npm - @iexec-nox/nox-protocol-contracts - Versions diffs - 0.1.0-beta.0 → 0.1.0-beta.2 - Mend

@iexec-nox/nox-protocol-contracts 0.1.0-beta.0 → 0.1.0-beta.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md +35 -47
package/package.json +5 -4
package/contracts/ACL.sol +0 -242
package/contracts/NoxCompute.sol +0 -626

package/README.md CHANGED Viewed

@@ -1,75 +1,63 @@
-# TODO
+# Nox Protocol Contracts
-# Sample Hardhat 3 Beta Project (`node:test` and `viem`)
+Smart contracts for the Nox protocol, including on-chain access control for encrypted handles and the compute gateway for confidential operations.
-This project showcases a Hardhat 3 Beta project using the native Node.js test runner (`node:test`) and the `viem` library for Ethereum interactions.
+## What’s inside
-To learn more about the Hardhat 3 Beta, please visit the [Getting Started guide](https://hardhat.org/docs/getting-started#getting-started-with-hardhat-3). To share your feedback, join our [Hardhat 3 Beta](https://hardhat.org/hardhat3-beta-telegram-group) Telegram group or [open an issue](https://github.com/NomicFoundation/hardhat/issues/new) in our GitHub issue tracker.
+- `IACL`: access control list for encrypted handles (admins, viewers, public decryption flags).
+- `INoxCompute`: TEE compute entry point (handle validation, plaintext → encrypted conversion, arithmetic ops).
+- `Nox` SDK library: convenience wrapper for app contracts that call `NoxCompute` and `ACL`.
-## Project Overview
+## Requirements
-This example project includes:
+- Node.js version from `.nvmrc`
+- `pnpm` (see `packageManager` in `package.json`)
-- A simple Hardhat configuration file.
-- Foundry-compatible Solidity unit tests.
-- TypeScript integration tests using [`node:test`](nodejs.org/api/test.html), the new Node.js native test runner, and [`viem`](https://viem.sh/).
-- Examples demonstrating how to connect to different types of networks, including locally simulating OP mainnet.
+## Setup
-## Project setup
-Checkout the NodeJS version specified in `.nvmrc` file:
-```
+```bash
 nvm install && nvm use
-```
-The project uses `pnpm` package manager:
-```
-npm install -g pnpm
-pnpm config set ignore-scripts=true
 pnpm install
 ```
-## Usage
-### Running Tests
-To run all the tests in the project, execute the following command:
+## Build
-```shell
-npx hardhat test
+```bash
+pnpm run build
 ```
-You can also selectively run the Solidity or `node:test` tests:
+## Test
-```shell
-npx hardhat test solidity
-npx hardhat test nodejs
+```bash
+pnpm run test
 ```
-### Make a deployment to Sepolia
+## Coverage
-This project includes an example Ignition module to deploy the contract. You can deploy this module to a locally simulated chain or to Sepolia.
+```bash
+pnpm run coverage
+```
-To run the deployment to a local chain:
+## Formatting
-```shell
-npx hardhat ignition deploy ignition/modules/Counter.ts
+```bash
+pnpm run format
+pnpm run format:check
 ```
-To run the deployment to Sepolia, you need an account with funds to send the transaction. The provided Hardhat configuration includes a Configuration Variable called `SEPOLIA_PRIVATE_KEY`, which you can use to set the private key of the account you want to use.
+## Deployment
-You can set the `SEPOLIA_PRIVATE_KEY` variable using the `hardhat-keystore` plugin or by setting it as an environment variable.
+The default network is a local EDR simulation. For external networks, configure the required variables:
-To set the `SEPOLIA_PRIVATE_KEY` config variable using `hardhat-keystore`:
+- `RPC_URL`
+- `PRIVATE_KEY`
-```shell
-npx hardhat keystore set SEPOLIA_PRIVATE_KEY
+```bash
+pnpm run deploy
 ```
-After setting the variable, you can run the deployment with the Sepolia network:
+## Configuration notes
-```shell
-npx hardhat ignition deploy --network sepolia ignition/modules/Counter.ts
-```
+- Create2 salt is defined in [config/config.ts](config/config.ts).
+- Default owner addresses and KMS public keys per network are also defined in [config/config.ts](config/config.ts).
+- The SDK constants in [contracts/sdk/Nox.sol](contracts/sdk/Nox.sol) must match the deployed proxy addresses.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@iexec-nox/nox-protocol-contracts",
-  "version": "0.1.0-beta.0",
+  "version": "0.1.0-beta.2",
   "description": "Nox protocol smart contracts",
   "keywords": [
     "Nox",
@@ -11,8 +11,9 @@
   "packageManager": "pnpm@10.28.2",
   "type": "module",
   "files": [
-    "/contracts",
-    "!/contracts/mock"
+    "/contracts/interfaces/",
+    "/contracts/sdk/",
+    "/contracts/shared/"
   ],
   "scripts": {
     "prepare": "husky",
@@ -57,4 +58,4 @@
   "bugs": {
     "url": "https://github.com/iExec-Nox/nox-protocol-contracts/issues"
   }
-}
+}

package/contracts/ACL.sol DELETED Viewed

@@ -1,242 +0,0 @@
-// SPDX-License-Identifier: Apache-2.0
-pragma solidity ^0.8.0;
-import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
-import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
-import "./interfaces/IACL.sol";
-/**
- * @title ACL
- * @dev The ACL (Access Control List) is a permission management system designed to control access rights
- * for encrypted handles within the Nox protocol. By defining administrators and delegated viewers for each handle,
- * the ACL ensures that sensitive data remains protected while enabling authorized parties to interact with
- * encrypted resources in a secure and controlled manner.
- */
-contract ACL is IACL, UUPSUpgradeable, OwnableUpgradeable {
-    /// @custom:storage-location erc7201:nox.storage.ACL
-    struct ACLStorage {
-        /// Admins can use a handle as input in computations, and can add other admins and viewers
-        mapping(bytes32 handleId => mapping(address => bool)) admins;
-        /// Viewers can decrypt the associated data
-        //TODO: Make viewer expirable
-        mapping(bytes32 handleId => mapping(address => bool)) viewers;
-        /// Handles that are publicly decryptable
-        mapping(bytes32 handle => bool) isPubliclyDecryptable;
-        //TODO: Add Delegated Viewers
-        address noxCompute;
-    }
-    // keccak256(abi.encode(uint256(keccak256("nox.storage.ACL")) - 1)) & ~bytes32(uint256(0xff))
-    bytes32 private constant ACL_STORAGE_LOCATION =
-        0x5fa92c526386e73fafd299993c824ec0066c31df37611b1c3fad8e9fb5701800;
-    // ============ MODIFIERS ============
-    /**
-     * Ensures the account address is not zero
-     * @param account The address to validate
-     */
-    modifier notZeroAddress(address account) {
-        if (account == address(0)) {
-            revert InvalidZeroAddress();
-        }
-        _;
-    }
-    /**
-     * Ensures the sender is allowed to access the handle
-     * @param handle The handle to check access for
-     */
-    modifier onlyAllowed(bytes32 handle) {
-        if (!isAllowed(handle, msg.sender)) {
-            revert UnauthorizedSender(msg.sender);
-        }
-        _;
-    }
-    // ============ CONSTRUCTOR ============
-    /**
-     * @custom:oz-upgrades-unsafe-allow constructor
-     */
-    constructor() {
-        _disableInitializers();
-    }
-    /**
-     * Initializes the proxy contract state.
-     * @param initialOwner Initial owner address
-     */
-    function initialize(address initialOwner) public initializer {
-        __UUPSUpgradeable_init();
-        __Ownable_init(initialOwner);
-    }
-    // ============ ADMIN ============
-    /// @inheritdoc IACL
-    function setNoxCompute(address newNoxCompute) external onlyOwner notZeroAddress(newNoxCompute) {
-        ACLStorage storage $ = _getACLStorage();
-        $.noxCompute = newNoxCompute;
-        emit NoxComputeUpdated(newNoxCompute);
-    }
-    // ============ PUBLIC DECRYPTION ============
-    /// @inheritdoc IACL
-    function allowPublicDecryption(bytes32 handle) external override onlyAllowed(handle) {
-        ACLStorage storage $ = _getACLStorage();
-        $.isPubliclyDecryptable[handle] = true;
-        emit MarkedAsPubliclyDecryptable(msg.sender, handle);
-    }
-    /// @inheritdoc IACL
-    function isPubliclyDecryptable(bytes32 handle) external view override returns (bool) {
-        ACLStorage storage $ = _getACLStorage();
-        return $.isPubliclyDecryptable[handle];
-    }
-    // ============ AUTHORIZATION MANAGEMENT ============
-    /// @inheritdoc IACL
-    function allow(
-        bytes32 handle,
-        address account
-    ) external override onlyAllowed(handle) notZeroAddress(account) {
-        ACLStorage storage $ = _getACLStorage();
-        $.admins[handle][account] = true;
-        emit Allowed(msg.sender, account, handle);
-    }
-    /**
-     * @inheritdoc IACL
-     * @dev To grant transient access, the caller must already have permission on `handle`.
-     *      The NoxCompute is exempt from this requirement and can always grant
-     *      transient permissions — a privilege not available with persistent `allow()`.
-     *
-     *      The NoxCompute uses this function in two scenarios:
-     *      - For handles generated off-chain by the Handle Gateway, once the proof has been verified
-     *      - For handles resulting from on-chain operations, where the caller naturally
-     *        inherits rights on the output handle
-     *
-     *      Transient access only lasts for the current transaction. It is the responsibility
-     *      of the application contract to convert this into persistent access via `allow()`
-     *      if needed.
-     */
-    function allowTransient(
-        bytes32 handle,
-        address account
-    ) external override notZeroAddress(account) {
-        ACLStorage storage $ = _getACLStorage();
-        if (msg.sender != $.noxCompute && !isAllowed(handle, msg.sender)) {
-            revert UnauthorizedSender(msg.sender);
-        }
-        bytes32 key = keccak256(abi.encodePacked(handle, account));
-        assembly {
-            tstore(key, 1)
-            let length := tload(0)
-            let lengthPlusOne := add(length, 1)
-            tstore(lengthPlusOne, key)
-            tstore(0, lengthPlusOne)
-        }
-    }
-    /// @inheritdoc IACL
-    function cleanTransientStorage() external override {
-        assembly {
-            let length := tload(0)
-            tstore(0, 0)
-            let lengthPlusOne := add(length, 1)
-            for {
-                let i := 1
-            } lt(i, lengthPlusOne) {
-                i := add(i, 1)
-            } {
-                let handle := tload(i)
-                tstore(i, 0)
-                tstore(handle, 0)
-            }
-        }
-    }
-    /// @inheritdoc IACL
-    function addViewer(
-        bytes32 handle,
-        address viewer
-    ) external override onlyAllowed(handle) notZeroAddress(viewer) {
-        ACLStorage storage $ = _getACLStorage();
-        $.viewers[handle][viewer] = true;
-        emit ViewerAdded(msg.sender, viewer, handle);
-    }
-    // ============ AUTHORIZATION QUERIES ============
-    /// @inheritdoc IACL
-    function isViewer(bytes32 handle, address viewer) external view override returns (bool) {
-        ACLStorage storage $ = _getACLStorage();
-        return
-            $.isPubliclyDecryptable[handle] ||
-            $.viewers[handle][viewer] ||
-            $.admins[handle][viewer];
-    }
-    /// @inheritdoc IACL
-    function isAllowed(bytes32 handle, address account) public view override returns (bool) {
-        // Read transient authorization first to save gas (no unnecessary storage reads).
-        return isAllowedTransient(handle, account) || isAllowedPersistent(handle, account);
-    }
-    /// @inheritdoc IACL
-    function validateAllowedForAll(
-        address account,
-        bytes32[] calldata handles
-    ) external view override {
-        for (uint256 i = 0; i < handles.length; i++) {
-            if (!isAllowed(handles[i], account)) {
-                revert NotAllowed(handles[i], account);
-            }
-        }
-    }
-    /**
-     * Check if an address has persistent access to handle.
-     * @param handle Handle.
-     * @param account Address of the account.
-     * @return Returns `true` if the address has persistent access to a handle and `false` otherwise.
-     */
-    function isAllowedTransient(bytes32 handle, address account) internal view returns (bool) {
-        bool isAllowedTransient_;
-        bytes32 key = keccak256(abi.encodePacked(handle, account));
-        assembly {
-            isAllowedTransient_ := tload(key)
-        }
-        return isAllowedTransient_;
-    }
-    /**
-     * Returns `true` if the address is allowed to use the handle and `false` otherwise.
-     * @param handle Handle.
-     * @param account Address of the account.
-     * @return Whether the account can access the handle (persistent only).
-     */
-    function isAllowedPersistent(bytes32 handle, address account) internal view returns (bool) {
-        ACLStorage storage $ = _getACLStorage();
-        return $.admins[handle][account];
-    }
-    // ============ INTERNAL HELPERS ============
-    /**
-     * Authorizes contract upgrades only by the owner.
-     */
-    function _authorizeUpgrade(address /*newImplementation*/) internal override onlyOwner {}
-    /**
-     * Get the storage location for ACL data
-     * @return $ The storage pointer
-     */
-    function _getACLStorage() private pure returns (ACLStorage storage $) {
-        assembly {
-            $.slot := ACL_STORAGE_LOCATION
-        }
-    }
-}

package/contracts/NoxCompute.sol DELETED Viewed

@@ -1,626 +0,0 @@
-// SPDX-License-Identifier: Apache-2.0
-pragma solidity ^0.8.0;
-import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
-import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
-import {EIP712Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/cryptography/EIP712Upgradeable.sol";
-import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
-import {INoxCompute} from "./interfaces/INoxCompute.sol";
-import {IACL} from "./interfaces/IACL.sol";
-import {TEEType, TypeUtils, UnsupportedType} from "./shared/TypeUtils.sol";
-/**
- * @title NoxCompute
- * This contract is the main entry point to the TEE compute functionalities of the Nox protocol.
- * It's role includes:
- * - Managing the access control list (ACL) for encrypted handles
- * - Validating handle proofs issued by a trusted gateway
- * - Facilitating the conversion of plaintext values to encrypted values
- * - Triggering off-chain TEE computations through event emissions
- */
-contract NoxCompute is INoxCompute, UUPSUpgradeable, OwnableUpgradeable, EIP712Upgradeable {
-    /// @custom:storage-location erc7201:nox.storage.NoxCompute
-    struct NoxComputeStorage {
-        bytes kmsPublicKey;
-        address gateway;
-        uint256 proofExpirationDuration;
-    }
-    uint8 private constant HANDLE_VERSION = 0;
-    /// @custom:oz-upgrades-unsafe-allow state-variable-immutable
-    IACL public immutable ACL;
-    // keccak256(abi.encode(uint256(keccak256("nox.storage.NoxCompute")) - 1)) & ~bytes32(uint256(0xff))
-    bytes32 private constant NOX_COMPUTE_STORAGE_LOCATION =
-        0x118a408ef9c0c38d6620cca4d300c2ce1c4f4cbcd93520940a6461e96acdcd00;
-    bytes32 public constant HANDLE_PROOF_TYPEHASH =
-        keccak256("HandleProof(bytes32 handle,address owner,address app,uint256 createdAt)");
-    /**
-     * @custom:oz-upgrades-unsafe-allow constructor
-     */
-    constructor(address acl_) {
-        if (acl_ == address(0)) {
-            revert InvalidZeroAddress();
-        }
-        ACL = IACL(acl_);
-        _disableInitializers();
-    }
-    /**
-     * Initializes the proxy contract state.
-     * @param initialOwner Initial owner address
-     * @param kmsPublicKey_ KMS public key for ECIES encryption
-     */
-    function initialize(address initialOwner, bytes calldata kmsPublicKey_) public initializer {
-        if (kmsPublicKey_.length == 0) {
-            revert InvalidEmptyBytes();
-        }
-        __UUPSUpgradeable_init();
-        __Ownable_init(initialOwner);
-        __EIP712_init("NoxCompute", "1");
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        $.proofExpirationDuration = 1 hours;
-        $.kmsPublicKey = kmsPublicKey_;
-    }
-    /**
-     * Sets the KMS public key used for ECIES encryption.
-     * Only callable by the owner.
-     * @param newKmsPublicKey Compressed SEC1 secp256k1 public key (33 bytes)
-     */
-    function setKmsPublicKey(bytes calldata newKmsPublicKey) external onlyOwner {
-        if (newKmsPublicKey.length == 0) {
-            revert InvalidEmptyBytes();
-        }
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        $.kmsPublicKey = newKmsPublicKey;
-        emit KmsPublicKeyUpdated(newKmsPublicKey);
-    }
-    /**
-     * Sets Gateway wallet address.
-     * Only callable by the owner.
-     * @param gatewayAddress New Gateway wallet address
-     */
-    function setGateway(address gatewayAddress) external onlyOwner {
-        if (gatewayAddress == address(0)) {
-            revert InvalidZeroAddress();
-        }
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        $.gateway = gatewayAddress;
-        emit GatewayUpdated(gatewayAddress);
-    }
-    /**
-     * Sets the proof expiration duration.
-     * Only callable by the owner.
-     * @param newDuration New expiration duration in seconds
-     */
-    function setProofExpirationDuration(uint256 newDuration) external onlyOwner {
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        $.proofExpirationDuration = newDuration;
-        emit ProofExpirationDurationUpdated(newDuration);
-    }
-    /// @inheritdoc INoxCompute
-    function plaintextToEncrypted(
-        bytes32 value,
-        TEEType teeType
-    ) external returns (bytes32 result) {
-        TypeUtils.validateType(teeType);
-        bytes32[] memory operands = new bytes32[](1);
-        operands[0] = value;
-        result = _generateHandle(Operator.PlaintextToEncrypted, operands, teeType);
-        ACL.allowTransient(result, msg.sender);
-        emit PlaintextToEncrypted(msg.sender, value, teeType, result);
-    }
-    /**
-     * Validates that a handle provided by a user is:
-     *   - of expected type
-     *   - not expired
-     *   - issued for the correct app (caller)
-     *   - issued for the correct owner
-     *   - issued by the configured gateway (signed by the gateway wallet)
-     * or reverts otherwise.
-     *
-     * Handle format:
-     *    26 bytes          4 bytes     1 byte  1 byte
-     * [0----------25]    [26-----29]    [30]    [31]
-     *   Pre-handle         ChainId      Type   Version
-     *
-     * Proof format:
-     *  20 bytes       20 bytes        32 bytes            65 bytes
-     * [0-----19]    [20-----39]    [40--------71]    [72------------136]
-     *   Owner           App           CreatedAt       EIP-712 signature
-     *
-     * @param handle handle id
-     * @param owner The address of the handle owner
-     * @param proof Proof data
-     */
-    function validateProof(
-        bytes32 handle,
-        address owner,
-        bytes calldata proof,
-        TEEType teeType
-    ) public {
-        bytes4 chainIdInHandle = bytes4(handle << (26 * 8));
-        if (chainIdInHandle != bytes4(uint32(block.chainid))) {
-            revert InvalidProof(proof, "Handle chain id mismatch");
-        }
-        if (TypeUtils.typeOf(handle) != teeType) {
-            revert InvalidProof(proof, "Handle type mismatch");
-        }
-        if (proof.length != 137) {
-            revert InvalidProof(proof, "Invalid proof length");
-        }
-        address ownerInProof = address(bytes20(proof[0:20]));
-        address appInProof = address(bytes20(proof[20:40]));
-        uint256 createdAt = uint256(bytes32(proof[40:72]));
-        bytes calldata signature = proof[72:137];
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        if (block.timestamp > createdAt + $.proofExpirationDuration) {
-            revert InvalidProof(proof, "Proof expired");
-        }
-        if (appInProof != msg.sender) {
-            revert InvalidProof(proof, "App mismatch");
-        }
-        if (ownerInProof != owner) {
-            revert InvalidProof(proof, "Owner mismatch");
-        }
-        bytes32 eip712MessageHash = _hashTypedDataV4(
-            keccak256(
-                abi.encode(HANDLE_PROOF_TYPEHASH, handle, ownerInProof, appInProof, createdAt)
-            )
-        );
-        if (ECDSA.recover(eip712MessageHash, signature) != $.gateway) {
-            revert InvalidProof(proof, "Invalid signature");
-        }
-        // Give caller contract transient access to the handle.
-        ACL.allowTransient(handle, msg.sender);
-    }
-    /// @inheritdoc INoxCompute
-    function add(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftHandOperand;
-        operands[1] = rightHandOperand;
-        (, result) = _executeArithmeticOperation(Operator.Add, operands, false);
-        emit Add(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function sub(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftHandOperand;
-        operands[1] = rightHandOperand;
-        (, result) = _executeArithmeticOperation(Operator.Sub, operands, false);
-        emit Sub(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function div(bytes32 numerator, bytes32 denominator) external returns (bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = numerator;
-        operands[1] = denominator;
-        (, result) = _executeArithmeticOperation(Operator.Div, operands, false);
-        emit Div(msg.sender, numerator, denominator, result);
-    }
-    /// @inheritdoc INoxCompute
-    function mul(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftHandOperand;
-        operands[1] = rightHandOperand;
-        (, result) = _executeArithmeticOperation(Operator.Mul, operands, false);
-        emit Mul(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function eq(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Eq, leftHandOperand, rightHandOperand);
-        emit Eq(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function ne(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Ne, leftHandOperand, rightHandOperand);
-        emit Ne(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function lt(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Lt, leftHandOperand, rightHandOperand);
-        emit Lt(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function le(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Le, leftHandOperand, rightHandOperand);
-        emit Le(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function gt(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Gt, leftHandOperand, rightHandOperand);
-        emit Gt(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function ge(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 result) {
-        result = _executeComparisonOperation(Operator.Ge, leftHandOperand, rightHandOperand);
-        emit Ge(msg.sender, leftHandOperand, rightHandOperand, result);
-    }
-    /// @inheritdoc INoxCompute
-    function safeAdd(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 success, bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftHandOperand;
-        operands[1] = rightHandOperand;
-        (success, result) = _executeArithmeticOperation(Operator.SafeAdd, operands, true);
-        emit SafeAdd(msg.sender, leftHandOperand, rightHandOperand, success, result);
-    }
-    /// @inheritdoc INoxCompute
-    function safeSub(
-        bytes32 leftHandOperand,
-        bytes32 rightHandOperand
-    ) external returns (bytes32 success, bytes32 result) {
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftHandOperand;
-        operands[1] = rightHandOperand;
-        (success, result) = _executeArithmeticOperation(Operator.SafeSub, operands, true);
-        emit SafeSub(msg.sender, leftHandOperand, rightHandOperand, success, result);
-    }
-    /// @inheritdoc INoxCompute
-    function select(
-        bytes32 condition,
-        bytes32 ifTrue,
-        bytes32 ifFalse
-    ) external returns (bytes32 result) {
-        if (TypeUtils.typeOf(condition) != TEEType.Bool) {
-            revert UnsupportedType();
-        }
-        TEEType resultType = TypeUtils.typeOf(ifTrue);
-        if (resultType != TypeUtils.typeOf(ifFalse)) {
-            revert IncompatibleTypes();
-        }
-        bytes32[] memory operands = new bytes32[](3);
-        operands[0] = condition;
-        operands[1] = ifTrue;
-        operands[2] = ifFalse;
-        ACL.validateAllowedForAll(msg.sender, operands);
-        result = _generateHandle(Operator.Select, operands, resultType);
-        ACL.allowTransient(result, msg.sender);
-        emit Select(msg.sender, condition, ifTrue, ifFalse, result);
-    }
-    /// @inheritdoc INoxCompute
-    function transfer(
-        bytes32 balanceFrom,
-        bytes32 balanceTo,
-        bytes32 amount
-    ) external returns (bytes32 success, bytes32 newBalanceFrom, bytes32 newBalanceTo) {
-        bytes32[] memory operands = new bytes32[](3);
-        operands[0] = balanceFrom;
-        operands[1] = balanceTo;
-        operands[2] = amount;
-        (success, newBalanceFrom, newBalanceTo) = _executeCompositeOperation(
-            Operator.Transfer,
-            operands
-        );
-        emit Transfer(
-            msg.sender,
-            balanceFrom,
-            balanceTo,
-            amount,
-            success,
-            newBalanceFrom,
-            newBalanceTo
-        );
-    }
-    /// @inheritdoc INoxCompute
-    function mint(
-        bytes32 balanceTo,
-        bytes32 amount,
-        bytes32 totalSupply
-    ) external returns (bytes32 success, bytes32 newBalanceTo, bytes32 newTotalSupply) {
-        bytes32[] memory operands = new bytes32[](3);
-        operands[0] = balanceTo;
-        operands[1] = amount;
-        operands[2] = totalSupply;
-        (success, newBalanceTo, newTotalSupply) = _executeCompositeOperation(
-            Operator.Mint,
-            operands
-        );
-        emit Mint(
-            msg.sender,
-            balanceTo,
-            amount,
-            totalSupply,
-            success,
-            newBalanceTo,
-            newTotalSupply
-        );
-    }
-    /// @inheritdoc INoxCompute
-    function burn(
-        bytes32 balanceFrom,
-        bytes32 amount,
-        bytes32 totalSupply
-    ) external returns (bytes32 success, bytes32 newBalanceFrom, bytes32 newTotalSupply) {
-        bytes32[] memory operands = new bytes32[](3);
-        operands[0] = balanceFrom;
-        operands[1] = amount;
-        operands[2] = totalSupply;
-        (success, newBalanceFrom, newTotalSupply) = _executeCompositeOperation(
-            Operator.Burn,
-            operands
-        );
-        emit Burn(
-            msg.sender,
-            balanceFrom,
-            amount,
-            totalSupply,
-            success,
-            newBalanceFrom,
-            newTotalSupply
-        );
-    }
-    /**
-     * Returns the EIP-712 domain separator.
-     */
-    function domainSeparator() external view returns (bytes32) {
-        return _domainSeparatorV4();
-    }
-    /**
-     * Returns the KMS public key used for ECIES encryption.
-     */
-    function kmsPublicKey() external view returns (bytes memory) {
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        return $.kmsPublicKey;
-    }
-    /**
-     * Returns the Gateway wallet address.
-     */
-    function gateway() external view returns (address) {
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        return $.gateway;
-    }
-    /**
-     * Returns the proof expiration duration in seconds.
-     */
-    function proofExpirationDuration() external view returns (uint256) {
-        NoxComputeStorage storage $ = _getNoxComputeStorage();
-        return $.proofExpirationDuration;
-    }
-    /// @inheritdoc INoxCompute
-    function isAllowed(bytes32 handle, address account) external view returns (bool) {
-        return ACL.isAllowed(handle, account);
-    }
-    /// @inheritdoc INoxCompute
-    function isViewer(bytes32 handle, address viewer) external view returns (bool) {
-        return ACL.isViewer(handle, viewer);
-    }
-    /// @inheritdoc INoxCompute
-    function isPubliclyDecryptable(bytes32 handle) external view returns (bool) {
-        return ACL.isPubliclyDecryptable(handle);
-    }
-    /**
-     * Authorizes contract upgrades only by the owner.
-     */
-    function _authorizeUpgrade(address /*newImplementation*/) internal override onlyOwner {}
-    function _getNoxComputeStorage() internal pure returns (NoxComputeStorage storage $) {
-        assembly {
-            $.slot := NOX_COMPUTE_STORAGE_LOCATION
-        }
-    }
-    /**
-     * Executes an arithmetic operation on N encrypted handles.
-     * All operands must share the same type as the first operand, which also determines the result type.
-     * Verifies ACL permissions for all operands, checks type compatibility,
-     * generates result handle(s), and grants transient access to the caller.
-     *
-     * When `isSafeOperation` is true, generates an additional Bool success handle (outputIndex 1)
-     * and the result handle at outputIndex 0, enabling overflow/underflow detection.
-     *
-     * @dev Reverts with IACL.NotAllowed if caller lacks permission on any operand
-     * @dev Reverts with IncompatibleTypes if operand types don't match
-     *
-     * @param operator The operator to apply
-     * @param operands Array of operand handles
-     * @param isSafeOperation Whether to generate a Bool success handle alongside the result
-     * @return success The success flag handle (Bool type), bytes32(0) if not safe operation
-     * @return result The resulting encrypted handle
-     */
-    function _executeArithmeticOperation(
-        Operator operator,
-        bytes32[] memory operands,
-        bool isSafeOperation
-    ) private returns (bytes32 success, bytes32 result) {
-        TEEType resultType = TypeUtils.typeOf(operands[0]);
-        TypeUtils.validateArithmeticType(resultType);
-        for (uint256 i = 1; i < operands.length; i++) {
-            if (resultType != TypeUtils.typeOf(operands[i])) {
-                revert IncompatibleTypes();
-            }
-        }
-        ACL.validateAllowedForAll(msg.sender, operands);
-        result = _generateHandle(operator, operands, resultType);
-        ACL.allowTransient(result, msg.sender);
-        if (isSafeOperation) {
-            success = _generateHandle(operator, operands, TEEType.Bool, 1);
-            ACL.allowTransient(success, msg.sender);
-        }
-    }
-    /**
-     * Executes a comparison operation on two encrypted handles.
-     * Both operands must share the same arithmetic type.
-     * Verifies ACL permissions for both operands, checks type compatibility,
-     * generates a Bool result handle, and grants transient access to the caller.
-     *
-     * @dev Reverts with IACL.NotAllowed if caller lacks permission on any operand
-     * @dev Reverts with IncompatibleTypes if operand types don't match
-     *
-     * @param operator The comparison operator to apply
-     * @param leftOperand Left-hand side operand handle
-     * @param rightOperand Right-hand side operand handle
-     * @return result The resulting Bool handle
-     */
-    function _executeComparisonOperation(
-        Operator operator,
-        bytes32 leftOperand,
-        bytes32 rightOperand
-    ) private returns (bytes32 result) {
-        TEEType operandType = TypeUtils.typeOf(leftOperand);
-        TypeUtils.validateArithmeticType(operandType);
-        if (operandType != TypeUtils.typeOf(rightOperand)) {
-            revert IncompatibleTypes();
-        }
-        bytes32[] memory operands = new bytes32[](2);
-        operands[0] = leftOperand;
-        operands[1] = rightOperand;
-        ACL.validateAllowedForAll(msg.sender, operands);
-        result = _generateHandle(operator, operands, TEEType.Bool);
-        ACL.allowTransient(result, msg.sender);
-    }
-    /**
-     * Executes a composite operation on 3 encrypted handles (e.g. transfer, mint, burn).
-     * All operands must share the same arithmetic type.
-     * Generates 3 output handles: a Bool success flag and two result handles of the input type.
-     *
-     * @param operator The operator to apply
-     * @param operands Array of 3 operand handles
-     * @return success The success flag handle (Bool type)
-     * @return result1 First result handle
-     * @return result2 Second result handle
-     */
-    function _executeCompositeOperation(
-        Operator operator,
-        bytes32[] memory operands
-    ) private returns (bytes32 success, bytes32 result1, bytes32 result2) {
-        TEEType resultType = TypeUtils.typeOf(operands[0]);
-        TypeUtils.validateArithmeticType(resultType);
-        for (uint256 i = 1; i < operands.length; i++) {
-            if (resultType != TypeUtils.typeOf(operands[i])) {
-                revert IncompatibleTypes();
-            }
-        }
-        ACL.validateAllowedForAll(msg.sender, operands);
-        success = _generateHandle(operator, operands, TEEType.Bool, 0);
-        result1 = _generateHandle(operator, operands, resultType, 1);
-        result2 = _generateHandle(operator, operands, resultType, 2);
-        ACL.allowTransient(success, msg.sender);
-        ACL.allowTransient(result1, msg.sender);
-        ACL.allowTransient(result2, msg.sender);
-    }
-    /**
-     * @dev Alias for _generateHandle with outputIndex defaulting to 0.
-     */
-    function _generateHandle(
-        Operator operator,
-        bytes32[] memory operands,
-        TEEType handleType
-    ) private view returns (bytes32 result) {
-        result = _generateHandle(operator, operands, handleType, 0);
-    }
-    /**
-     * Generates a complete handle from an operator and its operands.
-     *
-     * Pre-handle format:
-     *   keccak256(abi.encodePacked(
-     *       operator,        // Operator identifier (e.g., Add, Sub, Div)
-     *       operands,        // Array of operand handles
-     *       address(this),   // NoxCompute contract address
-     *       msg.sender,      // Caller address
-     *       block.timestamp, // Current block timestamp
-     *       outputIndex      // For operations that return multiple outputs
-     *   ))
-     *
-     * Handle format (32 bytes):
-     *   [0-25]  : First 26 bytes of preHandle (truncated hash)
-     *   [26-29] : Chain ID (4 bytes, from uint32)
-     *   [30]    : TEE type
-     *   [31]    : Handle version
-     *
-     * @param operator The operator to apply
-     * @param operands Array of operand handles
-     * @param handleType The TEE type to encode in the handle
-     * @param outputIndex Index for operations returning multiple outputs
-     * @return result The complete handle with metadata appended
-     */
-    function _generateHandle(
-        Operator operator,
-        bytes32[] memory operands,
-        TEEType handleType,
-        uint8 outputIndex
-    ) private view returns (bytes32 result) {
-        result = keccak256(
-            abi.encodePacked(
-                operator,
-                operands,
-                address(this),
-                msg.sender,
-                block.timestamp,
-                outputIndex
-            )
-        );
-        result = bytes32(
-            abi.encodePacked(
-                bytes26(result),
-                bytes4(uint32(block.chainid)),
-                bytes1(uint8(handleType)),
-                bytes1(uint8(HANDLE_VERSION))
-            )
-        );
-    }
-}