boundless-xyz · ec2 · May 21, 2025 · May 21, 2025 · May 21, 2025 · May 22, 2025
@@ -14,10 +14,10 @@
 	"rust-analyzer.linkedProjects": [
 		"./Cargo.toml",
 		"./crates/distributor/Cargo.toml",
-		// "./crates/guest/assessor/assessor-guest/Cargo.toml",
+		"./crates/guest/assessor/assessor-guest/Cargo.toml",
 		// "./crates/guest/util/echo/Cargo.toml",
 		// "./crates/guest/util/identity/Cargo.toml",
-		// "./examples/counter/Cargo.toml",
+		"./examples/counter/Cargo.toml",
 		// "./examples/smart-contract-requestor/Cargo.toml",
 		// "./examples/counter-with-callback/Cargo.toml"
 	],

@@ -22,7 +22,7 @@ import {Input, InputType} from "../src/types/Input.sol";
 import {Requirements} from "../src/types/Requirements.sol";
 import {Offer} from "../src/types/Offer.sol";
 import {ProofRequest} from "../src/types/ProofRequest.sol";
-import {Predicate, PredicateType} from "../src/types/Predicate.sol";
+import {PredicateLibrary} from "../src/types/Predicate.sol";
 import {RequestId, RequestIdLibrary} from "../src/types/RequestId.sol";
 import {RequestLock} from "../src/types/RequestLock.sol";
 
@@ -105,7 +105,10 @@ contract DeploymentTest is Test {
     function testRouterIsDeployed() external view {
         require(address(verifier) != address(0), "no verifier (router) address is set");
         require(keccak256(address(verifier).code) != keccak256(bytes("")), "verifier code is empty");
-        require(address(verifier) == address(BoundlessMarket(address(boundlessMarket)).VERIFIER()), "verifier address does not match boundless market");
+        require(
+            address(verifier) == address(BoundlessMarket(address(boundlessMarket)).VERIFIER()),
+            "verifier address does not match boundless market"
+        );
     }
 
     function testSetVerifierIsDeployed() external view {
@@ -191,9 +194,7 @@ contract DeploymentTest is Test {
         vm.expectEmit(true, true, true, false);
         emit IBoundlessMarket.ProofDelivered(request.id, address(testProver), result.fills[0]);
 
-        boundlessMarket.priceAndFulfill(
-            requests, clientSignatures, result.fills, result.assessorReceipt
-        );
+        boundlessMarket.priceAndFulfill(requests, clientSignatures, result.fills, result.assessorReceipt);
         Fulfillment memory fill = result.fills[0];
         assertTrue(boundlessMarket.requestIsFulfilled(fill.id), "Request should have fulfilled status");
     }
@@ -230,8 +231,7 @@ contract Client {
 
     function defaultRequirements() public pure returns (Requirements memory) {
         return Requirements({
-            imageId: bytes32(APP_IMAGE_ID),
-            predicate: Predicate({predicateType: PredicateType.PrefixMatch, data: hex"53797374"}),
+            predicate: PredicateLibrary.createPrefixMatchPredicate(bytes32(APP_IMAGE_ID), hex"53797374"),
             callback: Callback({gasLimit: 0, addr: address(0)}),
             selector: bytes4(0)
         });
@@ -257,4 +257,4 @@ contract Client {
         (uint8 v, bytes32 r, bytes32 s) = VM.sign(wallet, structDigest);
         return abi.encodePacked(r, s, v);
     }
-}
+}
@@ -1,42 +1,43 @@
 {
   "ERC20 approve: required for depositStake": "45966",
-  "bytecode size implementation": "24381",
+  "bytecode size implementation": "24341",
   "bytecode size proxy": "89",
-  "deposit: first ever deposit": "50920",
-  "deposit: second deposit": "33820",
-  "depositStake: 1 HP (tops up market account)": "59400",
-  "depositStake: full (drains testProver account)": "49800",
-  "depositStakeWithPermit: 1 HP (tops up market account)": "72272",
-  "depositStakeWithPermit: full (drains testProver account)": "72262",
-  "fulfill: a batch of 8": "402078",
-  "fulfill: a locked request": "90511",
-  "fulfill: a locked request (locked via prover signature)": "90511",
-  "fulfill: a locked request with 10kB journal": "427539",
-  "fulfill: another prover fulfills without payment": "85473",
-  "fulfill: fulfilled by the locked prover for payment (request already fulfilled by another prover)": "80772",
-  "fulfillAndWithdraw: a batch of 8": "414256",
-  "fulfillAndWithdraw: a locked request": "102689",
-  "lockinRequest: base case": "146877",
-  "lockinRequest: with prover signature": "156522",
-  "priceAndFulfill: a single request": "108760",
-  "priceAndFulfill: a single request (smart contract signature)": "118938",
-  "priceAndFulfill: a single request (with selector)": "111059",
-  "priceAndFulfill: a single request that was not locked": "108760",
-  "priceAndFulfill: a single request that was not locked fulfilled by prover not in allow-list": "108760",
-  "priceAndFulfill: fulfill already fulfilled was locked request": "102475",
-  "slash: base case": "100967",
-  "slash: fulfilled request after lock deadline": "80532",
-  "submitRequest: with maxPrice ether": "51904",
-  "submitRequest: without ether": "45061",
-  "submitRootAndFulfill: a batch of 2 requests": "168676",
-  "submitRootAndFulfill: a locked request": "124555",
-  "submitRootAndFulfill: a locked request (locked via prover signature)": "124555",
-  "submitRootAndFulfillAndWithdraw: a locked request": "136476",
-  "submitRootAndPriceAndFulfill: a single request": "141098",
-  "submitRootAndPriceAndFulfill: a single request that was not locked": "141110",
-  "submitRootAndPriceAndFulfill: a single request that was not locked fulfilled by prover not in allow-list": "141110",
-  "withdraw: 1 ether": "40314",
-  "withdraw: full balance": "40326",
-  "withdrawStake: 1 HP balance": "68743",
-  "withdrawStake: full balance": "51739"
+  "deposit: first ever deposit": "50876",
+  "deposit: second deposit": "33776",
+  "depositStake: 1 HP (tops up market account)": "59378",
+  "depositStake: full (drains testProver account)": "49778",
+  "depositStakeWithPermit: 1 HP (tops up market account)": "72236",
+  "depositStakeWithPermit: full (drains testProver account)": "72227",
+  "fulfill (no journal): a batch of 8": "385299",
+  "fulfill: a batch of 8": "438335",
+  "fulfill: a locked request": "95167",
+  "fulfill: a locked request (locked via prover signature)": "95167",
+  "fulfill: a locked request with 10kB journal": "432569",
+  "fulfill: another prover fulfills without payment": "90165",
+  "fulfill: fulfilled by the locked prover for payment (request already fulfilled by another prover)": "84071",
+  "fulfillAndWithdraw: a batch of 8": "451307",
+  "fulfillAndWithdraw: a locked request": "108139",
+  "lockinRequest: base case": "147332",
+  "lockinRequest: with prover signature": "157039",
+  "priceAndFulfill: a single request": "113970",
+  "priceAndFulfill: a single request (smart contract signature)": "124159",
+  "priceAndFulfill: a single request (with selector)": "116270",
+  "priceAndFulfill: a single request that was not locked": "113934",
+  "priceAndFulfill: a single request that was not locked fulfilled by prover not in allow-list": "113934",
+  "priceAndFulfill: fulfill already fulfilled was locked request": "106280",
+  "slash: base case": "100898",
+  "slash: fulfilled request after lock deadline": "80465",
+  "submitRequest: with maxPrice ether": "52227",
+  "submitRequest: without ether": "45384",
+  "submitRootAndFulfill: a batch of 2 requests": "177800",
+  "submitRootAndFulfill: a locked request": "129534",
+  "submitRootAndFulfill: a locked request (locked via prover signature)": "129534",
+  "submitRootAndFulfillAndWithdraw: a locked request": "141954",
+  "submitRootAndPriceAndFulfill: a single request": "146462",
+  "submitRootAndPriceAndFulfill: a single request that was not locked": "146426",
+  "submitRootAndPriceAndFulfill: a single request that was not locked fulfilled by prover not in allow-list": "146426",
+  "withdraw: 1 ether": "40331",
+  "withdraw: full balance": "40343",
+  "withdrawStake: 1 HP balance": "68755",
+  "withdrawStake: full balance": "51751"
 }
@@ -1,22 +1,22 @@
 {
-  "fulfill (with callback): batch of 001": "132142",
-  "fulfill (with callback): batch of 002": "218443",
-  "fulfill (with callback): batch of 004": "392147",
-  "fulfill (with callback): batch of 008": "739579",
-  "fulfill (with callback): batch of 016": "1272464",
-  "fulfill (with callback): batch of 032": "2373148",
-  "fulfill (with selector): batch of 001": "92745",
-  "fulfill (with selector): batch of 002": "139726",
-  "fulfill (with selector): batch of 004": "236258",
-  "fulfill (with selector): batch of 008": "420231",
-  "fulfill (with selector): batch of 016": "790425",
-  "fulfill (with selector): batch of 032": "1558877",
-  "fulfill: batch of 001": "90487",
-  "fulfill: batch of 002": "135232",
-  "fulfill: batch of 004": "227181",
-  "fulfill: batch of 008": "402117",
-  "fulfill: batch of 016": "754179",
-  "fulfill: batch of 032": "1485129",
-  "fulfill: batch of 064": "3014348",
-  "fulfill: batch of 128": "6255291"
+  "fulfill (with callback): batch of 001": "136946",
+  "fulfill (with callback): batch of 002": "227879",
+  "fulfill (with callback): batch of 004": "410896",
+  "fulfill (with callback): batch of 008": "776960",
+  "fulfill (with callback): batch of 016": "1346098",
+  "fulfill (with callback): batch of 032": "2522586",
+  "fulfill (with selector): batch of 001": "97441",
+  "fulfill (with selector): batch of 002": "148905",
+  "fulfill (with selector): batch of 004": "254383",
+  "fulfill (with selector): batch of 008": "456439",
+  "fulfill (with selector): batch of 016": "862953",
+  "fulfill (with selector): batch of 032": "1704151",
+  "fulfill: batch of 001": "95191",
+  "fulfill: batch of 002": "144387",
+  "fulfill: batch of 004": "245394",
+  "fulfill: batch of 008": "438338",
+  "fulfill: batch of 016": "826511",
+  "fulfill: batch of 032": "1630160",
+  "fulfill: batch of 064": "3306156",
+  "fulfill: batch of 128": "6849269"
 }
@@ -24,8 +24,10 @@ import {Account} from "./types/Account.sol";
 import {AssessorJournal} from "./types/AssessorJournal.sol";
 import {AssessorCallback} from "./types/AssessorCallback.sol";
 import {AssessorCommitment} from "./types/AssessorCommitment.sol";
+import {CallbackData} from "./types/CallbackData.sol";
 import {Fulfillment} from "./types/Fulfillment.sol";
 import {AssessorReceipt} from "./types/AssessorReceipt.sol";
+import {PredicateType} from "./types/Predicate.sol";
 import {ProofRequest} from "./types/ProofRequest.sol";
 import {LockRequest, LockRequestLibrary} from "./types/LockRequest.sol";
 import {RequestId} from "./types/RequestId.sol";
@@ -239,6 +241,7 @@ contract BoundlessMarket is
         }
         bytes32[] memory leaves = new bytes32[](fills.length);
         bool[] memory hasSelector = new bool[](fills.length);
+        PredicateType[] memory predicateTypes = new PredicateType[](fills.length);
 
         // Check the selector constraints.
         // NOTE: The assessor guest adds non-zero selector values to the list.
@@ -255,16 +258,16 @@ contract BoundlessMarket is
         // Verify the application receipts.
         for (uint256 i = 0; i < fills.length; i++) {
             Fulfillment calldata fill = fills[i];
+            predicateTypes[i] = fill.predicateType;
 
-            bytes32 claimDigest = ReceiptClaimLib.ok(fill.imageId, sha256(fill.journal)).digest();
-            leaves[i] = AssessorCommitment(i, fill.id, fill.requestDigest, claimDigest).eip712Digest();
+            leaves[i] = AssessorCommitment(i, fill.id, fill.requestDigest, fill.claimDigest).eip712Digest();
 
             // If the requestor did not specify a selector, we verify with DEFAULT_MAX_GAS_FOR_VERIFY gas limit.
             // This ensures that by default, client receive proofs that can be verified cheaply as part of their applications.
             if (!hasSelector[i]) {
-                VERIFIER.verifyIntegrity{gas: DEFAULT_MAX_GAS_FOR_VERIFY}(Receipt(fill.seal, claimDigest));
+                VERIFIER.verifyIntegrity{gas: DEFAULT_MAX_GAS_FOR_VERIFY}(Receipt(fill.seal, fill.claimDigest));
             } else {
-                VERIFIER.verifyIntegrity(Receipt(fill.seal, claimDigest));
+                VERIFIER.verifyIntegrity(Receipt(fill.seal, fill.claimDigest));
             }
         }
 
@@ -278,6 +281,7 @@ contract BoundlessMarket is
                     root: batchRoot,
                     callbacks: assessorReceipt.callbacks,
                     selectors: assessorReceipt.selectors,
+                    predicateTypes: predicateTypes,
                     prover: assessorReceipt.prover
                 })
             )
@@ -333,13 +337,39 @@ contract BoundlessMarket is
             }
 
             uint256 callbackIndexPlusOne = fillToCallbackIndexPlusOne[i];
-            if (callbackIndexPlusOne > 0) {
-                AssessorCallback calldata callback = assessorReceipt.callbacks[callbackIndexPlusOne - 1];
-                _executeCallback(fill.id, callback.addr, callback.gasLimit, fill.imageId, fill.journal, fill.seal);
+
+            // We do not support callbacks for claim digest matches because we cant authenticate the journal.
+            if (fill.predicateType != PredicateType.ClaimDigestMatch) {
+                // In the case this is a not a claim digest match, we need to authenticate the journal, since we actually have it
+                (bytes32 imageId, bytes calldata journal) = _decodeCallbackData(fill.callbackData);
+                bytes32 calculatedClaimDigest = ReceiptClaimLib.ok(imageId, sha256(journal)).digest();
+                if (fill.claimDigest != calculatedClaimDigest) {
+                    revert ClaimDigestMismatch(fill.claimDigest, calculatedClaimDigest);
+                }
+
+                if (callbackIndexPlusOne > 0) {
+                    AssessorCallback calldata callback = assessorReceipt.callbacks[callbackIndexPlusOne - 1];
+                    _executeCallback(fill.id, callback.addr, callback.gasLimit, imageId, journal, fill.seal);
+                }
             }
         }
     }
 
+    function _decodeCallbackData(bytes calldata data) internal pure returns (bytes32 imageId, bytes calldata journal) {
+        assembly {
+            // Extract imageId (first 32 bytes after length)
+            imageId := calldataload(add(data.offset, 0x20))
+
+            // Extract journal offset and create calldata slice
+            let journalOffset := calldataload(add(data.offset, 0x40))
+            let journalPtr := add(data.offset, add(0x20, journalOffset))
+            let journalLength := calldataload(journalPtr)
+
+            journal.offset := add(journalPtr, 0x20)
+            journal.length := journalLength
+        }
+    }
+
     /// @inheritdoc IBoundlessMarket
     function priceAndFulfillAndWithdraw(
         ProofRequest[] calldata requests,

@@ -165,6 +165,10 @@ interface IBoundlessMarket {
     /// @dev selector efc954a6
     error BatchSizeExceedsLimit(uint256 batchSize, uint256 limit);
 
+    /// @notice Error when a journal is provided but does not match the claim digest
+    /// TODO(ec2): selector
+    error ClaimDigestMismatch(bytes32 expected, bytes32 calculated);
+
     /// @notice Check if the given request has been locked (i.e. accepted) by a prover.
     /// @dev When a request is locked, only the prover it is locked to can be paid to fulfill the job.
     /// @param requestId The ID of the request.

@@ -4,11 +4,15 @@
 // as found in the LICENSE-BSL file.
 pragma solidity ^0.8.20;
 
+import {CallbackType} from "./CallbackType.sol";
+
 struct AssessorCallback {
     /// @notice The index of the fill in the request
     uint16 index;
     /// @notice The address of the contract to call back
     address addr;
     /// @notice Maximum gas to use for the callback
     uint96 gasLimit;
+    /// @notice The type of callback
+    CallbackType callbackType;
 }
@@ -5,6 +5,7 @@
 pragma solidity ^0.8.20;
 
 import {AssessorCallback} from "./AssessorCallback.sol";
+import {PredicateType} from "./Predicate.sol";
 import {Selector} from "./Selector.sol";
 
 /// @title Assessor Journal Struct
@@ -17,6 +18,8 @@ struct AssessorJournal {
     /// @notice The (optional) selectors for the requests committed by the assessor.
     /// @dev This is used to verify the fulfillment of the request against its selector's seal.
     Selector[] selectors;
+    /// @notice The list of `PredicateType` for each request.
+    PredicateType[] predicateTypes;
     /// @notice Root of the Merkle tree committing to the set of proven claims.
     /// @dev In the case of a batch of size one, this may simply be the eip712Digest of the `AssessorCommitment`.
     bytes32 root;

@@ -6,23 +6,27 @@ pragma solidity ^0.8.24;
 
 using CallbackLibrary for Callback global;
 
+import {CallbackType} from "./CallbackType.sol";
+
 /// @title Callback Struct and Library
 /// @notice Represents a callback configuration for proof delivery
 struct Callback {
     /// @notice The address of the contract to call back
     address addr;
     /// @notice Maximum gas to use for the callback
     uint96 gasLimit;
+    /// @notice The type of callback
+    CallbackType callbackType;
 }
 
 library CallbackLibrary {
-    string constant CALLBACK_TYPE = "Callback(address addr,uint96 gasLimit)";
+    string constant CALLBACK_TYPE = "Callback(address addr,uint96 gasLimit,uint8 callbackType)";
     bytes32 constant CALLBACK_TYPEHASH = keccak256(bytes(CALLBACK_TYPE));
 
     /// @notice Computes the EIP-712 digest for the given callback
     /// @param callback The callback to compute the digest for
     /// @return The EIP-712 digest of the callback
     function eip712Digest(Callback memory callback) internal pure returns (bytes32) {
-        return keccak256(abi.encode(CALLBACK_TYPEHASH, callback.addr, callback.gasLimit));
+        return keccak256(abi.encode(CALLBACK_TYPEHASH, callback.addr, callback.gasLimit, callback.callbackType));
     }
 }
@@ -0,0 +1,19 @@
+// Copyright 2025 RISC Zero, Inc.
+//
+// Use of this source code is governed by the Business Source License
+// as found in the LICENSE-BSL file.
+pragma solidity ^0.8.24;
+
+using CallbackDataLibrary for CallbackData global;
+
+/// @title Callback Struct and Library
+/// @notice Represents a callback configuration for proof delivery
+struct CallbackData {
+    /// @notice Image ID of the guest that was verifiably executed to satisfy the request.
+    bytes32 imageId;
+    /// @notice Journal committed by the guest program execution.
+    /// @dev The journal is checked to satisfy the predicate specified on the request's requirements.
+    bytes journal;
+}
+
+library CallbackDataLibrary {}
@@ -0,0 +1,10 @@
+// Copyright 2025 RISC Zero, Inc.
+//
+// Use of this source code is governed by the Business Source License
+// as found in the LICENSE-BSL file.
+pragma solidity ^0.8.20;
+
+enum CallbackType {
+    None,
+    JournalRequired
+}