Feat/via verify en data

[0xatomFusion]

What ❔

• Verify that the data returned by the Node matches the commitment hash recorded DA layer.

Why ❔

When the verifier falls back to the node to fetch DA, it must verify that the returned data matches the on-chain commitment hash stored on Celestia, rather than trusting the node to provide honest and valid data.

Checklist

• PR title corresponds to the body of PR (we generate changelog entries from PRs).
• Tests for the changes have been added / updated.
• Documentation comments have been added / updated.
• Code has been formatted via zkstack dev fmt and zkstack dev lint.

[romanornr]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces a crucial verification step to ensure data fetched from a fallback node matches the on-chain commitment. The implementation is mostly correct, but I've found a critical issue in the validation logic, along with some leftover debugging code and a missed validation case. My review includes suggestions to fix the critical bug, clean up the code, and ensure the verification is applied consistently.

[gemini-code-assist]

The validate_commitment function has several issues that need to be addressed:

• Incorrect Argument Order: The arguments to Commitment::from_blob appear to be swapped. Based on its usage elsewhere, the signature is likely (Namespace, u8, &[u8]). The current implementation will fail to compile or produce an incorrect commitment, defeating the purpose of this validation.
• Leftover Debug Code: The function contains println! statements and large blocks of commented-out code, which should be removed.
• Redundant Logic: The function decodes blob_id manually, even though parse_blob_id is also called and performs the same operation.
• Uncompilable Code: The function references a commitment_result variable that is not defined in the uncommented code, which will cause a compilation error.

I suggest refactoring the entire function for clarity and correctness.

    pub fn validate_commitment(&self, blob_id: &str, data: &[u8]) -> Result<(), DAError> {
        let calculated_commitment =
            Commitment::from_blob(self.namespace, SHARE_VERSION_ZERO, data).map_err(|error| {
                DAError {
                    error: error.into(),
                    is_retriable: false,
                }
            })?;

        let (expected_commitment, _) = parse_blob_id(blob_id).map_err(|error| DAError {
            error: error.into(),
            is_retriable: true,
        })?;

        if calculated_commitment.0 != expected_commitment.0 {
            return Err(DAError {
                error: anyhow::anyhow!("Commitment mismatch"),
                is_retriable: false,
            });
        }
        Ok(())
    }

[gemini-code-assist]

The commitment validation is commented out for blobs that are proofs (blob.is_proof). To ensure all data from the external node is verified against its on-chain commitment, this validation should be enabled for all blob types.

                    self.validate_commitment(blob_id, &data)
                        .map_err(|e| DAError {
                            error: e.into(),
                            is_retriable: false,
                        })?;

[gemini-code-assist]

This println! statement appears to be leftover debugging code and should be removed.

[gemini-code-assist]

This println! statement appears to be for debugging and should be removed.