Skip to content

doc: verifier's responsibility #86

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

doc: verifier's responsibility #86

wants to merge 1 commit into from

Conversation

@mrain
Copy link
Contributor

@mrain mrain commented Sep 25, 2025

Closes #<ISSUE_NUMBER>

This PR:

This PR does not:

Key places to review:

alxiong
alxiong reviewed Sep 26, 2025
View reviewed changes
README.md
- Verify that the `bmt_commitment` comes from a trusted source, e.g. the HotShot on-chain light client.
- Validate that the `vid_pp_hash` matches the public parameter of the Verifiable Information Dispersal (VID) scheme used by the Espresso sequencer.

> **Security Note:** Accepting a valid proof with invalid public inputs can lead to consensus failures, state corruption, or security vulnerabilities. Always perform strict checks on all public input fields.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

use [!IMPORTANT] alert?

README.md
Comment on lines +78 to +82
2. **Check Public Input Validity**:
- Confirm that the `rollup_txs_commit` is well-formed and matches the expected rollup transactions.
- Ensure that the `ns_id` is the expected namespace ID.
- Verify that the `bmt_commitment` comes from a trusted source, e.g. the HotShot on-chain light client.
- Validate that the `vid_pp_hash` matches the public parameter of the Verifiable Information Dispersal (VID) scheme used by the Espresso sequencer.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i think we should reorder. also be more explicit about "how to check" or "what to do"

  • check ns_id should probably be the logically first thing
  • should vid_pp and bmt_comm be fetched by some espresso RPC or public endpoint, if so, we should list them (@jbearer do you know?)
  • then explicitly says that rollup_tx_commit should match the field in the public inputs of the zkVM execution proof. The field that commits to the entire batch of tx being proven.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@alxiong alxiong alxiong left review comments

@philippecamacho philippecamacho Awaiting requested review from philippecamacho philippecamacho is a code owner

@akonring akonring Awaiting requested review from akonring akonring is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mrain @alxiong