npm - @reclaimprotocol/attestor-core - Versions diffs - 5.0.1-beta.13 → 5.0.1-beta.16 - Mend

@reclaimprotocol/attestor-core 5.0.1-beta.13 → 5.0.1-beta.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (134) hide show

package/lib/external-rpc/index.js +17321 -3
package/lib/index.d.ts +1 -0
package/lib/index.js +15391 -11
package/lib/scripts/build-browser-debug.d.ts +1 -0
package/package.json +1 -1
package/lib/avs/abis/avsDirectoryABI.js +0 -343
package/lib/avs/abis/delegationABI.js +0 -4
package/lib/avs/abis/registryABI.js +0 -728
package/lib/avs/client/create-claim-on-avs.js +0 -168
package/lib/avs/config.js +0 -26
package/lib/avs/contracts/ReclaimServiceManager.js +0 -0
package/lib/avs/contracts/common.js +0 -0
package/lib/avs/contracts/factories/ReclaimServiceManager__factory.js +0 -1183
package/lib/avs/contracts/factories/index.js +0 -4
package/lib/avs/contracts/index.js +0 -6
package/lib/avs/types/index.js +0 -0
package/lib/avs/utils/contracts.js +0 -53
package/lib/avs/utils/register.js +0 -74
package/lib/avs/utils/tasks.js +0 -48
package/lib/client/create-claim.js +0 -461
package/lib/client/index.js +0 -3
package/lib/client/tunnels/make-rpc-tcp-tunnel.js +0 -53
package/lib/client/tunnels/make-rpc-tls-tunnel.js +0 -127
package/lib/client/utils/attestor-pool.js +0 -24
package/lib/client/utils/client-socket.js +0 -120
package/lib/client/utils/message-handler.js +0 -97
package/lib/config/index.js +0 -62
package/lib/external-rpc/benchmark.js +0 -82
package/lib/external-rpc/event-bus.js +0 -17
package/lib/external-rpc/handle-incoming-msg.js +0 -241
package/lib/external-rpc/jsc-polyfills/1.js +0 -80
package/lib/external-rpc/jsc-polyfills/2.js +0 -15
package/lib/external-rpc/jsc-polyfills/event.js +0 -19
package/lib/external-rpc/jsc-polyfills/index.js +0 -2
package/lib/external-rpc/jsc-polyfills/ws.js +0 -83
package/lib/external-rpc/setup-browser.js +0 -33
package/lib/external-rpc/setup-jsc.js +0 -22
package/lib/external-rpc/types.js +0 -0
package/lib/external-rpc/utils.js +0 -100
package/lib/external-rpc/zk.js +0 -58
package/lib/mechain/abis/governanceABI.js +0 -461
package/lib/mechain/abis/taskABI.js +0 -512
package/lib/mechain/client/create-claim-on-mechain.js +0 -33
package/lib/mechain/client/index.js +0 -1
package/lib/mechain/constants/index.js +0 -8
package/lib/mechain/index.js +0 -2
package/lib/mechain/types/index.js +0 -0
package/lib/proto/api.js +0 -4250
package/lib/proto/tee-bundle.js +0 -1296
package/lib/providers/http/index.js +0 -640
package/lib/providers/http/patch-parse5-tree.js +0 -34
package/lib/providers/http/utils.js +0 -283
package/lib/providers/index.js +0 -7
package/lib/scripts/build-browser.js +0 -38
package/lib/scripts/build-jsc.js +0 -47
package/lib/scripts/build-lib.js +0 -47
package/lib/scripts/check-avs-registration.js +0 -28
package/lib/scripts/fallbacks/crypto.js +0 -4
package/lib/scripts/fallbacks/empty.js +0 -4
package/lib/scripts/fallbacks/re2.js +0 -7
package/lib/scripts/fallbacks/snarkjs.js +0 -10
package/lib/scripts/fallbacks/stwo.js +0 -159
package/lib/scripts/generate-provider-types.js +0 -101
package/lib/scripts/generate-receipt.js +0 -101
package/lib/scripts/generate-toprf-keys.js +0 -24
package/lib/scripts/jsc-cli-rpc.js +0 -35
package/lib/scripts/register-avs-operator.js +0 -3
package/lib/scripts/start-server.js +0 -11
package/lib/scripts/update-avs-metadata.js +0 -20
package/lib/scripts/utils.js +0 -10
package/lib/scripts/whitelist-operator.js +0 -16
package/lib/server/create-server.js +0 -105
package/lib/server/handlers/claimTeeBundle.js +0 -232
package/lib/server/handlers/claimTunnel.js +0 -80
package/lib/server/handlers/completeClaimOnChain.js +0 -29
package/lib/server/handlers/createClaimOnChain.js +0 -32
package/lib/server/handlers/createTaskOnMechain.js +0 -57
package/lib/server/handlers/createTunnel.js +0 -98
package/lib/server/handlers/disconnectTunnel.js +0 -8
package/lib/server/handlers/fetchCertificateBytes.js +0 -57
package/lib/server/handlers/index.js +0 -25
package/lib/server/handlers/init.js +0 -33
package/lib/server/handlers/toprf.js +0 -19
package/lib/server/index.js +0 -4
package/lib/server/socket.js +0 -112
package/lib/server/tunnels/make-tcp-tunnel.js +0 -202
package/lib/server/utils/apm.js +0 -29
package/lib/server/utils/assert-valid-claim-request.js +0 -354
package/lib/server/utils/config-env.js +0 -4
package/lib/server/utils/dns.js +0 -24
package/lib/server/utils/gcp-attestation.js +0 -237
package/lib/server/utils/generics.js +0 -45
package/lib/server/utils/iso.js +0 -259
package/lib/server/utils/keep-alive.js +0 -38
package/lib/server/utils/nitro-attestation.js +0 -249
package/lib/server/utils/oprf-raw.js +0 -61
package/lib/server/utils/process-handshake.js +0 -233
package/lib/server/utils/proxy-session.js +0 -6
package/lib/server/utils/tee-oprf-mpc-verification.js +0 -86
package/lib/server/utils/tee-oprf-verification.js +0 -151
package/lib/server/utils/tee-transcript-reconstruction.js +0 -140
package/lib/server/utils/tee-verification.js +0 -358
package/lib/server/utils/validation.js +0 -45
package/lib/types/bgp.js +0 -0
package/lib/types/claims.js +0 -0
package/lib/types/client.js +0 -0
package/lib/types/general.js +0 -0
package/lib/types/handlers.js +0 -0
package/lib/types/index.js +0 -10
package/lib/types/providers.gen.js +0 -16
package/lib/types/providers.js +0 -0
package/lib/types/rpc.js +0 -0
package/lib/types/signatures.js +0 -0
package/lib/types/tunnel.js +0 -0
package/lib/types/zk.js +0 -0
package/lib/utils/auth.js +0 -71
package/lib/utils/b64-json.js +0 -17
package/lib/utils/bgp-listener.js +0 -123
package/lib/utils/claims.js +0 -89
package/lib/utils/env.js +0 -19
package/lib/utils/error.js +0 -54
package/lib/utils/generics.js +0 -268
package/lib/utils/http-parser.js +0 -201
package/lib/utils/index.js +0 -13
package/lib/utils/logger.js +0 -82
package/lib/utils/prepare-packets.js +0 -69
package/lib/utils/redactions.js +0 -135
package/lib/utils/retries.js +0 -26
package/lib/utils/signatures/eth.js +0 -31
package/lib/utils/signatures/index.js +0 -12
package/lib/utils/socket-base.js +0 -96
package/lib/utils/tls.js +0 -58
package/lib/utils/ws.js +0 -22
package/lib/utils/zk.js +0 -625

package/lib/server/handlers/claimTunnel.js DELETED Viewed

@@ -1,80 +0,0 @@
-import { MAX_CLAIM_TIMESTAMP_DIFF_S } from "#src/config/index.js";
-import { ClaimTunnelResponse } from "#src/proto/api.js";
-import { getApm } from "#src/server/utils/apm.js";
-import { assertTranscriptsMatch, assertValidClaimRequest } from "#src/server/utils/assert-valid-claim-request.js";
-import { getAttestorAddress, signAsAttestor } from "#src/server/utils/generics.js";
-import { AttestorError, createSignDataForClaim, getIdentifierFromClaimInfo, unixTimestampSeconds } from "#src/utils/index.js";
-const claimTunnel = async (claimRequest, { tx, logger, client }) => {
-  const {
-    request,
-    data: { timestampS } = {}
-  } = claimRequest;
-  const tunnel = client.getTunnel(request?.id);
-  try {
-    await tunnel.close();
-  } catch (err) {
-    logger.debug({ err }, "error closing tunnel");
-  }
-  if (tx) {
-    const transcriptBytes = tunnel.transcript.reduce(
-      (acc, { message }) => acc + message.length,
-      0
-    );
-    tx?.setLabel("transcriptBytes", transcriptBytes.toString());
-  }
-  if (tunnel.createRequest?.host !== request?.host || tunnel.createRequest?.port !== request?.port || tunnel.createRequest?.geoLocation !== request?.geoLocation || tunnel.createRequest?.proxySessionId !== request?.proxySessionId) {
-    throw AttestorError.badRequest("Tunnel request does not match");
-  }
-  assertTranscriptsMatch(claimRequest.transcript, tunnel.transcript);
-  const res = ClaimTunnelResponse.create({ request: claimRequest });
-  try {
-    const now = unixTimestampSeconds();
-    if (Math.floor(timestampS - now) > MAX_CLAIM_TIMESTAMP_DIFF_S) {
-      throw new AttestorError(
-        "ERROR_INVALID_CLAIM",
-        `Timestamp provided ${timestampS} is too far off. Current time is ${now}`
-      );
-    }
-    const assertTx = getApm()?.startTransaction("assertValidClaimRequest", { childOf: tx });
-    try {
-      const claim = await assertValidClaimRequest(
-        claimRequest,
-        client.metadata,
-        logger
-      );
-      res.claim = {
-        ...claim,
-        identifier: getIdentifierFromClaimInfo(claim),
-        // hardcode for compatibility with V1 claims
-        epoch: 1
-      };
-    } catch (err) {
-      assertTx?.setOutcome("failure");
-      throw err;
-    } finally {
-      assertTx?.end();
-    }
-  } catch (err) {
-    logger.error({ err }, "invalid claim request");
-    const attestorErr = AttestorError.fromError(err, "ERROR_INVALID_CLAIM");
-    res.error = attestorErr.toProto();
-  }
-  res.signatures = {
-    attestorAddress: getAttestorAddress(
-      client.metadata.signatureType
-    ),
-    claimSignature: res.claim ? await signAsAttestor(
-      createSignDataForClaim(res.claim),
-      client.metadata.signatureType
-    ) : new Uint8Array(),
-    resultSignature: await signAsAttestor(
-      ClaimTunnelResponse.encode(res).finish(),
-      client.metadata.signatureType
-    )
-  };
-  client.removeTunnel(request.id);
-  return res;
-};
-export {
-  claimTunnel
-};

package/lib/server/handlers/completeClaimOnChain.js DELETED Viewed

@@ -1,29 +0,0 @@
-import { EventLog } from "ethers";
-import { getContracts } from "#src/avs/utils/contracts.js";
-import { getEnvVariable } from "#src/utils/env.js";
-import { AttestorError, ethersStructToPlainObject } from "#src/utils/index.js";
-const ACCEPT_CLAIM_PAYMENT_REQUESTS = getEnvVariable("ACCEPT_CLAIM_PAYMENT_REQUESTS") === "1";
-const completeClaimOnChain = async ({ chainId: chainIdNum, taskIndex, completedTaskJson }) => {
-  if (!ACCEPT_CLAIM_PAYMENT_REQUESTS) {
-    throw new AttestorError(
-      "ERROR_PAYMENT_REFUSED",
-      "Payment requests are not accepted at this time"
-    );
-  }
-  const chainId = chainIdNum.toString();
-  const { contract } = getContracts(chainId.toString());
-  const task = JSON.parse(completedTaskJson);
-  const tx = await contract.taskCompleted(task, taskIndex);
-  const rslt = await tx.wait();
-  const logs = rslt?.logs ?? [];
-  const eventLogs = logs.filter((log) => log instanceof EventLog);
-  const obj = eventLogs[0]?.args;
-  const plainObj = ethersStructToPlainObject(obj);
-  return {
-    txHash: rslt?.hash ?? "",
-    taskCompletedObjectJson: JSON.stringify(plainObj)
-  };
-};
-export {
-  completeClaimOnChain
-};

package/lib/server/handlers/createClaimOnChain.js DELETED Viewed

@@ -1,32 +0,0 @@
-import { getContracts } from "#src/avs/utils/contracts.js";
-import { createNewClaimRequestOnChain } from "#src/avs/utils/tasks.js";
-import { getEnvVariable } from "#src/utils/env.js";
-import { AttestorError, ethersStructToPlainObject } from "#src/utils/index.js";
-const ACCEPT_CLAIM_PAYMENT_REQUESTS = getEnvVariable("ACCEPT_CLAIM_PAYMENT_REQUESTS") === "1";
-const createClaimOnChain = async ({ chainId: chainIdNum, jsonCreateClaimRequest, requestSignature }) => {
-  if (!ACCEPT_CLAIM_PAYMENT_REQUESTS) {
-    throw new AttestorError(
-      "ERROR_PAYMENT_REFUSED",
-      "Payment requests are not accepted at this time"
-    );
-  }
-  const chainId = chainIdNum.toString();
-  const { wallet } = getContracts(chainId.toString());
-  const request = JSON.parse(jsonCreateClaimRequest);
-  const { task, tx } = await createNewClaimRequestOnChain({
-    request,
-    owner: request.owner,
-    payer: wallet,
-    chainId,
-    requestSignature
-  });
-  const plainTask = ethersStructToPlainObject(task);
-  return {
-    txHash: tx?.hash ?? "",
-    taskIndex: Number(task.taskIndex),
-    jsonTask: JSON.stringify(plainTask)
-  };
-};
-export {
-  createClaimOnChain
-};

package/lib/server/handlers/createTaskOnMechain.js DELETED Viewed

@@ -1,57 +0,0 @@
-import { Contract, JsonRpcProvider, randomBytes, Wallet } from "ethers";
-import { governanceABI } from "#src/mechain/abis/governanceABI.js";
-import { taskABI } from "#src/mechain/abis/taskABI.js";
-import { GOVERNANCE_CONTRACT_ADDRESS, RPC_URL, TASK_CONTRACT_ADDRESS } from "#src/mechain/constants/index.js";
-import { getEnvVariable } from "#src/utils/env.js";
-const createTaskOnMechain = async ({
-  timestamp
-}) => {
-  const { taskContract } = await getContracts();
-  const seed = randomBytes(32);
-  const result = await taskContract.createNewTaskRequest.staticCall(
-    seed,
-    timestamp
-  );
-  const taskId = result[0];
-  const requiredAttestors = await taskContract.requiredAttestors();
-  const hosts = [];
-  for (let i = 0; i < requiredAttestors; i++) {
-    hosts.push(result[1][i].host);
-  }
-  const tx = await taskContract.createNewTaskRequest(seed, timestamp);
-  await tx.wait();
-  return {
-    taskId,
-    requiredAttestors,
-    hosts
-  };
-};
-async function getContracts() {
-  const privateKey = getEnvVariable("MECHAIN_PRIVATE_KEY");
-  const taskContractAddress = getEnvVariable("TASK_CONTRACT_ADDRESS") || TASK_CONTRACT_ADDRESS;
-  const governanceContractAddress = getEnvVariable("GOVERNANCE_CONTRACT_ADDRESS") || GOVERNANCE_CONTRACT_ADDRESS;
-  if (!privateKey) {
-    throw new Error("MECHAIN_PRIVATE_KEY environment variable is not set");
-  }
-  try {
-    const provider = new JsonRpcProvider(RPC_URL);
-    await provider.getNetwork();
-    const signer = new Wallet(privateKey, provider);
-    const taskContract = new Contract(
-      taskContractAddress,
-      taskABI,
-      signer
-    );
-    const governanceContract = new Contract(
-      governanceContractAddress,
-      governanceABI,
-      signer
-    );
-    return { taskContract, governanceContract };
-  } catch (error) {
-    throw new Error(`Failed to initialize contracts: ${error.message || error}`);
-  }
-}
-export {
-  createTaskOnMechain
-};

package/lib/server/handlers/createTunnel.js DELETED Viewed

@@ -1,98 +0,0 @@
-import { makeTcpTunnel } from "#src/server/tunnels/make-tcp-tunnel.js";
-import { getApm } from "#src/server/utils/apm.js";
-import { resolveHostnames } from "#src/server/utils/dns.js";
-import { AttestorError } from "#src/utils/index.js";
-const createTunnel = async ({ id, ...opts }, { tx, logger, client }) => {
-  if (client.tunnels[id]) {
-    throw AttestorError.badRequest(`Tunnel "${id}" already exists`);
-  }
-  const allowedHosts = client.metadata?.auth?.data?.hostWhitelist;
-  if (allowedHosts?.length && !allowedHosts.includes(opts.host)) {
-    throw AttestorError.badRequest(
-      `Host "${opts.host}" not allowed by auth request`
-    );
-  }
-  let cancelBgp;
-  const apm = getApm();
-  const sessionTx = apm?.startTransaction("tunnelConnection", { childOf: tx });
-  sessionTx?.setLabel("tunnelId", id.toString());
-  sessionTx?.setLabel("hostPort", `${opts.host}:${opts.port}`);
-  sessionTx?.setLabel("geoLocation", opts.geoLocation);
-  sessionTx?.setLabel("proxySessionId", opts.proxySessionId);
-  try {
-    const tunnel = await makeTcpTunnel({
-      ...opts,
-      logger,
-      onMessage(message) {
-        if (!client.isOpen) {
-          logger.warn("client is closed, dropping message");
-          return;
-        }
-        return client.sendMessage({ tunnelMessage: { tunnelId: id, message } });
-      },
-      onClose(err) {
-        cancelBgp?.();
-        if (err) {
-          apm?.captureError(err, { parent: sessionTx });
-          sessionTx?.setOutcome("failure");
-        } else {
-          sessionTx?.setOutcome("success");
-        }
-        sessionTx?.end();
-        if (!client.isOpen) {
-          return;
-        }
-        client.sendMessage({
-          tunnelDisconnectEvent: {
-            tunnelId: id,
-            error: err ? AttestorError.fromError(err).toProto() : void 0
-          }
-        }).catch((err2) => {
-          logger.error(
-            { err: err2 },
-            "failed to send tunnel disconnect event"
-          );
-        });
-      }
-    });
-    try {
-      await checkForBgp(tunnel);
-    } catch (err) {
-      logger.warn(
-        { err, host: opts.host },
-        "failed to start BGP overlap check"
-      );
-    }
-    client.tunnels[id] = tunnel;
-    return {};
-  } catch (err) {
-    apm?.captureError(err, { parent: sessionTx });
-    sessionTx?.setOutcome("failure");
-    sessionTx?.end();
-    cancelBgp?.();
-    throw err;
-  }
-  async function checkForBgp(tunnel) {
-    if (!client.bgpListener) {
-      return;
-    }
-    const ips = await resolveHostnames(opts.host);
-    cancelBgp = client.bgpListener.onOverlap(ips, (info) => {
-      logger.warn(
-        { info, host: opts.host },
-        "BGP announcement overlap detected"
-      );
-      sessionTx?.addLabels({ bgpOverlap: true, ...info });
-      void tunnel?.close(
-        new AttestorError(
-          "ERROR_BGP_ANNOUNCEMENT_OVERLAP",
-          `BGP announcement overlap detected for ${opts.host}`
-        )
-      );
-    });
-    logger.debug({ ips }, "checking for BGP overlap");
-  }
-};
-export {
-  createTunnel
-};

package/lib/server/handlers/disconnectTunnel.js DELETED Viewed

@@ -1,8 +0,0 @@
-const disconnectTunnel = async ({ id }, { client }) => {
-  const tunnel = client.getTunnel(id);
-  await tunnel.close();
-  return {};
-};
-export {
-  disconnectTunnel
-};

package/lib/server/handlers/fetchCertificateBytes.js DELETED Viewed

@@ -1,57 +0,0 @@
-import { concatenateUint8Arrays, loadX509FromPem } from "@reclaimprotocol/tls";
-import { CERT_ALLOWED_MIMETYPES, MAX_CERT_SIZE_BYTES } from "#src/config/index.js";
-import { AttestorError } from "#src/utils/error.js";
-const fetchCertificateBytes = async ({ url }) => {
-  const res = await fetch(url, {
-    redirect: "follow",
-    signal: AbortSignal.timeout(1e4)
-  });
-  if (!res.ok) {
-    res.body?.cancel("Not ok");
-    throw new AttestorError(
-      "ERROR_CERTIFICATE_FETCH_FAILED",
-      `Failed to fetch certificate from URL: ${url}, status: ${res.status}`
-    );
-  }
-  const contentType = res.headers.get("content-type");
-  if (!contentType || !CERT_ALLOWED_MIMETYPES.includes(contentType)) {
-    res.body?.cancel("Mismatch");
-    throw new AttestorError(
-      "ERROR_CERTIFICATE_FETCH_FAILED",
-      `Invalid content-type when fetching certificate from URL: ${url}, content-type: ${contentType}`
-    );
-  }
-  if (!res.body) {
-    throw new AttestorError(
-      "ERROR_CERTIFICATE_FETCH_FAILED",
-      `No body in response when fetching certificate from URL: ${url}`
-    );
-  }
-  let total = 0;
-  const byteArr = [];
-  for await (const chunk of res.body) {
-    total += chunk.length;
-    if (total > MAX_CERT_SIZE_BYTES) {
-      res.body.cancel("Too many bytes");
-      throw new AttestorError(
-        "ERROR_CERTIFICATE_FETCH_FAILED",
-        `Certificate size exceeds maximum limit of ${MAX_CERT_SIZE_BYTES}b`
-      );
-    }
-    byteArr.push(chunk);
-  }
-  const bytes = concatenateUint8Arrays(byteArr);
-  try {
-    const cert = loadX509FromPem(bytes);
-    TLS_INTERMEDIATE_CA_CACHE[url] = cert;
-  } catch (err) {
-    throw new AttestorError(
-      "ERROR_CERTIFICATE_FETCH_FAILED",
-      `Failed to parse certificate, error: ${err.message}`
-    );
-  }
-  return { bytes: concatenateUint8Arrays(byteArr) };
-};
-export {
-  fetchCertificateBytes
-};

package/lib/server/handlers/index.js DELETED Viewed

@@ -1,25 +0,0 @@
-import { claimTeeBundle } from "#src/server/handlers/claimTeeBundle.js";
-import { claimTunnel } from "#src/server/handlers/claimTunnel.js";
-import { completeClaimOnChain } from "#src/server/handlers/completeClaimOnChain.js";
-import { createClaimOnChain } from "#src/server/handlers/createClaimOnChain.js";
-import { createTaskOnMechain } from "#src/server/handlers/createTaskOnMechain.js";
-import { createTunnel } from "#src/server/handlers/createTunnel.js";
-import { disconnectTunnel } from "#src/server/handlers/disconnectTunnel.js";
-import { fetchCertificateBytes } from "#src/server/handlers/fetchCertificateBytes.js";
-import { init } from "#src/server/handlers/init.js";
-import { toprf } from "#src/server/handlers/toprf.js";
-const HANDLERS = {
-  createTunnel,
-  disconnectTunnel,
-  claimTunnel,
-  claimTeeBundle,
-  init,
-  createClaimOnChain,
-  completeClaimOnChain,
-  toprf,
-  createTaskOnMechain,
-  fetchCertificateBytes
-};
-export {
-  HANDLERS
-};

package/lib/server/handlers/init.js DELETED Viewed

@@ -1,33 +0,0 @@
-import { getBytes } from "ethers";
-import { getAttestorAddress } from "#src/server/utils/generics.js";
-import { assertValidAuthRequest } from "#src/utils/auth.js";
-import { getEnvVariable } from "#src/utils/env.js";
-import { AttestorError } from "#src/utils/index.js";
-import { SIGNATURES } from "#src/utils/signatures/index.js";
-const TOPRF_PUBLIC_KEY = getEnvVariable("TOPRF_PUBLIC_KEY");
-const init = async (initRequest, { client }) => {
-  if (client.isInitialised) {
-    throw AttestorError.badRequest("Client already initialised");
-  }
-  if (!SIGNATURES[initRequest.signatureType]) {
-    throw AttestorError.badRequest("Unsupported signature type");
-  }
-  if (initRequest.clientVersion <= 0) {
-    throw AttestorError.badRequest("Unsupported client version");
-  }
-  await assertValidAuthRequest(initRequest.auth, initRequest.signatureType);
-  if (initRequest.auth?.data) {
-    client.logger = client.logger.child({
-      userId: initRequest.auth.data.id
-    });
-  }
-  client.metadata = initRequest;
-  client.isInitialised = true;
-  return {
-    toprfPublicKey: TOPRF_PUBLIC_KEY ? getBytes(TOPRF_PUBLIC_KEY) : new Uint8Array(),
-    attestorAddress: getAttestorAddress(initRequest.signatureType)
-  };
-};
-export {
-  init
-};

package/lib/server/handlers/toprf.js DELETED Viewed

@@ -1,19 +0,0 @@
-import { getBytes } from "ethers";
-import { getEnvVariable } from "#src/utils/env.js";
-import { getEngineString, makeDefaultOPRFOperator } from "#src/utils/index.js";
-const toprf = async ({ maskedData, engine }, { logger }) => {
-  const PRIVATE_KEY_STR = getEnvVariable("TOPRF_SHARE_PRIVATE_KEY");
-  const PUBLIC_KEY_STR = getEnvVariable("TOPRF_SHARE_PUBLIC_KEY");
-  if (!PRIVATE_KEY_STR || !PUBLIC_KEY_STR) {
-    throw new Error("private/public keys not set. Cannot execute OPRF");
-  }
-  const PRIVATE_KEY = getBytes(PRIVATE_KEY_STR);
-  const PUBLIC_KEY = getBytes(PUBLIC_KEY_STR);
-  const engineStr = getEngineString(engine);
-  const operator = makeDefaultOPRFOperator("chacha20", engineStr, logger);
-  const res = await operator.evaluateOPRF(PRIVATE_KEY, maskedData);
-  return { ...res, publicKeyShare: PUBLIC_KEY };
-};
-export {
-  toprf
-};

package/lib/server/index.js DELETED Viewed

@@ -1,4 +0,0 @@
-export * from "./utils/config-env.js";
-export * from "./create-server.js";
-export * from "./tunnels/make-tcp-tunnel.js";
-export * from "./utils/assert-valid-claim-request.js";

package/lib/server/socket.js DELETED Viewed

@@ -1,112 +0,0 @@
-import { promisify } from "util";
-import { handleMessage } from "#src/client/utils/message-handler.js";
-import { DEFAULT_RPC_TIMEOUT_MS } from "#src/config/index.js";
-import { HANDLERS } from "#src/server/handlers/index.js";
-import { getApm } from "#src/server/utils/apm.js";
-import { getInitialMessagesFromQuery } from "#src/server/utils/generics.js";
-import { AttestorError, generateSessionId } from "#src/utils/index.js";
-import { AttestorSocket } from "#src/utils/socket-base.js";
-class AttestorServerSocket extends AttestorSocket {
-  tunnels = {};
-  sessionId;
-  bgpListener;
-  constructor(socket, sessionId, bgpListener, logger) {
-    super(socket, {}, logger);
-    this.sessionId = sessionId;
-    this.bgpListener = bgpListener;
-    this.addEventListener("rpc-request", handleRpcRequest.bind(this));
-    this.addEventListener("tunnel-message", handleTunnelMessage.bind(this));
-    this.addEventListener("connection-terminated", () => {
-      for (const tunnelId in this.tunnels) {
-        const tunnel = this.tunnels[tunnelId];
-        void tunnel.close(new Error("WS session terminated"));
-      }
-    });
-  }
-  getTunnel(tunnelId) {
-    const tunnel = this.tunnels[tunnelId];
-    if (!tunnel) {
-      throw new AttestorError(
-        "ERROR_NOT_FOUND",
-        `Tunnel "${tunnelId}" not found`
-      );
-    }
-    return tunnel;
-  }
-  removeTunnel(tunnelId) {
-    delete this.tunnels[tunnelId];
-  }
-  static async acceptConnection(socket, { req, logger, bgpListener }) {
-    const bindSend = socket.send.bind(socket);
-    socket.send = promisify(bindSend);
-    const sessionId = generateSessionId();
-    logger = logger.child({ sessionId });
-    const client = new AttestorServerSocket(
-      socket,
-      sessionId,
-      bgpListener,
-      logger
-    );
-    try {
-      const initMsgs = getInitialMessagesFromQuery(req);
-      logger.trace(
-        { initMsgs: initMsgs.length },
-        "new connection, validating..."
-      );
-      for (const msg of initMsgs) {
-        await handleMessage.call(client, msg);
-      }
-      logger.debug("connection accepted");
-    } catch (err) {
-      logger.error({ err }, "error in new connection");
-      if (client.isOpen) {
-        await client.terminateConnection(
-          err instanceof AttestorError ? err : AttestorError.badRequest(err.message)
-        );
-      }
-      return;
-    }
-    return client;
-  }
-}
-async function handleTunnelMessage({ data: { tunnelId, message } }) {
-  try {
-    const tunnel = this.getTunnel(tunnelId);
-    await tunnel.write(message);
-  } catch (err) {
-    this.logger?.error({ err, tunnelId }, "error writing to tunnel");
-  }
-}
-async function handleRpcRequest({ data: { data, requestId, respond, type } }) {
-  const logger = this.logger.child({ rpc: type, requestId });
-  const apm = getApm();
-  const tx = apm?.startTransaction(type);
-  tx?.setLabel("requestId", requestId);
-  tx?.setLabel("sessionId", this.sessionId.toString());
-  const userId = this.metadata.auth?.data?.id;
-  if (userId) {
-    tx?.setLabel("authUserId", userId);
-  }
-  const timeout = setTimeout(() => {
-    logger.warn({ type, requestId }, "RPC took too long to respond");
-  }, DEFAULT_RPC_TIMEOUT_MS);
-  try {
-    logger.debug({ data }, "handling RPC request");
-    const handler = HANDLERS[type];
-    const res = await handler(data, { client: this, logger, tx });
-    respond(res);
-    logger.debug({ res }, "handled RPC request");
-    tx?.setOutcome("success");
-  } catch (err) {
-    logger.error({ err }, "error in RPC request");
-    respond(AttestorError.fromError(err));
-    tx?.setOutcome("failure");
-    apm?.captureError(err, { parent: tx });
-  } finally {
-    clearTimeout(timeout);
-    tx?.end();
-  }
-}
-export {
-  AttestorServerSocket
-};