add pre-commit merkle tree to use in ABCI::FinalizeBlock

tzemanovic · tzemanovic · commit f9aef4415174 · 2025-09-18T17:00:09.000+01:00
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -109,7 +109,8 @@ arbitrary = {version = "1.4", features = ["derive"]}
 ark-bls12-381 = {version = "0.5"}
 ark-serialize = {version = "0.5"}
 ark-std = "0.5"
-arse-merkle-tree = {package = "nam-sparse-merkle-tree", version = "0.3.3-nam.0", default-features = false, features = ["std", "borsh"]}
+# arse-merkle-tree = {package = "nam-sparse-merkle-tree", version = "0.3.3-nam.0", default-features = false, features = ["std", "borsh"]}
+arse-merkle-tree = {package = "nam-sparse-merkle-tree", git = "https://github.com/namada-net/sparse-merkle-tree.git", rev = "604ef3b73d3c18c3c8047c6f164649bf94a565dd", default-features = false, features = ["std", "borsh"]}
 assert_cmd = "2.0"
 assert_matches = "1.5"
 async-trait = {version = "0.1"}
diff --git a/crates/merkle_tree/Cargo.toml b/crates/merkle_tree/Cargo.toml
@@ -24,6 +24,7 @@ namada_migrations = { workspace = true, optional = true }
 
 arse-merkle-tree.workspace = true
 borsh.workspace = true
+derivative.workspace = true
 eyre.workspace = true
 ics23.workspace = true
 linkme = { workspace = true, optional = true }
diff --git a/crates/merkle_tree/src/lib.rs b/crates/merkle_tree/src/lib.rs
@@ -29,6 +29,7 @@ use arse_merkle_tree::error::Error as MtError;
 use arse_merkle_tree::{
     Hash as SmtHash, Key as TreeKey, SparseMerkleTree as ArseMerkleTree,
 };
+use derivative::Derivative;
 use eth_bridge_pool::{BridgePoolProof, BridgePoolTree};
 pub use ics23::CommitmentProof;
 use ics23::commitment_proof::Proof as Ics23Proof;
@@ -457,7 +458,8 @@ impl CommitDataRoot {
 }
 
 /// Merkle tree storage
-#[derive(Default)]
+#[derive(Default, Derivative)]
+#[derivative(Clone(bound = ""))] // No bound on hasher
 pub struct MerkleTree<H: StorageHasher + Default> {
     base: Smt<H>,
     account: Smt<H>,
diff --git a/crates/node/src/shell/abci.rs b/crates/node/src/shell/abci.rs
@@ -172,6 +172,7 @@ fn process_request(
                              events,
                              tx_results,
                              validator_updates,
+                             app_hash,
                          }| {
                             Response::FinalizeBlock(response::FinalizeBlock {
                                 events: events
@@ -181,7 +182,7 @@ fn process_request(
                                 tx_results,
                                 validator_updates,
                                 consensus_param_updates: None,
-                                app_hash: Default::default(),
+                                app_hash,
                             })
                         },
                     )
diff --git a/crates/node/src/shell/finalize_block.rs b/crates/node/src/shell/finalize_block.rs
@@ -68,6 +68,8 @@ pub struct Response {
     /// A list of updates to the validator set.
     /// These will reflect the validator set at current height + 2.
     pub validator_updates: Vec<validator::Update>,
+    /// Merkle tree root hash
+    pub app_hash: AppHash,
 }
 
 impl<D, H> Shell<D, H>
@@ -81,6 +83,12 @@ where
     ///
     /// Apply the transactions included in the block.
     pub fn finalize_block(&mut self, req: Request) -> ShellResult<Response> {
+        // Copy merkle tree from canonical tree and pre-commit block to it
+        {
+            let block = &mut self.state.in_mem_mut().block;
+            block.pre_commit_tree = block.tree.clone();
+        }
+
         let Request {
             txs,
             decided_last_commit,
@@ -269,10 +277,23 @@ where
 
         debug_assert_eq!(txs.len(), tx_results.len());
 
+        self.state.pre_commit_block()?;
+
+        if let Some(migration) = &self.scheduled_migration {
+            let migration = migration
+                .load_and_validate()
+                .expect("The scheduled migration is not valid.");
+            migrations::pre_commit(&mut self.state, migration);
+        }
+
+        let merkle_root = self.state.in_mem().block.pre_commit_tree.root();
+        let app_hash = AppHash::try_from(merkle_root.0.to_vec())
+            .expect("expected a valid app hash");
         Ok(Response {
             events,
             tx_results,
             validator_updates,
+            app_hash,
         })
     }
 
diff --git a/crates/node/src/shell/mod.rs b/crates/node/src/shell/mod.rs
@@ -830,7 +830,9 @@ where
                 .expect("Must update merkle tree after migration");
         }
 
+        let pre_root = self.state.in_mem().block.pre_commit_tree.root();
         let merkle_root = self.state.in_mem().merkle_root();
+        assert_eq!(pre_root, merkle_root);
 
         tracing::info!(
             "Committed block hash: {merkle_root}, height: {height_to_commit}",
diff --git a/crates/sdk/src/migrations.rs b/crates/sdk/src/migrations.rs
@@ -481,6 +481,153 @@ impl DbUpdateType {
         migrator.commit(state.db())?;
         Ok(status)
     }
+
+    /// Validate a change and persist it to pre-commit merkle tree if valid.
+    pub fn pre_commit_update<D, H>(
+        &self,
+        state: &mut FullAccessState<D, H>,
+    ) -> eyre::Result<UpdateStatus>
+    where
+        D: 'static + DB + for<'iter> DBIter<'iter>,
+        H: 'static + StorageHasher,
+    {
+        let migrator = D::migrator();
+        let status = match self {
+            Self::Add { key, cf, value, .. } => {
+                let (deserialized, deserializer) = self.validate()?;
+                if let (Some(prev), Some(des)) =
+                    (migrator.read(state.db(), key, cf), deserializer)
+                {
+                    des(prev).ok_or_else(|| {
+                        eyre::eyre!(
+                            "The previous value under the key {} did not have \
+                             the same type as that provided: Input was {}",
+                            key,
+                            deserialized
+                        )
+                    })?;
+                }
+                let value = value.bytes();
+                let persist_diffs = (state.diff_key_filter)(key);
+                if let DbColFam::SUBSPACE = cf {
+                    // Update the merkle tree
+                    let merk_key = if !persist_diffs {
+                        let prefix = storage::Key::from(
+                            NO_DIFF_KEY_PREFIX.to_string().to_db_key(),
+                        );
+                        &prefix.join(key)
+                    } else {
+                        key
+                    };
+                    state
+                        .in_mem_mut()
+                        .block
+                        .pre_commit_tree
+                        .update(merk_key, value)?;
+                }
+                Ok(UpdateStatus::Add(vec![(key.to_string(), deserialized)]))
+            }
+            Self::Delete(key, cf) => {
+                let persist_diffs = (state.diff_key_filter)(key);
+                if let DbColFam::SUBSPACE = cf {
+                    // Update the merkle tree
+                    let merk_key = if !persist_diffs {
+                        let prefix = storage::Key::from(
+                            NO_DIFF_KEY_PREFIX.to_string().to_db_key(),
+                        );
+                        &prefix.join(key)
+                    } else {
+                        key
+                    };
+                    state
+                        .in_mem_mut()
+                        .block
+                        .pre_commit_tree
+                        .delete(merk_key)?;
+                }
+                Ok(UpdateStatus::Deleted(vec![key.to_string()]))
+            }
+            DbUpdateType::RepeatAdd {
+                pattern, cf, value, ..
+            } => {
+                let pattern = Regex::new(pattern).unwrap();
+                let mut pairs = vec![];
+                let (deserialized, deserializer) = self.validate()?;
+                for (key, prev) in
+                    migrator.get_pattern(state.db(), pattern.clone())
+                {
+                    if let Some(des) = deserializer {
+                        des(prev).ok_or_else(|| {
+                            eyre::eyre!(
+                                "The previous value under the key {} did not \
+                                 have the same type as that provided: Input \
+                                 was {}",
+                                key,
+                                deserialized,
+                            )
+                        })?;
+                        pairs.push((key.clone(), deserialized.clone()));
+                    } else {
+                        pairs.push((key.clone(), deserialized.clone()));
+                    }
+                    let key = storage::Key::from_str(&key).unwrap();
+                    let value = value.bytes();
+                    let persist_diffs = (state.diff_key_filter)(&key);
+                    if let DbColFam::SUBSPACE = cf {
+                        // Update the merkle tree
+                        let merk_key = if !persist_diffs {
+                            let prefix = storage::Key::from(
+                                NO_DIFF_KEY_PREFIX.to_string().to_db_key(),
+                            );
+                            &prefix.join(&key)
+                        } else {
+                            &key
+                        };
+                        state
+                            .in_mem_mut()
+                            .block
+                            .pre_commit_tree
+                            .update(merk_key, value)?;
+                    }
+                }
+                Ok::<_, eyre::Error>(UpdateStatus::Add(pairs))
+            }
+            DbUpdateType::RepeatDelete(pattern, cf) => {
+                let pattern = Regex::new(pattern).unwrap();
+                Ok(UpdateStatus::Deleted(
+                    migrator
+                        .get_pattern(state.db(), pattern.clone())
+                        .into_iter()
+                        .map(|(raw_key, _)| {
+                            let key = storage::Key::from_str(&raw_key).unwrap();
+                            let persist_diffs = (state.diff_key_filter)(&key);
+                            if let DbColFam::SUBSPACE = cf {
+                                // Update the merkle tree
+                                let merk_key = if !persist_diffs {
+                                    let prefix = storage::Key::from(
+                                        NO_DIFF_KEY_PREFIX
+                                            .to_string()
+                                            .to_db_key(),
+                                    );
+                                    &prefix.join(&key)
+                                } else {
+                                    &key
+                                };
+                                state
+                                    .in_mem_mut()
+                                    .block
+                                    .pre_commit_tree
+                                    .delete(merk_key)?;
+                            }
+
+                            Ok(raw_key)
+                        })
+                        .collect::<eyre::Result<Vec<_>>>()?,
+                ))
+            }
+        }?;
+        Ok(status)
+    }
 }
 
 /// A set of key-value changes to be applied to
@@ -655,6 +802,39 @@ pub fn commit<D, H>(
     }
 }
 
+/// Check if a scheduled migration should take place at this block height.
+/// If so, apply it to the pre-commit merkle tree.
+pub fn pre_commit<D, H>(
+    state: &mut FullAccessState<D, H>,
+    migration: impl IntoIterator<Item = DbUpdateType>,
+) where
+    D: 'static + DB + for<'iter> DBIter<'iter>,
+    H: 'static + StorageHasher,
+{
+    tracing::info!("Starting pre-commit migration...");
+
+    for change in migration.into_iter() {
+        match change.pre_commit_update(state) {
+            Ok(status) => {
+                tracing::info!("{status}");
+            }
+            Err(e) => {
+                let error = format!(
+                    "Attempt to write to key/pattern <{}> failed:\n{}.",
+                    change.pattern(),
+                    e
+                );
+                tracing::error!(error);
+                panic!(
+                    "Failed to execute migration, no changes persisted. \
+                     Encountered error: {}",
+                    e
+                );
+            }
+        }
+    }
+}
+
 derive_borshdeserializer!(Vec::<u8>);
 derive_borshdeserializer!(Vec::<String>);
 derive_borshdeserializer!(u64);
diff --git a/crates/state/src/in_memory.rs b/crates/state/src/in_memory.rs
@@ -109,8 +109,11 @@ pub enum ProcessProposalCachedResult {
 /// The block storage data
 #[derive(Debug)]
 pub struct BlockStorage<H: StorageHasher> {
-    /// Merkle tree of all the other data in block storage
+    /// Canonical merkle tree of all the other data in block storage.
     pub tree: MerkleTree<H>,
+    /// Pre-commit merkle tree copy. This is used to determine merkle tree root
+    /// hash on `Abci::FinalizeBlock` before commit.
+    pub pre_commit_tree: MerkleTree<H>,
     /// From the start of `FinalizeBlock` until the end of `Commit`, this is
     /// height of the block that is going to be committed. Otherwise, it is the
     /// height of the most recently committed block, or `BlockHeight::sentinel`
@@ -139,6 +142,7 @@ where
     ) -> Self {
         let block = BlockStorage {
             tree: MerkleTree::default(),
+            pre_commit_tree: MerkleTree::default(),
             height: BlockHeight::default(),
             epoch: Epoch::default(),
             pred_epochs: Epochs::default(),
@@ -308,6 +312,29 @@ where
         Ok(())
     }
 
+    /// Update the pre-commit merkle tree with epoch data
+    pub fn update_epoch_in_pre_commit_merkle_tree(&mut self) -> Result<()> {
+        let key_prefix: Key =
+            Address::Internal(InternalAddress::PoS).to_db_key().into();
+
+        let key = key_prefix.push(&"epoch_start_height".to_string())?;
+        self.block
+            .pre_commit_tree
+            .update(&key, encode(&self.next_epoch_min_start_height))?;
+
+        let key = key_prefix.push(&"epoch_start_time".to_string())?;
+        self.block
+            .pre_commit_tree
+            .update(&key, encode(&self.next_epoch_min_start_time))?;
+
+        let key = key_prefix.push(&"current_epoch".to_string())?;
+        self.block
+            .pre_commit_tree
+            .update(&key, encode(&self.block.epoch))?;
+
+        Ok(())
+    }
+
     /// Get the height of the last committed block or 0 if no block has been
     /// committed yet. The first block is at height 1.
     pub fn get_last_block_height(&self) -> BlockHeight {
diff --git a/crates/state/src/lib.rs b/crates/state/src/lib.rs
@@ -621,9 +621,9 @@ pub mod testing {
     impl Default for InMemoryState {
         fn default() -> Self {
             let chain_id = ChainId::default();
-            let tree = MerkleTree::default();
             let block = BlockStorage {
-                tree,
+                tree: MerkleTree::default(),
+                pre_commit_tree: MerkleTree::default(),
                 height: BlockHeight::default(),
                 epoch: Epoch::default(),
                 pred_epochs: Epochs::default(),
diff --git a/crates/state/src/wl_state.rs b/crates/state/src/wl_state.rs
diff --git a/wasm/Cargo.lock b/wasm/Cargo.lock
diff --git a/wasm_for_tests/Cargo.lock b/wasm_for_tests/Cargo.lock

Original file line number	Diff line number	Diff line change
`@@ -830,7 +830,9 @@ where`
`830`	`830`	`.expect("Must update merkle tree after migration");`
`831`	`831`	`}`
`832`	`832`
	`833`	`+ let pre_root = self.state.in_mem().block.pre_commit_tree.root();`
`833`	`834`	`let merkle_root = self.state.in_mem().merkle_root();`
	`835`	`+ assert_eq!(pre_root, merkle_root);`
`834`	`836`
`835`	`837`	`tracing::info!(`
`836`	`838`	`"Committed block hash: {merkle_root}, height: {height_to_commit}",`