fix(zk): source intermediate root interval from on-chain like TEE

[mw2000]

Summary

The ZK prover hardcoded DEFAULT_INTERMEDIATE_ROOT_INTERVAL = 10, but the on-chain AggregateVerifier may use a different value (e.g. 30 on Sepolia). This mismatch causes ZK challenge proofs to fail verification.

Fix

Collapse to a single source matching the TEE — chain → ProofRequest → BootInfo → executor:

• Validity binary reads INTERMEDIATE_BLOCK_INTERVAL on startup (DGF → impl → AggregateVerifier) and threads it into ProofRequest.intermediate_block_interval.
• Host preimage server answers boot key 9 with the on-chain value.
• Both the SP1 range program and the native WitnessExecutor now read the interval from BootInfo, the same channel the TEE enclave uses.
• Falls back to DEFAULT_INTERMEDIATE_ROOT_INTERVAL only when DGF is unset or the chain read fails.

Removed (now redundant)

• INTERMEDIATE_ROOT_INTERVAL env var
• SP1 stdin scalar (host write + guest read)
• Interval params on WitnessExecutor::run and WitnessGenerator::get_sp1_stdin

Notes

• Range ELF source changed → rebuild once and update range_vkey_commitment. The ELF then accepts any on-chain interval without rebuilding (interval is data, not code).
• Aggregation program is unchanged.

[cb-heimdall]

🟡 Heimdall Review Status

Requirement	Status	More Info
Reviews	🟡 0/1	Denominator calculation Show calculation 1 if user is bot 0 1 if user is external 0 2 if repo is sensitive 0 From .codeflow.yml 1 Additional review requirements Show calculation Max 0 0 From CODEOWNERS 0 Global minimum 0 Max 1 1 1 if commit is unverified 1 Sum 2

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
base	Ignored	Preview	Apr 29, 2026 9:57pm

[mw2000]

Attached to linear issue CHAIN-4080

[github-actions]

The proof_request DB model now carries intermediate_root_interval: Option<i64>, but this reconstruction discards it. Should be:

Suggested change

	intermediate_root_interval: None,
	intermediate_root_interval: proof_request.intermediate_root_interval.map(|v| v as u64),

Low severity since this only affects mock backend, but it's inconsistent with the goal of preserving the interval end-to-end. The mock build_mock_public_values doesn't use the interval today, but if it ever does (or if mock proof verification checks the field), this None would silently use the default.

[github-actions]

Pre-existing, but since you're touching this file: per workspace conventions (CLAUDE.md), each mod declaration should be grouped with its pub use re-export:

mod intermediate_interval;
pub use intermediate_interval::*;

rather than listing all mods then all pub uses. This applies to the entire file but is a pre-existing issue — flagging only because you're adding a new module here.

[github-actions]

Review Summary

Clean, well-designed fix that eliminates the hardcoded DEFAULT_INTERMEDIATE_ROOT_INTERVAL by reading the canonical value from the on-chain AggregateVerifier. The approach is sound — single source of truth mirrors the TEE path, and the data flows correctly through both the validity proposer path (on-chain → RequesterConfig → OPSuccinctProofRequester → host.fetch() → BootInfo) and the ZK service path (gRPC → DB → ProveBlockRequest → backends → WitnessParams → BootInfo).

Validation is handled well: the gRPC boundary rejects interval == 0, the on-chain resolver bails on zero, and the executor has a .max(1) defense-in-depth. The migration is backwards-compatible (nullable column, NULL falls back to default). The protobuf field addition at position 8 is wire-compatible.

Minor finding

Cargo.toml dependency ordering (crates/proof/succinct/validity/Cargo.toml:42): base-proof-contracts.workspace = true is placed between anyhow and dotenv, breaking the waterfall (sort-by-line-length) convention. It should be placed after longer lines in this block.

Note on previous inline comments

Most inline comments from earlier review runs appear to be stale — the issues they raised (hardcoded interval in fetch, missing ProveBlockRequestParams field, missing zero validation, etc.) have all been addressed in the current revision.

[jackchuma]

Generally looks good to me. Can we add enforcement somewhere that the range proof block intervals are always a multiple of the intermediate block interval?