search

shield-halvedSeismicElementsFiller

Encryption elements generation and calldata encryption filler

SeismicElementsFiller is the core filler responsible for preparing Seismic shielded transactions. It generates encryption elements, fetches the TEE public key, encrypts calldata, and attaches all necessary metadata to the transaction request.

hashtag
Overview

When a Seismic transaction (type 0x4A) passes through the filler pipeline, SeismicElementsFiller performs the following:

  1. Fetches the TEE public key from the Seismic node (cached after first call)

  2. Fetches the latest block number to calculate the transaction expiration

  3. Generates an encryption nonce using ECDH between the ephemeral secret key and the TEE public key

  4. Encrypts the calldata using AES-GCM

  5. Attaches TxSeismicElements (nonce, ephemeral public key, expiration block) to the transaction request

For non-Seismic transactions, the filler is a no-op.

hashtag
Definition

pub struct SeismicElementsFiller {
    tee_pubkey: Option<PublicKey>,
    blocks_window: Option<u64>,
    ephemeral_secret_key: SecretKey,
    signed_read: bool,
}
Field
Type
Description

tee_pubkey

Option<PublicKey>

Cached TEE public key (fetched lazily if None)

blocks_window

Option<u64>

Custom expiration window in blocks (default: 100)

ephemeral_secret_key

SecretKey

Randomly generated ephemeral key for ECDH

signed_read

bool

Whether to enable signed read mode

hashtag
Constructors

hashtag
new

Create a new filler with default settings. The TEE public key will be fetched lazily on the first transaction.

Returns: A new SeismicElementsFiller with:

  • No cached TEE public key (will be fetched from the node)

  • Default blocks window (100)

  • A freshly generated ephemeral secret key

  • Signed read disabled

hashtag
with_tee_pubkey_and_url

Create a filler with a pre-cached TEE public key. This avoids the initial RPC call to fetch the key.

Parameter
Type
Required
Description

tee_pubkey

PublicKey

Yes

The TEE public key to cache

Returns: A SeismicElementsFiller with the given TEE public key pre-cached.

hashtag
Configuration Methods

hashtag
with_signed_read

Set the signed read flag. When enabled, the filler includes additional data for signed read operations.

Parameter
Type
Required
Description

signed_read

bool

Yes

Whether to enable signed read mode

Returns: Self (builder pattern).

hashtag
with_blocks_window

Set a custom expiration window. The transaction will expire after current_block + blocks_window.

Parameter
Type
Required
Description

blocks_window

u64

Yes

Number of blocks until transaction expires

Returns: Self (builder pattern).

circle-info

The default BLOCKS_WINDOW is 100 blocks. In most cases, you do not need to change this. Increase it if transactions are expiring before confirmation on a congested network.

hashtag
ephemeral_secret_key

Access the ephemeral secret key generated at construction time.

Returns: &SecretKey -- Reference to the ephemeral secret key.

hashtag
Two-Phase Design

SeismicElementsFiller implements Alloy's TxFiller<N> trait, which defines two phases:

hashtag
Prepare Phase

The prepare phase is async. It fetches external data needed for encryption:

  1. TEE public key -- Fetched from the node via seismic_getTeePublicKey RPC call (or uses cached value)

  2. Latest block number -- Fetched to calculate the expiration block

These values are returned as a "fillable" that is passed to the fill phase.

hashtag
Fill Phase

The fill phase is synchronous. It uses the prepared data to:

  1. Calculate the expiration block: latest_block + blocks_window

  2. Generate the encryption nonce via ECDH between the ephemeral secret key and the TEE public key

  3. Encrypt the calldata using AES-GCM with the derived shared secret

  4. Create TxSeismicElements containing the nonce, ephemeral public key, and expiration

  5. Call N::set_seismic_elements() to attach elements to the request

  6. Call N::set_request_input() to replace plaintext calldata with encrypted calldata

hashtag
Encryption Flow

The node's TEE can reverse this process because it holds the private key corresponding to tee_public_key. It uses the ephemeral public key (included in TxSeismicElements) to derive the same shared secret.

hashtag
Constants

Constant
Value
Description

BLOCKS_WINDOW

100

Default number of blocks before transaction expires

hashtag
Usage

hashtag
Default Configuration

In most cases, you do not interact with SeismicElementsFiller directly. It is automatically included in the provider's filler pipeline:

hashtag
With Pre-Cached TEE Key

If you already know the TEE public key (e.g., from a previous session):

hashtag
With Custom Expiration Window

hashtag
With Signed Reads

hashtag
Notes

  • The ephemeral secret key is generated once at construction and reused for all transactions through this filler instance

  • The TEE public key is fetched lazily and cached -- only one RPC call is made per filler instance

  • For non-Seismic transactions, the filler does nothing (no encryption, no elements)

  • The encryption uses seismic-enclave under the hood for ECDH and AES-GCM operations

  • If the TEE public key changes (e.g., node rotation), you need a new filler or provider instance

hashtag
See Also

PreviousFillersNextSeismicGasFiller

Last updated