@zama-fhe/sdk 3.0.0-alpha.2 → 3.0.0-alpha.21

package/dist/esm/relayer-sdk.worker.js

@@ -1,8 +1,5 @@
 (function() {
 	//#region src/utils/assertions.ts
-	function assertNonNullable(value, context) {
-		if (value === null || value === void 0) throw new TypeError(`${context} must not be null or undefined`);
-	}
 	function assertObject(value, context) {
 		if (typeof value !== "object" || value === null || Array.isArray(value)) throw new TypeError(`${context} must be an object, got ${typeof value}`);
 	}
@@ -63,19 +60,46 @@
 	}
 	//#endregion
 	//#region src/worker/relayer-sdk.worker.ts
-	let sdkInstance = null;
+	const instances = /* @__PURE__ */ new Map();
+	const pending = /* @__PURE__ */ new Map();
+	const configs = /* @__PURE__ */ new Map();
+	/** Convert an FheChain to the FhevmInstanceConfig shape expected by createInstance. */
+	function toInstanceConfig(chain) {
+		return {
+			...chain,
+			chainId: chain.id
+		};
+	}
 	let sdkGlobal = null;
-	function assertSdkInstance(instance) {
-		try {
-			assertNonNullable(instance, "Relayer SDK instance");
-		} catch (error) {
-			throw new Error("Relayer SDK is not initialized. Call INIT first.", { cause: error });
-		}
+	/**
+	* Get or lazily create an FhevmInstance for the given chain.
+	*/
+	async function getInstance(chainId) {
+		const existing = instances.get(chainId);
+		if (existing) return existing;
+		const inflight = pending.get(chainId);
+		if (inflight) return inflight;
+		const config = configs.get(chainId);
+		if (!config) throw new Error(`No config for chain ${chainId}. Available: [${[...configs.keys()].join(", ")}]`);
+		if (!sdkGlobal) throw new Error("Relayer SDK is not initialized. Call INIT first.");
+		const promise = sdkGlobal.createInstance({
+			...toInstanceConfig(config),
+			batchRpcCalls: false
+		}).then((instance) => {
+			instances.set(chainId, instance);
+			pending.delete(chainId);
+			return instance;
+		}).catch((err) => {
+			pending.delete(chainId);
+			throw err;
+		});
+		pending.set(chainId, promise);
+		return promise;
 	}
 	function unreachableFheType(_) {
 		throw new Error("Unsupported FHE type");
 	}
-	let relayerUrlBase = "";
+	const relayerUrls = /* @__PURE__ */ new Set();
 	let csrfTokenBase = "";
 	const CSRF_HEADER_NAME = "x-csrf-token";
 	const MUTATING_METHODS = new Set([
@@ -85,6 +109,12 @@
 		"PATCH"
 	]);
 	/**
+	* Register relayer URLs from chain configs for fetch interception.
+	*/
+	function registerRelayerUrls(chainConfigs) {
+		for (const c of chainConfigs) if (c.relayerUrl) relayerUrls.add(c.relayerUrl);
+	}
+	/**
 	* Send a success response back to the main thread.
 	* Optionally transfers ArrayBuffers for zero-copy performance.
 	*/
@@ -138,7 +168,7 @@
 		globalThis.fetch = async (input, init) => {
 			const url = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
 			const method = init?.method?.toUpperCase() ?? "GET";
-			if (relayerUrlBase && url.startsWith(relayerUrlBase)) {
+			if (relayerUrls.size > 0 && [...relayerUrls].some((base) => url.startsWith(base))) {
 				const headers = new Headers(init?.headers);
 				if (MUTATING_METHODS.has(method) && csrfTokenBase) headers.set(CSRF_HEADER_NAME, csrfTokenBase);
 				return originalFetch(input, {
@@ -193,24 +223,21 @@
 		}
 	}
 	/**
-	* Handle INIT request - load SDK and initialize WASM.
+	* Handle INIT request - load SDK WASM and register chain configs (instances are lazy).
 	*/
 	async function handleInit(request) {
 		const { id, type, payload } = request;
-		const { cdnUrl, fhevmConfig, csrfToken, integrity, thread } = payload;
 		try {
-			relayerUrlBase = fhevmConfig.relayerUrl ?? "";
+			if (payload.env !== "web") throw new Error(`Web worker received unexpected env: ${payload.env}`);
+			const { cdnUrl, csrfToken, integrity, thread } = payload;
 			csrfTokenBase = csrfToken;
 			setupFetchInterceptor();
 			await loadSdkScript(cdnUrl, integrity);
 			if (!self.relayerSDK) throw new Error("Failed to load relayerSDK from CDN");
 			sdkGlobal = self.relayerSDK;
 			await sdkGlobal.initSDK(thread !== null && thread !== void 0 ? { thread } : void 0);
-			const config = {
-				...fhevmConfig,
-				batchRpcCalls: false
-			};
-			sdkInstance = await sdkGlobal.createInstance(config);
+			registerRelayerUrls(payload.chains);
+			for (const chain of payload.chains) configs.set(chain.id, chain);
 			sendSuccess(id, type, { initialized: true });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
@@ -262,8 +289,7 @@
 		const { id, type, payload } = request;
 		const { values, contractAddress, userAddress } = payload;
 		try {
-			assertSdkInstance(sdkInstance);
-			const input = sdkInstance.createEncryptedInput(contractAddress, userAddress);
+			const input = (await getInstance(payload.chainId)).createEncryptedInput(contractAddress, userAddress);
 			for (const entry of values) addTypedValue(input, entry);
 			const encrypted = await input.encrypt();
 			sendSuccess(id, type, {
@@ -282,12 +308,12 @@
 	async function handleUserDecrypt(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
+			const instance = await getInstance(payload.chainId);
 			const handleContractPairs = payload.handles.map((handle) => ({
 				handle,
 				contractAddress: payload.contractAddress
 			}));
-			sendSuccess(id, type, { clearValues: await sdkInstance.userDecrypt(handleContractPairs, unprefixHex(payload.privateKey), unprefixHex(payload.publicKey), payload.signature, payload.signedContractAddresses, payload.signerAddress, payload.startTimestamp, payload.durationDays) });
+			sendSuccess(id, type, { clearValues: await instance.userDecrypt(handleContractPairs, unprefixHex(payload.privateKey), unprefixHex(payload.publicKey), payload.signature, payload.signedContractAddresses, payload.signerAddress, payload.startTimestamp, payload.durationDays) });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			const statusCode = extractHttpStatus(error);
@@ -316,8 +342,7 @@
 	async function handlePublicDecrypt(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			sendSuccess(id, type, { ...await sdkInstance.publicDecrypt(payload.handles) });
+			sendSuccess(id, type, { ...await (await getInstance(payload.chainId)).publicDecrypt(payload.handles) });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			console.error("[Worker] PublicDecrypt error:", message);
@@ -327,11 +352,10 @@
 	/**
 	* Handle GENERATE_KEYPAIR request.
 	*/
-	function handleGenerateKeypair(request) {
-		const { id, type } = request;
+	async function handleGenerateKeypair(request) {
+		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			const keypair = sdkInstance.generateKeypair();
+			const keypair = (await getInstance(payload.chainId)).generateKeypair();
 			sendSuccess(id, type, {
 				publicKey: prefixHex(keypair.publicKey),
 				privateKey: prefixHex(keypair.privateKey)
@@ -345,30 +369,10 @@
 	/**
 	* Handle CREATE_EIP712 request.
 	*/
-	function handleCreateEIP712(request) {
+	async function handleCreateEIP712(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			const eip712 = sdkInstance.createEIP712(unprefixHex(payload.publicKey), payload.contractAddresses, payload.startTimestamp, payload.durationDays);
-			sendSuccess(id, type, {
-				domain: {
-					name: eip712.domain.name,
-					version: eip712.domain.version,
-					chainId: Number(eip712.domain.chainId),
-					verifyingContract: eip712.domain.verifyingContract
-				},
-				types: { UserDecryptRequestVerification: eip712.types.UserDecryptRequestVerification.map((field) => ({
-					name: field.name,
-					type: field.type
-				})) },
-				message: {
-					publicKey: prefixHex(eip712.message.publicKey),
-					contractAddresses: [...eip712.message.contractAddresses],
-					startTimestamp: BigInt(eip712.message.startTimestamp),
-					durationDays: BigInt(eip712.message.durationDays),
-					extraData: prefixHex(eip712.message.extraData)
-				}
-			});
+			sendSuccess(id, type, (await getInstance(payload.chainId)).createEIP712(unprefixHex(payload.publicKey), payload.contractAddresses, payload.startTimestamp, payload.durationDays));
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			console.error("[Worker] CreateEIP712 error:", message);
@@ -378,11 +382,10 @@
 	/**
 	* Handle CREATE_DELEGATED_EIP712 request.
 	*/
-	function handleCreateDelegatedEIP712(request) {
+	async function handleCreateDelegatedEIP712(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			sendSuccess(id, type, sdkInstance.createDelegatedUserDecryptEIP712(unprefixHex(payload.publicKey), payload.contractAddresses, payload.delegatorAddress, payload.startTimestamp, payload.durationDays));
+			sendSuccess(id, type, (await getInstance(payload.chainId)).createDelegatedUserDecryptEIP712(unprefixHex(payload.publicKey), payload.contractAddresses, payload.delegatorAddress, payload.startTimestamp, payload.durationDays));
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			console.error("[Worker] CreateDelegatedEIP712 error:", message);
@@ -395,12 +398,12 @@
 	async function handleDelegatedUserDecrypt(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
+			const instance = await getInstance(payload.chainId);
 			const handleContractPairs = payload.handles.map((handle) => ({
 				handle,
 				contractAddress: payload.contractAddress
 			}));
-			sendSuccess(id, type, { clearValues: await sdkInstance.delegatedUserDecrypt(handleContractPairs, unprefixHex(payload.privateKey), unprefixHex(payload.publicKey), payload.signature, payload.signedContractAddresses, payload.delegatorAddress, payload.delegateAddress, payload.startTimestamp, payload.durationDays) });
+			sendSuccess(id, type, { clearValues: await instance.delegatedUserDecrypt(handleContractPairs, unprefixHex(payload.privateKey), unprefixHex(payload.publicKey), payload.signature, payload.signedContractAddresses, payload.delegatorAddress, payload.delegateAddress, payload.startTimestamp, payload.durationDays) });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			const statusCode = extractHttpStatus(error);
@@ -414,8 +417,7 @@
 	async function handleRequestZKProofVerification(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			const result = await sdkInstance.requestZKProofVerification(payload.zkProof);
+			const result = await (await getInstance(payload.chainId)).requestZKProofVerification(payload.zkProof);
 			sendSuccess(id, type, result, [result.inputProof.buffer, ...result.handles.map((h) => h.buffer)]);
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
@@ -426,11 +428,10 @@
 	/**
 	* Handle GET_PUBLIC_KEY request.
 	*/
-	function handleGetPublicKey(request) {
-		const { id, type } = request;
+	async function handleGetPublicKey(request) {
+		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			sendSuccess(id, type, { result: sdkInstance.getPublicKey() });
+			sendSuccess(id, type, { result: (await getInstance(payload.chainId)).getPublicKey() });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			console.error("[Worker] GetPublicKey error:", message);
@@ -440,11 +441,10 @@
 	/**
 	* Handle GET_PUBLIC_PARAMS request.
 	*/
-	function handleGetPublicParams(request) {
+	async function handleGetPublicParams(request) {
 		const { id, type, payload } = request;
 		try {
-			assertSdkInstance(sdkInstance);
-			sendSuccess(id, type, { result: sdkInstance.getPublicParams(payload.bits) });
+			sendSuccess(id, type, { result: (await getInstance(payload.chainId)).getPublicParams(payload.bits) });
 		} catch (error) {
 			const message = error instanceof Error ? error.message : String(error);
 			console.error("[Worker] GetPublicParams error:", message);
@@ -482,13 +482,13 @@
 					await handlePublicDecrypt(request);
 					break;
 				case "GENERATE_KEYPAIR":
-					handleGenerateKeypair(request);
+					await handleGenerateKeypair(request);
 					break;
 				case "CREATE_EIP712":
-					handleCreateEIP712(request);
+					await handleCreateEIP712(request);
 					break;
 				case "CREATE_DELEGATED_EIP712":
-					handleCreateDelegatedEIP712(request);
+					await handleCreateDelegatedEIP712(request);
 					break;
 				case "DELEGATED_USER_DECRYPT":
 					await handleDelegatedUserDecrypt(request);
@@ -497,10 +497,10 @@
 					await handleRequestZKProofVerification(request);
 					break;
 				case "GET_PUBLIC_KEY":
-					handleGetPublicKey(request);
+					await handleGetPublicKey(request);
 					break;
 				case "GET_PUBLIC_PARAMS":
-					handleGetPublicParams(request);
+					await handleGetPublicParams(request);
 					break;
 				default: console.error("[Worker] Unknown request type:", request.type);
 			}

package/dist/esm/types-C1S426x4.d.ts

@@ -0,0 +1,48 @@
+import { Address, EIP1193Provider, Hex } from "viem";
+import { Auth } from "@zama-fhe/relayer-sdk/bundle";
+
+//#region src/chains/types.d.ts
+/**
+ * Complete chain configuration — the single source of truth for
+ * per-chain FHE contract addresses and network settings.
+ *
+ * All built-in presets (`mainnet`, `sepolia`, `hardhat`, `hoodi`)
+ * are `FheChain` objects exported from `@zama-fhe/sdk/chains`.
+ */
+interface FheChain<TId extends number = number> {
+  readonly id: TId;
+  readonly gatewayChainId: number;
+  readonly relayerUrl: string;
+  readonly network: EIP1193Provider | string;
+  readonly aclContractAddress: Address;
+  readonly kmsContractAddress: Address;
+  readonly inputVerifierContractAddress: Address;
+  readonly verifyingContractAddressDecryption: Address;
+  readonly verifyingContractAddressInputVerification: Address;
+  /**
+   * Address of the `ConfidentialTokenWrappersRegistry` contract.
+   * `undefined` for chains where no registry is deployed (e.g. Hardhat).
+   */
+  readonly registryAddress: Address | undefined;
+  /**
+   * Address of the `TFHEExecutor` contract (cleartext mode only).
+   * Required by the `cleartext()` transport to read mock plaintexts.
+   * `undefined` for chains that use real FHE infrastructure.
+   */
+  readonly executorAddress?: Address | undefined;
+  /**
+   * Authentication for the relayer endpoint.
+   * Use `{ __type: "ApiKeyHeader", value: "your-key" }` for API-key auth,
+   * or `{ __type: "BearerToken", value: "your-token" }` for bearer auth.
+   */
+  readonly auth?: Auth;
+  /** Private key of the KMS signer used for EIP-712 verification of the decryption (cleartext mode). */
+  readonly kmsSignerPrivateKey?: Hex;
+  /** Private key of the input signer used for EIP-712 verification of the input verification (cleartext mode). */
+  readonly inputSignerPrivateKey?: Hex;
+}
+/** At least one chain is required. */
+type AtLeastOneChain = readonly [FheChain, ...FheChain[]];
+//#endregion
+export { FheChain as n, AtLeastOneChain as t };
+//# sourceMappingURL=types-C1S426x4.d.ts.map

package/dist/esm/types-CVyJHEya.d.ts

@@ -0,0 +1,14 @@
+import { t as AtLeastOneChain } from "./types-C1S426x4.js";
+import { o as ZamaConfigBase } from "./types-FY7ciI37.js";
+import { EIP1193Provider, PublicClient, WalletClient } from "viem";
+
+//#region src/viem/types.d.ts
+/** Viem config — pass native viem clients directly. */
+interface ZamaConfigViem<TChains extends AtLeastOneChain = AtLeastOneChain> extends ZamaConfigBase<TChains> {
+  publicClient: PublicClient;
+  walletClient: WalletClient;
+  ethereum?: EIP1193Provider;
+}
+//#endregion
+export { ZamaConfigViem as t };
+//# sourceMappingURL=types-CVyJHEya.d.ts.map

package/dist/esm/types-DePjTTbo.d.ts

@@ -0,0 +1,30 @@
+import { t as AtLeastOneChain } from "./types-C1S426x4.js";
+import { o as ZamaConfigBase } from "./types-FY7ciI37.js";
+import { EIP1193Provider } from "viem";
+import { Provider, Signer } from "ethers";
+
+//#region src/ethers/types.d.ts
+/**
+ * Ethers config — pass an EIP-1193 provider, ethers Signer, or ethers Provider.
+ *
+ * The three variants are mutually exclusive, matching {@link EthersSignerConfig}:
+ * - `{ ethereum }` — browser EIP-1193 provider
+ * - `{ signer }` — ethers Signer (e.g. Wallet)
+ * - `{ provider }` — ethers Provider (read-only)
+ */
+type ZamaConfigEthers<TChains extends AtLeastOneChain = AtLeastOneChain> = ZamaConfigBase<TChains> & ({
+  ethereum: EIP1193Provider;
+  signer?: never;
+  provider?: never;
+} | {
+  signer: Signer;
+  ethereum?: never;
+  provider?: never;
+} | {
+  ethereum: EIP1193Provider;
+  provider: Provider;
+  signer?: never;
+});
+//#endregion
+export { ZamaConfigEthers as t };
+//# sourceMappingURL=types-DePjTTbo.d.ts.map