sdk/js-sdk/docs/encryption.md
Encryption is how you get data into an FHEVM smart contract. You take plaintext values (like a number or a boolean), encrypt them client-side, and send the encrypted inputs + a proof to your contract. The contract can then operate on these values while they stay encrypted.
You specify types using Solidity-style names ("uint32", "bool", "address"):
| Type | Accepts | Value range | Encrypted bits |
|---|---|---|---|
"bool" | boolean, number, bigint | true/false | 2 |
"uint8" | number, bigint | 0-255 | 8 |
"uint16" | number, bigint | 0-65,535 | 16 |
"uint32" | number, bigint | 0-4,294,967,295 | 32 |
"uint64" | number, bigint | 0-2^64-1 | 64 |
"uint128" | number, bigint | 0-2^128-1 | 128 |
"uint256" | number, bigint | 0-2^256-1 | 256 |
"address" | string | Ethereum address | 160 |
Capacity limit: A single encrypt() call can hold at most 2048 encrypted bits total. For example, you could encrypt 32 uint64 values (32 x 64 = 2048), or 64 uint32 values (64 x 32 = 2048). The SDK validates this before making any network calls.
Call encrypt() with the values you want to encrypt. The SDK automatically fetches and caches the network's public encryption key (~50MB) on first use. Protocol context data (extraData) is fetched automatically — you don't need to provide it.
const encrypted = await client.encrypt({
contractAddress: "0xYourContract...",
userAddress: "0xYourWallet...",
values: [
{ type: "uint32", value: 100 },
{ type: "bool", value: true },
{ type: "address", value: "0xAbCdEf0123456789AbCdEf0123456789AbCdEf01" },
{ type: "uint256", value: 12345678901234567890n },
],
});
The first encrypt() call downloads the public key and initializes the TFHE WASM module. Subsequent calls reuse the cached key. If you want to control when this download happens (for example, behind a loading spinner), call await client.init() at app startup.
The encrypt() call returns the encrypted handles and proof bytes you need to pass to your smart contract:
encrypted.inputProof // The encoded proof — pass this to your contract
encrypted.externalEncryptedValues // One encrypted value per input, in the same order
Each value in externalEncryptedValues corresponds to one of your input values, in order:
const encryptedValue0 = encrypted.externalEncryptedValues[0]; // corresponds to { type: "uint32", value: 100 }
encryptedValue0.fheType; // "euint32"
encryptedValue0.bytes32Hex; // the 32-byte encrypted value as a hex string
encryptedValue0.index; // 0 (position in the proof)
When encrypting a single value (passing values as a single TypedValueLike instead of an array), the return type has externalEncryptedValue (singular) instead:
const encrypted = await client.encrypt({
contractAddress: "0xYourContract...",
userAddress: "0xYourWallet...",
values: { type: "uint32", value: 42 },
});
encrypted.externalEncryptedValue; // single ExternalEncryptedValue
encrypted.inputProof; // proof bytes
The encrypt() method is a convenience wrapper that combines two lower-level steps. If you need more control (for example, to separate ZK proof generation from Relayer submission), you can use them individually:
This step runs TFHE WASM to encrypt your values and generate a zero-knowledge proof. It's CPU-intensive and triggers WASM initialization on first call.
import { generateZkProof } from "@fhevm/sdk/actions/encrypt";
const zkProof = await generateZkProof(client, {
contractAddress: "0xYourContract...",
userAddress: "0xYourWallet...",
values: [{ type: "uint32", value: 42 }],
});
This step sends the ZK proof to the Relayer, which verifies it and returns coprocessor signatures and the final encrypted values. Protocol context data (extraData) is fetched automatically.
import { fetchVerifiedInputProof } from "@fhevm/sdk/actions/base";
const proof = await fetchVerifiedInputProof(client, {
zkProof,
});