diff --git a/CHANGELOG.md b/CHANGELOG.md index e68c1a222da..114fdb24008 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -57,6 +57,7 @@ Ref: https://keepachangelog.com/en/1.0.0/ * (apps/transfer) [\#7239](https://github.com/cosmos/ibc-go/pull/7239) The following functions have been removed: `BindPort`, `AuthenticateCapability`, `ClaimCapability` * (capability) [\#7279](https://github.com/cosmos/ibc-go/pull/7279) The module `capability` has been removed. * (testing) [\#7305](https://github.com/cosmos/ibc-go/pull/7305) Added `TrustedValidators` map to `TestChain`. This removes the dependency on the `x/staking` module for retrieving trusted validator sets at a given height, and removes the `GetTrustedValidators` method from the `TestChain` struct. +* (23-commitment) [\#7486](https://github.com/cosmos/ibc-go/pull/7486) Remove unimplemented `BatchVerifyMembership` and `BatchVerifyNonMembership` functions ### State Machine Breaking diff --git a/modules/core/23-commitment/types/merkle.go b/modules/core/23-commitment/types/merkle.go index 319e3ea5b8b..05294e9c419 100644 --- a/modules/core/23-commitment/types/merkle.go +++ b/modules/core/23-commitment/types/merkle.go @@ -122,50 +122,32 @@ func (proof MerkleProof) VerifyNonMembership(specs []*ics23.ProofSpec, root expo return errorsmod.Wrapf(ErrInvalidProof, "path %v is not of type MerkleProof", path) } if len(mpath.KeyPath) != len(specs) { - return errorsmod.Wrapf(ErrInvalidProof, "path length %d not same as proof %d", - len(mpath.KeyPath), len(specs)) + return errorsmod.Wrapf(ErrInvalidProof, "path length %d not same as proof %d", len(mpath.KeyPath), len(specs)) } - switch proof.Proofs[0].Proof.(type) { - case *ics23.CommitmentProof_Nonexist: - // VerifyNonMembership will verify the absence of key in lowest subtree, and then chain inclusion proofs - // of all subroots up to final root - subroot, err := proof.Proofs[0].Calculate() - if err != nil { - return errorsmod.Wrapf(ErrInvalidProof, "could not calculate root for proof index 0, merkle tree is likely empty. %v", err) - } - key, err := mpath.GetKey(uint64(len(mpath.KeyPath) - 1)) - if err != nil { - return errorsmod.Wrapf(ErrInvalidProof, "could not retrieve key bytes for key: %s", mpath.KeyPath[len(mpath.KeyPath)-1]) - } - if ok := ics23.VerifyNonMembership(specs[0], subroot, proof.Proofs[0], key); !ok { - return errorsmod.Wrapf(ErrInvalidProof, "could not verify absence of key %s. Please ensure that the path is correct.", string(key)) - } + // VerifyNonMembership will verify the absence of key in lowest subtree, and then chain inclusion proofs + // of all subroots up to final root + subroot, err := proof.Proofs[0].Calculate() + if err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "could not calculate root for proof index 0, merkle tree is likely empty. %v", err) + } - // Verify chained membership proof starting from index 1 with value = subroot - if err := verifyChainedMembershipProof(root.GetHash(), specs, proof.Proofs, mpath, subroot, 1); err != nil { - return err - } - case *ics23.CommitmentProof_Exist: - return errorsmod.Wrapf(ErrInvalidProof, - "got ExistenceProof in VerifyNonMembership. If this is unexpected, please ensure that proof was queried with the correct key.") - default: - return errorsmod.Wrapf(ErrInvalidProof, - "expected proof type: %T, got: %T", &ics23.CommitmentProof_Nonexist{}, proof.Proofs[0].Proof) + key, err := mpath.GetKey(uint64(len(mpath.KeyPath) - 1)) + if err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "could not retrieve key bytes for key: %s", mpath.KeyPath[len(mpath.KeyPath)-1]) } - return nil -} -// BatchVerifyMembership verifies a group of key value pairs against the given root -// NOTE: Currently left unimplemented as it is unused -func (MerkleProof) BatchVerifyMembership(specs []*ics23.ProofSpec, root exported.Root, path exported.Path, items map[string][]byte) error { - return errorsmod.Wrap(ErrInvalidProof, "batch proofs are currently unsupported") -} + np := proof.Proofs[0].GetNonexist() + if np == nil { + return errorsmod.Wrapf(ErrInvalidProof, "commitment proof must be non-existence proof for verifying non-membership. got: %T", proof.Proofs[0]) + } -// BatchVerifyNonMembership verifies absence of a group of keys against the given root -// NOTE: Currently left unimplemented as it is unused -func (MerkleProof) BatchVerifyNonMembership(specs []*ics23.ProofSpec, root exported.Root, path exported.Path, items [][]byte) error { - return errorsmod.Wrap(ErrInvalidProof, "batch proofs are currently unsupported") + if err := np.Verify(specs[0], subroot, key); err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "failed to verify non-membership proof with key %s: %v", string(key), err) + } + + // Verify chained membership proof starting from index 1 with value = subroot + return verifyChainedMembershipProof(root.GetHash(), specs, proof.Proofs, mpath, subroot, 1) } // verifyChainedMembershipProof takes a list of proofs and specs and verifies each proof sequentially ensuring that the value is committed to @@ -183,42 +165,36 @@ func verifyChainedMembershipProof(root []byte, specs []*ics23.ProofSpec, proofs // In this case, there may be no intermediate proofs to verify and we just check that lowest proof root equals final root subroot = value for i := index; i < len(proofs); i++ { - switch proofs[i].Proof.(type) { - case *ics23.CommitmentProof_Exist: - subroot, err = proofs[i].Calculate() - if err != nil { - return errorsmod.Wrapf(ErrInvalidProof, "could not calculate proof root at index %d, merkle tree may be empty. %v", i, err) - } - // Since keys are passed in from highest to lowest, we must grab their indices in reverse order - // from the proofs and specs which are lowest to highest - key, err := keys.GetKey(uint64(len(keys.KeyPath) - 1 - i)) - if err != nil { - return errorsmod.Wrapf(ErrInvalidProof, "could not retrieve key bytes for key %s: %v", keys.KeyPath[len(keys.KeyPath)-1-i], err) - } - - // verify membership of the proof at this index with appropriate key and value - if ok := ics23.VerifyMembership(specs[i], subroot, proofs[i], key, value); !ok { - return errorsmod.Wrapf(ErrInvalidProof, - "chained membership proof failed to verify membership of value: %X in subroot %X at index %d. Please ensure the path and value are both correct.", - value, subroot, i) - } - // Set value to subroot so that we verify next proof in chain commits to this subroot - value = subroot - case *ics23.CommitmentProof_Nonexist: - return errorsmod.Wrapf(ErrInvalidProof, - "chained membership proof contains nonexistence proof at index %d. If this is unexpected, please ensure that proof was queried from a height that contained the value in store and was queried with the correct key. The key used: %s", - i, keys) - default: - return errorsmod.Wrapf(ErrInvalidProof, - "expected proof type: %T, got: %T", &ics23.CommitmentProof_Exist{}, proofs[i].Proof) + subroot, err = proofs[i].Calculate() + if err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "could not calculate proof root at index %d, merkle tree may be empty. %v", i, err) + } + + // Since keys are passed in from highest to lowest, we must grab their indices in reverse order + // from the proofs and specs which are lowest to highest + key, err := keys.GetKey(uint64(len(keys.KeyPath) - 1 - i)) + if err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "could not retrieve key bytes for key %s: %v", keys.KeyPath[len(keys.KeyPath)-1-i], err) } + + ep := proofs[i].GetExist() + if ep == nil { + return errorsmod.Wrapf(ErrInvalidProof, "commitment proof must be existence proof. got: %T at index %d", i, proofs[i]) + } + + // verify membership of the proof at this index with appropriate key and value + if err := ep.Verify(specs[i], subroot, key, value); err != nil { + return errorsmod.Wrapf(ErrInvalidProof, "failed to verify membership proof at index %d: %v", i, err) + } + // Set value to subroot so that we verify next proof in chain commits to this subroot + value = subroot } + // Check that chained proof root equals passed-in root if !bytes.Equal(root, subroot) { - return errorsmod.Wrapf(ErrInvalidProof, - "proof did not commit to expected root: %X, got: %X. Please ensure proof was submitted with correct proofHeight and to the correct chain.", - root, subroot) + return errorsmod.Wrapf(ErrInvalidProof, "proof did not commit to expected root: %X, got: %X. Please ensure proof was submitted with correct proofHeight and to the correct chain.", root, subroot) } + return nil }