feat: two phase bottom-up checkpoint batch execution (#1330)

Co-authored-by: cryptoAtwill <108330426+cryptoAtwill@users.noreply.github.com>

Author: LePremierHomme

contracts/.storage-layouts/GatewayActorModifiers.json

@@ -22,6 +22,10 @@ error GatewayCannotBeZero();
 error InvalidActorAddress();
 error InvalidCheckpointEpoch();
 error CannotSubmitFutureCheckpoint();
+error BatchMsgAlreadyExecuted();
+error MissingBatchCommitment();
+error DuplicatedCheckpointHeight(uint64 height);
+error InvalidInclusionProof();
 error InvalidBatchEpoch();
 error InvalidCheckpointSource();
 error InvalidBatchSource();

contracts/.storage-layouts/GatewayDiamond.json

@@ -2,7 +2,8 @@
 pragma solidity ^0.8.23;
 
 import {GatewayActorModifiers} from "../../lib/LibGatewayActorStorage.sol";
-import {BottomUpCheckpoint} from "../../structs/CrossNet.sol";
+import {BottomUpCheckpoint, IpcEnvelope} from "../../structs/CrossNet.sol";
+import {BottomUpBatchRecorded} from "../../structs/BottomUpBatch.sol";
 import {LibGateway} from "../../lib/LibGateway.sol";
 import {LibQuorum} from "../../lib/LibQuorum.sol";
 import {Subnet} from "../../structs/Subnet.sol";
@@ -45,20 +46,31 @@ contract CheckpointingFacet is GatewayActorModifiers {
 
         LibGateway.checkMsgLength(checkpoint.msgs);
 
-        execBottomUpMsgs(checkpoint.msgs, subnet);
-
         emit CheckpointCommitted({subnet: checkpoint.subnetID.getAddress(), subnetHeight: checkpoint.blockHeight});
     }
 
+    /// @notice submit a verified batch of committed cross-net messages for execution.
+    /// @param msgs The batch of messages to be executed.
+    function execBottomUpMsgBatch(IpcEnvelope[] calldata msgs) external {
+        (bool subnetExists, Subnet storage subnet) = LibGateway.getSubnet(msg.sender);
+        if (!subnetExists) {
+            revert SubnetNotFound();
+        }
+
+        _execBottomUpMsgBatch(msgs, subnet);
+    }
+
     /// @notice creates a new bottom-up checkpoint
     /// @param checkpoint - a bottom-up checkpoint
     /// @param membershipRootHash - a root hash of the Merkle tree built from the validator public keys and their weight
     /// @param membershipWeight - the total weight of the membership
+    /// @param msgs - the full messages batch
     /// @param activity - the full activity rollup
     function createBottomUpCheckpoint(
         BottomUpCheckpoint calldata checkpoint,
         bytes32 membershipRootHash,
         uint256 membershipWeight,
+        IpcEnvelope[] calldata msgs,
         FullActivityRollup calldata activity
     ) external systemActorOnly {
         if (LibGateway.bottomUpCheckpointExists(checkpoint.blockHeight)) {
@@ -76,6 +88,7 @@ contract CheckpointingFacet is GatewayActorModifiers {
 
         LibGateway.storeBottomUpCheckpoint(checkpoint);
 
+        emit BottomUpBatchRecorded(uint64(checkpoint.blockHeight), msgs);
         emit ActivityRollupRecorded(uint64(checkpoint.blockHeight), activity);
     }
 
@@ -109,9 +122,7 @@ contract CheckpointingFacet is GatewayActorModifiers {
         });
     }
 
-    /// @notice submit a batch of cross-net messages for execution.
-    /// @param msgs The batch of bottom-up cross-network messages to be executed.
-    function execBottomUpMsgs(IpcEnvelope[] calldata msgs, Subnet storage subnet) internal {
+    function _execBottomUpMsgBatch(IpcEnvelope[] calldata msgs, Subnet storage subnet) internal {
         uint256 totalValue;
         uint256 crossMsgLength = msgs.length;
 

contracts/.storage-layouts/SubnetActorDiamond.json

@@ -26,6 +26,9 @@ interface IGateway {
     /// @notice commitCheckpoint propagates the commitment of a checkpoint from a child
     function commitCheckpoint(BottomUpCheckpoint calldata bottomUpCheckpoint) external;
 
+    /// @notice submit a verified batch of committed cross-net messages for execution.
+    function execBottomUpMsgBatch(IpcEnvelope[] calldata msgs) external;
+
     /// @notice fund locks the received funds —denominated in the native coin— and moves the value down the hierarchy,
     /// crediting the funds to the specified address in the destination network.
     ///

contracts/.storage-layouts/SubnetActorModifiers.json

@@ -99,23 +99,20 @@ library LibActivity {
 
         SubnetKey subnetKey = SubnetKey.wrap(subnet.toHash());
 
-        uint256 size = s.tracker[subnetKey].pendingHeights.length();
+        ConsensusTracker storage tracker = s.tracker[subnetKey];
+        bytes32[] memory heights = tracker.pendingHeights.values();
+        uint256 size = heights.length;
+
         result = new ListPendingReturnEntry[](size);
 
-        // Ok to not optimize with unchecked increments, since we expect this to be used off-chain only, for introspection.
         for (uint256 i = 0; i < size; i++) {
-            ConsensusTracker storage tracker = s.tracker[subnetKey];
-            bytes32[] memory heights = tracker.pendingHeights.values();
-
-            for (uint256 j = 0; j < heights.length; j++) {
-                uint64 height = uint64(uint256(heights[j]) << 192 >> 192);
-                ConsensusPendingAtHeight storage pending = tracker.pending[height];
-                result[i] = ListPendingReturnEntry({
-                    height: height,
-                    summary: pending.summary,
-                    claimed: pending.claimed.values()
-                });
-            }
+            uint64 height = uint64(uint256(heights[i]));
+            ConsensusPendingAtHeight storage pending = tracker.pending[height];
+            result[i] = ListPendingReturnEntry({
+                height: height,
+                summary: pending.summary,
+                claimed: pending.claimed.values()
+            });
         }
 
         return result;
@@ -151,7 +148,16 @@ library LibActivity {
         // Prune state for this height if all validators have claimed.
         if (pending.claimed.length() == pending.summary.stats.totalActiveValidators) {
             ConsensusTracker storage tracker = s.tracker[subnetKey];
+
             tracker.pendingHeights.remove(bytes32(uint256(checkpointHeight)));
+
+            // Clear nested set before deleting the struct.
+            ConsensusPendingAtHeight storage pending = tracker.pending[checkpointHeight];
+            uint256 len = pending.claimed.length();
+            for (uint256 i = 0; i < len; i++) {
+                address addr = pending.claimed.at(0);
+                pending.claimed.remove(addr);
+            }
             delete tracker.pending[checkpointHeight];
         }
     }

contracts/contracts/errors/IPCErrors.sol

@@ -0,0 +1,168 @@
+// SPDX-License-Identifier: MIT OR Apache-2.0
+pragma solidity ^0.8.23;
+
+import {IValidatorRewarder} from "../interfaces/IValidatorRewarder.sol";
+import {Consensus, CompressedActivityRollup} from "../structs/Activity.sol";
+import {BottomUpBatch} from "../structs/BottomUpBatch.sol";
+import {IpcEnvelope} from "../structs/CrossNet.sol";
+import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
+import {MerkleProof} from "@openzeppelin/contracts/utils/cryptography/MerkleProof.sol";
+import {SubnetID} from "../structs/Subnet.sol";
+import {SubnetIDHelper} from "../lib/SubnetIDHelper.sol";
+import {InvalidInclusionProof, BatchMsgAlreadyExecuted, MissingBatchCommitment, DuplicatedCheckpointHeight} from "../errors/IPCErrors.sol";
+import {BottomUpBatch} from "../structs/BottomUpBatch.sol";
+
+/// Library to handle bottom up batch 2-phase execution.
+library LibBottomUpBatch {
+    bytes32 private constant NAMESPACE = keccak256("bottomupbatch");
+
+    using EnumerableSet for EnumerableSet.Bytes32Set;
+
+    /// @notice Represents a pending bottom-up batch commitment awaiting full execution at a specific checkpoint height.
+    struct PendingBatch {
+      /// @notice The pending batch commitment.
+      BottomUpBatch.Commitment commitment;
+      /// @notice Set of message leaf hashes that have already been executed for this batch.
+      EnumerableSet.Bytes32Set executed;
+    }
+
+    /// @notice Storage structure used by the SubnetActor to manage bottom-up message batches and their execution status.
+    struct BottomUpBatchStorage {
+        /// @notice Set of checkpoint heights with batches that are still pending execution.
+        EnumerableSet.Bytes32Set pendingHeights;
+        /// @notice Mapping of checkpoint height to its pending batch data.
+        mapping(uint256 => PendingBatch) pending;
+    }
+
+    function ensureValidProof(
+        BottomUpBatch.MerkleHash[] memory proof,
+        BottomUpBatch.MerkleHash root,
+        BottomUpBatch.MerkleHash leaf
+    ) internal pure {
+        bytes32[] memory proofBytes = new bytes32[](proof.length);
+        for (uint256 i = 0; i < proof.length; i++) {
+            proofBytes[i] = BottomUpBatch.MerkleHash.unwrap(proof[i]);
+        }
+        bool valid = MerkleProof.verify({
+            proof: proofBytes,
+            root: BottomUpBatch.MerkleHash.unwrap(root),
+            leaf: BottomUpBatch.MerkleHash.unwrap(leaf)
+        });
+        if (!valid) {
+            revert InvalidInclusionProof();
+        }
+    }
+
+    function recordBottomUpBatchCommitment(
+        uint64 checkpointHeight,
+        BottomUpBatch.Commitment calldata commitment
+    ) internal {
+        BottomUpBatchStorage storage s = bottomUpBatchStorage();
+
+        bool added = s.pendingHeights.add(bytes32(uint256(checkpointHeight)));
+        if (!added) {
+            revert DuplicatedCheckpointHeight(checkpointHeight);
+        }
+
+        PendingBatch storage pending = s.pending[checkpointHeight];
+        pending.commitment = commitment;
+    }
+
+    function processBottomUpBatchMsg(
+        uint256 checkpointHeight,
+        IpcEnvelope calldata ipcMsg,
+        BottomUpBatch.MerkleHash[] calldata proof
+    ) internal {
+        BottomUpBatchStorage storage s = bottomUpBatchStorage();
+
+        // Find the pending batch.
+        PendingBatch storage pending = s.pending[checkpointHeight];
+        BottomUpBatch.MerkleHash root = pending.commitment.msgsRoot;
+        if (BottomUpBatch.MerkleHash.unwrap(root) == bytes32(0)) {
+            revert MissingBatchCommitment();
+        }
+
+        // Check the validity of the proof.
+        BottomUpBatch.MerkleHash leaf = makeLeaf(ipcMsg);
+        ensureValidProof(
+            proof,
+            root,
+            leaf
+        );
+
+        bool added = pending.executed.add(BottomUpBatch.MerkleHash.unwrap(leaf));
+        if (!added) {
+            revert BatchMsgAlreadyExecuted();
+        }
+
+        // Prune state for this height if all msgs were executed.
+        if (pending.executed.length() == pending.commitment.totalNumMsgs) {
+            s.pendingHeights.remove(bytes32(uint256(checkpointHeight)));
+
+            // Clear nested set before deleting the struct.
+            PendingBatch storage pending = s.pending[checkpointHeight];
+            uint256 len = pending.executed.length();
+            for (uint256 i = 0; i < len; i++) {
+                bytes32 leaf = pending.executed.at(0);
+                pending.executed.remove(leaf);
+            }
+            delete s.pending[checkpointHeight];
+        }
+    }
+
+    /// Return type for the list pending commitments view method.
+    struct ListPendingCommitmentsEntry {
+        uint64 height;
+        BottomUpBatch.Commitment commitment;
+        bytes32[] executed;
+    }
+
+    /// A view accessor to query the pending commitments for a given subnet.
+    function listPendingCommitments() internal view returns (ListPendingCommitmentsEntry[] memory result) {
+        BottomUpBatchStorage storage s = bottomUpBatchStorage();
+
+        bytes32[] memory heights = s.pendingHeights.values();
+        uint256 size = heights.length;
+
+        result = new ListPendingCommitmentsEntry[](size);
+
+        for (uint256 i = 0; i < size; i++) {
+            uint64 height = uint64(uint256(heights[i]));
+            PendingBatch storage pending = s.pending[height];
+            result[i] = ListPendingCommitmentsEntry({
+                height: height,
+                commitment: pending.commitment,
+                executed: pending.executed.values()
+            });
+        }
+    }
+
+
+    function makeLeaf(IpcEnvelope memory _msg) public pure returns (BottomUpBatch.MerkleHash) {
+        // solhint-disable-next-line func-named-parameters
+        bytes32 leaf = keccak256(bytes.concat(keccak256(abi.encode(
+            _msg.kind,
+            _msg.localNonce,
+            _msg.originalNonce,
+            _msg.value,
+            _msg.to.subnetId.root,
+            _msg.to.subnetId.route,
+            _msg.to.rawAddress.addrType,
+            _msg.to.rawAddress.payload,
+            _msg.from.subnetId.root,
+            _msg.from.subnetId.route,
+            _msg.from.rawAddress.addrType,
+            _msg.from.rawAddress.payload,
+            _msg.message
+        ))));
+        return BottomUpBatch.MerkleHash.wrap(leaf);
+    }
+
+    function bottomUpBatchStorage() internal pure returns (BottomUpBatchStorage storage ds) {
+        bytes32 position = NAMESPACE;
+        assembly {
+            ds.slot := position
+        }
+        return ds;
+    }
+}

contracts/contracts/gateway/router/CheckpointingFacet.sol

@@ -6,7 +6,8 @@ import {GatewayActorStorage, LibGatewayActorStorage} from "../lib/LibGatewayActo
 import {BURNT_FUNDS_ACTOR} from "../constants/Constants.sol";
 import {SubnetID, Subnet, AssetKind, Asset} from "../structs/Subnet.sol";
 import {SubnetActorGetterFacet} from "../subnet/SubnetActorGetterFacet.sol";
-import {CallMsg, IpcMsgKind, IpcEnvelope, OutcomeType, BottomUpMsgBatch, BottomUpMsgBatch, BottomUpCheckpoint, ParentFinality} from "../structs/CrossNet.sol";
+import {CallMsg, IpcMsgKind, IpcEnvelope, OutcomeType, BottomUpMsgBatch, BottomUpCheckpoint, ParentFinality} from "../structs/CrossNet.sol";
+import {BottomUpBatch} from "../structs/BottomUpBatch.sol";
 import {Membership} from "../structs/Subnet.sol";
 import {CrossMsgHelper} from "../lib/CrossMsgHelper.sol";
 import {FilAddress} from "fevmate/contracts/utils/FilAddress.sol";
@@ -94,17 +95,7 @@ library LibGateway {
         b.nextConfigurationNumber = checkpoint.nextConfigurationNumber;
         b.blockHeight = checkpoint.blockHeight;
         b.activity = checkpoint.activity;
-
-        uint256 msgLength = checkpoint.msgs.length;
-        for (uint256 i; i < msgLength; ) {
-            // We need to push because initializing an array with a static
-            // length will cause a copy from memory to storage, making
-            // the compiler unhappy.
-            b.msgs.push(checkpoint.msgs[i]);
-            unchecked {
-                ++i;
-            }
-        }
+        b.msgs = checkpoint.msgs;
     }
 
     /// @notice stores bottom-up batch
@@ -557,12 +548,12 @@ library LibGateway {
         }
     }
 
-    /// @notice Checks the length of a message batch, ensuring it is in (0, maxMsgsPerBottomUpBatch).
-    /// @param msgs The batch of messages to check.
-    function checkMsgLength(IpcEnvelope[] calldata msgs) internal view {
+    /// @notice Checks the length of a message batch commitment, ensuring it is in (0, maxMsgsPerBottomUpBatch).
+    /// @param commitment The batch commitment to check.
+    function checkMsgLength(BottomUpBatch.Commitment calldata commitment) internal view {
         GatewayActorStorage storage s = LibGatewayActorStorage.appStorage();
 
-        if (msgs.length > s.maxMsgsPerBottomUpBatch) {
+        if (commitment.totalNumMsgs > s.maxMsgsPerBottomUpBatch) {
             revert MaxMsgsPerBatchExceeded();
         }
     }