Uploader

​

Uploader

const uploader = client.uploader;

​

Methods

• uploadCDR
• allocate
• write
• encryptDataKey

​

uploadCDR

• params.dataKey: Uint8Array - The secret data to encrypt (arbitrary bytes, up to 32 bytes for a key)
• params.globalPubKey: Uint8Array - The DKG global public key (from observer.getGlobalPubKey())
• params.updatable: boolean - Whether the vault can be rewritten after initial write
• params.writeConditionAddr: `0x${string}` - Address of the write condition contract (or wallet address for simple access)
• params.readConditionAddr: `0x${string}` - Address of the read condition contract (or wallet address for simple access)
• params.writeConditionData: `0x${string}` - ABI-encoded data passed to the write condition
• params.readConditionData: `0x${string}` - ABI-encoded data passed to the read condition
• params.accessAuxData: `0x${string}` - Auxiliary data passed to conditions during write
• params.allocateFeeOverride (optional): bigint - Skip fee query and use this value
• params.writeFeeOverride (optional): bigint - Skip fee query and use this value

const globalPubKey = await client.observer.getGlobalPubKey();
const dataKey = new TextEncoder().encode("my secret");

const { uuid, ciphertext, txHashes } = await client.uploader.uploadCDR({
  dataKey,
  globalPubKey,
  updatable: false,
  writeConditionAddr: walletAddress,
  readConditionAddr: walletAddress,
  writeConditionData: "0x",
  readConditionData: "0x",
  accessAuxData: "0x",
});

console.log(`Vault UUID: ${uuid}`);
console.log(`Allocate tx: ${txHashes.allocate}`);
console.log(`Write tx: ${txHashes.write}`);

interface UploadCDRResponse {
  uuid: number;
  ciphertext: TDH2Ciphertext;
  txHashes: {
    allocate: `0x${string}`;
    write: `0x${string}`;
  };
}

​

allocate

• params.updatable: boolean - Whether the vault can be rewritten
• params.writeConditionAddr: `0x${string}` - Write condition contract address
• params.readConditionAddr: `0x${string}` - Read condition contract address
• params.writeConditionData: `0x${string}` - ABI-encoded write condition data
• params.readConditionData: `0x${string}` - ABI-encoded read condition data
• params.feeOverride (optional): bigint - Skip fee query

const { txHash, uuid } = await client.uploader.allocate({
  updatable: false,
  writeConditionAddr: walletAddress,
  readConditionAddr: walletAddress,
  writeConditionData: "0x",
  readConditionData: "0x",
});

console.log(`Vault ${uuid} allocated at tx: ${txHash}`);

interface AllocateResponse {
  txHash: `0x${string}`;
  uuid: number; // parsed from VaultAllocated event
}

​

write

• params.uuid: number - The vault UUID
• params.accessAuxData: `0x${string}` - Auxiliary data passed to the write condition
• params.encryptedData: `0x${string}` - Hex-encoded TDH2 ciphertext
• params.feeOverride (optional): bigint - Skip fee query

import { toHex } from "viem";

const { txHash } = await client.uploader.write({
  uuid: 42,
  accessAuxData: "0x",
  encryptedData: toHex(ciphertext.raw),
});

interface WriteResponse {
  txHash: `0x${string}`;
}

​

encryptDataKey

• params.dataKey: Uint8Array - The plaintext data to encrypt
• params.globalPubKey: Uint8Array - DKG global public key (34 bytes)
• params.label: Uint8Array - 32-byte label binding ciphertext to a vault (use uuidToLabel(uuid))

import { uuidToLabel } from "@piplabs/cdr-sdk";

const label = uuidToLabel(uuid);
const ciphertext = await client.uploader.encryptDataKey({
  dataKey: new TextEncoder().encode("secret"),
  globalPubKey,
  label,
});

console.log(ciphertext.raw); // Uint8Array - serialized TDH2 ciphertext
console.log(ciphertext.label); // Uint8Array - the label used

interface TDH2Ciphertext {
  raw: Uint8Array;   // serialized ciphertext (cb-mpc format)
  label: Uint8Array; // 32-byte context binding
}