Conversation
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 2 potential issues.
Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.
| if restored_root != metadata.root_hash { | ||
| anyhow::bail!( | ||
| "Root mismatch: expected {}, got {}", | ||
| "Root mismatch after sparse restore: expected {}, got {}", |
There was a problem hiding this comment.
Sparse leaf restoration causes unnecessary full rebuilds
Medium Severity
The sparse leaf restoration fetches leaves from the accounts table (current state) but then verifies the root against metadata.root_hash (historical state). When events_behind > 0 and any pending events modified sparse leaves, the accounts table already contains updated values, causing root mismatch. The code interprets this as cache corruption and triggers a full rebuild, even though incremental replay would be correct. In sync_with_db, this happens every time the external indexer updates a sparse leaf, defeating the purpose of incremental sync.
Additional Locations (1)
| .parse::<U256>() | ||
| .map_err(|e| anyhow::anyhow!("Failed to parse commitment: {}", e))?; | ||
| tree = tree.update_with_mutation(*leaf_index, &commitment); | ||
| } |
There was a problem hiding this comment.
Missing leaf index bounds validation in sparse restoration
Medium Severity
The sparse leaf restoration code passes leaf_index values from the database directly to update_with_mutation without validating they are within tree capacity (2^tree_depth). The comparable full rebuild path in fetch_and_parse_leaves_batch explicitly validates that leaf_index < capacity before use. If the database contains a corrupted or malformed leaf index exceeding tree capacity (from data corruption or manual DB manipulation), calling update_with_mutation with an out-of-bounds index could cause a panic or undefined behavior.
Additional Locations (1)
1 participant
Note
Fully restores the in-memory Merkle tree when loading from mmap by rehydrating sparse leaves from the database and validating the root before replay.
fetch_sparse_leavesquery and integrate into tree initialization/sync to rebuild leaves beyond the dense prefix; verify restored root before event replayINDEXER_POLL_INTERVAL_SECSand wire through config/env; propagate to testspoll_interval_secsand a new sparse-leaf restoration test ensuring roots match on-chain after restartcheck-db.shandtest-create-account.sh; enhancelocal-setup.shto capture forge output, load.env, and pass deployed registry to gateway.env.examplewithINDEXER_POLL_INTERVAL_SECSand minor defaultsWritten by Cursor Bugbot for commit 50ad2ea. This will update automatically on new commits. Configure here.