blocklock-agent is a blockchain-based timelock decryption and signature agent that uses BLS cryptography and the Blocklock protocol on the Ethereum-compatible Filecoin network. It listens for on-chain DecryptionRequested events and responds based on cryptographic criteria.
Note: You do not need to run your own node. The dcipher network operates trusted
blocklock-agentinstances on supported chains, and can fulfill requests on your behalf.
If you want to run your own agent in production, you must:
- Use your own BLS private key (do not reuse any defaults!)
- Deploy the required smart contracts from blocklock-solidity
- Pass your BLS public key to the deployed contracts so they can verify your agent’s responses.
- 🔁 Event Listener: Watches for
DecryptionRequestedevents from theDecryptionSendercontract. - 🔐 BLS Signatures: Signs request conditions using BLS cryptography.
- 🧠 IBE Integration: Decrypts messages using identity-based encryption.
- ⚙️ State Persistence: Persists last processed block and request ID to disk.
- 📡 Health Endpoint: Exposes HTTP endpoint for readiness/health probes.
- 🔄 Event Replay: Replays unfulfilled past requests upon restart.
- 🧮 Rate Limiting: Limits the number of requests fulfilled per block.
- Node.js v16+
- Access to a deployed
DecryptionSendercontract - Connection to a blockchain node (e.g., Filecoin Calibration or mainnet)
git clone <repository-url>
cd blocklock-agent
npm installYou can configure blocklock-agent using CLI flags or environment variables:
| CLI Flag | Env Var | Default | Description |
|---|---|---|---|
--port |
BLOCKLOCK_PORT |
8080 |
HTTP port for health checks |
--rpc-url |
BLOCKLOCK_RPC_URL |
https://api.calibration.node.glif.io/rpc/v1 |
Ethereum-compatible RPC or WebSocket endpoint |
--private-key |
BLOCKLOCK_PRIVATE_KEY |
default private key | Private key for signing and contract interaction |
--bls-key |
BLOCKLOCK_BLS_PRIVATE_KEY |
default BLS key | BLS private key used to sign request conditions |
--decryption-sender-addr |
BLOCKLOCK_DECRYPTION_SENDER_CONTRACT_ADDRESS |
deployed contract address | Address of the deployed DecryptionSender smart contract |
--polling-interval |
BLOCKLOCK_POLLING_INTERVAL |
1000 (ms) |
How frequently to poll the blockchain for events |
--log-level |
BLOCKLOCK_LOG_LEVEL |
info |
Log verbosity: info, debug, error, trace |
--state-path |
BLOCKLOCK_STATE_PATH |
./state.json |
File path to store last processed block height and request ID |
--rate-limit |
BLOCKLOCK_RATE_LIMIT |
implementation-defined default | Maximum number of requests to fulfill per block |
Run the agent:
npm run start [options]Example:
npm run start \
--rpc-url http://localhost:8545 \
--state-path ./state.json \
--rate-limit 3If no state file exists, the agent begins at the current block height. A sample state file format is:
{ "chainHeight": 123456 }-
Startup:
- Connects to the blockchain using the configured RPC
- Loads cryptographic keys and config
- Reads
state.jsonto determine where to resume processing - Queries past
DecryptionRequestedevents from the last known block - Begins polling for new events
-
Decryption Handling:
- For each request:
- Verifies that the scheme is supported (
BN254-BLS-BLOCKLOCK) - Computes a BLS signature over the request condition
- Submits a fulfillment via
DecryptionSender
- Verifies that the scheme is supported (
- For each request:
-
State Persistence:
- Saves the latest processed block height and request ID to
state.jsonto ensure replay safety
- Saves the latest processed block height and request ID to
-
Health Endpoint:
- HTTP server responds on the configured port to report liveness/health
-
Rate Limiting:
- Ensures that only a limited number of requests are fulfilled per block (useful for gas control)
npm run buildcrypto/– Core cryptographic logic for BLS and IBEgenerated/– Auto-generated contract bindings (TypeChain)provider.ts– Blockchain connection utilitiesindex.ts– Application entry point
To test locally:
- Start a local chain like Anvil
- Deploy
DecryptionSender,BlocklockSender, and any relevant user contracts - Emit
DecryptionRequestedevents to simulate activity
See blocklock-solidity for contract setup and example scripts.
-
missing revert data:- Check the RPC URL, private key, contract address, and ciphertext validity
- Refer to this example script
-
Unhandled Exception:
- Ensure the blockchain node is accessible
- Confirm that the start block exists and the chain isn’t pruned
Pull requests and issues are welcome. Help us make blocklock-agent better!
💙 Special thanks to the Filecoin Foundation for funding this work.
MIT — see LICENSE