Add ProvenBlock::validate() and use it in read_from()

[sergerad]

Based on comment:

Validating a signature should be relatively cheap, but I'm assuming this will happen within BlockHeader itself (since the signature will be in the block header).

Validating the rest would be relatively expensive:

Verifying the ZKP itself will probably be 10 - 20 ms.
We'll also need to compute the output note tree root, transaction commitment, account update commitment, and nullifier commitment. Depending on the number of transactions and their complexity, this could also be pretty significant (probably also on the order of 10 - 20 ms - though, would be good to test this at some point).
Not in this PR, but we should probably add ProvenBlock::validate() method to make sure the structure is consistent. Let's create an issue for this (unless we have one already).

[PhilippGackstatter]

Adding the comment from #2095 (comment) here:

• Verifying the ZKP itself will be relatively expensive, so it should be done in a dedicated validate method. This part can only be done after we have actual BlockProofs.
• We can also validate internal consistency on deserialization. I think we only have enough data to validate that:
  • the block note tree commitment in the block header matches BlockBody::compute_block_note_tree.
  • the commitment over the OrderedTransactionHeaders in BlockBody matches BlockHeader::tx_commitment.

For the nullifiers or accounts, we are missing the witnesses to reconstruct the PartialAccountTree or PartialNullifierTree. So, without adding this data, I think the only way to validate them is through the ZKP.

The second part can be done already and this is what this issue is about.

Context: #2012 (comment)