npm - @layr-labs/ecloud-sdk - Versions diffs - 1.0.0-devep4 → 1.0.0-devep6 - Mend

@layr-labs/ecloud-sdk 1.0.0-devep4 → 1.0.0-devep6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

package/VERSION CHANGED Viewed

@@ -1,2 +1,2 @@
-version=1.0.0-devep4
-commit=d34097bc2cac7cd1e0d74c3ae107481d47fbded9
+version=1.0.0-devep6
+commit=c4598644993dd4f7eac47847d2ffb1f699240dbc

package/dist/browser.cjs CHANGED Viewed

@@ -749,7 +749,7 @@ var CanViewAppLogsPermission = "0x2fd3f2fe";
 var CanViewSensitiveAppInfoPermission = "0x0e67b22f";
 var CanUpdateAppProfilePermission = "0x036fef61";
 function getDefaultClientId() {
-  const version = true ? "1.0.0-devep4" : "0.0.0";
+  const version = true ? "1.0.0-devep6" : "0.0.0";
   return `ecloud-sdk/v${version}`;
 }
 var UserApiClient = class {

package/dist/browser.js CHANGED Viewed

@@ -638,7 +638,7 @@ var CanViewAppLogsPermission = "0x2fd3f2fe";
 var CanViewSensitiveAppInfoPermission = "0x0e67b22f";
 var CanUpdateAppProfilePermission = "0x036fef61";
 function getDefaultClientId() {
-  const version = true ? "1.0.0-devep4" : "0.0.0";
+  const version = true ? "1.0.0-devep6" : "0.0.0";
   return `ecloud-sdk/v${version}`;
 }
 var UserApiClient = class {

package/dist/compute.cjs CHANGED Viewed

@@ -627,45 +627,6 @@ else
     exit 1
 fi
-# dns_points_here returns 0 if $1 resolves (A record) to our external
-# IPv4. Used to gate ACME on DNS being wired before we start burning
-# Let's Encrypt's 5-cert-per-domain-per-week rate limit. Returns 1 on
-# any failure (tool missing, lookup error, mismatch) so callers treat
-# "I can't tell" the same as "not ready yet".
-dns_points_here() {
-    local host="$1"
-    local external_ip
-    # GCE metadata is always reachable from a VM on GCE. The
-    # alternative (dig OPT CHAOS to an upstream) adds a dependency;
-    # the metadata server is already a hard prereq for KMS auth above.
-    external_ip="$(curl -fsS -H 'Metadata-Flavor: Google' \\
-        'http://metadata.google.internal/computeMetadata/v1/instance/network-interfaces/0/access-configs/0/external-ip' 2>/dev/null || true)"
-    if [ -z "$external_ip" ]; then
-        echo "compute-source-env.sh: DNS precheck for $host skipped: no external IP from metadata"
-        return 1
-    fi
-    local resolved
-    if command -v getent >/dev/null 2>&1; then
-        resolved="$(getent ahostsv4 "$host" 2>/dev/null | awk 'NR==1{print $1}')"
-    elif command -v host >/dev/null 2>&1; then
-        resolved="$(host -t A "$host" 2>/dev/null | awk '/has address/{print $4; exit}')"
-    elif command -v dig >/dev/null 2>&1; then
-        resolved="$(dig +short A "$host" 2>/dev/null | awk 'NR==1{print}')"
-    else
-        echo "compute-source-env.sh: DNS precheck for $host skipped: no resolver tool available"
-        return 1
-    fi
-    if [ -z "$resolved" ]; then
-        echo "compute-source-env.sh: DNS precheck: $host has no A record yet"
-        return 1
-    fi
-    if [ "$resolved" != "$external_ip" ]; then
-        echo "compute-source-env.sh: DNS precheck: $host resolves to $resolved but this VM is $external_ip"
-        return 1
-    fi
-    return 0
-}
 # issue_cert_for runs tls-keygen for a single hostname and copies the
 # produced fullchain/privkey into $1's output directory ($2). Returns
 # 0 on success, non-zero on any failure (caller decides whether that's
@@ -697,9 +658,16 @@ issue_cert_for() {
 #   - ECLOUD_PLATFORM_HOST (platform-routed <addr>.<env>.eigencloud.xyz),
 #     when the CLI/platform has set it
 #   - DOMAIN (user-supplied custom domain), when set and non-localhost
-# Both hostnames are gated on DNS already pointing at this VM so we
-# don't burn Let's Encrypt rate limits on apps whose routing isn't
-# wired up yet (prewarm/migration window).
+#
+# No client-side DNS precheck. Earlier versions tried to gate ACME on
+# "does this hostname resolve to my external IP" but that's wrong for
+# the platform-routing model (DNS points at the shared nginx NLB, not
+# the VM) and was preventing cert issuance on the production path.
+# tls-client (eigencompute-containers/tls-client) does its own DNS
+# poll before calling ACME and surfaces a clear error when challenges
+# can't reach the VM, which is the right place for that check \u2014
+# attempting it here from inside the VM cannot tell platform-routed
+# from compute-tee-routed apps.
 setup_tls() {
     # If tls-keygen isn't present, TLS wasn't configured during build
     if [ ! -x /usr/local/bin/tls-keygen ]; then
@@ -758,30 +726,22 @@ setup_tls() {
     local certs_issued=0
     if [ -n "$platform_host" ]; then
-        if dns_points_here "$platform_host"; then
-            if issue_cert_for "$platform_host" "/run/tls/platform" "$mnemonic" "$challenge" "$staging_flag"; then
-                certs_issued=$((certs_issued + 1))
-            else
-                echo "compute-source-env.sh: ERROR - failed to issue cert for platform host $platform_host"
-                echo "ECLOUD_FAIL tls_setup"
-                exit 1
-            fi
+        if issue_cert_for "$platform_host" "/run/tls/platform" "$mnemonic" "$challenge" "$staging_flag"; then
+            certs_issued=$((certs_issued + 1))
         else
-            echo "compute-source-env.sh: skipping platform cert for $platform_host \u2014 DNS not pointing here yet"
+            echo "compute-source-env.sh: ERROR - failed to issue cert for platform host $platform_host"
+            echo "ECLOUD_FAIL tls_setup"
+            exit 1
         fi
     fi
     if [ -n "$user_domain" ]; then
-        if dns_points_here "$user_domain"; then
-            if issue_cert_for "$user_domain" "/run/tls/domain" "$mnemonic" "$challenge" "$staging_flag"; then
-                certs_issued=$((certs_issued + 1))
-            else
-                echo "compute-source-env.sh: ERROR - failed to issue cert for user domain $user_domain"
-                echo "ECLOUD_FAIL tls_setup"
-                exit 1
-            fi
+        if issue_cert_for "$user_domain" "/run/tls/domain" "$mnemonic" "$challenge" "$staging_flag"; then
+            certs_issued=$((certs_issued + 1))
         else
-            echo "compute-source-env.sh: skipping user-domain cert for $user_domain \u2014 DNS not pointing here yet"
+            echo "compute-source-env.sh: ERROR - failed to issue cert for user domain $user_domain"
+            echo "ECLOUD_FAIL tls_setup"
+            exit 1
         fi
     fi
@@ -1515,132 +1475,6 @@ async function encryptRSAOAEPAndAES256GCM(encryptionKeyPEM, plaintext, protected
   return jwe;
 }
-// src/client/common/config/environment.ts
-var SEPOLIA_CHAIN_ID = 11155111;
-var MAINNET_CHAIN_ID = 1;
-var CommonAddresses = {
-  ERC7702Delegator: "0x63c0c19a282a1b52b07dd5a65b58948a07dae32b"
-};
-var ChainAddresses = {
-  [MAINNET_CHAIN_ID]: {
-    PermissionController: "0x25E5F8B1E7aDf44518d35D5B2271f114e081f0E5"
-  },
-  [SEPOLIA_CHAIN_ID]: {
-    PermissionController: "0x44632dfBdCb6D3E21EF613B0ca8A6A0c618F5a37"
-  }
-};
-var PLATFORM_ENV_TESTNET_SEPOLIA = "testnet-sepolia";
-var PLATFORM_ENV_MAINNET_ETHEREUM = "mainnet-ethereum";
-var DEFAULT_APP_BASE_DOMAIN = "eigencloud.xyz";
-var ENVIRONMENTS = {
-  "sepolia-dev": {
-    name: "sepolia",
-    build: "dev",
-    appControllerAddress: "0xa86DC1C47cb2518327fB4f9A1627F51966c83B92",
-    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,
-    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
-    kmsServerURL: "http://10.128.0.57:8080",
-    userApiServerURL: "https://userapi-compute-sepolia-dev.eigencloud.xyz",
-    defaultRPCURL: "https://ethereum-sepolia-rpc.publicnode.com",
-    usdcCreditsAddress: "0xbdA3897c3A428763B59015C64AB766c288C97376",
-    platformEnv: PLATFORM_ENV_TESTNET_SEPOLIA,
-    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
-  },
-  sepolia: {
-    name: "sepolia",
-    build: "prod",
-    appControllerAddress: "0x0dd810a6ffba6a9820a10d97b659f07d8d23d4E2",
-    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,
-    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
-    kmsServerURL: "http://10.128.15.203:8080",
-    userApiServerURL: "https://userapi-compute-sepolia-prod.eigencloud.xyz",
-    defaultRPCURL: "https://ethereum-sepolia-rpc.publicnode.com",
-    billingRPCURL: "https://ethereum-rpc.publicnode.com",
-    usdcCreditsAddress: "0xed9c88640ca9149Bd9f7ee6620074af10F2E145d",
-    platformEnv: PLATFORM_ENV_TESTNET_SEPOLIA,
-    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
-  },
-  "mainnet-alpha": {
-    name: "mainnet-alpha",
-    build: "prod",
-    appControllerAddress: "0xc38d35Fc995e75342A21CBd6D770305b142Fbe67",
-    permissionControllerAddress: ChainAddresses[MAINNET_CHAIN_ID].PermissionController,
-    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
-    kmsServerURL: "http://10.128.0.2:8080",
-    userApiServerURL: "https://userapi-compute.eigencloud.xyz",
-    defaultRPCURL: "https://ethereum-rpc.publicnode.com",
-    usdcCreditsAddress: "0xed9c88640ca9149Bd9f7ee6620074af10F2E145d",
-    platformEnv: PLATFORM_ENV_MAINNET_ETHEREUM,
-    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
-  }
-};
-function derivePlatformHost(environmentConfig, appAddress) {
-  if (!environmentConfig.platformEnv || !environmentConfig.appBaseDomain) {
-    return "";
-  }
-  const addr = appAddress.toLowerCase().replace(/^0x/, "");
-  return `${addr}.${environmentConfig.platformEnv}.${environmentConfig.appBaseDomain}`;
-}
-var CHAIN_ID_TO_ENVIRONMENT = {
-  [SEPOLIA_CHAIN_ID.toString()]: "sepolia",
-  [MAINNET_CHAIN_ID.toString()]: "mainnet-alpha"
-};
-function getApiUrlOverride() {
-  const raw = process.env.ECLOUD_API_URL;
-  if (!raw) return void 0;
-  const trimmed = raw.trim().replace(/\/+$/, "");
-  return trimmed.length > 0 ? trimmed : void 0;
-}
-function getEnvironmentConfig(environment, chainID) {
-  const env = ENVIRONMENTS[environment];
-  if (!env) {
-    throw new Error(`Unknown environment: ${environment}`);
-  }
-  if (!isEnvironmentAvailable(environment)) {
-    throw new Error(
-      `Environment ${environment} is not available in this build type. Available environments: ${getAvailableEnvironments().join(", ")}`
-    );
-  }
-  if (chainID) {
-    const expectedEnv = CHAIN_ID_TO_ENVIRONMENT[chainID.toString()];
-    if (expectedEnv && expectedEnv !== environment) {
-      throw new Error(`Environment ${environment} does not match chain ID ${chainID}`);
-    }
-  }
-  const resolvedChainID = chainID || (environment === "sepolia" || environment === "sepolia-dev" ? SEPOLIA_CHAIN_ID : MAINNET_CHAIN_ID);
-  const apiUrlOverride = getApiUrlOverride();
-  return {
-    ...env,
-    chainID: BigInt(resolvedChainID),
-    ...apiUrlOverride ? { userApiServerURL: apiUrlOverride } : {},
-    ...process.env.ECLOUD_USER_API_URL && {
-      userApiServerURL: process.env.ECLOUD_USER_API_URL
-    },
-    ...process.env.ECLOUD_RPC_URL && {
-      defaultRPCURL: process.env.ECLOUD_RPC_URL
-    }
-  };
-}
-function getBuildType() {
-  const buildTimeType = true ? "dev"?.toLowerCase() : void 0;
-  const runtimeType = process.env.BUILD_TYPE?.toLowerCase();
-  const buildType = buildTimeType || runtimeType;
-  if (buildType === "dev") {
-    return "dev";
-  }
-  return "prod";
-}
-function getAvailableEnvironments() {
-  const buildType = getBuildType();
-  if (buildType === "dev") {
-    return ["sepolia-dev"];
-  }
-  return ["sepolia", "mainnet-alpha"];
-}
-function isEnvironmentAvailable(environment) {
-  return getAvailableEnvironments().includes(environment);
-}
 // src/client/common/env/parser.ts
 var fs2 = __toESM(require("fs"), 1);
 var MNEMONIC_ENV_VAR = "MNEMONIC";
@@ -1778,11 +1612,6 @@ Please verify the image exists: docker manifest inspect ${finalImageRef}`
   }
   publicEnv["EIGEN_MACHINE_TYPE_PUBLIC"] = instanceType;
   logger.info(`Instance type: ${instanceType}`);
-  const platformHost = derivePlatformHost(environmentConfig, options.appId);
-  if (platformHost !== "") {
-    publicEnv["ECLOUD_PLATFORM_HOST"] = platformHost;
-    logger.info(`Platform hostname: ${platformHost}`);
-  }
   logger.info("Encrypting environment variables...");
   const { encryptionKey } = getKMSKeysForEnvironment(
     environmentConfig.name,
@@ -5365,7 +5194,7 @@ var CanViewAppLogsPermission = "0x2fd3f2fe";
 var CanViewSensitiveAppInfoPermission = "0x0e67b22f";
 var CanUpdateAppProfilePermission = "0x036fef61";
 function getDefaultClientId() {
-  const version = true ? "1.0.0-devep4" : "0.0.0";
+  const version = true ? "1.0.0-devep6" : "0.0.0";
   return `ecloud-sdk/v${version}`;
 }
 var UserApiClient = class {
@@ -6027,6 +5856,125 @@ function validateResourceUsageMonitoring(resourceUsageMonitoring) {
   }
 }
+// src/client/common/config/environment.ts
+var SEPOLIA_CHAIN_ID = 11155111;
+var MAINNET_CHAIN_ID = 1;
+var CommonAddresses = {
+  ERC7702Delegator: "0x63c0c19a282a1b52b07dd5a65b58948a07dae32b"
+};
+var ChainAddresses = {
+  [MAINNET_CHAIN_ID]: {
+    PermissionController: "0x25E5F8B1E7aDf44518d35D5B2271f114e081f0E5"
+  },
+  [SEPOLIA_CHAIN_ID]: {
+    PermissionController: "0x44632dfBdCb6D3E21EF613B0ca8A6A0c618F5a37"
+  }
+};
+var PLATFORM_ENV_TESTNET_SEPOLIA = "testnet-sepolia";
+var PLATFORM_ENV_MAINNET_ETHEREUM = "mainnet-ethereum";
+var DEFAULT_APP_BASE_DOMAIN = "eigencloud.xyz";
+var ENVIRONMENTS = {
+  "sepolia-dev": {
+    name: "sepolia",
+    build: "dev",
+    appControllerAddress: "0xa86DC1C47cb2518327fB4f9A1627F51966c83B92",
+    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,
+    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
+    kmsServerURL: "http://10.128.0.57:8080",
+    userApiServerURL: "https://userapi-compute-sepolia-dev.eigencloud.xyz",
+    defaultRPCURL: "https://ethereum-sepolia-rpc.publicnode.com",
+    usdcCreditsAddress: "0xbdA3897c3A428763B59015C64AB766c288C97376",
+    platformEnv: PLATFORM_ENV_TESTNET_SEPOLIA,
+    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
+  },
+  sepolia: {
+    name: "sepolia",
+    build: "prod",
+    appControllerAddress: "0x0dd810a6ffba6a9820a10d97b659f07d8d23d4E2",
+    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,
+    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
+    kmsServerURL: "http://10.128.15.203:8080",
+    userApiServerURL: "https://userapi-compute-sepolia-prod.eigencloud.xyz",
+    defaultRPCURL: "https://ethereum-sepolia-rpc.publicnode.com",
+    billingRPCURL: "https://ethereum-rpc.publicnode.com",
+    usdcCreditsAddress: "0xed9c88640ca9149Bd9f7ee6620074af10F2E145d",
+    platformEnv: PLATFORM_ENV_TESTNET_SEPOLIA,
+    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
+  },
+  "mainnet-alpha": {
+    name: "mainnet-alpha",
+    build: "prod",
+    appControllerAddress: "0xc38d35Fc995e75342A21CBd6D770305b142Fbe67",
+    permissionControllerAddress: ChainAddresses[MAINNET_CHAIN_ID].PermissionController,
+    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,
+    kmsServerURL: "http://10.128.0.2:8080",
+    userApiServerURL: "https://userapi-compute.eigencloud.xyz",
+    defaultRPCURL: "https://ethereum-rpc.publicnode.com",
+    usdcCreditsAddress: "0xed9c88640ca9149Bd9f7ee6620074af10F2E145d",
+    platformEnv: PLATFORM_ENV_MAINNET_ETHEREUM,
+    appBaseDomain: DEFAULT_APP_BASE_DOMAIN
+  }
+};
+var CHAIN_ID_TO_ENVIRONMENT = {
+  [SEPOLIA_CHAIN_ID.toString()]: "sepolia",
+  [MAINNET_CHAIN_ID.toString()]: "mainnet-alpha"
+};
+function getApiUrlOverride() {
+  const raw = process.env.ECLOUD_API_URL;
+  if (!raw) return void 0;
+  const trimmed = raw.trim().replace(/\/+$/, "");
+  return trimmed.length > 0 ? trimmed : void 0;
+}
+function getEnvironmentConfig(environment, chainID) {
+  const env = ENVIRONMENTS[environment];
+  if (!env) {
+    throw new Error(`Unknown environment: ${environment}`);
+  }
+  if (!isEnvironmentAvailable(environment)) {
+    throw new Error(
+      `Environment ${environment} is not available in this build type. Available environments: ${getAvailableEnvironments().join(", ")}`
+    );
+  }
+  if (chainID) {
+    const expectedEnv = CHAIN_ID_TO_ENVIRONMENT[chainID.toString()];
+    if (expectedEnv && expectedEnv !== environment) {
+      throw new Error(`Environment ${environment} does not match chain ID ${chainID}`);
+    }
+  }
+  const resolvedChainID = chainID || (environment === "sepolia" || environment === "sepolia-dev" ? SEPOLIA_CHAIN_ID : MAINNET_CHAIN_ID);
+  const apiUrlOverride = getApiUrlOverride();
+  return {
+    ...env,
+    chainID: BigInt(resolvedChainID),
+    ...apiUrlOverride ? { userApiServerURL: apiUrlOverride } : {},
+    ...process.env.ECLOUD_USER_API_URL && {
+      userApiServerURL: process.env.ECLOUD_USER_API_URL
+    },
+    ...process.env.ECLOUD_RPC_URL && {
+      defaultRPCURL: process.env.ECLOUD_RPC_URL
+    }
+  };
+}
+function getBuildType() {
+  const buildTimeType = true ? "dev"?.toLowerCase() : void 0;
+  const runtimeType = process.env.BUILD_TYPE?.toLowerCase();
+  const buildType = buildTimeType || runtimeType;
+  if (buildType === "dev") {
+    return "dev";
+  }
+  return "prod";
+}
+function getAvailableEnvironments() {
+  const buildType = getBuildType();
+  if (buildType === "dev") {
+    return ["sepolia-dev"];
+  }
+  return ["sepolia", "mainnet-alpha"];
+}
+function isEnvironmentAvailable(environment) {
+  return getAvailableEnvironments().includes(environment);
+}
 // src/client/common/utils/preflight.ts
 async function doPreflightChecks(options, logger) {
   const { walletClient, publicClient } = options;