Update localnet deploy scripts for Rust launcher

.github/workflows/ci.yml

@@ -50,7 +50,7 @@ jobs:
 
   launcher-nontee-check:
     name: "MPC Launcher non-tee check"
-    runs-on: warp-ubuntu-2404-x64-2x
+    runs-on: warp-ubuntu-2404-x64-8x
     timeout-minutes: 60
     permissions:
       contents: read
@@ -67,7 +67,7 @@ jobs:
 
   docker-launcher-build-and-verify:
     name: "Build MPC Launcher Docker image and verify"
-    runs-on: warp-ubuntu-2404-x64-2x
+    runs-on: warp-ubuntu-2404-x64-8x
     timeout-minutes: 60
     permissions:
       contents: read
@@ -78,10 +78,25 @@ jobs:
         with:
           persist-credentials: false
 
-      - name: Install skopeo
+      - name: Allow unprivileged user namespaces (needed by repro-env/podman on Ubuntu 24.04)
+        run: sudo sysctl -w kernel.apparmor_restrict_unprivileged_userns=0
+
+      - name: Install build dependencies
         run: |
           sudo apt-get update
-          sudo apt-get install -y skopeo
+          sudo apt-get install -y skopeo liblzma-dev podman
+
+      - name: Install repro-env
+        run: |
+          wget 'https://github.com/kpcyrd/repro-env/releases/download/v0.4.3/repro-env'
+          echo '2a00b21ac5e990e0c6a0ccbf3b91e34a073660d1f4553b5f3cda2b09cc4d4d8a  repro-env' | sha256sum -c -
+          sudo install -m755 repro-env -t /usr/bin
+
+      - name: Cache Rust dependencies
+        uses: Swatinem/rust-cache@f13886b937689c021905a6b90929199931d60db1 # v2.8.1
+        with:
+          save-if: ${{ github.ref == 'refs/heads/main' }}
+          cache-provider: "warpbuild"
 
       - name: Build launcher docker image and verify its hash
         shell: bash
@@ -383,37 +398,6 @@ jobs:
             target/wasm32-unknown-unknown/release-contract/test_parallel_contract.wasm
             libs/nearcore/target/release/neard
 
-  tee-launcher-tests:
-    name: "TEE Launcher: pytests"
-    runs-on: warp-ubuntu-2404-x64-2x
-    timeout-minutes: 60
-    permissions:
-      contents: read
-
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
-        with:
-          persist-credentials: false
-
-      - name: Setup python
-        uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
-        with:
-          python-version: "3.11"
-
-      - name: Setup virtualenv
-        run: |
-          python3 -m venv tee_launcher/venv
-          source tee_launcher/venv/bin/activate
-          cd tee_launcher 
-          pip install -r requirements.txt
-
-      - name: Run pytest
-        run: |
-          source tee_launcher/venv/bin/activate
-          cd tee_launcher 
-          PYTHONPATH=. pytest -vsx
-
   fast-ci-checks:
     name: "Fast CI checks"
     runs-on: warp-ubuntu-2404-x64-8x

.github/workflows/docker_build_launcher.yml

@@ -13,7 +13,7 @@ on:
 jobs:
   build-and-push-images:
     name: "Build and push Docker launcher image with commit hash"
-    runs-on: warp-ubuntu-2404-x64-2x
+    runs-on: warp-ubuntu-2404-x64-8x
     permissions:
       contents: read
 
@@ -23,17 +23,32 @@ jobs:
         with:
           persist-credentials: false
 
+      - name: Allow unprivileged user namespaces (needed by repro-env/podman on Ubuntu 24.04)
+        run: sudo sysctl -w kernel.apparmor_restrict_unprivileged_userns=0
+
+      - name: Install build dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y skopeo liblzma-dev podman
+
+      - name: Install repro-env
+        run: |
+          wget 'https://github.com/kpcyrd/repro-env/releases/download/v0.4.3/repro-env'
+          echo '2a00b21ac5e990e0c6a0ccbf3b91e34a073660d1f4553b5f3cda2b09cc4d4d8a  repro-env' | sha256sum -c -
+          sudo install -m755 repro-env -t /usr/bin
+
+      - name: Cache Rust dependencies
+        uses: Swatinem/rust-cache@f13886b937689c021905a6b90929199931d60db1 # v2.8.1
+        with:
+          save-if: ${{ github.ref == 'refs/heads/main' }}
+          cache-provider: "warpbuild"
+
       - name: Login to Docker Hub
         uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
 
-      - name: Install skopeo
-        run: |
-          sudo apt-get update
-          sudo apt-get install -y skopeo
-
       - name: Build and push launcher image
         run: |
           export LAUNCHER_IMAGE_NAME=mpc-launcher

Cargo.toml

@@ -24,6 +24,7 @@ members = [
     "crates/node-types",
     "crates/primitives",
     "crates/tee-authority",
+    "crates/tee-launcher",
     "crates/test-migration-contract",
     "crates/test-parallel-contract",
     "crates/test-utils",
@@ -166,7 +167,7 @@ reddsa = { git = "https://github.com/near/reddsa", rev = "c7cd92a55f7399d8d7f8c0
 ] }
 regex = "1.12.3"
 # TODO(#2053): upgrading this leads to errors
-reqwest = { version = "0.12.28", features = ["multipart", "json"] }
+reqwest = { version = "0.12.28", default-features = false, features = ["charset", "http2", "rustls-tls", "multipart", "json"] }
 rmp-serde = "1.3.1"
 rstest = { version = "0.26.1" }
 rustls = { version = "0.23.37", default-features = false, features = ["std"] }

crates/contract/assets/launcher_docker_compose.yaml.template

@@ -15,7 +15,7 @@ services:
       - /var/run/docker.sock:/var/run/docker.sock
       - /var/run/dstack.sock:/var/run/dstack.sock
       - /tapp:/tapp:ro
-      - shared-volume:/mnt/shared:ro
+      - shared-volume:/mnt/shared:rw
 
     security_opt:
       - no-new-privileges:true

crates/mpc-attestation/src/attestation.rs

@@ -139,6 +139,7 @@ impl Attestation {
                         .get_single_event(MPC_IMAGE_HASH_EVENT)?
                         .event_payload;
 
+                    // TODO(#2478): decode raw bytes
                     let mpc_image_hash_bytes: Vec<u8> = hex::decode(mpc_image_hash_payload)
                         .map_err(|err| {
                             VerificationError::Custom(format!(

crates/tee-launcher/Cargo.toml

@@ -0,0 +1,37 @@
+[package]
+name = "tee-launcher"
+readme = "README.md"
+version = { workspace = true }
+license = { workspace = true }
+edition = { workspace = true }
+
+[[bin]]
+name = "tee-launcher"
+path = "src/main.rs"
+
+[features]
+external-services-tests = []
+
+[dependencies]
+backon = { workspace = true }
+clap = { workspace = true }
+dstack-sdk = { workspace = true }
+launcher-interface = { workspace = true }
+near-mpc-bounded-collections = { workspace = true }
+reqwest = { workspace = true }
+serde = { workspace = true }
+serde_json = { workspace = true }
+tempfile = { workspace = true }
+thiserror = { workspace = true }
+tokio = { workspace = true }
+toml = { workspace = true }
+tracing = { workspace = true }
+tracing-subscriber = { workspace = true }
+url = { workspace = true, features = ["serde"] }
+
+[dev-dependencies]
+assert_matches = { workspace = true }
+httpmock = { workspace = true }
+
+[lints]
+workspace = true

crates/tee-launcher/README.md

@@ -0,0 +1,110 @@
+# TEE Launcher (Rust)
+
+Secure launcher for initializing and attesting a Docker-based MPC node inside a TEE-enabled environment (e.g., Intel TDX via dstack).
+
+Replaces the previous Python launcher (`tee_launcher/launcher.py`).
+
+## What it does
+
+1. Loads a TOML configuration file from `/tapp/user_config`
+2. Selects an approved MPC image hash (from on-disk approved list, override, or default)
+3. Validates the image by resolving it through the Docker registry and pulling by digest
+4. In TEE mode: extends RTMR3 by emitting the image digest to dstack
+5. Writes the MPC node config to a shared volume
+6. Launches the MPC container via `docker compose up -d`
+
+## CLI Arguments
+
+All arguments are read from environment variables (set via docker-compose `environment`):
+
+| Variable | Required | Description |
+|----------|----------|-------------|
+| `PLATFORM` | Yes | `TEE` or `NONTEE` |
+| `DOCKER_CONTENT_TRUST` | Yes | Must be `1` |
+| `DEFAULT_IMAGE_DIGEST` | Yes | Fallback `sha256:...` digest when the approved-hashes file is absent |
+
+## Configuration (TOML)
+
+The launcher reads its configuration from `/tapp/user_config` as a TOML file. This is a change from the previous Python launcher which used a `.env`-style file.
+
+```toml
+[launcher_config]
+image_tags = ["latest"]
+image_name = "nearone/mpc-node"
+registry = "registry.hub.docker.com"
+rpc_request_timeout_secs = 10
+rpc_request_interval_secs = 1
+rpc_max_attempts = 20
+# Optional: force selection of a specific digest (must be in approved list)
+# mpc_hash_override = "sha256:abcd..."
+port_mappings = [
+  { host = 11780, container = 11780 },
+  { host = 2200, container = 2200 },
+]
+
+# Opaque MPC node configuration.
+# The launcher does not interpret these fields — they are re-serialized
+# to TOML and mounted into the container at /mnt/shared/mpc-config.toml
+# for the MPC binary to consume via `start-with-config-file`.
+[mpc_config]
+# ... any fields the MPC node expects
+```
+
+### `[launcher_config]`
+
+| Field | Default | Description |
+|-------|---------|-------------|
+| `image_tags` | `["latest"]` | Comma-separated Docker image tags to search |
+| `image_name` | `nearone/mpc-node` | Docker image name |
+| `registry` | `registry.hub.docker.com` | Docker registry hostname |
+| `rpc_request_timeout_secs` | `10` | Per-request timeout for registry API calls |
+| `rpc_request_interval_secs` | `1` | Initial retry interval for registry API calls |
+| `rpc_max_attempts` | `20` | Maximum registry API retry attempts |
+| `mpc_hash_override` | (none) | Optional: force a specific `sha256:` digest (must appear in approved list) |
+
+| `port_mappings` | `[]` | Port mappings forwarded to the MPC container (`{ host, container }` pairs) |
+
+### `[mpc_config]`
+
+Arbitrary TOML table passed through to the MPC node. The launcher writes this verbatim to `/mnt/shared/mpc-config.toml`, which the container reads on startup.
+
+## Image Hash Selection
+
+Priority order:
+1. If the approved hashes file (`/mnt/shared/image-digest.bin`) exists and `mpc_hash_override` is set: use the override (must be in the approved list)
+2. If the approved hashes file exists: use the newest approved hash (first in list)
+3. If the file is absent: fall back to `DEFAULT_IMAGE_DIGEST`
+
+## File Locations
+
+| Path | Description |
+|------|-------------|
+| `/tapp/user_config` | TOML configuration file |
+| `/mnt/shared/image-digest.bin` | JSON file with approved image hashes (written by the MPC node) |
+| `/mnt/shared/mpc-config.toml` | MPC node config (written by the launcher) |
+| `/var/run/dstack.sock` | dstack unix socket (TEE mode only) |
+
+## Key Differences from the Python Launcher
+
+| Aspect | Python (`launcher.py`) | Rust (`tee-launcher`) |
+|--------|----------------------|----------------------|
+| Config format | `.env` key-value file | TOML |
+| MPC node config | Environment variables passed to container | TOML file mounted into container |
+| Container launch | `docker run` with flags | `docker compose up -d` with rendered template |
+| RTMR3 extension | `curl` to unix socket | `dstack-sdk` native client |
+
+## Building
+
+```bash
+cargo build -p tee-launcher --release
+```
+
+## Testing
+
+```bash
+# Unit tests
+cargo nextest run -p tee-launcher
+
+# Integration tests (requires network access and Docker Hub)
+cargo nextest run -p tee-launcher --features integration-test
+```

crates/tee-launcher/mpc-node-docker-compose.tee.template.yml

@@ -0,0 +1,21 @@
+services:
+  mpc-node:
+    image: "{{IMAGE_NAME}}@{{IMAGE}}"
+    container_name: "{{CONTAINER_NAME}}"
+    security_opt:
+      - no-new-privileges:true
+    ports: {{PORTS}}
+    environment:
+      - "DSTACK_ENDPOINT={{DSTACK_UNIX_SOCKET}}"
+    volumes:
+      - /tapp:/tapp:ro
+      - shared-volume:/mnt/shared
+      - mpc-data:/data
+      - "{{DSTACK_UNIX_SOCKET}}:{{DSTACK_UNIX_SOCKET}}"
+    command: ["/app/mpc-node", "start-with-config-file", "{{MPC_CONFIG_SHARED_PATH}}"]
+
+volumes:
+  shared-volume:
+    name: shared-volume
+  mpc-data:
+    name: mpc-data

crates/tee-launcher/mpc-node-docker-compose.template.yml

@@ -0,0 +1,18 @@
+services:
+  mpc-node:
+    image: "{{IMAGE_NAME}}@{{IMAGE}}"
+    container_name: "{{CONTAINER_NAME}}"
+    security_opt:
+      - no-new-privileges:true
+    ports: {{PORTS}}
+    volumes:
+      - /tapp:/tapp:ro
+      - shared-volume:/mnt/shared
+      - mpc-data:/data
+    command: ["/app/mpc-node", "start-with-config-file", "{{MPC_CONFIG_SHARED_PATH}}"]
+
+volumes:
+  shared-volume:
+    name: shared-volume
+  mpc-data:
+    name: mpc-data

crates/tee-launcher/src/constants.rs

@@ -0,0 +1,8 @@
+pub(crate) const MPC_CONTAINER_NAME: &str = "mpc-node";
+pub(crate) const IMAGE_DIGEST_FILE: &str = "/mnt/shared/image-digest.bin";
+pub(crate) const DSTACK_UNIX_SOCKET: &str = "/var/run/dstack.sock";
+pub(crate) const DSTACK_USER_CONFIG_FILE: &str = "/tapp/user_config";
+
+/// Path on the shared volume where the launcher writes the MPC config and the
+/// MPC container reads it.  Both containers mount `shared-volume` at `/mnt/shared`.
+pub(crate) const MPC_CONFIG_SHARED_PATH: &str = "/mnt/shared/mpc-config.toml";