Blob state

[Kukoomomo]

Summary by CodeRabbit

• New Features

  • Re-commit batch state using previously stored blob hashes.
  • SDK bindings can read the verifier contract version.

• Updates

  • Batch commit flow now reuses stored blob-hash state when present.
  • Finalization automatically cleans up per-batch blob-hash state.

• Tests

  • Test utilities added to pre-store blob-hash state and exercise proof-based commit paths.

• Chores

  • Deployed contract artifacts/bytecode updated.

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds a new external commitState entrypoint and per-batch batchBlobVersionedHashes storage; commitBatch/commitBatchWithProof now select between computed or stored blob-versioned hashes and forward them to an updated _commitBatchWithBatchData; tests and Go bindings updated; deployed bytecode blobs replaced.

Changes

Cohort / File(s)	Summary
Interface contracts/contracts/l1/rollup/IRollup.sol	Added function commitState(BatchDataInput calldata, BatchSignatureInput calldata) external;.
Core contract contracts/contracts/l1/rollup/Rollup.sol	Added mapping(uint256 => bytes32) public batchBlobVersionedHashes; added commitState external function; commitBatch and commitBatchWithProof now derive/use a blobVersionedHash and pass it to _commitBatchWithBatchData; _commitBatchWithBatchData signature gains bytes32 blobVersionedHash; genesis initializes stored hash; finalize deletes prior batch hash; minor revert message edits.
Tests — base utils contracts/contracts/test/base/L1MessageBase.t.sol	Added test-only constants (BATCH_BLOB_VERSIONED_HASHES_SLOT, ZERO_VERSIONED_HASH), helpers to pre-store blob hashes, compute data hash, setup delay/warp for proof, mock verifier, and build V0 batch header for proof flows.
Tests — scenarios contracts/contracts/test/Rollup.t.sol	Reworked tests to favor proof path (commitBatchWithProof) and new commitState flow; added helper usage and pre-stored blob-hash setups; adjusted assertions and revert expectations.
Bindings — deployed bytecode blobs bindings/bin/rollup_deployed.hex, bindings/bin/zkevmverifierv1_deployed.hex	Replaced deployed contract hex blobs with updated compiled bytecode payloads (deployed bytecode changed).
Bindings — Go wrappers bindings/bindings/zkevmverifierv1.go, bindings/bindings/zkevmverifierv1_more.go	Added VERSION call bindings (returns string) to verifier Go bindings and updated ZkEvmVerifierV1DeployedBin hex payload in bindings.

Sequence Diagram(s)

sequenceDiagram
    actor Staker
    participant Rollup
    participant Storage as batchBlobVersionedHashes
    participant Verifier

    Note over Staker,Rollup: Initial commit (no stored hash)
    Staker->>Rollup: commitBatch(batchData, sig, blob)
    Rollup->>Verifier: verify(blob/proof)
    Verifier-->>Rollup: ok
    Rollup->>Rollup: _commitBatchWithBatchData(..., computedBlobHash)
    Rollup->>Storage: store batchBlobVersionedHashes[batchIndex] = computedBlobHash
    Rollup-->>Staker: batch committed

    Note over Staker,Rollup: Re-commit state using stored hash
    Staker->>Rollup: commitState(batchData, sig)
    Rollup->>Storage: read batchBlobVersionedHashes[nextBatchIndex]
    Storage-->>Rollup: storedBlobHash
    Rollup->>Verifier: verify(signatures)
    Verifier-->>Rollup: ok
    Rollup->>Rollup: _commitBatchWithBatchData(..., storedBlobHash)
    Rollup-->>Staker: state committed

    Note over Rollup,Storage: Finalization cleanup
    Rollup->>Rollup: finalizeBatch()
    Rollup->>Storage: delete batchBlobVersionedHashes[batchIndex - 1]
    Rollup-->>Staker: finalized

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related PRs

• feat: Jade prover upgrade #895: Overlaps rollup commit/proof surface and state re-commit semantics (commitState / blob-hash handling).
• Move block context to blob #649: Touches batch header formats and commit flows that interact with blob/versioned-hash storage and proof paths.
• Sequencer failure #849: Modifies commit flow and _commitBatchWithBatchData-related logic affecting similar code paths.

Suggested reviewers

• r3aker86
• Web3Jumb0

Poem

🐇 I tucked a hash in memory tight,

No bulky blob to bring at night.
Recommit with what we stored,
Finalize and sweep the board.
Hoppity-hop — the ledger's light.

🚥 Pre-merge checks | ✅ 1 | ❌ 2

❌ Failed checks (1 warning, 1 inconclusive)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.
Title check	❓ Inconclusive	The title 'Blob state' is vague and generic, using non-descriptive terms that don't clearly convey what specific changes were made to the codebase.	Provide a more descriptive title that clearly indicates the main change, such as 'Add blob hash state management to Rollup contract' or 'Implement commitState function for blob state handling'.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch blob_state

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Tip

CodeRabbit can scan for known vulnerabilities in your dependencies using OSV Scanner.

OSV Scanner will automatically detect and report security vulnerabilities in your project's dependencies. No additional configuration is required.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (3)

contracts/contracts/test/Rollup.t.sol (1)

763-764: Add one end-to-end test for the new stored-hash lifecycle.

These fixtures manually seed batchBlobVersionedHashes, but they never verify the production flow: initial commit populates it, revertBatch() preserves it, commitState() reuses it, and commitBatch() still reverts when neither a stored hash nor blob is present. The new path can regress without any of these tests noticing.

Also applies to: 835-836, 994-995, 1032-1033, 1058-1059

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/contracts/test/Rollup.t.sol` around lines 763 - 764, Add a single
end-to-end test in Rollup.t.sol that exercises the stored-hash lifecycle: call
_setStoredBlobHash(1) (the initial commit path) and assert
batchBlobVersionedHashes is populated, call revertBatch() and assert the stored
hash remains unchanged, call commitState() and assert it reuses the stored hash
for state commitment, and finally ensure commitBatch() still reverts when
neither a stored hash nor an on-chain blob is present; apply the same pattern to
the other similar fixtures referenced around the _setStoredBlobHash usages so
the production flow (populate → preserve on revert → reuse on commitState →
revert if absent) is fully covered.

contracts/contracts/l1/rollup/Rollup.sol (1)

224-225: Confirm the rollout drains or backfills in-flight batches.

These are the only new write sites for batchBlobVersionedHashes. If a live proxy is upgraded while batches are already committed but not finalized, those historical indices stay zeroed and commitState() cannot reuse their blob hash after a revert. Please either roll this out with no pending batches or add a reinitializer/backfill for the current unfinalized range.

Also applies to: 347-347

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/contracts/l1/rollup/Rollup.sol` around lines 224 - 225, The new
write site for batchBlobVersionedHashes (via
BatchHeaderCodecV0.getBlobVersionedHash) can leave historical indices zero after
an upgrade if there are in-flight/unfinalized batches; add a
reinitializer/backfill to populate batchBlobVersionedHashes for the current
unfinalized index range so commitState() can reuse blob hashes. Implement a
function (e.g., backfillBatchBlobVersionedHashes(uint64 startIndex, uint64
endIndex)) that iterates the range, recomputes each blob hash from the stored
batch header using the same BatchHeaderCodecV0.getBlobVersionedHash logic,
writes into batchBlobVersionedHashes, protects the call with an appropriate
admin modifier (onlyOwner/onlyProxyAdmin) and guard so it can only run during
upgrade/deployment (or require no pending batches), and ensure your upgrade
script calls it for the unfinalized range when rolling out; alternatively,
document that the rollout must occur only when there are no pending batches.

contracts/contracts/test/base/L1MessageBase.t.sol (1)

49-57: Avoid a magic storage slot in the test helper.

173 is coupled to the current linearized storage layout of Rollup and its OpenZeppelin bases. The next storage change will invalidate this helper, so please prefer a harness setter or a storage helper keyed off batchBlobVersionedHashes(uint256) instead.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/contracts/test/base/L1MessageBase.t.sol` around lines 49 - 57,
Replace the hard-coded storage slot approach in _setStoredBlobHash (which uses
BATCH_BLOB_VERSIONED_HASHES_SLOT = 173) with a deterministic, resilient setter:
add a test-only setter on the Rollup harness (e.g., function
setBatchBlobVersionedHash(uint256 batchIndex, bytes32 hash) external onlyTest or
in a RollupTestHarness) and call that from _setStoredBlobHash to write
ZERO_VERSIONED_HASH, or alternatively compute the mapping slot dynamically by
deriving the mapping's storage slot identifier from the Rollup contract (but
preferred is adding the harness setter). Update references to
BATCH_BLOB_VERSIONED_HASHES_SLOT and the hevm.store call to use the new harness
setter (target symbols: _setStoredBlobHash and ZERO_VERSIONED_HASH and
rollup.setBatchBlobVersionedHash).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@contracts/contracts/l1/rollup/Rollup.sol`:
- Around line 107-109: Stored blobVersionedHash in mapping
batchBlobVersionedHashes prevents replacing hashes for batches that were
reverted; modify commit paths to allow overwriting that entry when a batch has
been reverted (or otherwise not active/finalized). In practice, update
commitBatch() and commitBatchWithProof() to check batch status (use whatever
batch metadata/flag tracked by revertBatch(), e.g., a "reverted" or "finalized"
marker) and permit writing batchBlobVersionedHashes[batchIndex] = newHash when
the batch is marked reverted/not finalized (but keep existing protection when
the batch is active/finalized); also ensure revertBatch() sets the status flag
used to allow this replacement.

---

Nitpick comments:
In `@contracts/contracts/l1/rollup/Rollup.sol`:
- Around line 224-225: The new write site for batchBlobVersionedHashes (via
BatchHeaderCodecV0.getBlobVersionedHash) can leave historical indices zero after
an upgrade if there are in-flight/unfinalized batches; add a
reinitializer/backfill to populate batchBlobVersionedHashes for the current
unfinalized index range so commitState() can reuse blob hashes. Implement a
function (e.g., backfillBatchBlobVersionedHashes(uint64 startIndex, uint64
endIndex)) that iterates the range, recomputes each blob hash from the stored
batch header using the same BatchHeaderCodecV0.getBlobVersionedHash logic,
writes into batchBlobVersionedHashes, protects the call with an appropriate
admin modifier (onlyOwner/onlyProxyAdmin) and guard so it can only run during
upgrade/deployment (or require no pending batches), and ensure your upgrade
script calls it for the unfinalized range when rolling out; alternatively,
document that the rollout must occur only when there are no pending batches.

In `@contracts/contracts/test/base/L1MessageBase.t.sol`:
- Around line 49-57: Replace the hard-coded storage slot approach in
_setStoredBlobHash (which uses BATCH_BLOB_VERSIONED_HASHES_SLOT = 173) with a
deterministic, resilient setter: add a test-only setter on the Rollup harness
(e.g., function setBatchBlobVersionedHash(uint256 batchIndex, bytes32 hash)
external onlyTest or in a RollupTestHarness) and call that from
_setStoredBlobHash to write ZERO_VERSIONED_HASH, or alternatively compute the
mapping slot dynamically by deriving the mapping's storage slot identifier from
the Rollup contract (but preferred is adding the harness setter). Update
references to BATCH_BLOB_VERSIONED_HASHES_SLOT and the hevm.store call to use
the new harness setter (target symbols: _setStoredBlobHash and
ZERO_VERSIONED_HASH and rollup.setBatchBlobVersionedHash).

In `@contracts/contracts/test/Rollup.t.sol`:
- Around line 763-764: Add a single end-to-end test in Rollup.t.sol that
exercises the stored-hash lifecycle: call _setStoredBlobHash(1) (the initial
commit path) and assert batchBlobVersionedHashes is populated, call
revertBatch() and assert the stored hash remains unchanged, call commitState()
and assert it reuses the stored hash for state commitment, and finally ensure
commitBatch() still reverts when neither a stored hash nor an on-chain blob is
present; apply the same pattern to the other similar fixtures referenced around
the _setStoredBlobHash usages so the production flow (populate → preserve on
revert → reuse on commitState → revert if absent) is fully covered.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b4b81342-9dfa-407e-87a9-6a13d34757ee

📥 Commits

Reviewing files that changed from the base of the PR and between 31059df and 8513bea.

📒 Files selected for processing (4)

• contracts/contracts/l1/rollup/IRollup.sol
• contracts/contracts/l1/rollup/Rollup.sol
• contracts/contracts/test/Rollup.t.sol
• contracts/contracts/test/base/L1MessageBase.t.sol

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (1)

contracts/contracts/test/Rollup.t.sol (1)

1005-1010: Clarify the test comment.

The comment says "batch is already committed, revert" but the actual revert reason is "commitBatch requires no stored blob hash". The test is valid - it verifies that after committing via commitBatchWithProof, the blob hash is stored and commitBatch correctly rejects duplicate commits. Consider updating the comment to reflect the new behavior.

📝 Suggested comment clarification

-        // batch is already committed, revert (commitBatch also reverts with "commitBatch requires no stored blob hash" when slot is set)
+        // batch 1 already committed via commitBatchWithProof; commitBatch rejects because stored blob hash exists

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/contracts/test/Rollup.t.sol` around lines 1005 - 1010, The test
comment is misleading: the revert comes from commitBatch rejecting a stored blob
hash set earlier by commitBatchWithProof, not simply "batch already committed";
update the comment above the test invoking rollup.commitBatch(batchDataInput,
batchSignatureInput) to state that commitBatch reverts with "commitBatch
requires no stored blob hash" because commitBatchWithProof stored a blob hash
for that batch (reference commitBatchWithProof, commitBatch,
IRollup.BatchDataInput, batchDataInput, batchSignatureInput, getTreeRoot), so
the comment clearly describes that the duplicate commit is rejected due to an
existing stored blob hash.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@contracts/contracts/test/base/L1MessageBase.t.sol`:
- Around line 50-53: Add explicit documentation and an automated validation:
update the test to include a README-style comment showing the exact command to
regenerate storage slots (e.g., "forge inspect Rollup storage-layout") and add a
short test function (e.g., testValidateStorageSlots) that deploys or references
the Rollup instance and uses vm.load with the constants
BATCH_BLOB_VERSIONED_HASHES_SLOT and ROLLUP_DELAY_PERIOD_SLOT to read those
storage slots and assert they match the on-chain getters/expected values (for
rollupDelayPeriod compare to Rollup.rollupDelayPeriod(), for
batchBlobVersionedHashes check length/hash presence or known value), while
keeping ZERO_VERSIONED_HASH unchanged; this provides both reproduction
instructions and a runtime check to catch storage-layout drift.

---

Nitpick comments:
In `@contracts/contracts/test/Rollup.t.sol`:
- Around line 1005-1010: The test comment is misleading: the revert comes from
commitBatch rejecting a stored blob hash set earlier by commitBatchWithProof,
not simply "batch already committed"; update the comment above the test invoking
rollup.commitBatch(batchDataInput, batchSignatureInput) to state that
commitBatch reverts with "commitBatch requires no stored blob hash" because
commitBatchWithProof stored a blob hash for that batch (reference
commitBatchWithProof, commitBatch, IRollup.BatchDataInput, batchDataInput,
batchSignatureInput, getTreeRoot), so the comment clearly describes that the
duplicate commit is rejected due to an existing stored blob hash.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 078bf2a7-7863-48b2-adbe-02c02da182fa

📥 Commits

Reviewing files that changed from the base of the PR and between 6bf30f9 and f653bf8.

📒 Files selected for processing (6)

• bindings/bin/rollup_deployed.hex
• bindings/bindings/rollup.go
• bindings/bindings/rollup_more.go
• contracts/contracts/l1/rollup/Rollup.sol
• contracts/contracts/test/Rollup.t.sol
• contracts/contracts/test/base/L1MessageBase.t.sol

🚧 Files skipped from review as they are similar to previous changes (1)

• bindings/bin/rollup_deployed.hex

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@contracts/contracts/l1/rollup/Rollup.sol`:
- Around line 108-110: Pre-upgrade committed but unfinalized batches have
batchBlobVersionedHashes == bytes32(0) so they cannot use commitState() after
revert; add a controlled backfill to populate those entries. Implement an
owner-only function (e.g., backfillBatchBlobVersionedHashes) that iterates from
lastFinalizedBatchIndex+1 up to lastCommittedBatchIndex, derives the same
versioned hash used on genesis/future commits (use the same logic as in the
genesis import and commit paths), writes batchBlobVersionedHashes[index] for
each committed batch if unset, is idempotent (skips already-populated entries),
validates there are no missing batch data needed to compute the hash (revert on
gap), and emits an event per-filled entry; protect it with the same access
control as upgrades so operators can run this once after migration.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b3c75450-4ceb-43b7-b056-ec859fee5b7c

📥 Commits

Reviewing files that changed from the base of the PR and between f653bf8 and 2754160.

📒 Files selected for processing (1)

• contracts/contracts/l1/rollup/Rollup.sol