@inco/js 0.8.0-devnet-5 → 0.9.0-devnet-test-2

package/dist/esm/lite/xwing.js

@@ -0,0 +1,263 @@
+import { Chacha20Poly1305 } from '@hpke/chacha20poly1305';
+import { CipherSuite, HkdfSha256 } from '@hpke/core';
+import { XWing } from '@hpke/hybridkem-x-wing';
+import { asBytes32, bytesFromHexString, bytesToHex } from '../binary.js';
+import { bytesToPlaintext, decodeCiphertextInput, encodeCiphertextInput, encryptionSchemes, getEncryptionSchemeName, SupportedFheType, } from '../encryption/encryption.js';
+import { computeHandle, computePrehandle } from '../handle.js';
+import { parse } from '../schema.js';
+import { decodeInput, encodeInput } from './hadu.js';
+// Get X-Wing key sizes from the library
+const xwingKem = new XWing();
+/**
+ * X-Wing public key size in bytes.
+ * Combining ML-KEM-768 (1184 bytes) and X25519 (32 bytes).
+ */
+export const XWING_PUBLIC_KEY_SIZE = xwingKem.publicKeySize;
+// Test network private key for testing
+export const TEST_NETWORK_SEED_KEY = '0x0000000000000000000000000000000000000000000000000000000000000000';
+// Test network X-Wing public key (1216 bytes)
+// Generated from Go with seed of all zeros using HPKE layer: hpke.KEM_XWING.Scheme().DeriveKeyPair(seed)
+// This matches the key used in covalidator's GetXwingPrivateKeyForTesting() via DeriveXwingPrivateKey
+export const TEST_NETWORK_XWING_PUBKEY = '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';
+/**
+ * Create HPKE cipher suite with X-Wing KEM, HKDF-SHA256, and ChaCha20-Poly1305 AEAD.
+ * This configuration provides post-quantum security with hybrid classical/PQ encryption.
+ * Workaround: Manually calls setup on the XWing KEM due to a bug in @hpke/hybridkem-x-wing@0.6.1
+ * where encap() calls getRandomValues before calling _setup().
+ */
+async function createXwingSuite() {
+    const kem = new XWing();
+    // Workaround: Call setup to initialize _api before encap() is called
+    // @ts-expect-error _setup is private but must be called to initialize crypto API
+    await kem._setup();
+    return new CipherSuite({
+        kem,
+        kdf: new HkdfSha256(),
+        aead: new Chacha20Poly1305(),
+    });
+}
+/**
+ * Derive X-Wing keypair from a 32-byte seed (deterministic).
+ * This matches the Go implementation in covalidator/encoding/xwing.go
+ *
+ * @param seed - 32-byte seed for deterministic key derivation
+ * @returns X-Wing keypair with cached public key bytes
+ */
+export async function deriveXwingKeypairFromSeed(seed) {
+    if (seed.length !== 32) {
+        throw new Error(`Invalid X-Wing seed length: expected 32 bytes, got ${seed.length}`);
+    }
+    const suite = await createXwingSuite();
+    // Create a fresh ArrayBuffer copy to avoid SharedArrayBuffer issues
+    const seedCopy = new Uint8Array(seed);
+    const keyPair = await suite.kem.deriveKeyPair(seedCopy.buffer);
+    const publicKeyBytes = new Uint8Array(await suite.kem.serializePublicKey(keyPair.publicKey));
+    return {
+        scheme: encryptionSchemes.xwing,
+        publicKey: keyPair.publicKey,
+        privateKey: keyPair.privateKey,
+        encodePublicKey() {
+            return publicKeyBytes;
+        },
+    };
+}
+/**
+ * Generate a random X-Wing keypair.
+ *
+ * @returns X-Wing keypair with cached public key bytes
+ */
+export async function generateXwingKeypair() {
+    const suite = await createXwingSuite();
+    const keyPair = await suite.kem.generateKeyPair();
+    const publicKeyBytes = new Uint8Array(await suite.kem.serializePublicKey(keyPair.publicKey));
+    return {
+        scheme: encryptionSchemes.xwing,
+        publicKey: keyPair.publicKey,
+        privateKey: keyPair.privateKey,
+        encodePublicKey() {
+            return publicKeyBytes;
+        },
+    };
+}
+/**
+ * Decode X-Wing public key from bytes.
+ *
+ * @param pubKeyBytes - 1216-byte X-Wing public key
+ * @returns CryptoKey for encryption operations
+ */
+export async function decodeXwingPublicKey(pubKeyBytes) {
+    const suite = await createXwingSuite();
+    if (pubKeyBytes.length !== suite.kem.publicKeySize) {
+        throw new Error(`Invalid X-Wing public key length: expected ${XWING_PUBLIC_KEY_SIZE} bytes, got ${pubKeyBytes.length}`);
+    }
+    // Create a fresh ArrayBuffer copy to avoid SharedArrayBuffer issues
+    const pubKeyCopy = new Uint8Array(pubKeyBytes);
+    return await suite.kem.deserializePublicKey(pubKeyCopy.buffer);
+}
+/**
+ * Decode X-Wing private key from 32-byte seed.
+ * Alias for deriveXwingKeypairFromSeed for consistency with Go API.
+ *
+ * @param seed - 32-byte seed
+ * @returns X-Wing keypair
+ */
+export async function decodeXwingPrivateKey(seed) {
+    return await deriveXwingKeypairFromSeed(seed);
+}
+/**
+ * Encode X-Wing public key to bytes.
+ *
+ * @param publicKey - CryptoKey containing X-Wing public key
+ * @returns 1216-byte serialized public key
+ */
+export async function encodeXwingPublicKey(publicKey) {
+    const suite = await createXwingSuite();
+    return new Uint8Array(await suite.kem.serializePublicKey(publicKey));
+}
+/**
+ * Encrypt using X-Wing HPKE (RFC 9180) with ChaCha20-Poly1305 AEAD.
+ *
+ * Output format: encappedKey (1184 bytes) || ciphertext (variable length)
+ *
+ * @param pubKeyA - Recipient's public key
+ * @param msg - Message to encrypt
+ * @param aad - Additional authenticated data (default: empty)
+ * @param info - Context info for key derivation (default: empty)
+ * @returns Encrypted data (encappedKey || ciphertext)
+ */
+export async function encrypt(pubKeyA, msg, aad = new Uint8Array(0), info = new Uint8Array(0)) {
+    const suite = await createXwingSuite();
+    // Create fresh ArrayBuffer copies to avoid SharedArrayBuffer issues
+    const infoCopy = new Uint8Array(info);
+    const sender = await suite.createSenderContext({
+        recipientPublicKey: pubKeyA,
+        info: infoCopy.buffer,
+    });
+    const msgCopy = new Uint8Array(msg);
+    const aadCopy = new Uint8Array(aad);
+    const ciphertext = await sender.seal(msgCopy.buffer, aadCopy.buffer);
+    const encappedKey = sender.enc;
+    // Concatenate encappedKey and ciphertext
+    const result = new Uint8Array(encappedKey.byteLength + ciphertext.byteLength);
+    result.set(new Uint8Array(encappedKey), 0);
+    result.set(new Uint8Array(ciphertext), encappedKey.byteLength);
+    return result;
+}
+/**
+ * Decrypt using X-Wing HPKE (RFC 9180) with ChaCha20-Poly1305 AEAD.
+ *
+ * Input format: encappedKey (1184 bytes) || ciphertext (variable length)
+ *
+ * @param privKeyA - Recipient's private key
+ * @param encryptedData - Encrypted data (encappedKey || ciphertext)
+ * @param aad - Additional authenticated data (default: empty)
+ * @param info - Context info for key derivation (default: empty)
+ * @returns Decrypted plaintext
+ */
+export async function decrypt(privKeyA, encryptedData, aad = new Uint8Array(0), info = new Uint8Array(0)) {
+    const suite = await createXwingSuite();
+    // X-Wing encapsulated key size from the KEM
+    const encappedKeySize = suite.kem.encSize;
+    if (encryptedData.length < encappedKeySize) {
+        throw new Error(`Invalid X-Wing encrypted data length: expected at least ${encappedKeySize} bytes, got ${encryptedData.length}`);
+    }
+    // Split encappedKey and ciphertext
+    const encappedKey = encryptedData.slice(0, encappedKeySize);
+    const ciphertext = encryptedData.slice(encappedKeySize);
+    // Create fresh ArrayBuffer copies to avoid SharedArrayBuffer issues
+    const infoCopy = new Uint8Array(info);
+    const encCopy = new Uint8Array(encappedKey);
+    const recipient = await suite.createRecipientContext({
+        recipientKey: privKeyA.privateKey,
+        enc: encCopy.buffer,
+        info: infoCopy.buffer,
+    });
+    const ctCopy = new Uint8Array(ciphertext);
+    const aadCopy = new Uint8Array(aad);
+    const plaintext = await recipient.open(ctCopy.buffer, aadCopy.buffer);
+    return new Uint8Array(plaintext);
+}
+/**
+ * Create an X-Wing encryptor for encrypting inputs.
+ * Follows the same pattern as ECIES encryptor in ecies.ts.
+ *
+ * The encryptor:
+ * 1. Encodes the plaintext with its context (HADU encoding)
+ * 2. Encrypts using X-Wing HPKE
+ * 3. Computes prehandle and handle for tracking
+ * 4. Returns the encrypted ciphertext with metadata
+ *
+ * @param args - X-Wing encryptor arguments (recipient's public key)
+ * @returns Encryptor function
+ */
+export function getXwingEncryptor({ pubKeyA, }) {
+    return async ({ plaintext, context, }) => {
+        if (plaintext.scheme !== encryptionSchemes.xwing) {
+            throw new Error(`Plaintext with scheme ${getEncryptionSchemeName(plaintext.scheme)} cannot be encrypted with X-Wing`);
+        }
+        // Encode plaintext with context (HADU encoding)
+        const inputCiphertextPayloadBytes = Buffer.from(encodeInput({ plaintext, context }));
+        // Encrypt with X-Wing HPKE (empty AAD and info)
+        const aad = new Uint8Array(0);
+        const info = new Uint8Array(0);
+        const ct = await encrypt(pubKeyA, inputCiphertextPayloadBytes, aad, info);
+        // Compute prehandle and handle for ciphertext tracking
+        const prehandle = computePrehandle({
+            ciphertext: ct,
+            handleType: plaintext.type,
+            indexHandle: 0,
+            handleVersion: 0,
+        });
+        const handle = computeHandle({
+            prehandle,
+            context: context,
+        });
+        return {
+            prehandle: asBytes32(prehandle),
+            handle: asBytes32(handle),
+            context,
+            ciphertext: {
+                scheme: encryptionSchemes.xwing,
+                type: plaintext.type,
+                // Prepend handle as checksum for early mismatch detection
+                value: encodeCiphertextInput(context.version, bytesToHex(handle), bytesToHex(ct)),
+            },
+        };
+    };
+}
+/**
+ * Create an X-Wing decryptor for decrypting inputs.
+ * Follows the same pattern as ECIES decryptor in ecies.ts.
+ *
+ * The decryptor:
+ * 1. Removes the prepended handle from the ciphertext
+ * 2. Decrypts using X-Wing HPKE
+ * 3. Decodes the HADU-encoded payload
+ * 4. Extracts and returns the plaintext
+ *
+ * @param args - X-Wing decryptor arguments (recipient's private key)
+ * @returns Decryptor function
+ */
+export function getXwingDecryptor({ privKeyA, }) {
+    return async ({ scheme, value, }) => {
+        if (scheme !== encryptionSchemes.xwing) {
+            throw new Error(`Ciphertext with scheme ${getEncryptionSchemeName(scheme)} cannot be decrypted with X-Wing`);
+        }
+        // Remove the prepended handle
+        const { ciphertext } = decodeCiphertextInput(value);
+        // Decrypt with X-Wing HPKE (empty AAD and info)
+        const aad = new Uint8Array(0);
+        const info = new Uint8Array(0);
+        const ptBuf = await decrypt(privKeyA, bytesFromHexString(ciphertext), aad, info);
+        // Decode HADU-encoded payload
+        const payload = decodeInput(ptBuf);
+        const computable = payload.value;
+        if (computable.case !== 'scalar') {
+            throw new Error(`Decrypted plaintext is not a scalar, cannot currently be decrypted. This feature may be implemented on request.`);
+        }
+        // Extract and return plaintext
+        const typ = parse(SupportedFheType, computable.value.type);
+        return bytesToPlaintext(computable.value.value, encryptionSchemes.xwing, typ);
+    };
+}
+//# sourceMappingURL=data:application/json;base64,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

package/dist/esm/reencryption/types.d.ts

@@ -2,7 +2,7 @@ import { Address } from 'viem';
 import { HexString } from '../binary.js';
 import { CiphertextOf, EncryptionScheme, PlaintextOf, SupportedFheType } from '../encryption/encryption.js';
 import { Handle } from '../handle.js';
-import type { Secp256k1Keypair } from '../lite/ecies.js';
+import type { XwingKeypair } from '../lite/xwing.js';
 import type { BackoffConfig } from '../retry.js';
 export type Reencryptor<S extends EncryptionScheme> = <T extends SupportedFheType>(args: ReencryptFnArgs<S, T>, backoffConfig?: Partial<BackoffConfig>) => Promise<PlaintextOf<S, T>>;
 export interface ReencryptorArgs {
@@ -12,7 +12,7 @@ export type ReencryptFnArgs<S extends EncryptionScheme, T extends SupportedFheTy
     handle: Handle;
     ciphertext?: CiphertextOf<S, T>;
 };
-export type SupportedEphemeralKeypairs = Secp256k1Keypair;
+export type SupportedEphemeralKeypairs = XwingKeypair;
 export interface PubKeyEncodable {
     encodePublicKey(): Uint8Array;
 }

package/dist/types/advancedacl/session-key.d.ts

@@ -1,9 +1,10 @@
 import { type Account, type Address, type Chain, type Hex, PublicClient, type Transport, type WalletClient } from 'viem';
+import type { PrivateKeyAccount } from 'viem/accounts';
 import { DecryptionAttestation, EncryptedDecryptionAttestation } from '../attesteddecrypt/index.js';
 import { SupportedChainId } from '../chain.js';
-import { type EciesScheme, SupportedFheType } from '../encryption/encryption.js';
+import { EncryptionScheme, SupportedFheType } from '../encryption/encryption.js';
 import { HexString } from '../index.js';
-import type { Secp256k1Keypair } from '../lite/index.js';
+import type { XwingKeypair } from '../lite/index.js';
 import { BackoffConfig } from '../retry.js';
 import type { AllowanceVoucher, AllowanceVoucherWithSig } from './types.js';
 import { AttestedComputeOP } from '../attestedcompute/types.js';
@@ -33,7 +34,7 @@ export declare function grantSessionKeyCustomVerifier({ chainId, incoLiteAddress
 export declare function updateActiveVouchersSessionNonce(incoLiteAddress: Address, sharerWalletClient: WalletClient<Transport, Chain, Account>): Promise<`0x${string}`>;
 export interface SessionKeyAttestedComputeArgs {
     chainId: SupportedChainId;
-    ephemeralKeypair: Secp256k1Keypair;
+    ephemeralAccount: PrivateKeyAccount;
     kmsQuorumClient: KmsQuorumClient;
     allowanceVoucherWithSig: AllowanceVoucherWithSig;
     lhsHandle: HexString;
@@ -44,19 +45,19 @@ export interface SessionKeyAttestedComputeArgs {
     ethClient?: PublicClient<Transport, Chain> | WalletClient<Transport, Chain, Account> | undefined;
     executorAddress?: HexString | undefined;
     reencryptPubKey?: Uint8Array | undefined;
-    reencryptKeypair?: Secp256k1Keypair | undefined;
+    reencryptKeypair?: XwingKeypair | undefined;
 }
-export declare function sessionKeyAttestedCompute<T extends SupportedFheType>({ lhsHandle, op, rhsPlaintext, backoffConfig, chainId, kmsQuorumClient, ephemeralKeypair, allowanceVoucherWithSig, requesterArgData, ethClient, executorAddress, reencryptPubKey, reencryptKeypair, }: SessionKeyAttestedComputeArgs): Promise<DecryptionAttestation<EciesScheme, SupportedFheType> | EncryptedDecryptionAttestation<EciesScheme, SupportedFheType>>;
+export declare function sessionKeyAttestedCompute<T extends SupportedFheType>({ lhsHandle, op, rhsPlaintext, backoffConfig, chainId, kmsQuorumClient, ephemeralAccount, allowanceVoucherWithSig, requesterArgData, ethClient, executorAddress, reencryptPubKey, reencryptKeypair, }: SessionKeyAttestedComputeArgs): Promise<DecryptionAttestation<EncryptionScheme, SupportedFheType> | EncryptedDecryptionAttestation<EncryptionScheme, SupportedFheType>>;
 export interface SessionKeyAttestedDecryptArgs {
     chainId: SupportedChainId;
-    ephemeralKeypair: Secp256k1Keypair;
+    ephemeralAccount: PrivateKeyAccount;
     kmsQuorumClient: KmsQuorumClient;
     allowanceVoucherWithSig: AllowanceVoucherWithSig;
     handles: HexString[];
     requesterArgData?: Hex | undefined;
     backoffConfig?: Partial<BackoffConfig> | undefined;
     reencryptPubKey?: Uint8Array | undefined;
-    reencryptKeypair?: Secp256k1Keypair | undefined;
+    reencryptKeypair?: XwingKeypair | undefined;
     ethClient?: PublicClient<Transport, Chain> | WalletClient<Transport, Chain, Account> | undefined;
     executorAddress?: HexString | undefined;
 }
@@ -69,7 +70,7 @@ export interface SessionKeyAttestedDecryptArgs {
  *   chainId,
  *   kmsConnectRpcEndpointOrClient: covalidatorUrl,
  *   allowanceVoucherWithSig: voucher,
- *   ephemeralKeypair,
+ *   ephemeralAccount,
  *   handles,
  * });
  * console.log(attestations[0].plaintext.value);
@@ -81,7 +82,7 @@ export interface SessionKeyAttestedDecryptArgs {
  *   chainId,
  *   kmsConnectRpcEndpointOrClient: covalidatorUrl,
  *   allowanceVoucherWithSig: voucher,
- *   ephemeralKeypair,
+ *   ephemeralAccount,
  *   handles,
  *   reencryptPubKey: recipientPubKey,
  * });
@@ -90,4 +91,4 @@ export interface SessionKeyAttestedDecryptArgs {
  * );
  * ```
  */
-export declare function sessionKeyAttestedDecrypt({ chainId, kmsQuorumClient, handles, ephemeralKeypair, allowanceVoucherWithSig, requesterArgData, backoffConfig, reencryptPubKey, reencryptKeypair, ethClient, executorAddress, }: SessionKeyAttestedDecryptArgs): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType> | EncryptedDecryptionAttestation<EciesScheme, SupportedFheType>>>;
+export declare function sessionKeyAttestedDecrypt({ chainId, kmsQuorumClient, handles, ephemeralAccount, allowanceVoucherWithSig, requesterArgData, backoffConfig, reencryptPubKey, reencryptKeypair, ethClient, executorAddress, }: SessionKeyAttestedDecryptArgs): Promise<Array<DecryptionAttestation<EncryptionScheme, SupportedFheType> | EncryptedDecryptionAttestation<EncryptionScheme, SupportedFheType>>>;

package/dist/types/attestedcompute/attested-compute.d.ts

@@ -2,9 +2,9 @@ import type { Account, Chain, Transport, WalletClient } from 'viem';
 import { DecryptionAttestation, EncryptedDecryptionAttestation } from '../attesteddecrypt/types.js';
 import { HexString } from '../binary.js';
 import { SupportedChainId } from '../chain.js';
-import type { EciesScheme, SupportedFheType } from '../encryption/encryption.js';
+import type { EncryptionScheme, SupportedFheType } from '../encryption/encryption.js';
 import { KmsQuorumClient } from '../kms/quorumClient.js';
-import type { Secp256k1Keypair } from '../lite/ecies.js';
+import type { XwingKeypair } from '../lite/xwing.js';
 import type { BackoffConfig } from '../retry.js';
 import { AttestedComputeOP } from './types.js';
 export declare const ATTESTED_COMPUTE_DOMAIN_NAME = "IncoAttestedCompute";
@@ -38,8 +38,8 @@ export declare function attestedCompute<T extends SupportedFheType>({ executorAd
     kmsQuorumClient: KmsQuorumClient;
     chainId: SupportedChainId;
     reencryptPubKey: Uint8Array;
-    reencryptKeypair: Secp256k1Keypair;
-}): Promise<DecryptionAttestation<EciesScheme, T>>;
+    reencryptKeypair: XwingKeypair;
+}): Promise<DecryptionAttestation<EncryptionScheme, T>>;
 export declare function attestedCompute<T extends SupportedFheType>({ executorAddress, lhsHandle, op, rhsPlaintext, backoffConfig, walletClient, kmsQuorumClient, chainId, reencryptPubKey, }: {
     executorAddress: HexString;
     lhsHandle: HexString;
@@ -51,7 +51,7 @@ export declare function attestedCompute<T extends SupportedFheType>({ executorAd
     chainId: SupportedChainId;
     reencryptPubKey: Uint8Array;
     reencryptKeypair?: never;
-}): Promise<EncryptedDecryptionAttestation<EciesScheme, T>>;
+}): Promise<EncryptedDecryptionAttestation<EncryptionScheme, T>>;
 export declare function attestedCompute<T extends SupportedFheType>({ executorAddress, lhsHandle, op, rhsPlaintext, backoffConfig, walletClient, kmsQuorumClient, chainId, }: {
     executorAddress: HexString;
     lhsHandle: HexString;
@@ -63,4 +63,4 @@ export declare function attestedCompute<T extends SupportedFheType>({ executorAd
     chainId: SupportedChainId;
     reencryptPubKey?: never;
     reencryptKeypair?: never;
-}): Promise<DecryptionAttestation<EciesScheme, T>>;
+}): Promise<DecryptionAttestation<EncryptionScheme, T>>;

package/dist/types/attesteddecrypt/attested-decrypt.d.ts

@@ -1,9 +1,9 @@
 import type { Account, Chain, PublicClient, Transport, WalletClient } from 'viem';
 import { type HexString } from '../binary.js';
 import { type SupportedChainId } from '../chain.js';
-import { type EciesScheme, type SupportedFheType } from '../encryption/encryption.js';
+import { EncryptionScheme, type SupportedFheType } from '../encryption/encryption.js';
 import { KmsQuorumClient } from '../kms/quorumClient.js';
-import type { Secp256k1Keypair } from '../lite/ecies.js';
+import type { XwingKeypair } from '../lite/xwing.js';
 import type { BackoffConfig } from '../retry.js';
 import { type DecryptionAttestation, type EncryptedDecryptionAttestation } from './types.js';
 export declare const ATTESTED_DECRYPT_DOMAIN_NAME = "IncoAttestedDecrypt";
@@ -34,7 +34,7 @@ export declare function attestedDecrypt({ handles, backoffConfig, chainId, kmsQu
     chainId: SupportedChainId;
     kmsQuorumClient: KmsQuorumClient;
     executorAddress: HexString;
-}): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType>>>;
+}): Promise<Array<DecryptionAttestation<EncryptionScheme, SupportedFheType>>>;
 /**
  * Decrypt multiple handles in a single attested request.
  * Returns an array of attestations aligned with the response ordering.
@@ -49,10 +49,10 @@ export declare function attestedDecrypt({ handles, backoffConfig, walletClient,
     walletClient: WalletClient<Transport, Chain, Account>;
     chainId: SupportedChainId;
     reencryptPubKey: Uint8Array;
-    reencryptKeypair: Secp256k1Keypair;
+    reencryptKeypair: XwingKeypair;
     kmsQuorumClient: KmsQuorumClient;
     executorAddress: HexString;
-}): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType>>>;
+}): Promise<Array<DecryptionAttestation<EncryptionScheme, SupportedFheType>>>;
 /**
  * Decrypt multiple handles in a single attested request.
  * Returns an array of attestations aligned with the response ordering.
@@ -70,7 +70,7 @@ export declare function attestedDecrypt({ handles, backoffConfig, walletClient,
     reencryptKeypair?: never;
     kmsQuorumClient: KmsQuorumClient;
     executorAddress: HexString;
-}): Promise<Array<EncryptedDecryptionAttestation<EciesScheme, SupportedFheType>>>;
+}): Promise<Array<EncryptedDecryptionAttestation<EncryptionScheme, SupportedFheType>>>;
 /**
  * Decrypt multiple handles in a single attested request.
  * Returns an array of attestations aligned with the response ordering.
@@ -88,9 +88,9 @@ export declare function attestedDecrypt({ handles, backoffConfig, walletClient,
     reencryptKeypair?: never;
     kmsQuorumClient: KmsQuorumClient;
     executorAddress: HexString;
-}): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType>>>;
+}): Promise<Array<DecryptionAttestation<EncryptionScheme, SupportedFheType>>>;
 export declare function fetchEip712DomainVersion(executorAddress: HexString | undefined, defaultVersion: string, walletClient?: WalletClient<Transport, Chain, Account> | PublicClient<Transport, Chain>): Promise<string>;
-export declare function decryptEncryptedAttestations(attestations: Array<DecryptionAttestation<EciesScheme, SupportedFheType> | EncryptedDecryptionAttestation<EciesScheme, SupportedFheType>>, reencryptKeypair: Secp256k1Keypair): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType>>>;
+export declare function decryptEncryptedAttestations(attestations: Array<DecryptionAttestation<EncryptionScheme, SupportedFheType> | EncryptedDecryptionAttestation<EncryptionScheme, SupportedFheType>>, reencryptKeypair: XwingKeypair): Promise<Array<DecryptionAttestation<EncryptionScheme, SupportedFheType>>>;
 /**
  * Validates a handle format.
  * @param handle - The handle to validate

package/dist/types/encryption/encryption.d.ts

@@ -14,19 +14,19 @@ export type SupportedFheTypeName = typeof SupportedFheTypeName.Type;
 export declare const SupportedFheType: Schema.SchemaClass<0 | 5 | 7 | 8, 0 | 5 | 7 | 8, never>;
 export type SupportedFheType = typeof SupportedFheType.Type;
 export declare const encryptionSchemes: {
-    readonly ecies: 1;
+    readonly xwing: 2;
 };
 export declare function getEncryptionSchemeName(scheme: number): string;
 export type EncryptionSchemes = typeof encryptionSchemes;
-export type EciesScheme = EncryptionSchemes['ecies'];
-export declare const EncryptionScheme: Schema.Literal<[1]>;
+export type XwingScheme = EncryptionSchemes['xwing'];
+export declare const EncryptionScheme: Schema.Literal<[2]>;
 export type EncryptionScheme = typeof EncryptionScheme.Type;
 type DistType<P, S extends EncryptionScheme, T extends SupportedFheType> = P extends any ? P & {
     scheme: S;
     type: T;
 } : never;
 export declare const Ciphertext: Schema.Struct<{
-    scheme: Schema.Literal<[1]>;
+    scheme: Schema.Literal<[2]>;
     type: Schema.SchemaClass<0 | 5 | 7 | 8, 0 | 5 | 7 | 8, never>;
     value: Schema.TemplateLiteral<`0x${string}`>;
 }>;
@@ -34,7 +34,7 @@ export type Ciphertext = typeof Ciphertext.Type;
 export type CiphertextOf<S extends EncryptionScheme, T extends SupportedFheType> = DistType<Ciphertext, S, T>;
 export declare const CiphertextWithContext: Schema.Struct<{
     ciphertext: Schema.Struct<{
-        scheme: Schema.Literal<[1]>;
+        scheme: Schema.Literal<[2]>;
         type: Schema.SchemaClass<0 | 5 | 7 | 8, 0 | 5 | 7 | 8, never>;
         value: Schema.TemplateLiteral<`0x${string}`>;
     }>;
@@ -52,7 +52,7 @@ export type CiphertextWithContextOf<S extends EncryptionScheme, T extends Suppor
 };
 export declare const EncryptResult: Schema.Struct<{
     ciphertext: Schema.Struct<{
-        scheme: Schema.Literal<[1]>;
+        scheme: Schema.Literal<[2]>;
         type: Schema.SchemaClass<0 | 5 | 7 | 8, 0 | 5 | 7 | 8, never>;
         value: Schema.TemplateLiteral<`0x${string}`>;
     }>;
@@ -71,11 +71,11 @@ export type EncryptResultOf<S extends EncryptionScheme, T extends SupportedFheTy
     ciphertext: CiphertextOf<S, T>;
 };
 export declare const Plaintext: Schema.Union<[Schema.Struct<{
-    scheme: Schema.Literal<[1]>;
+    scheme: Schema.Literal<[2]>;
     type: Schema.Literal<[5, 7, 8]>;
     value: typeof Schema.BigInt;
 }>, Schema.Struct<{
-    scheme: Schema.Literal<[1]>;
+    scheme: Schema.Literal<[2]>;
     type: Schema.Literal<[0]>;
     value: typeof Schema.Boolean;
 }>]>;
@@ -83,11 +83,11 @@ export type Plaintext = typeof Plaintext.Type;
 export type PlaintextOf<S extends EncryptionScheme, T extends SupportedFheType> = DistType<Plaintext, S, T>;
 export declare const PlaintextWithContext: Schema.Struct<{
     plaintext: Schema.Union<[Schema.Struct<{
-        scheme: Schema.Literal<[1]>;
+        scheme: Schema.Literal<[2]>;
         type: Schema.Literal<[5, 7, 8]>;
         value: typeof Schema.BigInt;
     }>, Schema.Struct<{
-        scheme: Schema.Literal<[1]>;
+        scheme: Schema.Literal<[2]>;
         type: Schema.Literal<[0]>;
         value: typeof Schema.Boolean;
     }>]>;