID_DOCUMENT",
+  CHAIN_FAILED: "CHAIN_FAILED",
+  SIGNATURE_FAILED: "SIGNATURE_FAILED",
+  EXPIRED: "EXPIRED",
+  PCR_MISMATCH: "PCR_MISMATCH",
+  NONCE_MISMATCH: "NONCE_MISMATCH",
+  MISSING_KEY: "MISSING_KEY",
+} as const;
+```
+
+## How It Works
+
+`TeeRexProver` extends Aztec's `BBLazyPrivateKernelProver` and overrides `createChonkProof` — the single method responsible for generating the cryptographic proof (ClientIVC). All other operations (witness generation, kernel circuit simulation) run locally in the PXE.
+
+In **remote** mode, `createChonkProof`:
+
+1. Fetches the server's attestation document from `/attestation`
+2. Verifies the Nitro attestation (COSE_Sign1 signature, certificate chain, PCRs)
+3. Encrypts the proving inputs with the server's attested public key (curve25519 + AES-256-GCM)
+4. POSTs the encrypted data to `/prove` (with automatic retry on transient failures)
+5. Deserializes and returns the proof
+
+In **local** mode, it delegates to the parent `BBLazyPrivateKernelProver.createChonkProof` which runs Barretenberg WASM in the browser or Node.js.
+
+## Requirements
+
+- Aztec `4.0.0-spartan` or compatible version
+- A running TEE-Rex server for remote proving
+- A running Aztec node for PXE connectivity
+
+## Contributors
+
+Made with love by [Alejo Amiras](https://github.com/alejoamiras)

package/dist/index.d.ts

@@ -0,0 +1,4 @@
+export type { AttestationVerifyOptions, NitroAttestationDocument } from "./lib/attestation.js";
+export { AttestationError, AttestationErrorCode, verifyNitroAttestation, } from "./lib/attestation.js";
+export * from "./lib/tee-rex-prover.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,sBAAsB,CAAC;AAC/F,OAAO,EACL,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,GACvB,MAAM,sBAAsB,CAAC;AAC9B,cAAc,yBAAyB,CAAC"}

package/dist/index.js

@@ -0,0 +1,3 @@
+export { AttestationError, AttestationErrorCode, verifyNitroAttestation, } from "./lib/attestation.js";
+export * from "./lib/tee-rex-prover.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,GACvB,MAAM,sBAAsB,CAAC;AAC9B,cAAc,yBAAyB,CAAC"}

package/dist/lib/attestation.d.ts

@@ -0,0 +1,64 @@
+import type { ValueOf } from "ts-essentials";
+/** Parsed fields from a Nitro attestation document. */
+export interface NitroAttestationDocument {
+    moduleId: string;
+    timestamp: number;
+    digest: string;
+    pcrs: Map<number, Uint8Array>;
+    certificate: Uint8Array;
+    cabundle: Uint8Array[];
+    publicKey?: Uint8Array;
+    userData?: Uint8Array;
+    nonce?: Uint8Array;
+}
+/** Options for attestation verification. */
+export interface AttestationVerifyOptions {
+    /** Expected PCR values. Only the specified PCR indices are checked. */
+    expectedPCRs?: Record<number, string>;
+    /** Maximum age of the attestation document in milliseconds. Default: 5 minutes. */
+    maxAgeMs?: number;
+    /**
+     * Expected nonce value (hex string). When provided, the attestation document's
+     * nonce field must match exactly. Use this to prevent replay attacks by including
+     * a challenge in the attestation request.
+     */
+    expectedNonce?: string;
+    /** @internal Override the root CA for testing. Defaults to the AWS Nitro Enclaves Root CA. */
+    rootCaPem?: string;
+}
+/**
+ * Verify a Nitro attestation document and extract the embedded public key.
+ *
+ * Verification steps:
+ * 1. Decode the COSE_Sign1 envelope
+ * 2. Extract and parse the CBOR attestation document payload
+ * 3. Build and verify the certificate chain (cabundle → leaf → AWS Nitro root CA)
+ * 4. Verify the COSE_Sign1 signature using the leaf certificate
+ * 5. Optionally check PCR values and document freshness
+ * 6. Return the embedded public key
+ *
+ * Uses @peculiar/x509 + Web Crypto API for cross-platform compatibility
+ * (works in Node.js, Bun, and browsers).
+ */
+export declare function verifyNitroAttestation(attestationDocumentBase64: string, options?: AttestationVerifyOptions): Promise<{
+    publicKey: string;
+    document: NitroAttestationDocument;
+}>;
+/** Machine-readable error codes for attestation verification failures. */
+export type AttestationErrorCode = ValueOf<typeof AttestationErrorCode>;
+export declare const AttestationErrorCode: {
+    readonly INVALID_COSE: "INVALID_COSE";
+    readonly INVALID_DOCUMENT: "INVALID_DOCUMENT";
+    readonly CHAIN_FAILED: "CHAIN_FAILED";
+    readonly SIGNATURE_FAILED: "SIGNATURE_FAILED";
+    readonly EXPIRED: "EXPIRED";
+    readonly PCR_MISMATCH: "PCR_MISMATCH";
+    readonly NONCE_MISMATCH: "NONCE_MISMATCH";
+    readonly MISSING_KEY: "MISSING_KEY";
+};
+/** Error thrown when Nitro attestation verification fails. Includes a machine-readable {@link AttestationErrorCode}. */
+export declare class AttestationError extends Error {
+    readonly code: AttestationErrorCode;
+    constructor(message: string, code?: AttestationErrorCode);
+}
+//# sourceMappingURL=attestation.d.ts.map

package/dist/lib/attestation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"attestation.d.ts","sourceRoot":"","sources":["../../src/lib/attestation.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AAsB7C,uDAAuD;AACvD,MAAM,WAAW,wBAAwB;IACvC,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC9B,WAAW,EAAE,UAAU,CAAC;IACxB,QAAQ,EAAE,UAAU,EAAE,CAAC;IACvB,SAAS,CAAC,EAAE,UAAU,CAAC;IACvB,QAAQ,CAAC,EAAE,UAAU,CAAC;IACtB,KAAK,CAAC,EAAE,UAAU,CAAC;CACpB;AAED,4CAA4C;AAC5C,MAAM,WAAW,wBAAwB;IACvC,uEAAuE;IACvE,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,mFAAmF;IACnF,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;;;OAIG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,8FAA8F;IAC9F,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,sBAAsB,CAC1C,yBAAyB,EAAE,MAAM,EACjC,OAAO,GAAE,wBAA6B,GACrC,OAAO,CAAC;IAAE,SAAS,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,wBAAwB,CAAA;CAAE,CAAC,CA2HpE;AAqGD,0EAA0E;AAC1E,MAAM,MAAM,oBAAoB,GAAG,OAAO,CAAC,OAAO,oBAAoB,CAAC,CAAC;AACxE,eAAO,MAAM,oBAAoB;;;;;;;;;CASvB,CAAC;AAEX,wHAAwH;AACxH,qBAAa,gBAAiB,SAAQ,KAAK;IACzC,QAAQ,CAAC,IAAI,EAAE,oBAAoB,CAAC;gBAExB,OAAO,EAAE,MAAM,EAAE,IAAI,GAAE,oBAA4D;CAKhG"}

package/dist/lib/attestation.js

@@ -0,0 +1,209 @@
+import * as x509 from "@peculiar/x509";
+import { decode as decodeCbor, encode as encodeCbor } from "cbor-x";
+import { logger } from "./logger.js";
+/**
+ * AWS Nitro Enclaves Root CA certificate (PEM).
+ * Source: https://aws-nitro-enclaves.amazonaws.com/AWS_NitroEnclaves_Root-G1.zip
+ */
+const AWS_NITRO_ROOT_CA_PEM = `-----BEGIN CERTIFICATE-----
+MIICETCCAZagAwIBAgIRAPkxdWgbkK/hHUbMtOTn+FYwCgYIKoZIzj0EAwMwSTEL
+MAkGA1UEBhMCVVMxDzANBgNVBAoMBkFtYXpvbjEMMAoGA1UECwwDQVdTMRswGQYD
+VQQDDBJhd3Mubml0cm8tZW5jbGF2ZXMwHhcNMTkxMDI4MTMyODA1WhcNNDkxMDI4
+MTQyODA1WjBJMQswCQYDVQQGEwJVUzEPMA0GA1UECgwGQW1hem9uMQwwCgYDVQQL
+DANBV1MxGzAZBgNVBAMMEmF3cy5uaXRyby1lbmNsYXZlczB2MBAGByqGSM49AgEG
+BSuBBAAiA2IABPwCVOumCMHzaHDimtqQvkY4MpJzbolL//Zy2YlES1BR5TSksfbb
+48C8WBoyt7F2Bw7eEtaaP+ohG2bnUs990d0JX28TcPQXCEPZ3BABIeTPYwEoCWZE
+h8l5YoQwTcU/9KNCMEAwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUkCW1DdkF
+R+eWw5b6cp3PmanfS5YwDgYDVR0PAQH/BAQDAgGGMAoGCCqGSM49BAMDA2kAMGYC
+MQCjfy+Rocm9Xue4YnwWmNJVA44fA0P5W2OpYow9OYCVRaEevL8uO1XYru5xtMPW
+rfMCMQCi85sWBbJwKKXdS6BptQFuZbT73o/gBh1qUxl/nNr12UO8Yfwr6wPLb+6N
+IwLz3/Y=
+-----END CERTIFICATE-----`;
+/**
+ * Verify a Nitro attestation document and extract the embedded public key.
+ *
+ * Verification steps:
+ * 1. Decode the COSE_Sign1 envelope
+ * 2. Extract and parse the CBOR attestation document payload
+ * 3. Build and verify the certificate chain (cabundle → leaf → AWS Nitro root CA)
+ * 4. Verify the COSE_Sign1 signature using the leaf certificate
+ * 5. Optionally check PCR values and document freshness
+ * 6. Return the embedded public key
+ *
+ * Uses @peculiar/x509 + Web Crypto API for cross-platform compatibility
+ * (works in Node.js, Bun, and browsers).
+ */
+export async function verifyNitroAttestation(attestationDocumentBase64, options = {}) {
+    const { maxAgeMs = 5 * 60 * 1000 } = options;
+    // 1. Decode the COSE_Sign1 envelope
+    const raw = Buffer.from(attestationDocumentBase64, "base64");
+    const coseSign1 = decodeCbor(raw);
+    if (!Array.isArray(coseSign1) || coseSign1.length !== 4) {
+        throw new AttestationError("Invalid COSE_Sign1 structure", AttestationErrorCode.INVALID_COSE);
+    }
+    const [protectedHeaders, , payload, signature] = coseSign1;
+    // 2. Parse the attestation document from the payload
+    const doc = decodeCbor(payload);
+    const attestationDoc = parseAttestationDocument(doc);
+    // 3. Build and verify certificate chain
+    // Buffer.from() ensures ArrayBuffer backing (not SharedArrayBuffer) for @peculiar/x509 compat
+    const leafCert = new x509.X509Certificate(Buffer.from(attestationDoc.certificate));
+    const rootCa = new x509.X509Certificate(options.rootCaPem ?? AWS_NITRO_ROOT_CA_PEM);
+    // Build chain: cabundle contains certs from root to intermediate(s)
+    const caBundleCerts = attestationDoc.cabundle.map((der) => new x509.X509Certificate(Buffer.from(der)));
+    await verifyCertificateChain(leafCert, caBundleCerts, rootCa);
+    // 4. Verify COSE_Sign1 signature
+    //    Sig_structure = ["Signature1", protected_headers, external_aad, payload]
+    // cbor-x encodes Uint8Array with CBOR tag 64 but Buffer as plain bstr.
+    // COSE requires plain bstr, so use Buffer.alloc(0) for the empty external_aad.
+    const sigStructure = encodeCbor(["Signature1", protectedHeaders, Buffer.alloc(0), payload]);
+    const leafPublicKey = await leafCert.publicKey.export({ name: "ECDSA", namedCurve: "P-384" }, ["verify"]);
+    const signatureValid = await crypto.subtle.verify({ name: "ECDSA", hash: "SHA-384" }, leafPublicKey, Buffer.from(signature), Buffer.from(sigStructure));
+    if (!signatureValid) {
+        throw new AttestationError("COSE_Sign1 signature verification failed", AttestationErrorCode.SIGNATURE_FAILED);
+    }
+    // 5. Check freshness (with 30s tolerance for clock skew between client and enclave)
+    const CLOCK_SKEW_TOLERANCE_MS = 30_000;
+    const docAge = Date.now() - attestationDoc.timestamp;
+    if (docAge > maxAgeMs + CLOCK_SKEW_TOLERANCE_MS) {
+        throw new AttestationError(`Attestation document is too old (${Math.round(docAge / 1000)}s > ${Math.round(maxAgeMs / 1000)}s)`, AttestationErrorCode.EXPIRED);
+    }
+    // 6. Check PCR values if specified
+    if (options.expectedPCRs) {
+        for (const [index, expectedHex] of Object.entries(options.expectedPCRs)) {
+            const pcrIndex = Number(index);
+            const actual = attestationDoc.pcrs.get(pcrIndex);
+            if (!actual) {
+                throw new AttestationError(`PCR${pcrIndex} not found in attestation document`, AttestationErrorCode.PCR_MISMATCH);
+            }
+            const actualHex = Buffer.from(actual).toString("hex");
+            if (actualHex !== expectedHex.toLowerCase()) {
+                throw new AttestationError(`PCR${pcrIndex} mismatch: expected ${expectedHex}, got ${actualHex}`, AttestationErrorCode.PCR_MISMATCH);
+            }
+        }
+    }
+    // 7. Check nonce if specified
+    if (options.expectedNonce) {
+        if (!attestationDoc.nonce) {
+            throw new AttestationError("Attestation document does not contain a nonce", AttestationErrorCode.NONCE_MISMATCH);
+        }
+        const actualNonce = Buffer.from(attestationDoc.nonce).toString("hex");
+        if (actualNonce !== options.expectedNonce.toLowerCase()) {
+            throw new AttestationError(`Nonce mismatch: expected ${options.expectedNonce}, got ${actualNonce}`, AttestationErrorCode.NONCE_MISMATCH);
+        }
+    }
+    // 8. Extract public key
+    if (!attestationDoc.publicKey) {
+        throw new AttestationError("Attestation document does not contain a public key", AttestationErrorCode.MISSING_KEY);
+    }
+    const publicKey = new TextDecoder().decode(attestationDoc.publicKey);
+    logger.info("Nitro attestation verified successfully", {
+        moduleId: attestationDoc.moduleId,
+        pcr0: Buffer.from(attestationDoc.pcrs.get(0) ?? new Uint8Array())
+            .toString("hex")
+            .slice(0, 16),
+    });
+    return { publicKey, document: attestationDoc };
+}
+function parseAttestationDocument(doc) {
+    if (typeof doc.module_id !== "string") {
+        throw new AttestationError("Missing or invalid module_id");
+    }
+    // cbor-x decodes 8-byte CBOR uint64 as BigInt — Nitro's Rust NSM library always
+    // encodes the timestamp as uint64 regardless of value, so we must accept both.
+    if (typeof doc.timestamp !== "number" && typeof doc.timestamp !== "bigint") {
+        throw new AttestationError("Missing or invalid timestamp");
+    }
+    if (typeof doc.digest !== "string") {
+        throw new AttestationError("Missing or invalid digest");
+    }
+    if (!(doc.certificate instanceof Uint8Array)) {
+        throw new AttestationError("Missing or invalid certificate");
+    }
+    if (!Array.isArray(doc.cabundle)) {
+        throw new AttestationError("Missing or invalid cabundle");
+    }
+    // Normalize pcrs: cbor-x decodes CBOR maps as plain objects (with string keys)
+    // by default, but as Map when using certain configurations. Accept both.
+    let pcrs;
+    if (doc.pcrs instanceof Map) {
+        pcrs = doc.pcrs;
+        for (const [key, value] of pcrs) {
+            if (typeof key !== "number" || !(value instanceof Uint8Array)) {
+                throw new AttestationError("Invalid pcrs entry: expected Map<number, Uint8Array>");
+            }
+        }
+    }
+    else if (doc.pcrs && typeof doc.pcrs === "object") {
+        pcrs = new Map();
+        for (const [key, value] of Object.entries(doc.pcrs)) {
+            if (!(value instanceof Uint8Array)) {
+                throw new AttestationError("Invalid pcrs entry: expected Map<number, Uint8Array>");
+            }
+            pcrs.set(Number(key), value);
+        }
+    }
+    else {
+        throw new AttestationError("Missing or invalid pcrs");
+    }
+    // Validate cabundle entries
+    const cabundle = doc.cabundle;
+    for (const entry of cabundle) {
+        if (!(entry instanceof Uint8Array)) {
+            throw new AttestationError("Invalid cabundle entry: expected Uint8Array[]");
+        }
+    }
+    return {
+        moduleId: doc.module_id,
+        timestamp: Number(doc.timestamp),
+        digest: doc.digest,
+        pcrs,
+        certificate: doc.certificate,
+        cabundle: cabundle,
+        publicKey: doc.public_key instanceof Uint8Array ? doc.public_key : undefined,
+        userData: doc.user_data instanceof Uint8Array ? doc.user_data : undefined,
+        nonce: doc.nonce instanceof Uint8Array ? doc.nonce : undefined,
+    };
+}
+async function verifyCertificateChain(leaf, intermediates, root) {
+    // Verify root is self-signed
+    const rootSelfSigned = await root.verify({ signatureOnly: true });
+    if (!rootSelfSigned) {
+        throw new AttestationError("Root CA is not self-signed", AttestationErrorCode.CHAIN_FAILED);
+    }
+    // Build ordered chain: root → intermediates → leaf
+    const chain = [root, ...intermediates, leaf];
+    for (let i = 1; i < chain.length; i++) {
+        const cert = chain[i];
+        const issuer = chain[i - 1];
+        const valid = await cert.verify({ publicKey: issuer, signatureOnly: true });
+        if (!valid) {
+            throw new AttestationError(`Certificate chain verification failed at index ${i}`, AttestationErrorCode.CHAIN_FAILED);
+        }
+        // Check validity period
+        const now = new Date();
+        if (now < cert.notBefore || now > cert.notAfter) {
+            throw new AttestationError(`Certificate at index ${i} is not within its validity period`, AttestationErrorCode.CHAIN_FAILED);
+        }
+    }
+}
+export const AttestationErrorCode = {
+    INVALID_COSE: "INVALID_COSE",
+    INVALID_DOCUMENT: "INVALID_DOCUMENT",
+    CHAIN_FAILED: "CHAIN_FAILED",
+    SIGNATURE_FAILED: "SIGNATURE_FAILED",
+    EXPIRED: "EXPIRED",
+    PCR_MISMATCH: "PCR_MISMATCH",
+    NONCE_MISMATCH: "NONCE_MISMATCH",
+    MISSING_KEY: "MISSING_KEY",
+};
+/** Error thrown when Nitro attestation verification fails. Includes a machine-readable {@link AttestationErrorCode}. */
+export class AttestationError extends Error {
+    code;
+    constructor(message, code = AttestationErrorCode.INVALID_DOCUMENT) {
+        super(message);
+        this.name = "AttestationError";
+        this.code = code;
+    }
+}
+//# sourceMappingURL=attestation.js.map

package/dist/lib/attestation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"attestation.js","sourceRoot":"","sources":["../../src/lib/attestation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,IAAI,MAAM,gBAAgB,CAAC;AACvC,OAAO,EAAE,MAAM,IAAI,UAAU,EAAE,MAAM,IAAI,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEpE,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC;;;GAGG;AACH,MAAM,qBAAqB,GAAG;;;;;;;;;;;;;0BAaJ,CAAC;AA+B3B;;;;;;;;;;;;;GAaG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,yBAAiC,EACjC,UAAoC,EAAE;IAEtC,MAAM,EAAE,QAAQ,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IAE7C,oCAAoC;IACpC,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,QAAQ,CAAC,CAAC;IAC7D,MAAM,SAAS,GAAY,UAAU,CAAC,GAAG,CAAC,CAAC;IAE3C,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxD,MAAM,IAAI,gBAAgB,CAAC,8BAA8B,EAAE,oBAAoB,CAAC,YAAY,CAAC,CAAC;IAChG,CAAC;IAED,MAAM,CAAC,gBAAgB,EAAE,AAAD,EAAG,OAAO,EAAE,SAAS,CAAC,GAAG,SAKhD,CAAC;IAEF,qDAAqD;IACrD,MAAM,GAAG,GAAG,UAAU,CAAC,OAAO,CAA4B,CAAC;IAC3D,MAAM,cAAc,GAAG,wBAAwB,CAAC,GAAG,CAAC,CAAC;IAErD,wCAAwC;IACxC,8FAA8F;IAC9F,MAAM,QAAQ,GAAG,IAAI,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,CAAC;IACnF,MAAM,MAAM,GAAG,IAAI,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,SAAS,IAAI,qBAAqB,CAAC,CAAC;IAEpF,oEAAoE;IACpE,MAAM,aAAa,GAAG,cAAc,CAAC,QAAQ,CAAC,GAAG,CAC/C,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CACpD,CAAC;IACF,MAAM,sBAAsB,CAAC,QAAQ,EAAE,aAAa,EAAE,MAAM,CAAC,CAAC;IAE9D,iCAAiC;IACjC,8EAA8E;IAC9E,uEAAuE;IACvE,+EAA+E;IAC/E,MAAM,YAAY,GAAG,UAAU,CAAC,CAAC,YAAY,EAAE,gBAAgB,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;IAE5F,MAAM,aAAa,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,MAAM,CACnD,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,EAAuB,EAC3D,CAAC,QAAQ,CAAC,CACX,CAAC;IACF,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAC/C,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,EAClC,aAAa,EACb,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EACtB,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAC1B,CAAC;IAEF,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,MAAM,IAAI,gBAAgB,CACxB,0CAA0C,EAC1C,oBAAoB,CAAC,gBAAgB,CACtC,CAAC;IACJ,CAAC;IAED,oFAAoF;IACpF,MAAM,uBAAuB,GAAG,MAAM,CAAC;IACvC,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,cAAc,CAAC,SAAS,CAAC;IACrD,IAAI,MAAM,GAAG,QAAQ,GAAG,uBAAuB,EAAE,CAAC;QAChD,MAAM,IAAI,gBAAgB,CACxB,oCAAoC,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,IAAI,EACnG,oBAAoB,CAAC,OAAO,CAC7B,CAAC;IACJ,CAAC;IAED,mCAAmC;IACnC,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;QACzB,KAAK,MAAM,CAAC,KAAK,EAAE,WAAW,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;YACxE,MAAM,QAAQ,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;YAC/B,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACjD,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,gBAAgB,CACxB,MAAM,QAAQ,oCAAoC,EAClD,oBAAoB,CAAC,YAAY,CAClC,CAAC;YACJ,CAAC;YACD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YACtD,IAAI,SAAS,KAAK,WAAW,CAAC,WAAW,EAAE,EAAE,CAAC;gBAC5C,MAAM,IAAI,gBAAgB,CACxB,MAAM,QAAQ,uBAAuB,WAAW,SAAS,SAAS,EAAE,EACpE,oBAAoB,CAAC,YAAY,CAClC,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED,8BAA8B;IAC9B,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;QAC1B,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,CAAC;YAC1B,MAAM,IAAI,gBAAgB,CACxB,+CAA+C,EAC/C,oBAAoB,CAAC,cAAc,CACpC,CAAC;QACJ,CAAC;QACD,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACtE,IAAI,WAAW,KAAK,OAAO,CAAC,aAAa,CAAC,WAAW,EAAE,EAAE,CAAC;YACxD,MAAM,IAAI,gBAAgB,CACxB,4BAA4B,OAAO,CAAC,aAAa,SAAS,WAAW,EAAE,EACvE,oBAAoB,CAAC,cAAc,CACpC,CAAC;QACJ,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,gBAAgB,CACxB,oDAAoD,EACpD,oBAAoB,CAAC,WAAW,CACjC,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;IAErE,MAAM,CAAC,IAAI,CAAC,yCAAyC,EAAE;QACrD,QAAQ,EAAE,cAAc,CAAC,QAAQ;QACjC,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,UAAU,EAAE,CAAC;aAC9D,QAAQ,CAAC,KAAK,CAAC;aACf,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;KAChB,CAAC,CAAC;IAEH,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,cAAc,EAAE,CAAC;AACjD,CAAC;AAED,SAAS,wBAAwB,CAAC,GAA4B;IAC5D,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QACtC,MAAM,IAAI,gBAAgB,CAAC,8BAA8B,CAAC,CAAC;IAC7D,CAAC;IACD,gFAAgF;IAChF,+EAA+E;IAC/E,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAC3E,MAAM,IAAI,gBAAgB,CAAC,8BAA8B,CAAC,CAAC;IAC7D,CAAC;IACD,IAAI,OAAO,GAAG,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QACnC,MAAM,IAAI,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;IAC1D,CAAC;IACD,IAAI,CAAC,CAAC,GAAG,CAAC,WAAW,YAAY,UAAU,CAAC,EAAE,CAAC;QAC7C,MAAM,IAAI,gBAAgB,CAAC,gCAAgC,CAAC,CAAC;IAC/D,CAAC;IACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;IAC5D,CAAC;IAED,+EAA+E;IAC/E,yEAAyE;IACzE,IAAI,IAA6B,CAAC;IAClC,IAAI,GAAG,CAAC,IAAI,YAAY,GAAG,EAAE,CAAC;QAC5B,IAAI,GAAG,GAAG,CAAC,IAA+B,CAAC;QAC3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,IAAI,EAAE,CAAC;YAChC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,CAAC,CAAC,KAAK,YAAY,UAAU,CAAC,EAAE,CAAC;gBAC9D,MAAM,IAAI,gBAAgB,CAAC,sDAAsD,CAAC,CAAC;YACrF,CAAC;QACH,CAAC;IACH,CAAC;SAAM,IAAI,GAAG,CAAC,IAAI,IAAI,OAAO,GAAG,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QACpD,IAAI,GAAG,IAAI,GAAG,EAAsB,CAAC;QACrC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,IAA+B,CAAC,EAAE,CAAC;YAC/E,IAAI,CAAC,CAAC,KAAK,YAAY,UAAU,CAAC,EAAE,CAAC;gBACnC,MAAM,IAAI,gBAAgB,CAAC,sDAAsD,CAAC,CAAC;YACrF,CAAC;YACD,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC;QAC/B,CAAC;IACH,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,gBAAgB,CAAC,yBAAyB,CAAC,CAAC;IACxD,CAAC;IAED,4BAA4B;IAC5B,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAqB,CAAC;IAC3C,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;QAC7B,IAAI,CAAC,CAAC,KAAK,YAAY,UAAU,CAAC,EAAE,CAAC;YACnC,MAAM,IAAI,gBAAgB,CAAC,+CAA+C,CAAC,CAAC;QAC9E,CAAC;IACH,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,GAAG,CAAC,SAAmB;QACjC,SAAS,EAAE,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC;QAChC,MAAM,EAAE,GAAG,CAAC,MAAgB;QAC5B,IAAI;QACJ,WAAW,EAAE,GAAG,CAAC,WAAyB;QAC1C,QAAQ,EAAE,QAAwB;QAClC,SAAS,EAAE,GAAG,CAAC,UAAU,YAAY,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;QAC5E,QAAQ,EAAE,GAAG,CAAC,SAAS,YAAY,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;QACzE,KAAK,EAAE,GAAG,CAAC,KAAK,YAAY,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS;KAC/D,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,sBAAsB,CACnC,IAA0B,EAC1B,aAAqC,EACrC,IAA0B;IAE1B,6BAA6B;IAC7B,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IAClE,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,MAAM,IAAI,gBAAgB,CAAC,4BAA4B,EAAE,oBAAoB,CAAC,YAAY,CAAC,CAAC;IAC9F,CAAC;IAED,mDAAmD;IACnD,MAAM,KAAK,GAAG,CAAC,IAAI,EAAE,GAAG,aAAa,EAAE,IAAI,CAAC,CAAC;IAE7C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;QACvB,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,GAAG,CAAC,CAAE,CAAC;QAE7B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE,SAAS,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5E,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,gBAAgB,CACxB,kDAAkD,CAAC,EAAE,EACrD,oBAAoB,CAAC,YAAY,CAClC,CAAC;QACJ,CAAC;QAED,wBAAwB;QACxB,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,GAAG,GAAG,IAAI,CAAC,SAAS,IAAI,GAAG,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAChD,MAAM,IAAI,gBAAgB,CACxB,wBAAwB,CAAC,oCAAoC,EAC7D,oBAAoB,CAAC,YAAY,CAClC,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAID,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,YAAY,EAAE,cAAc;IAC5B,gBAAgB,EAAE,kBAAkB;IACpC,YAAY,EAAE,cAAc;IAC5B,gBAAgB,EAAE,kBAAkB;IACpC,OAAO,EAAE,SAAS;IAClB,YAAY,EAAE,cAAc;IAC5B,cAAc,EAAE,gBAAgB;IAChC,WAAW,EAAE,aAAa;CAClB,CAAC;AAEX,wHAAwH;AACxH,MAAM,OAAO,gBAAiB,SAAQ,KAAK;IAChC,IAAI,CAAuB;IAEpC,YAAY,OAAe,EAAE,OAA6B,oBAAoB,CAAC,gBAAgB;QAC7F,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,kBAAkB,CAAC;QAC/B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;CACF"}

package/dist/lib/encrypt.d.ts

@@ -0,0 +1,5 @@
+export declare function encrypt({ data, encryptionPublicKey, }: {
+    data: Uint8Array;
+    encryptionPublicKey: string;
+}): Promise<Uint8Array>;
+//# sourceMappingURL=encrypt.d.ts.map

package/dist/lib/encrypt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypt.d.ts","sourceRoot":"","sources":["../../src/lib/encrypt.ts"],"names":[],"mappings":"AAIA,wBAAsB,OAAO,CAAC,EAC5B,IAAI,EACJ,mBAAmB,GACpB,EAAE;IACD,IAAI,EAAE,UAAU,CAAC;IACjB,mBAAmB,EAAE,MAAM,CAAC;CAC7B,GAAG,OAAO,CAAC,UAAU,CAAC,CAStB"}

package/dist/lib/encrypt.js

@@ -0,0 +1,20 @@
+import * as openpgp from "openpgp";
+openpgp.config.aeadProtect = true;
+export async function encrypt({ data, encryptionPublicKey, }) {
+    const message = await openpgp.createMessage({ binary: data });
+    const encryptedArmored = await openpgp.encrypt({
+        message,
+        encryptionKeys: await openpgp.readKey({ armoredKey: encryptionPublicKey }),
+    });
+    const encrypted = await unarmorToUint8Array(encryptedArmored);
+    return encrypted;
+}
+async function unarmorToUint8Array(armored) {
+    const unarmored = await openpgp.unarmor(armored);
+    const unarmoredData = unarmored.data;
+    if (!(unarmoredData instanceof Uint8Array)) {
+        throw new Error("Unarmored data is not a Uint8Array");
+    }
+    return unarmoredData;
+}
+//# sourceMappingURL=encrypt.js.map

package/dist/lib/encrypt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypt.js","sourceRoot":"","sources":["../../src/lib/encrypt.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,OAAO,MAAM,SAAS,CAAC;AAEnC,OAAO,CAAC,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC;AAElC,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,EAC5B,IAAI,EACJ,mBAAmB,GAIpB;IACC,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,aAAa,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9D,MAAM,gBAAgB,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC;QAC7C,OAAO;QACP,cAAc,EAAE,MAAM,OAAO,CAAC,OAAO,CAAC,EAAE,UAAU,EAAE,mBAAmB,EAAE,CAAC;KAC3E,CAAC,CAAC;IAEH,MAAM,SAAS,GAAG,MAAM,mBAAmB,CAAC,gBAAgB,CAAC,CAAC;IAC9D,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,KAAK,UAAU,mBAAmB,CAAC,OAAe;IAChD,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACjD,MAAM,aAAa,GAAY,SAAS,CAAC,IAAI,CAAC;IAC9C,IAAI,CAAC,CAAC,aAAa,YAAY,UAAU,CAAC,EAAE,CAAC;QAC3C,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxD,CAAC;IACD,OAAO,aAAa,CAAC;AACvB,CAAC"}

package/dist/lib/logger.d.ts

@@ -0,0 +1,2 @@
+export declare const logger: import("@logtape/logtape").Logger;
+//# sourceMappingURL=logger.d.ts.map

package/dist/lib/logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.d.ts","sourceRoot":"","sources":["../../src/lib/logger.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,MAAM,mCAAmC,CAAC"}

package/dist/lib/logger.js

@@ -0,0 +1,3 @@
+import { getLogger } from "@logtape/logtape";
+export const logger = getLogger(["tee-rex", "prover"]);
+//# sourceMappingURL=logger.js.map

package/dist/lib/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../../src/lib/logger.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAE7C,MAAM,CAAC,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC"}

package/dist/lib/tee-rex-prover.d.ts

@@ -0,0 +1,39 @@
+import { BBLazyPrivateKernelProver } from "@aztec/bb-prover/client/lazy";
+import type { PrivateExecutionStep } from "@aztec/stdlib/kernel";
+import { ChonkProofWithPublicInputs } from "@aztec/stdlib/proofs";
+import { type ValueOf } from "ts-essentials";
+import { type AttestationVerifyOptions } from "./attestation.js";
+/** Whether proofs are generated locally (WASM) or on a remote tee-rex server. */
+export type ProvingMode = ValueOf<typeof ProvingMode>;
+export declare const ProvingMode: {
+    readonly local: "local";
+    readonly remote: "remote";
+};
+export interface TeeRexAttestationConfig {
+    /** When true, reject servers running in standard (non-TEE) mode. Default: false. */
+    requireAttestation?: boolean;
+    /** Expected PCR values to verify against the attestation document. */
+    expectedPCRs?: AttestationVerifyOptions["expectedPCRs"];
+    /** Maximum age of attestation documents in milliseconds. Default: 5 minutes. */
+    maxAgeMs?: number;
+}
+/**
+ * Aztec private kernel prover that can generate proofs locally or on a remote
+ * tee-rex server running inside an AWS Nitro Enclave.
+ *
+ * In remote mode, witness data is encrypted with the server's attested public
+ * key (curve25519 + AES-256-GCM) before being sent over the network.
+ */
+export declare class TeeRexProver extends BBLazyPrivateKernelProver {
+    #private;
+    private apiUrl;
+    constructor(apiUrl: string, ...args: ConstructorParameters<typeof BBLazyPrivateKernelProver>);
+    /** Switch between local WASM proving and remote TEE proving. */
+    setProvingMode(mode: ProvingMode): void;
+    /** Update the tee-rex server URL used for remote proving. */
+    setApiUrl(url: string): void;
+    /** Configure attestation verification (PCR checks, freshness, require TEE). */
+    setAttestationConfig(config: TeeRexAttestationConfig): void;
+    createChonkProof(executionSteps: PrivateExecutionStep[]): Promise<ChonkProofWithPublicInputs>;
+}
+//# sourceMappingURL=tee-rex-prover.d.ts.map

package/dist/lib/tee-rex-prover.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tee-rex-prover.d.ts","sourceRoot":"","sources":["../../src/lib/tee-rex-prover.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,MAAM,8BAA8B,CAAC;AACzE,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AACjE,OAAO,EAAE,0BAA0B,EAAE,MAAM,sBAAsB,CAAC;AAKlE,OAAO,EAAwB,KAAK,OAAO,EAAE,MAAM,eAAe,CAAC;AAGnE,OAAO,EAAE,KAAK,wBAAwB,EAA0B,MAAM,kBAAkB,CAAC;AAIzF,iFAAiF;AACjF,MAAM,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,WAAW,CAAC,CAAC;AACtD,eAAO,MAAM,WAAW;;;CAGd,CAAC;AAEX,MAAM,WAAW,uBAAuB;IACtC,oFAAoF;IACpF,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,sEAAsE;IACtE,YAAY,CAAC,EAAE,wBAAwB,CAAC,cAAc,CAAC,CAAC;IACxD,gFAAgF;IAChF,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;GAMG;AACH,qBAAa,YAAa,SAAQ,yBAAyB;;IAKvD,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,MAAM,EACtB,GAAG,IAAI,EAAE,qBAAqB,CAAC,OAAO,yBAAyB,CAAC;IAKlE,gEAAgE;IAChE,cAAc,CAAC,IAAI,EAAE,WAAW;IAIhC,6DAA6D;IAC7D,SAAS,CAAC,GAAG,EAAE,MAAM;IAIrB,+EAA+E;IAC/E,oBAAoB,CAAC,MAAM,EAAE,uBAAuB;IAI9C,gBAAgB,CACpB,cAAc,EAAE,oBAAoB,EAAE,GACrC,OAAO,CAAC,0BAA0B,CAAC;CA4GvC"}