lambdaclass · MegaRedHand · Feb 25, 2026 · Feb 18, 2026 · Feb 18, 2026 · Feb 18, 2026
diff --git a/Makefile b/Makefile
@@ -25,7 +25,7 @@ docker-build: ## 🐳 Build the Docker image
 		-t ghcr.io/lambdaclass/ethlambda:$(DOCKER_TAG) .
 	@echo
 
-LEAN_SPEC_COMMIT_HASH:=b39472e73f8a7d603cc13d14426eed14c6eff6f1
+LEAN_SPEC_COMMIT_HASH:=8b7636bb8a95fe4bec414cc4c24e74079e6256b6
 
 leanSpec:
 	git clone https://github.com/leanEthereum/leanSpec.git --single-branch

diff --git a/crates/blockchain/src/lib.rs b/crates/blockchain/src/lib.rs
@@ -155,13 +155,20 @@ impl BlockChainServer {
             .flatten();
 
         // Tick the store first - this accepts attestations at interval 0 if we have a proposal
-        store::on_tick(
+        let new_aggregates = store::on_tick(
             &mut self.store,
             timestamp_ms,
             proposer_validator_id.is_some(),
             self.is_aggregator,
         );
 
+        for aggregate in new_aggregates {
+            let _ = self
+                .p2p_tx
+                .send(P2PMessage::PublishAggregatedAttestation(aggregate))
+                .inspect_err(|err| error!(%err, "Failed to publish aggregated attestation"));
+        }
+
         // Now build and publish the block (after attestations have been accepted)
         if let Some(validator_id) = proposer_validator_id {
             self.propose_block(slot, validator_id);

diff --git a/crates/blockchain/src/store.rs b/crates/blockchain/src/store.rs
@@ -82,8 +82,16 @@ fn update_safe_target(store: &mut Store) {
     let min_target_score = (num_validators * 2).div_ceil(3);
 
     let blocks = store.get_live_chain();
+    // Merge both attestation pools. At interval 3 the migration (interval 4) hasn't
+    // run yet, so attestations that entered "known" directly (proposer's own attestation
+    // in block body, node's self-attestation) would be invisible without this merge.
+    let mut all_payloads: HashMap<SignatureKey, Vec<StoredAggregatedPayload>> =
+        store.iter_known_aggregated_payloads().collect();
+    for (key, new_proofs) in store.iter_new_aggregated_payloads() {
+        all_payloads.entry(key).or_default().extend(new_proofs);
+    }
     let attestations =
-        extract_attestations_from_aggregated_payloads(store, store.iter_new_aggregated_payloads());
+        extract_attestations_from_aggregated_payloads(store, all_payloads.into_iter());
     let safe_target = ethlambda_fork_choice::compute_lmd_ghost_head(
         store.latest_justified().root,
         &blocks,
@@ -125,12 +133,14 @@ fn extract_attestations_from_aggregated_payloads(
 ///
 /// Collects individual gossip signatures, aggregates them by attestation data,
 /// and stores the resulting proofs in `LatestNewAggregatedPayloads`.
-fn aggregate_committee_signatures(store: &mut Store) {
+fn aggregate_committee_signatures(store: &mut Store) -> Vec<SignedAggregatedAttestation> {
     let gossip_sigs: Vec<(SignatureKey, _)> = store.iter_gossip_signatures().collect();
     if gossip_sigs.is_empty() {
-        return;
+        return Vec::new();
     }
 
+    let mut new_aggregates: Vec<SignedAggregatedAttestation> = Vec::new();
+
     let head_state = store.head_state();
     let validators = &head_state.validators;
 
@@ -183,6 +193,12 @@ fn aggregate_committee_signatures(store: &mut Store) {
 
         let participants = aggregation_bits_from_validator_indices(&ids);
         let proof = AggregatedSignatureProof::new(participants, proof_data);
+
+        new_aggregates.push(SignedAggregatedAttestation {
+            data: data.clone(),
+            proof: proof.clone(),
+        });
+
         let payload = StoredAggregatedPayload { slot, proof };
 
         // Store in new aggregated payloads for each covered validator
@@ -199,14 +215,18 @@ fn aggregate_committee_signatures(store: &mut Store) {
 
     // Delete aggregated entries from gossip_signatures
     store.delete_gossip_signatures(&keys_to_delete);
+
+    new_aggregates
 }
 
 /// Validate incoming attestation before processing.
 ///
 /// Ensures the vote respects the basic laws of time and topology:
 ///     1. The blocks voted for must exist in our store.
 ///     2. A vote cannot span backwards in time (source > target).
-///     3. A vote cannot be for a future slot.
+///     3. The head must be at least as recent as source and target.
+///     4. Checkpoint slots must match the actual block slots.
+///     5. A vote cannot be for a future slot.
 fn validate_attestation_data(store: &Store, data: &AttestationData) -> Result<(), StoreError> {
     let _timing = metrics::time_attestation_validation();
 
@@ -218,14 +238,20 @@ fn validate_attestation_data(store: &Store, data: &AttestationData) -> Result<()
         .get_block_header(&data.target.root)
         .ok_or(StoreError::UnknownTargetBlock(data.target.root))?;
 
-    let _ = store
+    let head_header = store
         .get_block_header(&data.head.root)
         .ok_or(StoreError::UnknownHeadBlock(data.head.root))?;
 
-    // Topology Check - Source must be older than Target.
+    // Topology Check - Source must be older than Target, and Head must be at least as recent.
     if data.source.slot > data.target.slot {
         return Err(StoreError::SourceExceedsTarget);
     }
+    if data.head.slot < data.target.slot {
+        return Err(StoreError::HeadOlderThanTarget {
+            head_slot: data.head.slot,
+            target_slot: data.target.slot,
+        });
+    }
 
     // Consistency Check - Validate checkpoint slots match block slots.
     if source_header.slot != data.source.slot {
@@ -240,6 +266,12 @@ fn validate_attestation_data(store: &Store, data: &AttestationData) -> Result<()
             block_slot: target_header.slot,
         });
     }
+    if head_header.slot != data.head.slot {
+        return Err(StoreError::HeadSlotMismatch {
+            checkpoint_slot: data.head.slot,
+            block_slot: head_header.slot,
+        });
+    }
 
     // Time Check - Validate attestation is not too far in the future.
     // We allow a small margin for clock disparity (1 slot), but no further.
@@ -260,7 +292,14 @@ fn validate_attestation_data(store: &Store, data: &AttestationData) -> Result<()
 /// 800ms interval. Slot and interval-within-slot are derived as:
 ///   slot     = store.time() / INTERVALS_PER_SLOT
 ///   interval = store.time() % INTERVALS_PER_SLOT
-pub fn on_tick(store: &mut Store, timestamp_ms: u64, has_proposal: bool, is_aggregator: bool) {
+pub fn on_tick(
+    store: &mut Store,
+    timestamp_ms: u64,
+    has_proposal: bool,
+    is_aggregator: bool,
+) -> Vec<SignedAggregatedAttestation> {
+    let mut new_aggregates: Vec<SignedAggregatedAttestation> = Vec::new();
+
     // Convert UNIX timestamp (ms) to interval count since genesis
     let genesis_time_ms = store.config().genesis_time * 1000;
     let time_delta_ms = timestamp_ms.saturating_sub(genesis_time_ms);
@@ -298,7 +337,7 @@ pub fn on_tick(store: &mut Store, timestamp_ms: u64, has_proposal: bool, is_aggr
             2 => {
                 // Aggregation interval
                 if is_aggregator {
-                    aggregate_committee_signatures(store);
+                    new_aggregates.extend(aggregate_committee_signatures(store));
                 }
             }
             3 => {
@@ -312,6 +351,8 @@ pub fn on_tick(store: &mut Store, timestamp_ms: u64, has_proposal: bool, is_aggr
             _ => unreachable!("slots only have 5 intervals"),
         }
     }
+
+    new_aggregates
 }
 
 /// Process a gossiped attestation.
@@ -798,6 +839,9 @@ pub enum StoreError {
     #[error("Source checkpoint slot exceeds target")]
     SourceExceedsTarget,
 
+    #[error("Head checkpoint slot {head_slot} is older than target slot {target_slot}")]
+    HeadOlderThanTarget { head_slot: u64, target_slot: u64 },
+
     #[error("Source checkpoint slot {checkpoint_slot} does not match block slot {block_slot}")]
     SourceSlotMismatch {
         checkpoint_slot: u64,
@@ -810,6 +854,12 @@ pub enum StoreError {
         block_slot: u64,
     },
 
+    #[error("Head checkpoint slot {checkpoint_slot} does not match block slot {block_slot}")]
+    HeadSlotMismatch {
+        checkpoint_slot: u64,
+        block_slot: u64,
+    },
+
     #[error(
         "Attestation slot {attestation_slot} is too far in future (current slot: {current_slot})"
     )]

diff --git a/crates/blockchain/tests/signature_types.rs b/crates/blockchain/tests/signature_types.rs
@@ -7,41 +7,12 @@ use ethlambda_types::block::{
     AttestationSignatures, Block as EthBlock, BlockBody as EthBlockBody, BlockSignatures,
     BlockWithAttestation, SignedBlockWithAttestation,
 };
-use ethlambda_types::primitives::{
-    BitList, H256, VariableList,
-    ssz::{Decode as SszDecode, Encode as SszEncode},
-};
+use ethlambda_types::primitives::{BitList, H256, VariableList};
 use ethlambda_types::state::{Checkpoint as EthCheckpoint, State, ValidatorPubkeyBytes};
 use serde::Deserialize;
-use ssz_types::FixedVector;
-use ssz_types::typenum::{U28, U32};
 use std::collections::HashMap;
 use std::path::Path;
 
-// ============================================================================
-// SSZ Types matching leansig's GeneralizedXMSSSignature structure
-// ============================================================================
-
-/// A single hash digest (8 field elements = 32 bytes)
-pub type HashDigest = FixedVector<u8, U32>;
-
-/// Randomness (7 field elements = 28 bytes)
-pub type Rho = FixedVector<u8, U28>;
-
-/// SSZ-compatible HashTreeOpening matching leansig's structure
-#[derive(Clone, SszEncode, SszDecode)]
-pub struct SszHashTreeOpening {
-    pub co_path: Vec<HashDigest>,
-}
-
-/// SSZ-compatible XMSS Signature matching leansig's GeneralizedXMSSSignature
-#[derive(Clone, SszEncode, SszDecode)]
-pub struct SszXmssSignature {
-    pub path: SszHashTreeOpening,
-    pub rho: Rho,
-    pub hashes: Vec<HashDigest>,
-}
-
 /// Root struct for verify signatures test vectors
 #[derive(Debug, Clone, Deserialize)]
 pub struct VerifySignaturesTestVector {
@@ -217,7 +188,7 @@ impl From<TestSignedBlockWithAttestation> for SignedBlockWithAttestation {
             proposer_attestation: value.message.proposer_attestation.into(),
         };
 
-        let proposer_signature = value.signature.proposer_signature.to_xmss_signature();
+        let proposer_signature = value.signature.proposer_signature;
 
         // Convert attestation signatures to AggregatedSignatureProof.
         // Each proof contains the participants bitfield from the test data.
@@ -378,110 +349,12 @@ impl From<ProposerAttestation> for EthAttestation {
 #[derive(Debug, Clone, Deserialize)]
 #[allow(dead_code)]
 pub struct TestSignatureBundle {
-    #[serde(rename = "proposerSignature")]
-    pub proposer_signature: ProposerSignature,
+    #[serde(rename = "proposerSignature", deserialize_with = "deser_xmss_hex")]
+    pub proposer_signature: XmssSignature,
     #[serde(rename = "attestationSignatures")]
     pub attestation_signatures: Container<AttestationSignature>,
 }
 
-/// XMSS signature structure as it appears in JSON
-#[derive(Debug, Clone, Deserialize)]
-pub struct ProposerSignature {
-    pub path: SignaturePath,
-    pub rho: RhoData,
-    pub hashes: HashesData,
-}
-
-impl ProposerSignature {
-    /// Convert to XmssSignature (FixedVector of bytes).
-    ///
-    /// Constructs an SSZ-encoded signature matching leansig's GeneralizedXMSSSignature format.
-    pub fn to_xmss_signature(&self) -> XmssSignature {
-        // Build SSZ types from JSON data
-        let ssz_sig = self.to_ssz_signature();
-
-        // Encode to SSZ bytes
-        let bytes = ssz_sig.as_ssz_bytes();
-
-        // Pad to exactly SignatureSize bytes (3112)
-        let sig_size = 3112;
-        let mut padded = bytes.clone();
-        padded.resize(sig_size, 0);
-
-        XmssSignature::new(padded).expect("signature size mismatch")
-    }
-
-    /// Convert to SSZ signature type
-    fn to_ssz_signature(&self) -> SszXmssSignature {
-        // Convert path siblings to HashDigest (Vec<u8> of 32 bytes each)
-        let co_path: Vec<HashDigest> = self
-            .path
-            .siblings
-            .data
-            .iter()
-            .map(|sibling| {
-                let bytes: Vec<u8> = sibling
-                    .data
-                    .iter()
-                    .flat_map(|&val| val.to_le_bytes())
-                    .collect();
-                HashDigest::new(bytes).expect("Invalid sibling length")
-            })
-            .collect();
-
-        // Convert rho (7 field elements = 28 bytes)
-        let rho_bytes: Vec<u8> = self
-            .rho
-            .data
-            .iter()
-            .flat_map(|&val| val.to_le_bytes())
-            .collect();
-        let rho = Rho::new(rho_bytes).expect("Invalid rho length");
-
-        // Convert hashes to HashDigest
-        let hashes: Vec<HashDigest> = self
-            .hashes
-            .data
-            .iter()
-            .map(|hash| {
-                let bytes: Vec<u8> = hash
-                    .data
-                    .iter()
-                    .flat_map(|&val| val.to_le_bytes())
-                    .collect();
-                HashDigest::new(bytes).expect("Invalid hash length")
-            })
-            .collect();
-
-        SszXmssSignature {
-            path: SszHashTreeOpening { co_path },
-            rho,
-            hashes,
-        }
-    }
-}
-
-#[derive(Debug, Clone, Deserialize)]
-pub struct SignaturePath {
-    pub siblings: Container<HashElement>,
-}
-
-#[derive(Debug, Clone, Deserialize)]
-#[allow(dead_code)]
-pub struct HashElement {
-    pub data: [u32; 8],
-}
-
-#[derive(Debug, Clone, Deserialize)]
-pub struct RhoData {
-    pub data: [u32; 7],
-}
-
-#[derive(Debug, Clone, Deserialize)]
-pub struct HashesData {
-    pub data: Vec<HashElement>,
-}
-
 /// Attestation signature from a validator
 /// Note: proofData is for future SNARK aggregation, currently just placeholder
 #[derive(Debug, Clone, Deserialize)]
@@ -526,3 +399,15 @@ where
         .map_err(|_| D::Error::custom("ValidatorPubkey length != 52"))?;
     Ok(pubkey)
 }
+
+pub fn deser_xmss_hex<'de, D>(d: D) -> Result<XmssSignature, D::Error>
+where
+    D: serde::Deserializer<'de>,
+{
+    use serde::de::Error;
+
+    let value = String::deserialize(d)?;
+    let bytes = hex::decode(value.strip_prefix("0x").unwrap_or(&value))
+        .map_err(|_| D::Error::custom("XmssSignature value is not valid hex"))?;
+    XmssSignature::new(bytes).map_err(|_| D::Error::custom("XmssSignature length != 3112"))
+}
diff --git a/crates/net/p2p/src/lib.rs b/crates/net/p2p/src/lib.rs
@@ -85,9 +85,7 @@ pub async fn start_p2p(
         // Taken from ream
         .max_transmit_size(MAX_COMPRESSED_PAYLOAD_SIZE)
         .max_messages_per_rpc(Some(500))
-        .validate_messages()
         .allow_self_origin(true)
-        .flood_publish(false)
         .idontwant_message_size_threshold(1000)
         .build()
         .expect("invalid gossipsub config");
@@ -155,7 +153,7 @@ pub async fn start_p2p(
         .listen_on(addr)
         .expect("failed to bind gossipsub listening address");
 
-    let network = "devnet3";
+    let network = "devnet0";
 
     // Subscribe to block topic (all nodes)
     let block_topic_str = format!("/leanconsensus/{network}/{BLOCK_TOPIC_KIND}/ssz_snappy");