Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update EIP-7702: add "hash" to tuple, to allow single-signature for first eip-7702 tx initialization. #9032

Open
wants to merge 4 commits into
base: master
Choose a base branch
from
Open

Update EIP-7702: add "hash" to tuple, to allow single-signature for first eip-7702 tx initialization. #9032

wants to merge 4 commits into from
+12 −4

Conversation

drortirosh
Copy link
Contributor

Add an optional "hash" field to the auth tuple, to support single signature when submitted through a wrapper protocol (such as ERC-4337's UserOperation)

@drortirosh
Update eip-7702.md
ce4a970 
Add an optional "hash" field to the auth tuple, to support single signature when submitted through a wrapper protocol (such as ERC-4337's UserOperation)
@github-actions github-actions bot added c-update Modifies an existing proposal s-review This EIP is in Review t-core labels Nov 15, 2024
@eth-bot
Copy link
Collaborator

eth-bot commented Nov 15, 2024
edited
Loading

File EIPS/eip-7702.md

Requires 1 more reviewers from @adietrichs, @lightclient, @SamWilsn, @vbuterin

@eth-bot eth-bot added the a-review Waiting on author to review label Nov 15, 2024
@eth-bot eth-bot changed the title Update eip-7702.md Update EIP-7702: Update eip-7702.md Nov 15, 2024
@github-actions github-actions bot added the w-ci Waiting on CI to pass label Nov 15, 2024
lightclient
lightclient reviewed Nov 16, 2024
View reviewed changes
Copy link
Member

@lightclient lightclient left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't really understand this change. How do you observe the hash from within the execution of the transaction?

@drortirosh
Update eip-7702.md
d22bdc5 
update encoding of hash for signature validation
@drortirosh
Copy link
Contributor Author

I don't really understand this change. How do you observe the hash from within the execution of the transaction?

During ERC-4337 validation, the account's method is called with the signature
validateUserOp(UserOperation userop, bytes32 userOpHash, ...)
The hash is a keccak over the userop packed structure (excluding the signature field)
The userop.signature field can be used to pass authentication info in addition to the actual signature.
For EIP-7702 signature, it should include the nonce and chainId.
Thus the validation function looks something like:

function validateUserOp(UserOperation userop, bytes32 userOpHash) { 
   (bytes32 nonce, bytes32 chainid, bytes32 r, bytes32 s, uint8 v) = abi.decode(userop.signature, (bytes32,bytes32,bytes32,bytes32,uint8));
   bytes32 hash = keccak256(eip7702_rlp_encode(nonce, address(this), chainid, userOpHash));
   if ( address(this) == ecrecover(hash, v,r,s) ) return 0;
   return SIG_FAILED
}

This way we achieve the UX goal: a single signature by the end user for this transaction is used to validate both the eip-7702 tuple, and also outer transaction (erc-4337) for gas sponsorhip.

@spencer-tb spencer-tb mentioned this pull request Nov 20, 2024
Open
@drortirosh
Update eip-7702.md
72213fb 
added initcode use-case for using the hash
@github-actions GitHub Actions
Copy link

The commit 72213fb (as a parent of 8f3465a) contains errors.
Please inspect the Run Summary for details.

@drortirosh
Copy link
Contributor Author

Another use-case for hash: applying initcode to initialize a proxy:
We want to deploy a delegate, and then run some "initcode" to initialize it, without letting a frontrunner separate the two, and perfrom rogue initialization.
The normal flow for that would be a 2nd signature just for this initcode flow.
But using the hash in tuple, we can re-use the same eip-7702 signature to apply the code - so a user signs only once.
Now even if a front-runner ran the eip-7702 tuple in a separate transaction, it can't initialize it for itself, and our transaction will succeed to initialize our delegate (and pay slightly less, since the delegate was pre-installed by the front-runner..)

_fallback() {
  if (_implementation() != address(0) {
    _delegate(_implementation());
    return;
  }
  //this is the first call, so calldata contains implementation, target calldata and everything to reuse eip7702 signature)
  (address impl, bytes memory data, bytes32 nonce, bytes32 chainid, bytes32 r, bytes32 s, uint8 v) = abi.decode(msg.data, 
  (address, bytes, bytes32,bytes32,bytes32,bytes32,uint8));
  bytes32 datahash = keccak256(abi.encodePacked(impl,data);
   bytes32 hash = keccak256(eip7702_rlp_encode(nonce, address(this), chainid, datahash));
   require(address(this) == ecrecover(hash, v,r,s) );
   _setImplementation(impl);
   _deletate(data);
}

@github-actions github-actions bot removed the w-ci Waiting on CI to pass label Nov 20, 2024
@drortirosh drortirosh changed the title Update EIP-7702: Update eip-7702.md Update EIP-7702: add "hash" to tuple, to allow single-signature for first eip-7702 tx initialization. Nov 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lightclient lightclient lightclient left review comments

@eth-bot eth-bot Awaiting requested review from eth-bot eth-bot is a code owner

At least 0 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
a-review Waiting on author to review c-update Modifies an existing proposal s-review This EIP is in Review t-core
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@drortirosh @eth-bot @lightclient