@zama-fhe/sdk 2.3.0-alpha.3 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (45) hide show
  1. package/dist/cjs/activity.cjs +1 -1
  2. package/dist/cjs/activity.cjs.map +1 -1
  3. package/dist/cjs/cleartext.cjs +1 -1
  4. package/dist/cjs/cleartext.cjs.map +1 -1
  5. package/dist/cjs/index.cjs +2 -2
  6. package/dist/cjs/index.cjs.map +1 -1
  7. package/dist/cjs/query/index.cjs +1 -1
  8. package/dist/cjs/query/index.cjs.map +1 -1
  9. package/dist/cjs/relayer.cjs +1 -1
  10. package/dist/cjs/relayer.cjs.map +1 -1
  11. package/dist/esm/{activity-D8okM6NP.d.ts → activity-DTBvolDB.d.ts} +210 -15
  12. package/dist/esm/{activity-DVF6Mxsn.js → activity-b2RsqKHW.js} +2 -2
  13. package/dist/esm/{activity-DVF6Mxsn.js.map → activity-b2RsqKHW.js.map} +1 -1
  14. package/dist/esm/cleartext/index.d.ts +5 -3
  15. package/dist/esm/cleartext/index.js +1 -1
  16. package/dist/esm/{cleartext-BU7SYjBM.js → cleartext-Bzxet3H7.js} +2 -2
  17. package/dist/esm/cleartext-Bzxet3H7.js.map +1 -0
  18. package/dist/esm/{encryption-UaXE1L_W.js → encryption-CmIPBcfP.js} +2 -2
  19. package/dist/esm/{encryption-UaXE1L_W.js.map → encryption-CmIPBcfP.js.map} +1 -1
  20. package/dist/esm/ethers/index.d.ts +2 -2
  21. package/dist/esm/{fhe-artifact-cache-DMw74maw.js → fhe-artifact-cache-CyXna-Br.js} +2 -2
  22. package/dist/esm/{fhe-artifact-cache-DMw74maw.js.map → fhe-artifact-cache-CyXna-Br.js.map} +1 -1
  23. package/dist/esm/{index-C3ELlhM8.d.ts → index-BXdXzzx4.d.ts} +2 -2
  24. package/dist/esm/index.d.ts +8 -129
  25. package/dist/esm/index.js +2 -2
  26. package/dist/esm/index.js.map +1 -1
  27. package/dist/esm/memory-storage-B4_heQa5.js +2 -0
  28. package/dist/esm/memory-storage-B4_heQa5.js.map +1 -0
  29. package/dist/esm/node/index.d.ts +5 -3
  30. package/dist/esm/node/index.js +1 -1
  31. package/dist/esm/node/index.js.map +1 -1
  32. package/dist/esm/query/index.d.ts +10 -18
  33. package/dist/esm/query/index.js +1 -1
  34. package/dist/esm/query/index.js.map +1 -1
  35. package/dist/esm/relayer-C6u3eOlN.js +2 -0
  36. package/dist/esm/relayer-C6u3eOlN.js.map +1 -0
  37. package/dist/esm/{relayer-sdk-Cqx3HnZh.d.ts → relayer-sdk-C_4bkxxH.d.ts} +2 -2
  38. package/dist/esm/{relayer-sdk.types-BhV3n5qO.d.ts → relayer-sdk.types-C9GAgQ7q.d.ts} +23 -2
  39. package/dist/esm/viem/index.d.ts +2 -2
  40. package/package.json +1 -1
  41. package/dist/esm/cleartext-BU7SYjBM.js.map +0 -1
  42. package/dist/esm/memory-storage-BkqO2DFz.js +0 -2
  43. package/dist/esm/memory-storage-BkqO2DFz.js.map +0 -1
  44. package/dist/esm/relayer-DfjPWTBf.js +0 -2
  45. package/dist/esm/relayer-DfjPWTBf.js.map +0 -1
package/dist/cjs/cleartext.cjs CHANGED
@@ -1,2 +1,2 @@
1
- const e=require(`./relayer.cjs`);let t=require(`viem`),n=require(`viem/accounts`),r=require(`viem/chains`);async function i(e,t=2){let n;for(let r=0;r<=t;r++)try{return await e()}catch(e){if(n=e,r<t&&a(e)){await o(500*2**r);continue}throw e}throw n}function a(e){if(!(e instanceof Error))return!1;let t=e.message.toLowerCase();return t.includes(`timed out`)||t.includes(`timeout`)||t.includes(`econnreset`)||t.includes(`econnrefused`)||t.includes(`network`)||t.includes(`fetch failed`)||t.includes(`socket hang up`)||t.includes(`502`)||t.includes(`503`)||t.includes(`504`)}function o(e){return new Promise(t=>setTimeout(t,e))}const s={chainId:1,gatewayChainId:261131,relayerUrl:`https://relayer.mainnet.zama.org/v2`,network:`https://ethereum-rpc.publicnode.com`,aclContractAddress:`0xcA2E8f1F656CD25C01F05d0b243Ab1ecd4a8ffb6`,kmsContractAddress:`0x77627828a55156b04Ac0DC0eb30467f1a552BB03`,inputVerifierContractAddress:`0xCe0FC2e05CFff1B719EFF7169f7D80Af770c8EA2`,verifyingContractAddressDecryption:`0x0f6024a97684f7d90ddb0fAAD79cB15F2C888D24`,verifyingContractAddressInputVerification:`0xcB1bB072f38bdAF0F328CdEf1Fc6eDa1DF029287`,registryAddress:`0xeb5015fF021DB115aCe010f23F55C2591059bBA0`},c={chainId:11155111,gatewayChainId:10901,relayerUrl:`https://relayer.testnet.zama.org/v2`,network:`https://ethereum-sepolia-rpc.publicnode.com`,aclContractAddress:`0xf0Ffdc93b7E186bC2f8CB3dAA75D86d1930A433D`,kmsContractAddress:`0xbE0E383937d564D7FF0BC3b46c51f0bF8d5C311A`,inputVerifierContractAddress:`0xBBC1fFCdc7C316aAAd72E807D9b0272BE8F84DA0`,verifyingContractAddressDecryption:`0x5D8BD78e2ea6bbE41f26dFe9fdaEAa349e077478`,verifyingContractAddressInputVerification:`0x483b9dE06E4E4C7D35CCf5837A1668487406D955`,registryAddress:`0x2f0750Bbb0A246059d80e94c454586a7F27a128e`},l={chainId:31337,gatewayChainId:10901,relayerUrl:``,network:`http://127.0.0.1:8545`,aclContractAddress:`0x50157CFfD6bBFA2DECe204a89ec419c23ef5755D`,inputVerifierContractAddress:`0x36772142b74871f255CbD7A3e89B401d3e45825f`,kmsContractAddress:`0x901F8942346f7AB3a01F6D7613119Bca447Bb030`,verifyingContractAddressDecryption:`0x5ffdaAB0373E62E2ea2944776209aEf29E631A64`,verifyingContractAddressInputVerification:`0x812b06e1CDCE800494b79fFE4f925A504a9A9810`,registryAddress:void 0},u={[s.chainId]:s,[c.chainId]:c,[l.chainId]:l},d={name:`string`,version:`string`,chainId:`uint256`,verifyingContract:`address`,salt:`bytes32`};function f(e){return Object.keys(d).filter(t=>t in e).map(e=>({name:e,type:d[e]}))}const p=(e,t)=>({name:`InputVerification`,version:`1`,chainId:Number(e),verifyingContract:t}),m=(e,t)=>({name:`Decryption`,version:`1`,chainId:Number(e),verifyingContract:t}),h={domain:p,types:{CiphertextVerification:[{name:`ctHandles`,type:`bytes32[]`},{name:`userAddress`,type:`address`},{name:`contractAddress`,type:`address`},{name:`contractChainId`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},g={domain:m,types:{PublicDecryptVerification:[{name:`ctHandles`,type:`bytes32[]`},{name:`decryptedResult`,type:`bytes`},{name:`extraData`,type:`bytes`}]}},_={domain:m,types:{UserDecryptRequestVerification:[{name:`publicKey`,type:`bytes`},{name:`contractAddresses`,type:`address[]`},{name:`startTimestamp`,type:`uint256`},{name:`durationDays`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},v={domain:m,types:{DelegatedUserDecryptRequestVerification:[{name:`publicKey`,type:`bytes`},{name:`contractAddresses`,type:`address[]`},{name:`delegatorAddress`,type:`address`},{name:`startTimestamp`,type:`uint256`},{name:`durationDays`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},y={ebool:0,euint8:2,euint16:3,euint32:4,euint64:5,euint128:6,eaddress:7,euint256:8},b={0:`ebool`,2:`euint8`,3:`euint16`,4:`euint32`,5:`euint64`,6:`euint128`,7:`eaddress`,8:`euint256`},x={0:2,2:8,3:16,4:32,5:64,6:128,7:160,8:256};Object.freeze(y),Object.freeze(b),Object.freeze(x),Object.freeze({2:0,8:2,16:3,32:4,64:5,128:6,160:7,256:8});function S(e){switch(e){case 0:case 2:case 3:case 4:case 5:case 6:case 7:case 8:return!0;default:return!1}}function C(e){return typeof e==`string`?e in y:!1}function w(e){if(!C(e))throw Error(`Invalid FheType name '${e}'`);return y[e]}function T(e){if(!S(e))throw Error(`Invalid FheType id '${e}'`);let t=x[e];if(t<2)throw Error(`Invalid FheType encryption bit width: ${t}. Minimum is 2 bits.`);return t}const E=(0,t.toBytes)(`ZK-w_rct`),D=(0,t.toBytes)(`ZK-w_hdl`);function O(e,n){let r=Math.ceil(T(n)/8);return(0,t.toBytes)((0,t.pad)((0,t.toHex)(e),{size:r}))}function k(n,r,i){if(i.length!==32)throw new e.i(`random32 must be exactly 32 bytes`);let a=O(r,n),o=(0,t.keccak256)((0,t.concat)([(0,t.toHex)(new Uint8Array([n])),(0,t.toHex)(a),(0,t.toHex)(i)]));return(0,t.keccak256)((0,t.concat)([(0,t.toHex)(E),o]))}function A(n,r,i,a,o){if(!Number.isInteger(r)||r<0||r>255)throw new e.i(`index must be an integer between 0 and 255`);let s=(0,t.keccak256)((0,t.concat)([(0,t.toHex)(E),n])),c=(0,t.keccak256)((0,t.encodePacked)([`bytes`,`bytes32`,`uint8`,`address`,`uint256`],[(0,t.toHex)(D),s,r,a,o])),l=o&18446744073709551615n;return(0,t.toHex)(BigInt(c)&115792089237316195423570985008687907853269984665640254554447762662844404858880n|BigInt(r)<<80n|l<<16n|BigInt(i)<<8n|BigInt(0),{size:32})}const j=(0,t.parseAbi)([`function persistAllowed(bytes32 handle, address account) view returns (bool)`,`function isAllowedForDecryption(bytes32 handle) view returns (bool)`,`function isHandleDelegatedForUserDecryption(address delegator, address delegate, address contractAddress, bytes32 handle) view returns (bool)`]),M=(0,t.parseAbi)([`function plaintexts(bytes32 handle) view returns (uint256)`]),N=[{name:`name`,type:`string`},{name:`version`,type:`string`},{name:`chainId`,type:`uint256`},{name:`verifyingContract`,type:`address`}],P={EIP712Domain:N,UserDecryptRequestVerification:_.types.UserDecryptRequestVerification},F={EIP712Domain:N,DelegatedUserDecryptRequestVerification:v.types.DelegatedUserDecryptRequestVerification},I={EIP712Domain:N,PublicDecryptVerification:g.types.PublicDecryptVerification},L=new Set([r.mainnet.id,r.sepolia.id]);function R(e,n){let r=Number(BigInt(e)>>8n&255n);return r===0?n!==0n:r===7?(0,t.toHex)(n,{size:20}):n}function z(n){if(!C(n.type))throw new e.i(`Unsupported FHE type`);let r=w(n.type),i;if(n.type===`ebool`){if(typeof n.value==`boolean`)i=n.value?1n:0n;else if(i=n.value,i!==0n&&i!==1n)throw new e.i(`Bool value must be 0, 1, true, or false`)}else i=n.type===`eaddress`?BigInt((0,t.getAddress)(n.value)):n.value;if(i<0n)throw new e.i(`Only non-negative cleartext values are supported`);let a=T(r),o=(1n<<BigInt(a))-1n;if(i>o)throw new e.i(`Value ${i} exceeds max ${o} for FheType ${r}`);return{fheType:r,value:i}}var B=class{#e;#t;kmsSigner;inputSigner;constructor(r){if(L.has(r.chainId))throw new e.t(`Cleartext mode is not allowed on chain ${r.chainId}. It is intended for local development and testing only.`);this.#e=(0,t.createPublicClient)({transport:typeof r.network==`string`?(0,t.http)(r.network):(0,t.custom)(r.network)}),this.#t=r,this.kmsSigner=(0,n.privateKeyToAccount)(r.kmsSignerPrivateKey??`0x388b7680e4e1afa06efbfd45cdd1fe39f3c6af381df6555a19661f283b97de91`),this.inputSigner=(0,n.privateKeyToAccount)(r.inputSignerPrivateKey??`0x7ec8ada6642fc4ccfb7729bc29c17cf8d21b61abd5642d1db992c0b8672ab901`)}async generateKeypair(){let e=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32))),n=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32)));for(;n===e;)n=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32)));return{publicKey:e,privateKey:n}}async createEIP712(e,t,n,r=7){return{domain:_.domain(this.#t.chainId,this.#t.verifyingContractAddressDecryption),types:P,primaryType:`UserDecryptRequestVerification`,message:{publicKey:e,contractAddresses:t,startTimestamp:BigInt(n),durationDays:BigInt(r),extraData:`0x00`}}}async encrypt(e){let n=e.values.map(z),r=(0,t.getAddress)(e.contractAddress),i=(0,t.getAddress)(e.userAddress),a=n.map(({fheType:e,value:t})=>k(e,t,crypto.getRandomValues(new Uint8Array(32)))),o=(0,t.keccak256)(a.length>0?(0,t.concat)(a):`0x`),s=n.map(({fheType:e},t)=>A(o,t,e,this.#t.aclContractAddress,BigInt(this.#t.chainId))),c=n.map(({value:e})=>(0,t.pad)((0,t.toHex)(e),{size:32})),l=c.length>0?(0,t.concat)(c):`0x`,u=await this.inputSigner.signTypedData({domain:h.domain(this.#t.gatewayChainId,this.#t.verifyingContractAddressInputVerification),types:{CiphertextVerification:h.types.CiphertextVerification},primaryType:`CiphertextVerification`,message:{ctHandles:s,userAddress:i,contractAddress:r,contractChainId:BigInt(this.#t.chainId),extraData:l}}),d=(0,t.toBytes)((0,t.concat)([(0,t.toHex)(new Uint8Array([s.length])),(0,t.toHex)(new Uint8Array([1])),...s,u,l]));return{handles:s.map(e=>(0,t.toBytes)(e)),inputProof:d}}async userDecrypt(e){return await this.#r(e.handles,(0,t.getAddress)(e.signerAddress),(0,t.getAddress)(e.contractAddress),`User`,`user decrypt`),this.#n(e.handles)}async publicDecrypt(n){let r=n,i=(await Promise.all(r.map(e=>this.#o(e)))).findIndex(e=>!e);if(i!==-1)throw new e.r(`Handle ${r[i]} is not allowed for public decryption`);let a=await Promise.all(r.map(e=>this.#s(e))),o=Object.fromEntries(r.map((e,t)=>[e,R(e,a[t])])),s=(0,t.concat)(a.map(e=>(0,t.pad)((0,t.toHex)(e),{size:32}))),c=await this.kmsSigner.signTypedData({domain:g.domain(this.#t.gatewayChainId,this.#t.verifyingContractAddressDecryption),types:I,primaryType:`PublicDecryptVerification`,message:{ctHandles:r,decryptedResult:s,extraData:`0x`}});return{clearValues:o,abiEncodedClearValues:s,decryptionProof:(0,t.concat)([(0,t.toHex)(new Uint8Array([1])),c])}}async createDelegatedUserDecryptEIP712(e,n,r,i,a=7){let o={publicKey:e,contractAddresses:n,delegatorAddress:(0,t.getAddress)(r),startTimestamp:String(i),durationDays:String(a),extraData:`0x00`};return{domain:v.domain(BigInt(this.#t.chainId),this.#t.verifyingContractAddressDecryption),types:F,primaryType:`DelegatedUserDecryptRequestVerification`,message:o}}async delegatedUserDecrypt(e){return await this.#i(e.handles,(0,t.getAddress)(e.delegatorAddress),(0,t.getAddress)(e.delegateAddress),(0,t.getAddress)(e.contractAddress)),this.#n(e.handles)}async requestZKProofVerification(t){throw new e.t(`Not implemented in cleartext mode`)}async getPublicKey(){return{publicKeyId:`mock-public-key-id`,publicKey:new Uint8Array([32])}}async getPublicParams(e){return{publicParams:new Uint8Array([32]),publicParamsId:`mock-public-params-id`}}async getAclAddress(){return this.#t.aclContractAddress}terminate(){}async#n(e){let t=await Promise.all(e.map(e=>this.#s(e)));return Object.fromEntries(e.map((e,n)=>[e,R(e,t[n])]))}async#r(t,n,r,i,a){if(n===r)throw new e.r(`${i} address ${n} must not equal contract address for ${a}`);let o=await Promise.all(t.flatMap(e=>[this.#a(e,n),this.#a(e,r)]));for(let s=0;s<t.length;s++){let c=o[s*2],l=o[s*2+1];if(!c)throw new e.r(`${i} ${n} is not authorized for ${a} of handle ${t[s]}`);if(!l)throw new e.r(`Contract ${r} is not authorized for ${a} of handle ${t[s]}`)}}async#i(t,n,r,i){let a=await Promise.all(t.map(e=>this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`isHandleDelegatedForUserDecryption`,args:[n,r,i,e]})));for(let n=0;n<t.length;n++)if(!a[n])throw new e.r(`Handle ${t[n]} is not delegated for user decryption`)}async#a(e,t){return this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`persistAllowed`,args:[e,t]})}async#o(e){return this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`isAllowedForDecryption`,args:[e]})}async#s(e){return this.#e.readContract({address:this.#t.executorAddress,abi:M,functionName:`plaintexts`,args:[e]})}};const V={...l,executorAddress:`0xe3a9105a3a932253A70F126eb1E3b589C643dD24`},H={chainId:560048,network:`https://rpc.hoodi.ethpandaops.io`,gatewayChainId:l.gatewayChainId,aclContractAddress:`0x6D3FAf6f86e1fF9F3B0831Dda920AbA1cBd5bd68`,executorAddress:`0xC316692627de536368d82e9121F1D44a550894E6`,verifyingContractAddressDecryption:l.verifyingContractAddressDecryption,verifyingContractAddressInputVerification:l.verifyingContractAddressInputVerification,registryAddress:`0x1807aE2f693F8530DFB126D0eF98F2F2518F292f`};Object.defineProperty(exports,`a`,{enumerable:!0,get:function(){return l}}),Object.defineProperty(exports,`c`,{enumerable:!0,get:function(){return f}}),Object.defineProperty(exports,`i`,{enumerable:!0,get:function(){return u}}),Object.defineProperty(exports,`l`,{enumerable:!0,get:function(){return i}}),Object.defineProperty(exports,`n`,{enumerable:!0,get:function(){return H}}),Object.defineProperty(exports,`o`,{enumerable:!0,get:function(){return s}}),Object.defineProperty(exports,`r`,{enumerable:!0,get:function(){return B}}),Object.defineProperty(exports,`s`,{enumerable:!0,get:function(){return c}}),Object.defineProperty(exports,`t`,{enumerable:!0,get:function(){return V}});
1
+ const e=require(`./relayer.cjs`);let t=require(`viem`),n=require(`viem/accounts`),r=require(`viem/chains`);async function i(e,t=2){let n;for(let r=0;r<=t;r++)try{return await e()}catch(e){if(n=e,r<t&&a(e)){await o(500*2**r);continue}throw e}throw n}function a(e){if(!(e instanceof Error))return!1;let t=e.message.toLowerCase();return t.includes(`timed out`)||t.includes(`timeout`)||t.includes(`econnreset`)||t.includes(`econnrefused`)||t.includes(`network`)||t.includes(`fetch failed`)||t.includes(`socket hang up`)||t.includes(`502`)||t.includes(`503`)||t.includes(`504`)}function o(e){return new Promise(t=>setTimeout(t,e))}const s={chainId:1,gatewayChainId:261131,relayerUrl:`https://relayer.mainnet.zama.org/v2`,network:`https://ethereum-rpc.publicnode.com`,aclContractAddress:`0xcA2E8f1F656CD25C01F05d0b243Ab1ecd4a8ffb6`,kmsContractAddress:`0x77627828a55156b04Ac0DC0eb30467f1a552BB03`,inputVerifierContractAddress:`0xCe0FC2e05CFff1B719EFF7169f7D80Af770c8EA2`,verifyingContractAddressDecryption:`0x0f6024a97684f7d90ddb0fAAD79cB15F2C888D24`,verifyingContractAddressInputVerification:`0xcB1bB072f38bdAF0F328CdEf1Fc6eDa1DF029287`,registryAddress:`0xeb5015fF021DB115aCe010f23F55C2591059bBA0`},c={chainId:11155111,gatewayChainId:10901,relayerUrl:`https://relayer.testnet.zama.org/v2`,network:`https://ethereum-sepolia-rpc.publicnode.com`,aclContractAddress:`0xf0Ffdc93b7E186bC2f8CB3dAA75D86d1930A433D`,kmsContractAddress:`0xbE0E383937d564D7FF0BC3b46c51f0bF8d5C311A`,inputVerifierContractAddress:`0xBBC1fFCdc7C316aAAd72E807D9b0272BE8F84DA0`,verifyingContractAddressDecryption:`0x5D8BD78e2ea6bbE41f26dFe9fdaEAa349e077478`,verifyingContractAddressInputVerification:`0x483b9dE06E4E4C7D35CCf5837A1668487406D955`,registryAddress:`0x2f0750Bbb0A246059d80e94c454586a7F27a128e`},l={chainId:31337,gatewayChainId:10901,relayerUrl:``,network:`http://127.0.0.1:8545`,aclContractAddress:`0x50157CFfD6bBFA2DECe204a89ec419c23ef5755D`,inputVerifierContractAddress:`0x36772142b74871f255CbD7A3e89B401d3e45825f`,kmsContractAddress:`0x901F8942346f7AB3a01F6D7613119Bca447Bb030`,verifyingContractAddressDecryption:`0x5ffdaAB0373E62E2ea2944776209aEf29E631A64`,verifyingContractAddressInputVerification:`0x812b06e1CDCE800494b79fFE4f925A504a9A9810`,registryAddress:void 0},u={[s.chainId]:s,[c.chainId]:c,[l.chainId]:l},d={name:`string`,version:`string`,chainId:`uint256`,verifyingContract:`address`,salt:`bytes32`};function f(e){return Object.keys(d).filter(t=>t in e).map(e=>({name:e,type:d[e]}))}const p=(e,t)=>({name:`InputVerification`,version:`1`,chainId:Number(e),verifyingContract:t}),m=(e,t)=>({name:`Decryption`,version:`1`,chainId:Number(e),verifyingContract:t}),h={domain:p,types:{CiphertextVerification:[{name:`ctHandles`,type:`bytes32[]`},{name:`userAddress`,type:`address`},{name:`contractAddress`,type:`address`},{name:`contractChainId`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},g={domain:m,types:{PublicDecryptVerification:[{name:`ctHandles`,type:`bytes32[]`},{name:`decryptedResult`,type:`bytes`},{name:`extraData`,type:`bytes`}]}},_={domain:m,types:{UserDecryptRequestVerification:[{name:`publicKey`,type:`bytes`},{name:`contractAddresses`,type:`address[]`},{name:`startTimestamp`,type:`uint256`},{name:`durationDays`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},v={domain:m,types:{DelegatedUserDecryptRequestVerification:[{name:`publicKey`,type:`bytes`},{name:`contractAddresses`,type:`address[]`},{name:`delegatorAddress`,type:`address`},{name:`startTimestamp`,type:`uint256`},{name:`durationDays`,type:`uint256`},{name:`extraData`,type:`bytes`}]}},y={ebool:0,euint8:2,euint16:3,euint32:4,euint64:5,euint128:6,eaddress:7,euint256:8},b={0:`ebool`,2:`euint8`,3:`euint16`,4:`euint32`,5:`euint64`,6:`euint128`,7:`eaddress`,8:`euint256`},x={0:2,2:8,3:16,4:32,5:64,6:128,7:160,8:256};Object.freeze(y),Object.freeze(b),Object.freeze(x),Object.freeze({2:0,8:2,16:3,32:4,64:5,128:6,160:7,256:8});function S(e){switch(e){case 0:case 2:case 3:case 4:case 5:case 6:case 7:case 8:return!0;default:return!1}}function C(e){return typeof e==`string`?e in y:!1}function w(e){if(!C(e))throw Error(`Invalid FheType name '${e}'`);return y[e]}function T(e){if(!S(e))throw Error(`Invalid FheType id '${e}'`);let t=x[e];if(t<2)throw Error(`Invalid FheType encryption bit width: ${t}. Minimum is 2 bits.`);return t}const E=(0,t.toBytes)(`ZK-w_rct`),D=(0,t.toBytes)(`ZK-w_hdl`);function O(e,n){let r=Math.ceil(T(n)/8);return(0,t.toBytes)((0,t.pad)((0,t.toHex)(e),{size:r}))}function k(n,r,i){if(i.length!==32)throw new e.i(`random32 must be exactly 32 bytes`);let a=O(r,n),o=(0,t.keccak256)((0,t.concat)([(0,t.toHex)(new Uint8Array([n])),(0,t.toHex)(a),(0,t.toHex)(i)]));return(0,t.keccak256)((0,t.concat)([(0,t.toHex)(E),o]))}function A(n,r,i,a,o){if(!Number.isInteger(r)||r<0||r>255)throw new e.i(`index must be an integer between 0 and 255`);let s=(0,t.keccak256)((0,t.concat)([(0,t.toHex)(E),n])),c=(0,t.keccak256)((0,t.encodePacked)([`bytes`,`bytes32`,`uint8`,`address`,`uint256`],[(0,t.toHex)(D),s,r,a,o])),l=o&18446744073709551615n;return(0,t.toHex)(BigInt(c)&115792089237316195423570985008687907853269984665640254554447762662844404858880n|BigInt(r)<<80n|l<<16n|BigInt(i)<<8n|BigInt(0),{size:32})}const j=(0,t.parseAbi)([`function persistAllowed(bytes32 handle, address account) view returns (bool)`,`function isAllowedForDecryption(bytes32 handle) view returns (bool)`,`function isHandleDelegatedForUserDecryption(address delegator, address delegate, address contractAddress, bytes32 handle) view returns (bool)`]),M=(0,t.parseAbi)([`function plaintexts(bytes32 handle) view returns (uint256)`]),N=[{name:`name`,type:`string`},{name:`version`,type:`string`},{name:`chainId`,type:`uint256`},{name:`verifyingContract`,type:`address`}],P={EIP712Domain:N,UserDecryptRequestVerification:_.types.UserDecryptRequestVerification},F={EIP712Domain:N,DelegatedUserDecryptRequestVerification:v.types.DelegatedUserDecryptRequestVerification},I={EIP712Domain:N,PublicDecryptVerification:g.types.PublicDecryptVerification},L=new Set([r.mainnet.id,r.sepolia.id]);function R(e,n){let r=Number(BigInt(e)>>8n&255n);return r===0?n!==0n:r===7?(0,t.toHex)(n,{size:20}):n}function z(n){if(!C(n.type))throw new e.i(`Unsupported FHE type`);let r=w(n.type),i;if(n.type===`ebool`){if(typeof n.value==`boolean`)i=n.value?1n:0n;else if(i=n.value,i!==0n&&i!==1n)throw new e.i(`Bool value must be 0, 1, true, or false`)}else i=n.type===`eaddress`?BigInt((0,t.getAddress)(n.value)):n.value;if(i<0n)throw new e.i(`Only non-negative cleartext values are supported`);let a=T(r),o=(1n<<BigInt(a))-1n;if(i>o)throw new e.i(`Value ${i} exceeds max ${o} for FheType ${r}`);return{fheType:r,value:i}}var B=class{#e;#t;kmsSigner;inputSigner;constructor(r){if(L.has(r.chainId))throw new e.t(`Cleartext mode is not allowed on chain ${r.chainId}. It is intended for local development and testing only.`);this.#e=(0,t.createPublicClient)({transport:typeof r.network==`string`?(0,t.http)(r.network):(0,t.custom)(r.network)}),this.#t=r,this.kmsSigner=(0,n.privateKeyToAccount)(r.kmsSignerPrivateKey??`0x388b7680e4e1afa06efbfd45cdd1fe39f3c6af381df6555a19661f283b97de91`),this.inputSigner=(0,n.privateKeyToAccount)(r.inputSignerPrivateKey??`0x7ec8ada6642fc4ccfb7729bc29c17cf8d21b61abd5642d1db992c0b8672ab901`)}async generateKeypair(){let e=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32))),n=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32)));for(;n===e;)n=(0,t.toHex)(crypto.getRandomValues(new Uint8Array(32)));return{publicKey:e,privateKey:n}}async createEIP712(e,t,n,r=7){return{domain:_.domain(this.#t.chainId,this.#t.verifyingContractAddressDecryption),types:P,primaryType:`UserDecryptRequestVerification`,message:{publicKey:e,contractAddresses:t,startTimestamp:BigInt(n),durationDays:BigInt(r),extraData:`0x00`}}}async encrypt(e){let n=e.values.map(z),r=(0,t.getAddress)(e.contractAddress),i=(0,t.getAddress)(e.userAddress),a=n.map(({fheType:e,value:t})=>k(e,t,crypto.getRandomValues(new Uint8Array(32)))),o=(0,t.keccak256)(a.length>0?(0,t.concat)(a):`0x`),s=n.map(({fheType:e},t)=>A(o,t,e,this.#t.aclContractAddress,BigInt(this.#t.chainId))),c=n.map(({value:e})=>(0,t.pad)((0,t.toHex)(e),{size:32})),l=c.length>0?(0,t.concat)(c):`0x`,u=await this.inputSigner.signTypedData({domain:h.domain(this.#t.gatewayChainId,this.#t.verifyingContractAddressInputVerification),types:{CiphertextVerification:h.types.CiphertextVerification},primaryType:`CiphertextVerification`,message:{ctHandles:s,userAddress:i,contractAddress:r,contractChainId:BigInt(this.#t.chainId),extraData:l}}),d=(0,t.toBytes)((0,t.concat)([(0,t.toHex)(new Uint8Array([s.length])),(0,t.toHex)(new Uint8Array([1])),...s,u,l]));return{handles:s.map(e=>(0,t.toBytes)(e)),inputProof:d}}async userDecrypt(e){return await this.#r(e.handles,(0,t.getAddress)(e.signerAddress),(0,t.getAddress)(e.contractAddress),`User`,`user decrypt`),this.#n(e.handles)}async publicDecrypt(n){let r=n,i=(await Promise.all(r.map(e=>this.#o(e)))).findIndex(e=>!e);if(i!==-1)throw new e.r(`Handle ${r[i]} is not allowed for public decryption`);let a=await Promise.all(r.map(e=>this.#s(e))),o=Object.fromEntries(r.map((e,t)=>[e,R(e,a[t])])),s=(0,t.concat)(a.map(e=>(0,t.pad)((0,t.toHex)(e),{size:32}))),c=await this.kmsSigner.signTypedData({domain:g.domain(this.#t.gatewayChainId,this.#t.verifyingContractAddressDecryption),types:I,primaryType:`PublicDecryptVerification`,message:{ctHandles:r,decryptedResult:s,extraData:`0x`}});return{clearValues:o,abiEncodedClearValues:s,decryptionProof:(0,t.concat)([(0,t.toHex)(new Uint8Array([1])),c])}}async createDelegatedUserDecryptEIP712(e,n,r,i,a=7){let o={publicKey:e,contractAddresses:n,delegatorAddress:(0,t.getAddress)(r),startTimestamp:String(i),durationDays:String(a),extraData:`0x00`};return{domain:v.domain(BigInt(this.#t.chainId),this.#t.verifyingContractAddressDecryption),types:F,primaryType:`DelegatedUserDecryptRequestVerification`,message:o}}async delegatedUserDecrypt(e){return await this.#i(e.handles,(0,t.getAddress)(e.delegatorAddress),(0,t.getAddress)(e.delegateAddress),(0,t.getAddress)(e.contractAddress)),this.#n(e.handles)}async requestZKProofVerification(t){throw new e.t(`Not implemented in cleartext mode`)}async getPublicKey(){return{publicKeyId:`mock-public-key-id`,publicKey:new Uint8Array([32])}}async getPublicParams(e){return{publicParams:new Uint8Array([32]),publicParamsId:`mock-public-params-id`}}async getAclAddress(){return this.#t.aclContractAddress}terminate(){}[Symbol.dispose](){this.terminate()}async#n(e){let t=await Promise.all(e.map(e=>this.#s(e)));return Object.fromEntries(e.map((e,n)=>[e,R(e,t[n])]))}async#r(t,n,r,i,a){if(n===r)throw new e.r(`${i} address ${n} must not equal contract address for ${a}`);let o=await Promise.all(t.flatMap(e=>[this.#a(e,n),this.#a(e,r)]));for(let s=0;s<t.length;s++){let c=o[s*2],l=o[s*2+1];if(!c)throw new e.r(`${i} ${n} is not authorized for ${a} of handle ${t[s]}`);if(!l)throw new e.r(`Contract ${r} is not authorized for ${a} of handle ${t[s]}`)}}async#i(t,n,r,i){let a=await Promise.all(t.map(e=>this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`isHandleDelegatedForUserDecryption`,args:[n,r,i,e]})));for(let n=0;n<t.length;n++)if(!a[n])throw new e.r(`Handle ${t[n]} is not delegated for user decryption`)}async#a(e,t){return this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`persistAllowed`,args:[e,t]})}async#o(e){return this.#e.readContract({address:this.#t.aclContractAddress,abi:j,functionName:`isAllowedForDecryption`,args:[e]})}async#s(e){return this.#e.readContract({address:this.#t.executorAddress,abi:M,functionName:`plaintexts`,args:[e]})}};const V={...l,executorAddress:`0xe3a9105a3a932253A70F126eb1E3b589C643dD24`},H={chainId:560048,network:`https://rpc.hoodi.ethpandaops.io`,gatewayChainId:l.gatewayChainId,aclContractAddress:`0x6D3FAf6f86e1fF9F3B0831Dda920AbA1cBd5bd68`,executorAddress:`0xC316692627de536368d82e9121F1D44a550894E6`,verifyingContractAddressDecryption:l.verifyingContractAddressDecryption,verifyingContractAddressInputVerification:l.verifyingContractAddressInputVerification,registryAddress:`0x1807aE2f693F8530DFB126D0eF98F2F2518F292f`};Object.defineProperty(exports,`a`,{enumerable:!0,get:function(){return l}}),Object.defineProperty(exports,`c`,{enumerable:!0,get:function(){return f}}),Object.defineProperty(exports,`i`,{enumerable:!0,get:function(){return u}}),Object.defineProperty(exports,`l`,{enumerable:!0,get:function(){return i}}),Object.defineProperty(exports,`n`,{enumerable:!0,get:function(){return H}}),Object.defineProperty(exports,`o`,{enumerable:!0,get:function(){return s}}),Object.defineProperty(exports,`r`,{enumerable:!0,get:function(){return B}}),Object.defineProperty(exports,`s`,{enumerable:!0,get:function(){return c}}),Object.defineProperty(exports,`t`,{enumerable:!0,get:function(){return V}});
2
2
  //# sourceMappingURL=cleartext.cjs.map
package/dist/cjs/cleartext.cjs.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"cleartext.cjs","names":["EncryptionFailedError","mainnet","sepolia","EncryptionFailedError","#client","#config","ConfigurationError","#assertDecryptAuthorization","#decryptHandles","#isAllowedForDecryption","DecryptionFailedError","#readPlaintext","#assertDelegation","#persistAllowed"],"sources":["../../src/relayer/relayer-utils.ts","../../src/relayer/cleartext/eip712.ts","../../src/relayer/cleartext/constants.ts","../../src/relayer/cleartext/fhe-type.ts","../../src/relayer/cleartext/handle.ts","../../src/relayer/cleartext/relayer-cleartext.ts","../../src/relayer/cleartext/presets.ts"],"sourcesContent":["import type { FhevmInstanceConfig } from \"@zama-fhe/relayer-sdk/bundle\";\nimport type { Address } from \"viem\";\nimport type { EIP712TypedData } from \"./relayer-sdk.types\";\n\nconst MAX_RETRIES = 2;\nconst RETRY_BASE_MS = 500;\n\n/**\n * Retry an async operation with exponential backoff.\n * Only retries on transient errors (timeout, network). Does not retry user-facing errors.\n */\nexport async function withRetry<T>(fn: () => Promise<T>, retries = MAX_RETRIES): Promise<T> {\n let lastError: unknown;\n for (let attempt = 0; attempt <= retries; attempt++) {\n try {\n return await fn();\n } catch (error) {\n lastError = error;\n if (attempt < retries && isTransientError(error)) {\n await sleep(RETRY_BASE_MS * 2 ** attempt);\n continue;\n }\n throw error;\n }\n }\n throw lastError;\n}\n\nfunction isTransientError(error: unknown): boolean {\n if (!(error instanceof Error)) {\n return false;\n }\n const msg = error.message.toLowerCase();\n return (\n msg.includes(\"timed out\") ||\n msg.includes(\"timeout\") ||\n msg.includes(\"econnreset\") ||\n msg.includes(\"econnrefused\") ||\n msg.includes(\"network\") ||\n msg.includes(\"fetch failed\") ||\n msg.includes(\"socket hang up\") ||\n msg.includes(\"502\") ||\n msg.includes(\"503\") ||\n msg.includes(\"504\")\n );\n}\n\nfunction sleep(ms: number): Promise<void> {\n return new Promise((resolve) => setTimeout(resolve, ms));\n}\n\n/**\n * Extends the base relayer config with the on-chain wrappers registry address.\n *\n * Used by `DefaultConfigs` and the `WrappersRegistry` class to\n * resolve the correct registry contract per chain.\n */\nexport interface ExtendedFhevmInstanceConfig extends FhevmInstanceConfig {\n /**\n * Address of the `ConfidentialTokenWrappersRegistry` contract.\n * `undefined` for chains where no registry is deployed (e.g. Hardhat).\n */\n registryAddress: Address | undefined;\n}\n\n/**\n * Mainnet network configuration (chainId 1).\n *\n * Contract addresses mirror `MainnetConfigV2` from `@zama-fhe/relayer-sdk`.\n * They are duplicated here because the `/bundle` export path only exposes\n * types at build time (runtime values require `/web` or `/node` which pull\n * in WASM). `satisfies ExtendedFhevmInstanceConfig` ensures structural drift\n * is caught at compile time.\n *\n * Includes `registryAddress` for the on-chain token wrappers registry.\n */\nexport const MainnetConfig = {\n chainId: 1,\n gatewayChainId: 261131,\n relayerUrl: \"https://relayer.mainnet.zama.org/v2\",\n network: \"https://ethereum-rpc.publicnode.com\",\n aclContractAddress: \"0xcA2E8f1F656CD25C01F05d0b243Ab1ecd4a8ffb6\",\n kmsContractAddress: \"0x77627828a55156b04Ac0DC0eb30467f1a552BB03\",\n inputVerifierContractAddress: \"0xCe0FC2e05CFff1B719EFF7169f7D80Af770c8EA2\",\n verifyingContractAddressDecryption: \"0x0f6024a97684f7d90ddb0fAAD79cB15F2C888D24\",\n verifyingContractAddressInputVerification: \"0xcB1bB072f38bdAF0F328CdEf1Fc6eDa1DF029287\",\n registryAddress: \"0xeb5015fF021DB115aCe010f23F55C2591059bBA0\",\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Sepolia testnet network configuration (chainId 11155111).\n *\n * See {@link MainnetConfig} for why addresses are hardcoded.\n * Includes `registryAddress` for the on-chain token wrappers registry.\n */\nexport const SepoliaConfig = {\n chainId: 11155111,\n gatewayChainId: 10901,\n relayerUrl: \"https://relayer.testnet.zama.org/v2\",\n network: \"https://ethereum-sepolia-rpc.publicnode.com\",\n aclContractAddress: \"0xf0Ffdc93b7E186bC2f8CB3dAA75D86d1930A433D\",\n kmsContractAddress: \"0xbE0E383937d564D7FF0BC3b46c51f0bF8d5C311A\",\n inputVerifierContractAddress: \"0xBBC1fFCdc7C316aAAd72E807D9b0272BE8F84DA0\",\n verifyingContractAddressDecryption: \"0x5D8BD78e2ea6bbE41f26dFe9fdaEAa349e077478\",\n verifyingContractAddressInputVerification: \"0x483b9dE06E4E4C7D35CCf5837A1668487406D955\",\n registryAddress: \"0x2f0750Bbb0A246059d80e94c454586a7F27a128e\",\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Hardhat local network configuration (chainId 31337).\n *\n * The addresses in this configuration must match those of your deployment.\n * Ensure that the executor address and other contract addresses correspond to\n * the contracts deployed on your Hardhat network.\n *\n * `registryAddress` is `undefined` — pass it explicitly via\n * `registryAddresses` when creating a `WrappersRegistry`.\n */\nexport const HardhatConfig = {\n chainId: 31337,\n gatewayChainId: 10901,\n relayerUrl: \"\",\n network: \"http://127.0.0.1:8545\",\n aclContractAddress: \"0x50157CFfD6bBFA2DECe204a89ec419c23ef5755D\",\n inputVerifierContractAddress: \"0x36772142b74871f255CbD7A3e89B401d3e45825f\",\n kmsContractAddress: \"0x901F8942346f7AB3a01F6D7613119Bca447Bb030\",\n verifyingContractAddressDecryption: \"0x5ffdaAB0373E62E2ea2944776209aEf29E631A64\",\n verifyingContractAddressInputVerification: \"0x812b06e1CDCE800494b79fFE4f925A504a9A9810\",\n registryAddress: undefined,\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Built-in network configurations keyed by chain ID.\n *\n * Includes Mainnet (1), Sepolia (11155111), and Hardhat (31337).\n * Used by `RelayerWeb` to resolve transport configs and by\n * `WrappersRegistry` to resolve registry addresses.\n */\nexport const DefaultConfigs: Record<number, ExtendedFhevmInstanceConfig> = {\n [MainnetConfig.chainId]: MainnetConfig,\n [SepoliaConfig.chainId]: SepoliaConfig,\n [HardhatConfig.chainId]: HardhatConfig,\n} as const;\n\n/** EIP-712 domain field → Solidity type. Order follows the EIP-712 spec. */\nconst DOMAIN_FIELD_TYPES: Record<string, string> = {\n name: \"string\",\n version: \"string\",\n chainId: \"uint256\",\n verifyingContract: \"address\",\n salt: \"bytes32\",\n};\n\n/**\n * Build `EIP712Domain` type entries from the keys present in a domain object.\n * Order matches the EIP-712 spec (name → version → chainId → verifyingContract → salt).\n */\nexport function buildEIP712DomainType(\n domain: EIP712TypedData[\"domain\"],\n): { name: string; type: string }[] {\n return Object.keys(DOMAIN_FIELD_TYPES)\n .filter((k) => k in domain)\n .map((k) => ({ name: k, type: DOMAIN_FIELD_TYPES[k]! }));\n}\n","import type { Address, TypedDataDomain } from \"viem\";\nimport type {\n CoprocessorEIP712TypesType,\n KmsDelegatedUserDecryptEIP712TypesType,\n KmsPublicDecryptEIP712TypesType,\n KmsUserDecryptEIP712TypesType,\n} from \"@zama-fhe/relayer-sdk/bundle\";\n\ntype DomainFactory = (chainId: number | bigint, verifyingContract: Address) => TypedDataDomain;\n\nconst inputDomain: DomainFactory = (chainId, verifyingContract) => ({\n name: \"InputVerification\",\n version: \"1\",\n chainId: Number(chainId),\n verifyingContract,\n});\n\nconst decryptionDomain: DomainFactory = (chainId, verifyingContract) => ({\n name: \"Decryption\",\n version: \"1\",\n chainId: Number(chainId),\n verifyingContract,\n});\n\nexport const INPUT_VERIFICATION_EIP712 = {\n domain: inputDomain,\n types: {\n CiphertextVerification: [\n { name: \"ctHandles\", type: \"bytes32[]\" },\n { name: \"userAddress\", type: \"address\" },\n { name: \"contractAddress\", type: \"address\" },\n { name: \"contractChainId\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const KMS_DECRYPTION_EIP712 = {\n domain: decryptionDomain,\n types: {\n PublicDecryptVerification: [\n { name: \"ctHandles\", type: \"bytes32[]\" },\n { name: \"decryptedResult\", type: \"bytes\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const USER_DECRYPT_EIP712 = {\n domain: decryptionDomain,\n types: {\n UserDecryptRequestVerification: [\n { name: \"publicKey\", type: \"bytes\" },\n { name: \"contractAddresses\", type: \"address[]\" },\n { name: \"startTimestamp\", type: \"uint256\" },\n { name: \"durationDays\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const DELEGATED_USER_DECRYPT_EIP712 = {\n domain: decryptionDomain,\n types: {\n DelegatedUserDecryptRequestVerification: [\n { name: \"publicKey\", type: \"bytes\" },\n { name: \"contractAddresses\", type: \"address[]\" },\n { name: \"delegatorAddress\", type: \"address\" },\n { name: \"startTimestamp\", type: \"uint256\" },\n { name: \"durationDays\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\n// ── Compile-time structural checks against relayer-sdk types ──────────\n// These assertions ensure our local EIP-712 type arrays stay in sync with\n// the relayer-sdk's canonical definitions. A mismatch will cause a build error.\ntype AssertFieldsMatch<\n Local extends readonly { readonly name: string; readonly type: string }[],\n Canonical extends readonly { readonly name: string; readonly type: string }[],\n> = [Local[\"length\"]] extends [Canonical[\"length\"]]\n ? {\n [K in keyof Local]: Local[K] extends { readonly name: infer N; readonly type: infer T }\n ? Canonical[K & keyof Canonical] extends { readonly name: N; readonly type: T }\n ? true\n : { error: `Field mismatch at index ${K & string}` }\n : never;\n }\n : { error: \"Field count mismatch\" };\n\n// Wrapping in readonly true[] ensures a mismatch produces a compile error\n// (not just an inert type alias that TypeScript silently accepts).\ntype AssertAllTrue<T extends readonly true[]> = T;\n\ntype _CheckInput = AssertAllTrue<\n AssertFieldsMatch<\n typeof INPUT_VERIFICATION_EIP712.types.CiphertextVerification,\n CoprocessorEIP712TypesType[\"CiphertextVerification\"]\n >\n>;\ntype _CheckPublicDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof KMS_DECRYPTION_EIP712.types.PublicDecryptVerification,\n KmsPublicDecryptEIP712TypesType[\"PublicDecryptVerification\"]\n >\n>;\ntype _CheckUserDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof USER_DECRYPT_EIP712.types.UserDecryptRequestVerification,\n KmsUserDecryptEIP712TypesType[\"UserDecryptRequestVerification\"]\n >\n>;\ntype _CheckDelegatedDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof DELEGATED_USER_DECRYPT_EIP712.types.DelegatedUserDecryptRequestVerification,\n KmsDelegatedUserDecryptEIP712TypesType[\"DelegatedUserDecryptRequestVerification\"]\n >\n>;\n","export const HANDLE_VERSION = 0;\n\nexport const PREHANDLE_MASK = 0xffffffffffffffffffffffffffffffffffffffffff0000000000000000000000n;\n\n// Constants used for instanciation of the cleartext FHEVM instance.\nexport const MOCK_INPUT_SIGNER_PK =\n \"0x7ec8ada6642fc4ccfb7729bc29c17cf8d21b61abd5642d1db992c0b8672ab901\";\nexport const MOCK_KMS_SIGNER_PK =\n \"0x388b7680e4e1afa06efbfd45cdd1fe39f3c6af381df6555a19661f283b97de91\";\n","// Copied from @zama-fhe/relayer-sdk/src/sdk/FheType.ts\n// Pure utility functions with zero WASM dependency.\n// Adapted to use simple errors instead of RelayerErrorBase hierarchy.\n\n////////////////////////////////////////////////////////////////////////////////\n// Types (from types/primitives.d.ts)\n////////////////////////////////////////////////////////////////////////////////\n\nexport interface FheTypeNameToIdMap {\n ebool: 0;\n //euint4: 1; deprecated\n euint8: 2;\n euint16: 3;\n euint32: 4;\n euint64: 5;\n euint128: 6;\n eaddress: 7;\n euint256: 8;\n}\n\nexport interface FheTypeIdToNameMap {\n 0: \"ebool\";\n //1: 'euint4'; deprecated\n 2: \"euint8\";\n 3: \"euint16\";\n 4: \"euint32\";\n 5: \"euint64\";\n 6: \"euint128\";\n 7: \"eaddress\";\n 8: \"euint256\";\n}\n\nexport interface FheTypeEncryptionBitwidthToIdMap {\n 2: FheTypeNameToIdMap[\"ebool\"];\n 8: FheTypeNameToIdMap[\"euint8\"];\n 16: FheTypeNameToIdMap[\"euint16\"];\n 32: FheTypeNameToIdMap[\"euint32\"];\n 64: FheTypeNameToIdMap[\"euint64\"];\n 128: FheTypeNameToIdMap[\"euint128\"];\n 160: FheTypeNameToIdMap[\"eaddress\"];\n 256: FheTypeNameToIdMap[\"euint256\"];\n}\n\nexport type FheTypeIdToEncryptionBitwidthMap = {\n [K in keyof FheTypeEncryptionBitwidthToIdMap as FheTypeEncryptionBitwidthToIdMap[K]]: K;\n};\n\ntype Prettify<T> = { [K in keyof T]: T[K] } & {};\n\nexport type FheTypeName = Prettify<keyof FheTypeNameToIdMap>;\nexport type FheTypeId = Prettify<keyof FheTypeIdToNameMap>;\nexport type EncryptionBits = Prettify<keyof FheTypeEncryptionBitwidthToIdMap>;\n\n////////////////////////////////////////////////////////////////////////////////\n// Lookup Maps\n////////////////////////////////////////////////////////////////////////////////\n\nconst MINIMUM_ENCRYPTION_BIT_WIDTH = 2;\n\nconst FheTypeNameToId: FheTypeNameToIdMap = {\n ebool: 0,\n //euint4: 1, deprecated\n euint8: 2,\n euint16: 3,\n euint32: 4,\n euint64: 5,\n euint128: 6,\n eaddress: 7,\n euint256: 8,\n} as const;\n\nconst FheTypeIdToName: FheTypeIdToNameMap = {\n 0: \"ebool\",\n //1: 'euint4', deprecated\n 2: \"euint8\",\n 3: \"euint16\",\n 4: \"euint32\",\n 5: \"euint64\",\n 6: \"euint128\",\n 7: \"eaddress\",\n 8: \"euint256\",\n} as const;\n\nconst FheTypeIdToEncryptionBitwidth: FheTypeIdToEncryptionBitwidthMap = {\n 0: 2,\n //1:?, euint4 deprecated\n 2: 8,\n 3: 16,\n 4: 32,\n 5: 64,\n 6: 128,\n 7: 160,\n 8: 256,\n} as const;\n\nconst EncryptionBitwidthToFheTypeId: FheTypeEncryptionBitwidthToIdMap = {\n 2: 0,\n 8: 2,\n 16: 3,\n 32: 4,\n 64: 5,\n 128: 6,\n 160: 7,\n 256: 8,\n} as const;\n\nObject.freeze(FheTypeNameToId);\nObject.freeze(FheTypeIdToName);\nObject.freeze(FheTypeIdToEncryptionBitwidth);\nObject.freeze(EncryptionBitwidthToFheTypeId);\n\n////////////////////////////////////////////////////////////////////////////////\n// Type Guards\n////////////////////////////////////////////////////////////////////////////////\n\nexport function isFheTypeId(value: unknown): value is FheTypeId {\n switch (value as FheTypeId) {\n case 0:\n case 2:\n case 3:\n case 4:\n case 5:\n case 6:\n case 7:\n case 8:\n return true;\n default:\n return false;\n }\n}\n\nexport function isFheTypeName(value: unknown): value is FheTypeName {\n if (typeof value !== \"string\") {\n return false;\n }\n return value in FheTypeNameToId;\n}\n\nexport function isEncryptionBits(value: unknown): value is EncryptionBits {\n if (typeof value !== \"number\") {\n return false;\n }\n return value in EncryptionBitwidthToFheTypeId;\n}\n\n////////////////////////////////////////////////////////////////////////////////\n// Converters\n////////////////////////////////////////////////////////////////////////////////\n\nexport function fheTypeIdFromEncryptionBits(bitwidth: number): FheTypeId {\n if (!isEncryptionBits(bitwidth)) {\n throw new Error(`Invalid encryption bits ${bitwidth}`);\n }\n return EncryptionBitwidthToFheTypeId[bitwidth];\n}\n\nexport function fheTypeIdFromName(name: string): FheTypeId {\n if (!isFheTypeName(name)) {\n throw new Error(`Invalid FheType name '${name}'`);\n }\n return FheTypeNameToId[name];\n}\n\nexport function fheTypeNameFromId(id: number): FheTypeName {\n if (!isFheTypeId(id)) {\n throw new Error(`Invalid FheType id '${id}'`);\n }\n return FheTypeIdToName[id];\n}\n\nexport function encryptionBitsFromFheTypeId(typeId: number): EncryptionBits {\n if (!isFheTypeId(typeId)) {\n throw new Error(`Invalid FheType id '${typeId}'`);\n }\n const bw = FheTypeIdToEncryptionBitwidth[typeId];\n if (bw < MINIMUM_ENCRYPTION_BIT_WIDTH) {\n throw new Error(\n `Invalid FheType encryption bit width: ${bw}. Minimum is ${MINIMUM_ENCRYPTION_BIT_WIDTH} bits.`,\n );\n }\n return bw;\n}\n\nexport function encryptionBitsFromFheTypeName(name: string): EncryptionBits {\n if (!isFheTypeName(name)) {\n throw new Error(`Invalid FheType name '${name}'`);\n }\n const bw = FheTypeIdToEncryptionBitwidth[FheTypeNameToId[name]];\n if (bw < MINIMUM_ENCRYPTION_BIT_WIDTH) {\n throw new Error(\n `Invalid FheType encryption bit width: ${bw}. Minimum is ${MINIMUM_ENCRYPTION_BIT_WIDTH} bits.`,\n );\n }\n return bw;\n}\n","import { concat, encodePacked, keccak256, pad, toBytes, toHex, type Address, type Hex } from \"viem\";\nimport { HANDLE_VERSION, PREHANDLE_MASK } from \"./constants\";\nimport { encryptionBitsFromFheTypeId, type FheTypeId } from \"./fhe-type\";\nimport { EncryptionFailedError } from \"../../errors\";\n\nconst RAW_CT_HASH_DOMAIN_SEPARATOR = toBytes(\"ZK-w_rct\");\nconst HANDLE_HASH_DOMAIN_SEPARATOR = toBytes(\"ZK-w_hdl\");\n\nfunction cleartextToBytes(cleartext: bigint, fheType: FheTypeId): Uint8Array {\n const byteLength = Math.ceil(encryptionBitsFromFheTypeId(fheType) / 8);\n return toBytes(pad(toHex(cleartext), { size: byteLength }));\n}\n\nexport function computeMockCiphertext(\n fheType: FheTypeId,\n cleartext: bigint,\n random32: Uint8Array,\n): Hex {\n if (random32.length !== 32) {\n throw new EncryptionFailedError(\"random32 must be exactly 32 bytes\");\n }\n\n const clearBytes = cleartextToBytes(cleartext, fheType);\n const inner = keccak256(\n concat([toHex(new Uint8Array([fheType])), toHex(clearBytes), toHex(random32)]),\n );\n\n return keccak256(concat([toHex(RAW_CT_HASH_DOMAIN_SEPARATOR), inner]));\n}\n\nexport function computeInputHandle(\n mockCiphertext: Hex,\n index: number,\n fheType: FheTypeId,\n aclAddress: Address,\n chainId: bigint,\n): Hex {\n if (!Number.isInteger(index) || index < 0 || index > 255) {\n throw new EncryptionFailedError(\"index must be an integer between 0 and 255\");\n }\n\n const blobHash = keccak256(concat([toHex(RAW_CT_HASH_DOMAIN_SEPARATOR), mockCiphertext]));\n const handleHash = keccak256(\n encodePacked(\n [\"bytes\", \"bytes32\", \"uint8\", \"address\", \"uint256\"],\n [toHex(HANDLE_HASH_DOMAIN_SEPARATOR), blobHash, index, aclAddress, chainId],\n ),\n );\n\n const chainId64 = chainId & 0xffff_ffff_ffff_ffffn;\n const handle =\n (BigInt(handleHash) & PREHANDLE_MASK) |\n (BigInt(index) << 80n) |\n (chainId64 << 16n) |\n (BigInt(fheType) << 8n) |\n BigInt(HANDLE_VERSION);\n\n return toHex(handle, { size: 32 });\n}\n","import type { PrivateKeyAccount } from \"viem/accounts\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport {\n concat,\n createPublicClient,\n custom,\n getAddress,\n http,\n keccak256,\n pad,\n parseAbi,\n toBytes,\n toHex,\n type Address,\n type Hex,\n type PublicClient,\n} from \"viem\";\nimport { mainnet, sepolia } from \"viem/chains\";\nimport type {\n InputProofBytesType,\n KeypairType,\n KmsDelegatedUserDecryptEIP712Type,\n KmsPublicDecryptEIP712Type,\n KmsUserDecryptEIP712Type,\n ZKProofLike,\n} from \"@zama-fhe/relayer-sdk/bundle\";\nimport type { RelayerSDK } from \"../relayer-sdk\";\nimport type {\n ClearValueType,\n DelegatedUserDecryptParams,\n EIP712TypedData,\n EncryptParams,\n EncryptResult,\n Handle,\n PublicDecryptResult,\n UserDecryptParams,\n} from \"../relayer-sdk.types\";\nimport {\n DELEGATED_USER_DECRYPT_EIP712,\n INPUT_VERIFICATION_EIP712,\n KMS_DECRYPTION_EIP712,\n USER_DECRYPT_EIP712,\n} from \"./eip712\";\nimport { MOCK_INPUT_SIGNER_PK, MOCK_KMS_SIGNER_PK } from \"./constants\";\nimport {\n encryptionBitsFromFheTypeId,\n fheTypeIdFromName,\n isFheTypeName,\n type FheTypeId,\n} from \"./fhe-type\";\nimport { computeInputHandle, computeMockCiphertext } from \"./handle\";\nimport type { CleartextConfig } from \"./types\";\nimport { ConfigurationError, DecryptionFailedError, EncryptionFailedError } from \"../../errors\";\n\nconst ACL_ABI = parseAbi([\n \"function persistAllowed(bytes32 handle, address account) view returns (bool)\",\n \"function isAllowedForDecryption(bytes32 handle) view returns (bool)\",\n \"function isHandleDelegatedForUserDecryption(address delegator, address delegate, address contractAddress, bytes32 handle) view returns (bool)\",\n]);\n\nconst EXECUTOR_ABI = parseAbi([\"function plaintexts(bytes32 handle) view returns (uint256)\"]);\n\nconst STANDARD_EIP712_DOMAIN = [\n { name: \"name\", type: \"string\" },\n { name: \"version\", type: \"string\" },\n { name: \"chainId\", type: \"uint256\" },\n { name: \"verifyingContract\", type: \"address\" },\n] as const;\n\nconst USER_DECRYPT_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n UserDecryptRequestVerification: USER_DECRYPT_EIP712.types.UserDecryptRequestVerification,\n} satisfies KmsUserDecryptEIP712Type[\"types\"];\nconst DELEGATED_USER_DECRYPT_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n DelegatedUserDecryptRequestVerification:\n DELEGATED_USER_DECRYPT_EIP712.types.DelegatedUserDecryptRequestVerification,\n} satisfies KmsDelegatedUserDecryptEIP712Type[\"types\"];\nconst KMS_DECRYPTION_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n PublicDecryptVerification: KMS_DECRYPTION_EIP712.types.PublicDecryptVerification,\n} satisfies KmsPublicDecryptEIP712Type[\"types\"];\n\nconst FORBIDDEN_CHAIN_IDS = new Set<number>([mainnet.id, sepolia.id]);\n\n// FheTypeId constants for hot-path comparisons\nconst EBOOL_ID: FheTypeId = 0;\nconst EADDRESS_ID: FheTypeId = 7;\n\nfunction decodeClearValueType(handle: Handle, rawValue: bigint): ClearValueType {\n const typeByte = Number((BigInt(handle) >> 8n) & 0xffn);\n if (typeByte === EBOOL_ID) {\n return rawValue !== 0n;\n }\n if (typeByte === EADDRESS_ID) {\n return toHex(rawValue, { size: 20 });\n }\n return rawValue;\n}\n\nfunction normalizeEncryptValue(entry: EncryptParams[\"values\"][number]): {\n fheType: FheTypeId;\n value: bigint;\n} {\n if (!isFheTypeName(entry.type)) {\n throw new EncryptionFailedError(\"Unsupported FHE type\");\n }\n\n const fheType = fheTypeIdFromName(entry.type);\n\n let value: bigint;\n if (entry.type === \"ebool\") {\n if (typeof entry.value === \"boolean\") {\n value = entry.value ? 1n : 0n;\n } else {\n value = entry.value;\n if (value !== 0n && value !== 1n) {\n throw new EncryptionFailedError(\"Bool value must be 0, 1, true, or false\");\n }\n }\n } else if (entry.type === \"eaddress\") {\n value = BigInt(getAddress(entry.value));\n } else {\n value = entry.value;\n }\n\n if (value < 0n) {\n throw new EncryptionFailedError(\"Only non-negative cleartext values are supported\");\n }\n\n const bits = encryptionBitsFromFheTypeId(fheType);\n const maxValue = (1n << BigInt(bits)) - 1n;\n if (value > maxValue) {\n throw new EncryptionFailedError(\n `Value ${value} exceeds max ${maxValue} for FheType ${fheType}`,\n );\n }\n\n return { fheType, value };\n}\n\nexport class RelayerCleartext implements RelayerSDK {\n readonly #client: PublicClient;\n readonly #config: CleartextConfig;\n readonly kmsSigner: PrivateKeyAccount;\n readonly inputSigner: PrivateKeyAccount;\n\n constructor(config: CleartextConfig) {\n if (FORBIDDEN_CHAIN_IDS.has(config.chainId)) {\n throw new ConfigurationError(\n `Cleartext mode is not allowed on chain ${config.chainId}. ` +\n `It is intended for local development and testing only.`,\n );\n }\n this.#client = createPublicClient({\n transport: typeof config.network === \"string\" ? http(config.network) : custom(config.network),\n });\n this.#config = config;\n this.kmsSigner = privateKeyToAccount(config.kmsSignerPrivateKey ?? MOCK_KMS_SIGNER_PK);\n this.inputSigner = privateKeyToAccount(config.inputSignerPrivateKey ?? MOCK_INPUT_SIGNER_PK);\n }\n\n async generateKeypair(): Promise<KeypairType<Hex>> {\n const publicKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n let privateKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n\n while (privateKey === publicKey) {\n privateKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n }\n\n return { publicKey, privateKey };\n }\n\n async createEIP712(\n publicKey: Hex,\n contractAddresses: Address[],\n startTimestamp: number,\n durationDays = 7,\n ): Promise<EIP712TypedData> {\n return {\n domain: USER_DECRYPT_EIP712.domain(\n this.#config.chainId,\n this.#config.verifyingContractAddressDecryption,\n ) as EIP712TypedData[\"domain\"],\n types: USER_DECRYPT_TYPES,\n primaryType: \"UserDecryptRequestVerification\",\n message: {\n publicKey,\n contractAddresses,\n startTimestamp: BigInt(startTimestamp),\n durationDays: BigInt(durationDays),\n extraData: \"0x00\",\n },\n };\n }\n\n async encrypt(params: EncryptParams): Promise<EncryptResult> {\n const entries = params.values.map(normalizeEncryptValue);\n const contractAddress = getAddress(params.contractAddress);\n const userAddress = getAddress(params.userAddress);\n\n const mockCiphertexts = entries.map(({ fheType, value }) =>\n computeMockCiphertext(fheType, value, crypto.getRandomValues(new Uint8Array(32))),\n );\n\n const ciphertextBlob = keccak256(mockCiphertexts.length > 0 ? concat(mockCiphertexts) : \"0x\");\n\n const handles = entries.map(({ fheType }, index) =>\n computeInputHandle(\n ciphertextBlob,\n index,\n fheType,\n this.#config.aclContractAddress,\n BigInt(this.#config.chainId),\n ),\n );\n\n const cleartextParts = entries.map(({ value }) => pad(toHex(value), { size: 32 }));\n const cleartextBytes: Hex = cleartextParts.length > 0 ? concat(cleartextParts) : \"0x\";\n\n const signature = await this.inputSigner.signTypedData({\n domain: INPUT_VERIFICATION_EIP712.domain(\n this.#config.gatewayChainId,\n this.#config.verifyingContractAddressInputVerification,\n ),\n types: {\n CiphertextVerification: INPUT_VERIFICATION_EIP712.types.CiphertextVerification,\n },\n primaryType: \"CiphertextVerification\",\n message: {\n ctHandles: handles,\n userAddress,\n contractAddress,\n contractChainId: BigInt(this.#config.chainId),\n extraData: cleartextBytes,\n },\n });\n\n const inputProof = toBytes(\n concat([\n toHex(new Uint8Array([handles.length])),\n toHex(new Uint8Array([1])),\n ...handles,\n signature,\n cleartextBytes,\n ]),\n );\n\n return {\n handles: handles.map((handle) => toBytes(handle)),\n inputProof,\n };\n }\n\n async userDecrypt(params: UserDecryptParams): Promise<Readonly<Record<Handle, ClearValueType>>> {\n await this.#assertDecryptAuthorization(\n params.handles,\n getAddress(params.signerAddress),\n getAddress(params.contractAddress),\n \"User\",\n \"user decrypt\",\n );\n\n return this.#decryptHandles(params.handles);\n }\n\n async publicDecrypt(handles: Handle[]): Promise<PublicDecryptResult> {\n const normalizedHandles = handles;\n\n const allowedResults = await Promise.all(\n normalizedHandles.map((handle) => this.#isAllowedForDecryption(handle)),\n );\n const unauthorizedIndex = allowedResults.findIndex((isAllowed) => !isAllowed);\n if (unauthorizedIndex !== -1) {\n throw new DecryptionFailedError(\n `Handle ${normalizedHandles[unauthorizedIndex]!} is not allowed for public decryption`,\n );\n }\n\n const orderedValues = await Promise.all(\n normalizedHandles.map((handle) => this.#readPlaintext(handle)),\n );\n const clearValues: PublicDecryptResult[\"clearValues\"] = Object.fromEntries(\n normalizedHandles.map((handle, index) => [\n handle,\n decodeClearValueType(handle, orderedValues[index]!),\n ]),\n );\n\n const abiEncodedClearValues = concat(orderedValues.map((v) => pad(toHex(v), { size: 32 })));\n\n const signature = await this.kmsSigner.signTypedData({\n domain: KMS_DECRYPTION_EIP712.domain(\n this.#config.gatewayChainId,\n this.#config.verifyingContractAddressDecryption,\n ) as KmsPublicDecryptEIP712Type[\"domain\"],\n types: KMS_DECRYPTION_TYPES,\n primaryType: \"PublicDecryptVerification\",\n message: {\n ctHandles: normalizedHandles,\n decryptedResult: abiEncodedClearValues,\n extraData: \"0x\",\n },\n });\n\n const decryptionProof = concat([toHex(new Uint8Array([1])), signature]);\n\n return {\n clearValues,\n abiEncodedClearValues,\n decryptionProof,\n };\n }\n\n async createDelegatedUserDecryptEIP712(\n publicKey: Hex,\n contractAddresses: Address[],\n delegatorAddress: Address,\n startTimestamp: number,\n durationDays = 7,\n ): Promise<KmsDelegatedUserDecryptEIP712Type> {\n const message: KmsDelegatedUserDecryptEIP712Type[\"message\"] = {\n publicKey: publicKey as KmsDelegatedUserDecryptEIP712Type[\"message\"][\"publicKey\"],\n contractAddresses,\n delegatorAddress: getAddress(delegatorAddress),\n startTimestamp: String(startTimestamp),\n durationDays: String(durationDays),\n extraData: \"0x00\",\n };\n\n return {\n domain: DELEGATED_USER_DECRYPT_EIP712.domain(\n BigInt(this.#config.chainId),\n this.#config.verifyingContractAddressDecryption,\n ) as KmsDelegatedUserDecryptEIP712Type[\"domain\"],\n types: DELEGATED_USER_DECRYPT_TYPES,\n primaryType: \"DelegatedUserDecryptRequestVerification\",\n message,\n };\n }\n\n async delegatedUserDecrypt(\n params: DelegatedUserDecryptParams,\n ): Promise<Readonly<Record<Handle, ClearValueType>>> {\n await this.#assertDelegation(\n params.handles,\n getAddress(params.delegatorAddress),\n getAddress(params.delegateAddress),\n getAddress(params.contractAddress),\n );\n\n return this.#decryptHandles(params.handles);\n }\n\n async requestZKProofVerification(_zkProof: ZKProofLike): Promise<InputProofBytesType> {\n throw new ConfigurationError(\"Not implemented in cleartext mode\");\n }\n\n async getPublicKey(): Promise<{ publicKeyId: string; publicKey: Uint8Array } | null> {\n return { publicKeyId: \"mock-public-key-id\", publicKey: new Uint8Array([32]) };\n }\n\n async getPublicParams(\n _bits: number,\n ): Promise<{ publicParams: Uint8Array; publicParamsId: string } | null> {\n return { publicParams: new Uint8Array([32]), publicParamsId: \"mock-public-params-id\" };\n }\n\n async getAclAddress(): Promise<Address> {\n return this.#config.aclContractAddress;\n }\n\n terminate(): void {\n // No resources to release in cleartext mode.\n }\n\n async #decryptHandles(\n normalizedHandles: Handle[],\n ): Promise<Readonly<Record<Handle, ClearValueType>>> {\n const values = await Promise.all(\n normalizedHandles.map((handle) => this.#readPlaintext(handle)),\n );\n\n return Object.fromEntries(\n normalizedHandles.map((handle, index) => [\n handle,\n decodeClearValueType(handle, values[index]!),\n ]),\n );\n }\n\n async #assertDecryptAuthorization(\n normalizedHandles: Handle[],\n actorAddress: Address,\n contractAddress: Address,\n actorLabel: \"User\" | \"Delegator\",\n operationLabel: \"user decrypt\" | \"delegated decrypt\",\n ): Promise<void> {\n if (actorAddress === contractAddress) {\n throw new DecryptionFailedError(\n `${actorLabel} address ${actorAddress} must not equal contract address for ${operationLabel}`,\n );\n }\n\n const results = await Promise.all(\n normalizedHandles.flatMap((handle) => [\n this.#persistAllowed(handle, actorAddress),\n this.#persistAllowed(handle, contractAddress),\n ]),\n );\n\n for (let i = 0; i < normalizedHandles.length; i++) {\n const actorAllowed = results[i * 2];\n const contractAllowed = results[i * 2 + 1];\n if (!actorAllowed) {\n throw new DecryptionFailedError(\n `${actorLabel} ${actorAddress} is not authorized for ${operationLabel} of handle ${normalizedHandles[i]!}`,\n );\n }\n if (!contractAllowed) {\n throw new DecryptionFailedError(\n `Contract ${contractAddress} is not authorized for ${operationLabel} of handle ${normalizedHandles[i]!}`,\n );\n }\n }\n }\n\n async #assertDelegation(\n handles: Handle[],\n delegatorAddress: Address,\n delegateAddress: Address,\n contractAddress: Address,\n ): Promise<void> {\n const results = await Promise.all(\n handles.map((handle) =>\n this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"isHandleDelegatedForUserDecryption\",\n args: [delegatorAddress, delegateAddress, contractAddress, handle],\n }),\n ),\n );\n\n for (let i = 0; i < handles.length; i++) {\n if (!results[i]) {\n throw new DecryptionFailedError(\n `Handle ${handles[i]!} is not delegated for user decryption`,\n );\n }\n }\n }\n\n async #persistAllowed(handle: Handle, account: Address): Promise<boolean> {\n return this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"persistAllowed\",\n args: [handle, account],\n });\n }\n\n async #isAllowedForDecryption(handle: Handle): Promise<boolean> {\n return this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"isAllowedForDecryption\",\n args: [handle],\n });\n }\n\n async #readPlaintext(handle: Handle): Promise<bigint> {\n return this.#client.readContract({\n address: this.#config.executorAddress as Address,\n abi: EXECUTOR_ABI,\n functionName: \"plaintexts\",\n args: [handle],\n });\n }\n}\n","import { HardhatConfig } from \"../relayer-utils\";\nimport type { CleartextConfig } from \"./types\";\n\n/**\n * Hardhat local network configuration (chainId 31337).\n *\n * The addresses in this configuration must match those of your deployment.\n * Ensure that the executor address and other contract addresses correspond to\n * the contracts deployed on your Hardhat network.\n */\nexport const hardhatCleartextConfig = {\n ...HardhatConfig,\n executorAddress: \"0xe3a9105a3a932253A70F126eb1E3b589C643dD24\",\n} satisfies CleartextConfig;\n\nexport const hoodiCleartextConfig = {\n chainId: 560048,\n network: \"https://rpc.hoodi.ethpandaops.io\",\n gatewayChainId: HardhatConfig.gatewayChainId,\n aclContractAddress: \"0x6D3FAf6f86e1fF9F3B0831Dda920AbA1cBd5bd68\",\n executorAddress: \"0xC316692627de536368d82e9121F1D44a550894E6\",\n // The values used when configuring the deployments are the same as those used for a hardhat deployment, since there's no gateway chain.\n verifyingContractAddressDecryption: HardhatConfig.verifyingContractAddressDecryption,\n verifyingContractAddressInputVerification:\n HardhatConfig.verifyingContractAddressInputVerification,\n registryAddress: \"0x1807aE2f693F8530DFB126D0eF98F2F2518F292f\",\n} satisfies CleartextConfig;\n"],"mappings":"2GAWA,eAAsB,EAAa,EAAsB,EAAU,EAAyB,CAC1F,IAAI,EACJ,IAAK,IAAI,EAAU,EAAG,GAAW,EAAS,IACxC,GAAI,CACF,OAAO,MAAM,GAAI,OACV,EAAO,CAEd,GADA,EAAY,EACR,EAAU,GAAW,EAAiB,EAAM,CAAE,CAChD,MAAM,EAAM,IAAgB,GAAK,EAAQ,CACzC,SAEF,MAAM,EAGV,MAAM,EAGR,SAAS,EAAiB,EAAyB,CACjD,GAAI,EAAE,aAAiB,OACrB,MAAO,GAET,IAAM,EAAM,EAAM,QAAQ,aAAa,CACvC,OACE,EAAI,SAAS,YAAY,EACzB,EAAI,SAAS,UAAU,EACvB,EAAI,SAAS,aAAa,EAC1B,EAAI,SAAS,eAAe,EAC5B,EAAI,SAAS,UAAU,EACvB,EAAI,SAAS,eAAe,EAC5B,EAAI,SAAS,iBAAiB,EAC9B,EAAI,SAAS,MAAM,EACnB,EAAI,SAAS,MAAM,EACnB,EAAI,SAAS,MAAM,CAIvB,SAAS,EAAM,EAA2B,CACxC,OAAO,IAAI,QAAS,GAAY,WAAW,EAAS,EAAG,CAAC,CA4B1D,MAAa,EAAgB,CAC3B,QAAS,EACT,eAAgB,OAChB,WAAY,sCACZ,QAAS,sCACT,mBAAoB,6CACpB,mBAAoB,6CACpB,6BAA8B,6CAC9B,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,6CAClB,CAQY,EAAgB,CAC3B,QAAS,SACT,eAAgB,MAChB,WAAY,sCACZ,QAAS,8CACT,mBAAoB,6CACpB,mBAAoB,6CACpB,6BAA8B,6CAC9B,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,6CAClB,CAYY,EAAgB,CAC3B,QAAS,MACT,eAAgB,MAChB,WAAY,GACZ,QAAS,wBACT,mBAAoB,6CACpB,6BAA8B,6CAC9B,mBAAoB,6CACpB,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,IAAA,GAClB,CASY,EAA8D,EACxE,EAAc,SAAU,GACxB,EAAc,SAAU,GACxB,EAAc,SAAU,EAC1B,CAGK,EAA6C,CACjD,KAAM,SACN,QAAS,SACT,QAAS,UACT,kBAAmB,UACnB,KAAM,UACP,CAMD,SAAgB,EACd,EACkC,CAClC,OAAO,OAAO,KAAK,EAAmB,CACnC,OAAQ,GAAM,KAAK,EAAO,CAC1B,IAAK,IAAO,CAAE,KAAM,EAAG,KAAM,EAAmB,GAAK,EAAE,CCxJ5D,MAAM,GAA8B,EAAS,KAAuB,CAClE,KAAM,oBACN,QAAS,IACT,QAAS,OAAO,EAAQ,CACxB,oBACD,EAEK,GAAmC,EAAS,KAAuB,CACvE,KAAM,aACN,QAAS,IACT,QAAS,OAAO,EAAQ,CACxB,oBACD,EAEY,EAA4B,CACvC,OAAQ,EACR,MAAO,CACL,uBAAwB,CACtB,CAAE,KAAM,YAAa,KAAM,YAAa,CACxC,CAAE,KAAM,cAAe,KAAM,UAAW,CACxC,CAAE,KAAM,kBAAmB,KAAM,UAAW,CAC5C,CAAE,KAAM,kBAAmB,KAAM,UAAW,CAC5C,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAwB,CACnC,OAAQ,EACR,MAAO,CACL,0BAA2B,CACzB,CAAE,KAAM,YAAa,KAAM,YAAa,CACxC,CAAE,KAAM,kBAAmB,KAAM,QAAS,CAC1C,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAsB,CACjC,OAAQ,EACR,MAAO,CACL,+BAAgC,CAC9B,CAAE,KAAM,YAAa,KAAM,QAAS,CACpC,CAAE,KAAM,oBAAqB,KAAM,YAAa,CAChD,CAAE,KAAM,iBAAkB,KAAM,UAAW,CAC3C,CAAE,KAAM,eAAgB,KAAM,UAAW,CACzC,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAgC,CAC3C,OAAQ,EACR,MAAO,CACL,wCAAyC,CACvC,CAAE,KAAM,YAAa,KAAM,QAAS,CACpC,CAAE,KAAM,oBAAqB,KAAM,YAAa,CAChD,CAAE,KAAM,mBAAoB,KAAM,UAAW,CAC7C,CAAE,KAAM,iBAAkB,KAAM,UAAW,CAC3C,CAAE,KAAM,eAAgB,KAAM,UAAW,CACzC,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CEdK,EAAsC,CAC1C,MAAO,EAEP,OAAQ,EACR,QAAS,EACT,QAAS,EACT,QAAS,EACT,SAAU,EACV,SAAU,EACV,SAAU,EACX,CAEK,EAAsC,CAC1C,EAAG,QAEH,EAAG,SACH,EAAG,UACH,EAAG,UACH,EAAG,UACH,EAAG,WACH,EAAG,WACH,EAAG,WACJ,CAEK,EAAkE,CACtE,EAAG,EAEH,EAAG,EACH,EAAG,GACH,EAAG,GACH,EAAG,GACH,EAAG,IACH,EAAG,IACH,EAAG,IACJ,CAaD,OAAO,OAAO,EAAgB,CAC9B,OAAO,OAAO,EAAgB,CAC9B,OAAO,OAAO,EAA8B,CAC5C,OAAO,OAdiE,CACtE,EAAG,EACH,EAAG,EACH,GAAI,EACJ,GAAI,EACJ,GAAI,EACJ,IAAK,EACL,IAAK,EACL,IAAK,EACN,CAK2C,CAM5C,SAAgB,EAAY,EAAoC,CAC9D,OAAQ,EAAR,CACE,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACH,MAAO,GACT,QACE,MAAO,IAIb,SAAgB,EAAc,EAAsC,CAIlE,OAHI,OAAO,GAAU,SAGd,KAAS,EAFP,GAuBX,SAAgB,EAAkB,EAAyB,CACzD,GAAI,CAAC,EAAc,EAAK,CACtB,MAAU,MAAM,yBAAyB,EAAK,GAAG,CAEnD,OAAO,EAAgB,GAUzB,SAAgB,EAA4B,EAAgC,CAC1E,GAAI,CAAC,EAAY,EAAO,CACtB,MAAU,MAAM,uBAAuB,EAAO,GAAG,CAEnD,IAAM,EAAK,EAA8B,GACzC,GAAI,EAAK,EACP,MAAU,MACR,yCAAyC,EAAG,sBAC7C,CAEH,OAAO,EC/KT,MAAM,GAAA,EAAA,EAAA,SAAuC,WAAW,CAClD,GAAA,EAAA,EAAA,SAAuC,WAAW,CAExD,SAAS,EAAiB,EAAmB,EAAgC,CAC3E,IAAM,EAAa,KAAK,KAAK,EAA4B,EAAQ,CAAG,EAAE,CACtE,OAAA,EAAA,EAAA,UAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAyB,EAAU,CAAE,CAAE,KAAM,EAAY,CAAC,CAAC,CAG7D,SAAgB,EACd,EACA,EACA,EACK,CACL,GAAI,EAAS,SAAW,GACtB,MAAM,IAAIA,EAAAA,EAAsB,oCAAoC,CAGtE,IAAM,EAAa,EAAiB,EAAW,EAAQ,CACjD,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QACG,aAAO,IAAI,WAAW,CAAC,EAAQ,CAAC,CAAC,aAAQ,EAAW,aAAQ,EAAS,CAAC,CAAC,CAC/E,CAED,OAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QAAwB,EAAA,EAAA,EAAA,OAAO,EAA6B,CAAE,EAAM,CAAC,CAAC,CAGxE,SAAgB,EACd,EACA,EACA,EACA,EACA,EACK,CACL,GAAI,CAAC,OAAO,UAAU,EAAM,EAAI,EAAQ,GAAK,EAAQ,IACnD,MAAM,IAAIA,EAAAA,EAAsB,6CAA6C,CAG/E,IAAM,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QAA4B,EAAA,EAAA,EAAA,OAAO,EAA6B,CAAE,EAAe,CAAC,CAAC,CACnF,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,cAEF,CAAC,QAAS,UAAW,QAAS,UAAW,UAAU,CACnD,aAAO,EAA6B,CAAE,EAAU,EAAO,EAAY,EAAQ,CAC5E,CACF,CAEK,EAAY,EAAU,sBAQ5B,OAAA,EAAA,EAAA,OANG,OAAO,EAAW,CAAG,gFACrB,OAAO,EAAM,EAAI,IACjB,GAAa,IACb,OAAO,EAAQ,EAAI,GACpB,OAAA,EAAsB,CAEH,CAAE,KAAM,GAAI,CAAC,CCHpC,MAAM,GAAA,EAAA,EAAA,UAAmB,CACvB,+EACA,sEACA,gJACD,CAAC,CAEI,GAAA,EAAA,EAAA,UAAwB,CAAC,6DAA6D,CAAC,CAEvF,EAAyB,CAC7B,CAAE,KAAM,OAAQ,KAAM,SAAU,CAChC,CAAE,KAAM,UAAW,KAAM,SAAU,CACnC,CAAE,KAAM,UAAW,KAAM,UAAW,CACpC,CAAE,KAAM,oBAAqB,KAAM,UAAW,CAC/C,CAEK,EAAqB,CACzB,aAAc,EACd,+BAAgC,EAAoB,MAAM,+BAC3D,CACK,EAA+B,CACnC,aAAc,EACd,wCACE,EAA8B,MAAM,wCACvC,CACK,EAAuB,CAC3B,aAAc,EACd,0BAA2B,EAAsB,MAAM,0BACxD,CAEK,EAAsB,IAAI,IAAY,CAACC,EAAAA,QAAQ,GAAIC,EAAAA,QAAQ,GAAG,CAAC,CAMrE,SAAS,EAAqB,EAAgB,EAAkC,CAC9E,IAAM,EAAW,OAAQ,OAAO,EAAO,EAAI,GAAM,KAAM,CAOvD,OANI,IAAa,EACR,IAAa,GAElB,IAAa,GACf,EAAA,EAAA,OAAa,EAAU,CAAE,KAAM,GAAI,CAAC,CAE/B,EAGT,SAAS,EAAsB,EAG7B,CACA,GAAI,CAAC,EAAc,EAAM,KAAK,CAC5B,MAAM,IAAIC,EAAAA,EAAsB,uBAAuB,CAGzD,IAAM,EAAU,EAAkB,EAAM,KAAK,CAEzC,EACJ,GAAI,EAAM,OAAS,QACjB,IAAI,OAAO,EAAM,OAAU,UACzB,EAAQ,EAAM,MAAQ,GAAK,WAE3B,EAAQ,EAAM,MACV,IAAU,IAAM,IAAU,GAC5B,MAAM,IAAIA,EAAAA,EAAsB,0CAA0C,MAM9E,EAHS,EAAM,OAAS,WAChB,QAAA,EAAA,EAAA,YAAkB,EAAM,MAAM,CAAC,CAE/B,EAAM,MAGhB,GAAI,EAAQ,GACV,MAAM,IAAIA,EAAAA,EAAsB,mDAAmD,CAGrF,IAAM,EAAO,EAA4B,EAAQ,CAC3C,GAAY,IAAM,OAAO,EAAK,EAAI,GACxC,GAAI,EAAQ,EACV,MAAM,IAAIA,EAAAA,EACR,SAAS,EAAM,eAAe,EAAS,eAAe,IACvD,CAGH,MAAO,CAAE,UAAS,QAAO,CAG3B,IAAa,EAAb,KAAoD,CAClD,GACA,GACA,UACA,YAEA,YAAY,EAAyB,CACnC,GAAI,EAAoB,IAAI,EAAO,QAAQ,CACzC,MAAM,IAAIG,EAAAA,EACR,0CAA0C,EAAO,QAAQ,0DAE1D,CAEH,MAAA,GAAKF,EAAAA,EAAAA,oBAA6B,CAChC,UAAW,OAAO,EAAO,SAAY,UAAA,EAAA,EAAA,MAAgB,EAAO,QAAQ,EAAA,EAAA,EAAA,QAAU,EAAO,QAAQ,CAC9F,CAAC,CACF,MAAA,EAAe,EACf,KAAK,WAAA,EAAA,EAAA,qBAAgC,EAAO,qBAAA,qEAA0C,CACtF,KAAK,aAAA,EAAA,EAAA,qBAAkC,EAAO,uBAAA,qEAA8C,CAG9F,MAAM,iBAA6C,CACjD,IAAM,GAAA,EAAA,EAAA,OAAkB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAC/D,GAAA,EAAA,EAAA,OAAmB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAElE,KAAO,IAAe,GACpB,GAAA,EAAA,EAAA,OAAmB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAGhE,MAAO,CAAE,YAAW,aAAY,CAGlC,MAAM,aACJ,EACA,EACA,EACA,EAAe,EACW,CAC1B,MAAO,CACL,OAAQ,EAAoB,OAC1B,MAAA,EAAa,QACb,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,iCACb,QAAS,CACP,YACA,oBACA,eAAgB,OAAO,EAAe,CACtC,aAAc,OAAO,EAAa,CAClC,UAAW,OACZ,CACF,CAGH,MAAM,QAAQ,EAA+C,CAC3D,IAAM,EAAU,EAAO,OAAO,IAAI,EAAsB,CAClD,GAAA,EAAA,EAAA,YAA6B,EAAO,gBAAgB,CACpD,GAAA,EAAA,EAAA,YAAyB,EAAO,YAAY,CAE5C,EAAkB,EAAQ,KAAK,CAAE,UAAS,WAC9C,EAAsB,EAAS,EAAO,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAClF,CAEK,GAAA,EAAA,EAAA,WAA2B,EAAgB,OAAS,GAAA,EAAA,EAAA,QAAW,EAAgB,CAAG,KAAK,CAEvF,EAAU,EAAQ,KAAK,CAAE,WAAW,IACxC,EACE,EACA,EACA,EACA,MAAA,EAAa,mBACb,OAAO,MAAA,EAAa,QAAQ,CAC7B,CACF,CAEK,EAAiB,EAAQ,KAAK,CAAE,YAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAsB,EAAM,CAAE,CAAE,KAAM,GAAI,CAAC,CAAC,CAC5E,EAAsB,EAAe,OAAS,GAAA,EAAA,EAAA,QAAW,EAAe,CAAG,KAE3E,EAAY,MAAM,KAAK,YAAY,cAAc,CACrD,OAAQ,EAA0B,OAChC,MAAA,EAAa,eACb,MAAA,EAAa,0CACd,CACD,MAAO,CACL,uBAAwB,EAA0B,MAAM,uBACzD,CACD,YAAa,yBACb,QAAS,CACP,UAAW,EACX,cACA,kBACA,gBAAiB,OAAO,MAAA,EAAa,QAAQ,CAC7C,UAAW,EACZ,CACF,CAAC,CAEI,GAAA,EAAA,EAAA,UAAA,EAAA,EAAA,QACG,aACC,IAAI,WAAW,CAAC,EAAQ,OAAO,CAAC,CAAC,aACjC,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC,CAC1B,GAAG,EACH,EACA,EACD,CAAC,CACH,CAED,MAAO,CACL,QAAS,EAAQ,IAAK,IAAA,EAAA,EAAA,SAAmB,EAAO,CAAC,CACjD,aACD,CAGH,MAAM,YAAY,EAA8E,CAS9F,OARA,MAAM,MAAA,EACJ,EAAO,SAAA,EAAA,EAAA,YACI,EAAO,cAAc,EAAA,EAAA,EAAA,YACrB,EAAO,gBAAgB,CAClC,OACA,eACD,CAEM,MAAA,EAAqB,EAAO,QAAQ,CAG7C,MAAM,cAAc,EAAiD,CACnE,IAAM,EAAoB,EAKpB,GAHiB,MAAM,QAAQ,IACnC,EAAkB,IAAK,GAAW,MAAA,EAA6B,EAAO,CAAC,CACxE,EACwC,UAAW,GAAc,CAAC,EAAU,CAC7E,GAAI,IAAsB,GACxB,MAAM,IAAIM,EAAAA,EACR,UAAU,EAAkB,GAAoB,uCACjD,CAGH,IAAM,EAAgB,MAAM,QAAQ,IAClC,EAAkB,IAAK,GAAW,MAAA,EAAoB,EAAO,CAAC,CAC/D,CACK,EAAkD,OAAO,YAC7D,EAAkB,KAAK,EAAQ,IAAU,CACvC,EACA,EAAqB,EAAQ,EAAc,GAAQ,CACpD,CAAC,CACH,CAEK,GAAA,EAAA,EAAA,QAA+B,EAAc,IAAK,IAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAgB,EAAE,CAAE,CAAE,KAAM,GAAI,CAAC,CAAC,CAAC,CAErF,EAAY,MAAM,KAAK,UAAU,cAAc,CACnD,OAAQ,EAAsB,OAC5B,MAAA,EAAa,eACb,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,4BACb,QAAS,CACP,UAAW,EACX,gBAAiB,EACjB,UAAW,KACZ,CACF,CAAC,CAIF,MAAO,CACL,cACA,wBACA,iBAAA,EAAA,EAAA,QAL6B,EAAA,EAAA,EAAA,OAAO,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC,CAAE,EAAU,CAAC,CAMtE,CAGH,MAAM,iCACJ,EACA,EACA,EACA,EACA,EAAe,EAC6B,CAC5C,IAAM,EAAwD,CACjD,YACX,oBACA,kBAAA,EAAA,EAAA,YAA6B,EAAiB,CAC9C,eAAgB,OAAO,EAAe,CACtC,aAAc,OAAO,EAAa,CAClC,UAAW,OACZ,CAED,MAAO,CACL,OAAQ,EAA8B,OACpC,OAAO,MAAA,EAAa,QAAQ,CAC5B,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,0CACb,UACD,CAGH,MAAM,qBACJ,EACmD,CAQnD,OAPA,MAAM,MAAA,EACJ,EAAO,SAAA,EAAA,EAAA,YACI,EAAO,iBAAiB,EAAA,EAAA,EAAA,YACxB,EAAO,gBAAgB,EAAA,EAAA,EAAA,YACvB,EAAO,gBAAgB,CACnC,CAEM,MAAA,EAAqB,EAAO,QAAQ,CAG7C,MAAM,2BAA2B,EAAqD,CACpF,MAAM,IAAIJ,EAAAA,EAAmB,oCAAoC,CAGnE,MAAM,cAA+E,CACnF,MAAO,CAAE,YAAa,qBAAsB,UAAW,IAAI,WAAW,CAAC,GAAG,CAAC,CAAE,CAG/E,MAAM,gBACJ,EACsE,CACtE,MAAO,CAAE,aAAc,IAAI,WAAW,CAAC,GAAG,CAAC,CAAE,eAAgB,wBAAyB,CAGxF,MAAM,eAAkC,CACtC,OAAO,MAAA,EAAa,mBAGtB,WAAkB,EAIlB,MAAA,EACE,EACmD,CACnD,IAAM,EAAS,MAAM,QAAQ,IAC3B,EAAkB,IAAK,GAAW,MAAA,EAAoB,EAAO,CAAC,CAC/D,CAED,OAAO,OAAO,YACZ,EAAkB,KAAK,EAAQ,IAAU,CACvC,EACA,EAAqB,EAAQ,EAAO,GAAQ,CAC7C,CAAC,CACH,CAGH,MAAA,EACE,EACA,EACA,EACA,EACA,EACe,CACf,GAAI,IAAiB,EACnB,MAAM,IAAII,EAAAA,EACR,GAAG,EAAW,WAAW,EAAa,uCAAuC,IAC9E,CAGH,IAAM,EAAU,MAAM,QAAQ,IAC5B,EAAkB,QAAS,GAAW,CACpC,MAAA,EAAqB,EAAQ,EAAa,CAC1C,MAAA,EAAqB,EAAQ,EAAgB,CAC9C,CAAC,CACH,CAED,IAAK,IAAI,EAAI,EAAG,EAAI,EAAkB,OAAQ,IAAK,CACjD,IAAM,EAAe,EAAQ,EAAI,GAC3B,EAAkB,EAAQ,EAAI,EAAI,GACxC,GAAI,CAAC,EACH,MAAM,IAAIA,EAAAA,EACR,GAAG,EAAW,GAAG,EAAa,yBAAyB,EAAe,aAAa,EAAkB,KACtG,CAEH,GAAI,CAAC,EACH,MAAM,IAAIA,EAAAA,EACR,YAAY,EAAgB,yBAAyB,EAAe,aAAa,EAAkB,KACpG,EAKP,MAAA,EACE,EACA,EACA,EACA,EACe,CACf,IAAM,EAAU,MAAM,QAAQ,IAC5B,EAAQ,IAAK,GACX,MAAA,EAAa,aAAa,CACxB,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,qCACd,KAAM,CAAC,EAAkB,EAAiB,EAAiB,EAAO,CACnE,CAAC,CACH,CACF,CAED,IAAK,IAAI,EAAI,EAAG,EAAI,EAAQ,OAAQ,IAClC,GAAI,CAAC,EAAQ,GACX,MAAM,IAAIA,EAAAA,EACR,UAAU,EAAQ,GAAI,uCACvB,CAKP,MAAA,EAAsB,EAAgB,EAAoC,CACxE,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,iBACd,KAAM,CAAC,EAAQ,EAAQ,CACxB,CAAC,CAGJ,MAAA,EAA8B,EAAkC,CAC9D,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,yBACd,KAAM,CAAC,EAAO,CACf,CAAC,CAGJ,MAAA,EAAqB,EAAiC,CACpD,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,gBACtB,IAAK,EACL,aAAc,aACd,KAAM,CAAC,EAAO,CACf,CAAC,GCndN,MAAa,EAAyB,CACpC,GAAG,EACH,gBAAiB,6CAClB,CAEY,EAAuB,CAClC,QAAS,OACT,QAAS,mCACT,eAAgB,EAAc,eAC9B,mBAAoB,6CACpB,gBAAiB,6CAEjB,mCAAoC,EAAc,mCAClD,0CACE,EAAc,0CAChB,gBAAiB,6CAClB"}
1
+ {"version":3,"file":"cleartext.cjs","names":["EncryptionFailedError","mainnet","sepolia","EncryptionFailedError","#client","#config","ConfigurationError","#assertDecryptAuthorization","#decryptHandles","#isAllowedForDecryption","DecryptionFailedError","#readPlaintext","#assertDelegation","#persistAllowed"],"sources":["../../src/relayer/relayer-utils.ts","../../src/relayer/cleartext/eip712.ts","../../src/relayer/cleartext/constants.ts","../../src/relayer/cleartext/fhe-type.ts","../../src/relayer/cleartext/handle.ts","../../src/relayer/cleartext/relayer-cleartext.ts","../../src/relayer/cleartext/presets.ts"],"sourcesContent":["import type { FhevmInstanceConfig } from \"@zama-fhe/relayer-sdk/bundle\";\nimport type { Address } from \"viem\";\nimport type { EIP712TypedData } from \"./relayer-sdk.types\";\n\nconst MAX_RETRIES = 2;\nconst RETRY_BASE_MS = 500;\n\n/**\n * Retry an async operation with exponential backoff.\n * Only retries on transient errors (timeout, network). Does not retry user-facing errors.\n */\nexport async function withRetry<T>(fn: () => Promise<T>, retries = MAX_RETRIES): Promise<T> {\n let lastError: unknown;\n for (let attempt = 0; attempt <= retries; attempt++) {\n try {\n return await fn();\n } catch (error) {\n lastError = error;\n if (attempt < retries && isTransientError(error)) {\n await sleep(RETRY_BASE_MS * 2 ** attempt);\n continue;\n }\n throw error;\n }\n }\n throw lastError;\n}\n\nfunction isTransientError(error: unknown): boolean {\n if (!(error instanceof Error)) {\n return false;\n }\n const msg = error.message.toLowerCase();\n return (\n msg.includes(\"timed out\") ||\n msg.includes(\"timeout\") ||\n msg.includes(\"econnreset\") ||\n msg.includes(\"econnrefused\") ||\n msg.includes(\"network\") ||\n msg.includes(\"fetch failed\") ||\n msg.includes(\"socket hang up\") ||\n msg.includes(\"502\") ||\n msg.includes(\"503\") ||\n msg.includes(\"504\")\n );\n}\n\nfunction sleep(ms: number): Promise<void> {\n return new Promise((resolve) => setTimeout(resolve, ms));\n}\n\n/**\n * Extends the base relayer config with the on-chain wrappers registry address.\n *\n * Used by `DefaultConfigs` and the `WrappersRegistry` class to\n * resolve the correct registry contract per chain.\n */\nexport interface ExtendedFhevmInstanceConfig extends FhevmInstanceConfig {\n /**\n * Address of the `ConfidentialTokenWrappersRegistry` contract.\n * `undefined` for chains where no registry is deployed (e.g. Hardhat).\n */\n registryAddress: Address | undefined;\n}\n\n/**\n * Mainnet network configuration (chainId 1).\n *\n * Contract addresses mirror `MainnetConfigV2` from `@zama-fhe/relayer-sdk`.\n * They are duplicated here because the `/bundle` export path only exposes\n * types at build time (runtime values require `/web` or `/node` which pull\n * in WASM). `satisfies ExtendedFhevmInstanceConfig` ensures structural drift\n * is caught at compile time.\n *\n * Includes `registryAddress` for the on-chain token wrappers registry.\n */\nexport const MainnetConfig = {\n chainId: 1,\n gatewayChainId: 261131,\n relayerUrl: \"https://relayer.mainnet.zama.org/v2\",\n network: \"https://ethereum-rpc.publicnode.com\",\n aclContractAddress: \"0xcA2E8f1F656CD25C01F05d0b243Ab1ecd4a8ffb6\",\n kmsContractAddress: \"0x77627828a55156b04Ac0DC0eb30467f1a552BB03\",\n inputVerifierContractAddress: \"0xCe0FC2e05CFff1B719EFF7169f7D80Af770c8EA2\",\n verifyingContractAddressDecryption: \"0x0f6024a97684f7d90ddb0fAAD79cB15F2C888D24\",\n verifyingContractAddressInputVerification: \"0xcB1bB072f38bdAF0F328CdEf1Fc6eDa1DF029287\",\n registryAddress: \"0xeb5015fF021DB115aCe010f23F55C2591059bBA0\",\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Sepolia testnet network configuration (chainId 11155111).\n *\n * See {@link MainnetConfig} for why addresses are hardcoded.\n * Includes `registryAddress` for the on-chain token wrappers registry.\n */\nexport const SepoliaConfig = {\n chainId: 11155111,\n gatewayChainId: 10901,\n relayerUrl: \"https://relayer.testnet.zama.org/v2\",\n network: \"https://ethereum-sepolia-rpc.publicnode.com\",\n aclContractAddress: \"0xf0Ffdc93b7E186bC2f8CB3dAA75D86d1930A433D\",\n kmsContractAddress: \"0xbE0E383937d564D7FF0BC3b46c51f0bF8d5C311A\",\n inputVerifierContractAddress: \"0xBBC1fFCdc7C316aAAd72E807D9b0272BE8F84DA0\",\n verifyingContractAddressDecryption: \"0x5D8BD78e2ea6bbE41f26dFe9fdaEAa349e077478\",\n verifyingContractAddressInputVerification: \"0x483b9dE06E4E4C7D35CCf5837A1668487406D955\",\n registryAddress: \"0x2f0750Bbb0A246059d80e94c454586a7F27a128e\",\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Hardhat local network configuration (chainId 31337).\n *\n * The addresses in this configuration must match those of your deployment.\n * Ensure that the executor address and other contract addresses correspond to\n * the contracts deployed on your Hardhat network.\n *\n * `registryAddress` is `undefined` — pass it explicitly via\n * `registryAddresses` when creating a `WrappersRegistry`.\n */\nexport const HardhatConfig = {\n chainId: 31337,\n gatewayChainId: 10901,\n relayerUrl: \"\",\n network: \"http://127.0.0.1:8545\",\n aclContractAddress: \"0x50157CFfD6bBFA2DECe204a89ec419c23ef5755D\",\n inputVerifierContractAddress: \"0x36772142b74871f255CbD7A3e89B401d3e45825f\",\n kmsContractAddress: \"0x901F8942346f7AB3a01F6D7613119Bca447Bb030\",\n verifyingContractAddressDecryption: \"0x5ffdaAB0373E62E2ea2944776209aEf29E631A64\",\n verifyingContractAddressInputVerification: \"0x812b06e1CDCE800494b79fFE4f925A504a9A9810\",\n registryAddress: undefined,\n} as const satisfies ExtendedFhevmInstanceConfig;\n\n/**\n * Built-in network configurations keyed by chain ID.\n *\n * Includes Mainnet (1), Sepolia (11155111), and Hardhat (31337).\n * Used by `RelayerWeb` to resolve transport configs and by\n * `WrappersRegistry` to resolve registry addresses.\n */\nexport const DefaultConfigs: Record<number, ExtendedFhevmInstanceConfig> = {\n [MainnetConfig.chainId]: MainnetConfig,\n [SepoliaConfig.chainId]: SepoliaConfig,\n [HardhatConfig.chainId]: HardhatConfig,\n} as const;\n\n/** EIP-712 domain field → Solidity type. Order follows the EIP-712 spec. */\nconst DOMAIN_FIELD_TYPES: Record<string, string> = {\n name: \"string\",\n version: \"string\",\n chainId: \"uint256\",\n verifyingContract: \"address\",\n salt: \"bytes32\",\n};\n\n/**\n * Build `EIP712Domain` type entries from the keys present in a domain object.\n * Order matches the EIP-712 spec (name → version → chainId → verifyingContract → salt).\n */\nexport function buildEIP712DomainType(\n domain: EIP712TypedData[\"domain\"],\n): { name: string; type: string }[] {\n return Object.keys(DOMAIN_FIELD_TYPES)\n .filter((k) => k in domain)\n .map((k) => ({ name: k, type: DOMAIN_FIELD_TYPES[k]! }));\n}\n","import type { Address, TypedDataDomain } from \"viem\";\nimport type {\n CoprocessorEIP712TypesType,\n KmsDelegatedUserDecryptEIP712TypesType,\n KmsPublicDecryptEIP712TypesType,\n KmsUserDecryptEIP712TypesType,\n} from \"@zama-fhe/relayer-sdk/bundle\";\n\ntype DomainFactory = (chainId: number | bigint, verifyingContract: Address) => TypedDataDomain;\n\nconst inputDomain: DomainFactory = (chainId, verifyingContract) => ({\n name: \"InputVerification\",\n version: \"1\",\n chainId: Number(chainId),\n verifyingContract,\n});\n\nconst decryptionDomain: DomainFactory = (chainId, verifyingContract) => ({\n name: \"Decryption\",\n version: \"1\",\n chainId: Number(chainId),\n verifyingContract,\n});\n\nexport const INPUT_VERIFICATION_EIP712 = {\n domain: inputDomain,\n types: {\n CiphertextVerification: [\n { name: \"ctHandles\", type: \"bytes32[]\" },\n { name: \"userAddress\", type: \"address\" },\n { name: \"contractAddress\", type: \"address\" },\n { name: \"contractChainId\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const KMS_DECRYPTION_EIP712 = {\n domain: decryptionDomain,\n types: {\n PublicDecryptVerification: [\n { name: \"ctHandles\", type: \"bytes32[]\" },\n { name: \"decryptedResult\", type: \"bytes\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const USER_DECRYPT_EIP712 = {\n domain: decryptionDomain,\n types: {\n UserDecryptRequestVerification: [\n { name: \"publicKey\", type: \"bytes\" },\n { name: \"contractAddresses\", type: \"address[]\" },\n { name: \"startTimestamp\", type: \"uint256\" },\n { name: \"durationDays\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\nexport const DELEGATED_USER_DECRYPT_EIP712 = {\n domain: decryptionDomain,\n types: {\n DelegatedUserDecryptRequestVerification: [\n { name: \"publicKey\", type: \"bytes\" },\n { name: \"contractAddresses\", type: \"address[]\" },\n { name: \"delegatorAddress\", type: \"address\" },\n { name: \"startTimestamp\", type: \"uint256\" },\n { name: \"durationDays\", type: \"uint256\" },\n { name: \"extraData\", type: \"bytes\" },\n ],\n },\n} as const;\n\n// ── Compile-time structural checks against relayer-sdk types ──────────\n// These assertions ensure our local EIP-712 type arrays stay in sync with\n// the relayer-sdk's canonical definitions. A mismatch will cause a build error.\ntype AssertFieldsMatch<\n Local extends readonly { readonly name: string; readonly type: string }[],\n Canonical extends readonly { readonly name: string; readonly type: string }[],\n> = [Local[\"length\"]] extends [Canonical[\"length\"]]\n ? {\n [K in keyof Local]: Local[K] extends { readonly name: infer N; readonly type: infer T }\n ? Canonical[K & keyof Canonical] extends { readonly name: N; readonly type: T }\n ? true\n : { error: `Field mismatch at index ${K & string}` }\n : never;\n }\n : { error: \"Field count mismatch\" };\n\n// Wrapping in readonly true[] ensures a mismatch produces a compile error\n// (not just an inert type alias that TypeScript silently accepts).\ntype AssertAllTrue<T extends readonly true[]> = T;\n\ntype _CheckInput = AssertAllTrue<\n AssertFieldsMatch<\n typeof INPUT_VERIFICATION_EIP712.types.CiphertextVerification,\n CoprocessorEIP712TypesType[\"CiphertextVerification\"]\n >\n>;\ntype _CheckPublicDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof KMS_DECRYPTION_EIP712.types.PublicDecryptVerification,\n KmsPublicDecryptEIP712TypesType[\"PublicDecryptVerification\"]\n >\n>;\ntype _CheckUserDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof USER_DECRYPT_EIP712.types.UserDecryptRequestVerification,\n KmsUserDecryptEIP712TypesType[\"UserDecryptRequestVerification\"]\n >\n>;\ntype _CheckDelegatedDecrypt = AssertAllTrue<\n AssertFieldsMatch<\n typeof DELEGATED_USER_DECRYPT_EIP712.types.DelegatedUserDecryptRequestVerification,\n KmsDelegatedUserDecryptEIP712TypesType[\"DelegatedUserDecryptRequestVerification\"]\n >\n>;\n","export const HANDLE_VERSION = 0;\n\nexport const PREHANDLE_MASK = 0xffffffffffffffffffffffffffffffffffffffffff0000000000000000000000n;\n\n// Constants used for instanciation of the cleartext FHEVM instance.\nexport const MOCK_INPUT_SIGNER_PK =\n \"0x7ec8ada6642fc4ccfb7729bc29c17cf8d21b61abd5642d1db992c0b8672ab901\";\nexport const MOCK_KMS_SIGNER_PK =\n \"0x388b7680e4e1afa06efbfd45cdd1fe39f3c6af381df6555a19661f283b97de91\";\n","// Copied from @zama-fhe/relayer-sdk/src/sdk/FheType.ts\n// Pure utility functions with zero WASM dependency.\n// Adapted to use simple errors instead of RelayerErrorBase hierarchy.\n\n////////////////////////////////////////////////////////////////////////////////\n// Types (from types/primitives.d.ts)\n////////////////////////////////////////////////////////////////////////////////\n\nexport interface FheTypeNameToIdMap {\n ebool: 0;\n //euint4: 1; deprecated\n euint8: 2;\n euint16: 3;\n euint32: 4;\n euint64: 5;\n euint128: 6;\n eaddress: 7;\n euint256: 8;\n}\n\nexport interface FheTypeIdToNameMap {\n 0: \"ebool\";\n //1: 'euint4'; deprecated\n 2: \"euint8\";\n 3: \"euint16\";\n 4: \"euint32\";\n 5: \"euint64\";\n 6: \"euint128\";\n 7: \"eaddress\";\n 8: \"euint256\";\n}\n\nexport interface FheTypeEncryptionBitwidthToIdMap {\n 2: FheTypeNameToIdMap[\"ebool\"];\n 8: FheTypeNameToIdMap[\"euint8\"];\n 16: FheTypeNameToIdMap[\"euint16\"];\n 32: FheTypeNameToIdMap[\"euint32\"];\n 64: FheTypeNameToIdMap[\"euint64\"];\n 128: FheTypeNameToIdMap[\"euint128\"];\n 160: FheTypeNameToIdMap[\"eaddress\"];\n 256: FheTypeNameToIdMap[\"euint256\"];\n}\n\nexport type FheTypeIdToEncryptionBitwidthMap = {\n [K in keyof FheTypeEncryptionBitwidthToIdMap as FheTypeEncryptionBitwidthToIdMap[K]]: K;\n};\n\ntype Prettify<T> = { [K in keyof T]: T[K] } & {};\n\nexport type FheTypeName = Prettify<keyof FheTypeNameToIdMap>;\nexport type FheTypeId = Prettify<keyof FheTypeIdToNameMap>;\nexport type EncryptionBits = Prettify<keyof FheTypeEncryptionBitwidthToIdMap>;\n\n////////////////////////////////////////////////////////////////////////////////\n// Lookup Maps\n////////////////////////////////////////////////////////////////////////////////\n\nconst MINIMUM_ENCRYPTION_BIT_WIDTH = 2;\n\nconst FheTypeNameToId: FheTypeNameToIdMap = {\n ebool: 0,\n //euint4: 1, deprecated\n euint8: 2,\n euint16: 3,\n euint32: 4,\n euint64: 5,\n euint128: 6,\n eaddress: 7,\n euint256: 8,\n} as const;\n\nconst FheTypeIdToName: FheTypeIdToNameMap = {\n 0: \"ebool\",\n //1: 'euint4', deprecated\n 2: \"euint8\",\n 3: \"euint16\",\n 4: \"euint32\",\n 5: \"euint64\",\n 6: \"euint128\",\n 7: \"eaddress\",\n 8: \"euint256\",\n} as const;\n\nconst FheTypeIdToEncryptionBitwidth: FheTypeIdToEncryptionBitwidthMap = {\n 0: 2,\n //1:?, euint4 deprecated\n 2: 8,\n 3: 16,\n 4: 32,\n 5: 64,\n 6: 128,\n 7: 160,\n 8: 256,\n} as const;\n\nconst EncryptionBitwidthToFheTypeId: FheTypeEncryptionBitwidthToIdMap = {\n 2: 0,\n 8: 2,\n 16: 3,\n 32: 4,\n 64: 5,\n 128: 6,\n 160: 7,\n 256: 8,\n} as const;\n\nObject.freeze(FheTypeNameToId);\nObject.freeze(FheTypeIdToName);\nObject.freeze(FheTypeIdToEncryptionBitwidth);\nObject.freeze(EncryptionBitwidthToFheTypeId);\n\n////////////////////////////////////////////////////////////////////////////////\n// Type Guards\n////////////////////////////////////////////////////////////////////////////////\n\nexport function isFheTypeId(value: unknown): value is FheTypeId {\n switch (value as FheTypeId) {\n case 0:\n case 2:\n case 3:\n case 4:\n case 5:\n case 6:\n case 7:\n case 8:\n return true;\n default:\n return false;\n }\n}\n\nexport function isFheTypeName(value: unknown): value is FheTypeName {\n if (typeof value !== \"string\") {\n return false;\n }\n return value in FheTypeNameToId;\n}\n\nexport function isEncryptionBits(value: unknown): value is EncryptionBits {\n if (typeof value !== \"number\") {\n return false;\n }\n return value in EncryptionBitwidthToFheTypeId;\n}\n\n////////////////////////////////////////////////////////////////////////////////\n// Converters\n////////////////////////////////////////////////////////////////////////////////\n\nexport function fheTypeIdFromEncryptionBits(bitwidth: number): FheTypeId {\n if (!isEncryptionBits(bitwidth)) {\n throw new Error(`Invalid encryption bits ${bitwidth}`);\n }\n return EncryptionBitwidthToFheTypeId[bitwidth];\n}\n\nexport function fheTypeIdFromName(name: string): FheTypeId {\n if (!isFheTypeName(name)) {\n throw new Error(`Invalid FheType name '${name}'`);\n }\n return FheTypeNameToId[name];\n}\n\nexport function fheTypeNameFromId(id: number): FheTypeName {\n if (!isFheTypeId(id)) {\n throw new Error(`Invalid FheType id '${id}'`);\n }\n return FheTypeIdToName[id];\n}\n\nexport function encryptionBitsFromFheTypeId(typeId: number): EncryptionBits {\n if (!isFheTypeId(typeId)) {\n throw new Error(`Invalid FheType id '${typeId}'`);\n }\n const bw = FheTypeIdToEncryptionBitwidth[typeId];\n if (bw < MINIMUM_ENCRYPTION_BIT_WIDTH) {\n throw new Error(\n `Invalid FheType encryption bit width: ${bw}. Minimum is ${MINIMUM_ENCRYPTION_BIT_WIDTH} bits.`,\n );\n }\n return bw;\n}\n\nexport function encryptionBitsFromFheTypeName(name: string): EncryptionBits {\n if (!isFheTypeName(name)) {\n throw new Error(`Invalid FheType name '${name}'`);\n }\n const bw = FheTypeIdToEncryptionBitwidth[FheTypeNameToId[name]];\n if (bw < MINIMUM_ENCRYPTION_BIT_WIDTH) {\n throw new Error(\n `Invalid FheType encryption bit width: ${bw}. Minimum is ${MINIMUM_ENCRYPTION_BIT_WIDTH} bits.`,\n );\n }\n return bw;\n}\n","import { concat, encodePacked, keccak256, pad, toBytes, toHex, type Address, type Hex } from \"viem\";\nimport { HANDLE_VERSION, PREHANDLE_MASK } from \"./constants\";\nimport { encryptionBitsFromFheTypeId, type FheTypeId } from \"./fhe-type\";\nimport { EncryptionFailedError } from \"../../errors\";\n\nconst RAW_CT_HASH_DOMAIN_SEPARATOR = toBytes(\"ZK-w_rct\");\nconst HANDLE_HASH_DOMAIN_SEPARATOR = toBytes(\"ZK-w_hdl\");\n\nfunction cleartextToBytes(cleartext: bigint, fheType: FheTypeId): Uint8Array {\n const byteLength = Math.ceil(encryptionBitsFromFheTypeId(fheType) / 8);\n return toBytes(pad(toHex(cleartext), { size: byteLength }));\n}\n\nexport function computeMockCiphertext(\n fheType: FheTypeId,\n cleartext: bigint,\n random32: Uint8Array,\n): Hex {\n if (random32.length !== 32) {\n throw new EncryptionFailedError(\"random32 must be exactly 32 bytes\");\n }\n\n const clearBytes = cleartextToBytes(cleartext, fheType);\n const inner = keccak256(\n concat([toHex(new Uint8Array([fheType])), toHex(clearBytes), toHex(random32)]),\n );\n\n return keccak256(concat([toHex(RAW_CT_HASH_DOMAIN_SEPARATOR), inner]));\n}\n\nexport function computeInputHandle(\n mockCiphertext: Hex,\n index: number,\n fheType: FheTypeId,\n aclAddress: Address,\n chainId: bigint,\n): Hex {\n if (!Number.isInteger(index) || index < 0 || index > 255) {\n throw new EncryptionFailedError(\"index must be an integer between 0 and 255\");\n }\n\n const blobHash = keccak256(concat([toHex(RAW_CT_HASH_DOMAIN_SEPARATOR), mockCiphertext]));\n const handleHash = keccak256(\n encodePacked(\n [\"bytes\", \"bytes32\", \"uint8\", \"address\", \"uint256\"],\n [toHex(HANDLE_HASH_DOMAIN_SEPARATOR), blobHash, index, aclAddress, chainId],\n ),\n );\n\n const chainId64 = chainId & 0xffff_ffff_ffff_ffffn;\n const handle =\n (BigInt(handleHash) & PREHANDLE_MASK) |\n (BigInt(index) << 80n) |\n (chainId64 << 16n) |\n (BigInt(fheType) << 8n) |\n BigInt(HANDLE_VERSION);\n\n return toHex(handle, { size: 32 });\n}\n","import type { PrivateKeyAccount } from \"viem/accounts\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport {\n concat,\n createPublicClient,\n custom,\n getAddress,\n http,\n keccak256,\n pad,\n parseAbi,\n toBytes,\n toHex,\n type Address,\n type Hex,\n type PublicClient,\n} from \"viem\";\nimport { mainnet, sepolia } from \"viem/chains\";\nimport type {\n InputProofBytesType,\n KeypairType,\n KmsDelegatedUserDecryptEIP712Type,\n KmsPublicDecryptEIP712Type,\n KmsUserDecryptEIP712Type,\n ZKProofLike,\n} from \"@zama-fhe/relayer-sdk/bundle\";\nimport type { RelayerSDK } from \"../relayer-sdk\";\nimport type {\n ClearValueType,\n DelegatedUserDecryptParams,\n EIP712TypedData,\n EncryptParams,\n EncryptResult,\n Handle,\n PublicDecryptResult,\n UserDecryptParams,\n} from \"../relayer-sdk.types\";\nimport {\n DELEGATED_USER_DECRYPT_EIP712,\n INPUT_VERIFICATION_EIP712,\n KMS_DECRYPTION_EIP712,\n USER_DECRYPT_EIP712,\n} from \"./eip712\";\nimport { MOCK_INPUT_SIGNER_PK, MOCK_KMS_SIGNER_PK } from \"./constants\";\nimport {\n encryptionBitsFromFheTypeId,\n fheTypeIdFromName,\n isFheTypeName,\n type FheTypeId,\n} from \"./fhe-type\";\nimport { computeInputHandle, computeMockCiphertext } from \"./handle\";\nimport type { CleartextConfig } from \"./types\";\nimport { ConfigurationError, DecryptionFailedError, EncryptionFailedError } from \"../../errors\";\n\nconst ACL_ABI = parseAbi([\n \"function persistAllowed(bytes32 handle, address account) view returns (bool)\",\n \"function isAllowedForDecryption(bytes32 handle) view returns (bool)\",\n \"function isHandleDelegatedForUserDecryption(address delegator, address delegate, address contractAddress, bytes32 handle) view returns (bool)\",\n]);\n\nconst EXECUTOR_ABI = parseAbi([\"function plaintexts(bytes32 handle) view returns (uint256)\"]);\n\nconst STANDARD_EIP712_DOMAIN = [\n { name: \"name\", type: \"string\" },\n { name: \"version\", type: \"string\" },\n { name: \"chainId\", type: \"uint256\" },\n { name: \"verifyingContract\", type: \"address\" },\n] as const;\n\nconst USER_DECRYPT_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n UserDecryptRequestVerification: USER_DECRYPT_EIP712.types.UserDecryptRequestVerification,\n} satisfies KmsUserDecryptEIP712Type[\"types\"];\nconst DELEGATED_USER_DECRYPT_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n DelegatedUserDecryptRequestVerification:\n DELEGATED_USER_DECRYPT_EIP712.types.DelegatedUserDecryptRequestVerification,\n} satisfies KmsDelegatedUserDecryptEIP712Type[\"types\"];\nconst KMS_DECRYPTION_TYPES = {\n EIP712Domain: STANDARD_EIP712_DOMAIN,\n PublicDecryptVerification: KMS_DECRYPTION_EIP712.types.PublicDecryptVerification,\n} satisfies KmsPublicDecryptEIP712Type[\"types\"];\n\nconst FORBIDDEN_CHAIN_IDS = new Set<number>([mainnet.id, sepolia.id]);\n\n// FheTypeId constants for hot-path comparisons\nconst EBOOL_ID: FheTypeId = 0;\nconst EADDRESS_ID: FheTypeId = 7;\n\nfunction decodeClearValueType(handle: Handle, rawValue: bigint): ClearValueType {\n const typeByte = Number((BigInt(handle) >> 8n) & 0xffn);\n if (typeByte === EBOOL_ID) {\n return rawValue !== 0n;\n }\n if (typeByte === EADDRESS_ID) {\n return toHex(rawValue, { size: 20 });\n }\n return rawValue;\n}\n\nfunction normalizeEncryptValue(entry: EncryptParams[\"values\"][number]): {\n fheType: FheTypeId;\n value: bigint;\n} {\n if (!isFheTypeName(entry.type)) {\n throw new EncryptionFailedError(\"Unsupported FHE type\");\n }\n\n const fheType = fheTypeIdFromName(entry.type);\n\n let value: bigint;\n if (entry.type === \"ebool\") {\n if (typeof entry.value === \"boolean\") {\n value = entry.value ? 1n : 0n;\n } else {\n value = entry.value;\n if (value !== 0n && value !== 1n) {\n throw new EncryptionFailedError(\"Bool value must be 0, 1, true, or false\");\n }\n }\n } else if (entry.type === \"eaddress\") {\n value = BigInt(getAddress(entry.value));\n } else {\n value = entry.value;\n }\n\n if (value < 0n) {\n throw new EncryptionFailedError(\"Only non-negative cleartext values are supported\");\n }\n\n const bits = encryptionBitsFromFheTypeId(fheType);\n const maxValue = (1n << BigInt(bits)) - 1n;\n if (value > maxValue) {\n throw new EncryptionFailedError(\n `Value ${value} exceeds max ${maxValue} for FheType ${fheType}`,\n );\n }\n\n return { fheType, value };\n}\n\nexport class RelayerCleartext implements RelayerSDK, Disposable {\n readonly #client: PublicClient;\n readonly #config: CleartextConfig;\n readonly kmsSigner: PrivateKeyAccount;\n readonly inputSigner: PrivateKeyAccount;\n\n constructor(config: CleartextConfig) {\n if (FORBIDDEN_CHAIN_IDS.has(config.chainId)) {\n throw new ConfigurationError(\n `Cleartext mode is not allowed on chain ${config.chainId}. ` +\n `It is intended for local development and testing only.`,\n );\n }\n this.#client = createPublicClient({\n transport: typeof config.network === \"string\" ? http(config.network) : custom(config.network),\n });\n this.#config = config;\n this.kmsSigner = privateKeyToAccount(config.kmsSignerPrivateKey ?? MOCK_KMS_SIGNER_PK);\n this.inputSigner = privateKeyToAccount(config.inputSignerPrivateKey ?? MOCK_INPUT_SIGNER_PK);\n }\n\n async generateKeypair(): Promise<KeypairType<Hex>> {\n const publicKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n let privateKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n\n while (privateKey === publicKey) {\n privateKey = toHex(crypto.getRandomValues(new Uint8Array(32)));\n }\n\n return { publicKey, privateKey };\n }\n\n async createEIP712(\n publicKey: Hex,\n contractAddresses: Address[],\n startTimestamp: number,\n durationDays = 7,\n ): Promise<EIP712TypedData> {\n return {\n domain: USER_DECRYPT_EIP712.domain(\n this.#config.chainId,\n this.#config.verifyingContractAddressDecryption,\n ) as EIP712TypedData[\"domain\"],\n types: USER_DECRYPT_TYPES,\n primaryType: \"UserDecryptRequestVerification\",\n message: {\n publicKey,\n contractAddresses,\n startTimestamp: BigInt(startTimestamp),\n durationDays: BigInt(durationDays),\n extraData: \"0x00\",\n },\n };\n }\n\n async encrypt(params: EncryptParams): Promise<EncryptResult> {\n const entries = params.values.map(normalizeEncryptValue);\n const contractAddress = getAddress(params.contractAddress);\n const userAddress = getAddress(params.userAddress);\n\n const mockCiphertexts = entries.map(({ fheType, value }) =>\n computeMockCiphertext(fheType, value, crypto.getRandomValues(new Uint8Array(32))),\n );\n\n const ciphertextBlob = keccak256(mockCiphertexts.length > 0 ? concat(mockCiphertexts) : \"0x\");\n\n const handles = entries.map(({ fheType }, index) =>\n computeInputHandle(\n ciphertextBlob,\n index,\n fheType,\n this.#config.aclContractAddress,\n BigInt(this.#config.chainId),\n ),\n );\n\n const cleartextParts = entries.map(({ value }) => pad(toHex(value), { size: 32 }));\n const cleartextBytes: Hex = cleartextParts.length > 0 ? concat(cleartextParts) : \"0x\";\n\n const signature = await this.inputSigner.signTypedData({\n domain: INPUT_VERIFICATION_EIP712.domain(\n this.#config.gatewayChainId,\n this.#config.verifyingContractAddressInputVerification,\n ),\n types: {\n CiphertextVerification: INPUT_VERIFICATION_EIP712.types.CiphertextVerification,\n },\n primaryType: \"CiphertextVerification\",\n message: {\n ctHandles: handles,\n userAddress,\n contractAddress,\n contractChainId: BigInt(this.#config.chainId),\n extraData: cleartextBytes,\n },\n });\n\n const inputProof = toBytes(\n concat([\n toHex(new Uint8Array([handles.length])),\n toHex(new Uint8Array([1])),\n ...handles,\n signature,\n cleartextBytes,\n ]),\n );\n\n return {\n handles: handles.map((handle) => toBytes(handle)),\n inputProof,\n };\n }\n\n async userDecrypt(params: UserDecryptParams): Promise<Readonly<Record<Handle, ClearValueType>>> {\n await this.#assertDecryptAuthorization(\n params.handles,\n getAddress(params.signerAddress),\n getAddress(params.contractAddress),\n \"User\",\n \"user decrypt\",\n );\n\n return this.#decryptHandles(params.handles);\n }\n\n async publicDecrypt(handles: Handle[]): Promise<PublicDecryptResult> {\n const normalizedHandles = handles;\n\n const allowedResults = await Promise.all(\n normalizedHandles.map((handle) => this.#isAllowedForDecryption(handle)),\n );\n const unauthorizedIndex = allowedResults.findIndex((isAllowed) => !isAllowed);\n if (unauthorizedIndex !== -1) {\n throw new DecryptionFailedError(\n `Handle ${normalizedHandles[unauthorizedIndex]!} is not allowed for public decryption`,\n );\n }\n\n const orderedValues = await Promise.all(\n normalizedHandles.map((handle) => this.#readPlaintext(handle)),\n );\n const clearValues: PublicDecryptResult[\"clearValues\"] = Object.fromEntries(\n normalizedHandles.map((handle, index) => [\n handle,\n decodeClearValueType(handle, orderedValues[index]!),\n ]),\n );\n\n const abiEncodedClearValues = concat(orderedValues.map((v) => pad(toHex(v), { size: 32 })));\n\n const signature = await this.kmsSigner.signTypedData({\n domain: KMS_DECRYPTION_EIP712.domain(\n this.#config.gatewayChainId,\n this.#config.verifyingContractAddressDecryption,\n ) as KmsPublicDecryptEIP712Type[\"domain\"],\n types: KMS_DECRYPTION_TYPES,\n primaryType: \"PublicDecryptVerification\",\n message: {\n ctHandles: normalizedHandles,\n decryptedResult: abiEncodedClearValues,\n extraData: \"0x\",\n },\n });\n\n const decryptionProof = concat([toHex(new Uint8Array([1])), signature]);\n\n return {\n clearValues,\n abiEncodedClearValues,\n decryptionProof,\n };\n }\n\n async createDelegatedUserDecryptEIP712(\n publicKey: Hex,\n contractAddresses: Address[],\n delegatorAddress: Address,\n startTimestamp: number,\n durationDays = 7,\n ): Promise<KmsDelegatedUserDecryptEIP712Type> {\n const message: KmsDelegatedUserDecryptEIP712Type[\"message\"] = {\n publicKey: publicKey as KmsDelegatedUserDecryptEIP712Type[\"message\"][\"publicKey\"],\n contractAddresses,\n delegatorAddress: getAddress(delegatorAddress),\n startTimestamp: String(startTimestamp),\n durationDays: String(durationDays),\n extraData: \"0x00\",\n };\n\n return {\n domain: DELEGATED_USER_DECRYPT_EIP712.domain(\n BigInt(this.#config.chainId),\n this.#config.verifyingContractAddressDecryption,\n ) as KmsDelegatedUserDecryptEIP712Type[\"domain\"],\n types: DELEGATED_USER_DECRYPT_TYPES,\n primaryType: \"DelegatedUserDecryptRequestVerification\",\n message,\n };\n }\n\n async delegatedUserDecrypt(\n params: DelegatedUserDecryptParams,\n ): Promise<Readonly<Record<Handle, ClearValueType>>> {\n await this.#assertDelegation(\n params.handles,\n getAddress(params.delegatorAddress),\n getAddress(params.delegateAddress),\n getAddress(params.contractAddress),\n );\n\n return this.#decryptHandles(params.handles);\n }\n\n async requestZKProofVerification(_zkProof: ZKProofLike): Promise<InputProofBytesType> {\n throw new ConfigurationError(\"Not implemented in cleartext mode\");\n }\n\n async getPublicKey(): Promise<{ publicKeyId: string; publicKey: Uint8Array } | null> {\n return { publicKeyId: \"mock-public-key-id\", publicKey: new Uint8Array([32]) };\n }\n\n async getPublicParams(\n _bits: number,\n ): Promise<{ publicParams: Uint8Array; publicParamsId: string } | null> {\n return { publicParams: new Uint8Array([32]), publicParamsId: \"mock-public-params-id\" };\n }\n\n async getAclAddress(): Promise<Address> {\n return this.#config.aclContractAddress;\n }\n\n terminate(): void {\n // No resources to release in cleartext mode.\n }\n\n /** Calls {@link terminate} (no-op in cleartext mode). */\n [Symbol.dispose](): void {\n this.terminate();\n }\n\n async #decryptHandles(\n normalizedHandles: Handle[],\n ): Promise<Readonly<Record<Handle, ClearValueType>>> {\n const values = await Promise.all(\n normalizedHandles.map((handle) => this.#readPlaintext(handle)),\n );\n\n return Object.fromEntries(\n normalizedHandles.map((handle, index) => [\n handle,\n decodeClearValueType(handle, values[index]!),\n ]),\n );\n }\n\n async #assertDecryptAuthorization(\n normalizedHandles: Handle[],\n actorAddress: Address,\n contractAddress: Address,\n actorLabel: \"User\" | \"Delegator\",\n operationLabel: \"user decrypt\" | \"delegated decrypt\",\n ): Promise<void> {\n if (actorAddress === contractAddress) {\n throw new DecryptionFailedError(\n `${actorLabel} address ${actorAddress} must not equal contract address for ${operationLabel}`,\n );\n }\n\n const results = await Promise.all(\n normalizedHandles.flatMap((handle) => [\n this.#persistAllowed(handle, actorAddress),\n this.#persistAllowed(handle, contractAddress),\n ]),\n );\n\n for (let i = 0; i < normalizedHandles.length; i++) {\n const actorAllowed = results[i * 2];\n const contractAllowed = results[i * 2 + 1];\n if (!actorAllowed) {\n throw new DecryptionFailedError(\n `${actorLabel} ${actorAddress} is not authorized for ${operationLabel} of handle ${normalizedHandles[i]!}`,\n );\n }\n if (!contractAllowed) {\n throw new DecryptionFailedError(\n `Contract ${contractAddress} is not authorized for ${operationLabel} of handle ${normalizedHandles[i]!}`,\n );\n }\n }\n }\n\n async #assertDelegation(\n handles: Handle[],\n delegatorAddress: Address,\n delegateAddress: Address,\n contractAddress: Address,\n ): Promise<void> {\n const results = await Promise.all(\n handles.map((handle) =>\n this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"isHandleDelegatedForUserDecryption\",\n args: [delegatorAddress, delegateAddress, contractAddress, handle],\n }),\n ),\n );\n\n for (let i = 0; i < handles.length; i++) {\n if (!results[i]) {\n throw new DecryptionFailedError(\n `Handle ${handles[i]!} is not delegated for user decryption`,\n );\n }\n }\n }\n\n async #persistAllowed(handle: Handle, account: Address): Promise<boolean> {\n return this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"persistAllowed\",\n args: [handle, account],\n });\n }\n\n async #isAllowedForDecryption(handle: Handle): Promise<boolean> {\n return this.#client.readContract({\n address: this.#config.aclContractAddress,\n abi: ACL_ABI,\n functionName: \"isAllowedForDecryption\",\n args: [handle],\n });\n }\n\n async #readPlaintext(handle: Handle): Promise<bigint> {\n return this.#client.readContract({\n address: this.#config.executorAddress as Address,\n abi: EXECUTOR_ABI,\n functionName: \"plaintexts\",\n args: [handle],\n });\n }\n}\n","import { HardhatConfig } from \"../relayer-utils\";\nimport type { CleartextConfig } from \"./types\";\n\n/**\n * Hardhat local network configuration (chainId 31337).\n *\n * The addresses in this configuration must match those of your deployment.\n * Ensure that the executor address and other contract addresses correspond to\n * the contracts deployed on your Hardhat network.\n */\nexport const hardhatCleartextConfig = {\n ...HardhatConfig,\n executorAddress: \"0xe3a9105a3a932253A70F126eb1E3b589C643dD24\",\n} satisfies CleartextConfig;\n\nexport const hoodiCleartextConfig = {\n chainId: 560048,\n network: \"https://rpc.hoodi.ethpandaops.io\",\n gatewayChainId: HardhatConfig.gatewayChainId,\n aclContractAddress: \"0x6D3FAf6f86e1fF9F3B0831Dda920AbA1cBd5bd68\",\n executorAddress: \"0xC316692627de536368d82e9121F1D44a550894E6\",\n // The values used when configuring the deployments are the same as those used for a hardhat deployment, since there's no gateway chain.\n verifyingContractAddressDecryption: HardhatConfig.verifyingContractAddressDecryption,\n verifyingContractAddressInputVerification:\n HardhatConfig.verifyingContractAddressInputVerification,\n registryAddress: \"0x1807aE2f693F8530DFB126D0eF98F2F2518F292f\",\n} satisfies CleartextConfig;\n"],"mappings":"2GAWA,eAAsB,EAAa,EAAsB,EAAU,EAAyB,CAC1F,IAAI,EACJ,IAAK,IAAI,EAAU,EAAG,GAAW,EAAS,IACxC,GAAI,CACF,OAAO,MAAM,GAAI,OACV,EAAO,CAEd,GADA,EAAY,EACR,EAAU,GAAW,EAAiB,EAAM,CAAE,CAChD,MAAM,EAAM,IAAgB,GAAK,EAAQ,CACzC,SAEF,MAAM,EAGV,MAAM,EAGR,SAAS,EAAiB,EAAyB,CACjD,GAAI,EAAE,aAAiB,OACrB,MAAO,GAET,IAAM,EAAM,EAAM,QAAQ,aAAa,CACvC,OACE,EAAI,SAAS,YAAY,EACzB,EAAI,SAAS,UAAU,EACvB,EAAI,SAAS,aAAa,EAC1B,EAAI,SAAS,eAAe,EAC5B,EAAI,SAAS,UAAU,EACvB,EAAI,SAAS,eAAe,EAC5B,EAAI,SAAS,iBAAiB,EAC9B,EAAI,SAAS,MAAM,EACnB,EAAI,SAAS,MAAM,EACnB,EAAI,SAAS,MAAM,CAIvB,SAAS,EAAM,EAA2B,CACxC,OAAO,IAAI,QAAS,GAAY,WAAW,EAAS,EAAG,CAAC,CA4B1D,MAAa,EAAgB,CAC3B,QAAS,EACT,eAAgB,OAChB,WAAY,sCACZ,QAAS,sCACT,mBAAoB,6CACpB,mBAAoB,6CACpB,6BAA8B,6CAC9B,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,6CAClB,CAQY,EAAgB,CAC3B,QAAS,SACT,eAAgB,MAChB,WAAY,sCACZ,QAAS,8CACT,mBAAoB,6CACpB,mBAAoB,6CACpB,6BAA8B,6CAC9B,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,6CAClB,CAYY,EAAgB,CAC3B,QAAS,MACT,eAAgB,MAChB,WAAY,GACZ,QAAS,wBACT,mBAAoB,6CACpB,6BAA8B,6CAC9B,mBAAoB,6CACpB,mCAAoC,6CACpC,0CAA2C,6CAC3C,gBAAiB,IAAA,GAClB,CASY,EAA8D,EACxE,EAAc,SAAU,GACxB,EAAc,SAAU,GACxB,EAAc,SAAU,EAC1B,CAGK,EAA6C,CACjD,KAAM,SACN,QAAS,SACT,QAAS,UACT,kBAAmB,UACnB,KAAM,UACP,CAMD,SAAgB,EACd,EACkC,CAClC,OAAO,OAAO,KAAK,EAAmB,CACnC,OAAQ,GAAM,KAAK,EAAO,CAC1B,IAAK,IAAO,CAAE,KAAM,EAAG,KAAM,EAAmB,GAAK,EAAE,CCxJ5D,MAAM,GAA8B,EAAS,KAAuB,CAClE,KAAM,oBACN,QAAS,IACT,QAAS,OAAO,EAAQ,CACxB,oBACD,EAEK,GAAmC,EAAS,KAAuB,CACvE,KAAM,aACN,QAAS,IACT,QAAS,OAAO,EAAQ,CACxB,oBACD,EAEY,EAA4B,CACvC,OAAQ,EACR,MAAO,CACL,uBAAwB,CACtB,CAAE,KAAM,YAAa,KAAM,YAAa,CACxC,CAAE,KAAM,cAAe,KAAM,UAAW,CACxC,CAAE,KAAM,kBAAmB,KAAM,UAAW,CAC5C,CAAE,KAAM,kBAAmB,KAAM,UAAW,CAC5C,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAwB,CACnC,OAAQ,EACR,MAAO,CACL,0BAA2B,CACzB,CAAE,KAAM,YAAa,KAAM,YAAa,CACxC,CAAE,KAAM,kBAAmB,KAAM,QAAS,CAC1C,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAsB,CACjC,OAAQ,EACR,MAAO,CACL,+BAAgC,CAC9B,CAAE,KAAM,YAAa,KAAM,QAAS,CACpC,CAAE,KAAM,oBAAqB,KAAM,YAAa,CAChD,CAAE,KAAM,iBAAkB,KAAM,UAAW,CAC3C,CAAE,KAAM,eAAgB,KAAM,UAAW,CACzC,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CAEY,EAAgC,CAC3C,OAAQ,EACR,MAAO,CACL,wCAAyC,CACvC,CAAE,KAAM,YAAa,KAAM,QAAS,CACpC,CAAE,KAAM,oBAAqB,KAAM,YAAa,CAChD,CAAE,KAAM,mBAAoB,KAAM,UAAW,CAC7C,CAAE,KAAM,iBAAkB,KAAM,UAAW,CAC3C,CAAE,KAAM,eAAgB,KAAM,UAAW,CACzC,CAAE,KAAM,YAAa,KAAM,QAAS,CACrC,CACF,CACF,CEdK,EAAsC,CAC1C,MAAO,EAEP,OAAQ,EACR,QAAS,EACT,QAAS,EACT,QAAS,EACT,SAAU,EACV,SAAU,EACV,SAAU,EACX,CAEK,EAAsC,CAC1C,EAAG,QAEH,EAAG,SACH,EAAG,UACH,EAAG,UACH,EAAG,UACH,EAAG,WACH,EAAG,WACH,EAAG,WACJ,CAEK,EAAkE,CACtE,EAAG,EAEH,EAAG,EACH,EAAG,GACH,EAAG,GACH,EAAG,GACH,EAAG,IACH,EAAG,IACH,EAAG,IACJ,CAaD,OAAO,OAAO,EAAgB,CAC9B,OAAO,OAAO,EAAgB,CAC9B,OAAO,OAAO,EAA8B,CAC5C,OAAO,OAdiE,CACtE,EAAG,EACH,EAAG,EACH,GAAI,EACJ,GAAI,EACJ,GAAI,EACJ,IAAK,EACL,IAAK,EACL,IAAK,EACN,CAK2C,CAM5C,SAAgB,EAAY,EAAoC,CAC9D,OAAQ,EAAR,CACE,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACL,IAAK,GACH,MAAO,GACT,QACE,MAAO,IAIb,SAAgB,EAAc,EAAsC,CAIlE,OAHI,OAAO,GAAU,SAGd,KAAS,EAFP,GAuBX,SAAgB,EAAkB,EAAyB,CACzD,GAAI,CAAC,EAAc,EAAK,CACtB,MAAU,MAAM,yBAAyB,EAAK,GAAG,CAEnD,OAAO,EAAgB,GAUzB,SAAgB,EAA4B,EAAgC,CAC1E,GAAI,CAAC,EAAY,EAAO,CACtB,MAAU,MAAM,uBAAuB,EAAO,GAAG,CAEnD,IAAM,EAAK,EAA8B,GACzC,GAAI,EAAK,EACP,MAAU,MACR,yCAAyC,EAAG,sBAC7C,CAEH,OAAO,EC/KT,MAAM,GAAA,EAAA,EAAA,SAAuC,WAAW,CAClD,GAAA,EAAA,EAAA,SAAuC,WAAW,CAExD,SAAS,EAAiB,EAAmB,EAAgC,CAC3E,IAAM,EAAa,KAAK,KAAK,EAA4B,EAAQ,CAAG,EAAE,CACtE,OAAA,EAAA,EAAA,UAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAyB,EAAU,CAAE,CAAE,KAAM,EAAY,CAAC,CAAC,CAG7D,SAAgB,EACd,EACA,EACA,EACK,CACL,GAAI,EAAS,SAAW,GACtB,MAAM,IAAIA,EAAAA,EAAsB,oCAAoC,CAGtE,IAAM,EAAa,EAAiB,EAAW,EAAQ,CACjD,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QACG,aAAO,IAAI,WAAW,CAAC,EAAQ,CAAC,CAAC,aAAQ,EAAW,aAAQ,EAAS,CAAC,CAAC,CAC/E,CAED,OAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QAAwB,EAAA,EAAA,EAAA,OAAO,EAA6B,CAAE,EAAM,CAAC,CAAC,CAGxE,SAAgB,EACd,EACA,EACA,EACA,EACA,EACK,CACL,GAAI,CAAC,OAAO,UAAU,EAAM,EAAI,EAAQ,GAAK,EAAQ,IACnD,MAAM,IAAIA,EAAAA,EAAsB,6CAA6C,CAG/E,IAAM,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,QAA4B,EAAA,EAAA,EAAA,OAAO,EAA6B,CAAE,EAAe,CAAC,CAAC,CACnF,GAAA,EAAA,EAAA,YAAA,EAAA,EAAA,cAEF,CAAC,QAAS,UAAW,QAAS,UAAW,UAAU,CACnD,aAAO,EAA6B,CAAE,EAAU,EAAO,EAAY,EAAQ,CAC5E,CACF,CAEK,EAAY,EAAU,sBAQ5B,OAAA,EAAA,EAAA,OANG,OAAO,EAAW,CAAG,gFACrB,OAAO,EAAM,EAAI,IACjB,GAAa,IACb,OAAO,EAAQ,EAAI,GACpB,OAAA,EAAsB,CAEH,CAAE,KAAM,GAAI,CAAC,CCHpC,MAAM,GAAA,EAAA,EAAA,UAAmB,CACvB,+EACA,sEACA,gJACD,CAAC,CAEI,GAAA,EAAA,EAAA,UAAwB,CAAC,6DAA6D,CAAC,CAEvF,EAAyB,CAC7B,CAAE,KAAM,OAAQ,KAAM,SAAU,CAChC,CAAE,KAAM,UAAW,KAAM,SAAU,CACnC,CAAE,KAAM,UAAW,KAAM,UAAW,CACpC,CAAE,KAAM,oBAAqB,KAAM,UAAW,CAC/C,CAEK,EAAqB,CACzB,aAAc,EACd,+BAAgC,EAAoB,MAAM,+BAC3D,CACK,EAA+B,CACnC,aAAc,EACd,wCACE,EAA8B,MAAM,wCACvC,CACK,EAAuB,CAC3B,aAAc,EACd,0BAA2B,EAAsB,MAAM,0BACxD,CAEK,EAAsB,IAAI,IAAY,CAACC,EAAAA,QAAQ,GAAIC,EAAAA,QAAQ,GAAG,CAAC,CAMrE,SAAS,EAAqB,EAAgB,EAAkC,CAC9E,IAAM,EAAW,OAAQ,OAAO,EAAO,EAAI,GAAM,KAAM,CAOvD,OANI,IAAa,EACR,IAAa,GAElB,IAAa,GACf,EAAA,EAAA,OAAa,EAAU,CAAE,KAAM,GAAI,CAAC,CAE/B,EAGT,SAAS,EAAsB,EAG7B,CACA,GAAI,CAAC,EAAc,EAAM,KAAK,CAC5B,MAAM,IAAIC,EAAAA,EAAsB,uBAAuB,CAGzD,IAAM,EAAU,EAAkB,EAAM,KAAK,CAEzC,EACJ,GAAI,EAAM,OAAS,QACjB,IAAI,OAAO,EAAM,OAAU,UACzB,EAAQ,EAAM,MAAQ,GAAK,WAE3B,EAAQ,EAAM,MACV,IAAU,IAAM,IAAU,GAC5B,MAAM,IAAIA,EAAAA,EAAsB,0CAA0C,MAM9E,EAHS,EAAM,OAAS,WAChB,QAAA,EAAA,EAAA,YAAkB,EAAM,MAAM,CAAC,CAE/B,EAAM,MAGhB,GAAI,EAAQ,GACV,MAAM,IAAIA,EAAAA,EAAsB,mDAAmD,CAGrF,IAAM,EAAO,EAA4B,EAAQ,CAC3C,GAAY,IAAM,OAAO,EAAK,EAAI,GACxC,GAAI,EAAQ,EACV,MAAM,IAAIA,EAAAA,EACR,SAAS,EAAM,eAAe,EAAS,eAAe,IACvD,CAGH,MAAO,CAAE,UAAS,QAAO,CAG3B,IAAa,EAAb,KAAgE,CAC9D,GACA,GACA,UACA,YAEA,YAAY,EAAyB,CACnC,GAAI,EAAoB,IAAI,EAAO,QAAQ,CACzC,MAAM,IAAIG,EAAAA,EACR,0CAA0C,EAAO,QAAQ,0DAE1D,CAEH,MAAA,GAAKF,EAAAA,EAAAA,oBAA6B,CAChC,UAAW,OAAO,EAAO,SAAY,UAAA,EAAA,EAAA,MAAgB,EAAO,QAAQ,EAAA,EAAA,EAAA,QAAU,EAAO,QAAQ,CAC9F,CAAC,CACF,MAAA,EAAe,EACf,KAAK,WAAA,EAAA,EAAA,qBAAgC,EAAO,qBAAA,qEAA0C,CACtF,KAAK,aAAA,EAAA,EAAA,qBAAkC,EAAO,uBAAA,qEAA8C,CAG9F,MAAM,iBAA6C,CACjD,IAAM,GAAA,EAAA,EAAA,OAAkB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAC/D,GAAA,EAAA,EAAA,OAAmB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAElE,KAAO,IAAe,GACpB,GAAA,EAAA,EAAA,OAAmB,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAGhE,MAAO,CAAE,YAAW,aAAY,CAGlC,MAAM,aACJ,EACA,EACA,EACA,EAAe,EACW,CAC1B,MAAO,CACL,OAAQ,EAAoB,OAC1B,MAAA,EAAa,QACb,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,iCACb,QAAS,CACP,YACA,oBACA,eAAgB,OAAO,EAAe,CACtC,aAAc,OAAO,EAAa,CAClC,UAAW,OACZ,CACF,CAGH,MAAM,QAAQ,EAA+C,CAC3D,IAAM,EAAU,EAAO,OAAO,IAAI,EAAsB,CAClD,GAAA,EAAA,EAAA,YAA6B,EAAO,gBAAgB,CACpD,GAAA,EAAA,EAAA,YAAyB,EAAO,YAAY,CAE5C,EAAkB,EAAQ,KAAK,CAAE,UAAS,WAC9C,EAAsB,EAAS,EAAO,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC,CAAC,CAClF,CAEK,GAAA,EAAA,EAAA,WAA2B,EAAgB,OAAS,GAAA,EAAA,EAAA,QAAW,EAAgB,CAAG,KAAK,CAEvF,EAAU,EAAQ,KAAK,CAAE,WAAW,IACxC,EACE,EACA,EACA,EACA,MAAA,EAAa,mBACb,OAAO,MAAA,EAAa,QAAQ,CAC7B,CACF,CAEK,EAAiB,EAAQ,KAAK,CAAE,YAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAsB,EAAM,CAAE,CAAE,KAAM,GAAI,CAAC,CAAC,CAC5E,EAAsB,EAAe,OAAS,GAAA,EAAA,EAAA,QAAW,EAAe,CAAG,KAE3E,EAAY,MAAM,KAAK,YAAY,cAAc,CACrD,OAAQ,EAA0B,OAChC,MAAA,EAAa,eACb,MAAA,EAAa,0CACd,CACD,MAAO,CACL,uBAAwB,EAA0B,MAAM,uBACzD,CACD,YAAa,yBACb,QAAS,CACP,UAAW,EACX,cACA,kBACA,gBAAiB,OAAO,MAAA,EAAa,QAAQ,CAC7C,UAAW,EACZ,CACF,CAAC,CAEI,GAAA,EAAA,EAAA,UAAA,EAAA,EAAA,QACG,aACC,IAAI,WAAW,CAAC,EAAQ,OAAO,CAAC,CAAC,aACjC,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC,CAC1B,GAAG,EACH,EACA,EACD,CAAC,CACH,CAED,MAAO,CACL,QAAS,EAAQ,IAAK,IAAA,EAAA,EAAA,SAAmB,EAAO,CAAC,CACjD,aACD,CAGH,MAAM,YAAY,EAA8E,CAS9F,OARA,MAAM,MAAA,EACJ,EAAO,SAAA,EAAA,EAAA,YACI,EAAO,cAAc,EAAA,EAAA,EAAA,YACrB,EAAO,gBAAgB,CAClC,OACA,eACD,CAEM,MAAA,EAAqB,EAAO,QAAQ,CAG7C,MAAM,cAAc,EAAiD,CACnE,IAAM,EAAoB,EAKpB,GAHiB,MAAM,QAAQ,IACnC,EAAkB,IAAK,GAAW,MAAA,EAA6B,EAAO,CAAC,CACxE,EACwC,UAAW,GAAc,CAAC,EAAU,CAC7E,GAAI,IAAsB,GACxB,MAAM,IAAIM,EAAAA,EACR,UAAU,EAAkB,GAAoB,uCACjD,CAGH,IAAM,EAAgB,MAAM,QAAQ,IAClC,EAAkB,IAAK,GAAW,MAAA,EAAoB,EAAO,CAAC,CAC/D,CACK,EAAkD,OAAO,YAC7D,EAAkB,KAAK,EAAQ,IAAU,CACvC,EACA,EAAqB,EAAQ,EAAc,GAAQ,CACpD,CAAC,CACH,CAEK,GAAA,EAAA,EAAA,QAA+B,EAAc,IAAK,IAAA,EAAA,EAAA,MAAA,EAAA,EAAA,OAAgB,EAAE,CAAE,CAAE,KAAM,GAAI,CAAC,CAAC,CAAC,CAErF,EAAY,MAAM,KAAK,UAAU,cAAc,CACnD,OAAQ,EAAsB,OAC5B,MAAA,EAAa,eACb,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,4BACb,QAAS,CACP,UAAW,EACX,gBAAiB,EACjB,UAAW,KACZ,CACF,CAAC,CAIF,MAAO,CACL,cACA,wBACA,iBAAA,EAAA,EAAA,QAL6B,EAAA,EAAA,EAAA,OAAO,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC,CAAE,EAAU,CAAC,CAMtE,CAGH,MAAM,iCACJ,EACA,EACA,EACA,EACA,EAAe,EAC6B,CAC5C,IAAM,EAAwD,CACjD,YACX,oBACA,kBAAA,EAAA,EAAA,YAA6B,EAAiB,CAC9C,eAAgB,OAAO,EAAe,CACtC,aAAc,OAAO,EAAa,CAClC,UAAW,OACZ,CAED,MAAO,CACL,OAAQ,EAA8B,OACpC,OAAO,MAAA,EAAa,QAAQ,CAC5B,MAAA,EAAa,mCACd,CACD,MAAO,EACP,YAAa,0CACb,UACD,CAGH,MAAM,qBACJ,EACmD,CAQnD,OAPA,MAAM,MAAA,EACJ,EAAO,SAAA,EAAA,EAAA,YACI,EAAO,iBAAiB,EAAA,EAAA,EAAA,YACxB,EAAO,gBAAgB,EAAA,EAAA,EAAA,YACvB,EAAO,gBAAgB,CACnC,CAEM,MAAA,EAAqB,EAAO,QAAQ,CAG7C,MAAM,2BAA2B,EAAqD,CACpF,MAAM,IAAIJ,EAAAA,EAAmB,oCAAoC,CAGnE,MAAM,cAA+E,CACnF,MAAO,CAAE,YAAa,qBAAsB,UAAW,IAAI,WAAW,CAAC,GAAG,CAAC,CAAE,CAG/E,MAAM,gBACJ,EACsE,CACtE,MAAO,CAAE,aAAc,IAAI,WAAW,CAAC,GAAG,CAAC,CAAE,eAAgB,wBAAyB,CAGxF,MAAM,eAAkC,CACtC,OAAO,MAAA,EAAa,mBAGtB,WAAkB,EAKlB,CAAC,OAAO,UAAiB,CACvB,KAAK,WAAW,CAGlB,MAAA,EACE,EACmD,CACnD,IAAM,EAAS,MAAM,QAAQ,IAC3B,EAAkB,IAAK,GAAW,MAAA,EAAoB,EAAO,CAAC,CAC/D,CAED,OAAO,OAAO,YACZ,EAAkB,KAAK,EAAQ,IAAU,CACvC,EACA,EAAqB,EAAQ,EAAO,GAAQ,CAC7C,CAAC,CACH,CAGH,MAAA,EACE,EACA,EACA,EACA,EACA,EACe,CACf,GAAI,IAAiB,EACnB,MAAM,IAAII,EAAAA,EACR,GAAG,EAAW,WAAW,EAAa,uCAAuC,IAC9E,CAGH,IAAM,EAAU,MAAM,QAAQ,IAC5B,EAAkB,QAAS,GAAW,CACpC,MAAA,EAAqB,EAAQ,EAAa,CAC1C,MAAA,EAAqB,EAAQ,EAAgB,CAC9C,CAAC,CACH,CAED,IAAK,IAAI,EAAI,EAAG,EAAI,EAAkB,OAAQ,IAAK,CACjD,IAAM,EAAe,EAAQ,EAAI,GAC3B,EAAkB,EAAQ,EAAI,EAAI,GACxC,GAAI,CAAC,EACH,MAAM,IAAIA,EAAAA,EACR,GAAG,EAAW,GAAG,EAAa,yBAAyB,EAAe,aAAa,EAAkB,KACtG,CAEH,GAAI,CAAC,EACH,MAAM,IAAIA,EAAAA,EACR,YAAY,EAAgB,yBAAyB,EAAe,aAAa,EAAkB,KACpG,EAKP,MAAA,EACE,EACA,EACA,EACA,EACe,CACf,IAAM,EAAU,MAAM,QAAQ,IAC5B,EAAQ,IAAK,GACX,MAAA,EAAa,aAAa,CACxB,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,qCACd,KAAM,CAAC,EAAkB,EAAiB,EAAiB,EAAO,CACnE,CAAC,CACH,CACF,CAED,IAAK,IAAI,EAAI,EAAG,EAAI,EAAQ,OAAQ,IAClC,GAAI,CAAC,EAAQ,GACX,MAAM,IAAIA,EAAAA,EACR,UAAU,EAAQ,GAAI,uCACvB,CAKP,MAAA,EAAsB,EAAgB,EAAoC,CACxE,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,iBACd,KAAM,CAAC,EAAQ,EAAQ,CACxB,CAAC,CAGJ,MAAA,EAA8B,EAAkC,CAC9D,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,mBACtB,IAAK,EACL,aAAc,yBACd,KAAM,CAAC,EAAO,CACf,CAAC,CAGJ,MAAA,EAAqB,EAAiC,CACpD,OAAO,MAAA,EAAa,aAAa,CAC/B,QAAS,MAAA,EAAa,gBACtB,IAAK,EACL,aAAc,aACd,KAAM,CAAC,EAAO,CACf,CAAC,GCxdN,MAAa,EAAyB,CACpC,GAAG,EACH,gBAAiB,6CAClB,CAEY,EAAuB,CAClC,QAAS,OACT,QAAS,mCACT,eAAgB,EAAc,eAC9B,mBAAoB,6CACpB,gBAAiB,6CAEjB,mCAAoC,EAAc,mCAClD,0CACE,EAAc,0CAChB,gBAAiB,6CAClB"}
package/dist/cjs/index.cjs CHANGED
@@ -1,4 +1,4 @@
1
- Object.defineProperty(exports,Symbol.toStringTag,{value:`Module`});const e=require(`./relayer.cjs`),t=require(`./activity.cjs`),n=require(`./cleartext.cjs`),r=require(`./wrappers-registry.cjs`),i=require(`./transfer-batcher.cjs`);let a=require(`viem`);var o=class extends e.a{constructor(t,n){super(e.o.ApprovalFailed,t,n),this.name=`ApprovalFailedError`}},s=class extends e.a{constructor(t,n){super(e.o.TransactionReverted,t,n),this.name=`TransactionRevertedError`}};function c(e){if(!(e instanceof Error))return null;let t=e.cause;if(typeof t!=`object`||!t||!(`data`in t))return null;let{data:n}=t;return typeof n!=`object`||!n||!(`errorName`in n)?null:typeof n.errorName==`string`?n.errorName:null}const l={AlreadyDelegatedOrRevokedInSameBlock:e=>new t.et(`Only one delegate/revoke per (delegator, delegate, contract) per block. Wait for the next block before retrying.`,{cause:e}),SenderCannotBeContractAddress:e=>new t.$(`The contract address cannot be the caller address.`,{cause:e}),EnforcedPause:e=>new t.Q(`The ACL contract is paused. Delegation operations are temporarily disabled.`,{cause:e}),SenderCannotBeDelegate:e=>new t.st(`Cannot delegate to yourself (delegate === msg.sender).`,{cause:e}),DelegateCannotBeContractAddress:e=>new t.tt(`Delegate address cannot be the same as the contract address.`,{cause:e}),ExpirationDateBeforeOneHour:e=>new t.nt(`Expiration date must be at least 1 hour in the future.`,{cause:e}),ExpirationDateAlreadySetToSameValue:e=>new t.it(`The new expiration date is the same as the current one.`,{cause:e}),NotDelegatedYet:e=>new t.at(`Cannot revoke: no active delegation exists.`,{cause:e})};function u(e){let t=e instanceof Error?e:void 0,n=c(e);if(n&&n in l)return l[n](t);let r=e instanceof Error?e.message:String(e);for(let[e,n]of Object.entries(l))if(r.includes(e))return n(t);return null}var d=class{#e=null;#t=null;#n;#r;#i;constructor(e=`CredentialStore`,t=1,n=`credentials`){this.#n=e,this.#r=t,this.#i=n}#a(){return this.#e?Promise.resolve(this.#e):(this.#t||=new Promise((e,t)=>{let n=indexedDB.open(this.#n,this.#r);n.onupgradeneeded=()=>{let e=n.result;e.objectStoreNames.contains(this.#i)||e.createObjectStore(this.#i,{keyPath:`key`})},n.onsuccess=()=>{this.#e=n.result,this.#t=null,this.#e.onversionchange=()=>{console.warn(`IndexedDB "${this.#n}" closing due to version change from another tab`),this.#e?.close(),this.#e=null,this.#t=null},this.#e.onclose=()=>{this.#e=null,this.#t=null},e(this.#e)},n.onerror=()=>{this.#e=null,this.#t=null,t(n.error)}}),this.#t)}async#o(e,t){let n=await this.#a();return new Promise((r,i)=>{let a=n.transaction(this.#i,e);a.onabort=()=>i(a.error??Error(`Transaction aborted`));let o=t(a.objectStore(this.#i));e===`readonly`?o.onsuccess=()=>r(o.result):a.oncomplete=()=>r(o.result),o.onerror=()=>i(o.error)})}async get(e){return(await this.#o(`readonly`,t=>t.get(e)))?.value??null}async set(e,t){await this.#o(`readwrite`,n=>n.put({key:e,value:t}))}async delete(e){await this.#o(`readwrite`,t=>t.delete(e))}async clear(){await this.#o(`readwrite`,e=>e.clear())}};const f=new d,p=3e4;var m=class{#e=null;#t=new Map;#n=null;config;logger;constructor(e,t){this.config=e,this.logger=t}async initWorker(){return this.#e?this.#e:(this.#n||=this.#r().catch(e=>{throw this.#n=null,e}),this.#n)}async#r(){let e=this.createWorker();this.wireEvents(e);try{let{type:t,payload:n}=this.getInitPayload();await this.sendRequestTo(e,t,n,6e4),this.onWorkerReady?.(e),this.#e=e}catch(t){throw this.terminateWorker(e),t}return this.#e}terminate(){if(this.#e){for(let[e,t]of this.#t)clearTimeout(t.timeoutId),t.reject(Error(`Worker terminated`)),this.#t.delete(e);this.terminateWorker(this.#e),this.#e=null}this.#n=null}handleResponse(e){let t=this.#t.get(e.id);if(!t){this.logger?.warn(`[WorkerClient] Received response for unknown request`,{id:e.id});return}let n=Math.round(performance.now()-t.startTime);if(clearTimeout(t.timeoutId),this.#t.delete(e.id),e.success)this.logger?.debug(`[WorkerClient] ← ${t.type} OK`,{id:e.id,elapsed:n}),t.resolve(e.data);else{this.logger?.error(`[WorkerClient] ← ${t.type} FAILED`,{id:e.id,elapsed:n,error:e.error});let r=Error(e.error);`statusCode`in e&&typeof e.statusCode==`number`&&(r.statusCode=e.statusCode),t.reject(r)}}handleWorkerError(e){this.logger?.error(`[WorkerClient] Worker error`,{error:e});let t=this.#e;this.#e=null,this.#i(`Worker error: ${e}`),t&&this.terminateWorker(t)}handleWorkerMessageError(){this.logger?.error(`[WorkerClient] Message deserialization failed`);let e=this.#e;this.#e=null,this.#i(`Worker message deserialization failed`),e&&this.terminateWorker(e)}sendRequestTo(e,t,n,r=p){return new Promise((i,a)=>{let o=this.generateRequestId(),s=performance.now();this.logger?.debug(`[WorkerClient] → ${t}`,{id:o});let c=setTimeout(()=>{this.#t.delete(o);let e=Math.round(performance.now()-s);this.logger?.error(`[WorkerClient] ${t} timed out after ${r}ms`,{id:o,elapsed:e}),a(Error(`Request ${t} timed out after ${r}ms`))},r);this.#t.set(o,{resolve:i,reject:a,timeoutId:c,startTime:s,type:t});let l={id:o,type:t,payload:n};this.postMessage(e,l)})}async sendRequest(e,t,n=p){let r=await this.initWorker();return this.sendRequestTo(r,e,t,n)}async generateKeypair(){return this.sendRequest(`GENERATE_KEYPAIR`,{})}async createEIP712(e){return this.sendRequest(`CREATE_EIP712`,e)}async encrypt(e){return this.sendRequest(`ENCRYPT`,e)}async userDecrypt(e){return this.sendRequest(`USER_DECRYPT`,e)}async publicDecrypt(e){return this.sendRequest(`PUBLIC_DECRYPT`,{handles:e})}async createDelegatedUserDecryptEIP712(e){return this.sendRequest(`CREATE_DELEGATED_EIP712`,e)}async delegatedUserDecrypt(e){return this.sendRequest(`DELEGATED_USER_DECRYPT`,e)}async requestZKProofVerification(e){return this.sendRequest(`REQUEST_ZK_PROOF_VERIFICATION`,{zkProof:e})}async getPublicKey(){return this.sendRequest(`GET_PUBLIC_KEY`,{})}async getPublicParams(e){return this.sendRequest(`GET_PUBLIC_PARAMS`,{bits:e})}#i(e){for(let[t,n]of this.#t)clearTimeout(n.timeoutId),n.reject(Error(e)),this.#t.delete(t)}};function h(e){try{return t.X(e,`runtime`),t.Z(e,`id`,`runtime.id`),t.J(e,`getURL`,`runtime.getURL`),!0}catch{return!1}}function g(){let e=globalThis;for(let n of[e.chrome,e.browser])try{if(t.X(n,`ns`),h(n.runtime))return n.runtime}catch{continue}}var _=`(function() {
1
+ Object.defineProperty(exports,Symbol.toStringTag,{value:`Module`});const e=require(`./relayer.cjs`),t=require(`./activity.cjs`),n=require(`./cleartext.cjs`),r=require(`./wrappers-registry.cjs`),i=require(`./transfer-batcher.cjs`);let a=require(`viem`);var o=class extends e.a{constructor(t,n){super(e.o.ApprovalFailed,t,n),this.name=`ApprovalFailedError`}},s=class extends e.a{constructor(t,n){super(e.o.TransactionReverted,t,n),this.name=`TransactionRevertedError`}},c=class extends e.a{requested;available;token;constructor(t,n,r){super(e.o.InsufficientConfidentialBalance,t,r),this.name=`InsufficientConfidentialBalanceError`,this.requested=n.requested,this.available=n.available,this.token=n.token}},l=class extends e.a{requested;available;token;constructor(t,n,r){super(e.o.InsufficientERC20Balance,t,r),this.name=`InsufficientERC20BalanceError`,this.requested=n.requested,this.available=n.available,this.token=n.token}},u=class extends e.a{constructor(t,n){super(e.o.BalanceCheckUnavailable,t,n),this.name=`BalanceCheckUnavailableError`}},d=class extends e.a{constructor(t,n){super(e.o.ERC20ReadFailed,t,n),this.name=`ERC20ReadFailedError`}};function f(e){if(!(e instanceof Error))return null;let t=e.cause;if(typeof t!=`object`||!t||!(`data`in t))return null;let{data:n}=t;return typeof n!=`object`||!n||!(`errorName`in n)?null:typeof n.errorName==`string`?n.errorName:null}const p={AlreadyDelegatedOrRevokedInSameBlock:e=>new t.nt(`Only one delegate/revoke per (delegator, delegate, contract) per block. Wait for the next block before retrying.`,{cause:e}),SenderCannotBeContractAddress:e=>new t.tt(`The contract address cannot be the caller address.`,{cause:e}),EnforcedPause:e=>new t.et(`The ACL contract is paused. Delegation operations are temporarily disabled.`,{cause:e}),SenderCannotBeDelegate:e=>new t.lt(`Cannot delegate to yourself (delegate === msg.sender).`,{cause:e}),DelegateCannotBeContractAddress:e=>new t.rt(`Delegate address cannot be the same as the contract address.`,{cause:e}),ExpirationDateBeforeOneHour:e=>new t.it(`Expiration date must be at least 1 hour in the future.`,{cause:e}),ExpirationDateAlreadySetToSameValue:e=>new t.ot(`The new expiration date is the same as the current one.`,{cause:e}),NotDelegatedYet:e=>new t.st(`Cannot revoke: no active delegation exists.`,{cause:e})};function m(e){let t=e instanceof Error?e:void 0,n=f(e);if(n&&n in p)return p[n](t);let r=e instanceof Error?e.message:String(e);for(let[e,n]of Object.entries(p))if(r.includes(e))return n(t);return null}var h=class{#e=null;#t=null;#n;#r;#i;constructor(e=`CredentialStore`,t=1,n=`credentials`){this.#n=e,this.#r=t,this.#i=n}#a(){return this.#e?Promise.resolve(this.#e):(this.#t||=new Promise((e,t)=>{let n=indexedDB.open(this.#n,this.#r);n.onupgradeneeded=()=>{let e=n.result;e.objectStoreNames.contains(this.#i)||e.createObjectStore(this.#i,{keyPath:`key`})},n.onsuccess=()=>{this.#e=n.result,this.#t=null,this.#e.onversionchange=()=>{console.warn(`IndexedDB "${this.#n}" closing due to version change from another tab`),this.#e?.close(),this.#e=null,this.#t=null},this.#e.onclose=()=>{this.#e=null,this.#t=null},e(this.#e)},n.onerror=()=>{this.#e=null,this.#t=null,t(n.error)}}),this.#t)}async#o(e,t){let n=await this.#a();return new Promise((r,i)=>{let a=n.transaction(this.#i,e);a.onabort=()=>i(a.error??Error(`Transaction aborted`));let o=t(a.objectStore(this.#i));e===`readonly`?o.onsuccess=()=>r(o.result):a.oncomplete=()=>r(o.result),o.onerror=()=>i(o.error)})}async get(e){return(await this.#o(`readonly`,t=>t.get(e)))?.value??null}async set(e,t){await this.#o(`readwrite`,n=>n.put({key:e,value:t}))}async delete(e){await this.#o(`readwrite`,t=>t.delete(e))}async clear(){await this.#o(`readwrite`,e=>e.clear())}};const g=new h,_=3e4;var v=class{#e=null;#t=new Map;#n=null;config;logger;constructor(e,t){this.config=e,this.logger=t}async initWorker(){return this.#e?this.#e:(this.#n||=this.#r().catch(e=>{throw this.#n=null,e}),this.#n)}async#r(){let e=this.createWorker();this.wireEvents(e);try{let{type:t,payload:n}=this.getInitPayload();await this.sendRequestTo(e,t,n,6e4),this.onWorkerReady?.(e),this.#e=e}catch(t){throw this.terminateWorker(e),t}return this.#e}terminate(){if(this.#e){for(let[e,t]of this.#t)clearTimeout(t.timeoutId),t.reject(Error(`Worker terminated`)),this.#t.delete(e);this.terminateWorker(this.#e),this.#e=null}this.#n=null}handleResponse(e){let t=this.#t.get(e.id);if(!t){this.logger?.warn(`[WorkerClient] Received response for unknown request`,{id:e.id});return}let n=Math.round(performance.now()-t.startTime);if(clearTimeout(t.timeoutId),this.#t.delete(e.id),e.success)this.logger?.debug(`[WorkerClient] ← ${t.type} OK`,{id:e.id,elapsed:n}),t.resolve(e.data);else{this.logger?.error(`[WorkerClient] ← ${t.type} FAILED`,{id:e.id,elapsed:n,error:e.error});let r=Error(e.error);`statusCode`in e&&typeof e.statusCode==`number`&&(r.statusCode=e.statusCode),t.reject(r)}}handleWorkerError(e){this.logger?.error(`[WorkerClient] Worker error`,{error:e});let t=this.#e;this.#e=null,this.#i(`Worker error: ${e}`),t&&this.terminateWorker(t)}handleWorkerMessageError(){this.logger?.error(`[WorkerClient] Message deserialization failed`);let e=this.#e;this.#e=null,this.#i(`Worker message deserialization failed`),e&&this.terminateWorker(e)}sendRequestTo(e,t,n,r=_){return new Promise((i,a)=>{let o=this.generateRequestId(),s=performance.now();this.logger?.debug(`[WorkerClient] → ${t}`,{id:o});let c=setTimeout(()=>{this.#t.delete(o);let e=Math.round(performance.now()-s);this.logger?.error(`[WorkerClient] ${t} timed out after ${r}ms`,{id:o,elapsed:e}),a(Error(`Request ${t} timed out after ${r}ms`))},r);this.#t.set(o,{resolve:i,reject:a,timeoutId:c,startTime:s,type:t});let l={id:o,type:t,payload:n};this.postMessage(e,l)})}async sendRequest(e,t,n=_){let r=await this.initWorker();return this.sendRequestTo(r,e,t,n)}async generateKeypair(){return this.sendRequest(`GENERATE_KEYPAIR`,{})}async createEIP712(e){return this.sendRequest(`CREATE_EIP712`,e)}async encrypt(e){return this.sendRequest(`ENCRYPT`,e)}async userDecrypt(e){return this.sendRequest(`USER_DECRYPT`,e)}async publicDecrypt(e){return this.sendRequest(`PUBLIC_DECRYPT`,{handles:e})}async createDelegatedUserDecryptEIP712(e){return this.sendRequest(`CREATE_DELEGATED_EIP712`,e)}async delegatedUserDecrypt(e){return this.sendRequest(`DELEGATED_USER_DECRYPT`,e)}async requestZKProofVerification(e){return this.sendRequest(`REQUEST_ZK_PROOF_VERIFICATION`,{zkProof:e})}async getPublicKey(){return this.sendRequest(`GET_PUBLIC_KEY`,{})}async getPublicParams(e){return this.sendRequest(`GET_PUBLIC_PARAMS`,{bits:e})}#i(e){for(let[t,n]of this.#t)clearTimeout(n.timeoutId),n.reject(Error(e)),this.#t.delete(t)}};function y(e){try{return t.Q(e,`runtime`),t.$(e,`id`,`runtime.id`),t.X(e,`getURL`,`runtime.getURL`),!0}catch{return!1}}function b(){let e=globalThis;for(let n of[e.chrome,e.browser])try{if(t.Q(n,`ns`),y(n.runtime))return n.runtime}catch{continue}}var x=class extends v{constructor(e){super(e,e.logger)}createWorker(){let e=b();if(e)return new Worker(e.getURL(`relayer-sdk.worker.js`));let t=URL.createObjectURL(new Blob([`(function() {
2
2
  //#region src/utils/assertions.ts
3
3
  function assertNonNullable(value, context) {
4
4
  if (value === null || value === void 0) throw new TypeError(\`\${context} must not be null or undefined\`);
@@ -511,5 +511,5 @@ Object.defineProperty(exports,Symbol.toStringTag,{value:`Module`});const e=requi
511
511
  };
512
512
  //#endregion
513
513
  })();
514
- `,v=class extends m{constructor(e){super(e,e.logger)}createWorker(){let e=g();if(e)return new Worker(e.getURL(`relayer-sdk.worker.js`));let t=URL.createObjectURL(new Blob([_],{type:`application/javascript`}));try{return new Worker(t)}finally{URL.revokeObjectURL(t)}}wireEvents(e){e.onmessage=e=>this.handleResponse(e.data),e.onerror=e=>this.handleWorkerError(e.message),e.onmessageerror=()=>this.handleWorkerMessageError()}postMessage(e,t){e.postMessage(t)}terminateWorker(e){e.terminate()}generateRequestId(){return crypto.randomUUID()}getInitPayload(){let{cdnUrl:e,fhevmConfig:t,csrfToken:n,integrity:r,thread:i}=this.config;return{type:`INIT`,payload:{cdnUrl:e,fhevmConfig:t,csrfToken:n,integrity:r,thread:i}}}async updateCsrf(e){await this.sendRequest(`UPDATE_CSRF`,{csrfToken:e})}};const y=8192,b=300*1e3;function x(e){let t=[];for(let n=0;n<e.length;n+=y)t.push(String.fromCharCode(...e.subarray(n,n+y)));return btoa(t.join(``))}function S(e){let t;try{t=atob(e)}catch{throw Error(`Invalid base64 data (length: ${e.length})`)}if(t.length===0)throw Error(`Decoded artifact is empty`);let n=new Uint8Array(t.length);for(let e=0;e<t.length;e++)n[e]=t.charCodeAt(e);return n}function C(e){return`fhe:pubkey:${e}`}function w(e,t){return`fhe:params:${e}:${t}`}function T(e){return`fhe:params-index:${e}`}function E(e){t.X(e,`CachedPublicKey`),t.Z(e,`publicKeyId`,`CachedPublicKey.publicKeyId`),t.Z(e,`publicKey`,`CachedPublicKey.publicKey`)}function D(e){t.X(e,`CachedPublicParams`),t.Z(e,`publicParamsId`,`CachedPublicParams.publicParamsId`),t.Z(e,`publicParams`,`CachedPublicParams.publicParams`)}var O=class{#e;#t;#n;#r;#i;#a;#o=new Map;#s=null;#c=new Map;#l=null;#u=null;constructor(e){this.#e=e.storage,this.#t=e.chainId,this.#n=e.relayerUrl,this.#r=(e.ttl??86400)*1e3,this.#i=e.logger??console}async getPublicKey(e){if(this.#a!==void 0)return this.#a;if(this.#s)return this.#s;this.#s=this.#d(e);try{return await this.#s}finally{this.#s=null}}async#d(e){let n=C(this.#t);try{let e=await this.#e.get(n);if(e){E(e);let t={publicKeyId:e.publicKeyId,publicKey:S(e.publicKey)};return this.#a=t,t}}catch(e){await this.#g(n),this.#i.warn(`Failed to read public key from persistent storage, falling back to network fetch`,{chainId:this.#t,error:t.q(e).message})}let r=await e();if(r===null)return null;this.#a=r;try{let e={publicKeyId:r.publicKeyId,publicKey:x(r.publicKey),lastValidatedAt:Date.now()};await this.#e.set(n,e)}catch(e){this.#i.warn(`Failed to persist public key to storage`,{chainId:this.#t,error:t.q(e).message})}return r}async getPublicParams(e,t){let n=this.#o.get(e);if(n!==void 0)return n;let r=this.#c.get(e);if(r)return r;let i=this.#f(e,t);this.#c.set(e,i);try{return await i}finally{this.#c.delete(e)}}async#f(e,n){let r=w(this.#t,e);try{let t=await this.#e.get(r);if(t){D(t);let n={publicParamsId:t.publicParamsId,publicParams:S(t.publicParams)};return this.#o.set(e,n),n}}catch(n){await this.#g(r),this.#i.warn(`Failed to read public params from persistent storage, falling back to network fetch`,{chainId:this.#t,bits:e,error:t.q(n).message})}let i=await n();if(i===null)return null;this.#o.set(e,i);try{let n={publicParamsId:i.publicParamsId,publicParams:x(i.publicParams),lastValidatedAt:Date.now()};await this.#e.set(r,n);let a=T(this.#t),o=await this.#e.get(a).catch(e=>(this.#i.warn(`Failed to read params index from storage`,{chainId:this.#t,error:t.q(e).message}),null))??[];o.includes(e)||await this.#e.set(a,[...o,e])}catch(n){this.#i.warn(`Failed to persist public params to storage`,{chainId:this.#t,bits:e,error:t.q(n).message})}return i}async revalidateIfDue(){if(this.#l)return this.#l;this.#l=this.#p();try{return await this.#l}finally{this.#l=null}}async#p(){let e=Date.now();if(this.#u!==null&&e-this.#u<this.#r||!this.#n)return!1;let n=C(this.#t),r=null,i=[];try{let[a,o]=await Promise.all([this.#e.get(n),this.#h()]);if(a)try{E(a),r={...a,lastValidatedAt:a.lastValidatedAt??0}}catch(e){this.#i.warn(`Corrupt public key cache entry detected, deleting`,{chainId:this.#t,error:t.q(e).message}),await this.#g(n)}if(i=o,!r)return!1;if([r,...i.map(e=>e.data)].every(t=>e-t.lastValidatedAt<this.#r))return this.#u=e,!1;let s=await globalThis.fetch(`${this.#n}/keyurl`);if(!s.ok){let t=e-this.#r+b;return this.#i.warn(`Manifest fetch failed during revalidation, retrying in 5 min`,{status:s.status,relayerUrl:this.#n}),await this.#v(n,{...r,lastValidatedAt:t},i.map(e=>({...e,data:{...e.data,lastValidatedAt:t}}))),this.#u=t,!1}let c=await s.json();if(!c||typeof c!=`object`||!(`fhePublicKey`in c)||!c.fhePublicKey?.urls?.length||!(`crs`in c)||typeof c.crs!=`object`){this.#i.error(`Relayer manifest has unexpected shape — check relayer URL and API version`,{relayerUrl:this.#n,manifestKeys:c&&typeof c==`object`?Object.keys(c):[]});let t=e-this.#r+b;return await this.#v(n,{...r,lastValidatedAt:t},i.map(e=>({...e,data:{...e.data,lastValidatedAt:t}}))),this.#u=t,!1}let l=c,u=l.fhePublicKey.urls[0];if(r.artifactUrl&&u&&u!==r.artifactUrl)return await this.#_(n,i),this.#u=null,!0;let d={...r,lastValidatedAt:e};if(u){let e=await this.#m(u,r);if(!e.fresh)return await this.#_(n,i),this.#u=null,!0;d={...d,artifactUrl:u,etag:e.etag,lastModified:e.lastModified}}let f=[];for(let t of i){let r=l.crs[String(t.bits)]?.urls[0];if(t.data.artifactUrl&&r&&r!==t.data.artifactUrl)return await this.#_(n,i),this.#u=null,!0;let a={...t.data,lastValidatedAt:e};if(r){let e=await this.#m(r,t.data);if(!e.fresh)return await this.#_(n,i),this.#u=null,!0;a={...a,artifactUrl:r,etag:e.etag,lastModified:e.lastModified}}f.push({...t,data:a})}return await this.#v(n,d,f),this.#u=e,!1}catch(a){let o=t.q(a),s=a instanceof TypeError||a instanceof ReferenceError||a instanceof RangeError||a instanceof SyntaxError,c=s?`error`:`warn`;this.#i[c](s?`Unexpected error during revalidation (possible bug)`:`Revalidation failed, using cached artifacts (fail-open)`,{chainId:this.#t,relayerUrl:this.#n,error:o.message});let l=e-this.#r+b;try{r&&await this.#v(n,{...r,lastValidatedAt:l},i.map(e=>({...e,data:{...e.data,lastValidatedAt:l}})))}catch(e){this.#i.warn(`Failed to update validation timestamps after revalidation error`,{chainId:this.#t,error:t.q(e).message})}return this.#u=l,!1}}async#m(e,t){let n=!!(t.etag||t.lastModified),r={};t.etag&&(r[`If-None-Match`]=t.etag),t.lastModified&&(r[`If-Modified-Since`]=t.lastModified);let i=await globalThis.fetch(e,{method:`HEAD`,headers:r});if(i.status===405&&(i=await globalThis.fetch(e,{headers:r})),!i.ok&&i.status!==304)throw Error(`Artifact freshness check failed: HEAD ${e} returned ${i.status}`);let a=i.headers.get(`etag`)??void 0,o=i.headers.get(`last-modified`)??void 0;return i.status===304?{fresh:!0,etag:a??t.etag,lastModified:o??t.lastModified}:n?{fresh:!1,etag:a,lastModified:o}:{fresh:!0,etag:a,lastModified:o}}async#h(){let e=T(this.#t),n=await this.#e.get(e).catch(e=>(this.#i.warn(`Failed to read params index, CRS revalidation may be incomplete`,{chainId:this.#t,error:t.q(e).message}),null))??[],r=new Set([...this.#o.keys(),...n]),i=Array.from(r);return(await Promise.all(i.map(async e=>{let n=w(this.#t,e),r;try{r=await this.#e.get(n)}catch(n){return this.#i.warn(`Failed to read cached params entry during revalidation`,{chainId:this.#t,bits:e,error:t.q(n).message}),null}if(!r)return null;try{return D(r),{bits:e,key:n,data:{...r,lastValidatedAt:r.lastValidatedAt??0}}}catch(r){return this.#i.warn(`Corrupt params cache entry detected, deleting`,{chainId:this.#t,bits:e,error:t.q(r).message}),await this.#g(n),null}}))).filter(e=>e!==null)}async#g(e){await this.#e.delete(e).catch(n=>{this.#i.warn(`Failed to delete cache entry`,{chainId:this.#t,key:e,error:t.q(n).message})})}async#_(e,n){let r=T(this.#t);try{await Promise.all([this.#e.delete(e),this.#e.delete(r),...n.map(e=>this.#e.delete(e.key))])}catch(e){this.#i.warn(`Failed to clear stale artifacts from persistent storage`,{chainId:this.#t,error:t.q(e).message})}this.#a=void 0,this.#o.clear()}async#v(e,n,r){let i=[this.#e.set(e,n).catch(e=>{this.#i.warn(`Failed to update public key validation timestamp`,{chainId:this.#t,error:t.q(e).message})}),...r.map(e=>this.#e.set(e.key,e.data).catch(e=>{this.#i.warn(`Failed to update params validation timestamp`,{chainId:this.#t,error:t.q(e).message})}))];await Promise.all(i)}},k=class{#e=null;#t=null;#n=null;#r=!1;#i=null;#a=null;#o=null;#s=`idle`;#c;#l;constructor(e){this.#l=e}get status(){return this.#s}get initError(){return this.#c}#u(e,t){this.#s=e,this.#c=t,this.#l.onStatusChange?.(e,t)}async#d(){let e=await this.#l.getChainId(),{transports:t,security:r,threads:i}=this.#l;if(i!==void 0&&(!Number.isInteger(i)||i<1))throw Error(`Invalid thread count: ${i}. Must be a positive integer.`);return i!==void 0&&globalThis.SharedArrayBuffer===void 0&&this.#l.logger?.warn(`threads option requires SharedArrayBuffer (COOP/COEP headers). Falling back to single-threaded.`),{cdnUrl:`https://cdn.zama.org/relayer-sdk-js/0.4.2/relayer-sdk-js.umd.cjs`,fhevmConfig:Object.assign({},n.i[e],t[e]),csrfToken:r?.getCsrfToken?.()??``,integrity:r?.integrityCheck===!1?void 0:`114438b01d518b53a447fa3e8bfbe6e71031cb42ac43219bb9f53488456fdfa4bbc8989628366d436e68f6526c7647eb`,logger:this.#l.logger,thread:i}}async#f(){if(this.#n)return this.#n;this.#n=this.#m();try{return await this.#n}finally{this.#n=null}}#p(){this.#e?.terminate(),this.#e=null,this.#t=null,this.#a=null}async#m(){this.#r&&(this.#r=!1,this.#e=null,this.#t=null,this.#i=null);let t=await this.#l.getChainId();if(this.#i!==null&&t!==this.#i&&this.#p(),this.#i=t,this.#o||=this.#l.fheArtifactStorage??new d(`FheArtifactCache`,1,`artifacts`),!this.#a){let e=Object.assign({},n.i[t],this.#l.transports[t]);this.#a=new O({storage:this.#o,chainId:t,relayerUrl:e.relayerUrl,ttl:this.#l.fheArtifactCacheTTL,logger:this.#l.logger})}if(this.#a){let e=!1;try{e=await this.#a.revalidateIfDue()}catch(e){this.#l.logger?.warn(`Artifact revalidation failed, proceeding with potentially stale cache`,{error:e instanceof Error?e.message:String(e)})}e&&(this.#l.logger?.info(`Cached FHE artifacts are stale — reinitializing`),this.#p())}return this.#t||=(this.#u(`initializing`),this.#h().then(e=>(this.#u(`ready`),e)).catch(t=>{this.#t=null;let n=t instanceof e.a?t:new e.t(`Failed to initialize FHE worker`,{cause:t});throw this.#u(`error`,n),n})),this.#t}async#h(){let e=new v(await this.#d());if(await e.initWorker(),this.#r)throw e.terminate(),Error(`RelayerWeb was terminated during initialization`);return this.#e=e,e}terminate(){this.#r=!0,this.#e&&=(this.#e.terminate(),null),this.#t=null,this.#n=null}async#g(){if(this.#e){let e=this.#l.security?.getCsrfToken?.()??``;e&&await this.#e.updateCsrf(e)}}async generateKeypair(){let e=await(await this.#f()).generateKeypair();return{publicKey:e.publicKey,privateKey:e.privateKey}}async createEIP712(e,t,r,i=7){let a=await(await this.#f()).createEIP712({publicKey:e,contractAddresses:t,startTimestamp:r,durationDays:i}),o={name:a.domain.name,version:a.domain.version,chainId:a.domain.chainId,verifyingContract:a.domain.verifyingContract};return{domain:o,types:{EIP712Domain:n.c(o),UserDecryptRequestVerification:a.types.UserDecryptRequestVerification},message:{publicKey:a.message.publicKey,contractAddresses:a.message.contractAddresses,startTimestamp:a.message.startTimestamp,durationDays:a.message.durationDays,extraData:a.message.extraData}}}async encrypt(e){let{values:t,contractAddress:r,userAddress:i}=e;return n.l(async()=>{let e=await this.#f();await this.#g();let n=await e.encrypt({values:t,contractAddress:r,userAddress:i});return{handles:n.handles,inputProof:n.inputProof}})}async userDecrypt(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),(await t.userDecrypt(e)).clearValues})}async publicDecrypt(e){return n.l(async()=>{let t=await this.#f();await this.#g();let n=await t.publicDecrypt(e);return{clearValues:n.clearValues,abiEncodedClearValues:n.abiEncodedClearValues,decryptionProof:n.decryptionProof}})}async createDelegatedUserDecryptEIP712(e,t,n,r,i=7){return(await this.#f()).createDelegatedUserDecryptEIP712({publicKey:e,contractAddresses:t,delegatorAddress:n,startTimestamp:r,durationDays:i})}async delegatedUserDecrypt(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),(await t.delegatedUserDecrypt(e)).clearValues})}async requestZKProofVerification(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),t.requestZKProofVerification(e)})}async getPublicKey(){let e=await this.#f();return this.#a?this.#a.getPublicKey(async()=>(await e.getPublicKey()).result):(await e.getPublicKey()).result}async getPublicParams(e){let t=await this.#f();return this.#a?this.#a.getPublicParams(e,async()=>(await t.getPublicParams(e)).result):(await t.getPublicParams(e)).result}async getAclAddress(){let t=await this.#l.getChainId(),r=Object.assign({},n.i[t],this.#l.transports[t]);if(!r.aclContractAddress)throw new e.t(`No ACL address configured for chain ${t}`);return r.aclContractAddress}},A=class n extends t.w{static ZERO_ADDRESS=`0x0000000000000000000000000000000000000000`;wrapper;#e;#t=null;constructor(e){super(e),this.wrapper=e.wrapper?(0,a.getAddress)(e.wrapper):this.address}async#n(){return this.#e===void 0?(this.#t||=this.signer.readContract(r.m(this.wrapper)).then(e=>(this.#e=e,this.#t=null,e)).catch(e=>{throw this.#t=null,e}),this.#t):this.#e}async confidentialTransfer(n,i,o){let c=(0,a.getAddress)(n),l,u,d=Date.now();try{this.emit({type:t.O.EncryptStart}),{handles:l,inputProof:u}=await this.relayer.encrypt({values:[{value:i,type:`euint64`}],contractAddress:this.address,userAddress:await this.signer.getAddress()}),this.emit({type:t.O.EncryptEnd,durationMs:Date.now()-d}),j(()=>o?.onEncryptComplete?.())}catch(n){throw this.emit({type:t.O.EncryptError,error:t.q(n),durationMs:Date.now()-d}),n instanceof e.a?n:new e.i(`Failed to encrypt transfer amount`,{cause:n})}if(l.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.y(this.address,c,l[0],u));return this.emit({type:t.O.TransferSubmitted,txHash:e}),j(()=>o?.onTransferSubmitted?.(e)),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`transfer`,error:t.q(n)}),n instanceof e.a?n:new s(`Transfer transaction failed`,{cause:n})}}async confidentialTransferFrom(n,i,o,c){let l=(0,a.getAddress)(n),u=(0,a.getAddress)(i),d,f,p=Date.now();try{this.emit({type:t.O.EncryptStart}),{handles:d,inputProof:f}=await this.relayer.encrypt({values:[{value:o,type:`euint64`}],contractAddress:this.address,userAddress:l}),this.emit({type:t.O.EncryptEnd,durationMs:Date.now()-p}),j(()=>c?.onEncryptComplete?.())}catch(n){throw this.emit({type:t.O.EncryptError,error:t.q(n),durationMs:Date.now()-p}),n instanceof e.a?n:new e.i(`Failed to encrypt transferFrom amount`,{cause:n})}if(d.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.b(this.address,l,u,d[0],f));return this.emit({type:t.O.TransferFromSubmitted,txHash:e}),j(()=>c?.onTransferSubmitted?.(e)),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`transferFrom`,error:t.q(n)}),n instanceof e.a?n:new s(`TransferFrom transaction failed`,{cause:n})}}async approve(n,i){let s=(0,a.getAddress)(n);try{let e=await this.signer.writeContract(r.E(this.address,s,i));return this.emit({type:t.O.ApproveSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`approve`,error:t.q(n)}),n instanceof e.a?n:new o(`Operator approval failed`,{cause:n})}}async isApproved(e,t){let n=(0,a.getAddress)(e),i=t?(0,a.getAddress)(t):await this.signer.getAddress();return this.signer.readContract(r.C(this.address,i,n))}async shield(i,o){if(await this.#n()===n.ZERO_ADDRESS)return this.shieldETH(i,i+(o?.fees??0n));let c=o?.approvalStrategy??`exact`;c!==`skip`&&await this.#a(i,c===`max`,o?.callbacks);try{let e=o?.to?(0,a.getAddress)(o.to):await this.signer.getAddress(),n=await this.signer.writeContract(r.h(this.wrapper,e,i));return this.emit({type:t.O.ShieldSubmitted,txHash:n}),j(()=>o?.callbacks?.onShieldSubmitted?.(n)),{txHash:n,receipt:await this.signer.waitForTransactionReceipt(n)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`shield`,error:t.q(n)}),n instanceof e.a?n:new s(`Shield transaction failed`,{cause:n})}}async shieldETH(n,i){try{let e=await this.signer.getAddress(),a=await this.signer.writeContract(r.g(this.wrapper,e,n,i??n));return this.emit({type:t.O.ShieldSubmitted,txHash:a}),{txHash:a,receipt:await this.signer.waitForTransactionReceipt(a)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`shieldETH`,error:t.q(n)}),n instanceof e.a?n:new s(`Shield ETH transaction failed`,{cause:n})}}async unwrap(n){let i=await this.signer.getAddress(),a,o,c=Date.now();try{this.emit({type:t.O.EncryptStart}),{handles:a,inputProof:o}=await this.relayer.encrypt({values:[{value:n,type:`euint64`}],contractAddress:this.wrapper,userAddress:i}),this.emit({type:t.O.EncryptEnd,durationMs:Date.now()-c})}catch(n){throw this.emit({type:t.O.EncryptError,error:t.q(n),durationMs:Date.now()-c}),n instanceof e.a?n:new e.i(`Failed to encrypt unshield amount`,{cause:n})}if(a.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.O(this.address,i,i,a[0],o));return this.emit({type:t.O.UnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`unwrap`,error:t.q(n)}),n instanceof e.a?n:new s(`Unshield transaction failed`,{cause:n})}}async unwrapAll(){let n=await this.signer.getAddress(),i=await this.readConfidentialBalanceOf(n);if(this.isZeroHandle(i))throw new e.r(`Cannot unshield: balance is zero`);try{let e=await this.signer.writeContract(r.k(this.address,n,n,i));return this.emit({type:t.O.UnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`unwrap`,error:t.q(n)}),n instanceof e.a?n:new s(`Unshield-all transaction failed`,{cause:n})}}async unshield(e,t){let n=crypto.randomUUID(),r=await this.unwrap(e);return j(()=>t?.onUnwrapSubmitted?.(r.txHash)),this.#i(r.txHash,t,n)}async unshieldAll(e){let t=crypto.randomUUID(),n=await this.unwrapAll();return j(()=>e?.onUnwrapSubmitted?.(n.txHash)),this.#i(n.txHash,e,t)}async resumeUnshield(e,t){return this.#i(e,t,crypto.randomUUID())}async finalizeUnwrap(n){let i,o,c=Date.now();try{this.emit({type:t.O.DecryptStart});let r=await this.relayer.publicDecrypt([n]);this.emit({type:t.O.DecryptEnd,durationMs:Date.now()-c}),o=r.decryptionProof;try{i=(0,a.hexToBigInt)(r.abiEncodedClearValues)}catch{throw new e.r(`Cannot parse decrypted value: ${r.abiEncodedClearValues}`)}}catch(n){throw this.emit({type:t.O.DecryptError,error:t.q(n),durationMs:Date.now()-c}),n instanceof e.a?n:new e.r(`Failed to finalize unshield`,{cause:n})}try{let e=await this.signer.writeContract(r.p(this.wrapper,n,i,o));return this.emit({type:t.O.FinalizeUnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`finalizeUnwrap`,error:t.q(n)}),n instanceof e.a?n:new s(`Failed to finalize unshield`,{cause:n})}}async approveUnderlying(n){let r=await this.#n(),i=n??2n**256n-1n;try{if(i>0n){let e=await this.signer.getAddress();await this.signer.readContract(t.B(r,e,this.wrapper))>0n&&await this.signer.writeContract(t.V(r,this.wrapper,0n))}let e=await this.signer.writeContract(t.V(r,this.wrapper,i));return this.emit({type:t.O.ApproveUnderlyingSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`approveUnderlying`,error:t.q(n)}),n instanceof e.a?n:new o(`ERC-20 approval failed`,{cause:n})}}async delegateDecryption({delegateAddress:n,expirationDate:r}){if(r&&r.getTime()<Date.now()+36e5)throw new t.nt(`Expiration date must be at least 1 hour in the future`);let i=(0,a.getAddress)(n),o=await this.signer.getAddress();if(i===(0,a.getAddress)(o))throw new t.st(`Cannot delegate to yourself (delegate === msg.sender).`);if(i===this.address)throw new t.tt(`Delegate address cannot be the same as the contract address (${this.address}).`);let c=await this.getAclAddress(),l=r?BigInt(Math.floor(r.getTime()/1e3)):t.j;if(await this.getDelegationExpiry({delegatorAddress:o,delegateAddress:i})===l)throw new t.it(`The new expiration date (${l}) is the same as the current one. No on-chain change needed.`);try{let e=await this.signer.writeContract(t.M(c,i,this.address,l));return this.emit({type:t.O.DelegationSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`delegateDecryption`,error:t.q(n)}),n instanceof e.a?n:u(n)||new s(`Delegation transaction failed`,{cause:n})}}async revokeDelegation({delegateAddress:n}){let r=(0,a.getAddress)(n),i=await this.signer.getAddress(),o=await this.getAclAddress();if(await this.getDelegationExpiry({delegatorAddress:i,delegateAddress:r})===0n)throw new t.at(`No active delegation found for delegate ${r} on contract ${this.address}.`);try{let e=await this.signer.writeContract(t.F(o,r,this.address));return this.emit({type:t.O.RevokeDelegationSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.O.TransactionError,operation:`revokeDelegation`,error:t.q(n)}),n instanceof e.a?n:u(n)||new s(`Revoke delegation transaction failed`,{cause:n})}}static async batchDelegateDecryption({tokens:e,delegateAddress:t,expirationDate:r}){return n.#r(e,e=>e.delegateDecryption({delegateAddress:t,expirationDate:r}),`Delegation failed`)}static async batchRevokeDelegation({tokens:e,delegateAddress:t}){return n.#r(e,e=>e.revokeDelegation({delegateAddress:t}),`Revoke delegation failed`)}static async#r(t,n,r){let i=new Map,a=await Promise.allSettled(t.map(n));for(let n=0;n<t.length;n++){let o=a[n];if(o.status===`fulfilled`)i.set(t[n].address,o.value);else{let a=o.reason instanceof e.a?o.reason:new s(r,{cause:o.reason});i.set(t[n].address,a)}}return i}async#i(n,r,i){this.emit({type:t.O.UnshieldPhase1Submitted,txHash:n,operationId:i});let a;try{a=await this.signer.waitForTransactionReceipt(n)}catch(t){throw t instanceof e.a?t:new s(`Failed to get unshield receipt`,{cause:t})}let o=t.S(a.logs);if(!o)throw new s(`No UnwrapRequested event found in unshield receipt`);this.emit({type:t.O.UnshieldPhase2Started,operationId:i}),j(()=>r?.onFinalizing?.());let c=await this.finalizeUnwrap(o.encryptedAmount);return this.emit({type:t.O.UnshieldPhase2Submitted,txHash:c.txHash,operationId:i}),j(()=>r?.onFinalizeSubmitted?.(c.txHash)),c}async#a(n,r,i){let a=await this.#n(),s=await this.signer.getAddress(),c=await this.signer.readContract(t.B(a,s,this.wrapper));if(!(c>=n))try{c>0n&&await this.signer.writeContract(t.V(a,this.wrapper,0n));let e=r?2n**256n-1n:n,o=await this.signer.writeContract(t.V(a,this.wrapper,e));this.emit({type:t.O.ApproveUnderlyingSubmitted,txHash:o}),j(()=>i?.onApprovalSubmitted?.(o))}catch(t){throw t instanceof e.a?t:new o(`ERC-20 approval failed`,{cause:t})}}};function j(e){try{e()}catch(e){console.warn(`[zama-sdk] Callback threw:`,e)}}const M={[n.o.chainId]:n.o.registryAddress,[n.s.chainId]:n.s.registryAddress,[n.n.chainId]:n.n.registryAddress},N=300*1e3;var P=class{signer;#e;#t;#n=new Map;constructor(e){this.signer=e.signer,this.#e=Object.assign({},M,e.registryAddresses),this.#t=(e.registryTTL??86400)*1e3}getAddress(e){return this.#e[e]}#r(e){let t=this.#n.get(e);if(t){if(Date.now()>=t.expiresAt){this.#n.delete(e);return}return t.data}}#i(e,t,n=this.#t){return this.#n.set(e,{data:t,expiresAt:Date.now()+n}),t}refresh(){this.#n.clear()}get ttlMs(){return this.#t}async getRegistryAddress(){let t=await this.signer.getChainId(),n=this.#e[t];if(!n)throw new e.t(`No wrappers registry address configured for chain ${t}.\nPass a registryAddresses entry for this chain.`);return(0,a.getAddress)(n)}async listPairs(t={}){let n=t.page??1,i=t.pageSize??100,a=t.metadata??!1;if(n<1)throw new e.t(`page must be >= 1, got ${n}`);if(i<1)throw new e.t(`pageSize must be >= 1, got ${i}`);let o=await this.getRegistryAddress(),s=`total:${o}`,c=this.#r(s);if(c===void 0){let e=await this.signer.readContract(r.a(o));c=this.#i(s,Number(e))}let l=BigInt((n-1)*i),u=l+BigInt(i)>BigInt(c)?BigInt(c):l+BigInt(i);if(l>=BigInt(c))return{items:[],total:c,page:n,pageSize:i};let d=`slice:${o}:${l}:${u}`,f=this.#r(d);if(f===void 0){let e=await this.signer.readContract(r.o(o,l,u));f=this.#i(d,[...e])}if(!a)return{items:f,total:c,page:n,pageSize:i};let p=`metadata:${o}:${l}:${u}`,m=this.#r(p);if(m===void 0){let e=await Promise.allSettled(f.map(e=>this.#a(e))),t=e.some(e=>e.status===`rejected`),n=e.map((e,t)=>e.status===`fulfilled`?e.value:Object.assign({},f[t],{metadataFailed:!0,underlying:{name:`Unknown`,symbol:`???`,decimals:0,totalSupply:0n},confidential:{name:`Unknown`,symbol:`???`,decimals:0}}));m=this.#i(p,n,t?N:void 0)}return{items:m,total:c,page:n,pageSize:i}}async#a(e){let[n,r,i,a,o,s,c]=await Promise.all([this.signer.readContract(t.G(e.tokenAddress)),this.signer.readContract(t.K(e.tokenAddress)),this.signer.readContract(t.U(e.tokenAddress)),this.signer.readContract(t.W(e.tokenAddress)),this.signer.readContract(t.G(e.confidentialTokenAddress)),this.signer.readContract(t.K(e.confidentialTokenAddress)),this.signer.readContract(t.U(e.confidentialTokenAddress))]);return{...e,underlying:{name:n,symbol:r,decimals:i,totalSupply:a},confidential:{name:o,symbol:s,decimals:c}}}async getConfidentialToken(e){let t=await this.getRegistryAddress(),n=(0,a.getAddress)(e),i=`ct:${t}:${n}`,o=this.#r(i);if(o!==void 0)return o;let[s,c]=await this.signer.readContract(r.t(t,n));if(!s)return this.#i(i,null,N);let l=await this.signer.readContract(r.s(t,c));return this.#i(i,{confidentialTokenAddress:c,isValid:l})}async getUnderlyingToken(e){let t=await this.getRegistryAddress(),n=(0,a.getAddress)(e),i=`ut:${t}:${n}`,o=this.#r(i);if(o!==void 0)return o;let[s,c]=await this.signer.readContract(r.n(t,n));if(!s)return this.#i(i,null,N);let l=await this.signer.readContract(r.s(t,n));return this.#i(i,{tokenAddress:c,isValid:l})}async getTokenPairs(){let e=await this.getRegistryAddress();return this.signer.readContract(r.i(e))}async getTokenPairsLength(){let e=await this.getRegistryAddress();return this.signer.readContract(r.a(e))}async getTokenPairsSlice(e,t){let n=await this.getRegistryAddress();return this.signer.readContract(r.o(n,e,t))}async getTokenPair(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.r(t,e))}async getConfidentialTokenAddress(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.t(t,(0,a.getAddress)(e)))}async getTokenAddress(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.n(t,(0,a.getAddress)(e)))}async isConfidentialTokenValid(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.s(t,(0,a.getAddress)(e)))}},F=class{relayer;signer;storage;sessionStorage;credentials;delegatedCredentials;registry;#e;#t;#n;#r;#i=null;#a=null;constructor(e){this.relayer=e.relayer,this.signer=e.signer,this.storage=e.storage,this.sessionStorage=e.sessionStorage??new t.k,this.#t=e.onEvent??function(){},this.registry=new P({signer:this.signer,registryAddresses:e.registryAddresses,registryTTL:e.registryTTL}),this.#e=e.registryTTL;let n={relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,keypairTTL:(()=>{let t=e.keypairTTL??2592e3;if(t<=0)throw Error(`keypairTTL must be a positive number (seconds)`);return t})(),sessionTTL:e.sessionTTL??2592e3,onEvent:this.#t};if(this.credentials=new t.D(n),this.delegatedCredentials=new t.E(n),this.#r=this.#o(),this.signer.subscribe){let n=e.signerLifecycleCallbacks,r=(e,n)=>{n().catch(n=>{this.#t?.({type:t.O.TransactionError,operation:e,error:t.q(n),timestamp:Date.now()})})};this.#n=this.signer.subscribe({onDisconnect:()=>{r(`signerDisconnect`,async()=>{await this.#s(),this.#i=null,this.#a=null,n?.onDisconnect?.()})},onAccountChange:e=>{r(`signerAccountChange`,async()=>{await this.#s(),this.#i=(0,a.getAddress)(e);try{this.#a=await this.signer.getChainId()}catch{}n?.onAccountChange?.(e)})},onChainChange:e=>{r(`signerChainChange`,async()=>{await this.#s(),this.#a=e;try{this.#i=await this.signer.getAddress()}catch{}n?.onChainChange?.(e)})}})}}async#o(){try{let e=await this.signer.getAddress(),t=await this.signer.getChainId();this.#i=e,this.#a=t}catch{}}async#s(){if(await this.#r,this.#i===null||this.#a===null)return;let e=await t.D.computeStoreKey(this.#i,this.#a);await this.credentials.revokeByKey(e)}createReadonlyToken(e){return new t.w({relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,credentials:this.credentials,delegatedCredentials:this.delegatedCredentials,address:(0,a.getAddress)(e),onEvent:this.#t})}createToken(e,t){return new A({relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,credentials:this.credentials,delegatedCredentials:this.delegatedCredentials,address:(0,a.getAddress)(e),wrapper:t?(0,a.getAddress)(t):void 0,onEvent:this.#t})}createWrappersRegistry(e){return new P({signer:this.signer,registryAddresses:e,registryTTL:this.#e})}async allow(...e){await this.credentials.allow(...e)}async revoke(...e){await this.credentials.revoke(...e)}async revokeSession(){await this.#r;let e=this.#i??await this.signer.getAddress(),n=this.#a??await this.signer.getChainId(),r=await t.D.computeStoreKey(e,n);await this.credentials.revokeByKey(r)}async isAllowed(){return this.credentials.isAllowed()}dispose(){this.#n?.(),this.#n=void 0}terminate(){this.dispose(),this.relayer.terminate()}};function I(e){return`zama:pending-unshield:${e}`}async function L(e,t,n){await e.set(I(t),n)}async function R(e,t){return e.get(I(t))}async function z(e,t){await e.delete(I(t))}var B=class{async get(e){return(await chrome.storage.session.get(e))[e]??null}async set(e,t){await chrome.storage.session.set({[e]:t})}async delete(e){await chrome.storage.session.remove(e)}};const V=new B;exports.ACL_TOPICS=t.a,exports.AclPausedError=t.Q,exports.AclTopics=t.o,exports.ApprovalFailedError=o,exports.ChromeSessionStorage=B,exports.ConfigurationError=e.t,exports.CredentialsManager=t.D,exports.DecryptionFailedError=e.r,exports.DefaultRegistryAddresses=M,exports.DelegatedCredentialsManager=t.E,exports.DelegationContractIsSelfError=t.$,exports.DelegationCooldownError=t.et,exports.DelegationDelegateEqualsContractError=t.tt,exports.DelegationExpirationTooSoonError=t.nt,exports.DelegationExpiredError=t.rt,exports.DelegationExpiryUnchangedError=t.it,exports.DelegationNotFoundError=t.at,exports.DelegationNotPropagatedError=t.ot,exports.DelegationSelfNotAllowedError=t.st,exports.ERC7984_INTERFACE_ID=r.c,exports.ERC7984_WRAPPER_INTERFACE_ID=r.l,exports.EncryptionFailedError=e.i,exports.HardhatConfig=n.a,exports.IndexedDBStorage=d,exports.InvalidKeypairError=t.ct,exports.KeypairExpiredError=t.lt,exports.MainnetConfig=n.o,exports.MemoryStorage=t.k,exports.NoCiphertextError=t.ut,exports.ReadonlyToken=t.w,exports.RelayerRequestFailedError=e.n,exports.RelayerWeb=k,exports.SepoliaConfig=n.s,exports.SigningFailedError=t.dt,exports.SigningRejectedError=t.ft,exports.TOKEN_TOPICS=t.s,exports.Token=A,exports.Topics=t.c,exports.TransactionRevertedError=s,exports.WrappersRegistry=P,exports.ZERO_HANDLE=t.T,exports.ZamaError=e.a,exports.ZamaErrorCode=e.o,exports.ZamaSDK=F,exports.ZamaSDKEvents=t.O,exports.allowanceContract=t.B,exports.applyDecryptedValues=t.t,exports.approveContract=t.V,exports.balanceOfContract=t.H,exports.chromeSessionStorage=V,exports.clearPendingUnshield=z,exports.confidentialBalanceOfContract=r._,exports.confidentialBatchTransferContract=i.t,exports.confidentialTotalSupplyContract=r.v,exports.confidentialTransferContract=r.y,exports.confidentialTransferFromContract=r.b,exports.decimalsContract=t.U,exports.decodeAclEvent=t.l,exports.decodeAclEvents=t.u,exports.decodeConfidentialTransfer=t.d,exports.decodeDelegatedForUserDecryption=t.f,exports.decodeOnChainEvent=t.p,exports.decodeOnChainEvents=t.m,exports.decodeRevokedDelegationForUserDecryption=t.h,exports.decodeUnwrapRequested=t.g,exports.decodeUnwrappedFinalized=t._,exports.decodeUnwrappedStarted=t.v,exports.decodeWrapped=t.y,exports.delegateForUserDecryptionContract=t.M,exports.deploymentCoordinatorContract=r.x,exports.extractEncryptedHandles=t.n,exports.finalizeUnwrapContract=r.p,exports.findDelegatedForUserDecryption=t.b,exports.findRevokedDelegationForUserDecryption=t.x,exports.findUnwrapRequested=t.S,exports.findWrapped=t.C,exports.getBatchTransferFeeContract=t.I,exports.getConfidentialTokenAddressContract=r.t,exports.getDelegationExpiryContract=t.N,exports.getFeeRecipientContract=t.L,exports.getTokenAddressContract=r.n,exports.getTokenPairContract=r.r,exports.getTokenPairsContract=r.i,exports.getTokenPairsLengthContract=r.a,exports.getTokenPairsSliceContract=r.o,exports.getUnwrapFeeContract=t.R,exports.getWrapFeeContract=t.z,exports.getWrapperContract=i.n,exports.indexedDBStorage=f,exports.isConfidentialTokenContract=r.u,exports.isConfidentialTokenValidContract=r.s,exports.isConfidentialWrapperContract=r.d,exports.isFinalizeUnwrapOperatorContract=r.S,exports.isHandleDelegatedContract=t.P,exports.isOperatorContract=r.C,exports.loadPendingUnshield=R,exports.matchAclRevert=u,exports.matchZamaError=e.s,exports.memoryStorage=t.A,exports.nameContract=t.G,exports.parseActivityFeed=t.r,exports.rateContract=r.w,exports.revokeDelegationContract=t.F,exports.savePendingUnshield=L,exports.setFinalizeUnwrapOperatorContract=r.T,exports.setOperatorContract=r.E,exports.sortByBlockNumber=t.i,exports.supportsInterfaceContract=r.f,exports.symbolContract=t.K,exports.totalSupplyContract=r.D,exports.underlyingContract=r.m,exports.unwrapContract=r.O,exports.unwrapFromBalanceContract=r.k,exports.wrapContract=r.h,exports.wrapETHContract=r.g,exports.wrapperExistsContract=i.r;
514
+ `],{type:`application/javascript`}));try{return new Worker(t)}finally{URL.revokeObjectURL(t)}}wireEvents(e){e.onmessage=e=>this.handleResponse(e.data),e.onerror=e=>this.handleWorkerError(e.message),e.onmessageerror=()=>this.handleWorkerMessageError()}postMessage(e,t){e.postMessage(t)}terminateWorker(e){e.terminate()}generateRequestId(){return crypto.randomUUID()}getInitPayload(){let{cdnUrl:e,fhevmConfig:t,csrfToken:n,integrity:r,thread:i}=this.config;return{type:`INIT`,payload:{cdnUrl:e,fhevmConfig:t,csrfToken:n,integrity:r,thread:i}}}async updateCsrf(e){await this.sendRequest(`UPDATE_CSRF`,{csrfToken:e})}};const S=8192,C=300*1e3;function w(e){let t=[];for(let n=0;n<e.length;n+=S)t.push(String.fromCharCode(...e.subarray(n,n+S)));return btoa(t.join(``))}function T(e){let t;try{t=atob(e)}catch{throw Error(`Invalid base64 data (length: ${e.length})`)}if(t.length===0)throw Error(`Decoded artifact is empty`);let n=new Uint8Array(t.length);for(let e=0;e<t.length;e++)n[e]=t.charCodeAt(e);return n}function E(e){return`fhe:pubkey:${e}`}function D(e,t){return`fhe:params:${e}:${t}`}function O(e){return`fhe:params-index:${e}`}function k(e){t.Q(e,`CachedPublicKey`),t.$(e,`publicKeyId`,`CachedPublicKey.publicKeyId`),t.$(e,`publicKey`,`CachedPublicKey.publicKey`)}function A(e){t.Q(e,`CachedPublicParams`),t.$(e,`publicParamsId`,`CachedPublicParams.publicParamsId`),t.$(e,`publicParams`,`CachedPublicParams.publicParams`)}var j=class{#e;#t;#n;#r;#i;#a;#o=new Map;#s=null;#c=new Map;#l=null;#u=null;constructor(e){this.#e=e.storage,this.#t=e.chainId,this.#n=e.relayerUrl,this.#r=(e.ttl??86400)*1e3,this.#i=e.logger??console}async getPublicKey(e){if(this.#a!==void 0)return this.#a;if(this.#s)return this.#s;this.#s=this.#d(e);try{return await this.#s}finally{this.#s=null}}async#d(e){let n=E(this.#t);try{let e=await this.#e.get(n);if(e){k(e);let t={publicKeyId:e.publicKeyId,publicKey:T(e.publicKey)};return this.#a=t,t}}catch(e){await this.#g(n),this.#i.warn(`Failed to read public key from persistent storage, falling back to network fetch`,{chainId:this.#t,error:t.Y(e).message})}let r=await e();if(r===null)return null;this.#a=r;try{let e={publicKeyId:r.publicKeyId,publicKey:w(r.publicKey),lastValidatedAt:Date.now()};await this.#e.set(n,e)}catch(e){this.#i.warn(`Failed to persist public key to storage`,{chainId:this.#t,error:t.Y(e).message})}return r}async getPublicParams(e,t){let n=this.#o.get(e);if(n!==void 0)return n;let r=this.#c.get(e);if(r)return r;let i=this.#f(e,t);this.#c.set(e,i);try{return await i}finally{this.#c.delete(e)}}async#f(e,n){let r=D(this.#t,e);try{let t=await this.#e.get(r);if(t){A(t);let n={publicParamsId:t.publicParamsId,publicParams:T(t.publicParams)};return this.#o.set(e,n),n}}catch(n){await this.#g(r),this.#i.warn(`Failed to read public params from persistent storage, falling back to network fetch`,{chainId:this.#t,bits:e,error:t.Y(n).message})}let i=await n();if(i===null)return null;this.#o.set(e,i);try{let n={publicParamsId:i.publicParamsId,publicParams:w(i.publicParams),lastValidatedAt:Date.now()};await this.#e.set(r,n);let a=O(this.#t),o=await this.#e.get(a).catch(e=>(this.#i.warn(`Failed to read params index from storage`,{chainId:this.#t,error:t.Y(e).message}),null))??[];o.includes(e)||await this.#e.set(a,[...o,e])}catch(n){this.#i.warn(`Failed to persist public params to storage`,{chainId:this.#t,bits:e,error:t.Y(n).message})}return i}async revalidateIfDue(){if(this.#l)return this.#l;this.#l=this.#p();try{return await this.#l}finally{this.#l=null}}async#p(){let e=Date.now();if(this.#u!==null&&e-this.#u<this.#r||!this.#n)return!1;let n=E(this.#t),r=null,i=[];try{let[a,o]=await Promise.all([this.#e.get(n),this.#h()]);if(a)try{k(a),r={...a,lastValidatedAt:a.lastValidatedAt??0}}catch(e){this.#i.warn(`Corrupt public key cache entry detected, deleting`,{chainId:this.#t,error:t.Y(e).message}),await this.#g(n)}if(i=o,!r)return!1;if([r,...i.map(e=>e.data)].every(t=>e-t.lastValidatedAt<this.#r))return this.#u=e,!1;let s=await globalThis.fetch(`${this.#n}/keyurl`);if(!s.ok){let t=e-this.#r+C;return this.#i.warn(`Manifest fetch failed during revalidation, retrying in 5 min`,{status:s.status,relayerUrl:this.#n}),await this.#v(n,{...r,lastValidatedAt:t},i.map(e=>({...e,data:{...e.data,lastValidatedAt:t}}))),this.#u=t,!1}let c=await s.json();if(!c||typeof c!=`object`||!(`fhePublicKey`in c)||!c.fhePublicKey?.urls?.length||!(`crs`in c)||typeof c.crs!=`object`){this.#i.error(`Relayer manifest has unexpected shape — check relayer URL and API version`,{relayerUrl:this.#n,manifestKeys:c&&typeof c==`object`?Object.keys(c):[]});let t=e-this.#r+C;return await this.#v(n,{...r,lastValidatedAt:t},i.map(e=>({...e,data:{...e.data,lastValidatedAt:t}}))),this.#u=t,!1}let l=c,u=l.fhePublicKey.urls[0];if(r.artifactUrl&&u&&u!==r.artifactUrl)return await this.#_(n,i),this.#u=null,!0;let d={...r,lastValidatedAt:e};if(u){let e=await this.#m(u,r);if(!e.fresh)return await this.#_(n,i),this.#u=null,!0;d={...d,artifactUrl:u,etag:e.etag,lastModified:e.lastModified}}let f=[];for(let t of i){let r=l.crs[String(t.bits)]?.urls[0];if(t.data.artifactUrl&&r&&r!==t.data.artifactUrl)return await this.#_(n,i),this.#u=null,!0;let a={...t.data,lastValidatedAt:e};if(r){let e=await this.#m(r,t.data);if(!e.fresh)return await this.#_(n,i),this.#u=null,!0;a={...a,artifactUrl:r,etag:e.etag,lastModified:e.lastModified}}f.push({...t,data:a})}return await this.#v(n,d,f),this.#u=e,!1}catch(a){let o=t.Y(a),s=a instanceof TypeError||a instanceof ReferenceError||a instanceof RangeError||a instanceof SyntaxError,c=s?`error`:`warn`;this.#i[c](s?`Unexpected error during revalidation (possible bug)`:`Revalidation failed, using cached artifacts (fail-open)`,{chainId:this.#t,relayerUrl:this.#n,error:o.message});let l=e-this.#r+C;try{r&&await this.#v(n,{...r,lastValidatedAt:l},i.map(e=>({...e,data:{...e.data,lastValidatedAt:l}})))}catch(e){this.#i.warn(`Failed to update validation timestamps after revalidation error`,{chainId:this.#t,error:t.Y(e).message})}return this.#u=l,!1}}async#m(e,t){let n=!!(t.etag||t.lastModified),r={};t.etag&&(r[`If-None-Match`]=t.etag),t.lastModified&&(r[`If-Modified-Since`]=t.lastModified);let i=await globalThis.fetch(e,{method:`HEAD`,headers:r});if(i.status===405&&(i=await globalThis.fetch(e,{headers:r})),!i.ok&&i.status!==304)throw Error(`Artifact freshness check failed: HEAD ${e} returned ${i.status}`);let a=i.headers.get(`etag`)??void 0,o=i.headers.get(`last-modified`)??void 0;return i.status===304?{fresh:!0,etag:a??t.etag,lastModified:o??t.lastModified}:n?{fresh:!1,etag:a,lastModified:o}:{fresh:!0,etag:a,lastModified:o}}async#h(){let e=O(this.#t),n=await this.#e.get(e).catch(e=>(this.#i.warn(`Failed to read params index, CRS revalidation may be incomplete`,{chainId:this.#t,error:t.Y(e).message}),null))??[],r=new Set([...this.#o.keys(),...n]),i=Array.from(r);return(await Promise.all(i.map(async e=>{let n=D(this.#t,e),r;try{r=await this.#e.get(n)}catch(n){return this.#i.warn(`Failed to read cached params entry during revalidation`,{chainId:this.#t,bits:e,error:t.Y(n).message}),null}if(!r)return null;try{return A(r),{bits:e,key:n,data:{...r,lastValidatedAt:r.lastValidatedAt??0}}}catch(r){return this.#i.warn(`Corrupt params cache entry detected, deleting`,{chainId:this.#t,bits:e,error:t.Y(r).message}),await this.#g(n),null}}))).filter(e=>e!==null)}async#g(e){await this.#e.delete(e).catch(n=>{this.#i.warn(`Failed to delete cache entry`,{chainId:this.#t,key:e,error:t.Y(n).message})})}async#_(e,n){let r=O(this.#t);try{await Promise.all([this.#e.delete(e),this.#e.delete(r),...n.map(e=>this.#e.delete(e.key))])}catch(e){this.#i.warn(`Failed to clear stale artifacts from persistent storage`,{chainId:this.#t,error:t.Y(e).message})}this.#a=void 0,this.#o.clear()}async#v(e,n,r){let i=[this.#e.set(e,n).catch(e=>{this.#i.warn(`Failed to update public key validation timestamp`,{chainId:this.#t,error:t.Y(e).message})}),...r.map(e=>this.#e.set(e.key,e.data).catch(e=>{this.#i.warn(`Failed to update params validation timestamp`,{chainId:this.#t,error:t.Y(e).message})}))];await Promise.all(i)}},M=class{#e=null;#t=null;#n=null;#r=!1;#i=null;#a=null;#o=null;#s=`idle`;#c;#l;constructor(e){this.#l=e}get status(){return this.#s}get initError(){return this.#c}#u(e,t){this.#s=e,this.#c=t,this.#l.onStatusChange?.(e,t)}async#d(){let e=await this.#l.getChainId(),{transports:t,security:r,threads:i}=this.#l;if(i!==void 0&&(!Number.isInteger(i)||i<1))throw Error(`Invalid thread count: ${i}. Must be a positive integer.`);return i!==void 0&&globalThis.SharedArrayBuffer===void 0&&this.#l.logger?.warn(`threads option requires SharedArrayBuffer (COOP/COEP headers). Falling back to single-threaded.`),{cdnUrl:`https://cdn.zama.org/relayer-sdk-js/0.4.2/relayer-sdk-js.umd.cjs`,fhevmConfig:Object.assign({},n.i[e],t[e]),csrfToken:r?.getCsrfToken?.()??``,integrity:r?.integrityCheck===!1?void 0:`114438b01d518b53a447fa3e8bfbe6e71031cb42ac43219bb9f53488456fdfa4bbc8989628366d436e68f6526c7647eb`,logger:this.#l.logger,thread:i}}async#f(){if(this.#n)return this.#n;this.#n=this.#m();try{return await this.#n}finally{this.#n=null}}#p(){this.#e?.terminate(),this.#e=null,this.#t=null,this.#a=null}async#m(){this.#r&&(this.#r=!1,this.#e=null,this.#t=null,this.#i=null);let t=await this.#l.getChainId();if(this.#i!==null&&t!==this.#i&&this.#p(),this.#i=t,this.#o||=this.#l.fheArtifactStorage??new h(`FheArtifactCache`,1,`artifacts`),!this.#a){let e=Object.assign({},n.i[t],this.#l.transports[t]);this.#a=new j({storage:this.#o,chainId:t,relayerUrl:e.relayerUrl,ttl:this.#l.fheArtifactCacheTTL,logger:this.#l.logger})}if(this.#a){let e=!1;try{e=await this.#a.revalidateIfDue()}catch(e){this.#l.logger?.warn(`Artifact revalidation failed, proceeding with potentially stale cache`,{error:e instanceof Error?e.message:String(e)})}e&&(this.#l.logger?.info(`Cached FHE artifacts are stale — reinitializing`),this.#p())}return this.#t||=(this.#u(`initializing`),this.#h().then(e=>(this.#u(`ready`),e)).catch(t=>{this.#t=null;let n=t instanceof e.a?t:new e.t(`Failed to initialize FHE worker`,{cause:t});throw this.#u(`error`,n),n})),this.#t}async#h(){let e=new x(await this.#d());if(await e.initWorker(),this.#r)throw e.terminate(),Error(`RelayerWeb was terminated during initialization`);return this.#e=e,e}terminate(){this.#r=!0,this.#e&&=(this.#e.terminate(),null),this.#t=null,this.#n=null}[Symbol.dispose](){this.terminate()}async#g(){if(this.#e){let e=this.#l.security?.getCsrfToken?.()??``;e&&await this.#e.updateCsrf(e)}}async generateKeypair(){let e=await(await this.#f()).generateKeypair();return{publicKey:e.publicKey,privateKey:e.privateKey}}async createEIP712(e,t,r,i=7){let a=await(await this.#f()).createEIP712({publicKey:e,contractAddresses:t,startTimestamp:r,durationDays:i}),o={name:a.domain.name,version:a.domain.version,chainId:a.domain.chainId,verifyingContract:a.domain.verifyingContract};return{domain:o,types:{EIP712Domain:n.c(o),UserDecryptRequestVerification:a.types.UserDecryptRequestVerification},message:{publicKey:a.message.publicKey,contractAddresses:a.message.contractAddresses,startTimestamp:a.message.startTimestamp,durationDays:a.message.durationDays,extraData:a.message.extraData}}}async encrypt(e){let{values:t,contractAddress:r,userAddress:i}=e;return n.l(async()=>{let e=await this.#f();await this.#g();let n=await e.encrypt({values:t,contractAddress:r,userAddress:i});return{handles:n.handles,inputProof:n.inputProof}})}async userDecrypt(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),(await t.userDecrypt(e)).clearValues})}async publicDecrypt(e){return n.l(async()=>{let t=await this.#f();await this.#g();let n=await t.publicDecrypt(e);return{clearValues:n.clearValues,abiEncodedClearValues:n.abiEncodedClearValues,decryptionProof:n.decryptionProof}})}async createDelegatedUserDecryptEIP712(e,t,n,r,i=7){return(await this.#f()).createDelegatedUserDecryptEIP712({publicKey:e,contractAddresses:t,delegatorAddress:n,startTimestamp:r,durationDays:i})}async delegatedUserDecrypt(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),(await t.delegatedUserDecrypt(e)).clearValues})}async requestZKProofVerification(e){return n.l(async()=>{let t=await this.#f();return await this.#g(),t.requestZKProofVerification(e)})}async getPublicKey(){let e=await this.#f();return this.#a?this.#a.getPublicKey(async()=>(await e.getPublicKey()).result):(await e.getPublicKey()).result}async getPublicParams(e){let t=await this.#f();return this.#a?this.#a.getPublicParams(e,async()=>(await t.getPublicParams(e)).result):(await t.getPublicParams(e)).result}async getAclAddress(){let t=await this.#l.getChainId(),r=Object.assign({},n.i[t],this.#l.transports[t]);if(!r.aclContractAddress)throw new e.t(`No ACL address configured for chain ${t}`);return r.aclContractAddress}},N=class n extends t.w{static ZERO_ADDRESS=`0x0000000000000000000000000000000000000000`;wrapper;#e;#t=null;constructor(e){super(e),this.wrapper=e.wrapper?(0,a.getAddress)(e.wrapper):this.address}async#n(){return this.#e===void 0?(this.#t||=this.signer.readContract(r.m(this.wrapper)).then(e=>(this.#e=e,this.#t=null,e)).catch(e=>{throw this.#t=null,e}),this.#t):this.#e}async confidentialTransfer(n,i,o){let{skipBalanceCheck:c=!1,onEncryptComplete:l,onTransferSubmitted:u}=o??{},d=(0,a.getAddress)(n);c||await this.#i(i);let f,p,m=Date.now();try{this.emit({type:t.k.EncryptStart}),{handles:f,inputProof:p}=await this.relayer.encrypt({values:[{value:i,type:`euint64`}],contractAddress:this.address,userAddress:await this.signer.getAddress()}),this.emit({type:t.k.EncryptEnd,durationMs:Date.now()-m}),P(()=>l?.())}catch(n){throw this.emit({type:t.k.EncryptError,error:t.Y(n),durationMs:Date.now()-m}),n instanceof e.a?n:new e.i(`Failed to encrypt transfer amount`,{cause:n})}if(f.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.y(this.address,d,f[0],p));return this.emit({type:t.k.TransferSubmitted,txHash:e}),P(()=>u?.(e)),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`transfer`,error:t.Y(n)}),n instanceof e.a?n:new s(`Transfer transaction failed`,{cause:n})}}async confidentialTransferFrom(n,i,o,c){let l=(0,a.getAddress)(n),u=(0,a.getAddress)(i),d,f,p=Date.now();try{this.emit({type:t.k.EncryptStart}),{handles:d,inputProof:f}=await this.relayer.encrypt({values:[{value:o,type:`euint64`}],contractAddress:this.address,userAddress:l}),this.emit({type:t.k.EncryptEnd,durationMs:Date.now()-p}),P(()=>c?.onEncryptComplete?.())}catch(n){throw this.emit({type:t.k.EncryptError,error:t.Y(n),durationMs:Date.now()-p}),n instanceof e.a?n:new e.i(`Failed to encrypt transferFrom amount`,{cause:n})}if(d.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.b(this.address,l,u,d[0],f));return this.emit({type:t.k.TransferFromSubmitted,txHash:e}),P(()=>c?.onTransferSubmitted?.(e)),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`transferFrom`,error:t.Y(n)}),n instanceof e.a?n:new s(`TransferFrom transaction failed`,{cause:n})}}async approve(n,i){let s=(0,a.getAddress)(n);try{let e=await this.signer.writeContract(r.E(this.address,s,i));return this.emit({type:t.k.ApproveSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`approve`,error:t.Y(n)}),n instanceof e.a?n:new o(`Operator approval failed`,{cause:n})}}async isApproved(e,t){let n=(0,a.getAddress)(e),i=t?(0,a.getAddress)(t):await this.signer.getAddress();return this.signer.readContract(r.C(this.address,i,n))}async shield(i,o){let c=await this.#n();if(c===n.ZERO_ADDRESS)return this.shieldETH(i,i+(o?.fees??0n));let u;try{let e=await this.signer.getAddress();u=await this.signer.readContract(t.U(c,e))}catch(n){throw n instanceof e.a?n:new d(`Could not read ERC-20 balance for shield validation (token: ${c})`,{cause:t.Y(n)})}if(u<i)throw new l(`Insufficient ERC-20 balance: requested ${i}, available ${u} (token: ${c})`,{requested:i,available:u,token:c});let f=o?.approvalStrategy??`exact`;f!==`skip`&&await this.#o(i,f===`max`,o);try{let e=o?.to?(0,a.getAddress)(o.to):await this.signer.getAddress(),n=await this.signer.writeContract(r.h(this.wrapper,e,i));return this.emit({type:t.k.ShieldSubmitted,txHash:n}),P(()=>o?.onShieldSubmitted?.(n)),{txHash:n,receipt:await this.signer.waitForTransactionReceipt(n)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`shield`,error:t.Y(n)}),n instanceof e.a?n:new s(`Shield transaction failed`,{cause:n})}}async shieldETH(n,i){try{let e=await this.signer.getAddress(),a=await this.signer.writeContract(r.g(this.wrapper,e,n,i??n));return this.emit({type:t.k.ShieldSubmitted,txHash:a}),{txHash:a,receipt:await this.signer.waitForTransactionReceipt(a)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`shieldETH`,error:t.Y(n)}),n instanceof e.a?n:new s(`Shield ETH transaction failed`,{cause:n})}}async unwrap(n){let i=await this.signer.getAddress(),a,o,c=Date.now();try{this.emit({type:t.k.EncryptStart}),{handles:a,inputProof:o}=await this.relayer.encrypt({values:[{value:n,type:`euint64`}],contractAddress:this.wrapper,userAddress:i}),this.emit({type:t.k.EncryptEnd,durationMs:Date.now()-c})}catch(n){throw this.emit({type:t.k.EncryptError,error:t.Y(n),durationMs:Date.now()-c}),n instanceof e.a?n:new e.i(`Failed to encrypt unshield amount`,{cause:n})}if(a.length===0)throw new e.i(`Encryption returned no handles`);try{let e=await this.signer.writeContract(r.O(this.address,i,i,a[0],o));return this.emit({type:t.k.UnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`unwrap`,error:t.Y(n)}),n instanceof e.a?n:new s(`Unshield transaction failed`,{cause:n})}}async unwrapAll(){let n=await this.signer.getAddress(),i=await this.readConfidentialBalanceOf(n);if(this.isZeroHandle(i))throw new e.r(`Cannot unshield: balance is zero`);try{let e=await this.signer.writeContract(r.k(this.address,n,n,i));return this.emit({type:t.k.UnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`unwrap`,error:t.Y(n)}),n instanceof e.a?n:new s(`Unshield-all transaction failed`,{cause:n})}}async unshield(e,t){let{skipBalanceCheck:n=!1,onUnwrapSubmitted:r,onFinalizing:i,onFinalizeSubmitted:a}=t??{};n||await this.#i(e);let o={onFinalizing:i,onFinalizeSubmitted:a},s=crypto.randomUUID(),c=await this.unwrap(e);return P(()=>r?.(c.txHash)),this.#a(c.txHash,s,o)}async unshieldAll(e){let t=crypto.randomUUID(),n=await this.unwrapAll();return P(()=>e?.onUnwrapSubmitted?.(n.txHash)),this.#a(n.txHash,t,e)}async resumeUnshield(e,t){return this.#a(e,crypto.randomUUID(),t)}async finalizeUnwrap(n){let i,o,c=Date.now();try{this.emit({type:t.k.DecryptStart});let r=await this.relayer.publicDecrypt([n]);this.emit({type:t.k.DecryptEnd,durationMs:Date.now()-c}),o=r.decryptionProof;try{i=(0,a.hexToBigInt)(r.abiEncodedClearValues)}catch(t){throw new e.r(`Cannot parse decrypted value: ${r.abiEncodedClearValues}`,{cause:t})}}catch(n){throw this.emit({type:t.k.DecryptError,error:t.Y(n),durationMs:Date.now()-c}),n instanceof e.a?n:new e.r(`Failed to finalize unshield`,{cause:n})}try{let e=await this.signer.writeContract(r.p(this.wrapper,n,i,o));return this.emit({type:t.k.FinalizeUnwrapSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`finalizeUnwrap`,error:t.Y(n)}),n instanceof e.a?n:new s(`Failed to finalize unshield`,{cause:n})}}async approveUnderlying(n){let r=await this.#n(),i=n??2n**256n-1n;try{if(i>0n){let e=await this.signer.getAddress();await this.signer.readContract(t.V(r,e,this.wrapper))>0n&&await this.signer.writeContract(t.H(r,this.wrapper,0n))}let e=await this.signer.writeContract(t.H(r,this.wrapper,i));return this.emit({type:t.k.ApproveUnderlyingSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`approveUnderlying`,error:t.Y(n)}),n instanceof e.a?n:new o(`ERC-20 approval failed`,{cause:n})}}async delegateDecryption({delegateAddress:n,expirationDate:r}){if(r&&r.getTime()<Date.now()+36e5)throw new t.it(`Expiration date must be at least 1 hour in the future`);let i=(0,a.getAddress)(n),o=await this.signer.getAddress();if(i===(0,a.getAddress)(o))throw new t.lt(`Cannot delegate to yourself (delegate === msg.sender).`);if(i===this.address)throw new t.rt(`Delegate address cannot be the same as the contract address (${this.address}).`);let c=await this.getAclAddress(),l=r?BigInt(Math.floor(r.getTime()/1e3)):t.M;if(await this.getDelegationExpiry({delegatorAddress:o,delegateAddress:i})===l)throw new t.ot(`The new expiration date (${l}) is the same as the current one. No on-chain change needed.`);try{let e=await this.signer.writeContract(t.N(c,i,this.address,l));return this.emit({type:t.k.DelegationSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`delegateDecryption`,error:t.Y(n)}),n instanceof e.a?n:m(n)||new s(`Delegation transaction failed`,{cause:n})}}async revokeDelegation({delegateAddress:n}){let r=(0,a.getAddress)(n),i=await this.signer.getAddress(),o=await this.getAclAddress();if(await this.getDelegationExpiry({delegatorAddress:i,delegateAddress:r})===0n)throw new t.st(`No active delegation found for delegate ${r} on contract ${this.address}.`);try{let e=await this.signer.writeContract(t.I(o,r,this.address));return this.emit({type:t.k.RevokeDelegationSubmitted,txHash:e}),{txHash:e,receipt:await this.signer.waitForTransactionReceipt(e)}}catch(n){throw this.emit({type:t.k.TransactionError,operation:`revokeDelegation`,error:t.Y(n)}),n instanceof e.a?n:m(n)||new s(`Revoke delegation transaction failed`,{cause:n})}}static async batchDelegateDecryption({tokens:e,delegateAddress:t,expirationDate:r}){return n.#r(e,e=>e.delegateDecryption({delegateAddress:t,expirationDate:r}),`Delegation failed`)}static async batchRevokeDelegation({tokens:e,delegateAddress:t}){return n.#r(e,e=>e.revokeDelegation({delegateAddress:t}),`Revoke delegation failed`)}static async#r(t,n,r){let i=new Map;for(let a=0;a<t.length;a++)try{i.set(t[a].address,await n(t[a]))}catch(n){n instanceof e.a?i.set(t[a].address,n):i.set(t[a].address,new s(r,{cause:n}))}return i}async#i(n){if(n===0n)return;let r,i;try{r=await this.signer.getAddress(),i=await this.readConfidentialBalanceOf(r)}catch(n){throw n instanceof e.a?n:new u(`Could not read confidential balance handle (token: ${this.address})`,{cause:t.Y(n)})}if(this.isZeroHandle(i))throw new c(`Insufficient confidential balance: requested ${n}, available 0 (token: ${this.address})`,{requested:n,available:0n,token:this.address});let a=await t.E({storage:this.storage,tokenAddress:this.address,owner:r,handle:i});if(a!==null){if(a<n)throw new c(`Insufficient confidential balance: requested ${n}, available ${a} (token: ${this.address})`,{requested:n,available:a,token:this.address});return}let o;try{o=await this.isAllowed()}catch(t){throw t instanceof e.a?t:new u(`Could not check credential status for balance validation (token: ${this.address})`,{cause:t})}if(!o)throw new u(`Cannot validate confidential balance: no cached credentials. Call allow() first or use skipBalanceCheck: true for smart wallets (token: ${this.address})`);let s;try{s=await this.decryptBalance(i,r)}catch(t){throw t instanceof e.a?t:new u(`Balance validation failed: could not decrypt confidential balance (token: ${this.address})`,{cause:t})}if(s<n)throw new c(`Insufficient confidential balance: requested ${n}, available ${s} (token: ${this.address})`,{requested:n,available:s,token:this.address})}async#a(n,r,i){this.emit({type:t.k.UnshieldPhase1Submitted,txHash:n,operationId:r});let a;try{a=await this.signer.waitForTransactionReceipt(n)}catch(t){throw t instanceof e.a?t:new s(`Failed to get unshield receipt`,{cause:t})}let o=t.S(a.logs);if(!o)throw new s(`No UnwrapRequested event found in unshield receipt`);this.emit({type:t.k.UnshieldPhase2Started,operationId:r}),P(()=>i?.onFinalizing?.());let c=await this.finalizeUnwrap(o.encryptedAmount);return this.emit({type:t.k.UnshieldPhase2Submitted,txHash:c.txHash,operationId:r}),P(()=>i?.onFinalizeSubmitted?.(c.txHash)),c}async#o(n,r,i){let a=await this.#n(),s=await this.signer.getAddress(),c=await this.signer.readContract(t.V(a,s,this.wrapper));if(!(c>=n))try{c>0n&&await this.signer.writeContract(t.H(a,this.wrapper,0n));let e=r?2n**256n-1n:n,o=await this.signer.writeContract(t.H(a,this.wrapper,e));this.emit({type:t.k.ApproveUnderlyingSubmitted,txHash:o}),P(()=>i?.onApprovalSubmitted?.(o))}catch(t){throw t instanceof e.a?t:new o(`ERC-20 approval failed`,{cause:t})}}};function P(e){try{e()}catch(e){console.warn(`[zama-sdk] Callback threw:`,e)}}const F={[n.o.chainId]:n.o.registryAddress,[n.s.chainId]:n.s.registryAddress,[n.n.chainId]:n.n.registryAddress},I=300*1e3;var L=class{signer;#e;#t;#n=new Map;constructor(e){this.signer=e.signer,this.#e=Object.assign({},F,e.registryAddresses),this.#t=(e.registryTTL??86400)*1e3}getAddress(e){return this.#e[e]}#r(e){let t=this.#n.get(e);if(t){if(Date.now()>=t.expiresAt){this.#n.delete(e);return}return t.data}}#i(e,t,n=this.#t){return this.#n.set(e,{data:t,expiresAt:Date.now()+n}),t}refresh(){this.#n.clear()}get ttlMs(){return this.#t}async getRegistryAddress(){let t=await this.signer.getChainId(),n=this.#e[t];if(!n)throw new e.t(`No wrappers registry address configured for chain ${t}.\nPass a registryAddresses entry for this chain.`);return(0,a.getAddress)(n)}async listPairs(t={}){let n=t.page??1,i=t.pageSize??100,a=t.metadata??!1;if(n<1)throw new e.t(`page must be >= 1, got ${n}`);if(i<1)throw new e.t(`pageSize must be >= 1, got ${i}`);let o=await this.getRegistryAddress(),s=`total:${o}`,c=this.#r(s);if(c===void 0){let e=await this.signer.readContract(r.a(o));c=this.#i(s,Number(e))}let l=BigInt((n-1)*i),u=l+BigInt(i)>BigInt(c)?BigInt(c):l+BigInt(i);if(l>=BigInt(c))return{items:[],total:c,page:n,pageSize:i};let d=`slice:${o}:${l}:${u}`,f=this.#r(d);if(f===void 0){let e=await this.signer.readContract(r.o(o,l,u));f=this.#i(d,[...e])}if(!a)return{items:f,total:c,page:n,pageSize:i};let p=`metadata:${o}:${l}:${u}`,m=this.#r(p);if(m===void 0){let e=await Promise.allSettled(f.map(e=>this.#a(e))),t=e.some(e=>e.status===`rejected`),n=e.map((e,t)=>e.status===`fulfilled`?e.value:Object.assign({},f[t],{metadataFailed:!0,underlying:{name:`Unknown`,symbol:`???`,decimals:0,totalSupply:0n},confidential:{name:`Unknown`,symbol:`???`,decimals:0}}));m=this.#i(p,n,t?I:void 0)}return{items:m,total:c,page:n,pageSize:i}}async#a(e){let[n,r,i,a,o,s,c]=await Promise.all([this.signer.readContract(t.K(e.tokenAddress)),this.signer.readContract(t.q(e.tokenAddress)),this.signer.readContract(t.W(e.tokenAddress)),this.signer.readContract(t.G(e.tokenAddress)),this.signer.readContract(t.K(e.confidentialTokenAddress)),this.signer.readContract(t.q(e.confidentialTokenAddress)),this.signer.readContract(t.W(e.confidentialTokenAddress))]);return{...e,underlying:{name:n,symbol:r,decimals:i,totalSupply:a},confidential:{name:o,symbol:s,decimals:c}}}async getConfidentialToken(e){let t=await this.getRegistryAddress(),n=(0,a.getAddress)(e),i=`ct:${t}:${n}`,o=this.#r(i);if(o!==void 0)return o;let[s,c]=await this.signer.readContract(r.t(t,n));if(!s)return this.#i(i,null,I);let l=await this.signer.readContract(r.s(t,c));return this.#i(i,{confidentialTokenAddress:c,isValid:l})}async getUnderlyingToken(e){let t=await this.getRegistryAddress(),n=(0,a.getAddress)(e),i=`ut:${t}:${n}`,o=this.#r(i);if(o!==void 0)return o;let[s,c]=await this.signer.readContract(r.n(t,n));if(!s)return this.#i(i,null,I);let l=await this.signer.readContract(r.s(t,n));return this.#i(i,{tokenAddress:c,isValid:l})}async getTokenPairs(){let e=await this.getRegistryAddress();return this.signer.readContract(r.i(e))}async getTokenPairsLength(){let e=await this.getRegistryAddress();return this.signer.readContract(r.a(e))}async getTokenPairsSlice(e,t){let n=await this.getRegistryAddress();return this.signer.readContract(r.o(n,e,t))}async getTokenPair(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.r(t,e))}async getConfidentialTokenAddress(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.t(t,(0,a.getAddress)(e)))}async getTokenAddress(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.n(t,(0,a.getAddress)(e)))}async isConfidentialTokenValid(e){let t=await this.getRegistryAddress();return this.signer.readContract(r.s(t,(0,a.getAddress)(e)))}},R=class{relayer;signer;storage;sessionStorage;credentials;delegatedCredentials;registry;#e;#t;#n;#r;#i=null;#a=null;constructor(e){this.relayer=e.relayer,this.signer=e.signer,this.storage=e.storage,this.sessionStorage=e.sessionStorage??new t.A,this.#t=e.onEvent??function(){},this.registry=new L({signer:this.signer,registryAddresses:e.registryAddresses,registryTTL:e.registryTTL}),this.#e=e.registryTTL;let n={relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,keypairTTL:(()=>{let t=e.keypairTTL??2592e3;if(t<=0)throw Error(`keypairTTL must be a positive number (seconds)`);return t})(),sessionTTL:e.sessionTTL??2592e3,onEvent:this.#t};if(this.credentials=new t.O(n),this.delegatedCredentials=new t.D(n),this.#r=this.#o(),this.signer.subscribe){let n=e.signerLifecycleCallbacks,r=(e,n)=>{n().catch(n=>{this.#t?.({type:t.k.TransactionError,operation:e,error:t.Y(n),timestamp:Date.now()})})};this.#n=this.signer.subscribe({onDisconnect:()=>{r(`signerDisconnect`,async()=>{await this.#s(),this.#i=null,this.#a=null,n?.onDisconnect?.()})},onAccountChange:e=>{r(`signerAccountChange`,async()=>{await this.#s(),this.#i=(0,a.getAddress)(e);try{this.#a=await this.signer.getChainId()}catch{}n?.onAccountChange?.(e)})},onChainChange:e=>{r(`signerChainChange`,async()=>{await this.#s(),this.#a=e;try{this.#i=await this.signer.getAddress()}catch{}n?.onChainChange?.(e)})}})}}async#o(){try{let e=await this.signer.getAddress(),t=await this.signer.getChainId();this.#i=e,this.#a=t}catch{}}async#s(){if(await this.#r,this.#i===null||this.#a===null)return;let e=await t.O.computeStoreKey(this.#i,this.#a);await this.credentials.revokeByKey(e)}createReadonlyToken(e){return new t.w({relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,credentials:this.credentials,delegatedCredentials:this.delegatedCredentials,address:(0,a.getAddress)(e),onEvent:this.#t})}createToken(e,t){return new N({relayer:this.relayer,signer:this.signer,storage:this.storage,sessionStorage:this.sessionStorage,credentials:this.credentials,delegatedCredentials:this.delegatedCredentials,address:(0,a.getAddress)(e),wrapper:t?(0,a.getAddress)(t):void 0,onEvent:this.#t})}createWrappersRegistry(e){return new L({signer:this.signer,registryAddresses:e,registryTTL:this.#e})}async allow(...e){await this.credentials.allow(...e)}async revoke(...e){await this.credentials.revoke(...e)}async revokeSession(){await this.#r;let e=this.#i??await this.signer.getAddress(),n=this.#a??await this.signer.getChainId(),r=await t.O.computeStoreKey(e,n);await this.credentials.revokeByKey(r)}async isAllowed(){return this.credentials.isAllowed()}dispose(){this.#n?.(),this.#n=void 0}terminate(){this.dispose(),this.relayer.terminate()}[Symbol.dispose](){this.terminate()}};function z(e){return`zama:pending-unshield:${e}`}async function B(e,t,n){await e.set(z(t),n)}async function V(e,t){return e.get(z(t))}async function H(e,t){await e.delete(z(t))}var U=class{async get(e){return(await chrome.storage.session.get(e))[e]??null}async set(e,t){await chrome.storage.session.set({[e]:t})}async delete(e){await chrome.storage.session.remove(e)}};const W=new U;exports.ACL_TOPICS=t.a,exports.AclPausedError=t.et,exports.AclTopics=t.o,exports.ApprovalFailedError=o,exports.BalanceCheckUnavailableError=u,exports.ChromeSessionStorage=U,exports.ConfigurationError=e.t,exports.CredentialsManager=t.O,exports.DecryptionFailedError=e.r,exports.DefaultRegistryAddresses=F,exports.DelegatedCredentialsManager=t.D,exports.DelegationContractIsSelfError=t.tt,exports.DelegationCooldownError=t.nt,exports.DelegationDelegateEqualsContractError=t.rt,exports.DelegationExpirationTooSoonError=t.it,exports.DelegationExpiredError=t.at,exports.DelegationExpiryUnchangedError=t.ot,exports.DelegationNotFoundError=t.st,exports.DelegationNotPropagatedError=t.ct,exports.DelegationSelfNotAllowedError=t.lt,exports.ERC20ReadFailedError=d,exports.ERC7984_INTERFACE_ID=r.c,exports.ERC7984_WRAPPER_INTERFACE_ID=r.l,exports.EncryptionFailedError=e.i,exports.HardhatConfig=n.a,exports.IndexedDBStorage=h,exports.InsufficientConfidentialBalanceError=c,exports.InsufficientERC20BalanceError=l,exports.InvalidKeypairError=t.ut,exports.KeypairExpiredError=t.dt,exports.MainnetConfig=n.o,exports.MemoryStorage=t.A,exports.NoCiphertextError=t.ft,exports.ReadonlyToken=t.w,exports.RelayerRequestFailedError=e.n,exports.RelayerWeb=M,exports.SepoliaConfig=n.s,exports.SigningFailedError=t.pt,exports.SigningRejectedError=t.mt,exports.TOKEN_TOPICS=t.s,exports.Token=N,exports.Topics=t.c,exports.TransactionRevertedError=s,exports.WrappersRegistry=L,exports.ZERO_HANDLE=t.T,exports.ZamaError=e.a,exports.ZamaErrorCode=e.o,exports.ZamaSDK=R,exports.ZamaSDKEvents=t.k,exports.allowanceContract=t.V,exports.applyDecryptedValues=t.t,exports.approveContract=t.H,exports.balanceOfContract=t.U,exports.chromeSessionStorage=W,exports.clearPendingUnshield=H,exports.confidentialBalanceOfContract=r._,exports.confidentialBatchTransferContract=i.t,exports.confidentialTotalSupplyContract=r.v,exports.confidentialTransferContract=r.y,exports.confidentialTransferFromContract=r.b,exports.decimalsContract=t.W,exports.decodeAclEvent=t.l,exports.decodeAclEvents=t.u,exports.decodeConfidentialTransfer=t.d,exports.decodeDelegatedForUserDecryption=t.f,exports.decodeOnChainEvent=t.p,exports.decodeOnChainEvents=t.m,exports.decodeRevokedDelegationForUserDecryption=t.h,exports.decodeUnwrapRequested=t.g,exports.decodeUnwrappedFinalized=t._,exports.decodeUnwrappedStarted=t.v,exports.decodeWrapped=t.y,exports.delegateForUserDecryptionContract=t.N,exports.deploymentCoordinatorContract=r.x,exports.extractEncryptedHandles=t.n,exports.finalizeUnwrapContract=r.p,exports.findDelegatedForUserDecryption=t.b,exports.findRevokedDelegationForUserDecryption=t.x,exports.findUnwrapRequested=t.S,exports.findWrapped=t.C,exports.getBatchTransferFeeContract=t.L,exports.getConfidentialTokenAddressContract=r.t,exports.getDelegationExpiryContract=t.P,exports.getFeeRecipientContract=t.R,exports.getTokenAddressContract=r.n,exports.getTokenPairContract=r.r,exports.getTokenPairsContract=r.i,exports.getTokenPairsLengthContract=r.a,exports.getTokenPairsSliceContract=r.o,exports.getUnwrapFeeContract=t.z,exports.getWrapFeeContract=t.B,exports.getWrapperContract=i.n,exports.indexedDBStorage=g,exports.isConfidentialTokenContract=r.u,exports.isConfidentialTokenValidContract=r.s,exports.isConfidentialWrapperContract=r.d,exports.isFinalizeUnwrapOperatorContract=r.S,exports.isHandleDelegatedContract=t.F,exports.isOperatorContract=r.C,exports.loadPendingUnshield=V,exports.matchAclRevert=m,exports.matchZamaError=e.s,exports.memoryStorage=t.j,exports.nameContract=t.K,exports.parseActivityFeed=t.r,exports.rateContract=r.w,exports.revokeDelegationContract=t.I,exports.savePendingUnshield=B,exports.setFinalizeUnwrapOperatorContract=r.T,exports.setOperatorContract=r.E,exports.sortByBlockNumber=t.i,exports.supportsInterfaceContract=r.f,exports.symbolContract=t.q,exports.totalSupplyContract=r.D,exports.underlyingContract=r.m,exports.unwrapContract=r.O,exports.unwrapFromBalanceContract=r.k,exports.wrapContract=r.h,exports.wrapETHContract=r.g,exports.wrapperExistsContract=i.r;
515
515
  //# sourceMappingURL=index.cjs.map