EIP-7002: Validator Exit contract helper and adding exits to created blocks #6883
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
lucassaldanha
force-pushed
the
eip-7002-with-precompile
branch
2 times, most recently
from
ced776d
to
53758f0
Compare
lucassaldanha
changed the title
…tion payload for engineV4 methods Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
…ocks Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
lucassaldanha
force-pushed
the
eip-7002-with-precompile
branch
from
24d400a
to
7e80b83
Compare
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Comment on lines
+113
to
+115
| if (!validateExits(block, body.getExits().get())) { | ||
| return false; | ||
| } |
There was a problem hiding this comment.
Nit:
Suggested change
| if (!validateExits(block, body.getExits().get())) { | |
| return false; | |
| } | |
| return validateExits(block, body.getExits().get()); |
Comment on lines
33
to
38
| /** | ||
| * Helper for interacting with the Validator Exit Contract (https://eips.ethereum.org/EIPS/eip-7002) | ||
| * | ||
| * <p>Please note that this is not the spec-way of interacting with the Validator Exit contract. See | ||
| * https://github.com/hyperledger/besu/issues/6918 for more information. | ||
| */ |
There was a problem hiding this comment.
Suggested change
| /** | |
| * Helper for interacting with the Validator Exit Contract (https://eips.ethereum.org/EIPS/eip-7002) | |
| * | |
| * <p>Please note that this is not the spec-way of interacting with the Validator Exit contract. See | |
| * https://github.com/hyperledger/besu/issues/6918 for more information. | |
| */ | |
| /** | |
| * Helper for interacting with the Validator Exit Contract (<a | |
| * href="https://eips.ethereum.org/EIPS/eip-7002">eip-7002</a>) | |
| * | |
| * <p>TODO: Please note that this is not the spec-way of interacting with the Validator Exit | |
| * contract. See <a href="https://github.com/hyperledger/besu/issues/6918">#6918</a> for more | |
| * information. | |
| */ |
| } | ||
|
|
||
| final List<ValidatorExit> exitsInBlock = block.getBody().getExits().get(); | ||
| // TODO Do we need to allow for customization? (e.g. if the value changes in the next fork) |
There was a problem hiding this comment.
Suggestion: We could rename it to PrageExitsValidator, and make it a standalone class. If the next fork needs to change this we can easily abstract a class override what we need.
There was a problem hiding this comment.
nit: Also, giving the validations, the semantics here are more like a RequiredExitsValidator than an AllowedExistsValidator.
| @@ -197,6 +197,12 @@ public BlockProcessingResult processBlock( | |||
| } | |||
| } | |||
|
|
|||
| final ValidatorExitsValidator exitsValidator = protocolSpec.getExitsValidator(); | |||
| if (exitsValidator instanceof ValidatorExitsValidator.AllowedExits) { | |||
There was a problem hiding this comment.
I think that the verification to perform the popping should belong to the validator/processor itself and not the blockprocessor. Maybe an extra method allowExists()?
Comment on lines
87
to
90
| if (block.getHeader().getExitsRoot().isEmpty()) { | ||
| LOG.warn("Block {} must contain exits_root", blockHash); | ||
| return false; | ||
| } |
There was a problem hiding this comment.
This piece should be probably in a headervalidationrules instead of here
Comment on lines
105
to
110
| final Hash expectedExitsRoot = BodyValidation.exitsRoot(exitsInBlock); | ||
| if (!expectedExitsRoot.equals(block.getHeader().getExitsRoot().get())) { | ||
| LOG.warn( | ||
| "Block {} exits_root does not match expected hash root for exits in block", blockHash); | ||
| return false; | ||
| } |
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
amsmota
pushed a commit
to Citi/besu
that referenced
this pull request
Apr 18, 2024
…blocks (hyperledger#6883) Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com> Signed-off-by: Antonio Mota <antonio.mota@citi.com>
macfarla
pushed a commit
to macfarla/besu
that referenced
this pull request
Apr 26, 2024
…blocks (hyperledger#6883) Signed-off-by: Lucas Saldanha <lucascrsaldanha@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Sorry for the big PR! I tried to keep it more concise but lots of the pieces kinda work together so it was hard to separate them! Hopefully, it isn't too bad to review as a bulk of the changes are adding a parameter to a constructor or something like that... ❤️
This is an experimental implementation of EIP-7002 logic for adding exits from the Validator Exit smart contract into blocks (and including them on the execution payload object of the Engine API).
Summary of changes
fixes #6881 and #6882
Open Questions/Future Improvements
Do we need extra validation onAbstractBlockProcessor(e.g. check that we do not have more exits than expected). I have a feeling we do not need to as we are running the system logic as part of processing, so any difference between the exits in the block we are validating would be caught by a different exits_root post our processing. But I might be wrong. The same question applies toMainnetBlockBodyValidator. validateBodyLight().ValidatorExitContractHelperbehind a protocol schedule setup in case the contract goes through some changes in future upgrades?Engine API changes
Most of the logic was already there, few pieces had to be added (e.g. constructor parameters but the core of the logic hasn't changed). The more important change is how GetPayloadV4 includes the exits in the execution payload.
Validator Exit Contract Helper
This is an initial implementation based on the work done by lightclient on the Validator Exit smart contract (https://github.com/lightclient/7002asm), and also using the bytecode defined in the EIP (https://eips.ethereum.org/EIPS/eip-7002#deployment).
Each exit uses 3 storage slots (each slot has 32 bytes). There is a bit of trickery to ensure they fit in exactly on 3 slots (some right/left padding depending on the field). The detailed diagram of the expected storage can be seen in this code.
UPDATE: contract manipulation is not the best way of implementing this. The smart contract actually has all the logic to handle the system call. All we need to do is implement the mechanism to perform "send a tx" from the system account. I believe we do not have this logic in Besu at the moment, the closest thing I can think of is how we use a fake transaction in the
TransactionSimulator, but we would need a way of ensuring that changes in contract storage are persisted. See #6918Including exits on blocks
The system call logic has been implemented in a way that manipulates the contract storage as if we were executing the call through the EVM (although no EVM is involved).
This seems to be the expected behaviour for system calls.The heart of this is howAbstractBlockCreatorusesValidatorExitContractHelper.popExitsFromQueue(..).