refactor: build SP1 ELFs via sp1_build + embed via include_elf!() (OP Succinct pattern)

[agentotto]

Summary

Replace the previous hash-manifest approach with the upstream OP Succinct pattern:
compile the SP1 guest ELFs at cargo build time via sp1_build and embed
them into the host binary at link time via sp1_sdk::include_elf!(). There is
no committed ELF blob, no SHA-256 manifest, no --range-elf flag, and no
RANGE_ELF_PATH env var anywhere in the codebase any more.

This matches how succinctlabs/op-succinct
itself handles its SP1 programs (utils/build/,
utils/elfs/,
include_elf!() across host crates).

Supersedes the SHA-256 manifest approach from the previous revision of this PR.

What's in the PR

Build pipeline

• proofs/succinct/utils/host/build.rs (new) — calls
  sp1_build::build_program_with_args for both guest crates:

  • proofs/succinct/programs/range-ethereum/ → world-chain-proof-succinct-range-ethereum
  • proofs/succinct/programs/aggregation/ → world-chain-proof-succinct-aggregation

  Defaults to docker: true at pinned tag v6.1.0 (matches the
  sp1-sdk / sp1-zkvm pin). Set SP1_BUILD_DOCKER=false to use a
  locally-installed cargo-prove instead — used inside Dockerfile.proof
  because the Docker daemon isn't reachable from inside a docker build.

  The build is gated on CARGO_FEATURE_SP1, so non-sp1 builds (witness only,
  nitro only) no-op and don't need Docker or the SP1 toolchain.

• proofs/succinct/utils/host/Cargo.toml — adds sp1-build = "=6.1.0"
  as a [build-dependencies] entry and declares build = "build.rs".

Embedding

• proofs/succinct/utils/host/src/env_prover.rs:

  pub fn range_elf() -> Elf {
      include_elf!("world-chain-proof-succinct-range-ethereum")
  }
  pub fn aggregation_elf() -> Elf {
      include_elf!("world-chain-proof-succinct-aggregation")
  }

  EnvSuccinctProver::new(kind, agg_mode) now reads no arguments beyond the
  prover backend and the aggregation proof mode — it uses the embedded ELFs.
  EnvSuccinctProver::new_with_elfs(kind, range_elf, agg_elf, mode) is
  retained for tests and custom programs.

Removed

• The committed ELF binaries (proofs/succinct/elf/world-chain-range-ethereum
  and world-chain-aggregation).
• The hash-manifest pipeline introduced in the previous revision of this PR:
  • scripts/elf-manifest.py
  • proofs/succinct/elf/manifest.toml
  • proofs/succinct/elf/.gitignore
  • Justfile recipes build-proof-range-elf, build-proof-aggregation-elf,
    build-proof-elfs, verify-proof-elfs, build-and-verify-proof-elfs,
    update-proof-elf-hashes.
• CLI flags / env vars for ELF paths from every host: --range-elf,
  --agg-elf, --elf, RANGE_ELF_PATH, AGG_ELF_PATH,
  WORLD_CHAIN_RANGE_ELF, WORLD_CHAIN_AGGREGATION_ELF.
• Per-image ELFs in Dockerfile.proof (the COPY lines and the ENV exports).
• crates/devnet/src/full_stack.rs no longer joins repo_root() with
  proofs/succinct/elf/... — the worker links the bytes in directly.

Kept

• just proof-vkeys — still the way to print on-chain vkey commitments
  (it now triggers the embedded build automatically, no separate
  build-proof-elfs step required).

Docs

docs/proof/elf-management.md is rewritten to describe the new pipeline.
docs/proof/proof-cli.md and docs/proof/release.md are updated to drop
references to the old ELF flags / manifest / Justfile targets.

Workflow changes (need maintainer with workflows scope)

The GitHub App opening this PR can't write to .github/workflows/**. The
two updates that match this refactor:

1. Delete .github/workflows/elf.yml

The workflow was specifically gating ELF reproducibility against a committed
manifest. With sp1_build baked into the host crate, every cargo build
under the sp1 feature already rebuilds the guest ELFs — there's nothing
separate to verify any more. Just git rm .github/workflows/elf.yml.

2. .github/workflows/release-proof.yml

Three changes:

• Drop the verify-elfs job entirely (and needs: [verify-elfs] from every
  other job).

• In vkeys, install the SP1 toolchain and set SP1_BUILD_DOCKER=false
  before running just proof-vkeys:

  - name: Install SP1 toolchain
    run: |
      curl -L https://sp1.succinct.xyz | bash
      ~/.sp1/bin/sp1up --version v6.1.0
      echo "$HOME/.sp1/bin" >> $GITHUB_PATH
  - name: Compute vkeys
    env:
      SP1_BUILD_DOCKER: "false"
    run: just proof-vkeys --output vkeys.json && cat vkeys.json

• In build-binaries, install the SP1 toolchain and set
  SP1_BUILD_DOCKER=false before cargo build --release ... -p proof --features sp1,nitro:

  - name: Install SP1 toolchain
    run: |
      curl -L https://sp1.succinct.xyz | bash
      ~/.sp1/bin/sp1up --version v6.1.0
      echo "$HOME/.sp1/bin" >> $GITHUB_PATH
  - name: Cargo Build Release
    env:
      SP1_BUILD_DOCKER: "false"
    run: cargo build --release --locked -p proof --bin proof --features sp1,nitro --target ${{ matrix.target }}

• In draft-release, drop the two cp proofs/succinct/elf/... lines
  (the ELFs are no longer shipped as standalone release artifacts —
  they're embedded in the proof CLI tarballs and the docker image
  manifest).

Verification

• cargo check -p world-chain-proof-succinct-host-utils (no sp1 feature)
  succeeds locally — the build.rs correctly no-ops without
  CARGO_FEATURE_SP1.
• With sp1 feature, build.rs invokes
  sp1_build::build_program_with_args for each program crate and emits
  cargo:rustc-env=SP1_ELF_world-chain-proof-succinct-range-ethereum=...
  directives that include_elf!() picks up. Confirmed by sp1-build
  panicking with "failed to run docker command" in environments without
  Docker — i.e. the wiring is correct, only the runtime is missing.
• Reproducibility property is unchanged: pinned tag: "v6.1.0" (whether
  via docker: true Docker image or via sp1up --version v6.1.0 install)
  → bit-for-bit identical ELFs → identical vkeys.

Migration

Developers don't need to do anything separate. cargo build /
cargo build -p proof --features sp1 / cargo build -p world-chain-sp1-worker
runs sp1_build transparently. The first build pulls
succinctlabs/sp1:v6.1.0 (a few minutes); subsequent builds reuse the
cached ELFs unless guest source or the pinned tag changes.

For fast iteration on host code after a successful build, set
SP1_SKIP_PROGRAM_BUILD=true to skip the ELF recompile while letting
include_elf!() resolve against the cached ELFs.

Risks

• Dockerfile.proof now installs the SP1 toolchain in the builder stage
  and uses SP1_BUILD_DOCKER=false. First image build is slower until
  layer caching kicks in; the ELFs are no longer COPYed in.
• Anyone whose tooling pinned RANGE_ELF_PATH / AGG_ELF_PATH will need
  to stop setting them — those env vars are gone from every binary.

---

Note

High Risk
Changes how on-chain SP1 vkeys are derived and what release/Docker images contain; guest or toolchain drift without updating vkeys.json or registries would break proof-lane governance.

Overview
Moves SP1 guest program handling to the OP Succinct pattern: a new world-chain-proof-succinct-elfs crate runs sp1_build::build_program_with_args in build.rs and exposes ELFs through include_elf!(). world-chain-prover-sp1 and sp1-worker (default embedded-elfs) no longer take --range-elf / --agg-elf or read committed ELF files; EnvSuccinctProver::new_with_elfs is the production path.

CI and release drop the dedicated build-elfs job and ELF upload/download from docker-proof.yml and release-proof.yml. Vkeys are computed from embedded ELFs (SP1_BUILD_DOCKER=false + pinned sp1up v6.1.0); standalone guest ELF release assets and manifest.toml go away. proofs/succinct/elf/vkeys.json is committed, with just verify-proof-vkeys and a new verify-vkeys workflow.

Dockerfile.prover installs the SP1 toolchain, requires PROVER_PACKAGE / PROVER_BIN, and no longer copies ELF blobs into the image—bytes live inside the built binary. Devnet disables sp1-worker embedded ELFs and expects RANGE_ELF_PATH / AGG_ELF_PATH for runtime loading.

Docs and Justfile recipes are updated (build-proof-elfs removed; update-proof-vkeys / verify-proof-vkeys added). sp1-build is pinned to 6.1.0 in Cargo.lock.

^{Reviewed by Cursor Bugbot for commit ec552f8. Bugbot is set up for automated code reviews on this repo. Configure here.}

[github-actions]

Benchmark Results

Compared on the same runner in the same workflow run.

group                                                                                              base                                   pr
-----                                                                                              ----                                   --
flashblock_validation_launch_flashblock_sequence_eth_transfers/stream/4fb_x_125tx                  1.01     28.6±0.07ms        ? ?/sec    1.00     28.2±0.06ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_eth_transfers/stream/4fb_x_250tx                  1.01     56.8±0.20ms        ? ?/sec    1.00     56.0±0.15ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_eth_transfers/stream/4fb_x_50tx                   1.01     12.0±0.03ms        ? ?/sec    1.00     11.9±0.16ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_eth_transfers_with_bal/stream/4fb_x_125tx         1.01     36.2±0.56ms        ? ?/sec    1.00     35.8±1.36ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_eth_transfers_with_bal/stream/4fb_x_250tx         1.00     66.2±0.97ms        ? ?/sec    1.02     67.5±0.86ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_eth_transfers_with_bal/stream/4fb_x_50tx          1.03     17.0±0.24ms        ? ?/sec    1.00     16.6±0.12ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib/stream/4fb_x_125tx                            1.00     27.2±0.20ms        ? ?/sec    1.00     27.3±0.07ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib/stream/4fb_x_250tx                            1.00     53.0±0.33ms        ? ?/sec    1.00     53.0±0.08ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib/stream/4fb_x_50tx                             1.01     11.3±0.03ms        ? ?/sec    1.00     11.2±0.03ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib_with_bal/stream/4fb_x_125tx                   1.00     33.9±0.20ms        ? ?/sec    1.00     34.0±0.30ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib_with_bal/stream/4fb_x_250tx                   1.00     62.4±0.20ms        ? ?/sec    1.00     62.4±0.25ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_fib_with_bal/stream/4fb_x_50tx                    1.03     16.1±0.12ms        ? ?/sec    1.00     15.7±0.25ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254/stream/4fb_x_10tx             1.00    136.1±0.23ms        ? ?/sec    1.00    135.9±0.31ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254/stream/4fb_x_12tx             1.00    162.3±0.16ms        ? ?/sec    1.00    162.5±0.27ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254/stream/4fb_x_5tx              1.01     68.7±0.11ms        ? ?/sec    1.00     68.2±0.08ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254_with_bal/stream/4fb_x_10tx    1.00     23.2±1.29ms        ? ?/sec    1.00     23.1±1.45ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254_with_bal/stream/4fb_x_12tx    1.00     24.2±1.46ms        ? ?/sec    1.07     25.9±1.51ms        ? ?/sec
flashblock_validation_launch_flashblock_sequence_world_id_like_bn254_with_bal/stream/4fb_x_5tx     1.00     19.6±0.70ms        ? ?/sec    1.00     19.5±1.24ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers/txs/1000                                    1.01     49.0±0.15ms        ? ?/sec    1.00     48.7±0.11ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers/txs/50                                      1.02      2.7±0.02ms        ? ?/sec    1.00      2.7±0.01ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers/txs/500                                     1.01     24.6±0.08ms        ? ?/sec    1.00     24.4±0.05ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers_with_bal/txs/1000                           1.00     58.9±0.23ms        ? ?/sec    1.01     59.3±0.25ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers_with_bal/txs/50                             1.00      3.8±0.03ms        ? ?/sec    1.03      3.9±0.07ms        ? ?/sec
flashblock_validation_process_flashblock_eth_transfers_with_bal/txs/500                            1.00     30.1±0.31ms        ? ?/sec    1.00     30.0±0.15ms        ? ?/sec
flashblock_validation_process_flashblock_fib/txs/1000                                              1.00     48.2±0.11ms        ? ?/sec    1.00     48.0±0.09ms        ? ?/sec
flashblock_validation_process_flashblock_fib/txs/50                                                1.00      2.5±0.01ms        ? ?/sec    1.00      2.5±0.01ms        ? ?/sec
flashblock_validation_process_flashblock_fib/txs/500                                               1.00     24.2±0.07ms        ? ?/sec    1.00     24.1±0.04ms        ? ?/sec
flashblock_validation_process_flashblock_fib_with_bal/txs/1000                                     1.01     55.8±0.27ms        ? ?/sec    1.00     55.2±0.20ms        ? ?/sec
flashblock_validation_process_flashblock_fib_with_bal/txs/50                                       1.00      3.7±0.09ms        ? ?/sec    1.00      3.7±0.06ms        ? ?/sec
flashblock_validation_process_flashblock_fib_with_bal/txs/500                                      1.00     28.2±0.14ms        ? ?/sec    1.00     28.2±0.22ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254/txs/10                                1.00     33.8±0.05ms        ? ?/sec    1.00     33.8±0.07ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254/txs/25                                1.00     84.4±0.12ms        ? ?/sec    1.00     84.0±0.11ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254/txs/50                                1.00    168.6±0.33ms        ? ?/sec    1.00    168.5±0.64ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254_with_bal/txs/10                       1.02      5.5±0.32ms        ? ?/sec    1.00      5.4±0.23ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254_with_bal/txs/25                       1.00      8.2±0.08ms        ? ?/sec    1.00      8.2±0.10ms        ? ?/sec
flashblock_validation_process_flashblock_world_id_like_bn254_with_bal/txs/50                       1.00     15.0±0.23ms        ? ?/sec    1.01     15.1±0.21ms        ? ?/sec

Threshold: 10% regression triggers failure

[cursor]

Cursor Bugbot has reviewed your changes using default effort and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit ec552f8. Configure here.}

[cursor]

Justfile omits SP1_BUILD_DOCKER

Medium Severity

update-proof-vkeys and verify-proof-vkeys invoke cargo run without SP1_BUILD_DOCKER=false, while release-proof.yml, Dockerfile.prover, and the staged vkeys.yml workflow pin the local sp1up v6.1.0 toolchain. proofs/succinct/elfs/build.rs hardcodes docker: true, so maintainer updates can diverge from CI and release measurements.

 

^{Reviewed by Cursor Bugbot for commit ec552f8. Configure here.}