Skip to content

EIP-7702: first draft of spec design document #193

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

EIP-7702: first draft of spec design document #193

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
3beb78e
feat: first draft of EIP-7702 spec design document
OlivierBBB Jun 18, 2025
73542e8
ras
OlivierBBB Jun 18, 2025
7849ccb
ras: reorganizing
OlivierBBB Jun 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
149 changes: 149 additions & 0 deletions _notes/EIP-7702/HUB changes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,149 @@
# `HUB` changes

## Columns

For the account perspective:
- new `TRANSACTION_DELEGATION_PHASE` / `TX_DLGT` (on the same level as `TX_WARM`, `TX_SKIP`, `TX_INIT`, `TX_EXEC`, `TX_FINL` transaction phases)
- new `IS_DELEGATED` / `IS_DELEGATED_NEW` columns
- new `DELEGATION_ADDRESS_HI` / `DELEGATION_ADDRESS_LO` columns
- new `DELEGATION_ADDRESS_NEW_HI` / `DELEGATION_ADDRESS_NEW_LO` columns
- new `DELEGATION_CODE_HASH_HI` / `DELEGATION_CODE_HASH_LO` columns
- new `DELEGATION_CODE_HASH_NEW_HI` / `DELEGATION_CODE_HASH_NEW_LO` columns
- constrain `IS_DELEGATED` to remain constant unless `TX_DLGT ≡ 1`
- every RLP_TXN row of `ACCOUNT_DELEGATION_DATA` type gives rise to exactly one `TX_DLGT` row
- every row does the expected delegation and sets `IS_DELEGATED_NEW` to `deleg/IS_DE_DELEGATION`
- every row does `acc/NONCE_NEW = 1 + acc/NONCE`
- even the "sender self delegation" rows
- every row triggers the lookup to `TRM` and to `RLP_ADDR`
- TRM: for obvious reasons (initial prc recognition)
- RLP_ADDR: in order that we may use this module to compute the `CODE_HASH_NEW`

Question:
- do we modify the code size ? or do we require new `DELEGATION_CODE_SIZE` / `DELEGATION_CODE_SIZE_NEW` columns
- how do we modify the recognition of EOA's for CALL's ?



- we add a new lookup `RLP_TXN -> HUB` lookup for account delegation transaction phase
- source selector : `hub/TX_DLGT`
- target filter : none required


## `TX_INIT` and `TX_SKIP` changes

We have to use both `txn/NONCE` and `txn/NUMBER_OF_SENDER_SELF_DELEGATION` to compare it to `acc/NONCE` before raising it.

## Opcode changes

The following opcodes require an account row:

| OpCode | Affected | Notes |
|------------------------------------------|:---------:|-----------------------------------------------------------------|
| BALANCE | NO | |
|------------------------------------------|-----------|-----------------------------------------------------------------|
| CODESIZE, CODECOPY | NO | The only codes that get executed are those of smart contracts |
| | | Even if these opcodes are being called after calling a dele- |
| | | gated EOA, the underlying code belongs to a SMC and gets |
| | | CODECOPY-ed as usual |
|------------------------------------------|-----------|-----------------------------------------------------------------|
| EXTCODESIZE | minimally | There are some questions |
| EXTCODEHASH | minimally | |
| EXTCODECOPY | YES | The simplest solution is likely to have two memory operations |
| | | |
| | | 1. write to a fresh new context with ID = HUB_STAMP the code |
| | | . which is simply 0x ef 00 00 <delegated_address> which occu- |
| | | . pies 23 = 3 + 20 bytes |
| | | |
| | | 2. to simplify things we do this via an `MSTORE` like operation |
| | | . with hi part: `0xef0000 << (4 * 8) + DELEGATION_ADDRESS_HI` |
| | | . and lo part: `DELEGATION_ADDRESS_LO` |
| | | . and TGT_OFFSET = 0 |
| | | |
| | | 3. we do a `ramToRam` operation from the context with equal |
| | | . SRC_ID ≡ HUB_STAMP |
| | | . TGT_ID ≡ CONTEXT_NUMBER |
| | | . SRC_OFFSET = <magical_offset> |
| | | |
| | | |
|------------------------------------------|-----------|-----------------------------------------------------------------|
| CALL, CALLCODE, DELEGATECALL, STATICCALL | YES | Probably as soon as we are past the MXPX test we must introduce |
| | | an extra account row for the delegation. The convention ought |
| | | to be |
| | | . - if no delegation just repeat the modified recipient |
| | | . - if delegation print the delegated account |
| | | |
| | | This will also have consequences for the STP pricing |
| | | Since the STP pricing establishes, IIRC, |
| | | |
| | | . misc/STP_OOGX |
| | | |
| | | We should likely provide it with an extra bit which is logical- |
| | | ly equivalent to |
| | | |
| | | . [recipient is delegated] ∧ [delegatee is warm] |
| | | |
| | | and we then add the surcharge for delegation warming automati- |
| | | cally into the STP pricing and OOGX flag. |
| | | |
| | | Undoing will also require more work as we have to undo both the |
| | | recipient (that is, μ_s[0].trim()) and delegatee warming |
| | | |
| | | We will also have to modify how we set the scenario, in parti- |
| | | cular how we recognize EOA's and SMC's. |
| | | |
| | | NOTE. Since account delegation to a precompile does not lead |
| | | to precompile execution when called and a PRC itself can't |
| | | delegate since it can't sign a transaction there may be no |
| | | changes to scen/PRC |
| | | |
|------------------------------------------|-----------|-----------------------------------------------------------------|
| CREATE, CREATE2 | NO | |
| SELFDESTRUCT | NO | not entirely sure at this point, but looks like it's unaffected |
|------------------------------------------|-----------|-----------------------------------------------------------------|

To understand the value `magical_offset :≡ 9` given to `SRC_OFFSET`,
consider the following diagram showing how we want to populate the dummy context:

```
<----------------- 0th limb -----------------> <----------------- 1st limb ----------------->

<dlgt addr hi> <--------------- dlgt addr lo --------------->

↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓

00 00 00 .. 00 ef 00 00 xx xx xx xx yy yy yy yy yy yy yy yy yy .. yy yy 00 00 ..

↑ ↑ ↑ .. ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ .. ↑ ↑

0 1 2 .. 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 .. 30 31 32 33 .. // offset in CN ≡ HUB_STAMP

<magical_offset>
```

## `CODE_HASH` computation for account delegations

We will need to send stuff to some hasher. It's easiest to do this for every `TX_DLGT` row. There are various options for where to do this.
One _could_ insert MISC rows between every account row. I don't like this.
One _could_ use the lookup to RLP_ADDR which we will also trigger, send the DELEGATION_ADDRESS, too, and also request the hashing of the 'code', that is the
following 23 bytes

`0x ef 00 00 <delegated_address>`

## Account consistency changes

I have some questions I need confirmation on
- if an EOA account self destructs (via delegate code execution) does it maintain its delegation status ? I would imagine: YES but need to make sure
- are there any interactions with deployment numbers ? likely no
- the consistency constraints are likely obvious

## new `HUB -> RLP_TXN` lookup

|-----------------------------|---------------------------------|
| source column | target column |
|-----------------------------|---------------------------------|
| 1 | rlp_txn.ACCOUNT_DELEGATION_DATA |
| hub/USER_TRANSACTION_NUMBER | rlp_txn.USER_TRANSACTION_NUMBER |
| hub.acc/DELEGATION_INDEX | rlp_txn.deleg/DELEGATION_INDEX | // is there a better way than introducing such a column ?
|-----------------------------|---------------------------------|

6 changes: 6 additions & 0 deletions _notes/EIP-7702/RLP_ADDR changes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
# `RLP_ADDR`

Likely a change: we may ask this module, which already hashes stuff, to hash for us the "code" of a delegated account, i.e. the 23 byte string

`0x ef 00 00 <delegated_address>`

71 changes: 71 additions & 0 deletions _notes/EIP-7702/RLP_TXN changes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,71 @@
# `RLP_TXN` changes

## Columns

- new transaction type `TYPE_4` flag
- new `IS_ACCOUNT_DELEGATION` phase
- new `ACCOUNT_DELEGATION_DATA` perspective, with columns named `deleg/XXX`
- have such a delegation row either at the start or end of every account delegation query in the `RLP_TXN`
- its fields subsume in one place all relevant data for a particular account delegation, in particular
- `deleg/DELEGATION_INDEX` (wrt to the transaction: delegation order matters and must be tracked)
- `deleg/SIGNER_ADDRESS`
- `deleg/SIGNER_NONCE`
- `deleg/DELEGATION_ADDRESS`
- potentially the signature fields for easier extraction
- some computed bits:
- `deleg/IS_PROPER_DELEGATION` which is logically equivalent to `!DELEGATION_ADDRESS.equals(Address.ZERO)`
- `deleg/SENDER_SELF_DELEGATION_BIT` which is logically equivalent to `DELEGATION_ADDRESS.equals(txn/SENDER_ADDRESS)`
- an accumulator columnm `deleg/SENDER_SELF_DELEGATION_ACC` which accumulates `deleg/SENDER_SELF_DELEGATION_BIT`
- at the end of all account delegations of a `TYPE_4` transaction set a field `txn/NUMBER_OF_SENDER_SELF_DELEGATION` as the final value of `deleg/SENDER_SELF_DELEGATION_ACC`

## Structure

Typically have each and every account delegation be dealt with in a constant size block à la

```
ACCOUNT_DELEGATION_BLOCK ≡ {
deleg,
compt,
compt,
compt,
txn, // or not ...
}
```

NOTE. We could also not include the `txn` row.
Their purpose is to have easy access to `txn/SENDER_ADDRESS` at all times.
We may simply have linking constraints from one account delegation block to another.
Likely the best solution is to have this happen top -> down as any phase starts with a TXN row.

NOTE. The above requires the `TXN_DATA -> RLP_TXN` lookup to also provide `txn/SENDER_ADDRESS`.

## `RLP_TXN -> HUB` lookup

- we add a new lookup `RLP_TXN -> HUB` lookup for account delegation transaction phase
- source selector : `rlp_txn.deleg/ACCOUNT_DELEGATION_DATA`
- target filter : none required

|-------------------------------------|-----------------------------------|
| source column | target column |
|-------------------------------------|-----------------------------------|
| 1 | hub.TX_DLGT |
| rlp_txn.USER_TRANSACTION_NUMBER | hub.USER_TRANSACTION_NUMBER |
| rlp_txn.deleg/DELEGATION_INDEX | hub.acc/DELEGATION_INDEX | // is there a better way than introducing such a column ?
|-------------------------------------|-----------------------------------|
| rlp_txn.deleg/SIGNER_ADDRESS_HI | hub.acc/ADDRESS_HI |
| rlp_txn.deleg/SIGNER_ADDRESS_LO | hub.acc/ADDRESS_LO |
| rlp_txn.corrected_nonce | hub.acc/NONCE |
|-------------------------------------|-----------------------------------|
| rlp_txn.deleg/DELEGATION_ADDRESS_HI | hub.acc/DELEGATION_ADDRESS_NEW_HI |
| rlp_txn.deleg/DELEGATION_ADDRESS_LO | hub.acc/DELEGATION_ADDRESS_NEW_LO |
|-------------------------------------|-----------------------------------|
| rlp_txn.deleg/IS_PROPER_DELEGATION | hub.acc/IS_DELEGATED_NEW |
|-------------------------------------|-----------------------------------|

NOTE. We have used the following shorthand

`corrected_nonce ≡ deleg/SIGNER_NONCE - deleg/SENDER_SELF_DELEGATION_BIT`

this deals with the "sender nonce lag" due to the nonce update of the sender taking place _before_ any account delegation

4 changes: 4 additions & 0 deletions _notes/EIP-7702/ROM changes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
# `ROM` changes

In the setup above: no changes : )

7 changes: 7 additions & 0 deletions _notes/EIP-7702/STP changes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
# `STP` changes

- modification for the CALL instruction
- we now need two IS_WARM fields to correctly price things
- therefore potentially one more column
- and slightly modified total cost computation