CertVerifier updates

contracts/src/core/EigenDACertVerifier.sol

@@ -98,11 +98,13 @@ contract EigenDACertVerifier is IEigenDACertVerifier {
      * @param batchHeader The batch header of the blob 
      * @param blobInclusionInfo The inclusion proof for the blob cert
      * @param nonSignerStakesAndSignature The nonSignerStakesAndSignature to verify the blob cert against
+     * @param signedQuorumNumbers The signed quorum numbers corresponding to the nonSignerStakesAndSignature
      */
     function verifyDACertV2(
         BatchHeaderV2 calldata batchHeader,
         BlobInclusionInfo calldata blobInclusionInfo,
-        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature
+        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature,
+        bytes memory signedQuorumNumbers
     ) external view {
         EigenDACertVerificationUtils._verifyDACertV2ForQuorums(
             eigenDAThresholdRegistry,
@@ -112,7 +114,8 @@ contract EigenDACertVerifier is IEigenDACertVerifier {
             blobInclusionInfo,
             nonSignerStakesAndSignature,
             securityThresholdsV2,
-            quorumNumbersRequiredV2
+            quorumNumbersRequiredV2,
+            signedQuorumNumbers
         );
     }
 
@@ -145,11 +148,13 @@ contract EigenDACertVerifier is IEigenDACertVerifier {
      * @param batchHeader The batch header of the blob 
      * @param blobInclusionInfo The inclusion proof for the blob cert
      * @param nonSignerStakesAndSignature The nonSignerStakesAndSignature to verify the blob cert against
+     * @param signedQuorumNumbers The signed quorum numbers corresponding to the nonSignerStakesAndSignature
      */
     function verifyDACertV2ForZKProof(
         BatchHeaderV2 calldata batchHeader,
         BlobInclusionInfo calldata blobInclusionInfo,
-        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature
+        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature,
+        bytes memory signedQuorumNumbers
     ) external view returns (bool) {
         try EigenDACertVerificationUtils.verifyDACertV2ForQuorumsExternal(
             eigenDAThresholdRegistry,
@@ -159,7 +164,8 @@ contract EigenDACertVerifier is IEigenDACertVerifier {
             blobInclusionInfo,
             nonSignerStakesAndSignature,
             securityThresholdsV2,
-            quorumNumbersRequiredV2
+            quorumNumbersRequiredV2,
+            signedQuorumNumbers
         ) {
             return true;
         } catch {
@@ -175,7 +181,7 @@ contract EigenDACertVerifier is IEigenDACertVerifier {
      */
     function getNonSignerStakesAndSignature(
         SignedBatch calldata signedBatch
-    ) external view returns (NonSignerStakesAndSignature memory) {
+    ) external view returns (NonSignerStakesAndSignature memory, bytes memory) {
         return EigenDACertVerificationUtils._getNonSignerStakesAndSignature(
             operatorStateRetriever, 
             registryCoordinator, 

contracts/src/interfaces/IEigenDACertVerifier.sol

@@ -32,11 +32,13 @@ interface IEigenDACertVerifier is IEigenDAThresholdRegistry {
      * @param batchHeader The batch header of the blob 
      * @param blobInclusionInfo The inclusion proof for the blob cert
      * @param nonSignerStakesAndSignature The nonSignerStakesAndSignature to verify the blob cert against
+     * @param signedQuorumNumbers The signed quorum numbers corresponding to the nonSignerStakesAndSignature
      */
     function verifyDACertV2(
         BatchHeaderV2 calldata batchHeader,
         BlobInclusionInfo calldata blobInclusionInfo,
-        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature
+        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature,
+        bytes memory signedQuorumNumbers
     ) external view;
 
     /**
@@ -49,13 +51,29 @@ interface IEigenDACertVerifier is IEigenDAThresholdRegistry {
         BlobInclusionInfo calldata blobInclusionInfo
     ) external view;
 
+    /**
+     * @notice Thin try/catch wrapper around verifyDACertV2 that returns false instead of panicing
+     * @dev The Steel library (https://github.com/risc0/risc0-ethereum/tree/main/crates/steel) 
+     *      currently has a limitation that it can only create zk proofs for functions that return a value
+     * @param batchHeader The batch header of the blob 
+     * @param blobInclusionInfo The inclusion proof for the blob cert
+     * @param nonSignerStakesAndSignature The nonSignerStakesAndSignature to verify the blob cert against
+     * @param signedQuorumNumbers The signed quorum numbers corresponding to the nonSignerStakesAndSignature
+     */
+    function verifyDACertV2ForZKProof(
+        BatchHeaderV2 calldata batchHeader,
+        BlobInclusionInfo calldata blobInclusionInfo,
+        NonSignerStakesAndSignature calldata nonSignerStakesAndSignature,
+        bytes memory signedQuorumNumbers
+    ) external view returns (bool);
+
     /**
      * @notice Returns the nonSignerStakesAndSignature for a given blob cert and signed batch
      * @param signedBatch The signed batch to get the nonSignerStakesAndSignature for
      */
     function getNonSignerStakesAndSignature(
         SignedBatch calldata signedBatch
-    ) external view returns (NonSignerStakesAndSignature memory);
+    ) external view returns (NonSignerStakesAndSignature memory, bytes memory);
 
     /**
      * @notice Verifies the security parameters for a blob cert

contracts/src/libraries/EigenDACertVerificationUtils.sol

@@ -167,7 +167,8 @@ library EigenDACertVerificationUtils {
         BlobInclusionInfo memory blobInclusionInfo,
         NonSignerStakesAndSignature memory nonSignerStakesAndSignature,
         SecurityThresholds memory securityThresholds,
-        bytes memory requiredQuorumNumbers
+        bytes memory requiredQuorumNumbers,
+        bytes memory signedQuorumNumbers
     ) internal view {
         require(
             Merkle.verifyInclusionKeccak(
@@ -184,7 +185,7 @@ library EigenDACertVerificationUtils {
             bytes32 signatoryRecordHash
         ) = signatureVerifier.checkSignatures(
             EigenDAHasher.hashBatchHeaderV2(batchHeader),
-            blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers,
+            signedQuorumNumbers,
             batchHeader.referenceBlockNumber,
             nonSignerStakesAndSignature
         );
@@ -201,7 +202,7 @@ library EigenDACertVerificationUtils {
 
         uint256 confirmedQuorumsBitmap;
 
-        for (uint i = 0; i < blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers.length; i++) {
+        for (uint i = 0; i < signedQuorumNumbers.length; i++) {
             require(
                 quorumStakeTotals.signedStakeForQuorum[i] * THRESHOLD_DENOMINATOR >= 
                 quorumStakeTotals.totalStakeForQuorum[i] * securityThresholds.confirmationThreshold,
@@ -210,16 +211,24 @@ library EigenDACertVerificationUtils {
 
             confirmedQuorumsBitmap = BitmapUtils.setBit(
                 confirmedQuorumsBitmap, 
-                uint8(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers[i])
+                uint8(signedQuorumNumbers[i])
             );
         }
 
         require(
             BitmapUtils.isSubsetOf(
-                BitmapUtils.orderedBytesArrayToBitmap(requiredQuorumNumbers),
+                BitmapUtils.orderedBytesArrayToBitmap(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers),
                 confirmedQuorumsBitmap
             ),
-            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: required quorums are not a subset of the confirmed quorums"
+            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: blob quorums are not a subset of the confirmed quorums"
+        );
+
+        require(
+            BitmapUtils.isSubsetOf(
+                BitmapUtils.orderedBytesArrayToBitmap(requiredQuorumNumbers),
+                BitmapUtils.orderedBytesArrayToBitmap(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers)  
+            ),
+            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: required quorums are not a subset of the blob quorums"
         );
     }
 
@@ -232,7 +241,8 @@ library EigenDACertVerificationUtils {
         BlobInclusionInfo memory _blobInclusionInfo,
         NonSignerStakesAndSignature memory _nonSignerStakesAndSignature,
         SecurityThresholds memory _securityThresholds,
-        bytes memory _requiredQuorumNumbers
+        bytes memory _requiredQuorumNumbers,
+        bytes memory _signedQuorumNumbers
     ) external view {
         EigenDACertVerificationUtils._verifyDACertV2ForQuorums(
             _eigenDAThresholdRegistry,
@@ -242,7 +252,8 @@ library EigenDACertVerificationUtils {
             _blobInclusionInfo,
             _nonSignerStakesAndSignature,
             _securityThresholds,
-            _requiredQuorumNumbers
+            _requiredQuorumNumbers,
+            _signedQuorumNumbers
         );
     }
 
@@ -254,7 +265,8 @@ library EigenDACertVerificationUtils {
         BlobInclusionInfo memory blobInclusionInfo,
         NonSignerStakesAndSignature memory nonSignerStakesAndSignature,
         SecurityThresholds[] memory securityThresholds,
-        bytes memory requiredQuorumNumbers
+        bytes memory requiredQuorumNumbers,
+        bytes memory signedQuorumNumbers
     ) internal view {
         require(
             securityThresholds.length == blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers.length,
@@ -276,7 +288,7 @@ library EigenDACertVerificationUtils {
             bytes32 signatoryRecordHash
         ) = signatureVerifier.checkSignatures(
             EigenDAHasher.hashBatchHeaderV2(batchHeader),
-            blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers,
+            signedQuorumNumbers,
             batchHeader.referenceBlockNumber,
             nonSignerStakesAndSignature
         );
@@ -289,7 +301,7 @@ library EigenDACertVerificationUtils {
         uint256 confirmedQuorumsBitmap;
         VersionedBlobParams memory blobParams = eigenDAThresholdRegistry.getBlobParams(blobInclusionInfo.blobCertificate.blobHeader.version);
 
-        for (uint i = 0; i < blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers.length; i++) {
+        for (uint i = 0; i < signedQuorumNumbers.length; i++) {
             _verifyDACertSecurityParams(
                 blobParams,
                 securityThresholds[i]
@@ -303,16 +315,24 @@ library EigenDACertVerificationUtils {
 
             confirmedQuorumsBitmap = BitmapUtils.setBit(
                 confirmedQuorumsBitmap, 
-                uint8(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers[i])
+                uint8(signedQuorumNumbers[i])
             );
         }
 
         require(
             BitmapUtils.isSubsetOf(
-                BitmapUtils.orderedBytesArrayToBitmap(requiredQuorumNumbers),
+                BitmapUtils.orderedBytesArrayToBitmap(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers),
                 confirmedQuorumsBitmap
             ),
-            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: required quorums are not a subset of the confirmed quorums"
+            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: blob quorums are not a subset of the confirmed quorums"
+        );
+
+        require(
+            BitmapUtils.isSubsetOf(
+                BitmapUtils.orderedBytesArrayToBitmap(requiredQuorumNumbers),
+                BitmapUtils.orderedBytesArrayToBitmap(blobInclusionInfo.blobCertificate.blobHeader.quorumNumbers)  
+            ),
+            "EigenDACertVerificationUtils._verifyDACertV2ForQuorums: required quorums are not a subset of the blob quorums"
         );
     }
 
@@ -327,7 +347,10 @@ library EigenDACertVerificationUtils {
         SecurityThresholds memory securityThresholds,
         bytes memory requiredQuorumNumbers
     ) internal view {
-        NonSignerStakesAndSignature memory nonSignerStakesAndSignature = _getNonSignerStakesAndSignature(
+        (
+            NonSignerStakesAndSignature memory nonSignerStakesAndSignature,
+            bytes memory signedQuorumNumbers
+        ) = _getNonSignerStakesAndSignature(
             operatorStateRetriever,
             registryCoordinator,
             signedBatch
@@ -341,7 +364,8 @@ library EigenDACertVerificationUtils {
             blobInclusionInfo,
             nonSignerStakesAndSignature,
             securityThresholds,
-            requiredQuorumNumbers
+            requiredQuorumNumbers,
+            signedQuorumNumbers
         );
     }
 
@@ -356,7 +380,10 @@ library EigenDACertVerificationUtils {
         SecurityThresholds[] memory securityThresholds,
         bytes memory requiredQuorumNumbers
     ) internal view {
-        NonSignerStakesAndSignature memory nonSignerStakesAndSignature = _getNonSignerStakesAndSignature(
+        (
+            NonSignerStakesAndSignature memory nonSignerStakesAndSignature,
+            bytes memory signedQuorumNumbers
+        ) = _getNonSignerStakesAndSignature(
             operatorStateRetriever,
             registryCoordinator,
             signedBatch
@@ -370,29 +397,29 @@ library EigenDACertVerificationUtils {
             blobInclusionInfo,
             nonSignerStakesAndSignature,
             securityThresholds,
-            requiredQuorumNumbers
+            requiredQuorumNumbers,
+            signedQuorumNumbers
         );
     }
 
     function _getNonSignerStakesAndSignature(
         OperatorStateRetriever operatorStateRetriever,
         IRegistryCoordinator registryCoordinator,
         SignedBatch memory signedBatch
-    ) internal view returns (NonSignerStakesAndSignature memory nonSignerStakesAndSignature) {
+    ) internal view returns (NonSignerStakesAndSignature memory nonSignerStakesAndSignature, bytes memory signedQuorumNumbers) {
         bytes32[] memory nonSignerOperatorIds = new bytes32[](signedBatch.attestation.nonSignerPubkeys.length);
         for (uint i = 0; i < signedBatch.attestation.nonSignerPubkeys.length; ++i) {
             nonSignerOperatorIds[i] = BN254.hashG1Point(signedBatch.attestation.nonSignerPubkeys[i]);
         }
 
-        bytes memory quorumNumbers;
         for (uint i = 0; i < signedBatch.attestation.quorumNumbers.length; ++i) {
-            quorumNumbers = abi.encodePacked(quorumNumbers, uint8(signedBatch.attestation.quorumNumbers[i]));
+            signedQuorumNumbers = abi.encodePacked(signedQuorumNumbers, uint8(signedBatch.attestation.quorumNumbers[i]));
         }
 
         OperatorStateRetriever.CheckSignaturesIndices memory checkSignaturesIndices = operatorStateRetriever.getCheckSignaturesIndices(
             registryCoordinator,
             signedBatch.batchHeader.referenceBlockNumber,
-            quorumNumbers,
+            signedQuorumNumbers,
             nonSignerOperatorIds
         );
 

contracts/test/unit/EigenDACertVerifierV2Unit.t.sol

@@ -36,10 +36,8 @@ contract EigenDACertVerifierV2Unit is MockEigenDADeployer {
 
         eigenDACertVerifier.verifyDACertV2FromSignedBatch(signedBatch, blobInclusionInfo);
 
-        eigenDACertVerifier.verifyDACertV2(signedBatch.batchHeader, blobInclusionInfo, nonSignerStakesAndSignature);
-
-        NonSignerStakesAndSignature memory _nonSignerStakesAndSignature = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
-        eigenDACertVerifier.verifyDACertV2(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature);
+        (NonSignerStakesAndSignature memory _nonSignerStakesAndSignature, bytes memory signedQuorumNumbers) = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
+        eigenDACertVerifier.verifyDACertV2(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature, signedQuorumNumbers);
     }
 
     function test_verifyDACertV2ZK_True(uint256 pseudoRandomNumber) public {
@@ -61,8 +59,8 @@ contract EigenDACertVerifierV2Unit is MockEigenDADeployer {
 
         _registerRelayKeys();
 
-        NonSignerStakesAndSignature memory _nonSignerStakesAndSignature = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
-        bool zk = eigenDACertVerifier.verifyDACertV2ForZKProof(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature);
+        (NonSignerStakesAndSignature memory _nonSignerStakesAndSignature, bytes memory signedQuorumNumbers) = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
+        bool zk = eigenDACertVerifier.verifyDACertV2ForZKProof(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature, signedQuorumNumbers);
         assert(zk);
     }
 
@@ -83,8 +81,8 @@ contract EigenDACertVerifierV2Unit is MockEigenDADeployer {
         nonSignerStakesAndSignature.totalStakeIndices = nssas.totalStakeIndices;
         nonSignerStakesAndSignature.nonSignerStakeIndices = nssas.nonSignerStakeIndices;
 
-        NonSignerStakesAndSignature memory _nonSignerStakesAndSignature = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
-        bool zk = eigenDACertVerifier.verifyDACertV2ForZKProof(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature);
+        (NonSignerStakesAndSignature memory _nonSignerStakesAndSignature, bytes memory signedQuorumNumbers) = eigenDACertVerifier.getNonSignerStakesAndSignature(signedBatch);
+        bool zk = eigenDACertVerifier.verifyDACertV2ForZKProof(signedBatch.batchHeader, blobInclusionInfo, _nonSignerStakesAndSignature, signedQuorumNumbers);
         assert(!zk);
     }