Merge pull request #46 from eth-hca/fix/pre-release-v030

zacksfF · web-flow · commit 7bb0f92bb132 · 2026-04-09T20:47:14.000+01:00
fix: pre-release corrections for v0.3.0
diff --git a/README.md b/README.md
@@ -166,7 +166,7 @@ See [SECURITY.md](SECURITY.md) for the full security policy.
 
 - **Not audited** — this is research-grade software
 - Constant-time comparison (`subtle`) in proof verification
-- 4 libfuzzer fuzz targets: merkle, proof, witness, RLP
+- 6 libfuzzer fuzz targets: merkle, proof, witness, RLP encode, RLP decode, EVM opcode
 - EVM opcode validator with Berlin gas schedule enforcement
 - `#![warn(missing_docs)]` — all public items documented
 
diff --git a/SPECIFICATION.md b/SPECIFICATION.md
@@ -117,12 +117,13 @@ EIP-2718 typed transaction, type `0x05`:
 ```
 signing_hash = tagged_hash("HCAWitness",
     chain_id[8] || nonce[8] || from[20] || to[20] || value[16] ||
+    data_len[8] || data[variable] ||
     gas_limit[8] || max_fee_per_gas[16] || max_priority_fee_per_gas[16] ||
     leaf_hash[32]
 )
 ```
 
-Includes `chain_id` (cross-chain replay), `nonce` (same-chain replay), `from` (cross-account replay), and `leaf_hash` (binds to specific spending condition).
+Includes `chain_id` (cross-chain replay), `nonce` (same-chain replay), `from` (cross-account replay), `data` (binds signature to exact calldata), and `leaf_hash` (binds to specific spending condition). The explicit `data_len` prefix is required so that a trailing-zero calldata cannot be confused with an appended `gas_limit` field.
 
 ## 8. authRoot rotation
 
diff --git a/src/merkle.rs b/src/merkle.rs
@@ -14,8 +14,8 @@ use std::collections::HashSet;
 
 use crate::constants::{MAX_LEAF_SCRIPT_SIZE, MAX_TREE_DEPTH};
 use crate::error::{HcaError, HcaResult};
-use crate::evm::opcode::validate_leaf_script;
 use crate::hash::{tag_hashes, tagged_hash};
+use crate::leaf_version::{validate_for_version, LeafVersion};
 #[cfg(feature = "parallel")]
 use rayon::prelude::*;
 #[cfg(feature = "serde")]
@@ -41,19 +41,21 @@ pub struct Leaf {
 impl Leaf {
     /// Create a new leaf, validating version and script size.
     ///
-    /// Returns `HcaError::InvalidLeafVersion` if version is `0x00`.
+    /// Routes through the `LeafVersion` registry: unknown or reserved versions
+    /// (including `0x00` and `0x02`+) are rejected via `LeafVersion::from_byte`,
+    /// and script validation is dispatched per-version by `validate_for_version`.
+    ///
+    /// Returns `HcaError::InvalidLeafVersion` if version is not active.
     /// Returns `HcaError::LeafScriptTooLarge` if script exceeds `MAX_LEAF_SCRIPT_SIZE`.
     pub fn new(version: u8, script: Vec<u8>, description: &str) -> HcaResult<Self> {
-        if version == 0x00 {
-            return Err(HcaError::InvalidLeafVersion { version });
-        }
+        let lv = LeafVersion::from_byte(version)?;
         if script.is_empty() {
             return Err(HcaError::EmptyLeafScript);
         }
         if script.len() > MAX_LEAF_SCRIPT_SIZE {
             return Err(HcaError::LeafScriptTooLarge { size: script.len() });
         }
-        validate_leaf_script(&script)?;
+        validate_for_version(lv, &script)?;
         Ok(Self {
             version,
             script,
@@ -482,9 +484,30 @@ mod tests {
 
     #[test]
     fn test_valid_leaf_versions() {
+        // Only 0x01 is active — 0x02+ route through LeafVersion registry and are rejected.
         assert!(Leaf::new(0x01, b"script".to_vec(), "v1").is_ok());
-        assert!(Leaf::new(0x02, b"script".to_vec(), "v2").is_ok());
-        assert!(Leaf::new(0xFF, b"script".to_vec(), "vFF").is_ok());
+    }
+
+    #[test]
+    fn test_leaf_version_0x02_rejected() {
+        // 0x02 is reserved (EIP-7932 dispatch) and MUST be rejected at construction.
+        let result = Leaf::new(0x02, b"script".to_vec(), "v2");
+        assert!(result.is_err());
+        assert_eq!(
+            result.unwrap_err(),
+            HcaError::InvalidLeafVersion { version: 0x02 }
+        );
+    }
+
+    #[test]
+    fn test_leaf_version_0xff_rejected() {
+        // Unknown versions MUST be rejected by LeafVersion::from_byte.
+        let result = Leaf::new(0xFF, b"script".to_vec(), "vFF");
+        assert!(result.is_err());
+        assert_eq!(
+            result.unwrap_err(),
+            HcaError::InvalidLeafVersion { version: 0xFF }
+        );
     }
 
     #[test]
diff --git a/tests/vectors/witness_signing.json b/tests/vectors/witness_signing.json
@@ -1,7 +1,7 @@
 {
     "description": "HCA witness signing hash test vectors",
     "version": "0.2.0",
-    "formula": "signing_hash = tagged_hash('HCAWitness', chain_id || nonce || from || to || value || gas_limit || max_fee || max_priority_fee || leaf_hash)",
+    "formula": "signing_hash = tagged_hash('HCAWitness', chain_id || nonce || from || to || value || data_len || data || gas_limit || max_fee || max_priority_fee || leaf_hash)",
     "vectors": [
         {
             "description": "Minimal transaction on Sepolia",

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"description": "HCA witness signing hash test vectors",`
`3`	`3`	`"version": "0.2.0",`
`4`		`- "formula": "signing_hash = tagged_hash('HCAWitness', chain_id \|\| nonce \|\| from \|\| to \|\| value \|\| gas_limit \|\| max_fee \|\| max_priority_fee \|\| leaf_hash)",`
	`4`	`+ "formula": "signing_hash = tagged_hash('HCAWitness', chain_id \|\| nonce \|\| from \|\| to \|\| value \|\| data_len \|\| data \|\| gas_limit \|\| max_fee \|\| max_priority_fee \|\| leaf_hash)",`
`5`	`5`	`"vectors": [`
`6`	`6`	`{`
`7`	`7`	`"description": "Minimal transaction on Sepolia",`