fix(aggregation_mode): merkle-tree backend openzeppelin compliant (#1931)

Co-authored-by: MauroFab <[email protected]>
Co-authored-by: JuArce <[email protected]>

Author: 3 people

aggregation_mode/aggregation_programs/risc0/src/lib.rs

@@ -40,11 +40,26 @@ impl IsMerkleTreeBackend for Risc0ImageIdAndPubInputs {
         leaf.commitment()
     }
 
+    /// Computes a commutative Keccak256 hash, ensuring H(a, b) == H(b, a).
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#Hashes
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/Hashes.sol#L17-L19
+    ///
+    /// Compliant with OpenZeppelin's `processProofCalldata` function from MerkleProof.sol.
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#MerkleProof
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/MerkleProof.sol#L114-L128
     fn hash_new_parent(child_1: &Self::Node, child_2: &Self::Node) -> Self::Node {
         let mut hasher = Keccak::v256();
-        hasher.update(child_1);
-        hasher.update(child_2);
-
+        if child_1 < child_2 {
+            hasher.update(child_1);
+            hasher.update(child_2);
+        } else {
+            hasher.update(child_2);
+            hasher.update(child_1);
+        }
         let mut hash = [0u8; 32];
         hasher.finalize(&mut hash);
         hash

aggregation_mode/aggregation_programs/sp1/src/lib.rs

@@ -37,10 +37,26 @@ impl IsMerkleTreeBackend for SP1VkAndPubInputs {
         leaf.hash()
     }
 
+    /// Computes a commutative Keccak256 hash, ensuring H(a, b) == H(b, a).
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#Hashes
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/Hashes.sol#L17-L19
+    ///
+    /// Compliant with OpenZeppelin's `processProofCalldata` function from MerkleProof.sol.
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#MerkleProof
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/MerkleProof.sol#L114-L128
     fn hash_new_parent(child_1: &Self::Node, child_2: &Self::Node) -> Self::Node {
         let mut hasher = Keccak256::new();
-        hasher.update(child_1);
-        hasher.update(child_2);
+        if child_1 < child_2 {
+            hasher.update(child_1);
+            hasher.update(child_2);
+        } else {
+            hasher.update(child_2);
+            hasher.update(child_1);
+        }
         hasher.finalize().into()
     }
 }

aggregation_mode/programs_ids.json

@@ -1,4 +1,4 @@
 {
-  "risc0_image_id": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0",
-  "sp1_vk_hash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69"
+  "risc0_image_id": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8",
+  "sp1_vk_hash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384"
 }

aggregation_mode/src/aggregators/mod.rs

@@ -150,10 +150,26 @@ impl IsMerkleTreeBackend for AlignedProof {
         leaf.commitment()
     }
 
+    /// Computes a commutative Keccak256 hash, ensuring H(a, b) == H(b, a).
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#Hashes
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/Hashes.sol#L17-L19
+    ///
+    /// Compliant with OpenZeppelin's `processProofCalldata` function from MerkleProof.sol.
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#MerkleProof
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/MerkleProof.sol#L114-L128
     fn hash_new_parent(child_1: &Self::Node, child_2: &Self::Node) -> Self::Node {
         let mut hasher = Keccak256::new();
-        hasher.update(child_1);
-        hasher.update(child_2);
+        if child_1 < child_2 {
+            hasher.update(child_1);
+            hasher.update(child_2);
+        } else {
+            hasher.update(child_2);
+            hasher.update(child_1);
+        }
         hasher.finalize().into()
     }
 }

batcher/aligned-sdk/src/sdk/aggregation.rs

@@ -70,10 +70,26 @@ impl IsMerkleTreeBackend for Hash32 {
         leaf.0
     }
 
+    /// Computes a commutative Keccak256 hash, ensuring H(a, b) == H(b, a).
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#Hashes
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/Hashes.sol#L17-L19
+    ///
+    /// Compliant with OpenZeppelin's `processProofCalldata` function from MerkleProof.sol.
+    ///
+    /// See: https://docs.openzeppelin.com/contracts/5.x/api/utils#MerkleProof
+    ///
+    /// Source: https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/MerkleProof.sol#L114-L128
     fn hash_new_parent(child_1: &Self::Node, child_2: &Self::Node) -> Self::Node {
         let mut hasher = Keccak256::new();
-        hasher.update(child_1);
-        hasher.update(child_2);
+        if child_1 < child_2 {
+            hasher.update(child_1);
+            hasher.update(child_2);
+        } else {
+            hasher.update(child_2);
+            hasher.update(child_1);
+        }
         hasher.finalize().into()
     }
 }

contracts/script/deploy/config/devnet/proof-aggregator-service.devnet.config.json

@@ -6,8 +6,8 @@
     "alignedAggregatorAddressPrivateKey": "0x2a871d0798f97d79848a013d4936a73bf4cc922c825d33c1cf7073dff6d409c6"
   },
   "programs_id": {
-    "sp1AggregationProgramVKHash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69",
-    "risc0AggregationProgramImageId": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0"
+    "sp1AggregationProgramVKHash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384",
+    "risc0AggregationProgramImageId": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8"
   },
   "permissions": {
     "owner": "0x14dC79964da2C08b23698B3D3cc7Ca32193d9955"

contracts/script/deploy/config/devnet/proof-aggregator-service.devnet.mock.config.json

@@ -6,8 +6,8 @@
     "alignedAggregatorAddressPrivateKey": "0x2a871d0798f97d79848a013d4936a73bf4cc922c825d33c1cf7073dff6d409c6"
   },
   "programs_id": {
-    "sp1AggregationProgramVKHash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69",
-    "risc0AggregationProgramImageId": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0"
+    "sp1AggregationProgramVKHash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384",
+    "risc0AggregationProgramImageId": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8"
   },
   "permissions": {
     "owner": "0x14dC79964da2C08b23698B3D3cc7Ca32193d9955"

contracts/script/deploy/config/holesky/proof-aggregator-service.holesky.config.json

@@ -5,8 +5,8 @@
     "alignedAggregatorAddress": "0x9403dF48130621f87974a5A1d1d11d3aF1222A82"
   },
   "programs_id": {
-    "sp1AggregationProgramVKHash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69",
-    "risc0AggregationProgramImageId": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0"
+    "sp1AggregationProgramVKHash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384",
+    "risc0AggregationProgramImageId": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8"
   },
   "permissions": {
     "owner": "0x97aEC5F28181abe5d2aD40dBe7FbaEe014529b7D"

contracts/script/deploy/config/holesky/proof-aggregator-service.holesky.config.stage.json

@@ -5,8 +5,8 @@
     "alignedAggregatorAddress": "0x3595aa7d30f89f65933e7421dec77e4478d9fb01"
   },
   "programs_id": {
-    "sp1AggregationProgramVKHash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69",
-    "risc0AggregationProgramImageId": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0"
+    "sp1AggregationProgramVKHash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384",
+    "risc0AggregationProgramImageId": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8"
   },
   "permissions": {
     "owner": "0xE3C695b73dbe27106aF4530b152de3e57456B385"

contracts/script/deploy/config/mainnet/proof-aggregator-service.mainnet.config.json

@@ -5,8 +5,8 @@
     "alignedAggregatorAddress": "<aligned_aggregator_address>"
   },
   "programs_id": {
-    "sp1AggregationProgramVKHash": "0x0035279b39b0a20aac302dd3c569f3a6324a00acc1b8e864af9e3a5fbf453b69",
-    "risc0AggregationProgramImageId": "0xb0ce0665805c4219d134845b74be6f1f97ab74dbbc1b341b73af4068d33bc1b0"
+    "sp1AggregationProgramVKHash": "0x008ad92d4c564c912ad93d8660bf67a8d2e9088aa942da4e605a5e8c4383c384",
+    "risc0AggregationProgramImageId": "0x8bb4145379d717fd7e3921751a2060246445ef290cdad782884180861cf0a3e8"
   },
   "permissions": {
     "owner": "<owner_address>"