npm - @aztec/stdlib - Versions diffs - 0.0.1-commit.d6f2b3f94 → 0.0.1-commit.dbf9cec - Mend

@aztec/stdlib 0.0.1-commit.d6f2b3f94 → 0.0.1-commit.dbf9cec

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (296) hide show

package/dest/abi/decoder.d.ts +1 -1
package/dest/abi/decoder.d.ts.map +1 -1
package/dest/abi/decoder.js +1 -4
package/dest/abi/encoder.d.ts +1 -1
package/dest/abi/encoder.d.ts.map +1 -1
package/dest/abi/encoder.js +9 -5
package/dest/auth_witness/auth_witness.js +3 -3
package/dest/avm/avm.d.ts +300 -300
package/dest/avm/avm_proving_request.d.ts +166 -166
package/dest/avm/revert_code.d.ts +16 -1
package/dest/avm/revert_code.d.ts.map +1 -1
package/dest/avm/revert_code.js +15 -5
package/dest/block/block_data.d.ts +52 -0
package/dest/block/block_data.d.ts.map +1 -0
package/dest/block/block_data.js +12 -0
package/dest/block/index.d.ts +2 -1
package/dest/block/index.d.ts.map +1 -1
package/dest/block/index.js +1 -0
package/dest/block/l2_block_source.d.ts +20 -1
package/dest/block/l2_block_source.d.ts.map +1 -1
package/dest/block/l2_block_stream/l2_block_stream.d.ts +1 -1
package/dest/block/l2_block_stream/l2_block_stream.d.ts.map +1 -1
package/dest/block/l2_block_stream/l2_block_stream.js +10 -0
package/dest/checkpoint/checkpoint.d.ts +21 -7
package/dest/checkpoint/checkpoint.d.ts.map +1 -1
package/dest/checkpoint/checkpoint.js +24 -13
package/dest/checkpoint/checkpoint_data.d.ts +120 -0
package/dest/checkpoint/checkpoint_data.d.ts.map +1 -0
package/dest/checkpoint/checkpoint_data.js +26 -0
package/dest/checkpoint/index.d.ts +2 -1
package/dest/checkpoint/index.d.ts.map +1 -1
package/dest/checkpoint/index.js +1 -0
package/dest/checkpoint/published_checkpoint.d.ts +17 -2
package/dest/checkpoint/published_checkpoint.d.ts.map +1 -1
package/dest/checkpoint/published_checkpoint.js +1 -2
package/dest/config/sequencer-config.d.ts +2 -2
package/dest/config/sequencer-config.d.ts.map +1 -1
package/dest/config/sequencer-config.js +6 -0
package/dest/contract/contract_address.js +4 -4
package/dest/contract/contract_class.d.ts +2 -3
package/dest/contract/contract_class.d.ts.map +1 -1
package/dest/contract/contract_class_id.d.ts +1 -1
package/dest/contract/contract_class_id.d.ts.map +1 -1
package/dest/contract/contract_class_id.js +5 -4
package/dest/contract/interfaces/node-info.d.ts +3 -1
package/dest/contract/interfaces/node-info.d.ts.map +1 -1
package/dest/contract/interfaces/node-info.js +2 -1
package/dest/contract/private_function.js +2 -2
package/dest/file-store/local.d.ts +3 -3
package/dest/file-store/local.d.ts.map +1 -1
package/dest/file-store/local.js +13 -4
package/dest/file-store/s3.d.ts +1 -1
package/dest/file-store/s3.d.ts.map +1 -1
package/dest/file-store/s3.js +11 -3
package/dest/ha-signing/config.d.ts +101 -0
package/dest/ha-signing/config.d.ts.map +1 -0
package/dest/ha-signing/config.js +92 -0
package/dest/ha-signing/index.d.ts +3 -0
package/dest/ha-signing/index.d.ts.map +1 -0
package/dest/ha-signing/index.js +2 -0
package/dest/ha-signing/types.d.ts +85 -0
package/dest/ha-signing/types.d.ts.map +1 -0
package/dest/ha-signing/types.js +32 -0
package/dest/hash/hash.d.ts +2 -1
package/dest/hash/hash.d.ts.map +1 -1
package/dest/hash/hash.js +16 -10
package/dest/hash/map_slot.js +2 -2
package/dest/interfaces/archiver.d.ts +1 -1
package/dest/interfaces/archiver.d.ts.map +1 -1
package/dest/interfaces/archiver.js +5 -0
package/dest/interfaces/aztec-node-admin.d.ts +30 -2
package/dest/interfaces/aztec-node-admin.d.ts.map +1 -1
package/dest/interfaces/aztec-node-admin.js +9 -3
package/dest/interfaces/aztec-node.d.ts +1 -1
package/dest/interfaces/block-builder.d.ts +2 -2
package/dest/interfaces/block-builder.d.ts.map +1 -1
package/dest/interfaces/configs.d.ts +17 -2
package/dest/interfaces/configs.d.ts.map +1 -1
package/dest/interfaces/configs.js +4 -1
package/dest/interfaces/merkle_tree_operations.d.ts +2 -2
package/dest/interfaces/merkle_tree_operations.d.ts.map +1 -1
package/dest/interfaces/p2p.d.ts +3 -8
package/dest/interfaces/p2p.d.ts.map +1 -1
package/dest/interfaces/proving-job.d.ts +2 -2
package/dest/interfaces/validator.d.ts +3 -3
package/dest/interfaces/validator.d.ts.map +1 -1
package/dest/interfaces/validator.js +1 -1
package/dest/kernel/hints/build_note_hash_read_request_hints.d.ts +3 -3
package/dest/kernel/hints/build_note_hash_read_request_hints.d.ts.map +1 -1
package/dest/kernel/hints/build_note_hash_read_request_hints.js +13 -10
package/dest/kernel/hints/build_nullifier_read_request_hints.d.ts +3 -3
package/dest/kernel/hints/build_nullifier_read_request_hints.d.ts.map +1 -1
package/dest/kernel/hints/build_nullifier_read_request_hints.js +13 -10
package/dest/kernel/hints/build_transient_data_hints.d.ts +5 -2
package/dest/kernel/hints/build_transient_data_hints.d.ts.map +1 -1
package/dest/kernel/hints/build_transient_data_hints.js +9 -3
package/dest/kernel/hints/index.d.ts +2 -2
package/dest/kernel/hints/index.js +2 -2
package/dest/kernel/hints/key_validation_request_and_separator.d.ts +24 -0
package/dest/kernel/hints/key_validation_request_and_separator.d.ts.map +1 -0
package/dest/kernel/hints/{key_validation_request_and_generator.js → key_validation_request_and_separator.js} +12 -15
package/dest/kernel/hints/{scoped_key_validation_request_and_generator.d.ts → scoped_key_validation_request_and_separator.d.ts} +8 -8
package/dest/kernel/hints/{scoped_key_validation_request_and_generator.d.ts.map → scoped_key_validation_request_and_separator.d.ts.map} +1 -1
package/dest/kernel/hints/{scoped_key_validation_request_and_generator.js → scoped_key_validation_request_and_separator.js} +6 -6
package/dest/kernel/private_circuit_public_inputs.d.ts +9 -9
package/dest/kernel/private_circuit_public_inputs.d.ts.map +1 -1
package/dest/kernel/private_circuit_public_inputs.js +16 -16
package/dest/kernel/private_kernel_circuit_public_inputs.d.ts +3 -3
package/dest/kernel/private_kernel_circuit_public_inputs.d.ts.map +1 -1
package/dest/kernel/private_kernel_circuit_public_inputs.js +4 -4
package/dest/kernel/private_kernel_tail_circuit_private_inputs.d.ts +3 -3
package/dest/kernel/private_kernel_tail_circuit_private_inputs.d.ts.map +1 -1
package/dest/kernel/private_kernel_tail_circuit_private_inputs.js +4 -4
package/dest/kernel/private_kernel_tail_circuit_public_inputs.d.ts +3 -3
package/dest/kernel/private_kernel_tail_circuit_public_inputs.d.ts.map +1 -1
package/dest/kernel/private_kernel_tail_circuit_public_inputs.js +7 -7
package/dest/kernel/private_to_public_kernel_circuit_public_inputs.d.ts +3 -3
package/dest/kernel/private_to_public_kernel_circuit_public_inputs.d.ts.map +1 -1
package/dest/kernel/private_to_public_kernel_circuit_public_inputs.js +7 -7
package/dest/kernel/private_to_rollup_kernel_circuit_public_inputs.d.ts +3 -3
package/dest/kernel/private_to_rollup_kernel_circuit_public_inputs.d.ts.map +1 -1
package/dest/kernel/private_to_rollup_kernel_circuit_public_inputs.js +7 -7
package/dest/kernel/private_validation_requests.d.ts +3 -3
package/dest/kernel/private_validation_requests.js +9 -9
package/dest/keys/derivation.js +8 -8
package/dest/keys/key_types.d.ts +3 -3
package/dest/keys/key_types.d.ts.map +1 -1
package/dest/keys/public_keys.js +2 -2
package/dest/keys/utils.js +5 -5
package/dest/logs/debug_log_store.d.ts +30 -0
package/dest/logs/debug_log_store.d.ts.map +1 -0
package/dest/logs/debug_log_store.js +30 -0
package/dest/logs/extended_directional_app_tagging_secret.d.ts +47 -0
package/dest/logs/extended_directional_app_tagging_secret.d.ts.map +1 -0
package/dest/logs/{directional_app_tagging_secret.js → extended_directional_app_tagging_secret.js} +23 -15
package/dest/logs/index.d.ts +3 -2
package/dest/logs/index.d.ts.map +1 -1
package/dest/logs/index.js +2 -1
package/dest/logs/pre_tag.d.ts +16 -11
package/dest/logs/pre_tag.d.ts.map +1 -1
package/dest/logs/pre_tag.js +2 -2
package/dest/logs/private_log.d.ts +2 -2
package/dest/logs/private_log.d.ts.map +1 -1
package/dest/logs/siloed_tag.d.ts +5 -3
package/dest/logs/siloed_tag.d.ts.map +1 -1
package/dest/logs/siloed_tag.js +8 -7
package/dest/logs/tag.js +1 -1
package/dest/note/index.d.ts +1 -2
package/dest/note/index.d.ts.map +1 -1
package/dest/note/index.js +0 -1
package/dest/p2p/attestation_utils.d.ts +11 -1
package/dest/p2p/attestation_utils.d.ts.map +1 -1
package/dest/p2p/attestation_utils.js +45 -0
package/dest/p2p/block_proposal.d.ts +2 -2
package/dest/p2p/block_proposal.d.ts.map +1 -1
package/dest/p2p/block_proposal.js +2 -4
package/dest/p2p/checkpoint_attestation.d.ts +2 -1
package/dest/p2p/checkpoint_attestation.d.ts.map +1 -1
package/dest/p2p/checkpoint_attestation.js +1 -1
package/dest/p2p/checkpoint_proposal.d.ts +11 -6
package/dest/p2p/checkpoint_proposal.d.ts.map +1 -1
package/dest/p2p/checkpoint_proposal.js +21 -16
package/dest/p2p/client_type.d.ts +2 -5
package/dest/p2p/client_type.d.ts.map +1 -1
package/dest/p2p/client_type.js +0 -7
package/dest/p2p/consensus_payload.d.ts +12 -3
package/dest/p2p/consensus_payload.d.ts.map +1 -1
package/dest/p2p/consensus_payload.js +22 -15
package/dest/p2p/index.d.ts +1 -2
package/dest/p2p/index.d.ts.map +1 -1
package/dest/p2p/index.js +0 -1
package/dest/p2p/topic_type.d.ts +3 -4
package/dest/p2p/topic_type.d.ts.map +1 -1
package/dest/p2p/topic_type.js +7 -24
package/dest/rollup/checkpoint_header.d.ts +2 -2
package/dest/rollup/checkpoint_header.js +2 -2
package/dest/tests/factories.d.ts +3 -1
package/dest/tests/factories.d.ts.map +1 -1
package/dest/tests/factories.js +19 -11
package/dest/tests/mocks.d.ts +5 -2
package/dest/tests/mocks.d.ts.map +1 -1
package/dest/tests/mocks.js +18 -13
package/dest/trees/public_data_leaf.d.ts +2 -1
package/dest/trees/public_data_leaf.d.ts.map +1 -1
package/dest/trees/public_data_leaf.js +7 -6
package/dest/tx/block_header.js +2 -2
package/dest/tx/global_variables.d.ts +4 -4
package/dest/tx/global_variables.d.ts.map +1 -1
package/dest/tx/profiling.d.ts +4 -4
package/dest/tx/profiling.d.ts.map +1 -1
package/dest/tx/profiling.js +3 -3
package/dest/tx/protocol_contracts.d.ts +1 -1
package/dest/tx/protocol_contracts.d.ts.map +1 -1
package/dest/tx/protocol_contracts.js +2 -2
package/dest/tx/public_simulation_output.d.ts +4 -2
package/dest/tx/public_simulation_output.d.ts.map +1 -1
package/dest/tx/public_simulation_output.js +7 -3
package/dest/tx/tx_receipt.d.ts +16 -2
package/dest/tx/tx_receipt.d.ts.map +1 -1
package/dest/tx/tx_receipt.js +11 -3
package/dest/tx/tx_request.js +2 -2
package/dest/tx/validator/error_texts.d.ts +1 -1
package/dest/tx/validator/error_texts.js +1 -1
package/dest/validators/schemas.d.ts +30 -30
package/dest/validators/schemas.d.ts.map +1 -1
package/dest/validators/schemas.js +4 -3
package/dest/validators/types.d.ts +3 -3
package/dest/validators/types.d.ts.map +1 -1
package/package.json +10 -10
package/src/abi/decoder.ts +1 -4
package/src/abi/encoder.ts +8 -5
package/src/auth_witness/auth_witness.ts +3 -3
package/src/avm/revert_code.ts +15 -0
package/src/block/block_data.ts +26 -0
package/src/block/index.ts +1 -0
package/src/block/l2_block_source.ts +22 -0
package/src/block/l2_block_stream/l2_block_stream.ts +21 -0
package/src/checkpoint/checkpoint.ts +32 -14
package/src/checkpoint/checkpoint_data.ts +51 -0
package/src/checkpoint/index.ts +1 -0
package/src/checkpoint/published_checkpoint.ts +3 -1
package/src/config/sequencer-config.ts +11 -1
package/src/contract/contract_address.ts +4 -4
package/src/contract/contract_class.ts +3 -3
package/src/contract/contract_class_id.ts +5 -4
package/src/contract/interfaces/node-info.ts +3 -0
package/src/contract/private_function.ts +2 -2
package/src/file-store/local.ts +15 -5
package/src/file-store/s3.ts +12 -3
package/src/ha-signing/config.ts +149 -0
package/src/ha-signing/index.ts +18 -0
package/src/ha-signing/types.ts +112 -0
package/src/hash/hash.ts +14 -10
package/src/hash/map_slot.ts +2 -2
package/src/interfaces/archiver.ts +5 -0
package/src/interfaces/aztec-node-admin.ts +23 -0
package/src/interfaces/aztec-node.ts +1 -1
package/src/interfaces/block-builder.ts +1 -0
package/src/interfaces/configs.ts +12 -1
package/src/interfaces/merkle_tree_operations.ts +1 -1
package/src/interfaces/p2p.ts +2 -13
package/src/interfaces/validator.ts +2 -1
package/src/kernel/hints/build_note_hash_read_request_hints.ts +14 -18
package/src/kernel/hints/build_nullifier_read_request_hints.ts +15 -18
package/src/kernel/hints/build_transient_data_hints.ts +17 -2
package/src/kernel/hints/index.ts +2 -2
package/src/kernel/hints/{key_validation_request_and_generator.ts → key_validation_request_and_separator.ts} +12 -15
package/src/kernel/hints/{scoped_key_validation_request_and_generator.ts → scoped_key_validation_request_and_separator.ts} +10 -10
package/src/kernel/private_circuit_public_inputs.ts +14 -14
package/src/kernel/private_kernel_circuit_public_inputs.ts +2 -2
package/src/kernel/private_kernel_tail_circuit_private_inputs.ts +2 -2
package/src/kernel/private_kernel_tail_circuit_public_inputs.ts +5 -5
package/src/kernel/private_to_public_kernel_circuit_public_inputs.ts +5 -5
package/src/kernel/private_to_rollup_kernel_circuit_public_inputs.ts +5 -5
package/src/kernel/private_validation_requests.ts +8 -8
package/src/keys/derivation.ts +8 -8
package/src/keys/key_types.ts +6 -2
package/src/keys/public_keys.ts +2 -2
package/src/keys/utils.ts +5 -5
package/src/logs/debug_log_store.ts +54 -0
package/src/logs/{directional_app_tagging_secret.ts → extended_directional_app_tagging_secret.ts} +24 -16
package/src/logs/index.ts +2 -1
package/src/logs/pre_tag.ts +5 -5
package/src/logs/siloed_tag.ts +10 -5
package/src/logs/tag.ts +1 -1
package/src/note/index.ts +0 -1
package/src/p2p/attestation_utils.ts +56 -0
package/src/p2p/block_proposal.ts +1 -3
package/src/p2p/checkpoint_attestation.ts +6 -1
package/src/p2p/checkpoint_proposal.ts +36 -14
package/src/p2p/client_type.ts +0 -6
package/src/p2p/consensus_payload.ts +25 -12
package/src/p2p/index.ts +0 -1
package/src/p2p/topic_type.ts +8 -15
package/src/rollup/checkpoint_header.ts +2 -2
package/src/tests/factories.ts +21 -12
package/src/tests/mocks.ts +28 -13
package/src/trees/public_data_leaf.ts +11 -5
package/src/tx/block_header.ts +2 -2
package/src/tx/global_variables.ts +3 -3
package/src/tx/profiling.ts +5 -5
package/src/tx/protocol_contracts.ts +2 -2
package/src/tx/public_simulation_output.ts +4 -0
package/src/tx/tx_receipt.ts +10 -0
package/src/tx/tx_request.ts +2 -2
package/src/tx/validator/error_texts.ts +1 -1
package/src/validators/schemas.ts +8 -1
package/src/validators/types.ts +5 -4
package/dest/kernel/hints/key_validation_request_and_generator.d.ts +0 -30
package/dest/kernel/hints/key_validation_request_and_generator.d.ts.map +0 -1
package/dest/logs/directional_app_tagging_secret.d.ts +0 -40
package/dest/logs/directional_app_tagging_secret.d.ts.map +0 -1
package/dest/note/notes_filter.d.ts +0 -27
package/dest/note/notes_filter.d.ts.map +0 -1
package/dest/note/notes_filter.js +0 -11
package/src/note/notes_filter.ts +0 -38

package/src/ha-signing/config.ts ADDED Viewed

@@ -0,0 +1,149 @@
+import type { L1ContractAddresses } from '@aztec/ethereum/l1-contract-addresses';
+import {
+  type ConfigMappingsType,
+  booleanConfigHelper,
+  getConfigFromMappings,
+  getDefaultConfig,
+  numberConfigHelper,
+  optionalNumberConfigHelper,
+} from '@aztec/foundation/config';
+import { EthAddress } from '@aztec/foundation/eth-address';
+import type { ZodFor } from '@aztec/foundation/schemas';
+import { z } from 'zod';
+/**
+ * Configuration for the Validator HA Signer
+ *
+ * This config is used for distributed locking and slashing protection
+ * when running multiple validator nodes in a high-availability setup.
+ */
+export interface ValidatorHASignerConfig {
+  /** Whether HA signing / slashing protection is enabled */
+  haSigningEnabled: boolean;
+  /** L1 contract addresses (rollup address required) */
+  l1Contracts: Pick<L1ContractAddresses, 'rollupAddress'>;
+  /** Unique identifier for this node */
+  nodeId: string;
+  /** How long to wait between polls when a duty is being signed (ms) */
+  pollingIntervalMs: number;
+  /** Maximum time to wait for a duty being signed to complete (ms) */
+  signingTimeoutMs: number;
+  /** Maximum age of a stuck duty in ms (defaults to 2x hardcoded Aztec slot duration if not set) */
+  maxStuckDutiesAgeMs?: number;
+  /** Optional: clean up old duties after this many hours (disabled if not set) */
+  cleanupOldDutiesAfterHours?: number;
+  /**
+   * PostgreSQL connection string
+   * Format: postgresql://user:password@host:port/database
+   */
+  databaseUrl?: string;
+  /**
+   * PostgreSQL connection pool configuration
+   */
+  /** Maximum number of clients in the pool (default: 10) */
+  poolMaxCount?: number;
+  /** Minimum number of clients in the pool (default: 0) */
+  poolMinCount?: number;
+  /** Idle timeout in milliseconds (default: 10000) */
+  poolIdleTimeoutMs?: number;
+  /** Connection timeout in milliseconds (default: 0, no timeout) */
+  poolConnectionTimeoutMs?: number;
+}
+export const validatorHASignerConfigMappings: ConfigMappingsType<ValidatorHASignerConfig> = {
+  haSigningEnabled: {
+    env: 'VALIDATOR_HA_SIGNING_ENABLED',
+    description: 'Whether HA signing / slashing protection is enabled',
+    ...booleanConfigHelper(false),
+  },
+  l1Contracts: {
+    description: 'L1 contract addresses (rollup address required)',
+    nested: {
+      rollupAddress: {
+        description: 'The Ethereum address of the rollup contract (must be set programmatically)',
+        parseEnv: (val: string) => EthAddress.fromString(val),
+      },
+    },
+  },
+  nodeId: {
+    env: 'VALIDATOR_HA_NODE_ID',
+    description: 'The unique identifier for this node',
+    defaultValue: '',
+  },
+  pollingIntervalMs: {
+    env: 'VALIDATOR_HA_POLLING_INTERVAL_MS',
+    description: 'The number of ms to wait between polls when a duty is being signed',
+    ...numberConfigHelper(100),
+  },
+  signingTimeoutMs: {
+    env: 'VALIDATOR_HA_SIGNING_TIMEOUT_MS',
+    description: 'The maximum time to wait for a duty being signed to complete',
+    ...numberConfigHelper(3_000),
+  },
+  maxStuckDutiesAgeMs: {
+    env: 'VALIDATOR_HA_MAX_STUCK_DUTIES_AGE_MS',
+    description: 'The maximum age of a stuck duty in ms (defaults to 2x Aztec slot duration)',
+    ...optionalNumberConfigHelper(),
+  },
+  cleanupOldDutiesAfterHours: {
+    env: 'VALIDATOR_HA_OLD_DUTIES_MAX_AGE_H',
+    description: 'Optional: clean up old duties after this many hours (disabled if not set)',
+    ...optionalNumberConfigHelper(),
+  },
+  databaseUrl: {
+    env: 'VALIDATOR_HA_DATABASE_URL',
+    description:
+      'PostgreSQL connection string for validator HA signer (format: postgresql://user:password@host:port/database)',
+  },
+  poolMaxCount: {
+    env: 'VALIDATOR_HA_POOL_MAX',
+    description: 'Maximum number of clients in the pool',
+    ...numberConfigHelper(10),
+  },
+  poolMinCount: {
+    env: 'VALIDATOR_HA_POOL_MIN',
+    description: 'Minimum number of clients in the pool',
+    ...numberConfigHelper(0),
+  },
+  poolIdleTimeoutMs: {
+    env: 'VALIDATOR_HA_POOL_IDLE_TIMEOUT_MS',
+    description: 'Idle timeout in milliseconds',
+    ...numberConfigHelper(10_000),
+  },
+  poolConnectionTimeoutMs: {
+    env: 'VALIDATOR_HA_POOL_CONNECTION_TIMEOUT_MS',
+    description: 'Connection timeout in milliseconds (0 means no timeout)',
+    ...numberConfigHelper(0),
+  },
+};
+export const defaultValidatorHASignerConfig: ValidatorHASignerConfig = getDefaultConfig(
+  validatorHASignerConfigMappings,
+);
+/**
+ * Returns the validator HA signer configuration from environment variables.
+ * Note: If an environment variable is not set, the default value is used.
+ * @returns The validator HA signer configuration.
+ */
+export function getConfigEnvVars(): ValidatorHASignerConfig {
+  return getConfigFromMappings<ValidatorHASignerConfig>(validatorHASignerConfigMappings);
+}
+export const ValidatorHASignerConfigSchema = z.object({
+  haSigningEnabled: z.boolean(),
+  l1Contracts: z.object({
+    rollupAddress: z.instanceof(EthAddress),
+  }),
+  nodeId: z.string(),
+  pollingIntervalMs: z.number().min(0),
+  signingTimeoutMs: z.number().min(0),
+  maxStuckDutiesAgeMs: z.number().min(0).optional(),
+  cleanupOldDutiesAfterHours: z.number().min(0).optional(),
+  databaseUrl: z.string().optional(),
+  poolMaxCount: z.number().min(0).optional(),
+  poolMinCount: z.number().min(0).optional(),
+  poolIdleTimeoutMs: z.number().min(0).optional(),
+  poolConnectionTimeoutMs: z.number().min(0).optional(),
+}) satisfies ZodFor<ValidatorHASignerConfig>;

package/src/ha-signing/index.ts ADDED Viewed

@@ -0,0 +1,18 @@
+export {
+  type ValidatorHASignerConfig,
+  ValidatorHASignerConfigSchema,
+  defaultValidatorHASignerConfig,
+  getConfigEnvVars,
+  validatorHASignerConfigMappings,
+} from './config.js';
+export {
+  DutyType,
+  type BlockProposalSigningContext,
+  type HAProtectedSigningContext,
+  type NoHAProtectionSigningContext,
+  type OtherSigningContext,
+  type SigningContext,
+  type VoteSigningContext,
+  getBlockNumberFromSigningContext,
+  isHAProtectedContext,
+} from './types.js';

package/src/ha-signing/types.ts ADDED Viewed

@@ -0,0 +1,112 @@
+import {
+  BlockNumber,
+  type CheckpointNumber,
+  type IndexWithinCheckpoint,
+  type SlotNumber,
+} from '@aztec/foundation/branded-types';
+/**
+ * Type of validator duty being performed
+ */
+export enum DutyType {
+  BLOCK_PROPOSAL = 'BLOCK_PROPOSAL',
+  CHECKPOINT_PROPOSAL = 'CHECKPOINT_PROPOSAL',
+  ATTESTATION = 'ATTESTATION',
+  ATTESTATIONS_AND_SIGNERS = 'ATTESTATIONS_AND_SIGNERS',
+  GOVERNANCE_VOTE = 'GOVERNANCE_VOTE',
+  SLASHING_VOTE = 'SLASHING_VOTE',
+  AUTH_REQUEST = 'AUTH_REQUEST',
+  TXS = 'TXS',
+}
+/**
+ * Base context for signing operations
+ */
+interface BaseSigningContext {
+  /** Slot number for this duty */
+  slot: SlotNumber;
+  /**
+   * Block or checkpoint number for this duty.
+   * For block proposals, this is the block number.
+   * For checkpoint proposals, this is the checkpoint number.
+   */
+  blockNumber: BlockNumber | CheckpointNumber;
+}
+/**
+ * Signing context for block proposals.
+ * blockIndexWithinCheckpoint is REQUIRED and must be >= 0.
+ */
+export interface BlockProposalSigningContext extends BaseSigningContext {
+  /** Block index within checkpoint (0, 1, 2...). Required for block proposals. */
+  blockIndexWithinCheckpoint: IndexWithinCheckpoint;
+  dutyType: DutyType.BLOCK_PROPOSAL;
+}
+/**
+ * Signing context for non-block-proposal duties that require HA protection.
+ * blockIndexWithinCheckpoint is not applicable (internally always -1).
+ */
+export interface OtherSigningContext extends BaseSigningContext {
+  dutyType: DutyType.CHECKPOINT_PROPOSAL | DutyType.ATTESTATION | DutyType.ATTESTATIONS_AND_SIGNERS;
+}
+/**
+ * Signing context for governance/slashing votes which only need slot for HA protection.
+ * blockNumber is not applicable (internally always 0).
+ */
+export interface VoteSigningContext {
+  slot: SlotNumber;
+  dutyType: DutyType.GOVERNANCE_VOTE | DutyType.SLASHING_VOTE;
+}
+/**
+ * Signing context for duties which don't require slot/blockNumber
+ * as they don't need HA protection (AUTH_REQUEST, TXS).
+ */
+export interface NoHAProtectionSigningContext {
+  dutyType: DutyType.AUTH_REQUEST | DutyType.TXS;
+}
+/**
+ * Signing contexts that require HA protection (excludes AUTH_REQUEST).
+ * Used by the HA signer's signWithProtection method.
+ */
+export type HAProtectedSigningContext = BlockProposalSigningContext | OtherSigningContext | VoteSigningContext;
+/**
+ * Context required for slashing protection during signing operations.
+ * Uses discriminated union to enforce type safety:
+ * - BLOCK_PROPOSAL duties MUST have blockIndexWithinCheckpoint >= 0
+ * - Other duty types do NOT have blockIndexWithinCheckpoint (internally -1)
+ * - Vote duties only need slot (blockNumber is internally 0)
+ * - AUTH_REQUEST and TXS duties don't need slot/blockNumber (no HA protection needed)
+ */
+export type SigningContext = HAProtectedSigningContext | NoHAProtectionSigningContext;
+/**
+ * Type guard to check if a SigningContext requires HA protection.
+ * Returns true for contexts that need HA protection, false for AUTH_REQUEST and TXS.
+ */
+export function isHAProtectedContext(context: SigningContext): context is HAProtectedSigningContext {
+  return context.dutyType !== DutyType.AUTH_REQUEST && context.dutyType !== DutyType.TXS;
+}
+/**
+ * Gets the block number from a signing context.
+ * - Vote duties (GOVERNANCE_VOTE, SLASHING_VOTE): returns BlockNumber(0)
+ * - Other duties: returns the blockNumber from the context
+ */
+export function getBlockNumberFromSigningContext(context: HAProtectedSigningContext): BlockNumber | CheckpointNumber {
+  // Check for duty types that have blockNumber
+  if (
+    context.dutyType === DutyType.BLOCK_PROPOSAL ||
+    context.dutyType === DutyType.CHECKPOINT_PROPOSAL ||
+    context.dutyType === DutyType.ATTESTATION ||
+    context.dutyType === DutyType.ATTESTATIONS_AND_SIGNERS
+  ) {
+    return context.blockNumber;
+  }
+  // Vote duties (GOVERNANCE_VOTE, SLASHING_VOTE) don't have blockNumber
+  return BlockNumber(0);
+}

package/src/hash/hash.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { GeneratorIndex, NULL_MSG_SENDER_CONTRACT_ADDRESS } from '@aztec/constants';
+import { DomainSeparator, NULL_MSG_SENDER_CONTRACT_ADDRESS } from '@aztec/constants';
 import { poseidon2Hash, poseidon2HashWithSeparator } from '@aztec/foundation/crypto/poseidon';
 import { sha256ToField } from '@aztec/foundation/crypto/sha256';
 import { Fr } from '@aztec/foundation/curves/bn254';
@@ -23,7 +23,7 @@ export async function hashVK(keyAsFields: Fr[]): Promise<Fr> {
  * @returns A note hash nonce.
  */
 export function computeNoteHashNonce(nullifierZero: Fr, noteHashIndex: number): Promise<Fr> {
-  return poseidon2HashWithSeparator([nullifierZero, noteHashIndex], GeneratorIndex.NOTE_HASH_NONCE);
+  return poseidon2HashWithSeparator([nullifierZero, noteHashIndex], DomainSeparator.NOTE_HASH_NONCE);
 }
 /**
@@ -34,7 +34,7 @@ export function computeNoteHashNonce(nullifierZero: Fr, noteHashIndex: number):
  * @returns A siloed note hash.
  */
 export function siloNoteHash(contract: AztecAddress, noteHash: Fr): Promise<Fr> {
-  return poseidon2HashWithSeparator([contract, noteHash], GeneratorIndex.SILOED_NOTE_HASH);
+  return poseidon2HashWithSeparator([contract, noteHash], DomainSeparator.SILOED_NOTE_HASH);
 }
 /**
@@ -44,7 +44,7 @@ export function siloNoteHash(contract: AztecAddress, noteHash: Fr): Promise<Fr>
  * @returns A unique note hash.
  */
 export function computeUniqueNoteHash(noteNonce: Fr, siloedNoteHash: Fr): Promise<Fr> {
-  return poseidon2HashWithSeparator([noteNonce, siloedNoteHash], GeneratorIndex.UNIQUE_NOTE_HASH);
+  return poseidon2HashWithSeparator([noteNonce, siloedNoteHash], DomainSeparator.UNIQUE_NOTE_HASH);
 }
 /**
@@ -55,7 +55,7 @@ export function computeUniqueNoteHash(noteNonce: Fr, siloedNoteHash: Fr): Promis
  * @returns A siloed nullifier.
  */
 export function siloNullifier(contract: AztecAddress, innerNullifier: Fr): Promise<Fr> {
-  return poseidon2HashWithSeparator([contract, innerNullifier], GeneratorIndex.SILOED_NULLIFIER);
+  return poseidon2HashWithSeparator([contract, innerNullifier], DomainSeparator.SILOED_NULLIFIER);
 }
 /**
@@ -69,6 +69,10 @@ export function computeProtocolNullifier(txRequestHash: Fr): Promise<Fr> {
   return siloNullifier(AztecAddress.fromBigInt(NULL_MSG_SENDER_CONTRACT_ADDRESS), txRequestHash);
 }
+export function computeSiloedPrivateLogFirstField(contract: AztecAddress, field: Fr): Promise<Fr> {
+  return poseidon2HashWithSeparator([contract, field], DomainSeparator.PRIVATE_LOG_FIRST_FIELD);
+}
 /**
  * Computes a public data tree value ready for insertion.
  * @param value - Raw public data tree value to hash into a tree-insertion-ready value.
@@ -87,7 +91,7 @@ export function computePublicDataTreeValue(value: Fr): Fr {
  */
 export function computePublicDataTreeLeafSlot(contractAddress: AztecAddress, storageSlot: Fr): Promise<Fr> {
-  return poseidon2HashWithSeparator([contractAddress, storageSlot], GeneratorIndex.PUBLIC_LEAF_SLOT);
+  return poseidon2HashWithSeparator([contractAddress, storageSlot], DomainSeparator.PUBLIC_LEAF_SLOT);
 }
 /**
@@ -101,7 +105,7 @@ export function computeVarArgsHash(args: Fr[]): Promise<Fr> {
     return Promise.resolve(Fr.ZERO);
   }
-  return poseidon2HashWithSeparator(args, GeneratorIndex.FUNCTION_ARGS);
+  return poseidon2HashWithSeparator(args, DomainSeparator.FUNCTION_ARGS);
 }
 /**
@@ -110,7 +114,7 @@ export function computeVarArgsHash(args: Fr[]): Promise<Fr> {
  * @returns Hash of the calldata.
  */
 export function computeCalldataHash(calldata: Fr[]): Promise<Fr> {
-  return poseidon2HashWithSeparator(calldata, GeneratorIndex.PUBLIC_CALLDATA);
+  return poseidon2HashWithSeparator(calldata, DomainSeparator.PUBLIC_CALLDATA);
 }
 /**
@@ -120,13 +124,13 @@ export function computeCalldataHash(calldata: Fr[]): Promise<Fr> {
  * @returns The hash
  */
 export function computeSecretHash(secret: Fr): Promise<Fr> {
-  return poseidon2HashWithSeparator([secret], GeneratorIndex.SECRET_HASH);
+  return poseidon2HashWithSeparator([secret], DomainSeparator.SECRET_HASH);
 }
 export async function computeL1ToL2MessageNullifier(contract: AztecAddress, messageHash: Fr, secret: Fr) {
   const innerMessageNullifier = await poseidon2HashWithSeparator(
     [messageHash, secret],
-    GeneratorIndex.MESSAGE_NULLIFIER,
+    DomainSeparator.MESSAGE_NULLIFIER,
   );
   return siloNullifier(contract, innerMessageNullifier);
 }

package/src/hash/map_slot.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { GeneratorIndex } from '@aztec/constants';
+import { DomainSeparator } from '@aztec/constants';
 import { poseidon2HashWithSeparator } from '@aztec/foundation/crypto/poseidon';
 import type { Fr } from '@aztec/foundation/curves/bn254';
@@ -15,5 +15,5 @@ export function deriveStorageSlotInMap(
     toField: () => Fr;
   },
 ): Promise<Fr> {
-  return poseidon2HashWithSeparator([mapSlot, key.toField()], GeneratorIndex.PUBLIC_STORAGE_MAP_SLOT);
+  return poseidon2HashWithSeparator([mapSlot, key.toField()], DomainSeparator.PUBLIC_STORAGE_MAP_SLOT);
 }

package/src/interfaces/archiver.ts CHANGED Viewed

@@ -4,12 +4,14 @@ import type { ApiSchemaFor } from '@aztec/foundation/schemas';
 import { z } from 'zod';
+import { BlockDataSchema } from '../block/block_data.js';
 import { BlockHash } from '../block/block_hash.js';
 import { CheckpointedL2Block } from '../block/checkpointed_l2_block.js';
 import { L2Block } from '../block/l2_block.js';
 import { type L2BlockSource, L2TipsSchema } from '../block/l2_block_source.js';
 import { ValidateCheckpointResultSchema } from '../block/validate_block_result.js';
 import { Checkpoint } from '../checkpoint/checkpoint.js';
+import { CheckpointDataSchema } from '../checkpoint/checkpoint_data.js';
 import { PublishedCheckpoint } from '../checkpoint/published_checkpoint.js';
 import {
   ContractClassPublicSchema,
@@ -104,6 +106,8 @@ export const ArchiverApiSchema: ApiSchemaFor<ArchiverApi> = {
   getCheckpointedBlockByArchive: z.function().args(schemas.Fr).returns(CheckpointedL2Block.schema.optional()),
   getBlockHeaderByHash: z.function().args(BlockHash.schema).returns(BlockHeader.schema.optional()),
   getBlockHeaderByArchive: z.function().args(schemas.Fr).returns(BlockHeader.schema.optional()),
+  getBlockData: z.function().args(BlockNumberSchema).returns(BlockDataSchema.optional()),
+  getBlockDataByArchive: z.function().args(schemas.Fr).returns(BlockDataSchema.optional()),
   getL2Block: z.function().args(BlockNumberSchema).returns(L2Block.schema.optional()),
   getL2BlockByHash: z.function().args(BlockHash.schema).returns(L2Block.schema.optional()),
   getL2BlockByArchive: z.function().args(schemas.Fr).returns(L2Block.schema.optional()),
@@ -112,6 +116,7 @@ export const ArchiverApiSchema: ApiSchemaFor<ArchiverApi> = {
   getL2SlotNumber: z.function().args().returns(schemas.SlotNumber.optional()),
   getL2EpochNumber: z.function().args().returns(EpochNumberSchema.optional()),
   getCheckpointsForEpoch: z.function().args(EpochNumberSchema).returns(z.array(Checkpoint.schema)),
+  getCheckpointsDataForEpoch: z.function().args(EpochNumberSchema).returns(z.array(CheckpointDataSchema)),
   getCheckpointedBlocksForEpoch: z.function().args(EpochNumberSchema).returns(z.array(CheckpointedL2Block.schema)),
   getBlocksForSlot: z.function().args(schemas.SlotNumber).returns(z.array(L2Block.schema)),
   getCheckpointedBlockHeadersForEpoch: z.function().args(EpochNumberSchema).returns(z.array(BlockHeader.schema)),

package/src/interfaces/aztec-node-admin.ts CHANGED Viewed

@@ -50,6 +50,26 @@ export interface AztecNodeAdmin {
   /** Returns all offenses applicable for the given round. */
   getSlashOffenses(round: bigint | 'all' | 'current'): Promise<Offense[]>;
+  /**
+   * Reloads keystore configuration from disk.
+   *
+   * What is updated:
+   * - Validator attester keys
+   * - Coinbase address per validator
+   * - Fee recipient address per validator
+   *
+   * What is NOT updated (requires node restart):
+   * - L1 publisher signers (the funded accounts that send L1 transactions)
+   * - Prover keys
+   * - HA signer PostgreSQL connections
+   *
+   * Notes:
+   * - New validators must use a publisher key that was already configured at node
+   *   startup (or omit the publisher field to fall back to the attester key).
+   *   A validator with an unknown publisher key will cause the reload to be rejected.
+   */
+  reloadKeystore(): Promise<void>;
 }
 // L1 contracts are not mutable via admin updates.
@@ -88,16 +108,19 @@ export const AztecNodeAdminApiSchema: ApiSchemaFor<AztecNodeAdmin> = {
     .function()
     .args(z.union([z.bigint(), z.literal('all'), z.literal('current')]))
     .returns(z.array(OffenseSchema)),
+  reloadKeystore: z.function().returns(z.void()),
 };
 export function createAztecNodeAdminClient(
   url: string,
   versions: Partial<ComponentsVersions> = {},
   fetch = defaultFetch,
+  apiKey?: string,
 ): AztecNodeAdmin {
   return createSafeJsonRpcClient<AztecNodeAdmin>(url, AztecNodeAdminApiSchema, {
     namespaceMethods: 'nodeAdmin',
     fetch,
     onResponse: getVersioningResponseHandler(versions),
+    ...(apiKey ? { extraHeaders: { 'x-api-key': apiKey } } : {}),
   });
 }

package/src/interfaces/aztec-node.ts CHANGED Viewed

@@ -443,7 +443,7 @@ export interface AztecNode
   /**
    * Returns true if the transaction is valid for inclusion at the current state. Valid transactions can be
    * made invalid by *other* transactions if e.g. they emit the same nullifiers, or come become invalid
-   * due to e.g. the include_by_timestamp property.
+   * due to e.g. the expiration_timestamp property.
    * @param tx - The transaction to validate for correctness.
    * @param isSimulation - True if the transaction is a simulated one without generated proofs. (Optional)
    * @param skipFeeEnforcement - True if the validation of the fee should be skipped. Useful when the simulation is for estimating fee (Optional)

package/src/interfaces/block-builder.ts CHANGED Viewed

@@ -98,6 +98,7 @@ export interface ICheckpointsBuilder {
   startCheckpoint(
     checkpointNumber: CheckpointNumber,
     constants: CheckpointGlobalVariables,
+    feeAssetPriceModifier: bigint,
     l1ToL2Messages: Fr[],
     previousCheckpointOutHashes: Fr[],
     fork: MerkleTreeWriteOperations,

package/src/interfaces/configs.ts CHANGED Viewed

@@ -65,10 +65,16 @@ export interface SequencerConfig {
   shuffleAttestationOrdering?: boolean;
   /** Duration per block in milliseconds when building multiple blocks per slot (default: undefined = single block per slot) */
   blockDurationMs?: number;
+  /** Expected number of block proposals per slot for P2P peer scoring. 0 disables scoring, undefined falls back to blocksPerSlot - 1. */
+  expectedBlockProposalsPerSlot?: number;
   /** Have sequencer build and publish an empty checkpoint if there are no txs */
   buildCheckpointIfEmpty?: boolean;
   /** Skip pushing proposed blocks to archiver (default: false) */
   skipPushProposedBlocksToArchiver?: boolean;
+  /** Minimum number of blocks required for a checkpoint proposal (test only, defaults to undefined = no minimum) */
+  minBlocksForCheckpoint?: number;
+  /** Skip publishing checkpoint proposals probability (for testing checkpoint prunes only) */
+  skipPublishingCheckpointsPercent?: number;
 }
 export const SequencerConfigSchema = zodFor<SequencerConfig>()(
@@ -101,14 +107,18 @@ export const SequencerConfigSchema = zodFor<SequencerConfig>()(
     fishermanMode: z.boolean().optional(),
     shuffleAttestationOrdering: z.boolean().optional(),
     blockDurationMs: z.number().positive().optional(),
+    expectedBlockProposalsPerSlot: z.number().nonnegative().optional(),
     buildCheckpointIfEmpty: z.boolean().optional(),
     skipPushProposedBlocksToArchiver: z.boolean().optional(),
+    minBlocksForCheckpoint: z.number().positive().optional(),
+    skipPublishingCheckpointsPercent: z.number().gte(0).lte(100).optional(),
   }),
 );
 type SequencerConfigOptionalKeys =
   | 'governanceProposerPayload'
   | 'blockDurationMs'
+  | 'expectedBlockProposalsPerSlot'
   | 'coinbase'
   | 'feeRecipient'
   | 'acvmWorkingDirectory'
@@ -117,7 +127,8 @@ type SequencerConfigOptionalKeys =
   | 'fakeThrowAfterProcessingTxCount'
   | 'l1PublishingTime'
   | 'txPublicSetupAllowList'
-  | 'minValidTxsPerBlock';
+  | 'minValidTxsPerBlock'
+  | 'minBlocksForCheckpoint';
 export type ResolvedSequencerConfig = Prettify<
   Required<Omit<SequencerConfig, SequencerConfigOptionalKeys>> & Pick<SequencerConfig, SequencerConfigOptionalKeys>

package/src/interfaces/merkle_tree_operations.ts CHANGED Viewed

@@ -254,7 +254,7 @@ export interface MerkleTreeCheckpointOperations {
 export interface MerkleTreeWriteOperations
   extends MerkleTreeReadOperations,
     MerkleTreeCheckpointOperations,
-    Disposable {
+    AsyncDisposable {
   /**
    * Appends leaves to a given tree.
    * @param treeId - The tree to be updated.

package/src/interfaces/p2p.ts CHANGED Viewed

@@ -3,7 +3,6 @@ import type { SlotNumber } from '@aztec/foundation/branded-types';
 import { z } from 'zod';
 import { CheckpointAttestation } from '../p2p/checkpoint_attestation.js';
-import type { P2PClientType } from '../p2p/client_type.js';
 import { type ApiSchemaFor, optional, schemas } from '../schemas/index.js';
 import { Tx } from '../tx/tx.js';
 import { TxHash } from '../tx/tx_hash.js';
@@ -27,7 +26,7 @@ const PeerInfoSchema = z.discriminatedUnion('status', [
 ]);
 /** Exposed API to the P2P module. */
-export interface P2PApiWithoutAttestations {
+export interface P2PApi {
   /**
    * Returns all pending transactions in the transaction pool.
    * @param limit - The number of items to returns
@@ -48,9 +47,7 @@ export interface P2PApiWithoutAttestations {
    * Returns info for all connected, dialing, and cached peers.
    */
   getPeers(includePending?: boolean): Promise<PeerInfo[]>;
-}
-export interface P2PApiWithAttestations extends P2PApiWithoutAttestations {
   /**
    * Queries the Attestation pool for checkpoint attestations for the given slot
    *
@@ -61,19 +58,11 @@ export interface P2PApiWithAttestations extends P2PApiWithoutAttestations {
   getCheckpointAttestationsForSlot(slot: SlotNumber, proposalId?: string): Promise<CheckpointAttestation[]>;
 }
-export interface P2PClient extends P2PApiWithAttestations {
+export interface P2PClient extends P2PApi {
   /** Manually adds checkpoint attestations to the p2p client attestation pool. */
   addOwnCheckpointAttestations(attestations: CheckpointAttestation[]): Promise<void>;
 }
-export type P2PApi<T extends P2PClientType = P2PClientType.Full> = T extends P2PClientType.Full
-  ? P2PApiWithAttestations
-  : P2PApiWithoutAttestations;
-export type P2PApiFull<T extends P2PClientType = P2PClientType.Full> = T extends P2PClientType.Full
-  ? P2PApiWithAttestations & P2PClient
-  : P2PApiWithoutAttestations;
 export const P2PApiSchema: ApiSchemaFor<P2PApi> = {
   getCheckpointAttestationsForSlot: z
     .function()

package/src/interfaces/validator.ts CHANGED Viewed

@@ -15,12 +15,12 @@ import type {
 } from '@aztec/stdlib/p2p';
 import type { CheckpointHeader } from '@aztec/stdlib/rollup';
 import type { BlockHeader, Tx } from '@aztec/stdlib/tx';
-import { type ValidatorHASignerConfig, ValidatorHASignerConfigSchema } from '@aztec/validator-ha-signer/config';
 import type { PeerId } from '@libp2p/interface';
 import { z } from 'zod';
 import type { CommitteeAttestationsAndSigners } from '../block/index.js';
+import { type ValidatorHASignerConfig, ValidatorHASignerConfigSchema } from '../ha-signing/index.js';
 import { AllowedElementSchema } from './allowed_element.js';
 /**
@@ -121,6 +121,7 @@ export interface Validator {
   createCheckpointProposal(
     checkpointHeader: CheckpointHeader,
     archive: Fr,
+    feeAssetPriceModifier: bigint,
     lastBlockInfo: CreateCheckpointProposalLastBlockData | undefined,
     proposerAddress: EthAddress | undefined,
     options: CheckpointProposalOptions,