add eth_simulateV1
#484
add eth_simulateV1
#484
Conversation
|
Here's slides for multicall presentation: https://docs.google.com/presentation/d/1lEaqHTY3ud8pe6VAFwLkb-jdoHpTMBfuF1K9OKy-azs |
docs/multicall-notes.md
Outdated
| | input | no data | | ||
| | gasPrice | `0x0` | | ||
| | maxPriorityFeePerGas | `0x0` | | ||
| | maxFeePerGas | `0x0` | |
There was a problem hiding this comment.
These default values will crash, since baseFeePerGas is always 7 or higher. These default values will be rejected by blockchain spec, since tx is not willing to pay base fee. Note that the default block baseFeePerGas is calculated according to spec, so this will be 7 or higher always.
There was a problem hiding this comment.
Suggestion: change maxFeePerGas and gasPrice (in case of tx type 0/1) to baseFeePerGas of the block and keep maxPriorityFeePerGas 0.
There was a problem hiding this comment.
These default values will crash, since baseFeePerGas is always 7 or higher. These default values will be rejected by blockchain spec, since tx is not willing to pay base fee. Note that the default block
baseFeePerGasis calculated according to spec, so this will be 7 or higher always.
yeah, this will crash on validation mode. On non-validation mode, we will allow you to make transactions that have zero basefee (similar to eth_call)
docs/multicall-notes.md
Outdated
| | accessList | empty array | | ||
|
|
||
| ## Overriding default values | ||
| The default values of blocks and transactions can be overriden. For Transactions we allow overriding of variables `type`, `nonce`, `to`, `from`, `gas limit`, `value`, `input`, `gasPrice`, `maxPriorityFeePerGas`, `maxFeePerGas`, `accessList`, and for blocks we allow modifications of `number`, `time`, `gasLimit`, `feeRecipient`, `prevRandao` and `baseFeePerGas`: |
There was a problem hiding this comment.
Slight nit: for completeness, withdrawals should also be able to be overridden (to simulate withdrawals).
docs/multicall-notes.md
Outdated
| ETH logs are not part of the calculation for logs bloom filter. Also, similar to normal logs, if the transaction sends ETH but the execution reverts, no log gets issued. | ||
|
|
||
| ## Validation | ||
| The multicall has a feature to enable or disable validation with setting `Validation`, by default, the validation is off, and the multicall mimics `eth_call` with reduced number of checks. Validation enabled mode is intended to give as close as possible simulation of real EVM block creation, except there's no checks for transaction signatures and we also allow one to send a direct transaction from a contract. |
There was a problem hiding this comment.
I am not entirely sure what this would remove/add. If I turn this on, in what situation would this be useful, and what would change if I would have kept it off? 🤔
There was a problem hiding this comment.
For instance, if validation is set to off, are tx gas limits not checked? (So I can include a tx with gas limit higher than the block gas limit?).
There was a problem hiding this comment.
Never mind, it is in execute.yaml
validation:
title: Validation
description: |-
When true, the multicall does all validations that a normal EVM would do, except contract sender and signature checks. When false, multicall behaves like eth_call.
There was a problem hiding this comment.
This is bit ill defined (as discussed in todays call). Because Nethermind and Geth behave bit differently with eth_call and we have been trying to figure out the differences so we could document them. The intention that is that when validation is enabled, the clients would behave exactly the same, while not fixing the issue that with non-validation, the validation rules might differ a bit.
There was a problem hiding this comment.
Then I think this spec should explicitly state what should be not be validated if the validation is off. For instance, currently it only seems that you can override the sender (so you can create unsigned txs). But, it also seems that it is possible to set base fee to zero (so do not validate this as well). It should be clearly defined what should be validated and what not. (And this is non-trivial since there is a huge ruleset of what should be validated in transactions/blocks)
There was a problem hiding this comment.
For validation mode, I'm fine with base fee not being allowed to go below 7.
There was a problem hiding this comment.
I don't think it makes sense that much to validate base fee in validation mode if the user specifically sets the base fee to something. Otherwise we could remove all overrides for validation mode, as none of them can happen on mainnet.
There was a problem hiding this comment.
possibly also create multiple validation modes / flags if necessary?
Please no! In fact I want to argue that we should remove validation flag and default to relax-mode. My argument is that this is easy to add in later since we have designed the API param to be an object. It will be a backwards-compatible change. I'd personally like to hear from some people to say they need this first.
That said, we should still define exactly what is not validated in relax-mode. So I think that convo is important to have. And I will share here exactly what geth is validating:
For block validation, only these fields are validated:
- Only block number and timestamp are validated to be incremental.
As for tx validation, these are NOT validated:
- Signature is not validated
- Nonce too high, too low, out of bounds are not validated
- Sender is EoA is not validated
- If gas price fields are 0, then sender doesn't need to have enough balance for gas (only value)
- If blobGasFeeCap is 0, then blob gas requirement is skipped
There was a problem hiding this comment.
I'd like to add that these relaxations are all cause for a transaction not to go through. I.e. if I have a call that works in the relax-mode, sign it and submit it to a node, it will not be gossiped to the network at all.
I'd argue if there is any danger to a user it's from all of the flexibility we're providing through state and precompile overrides. E.g. they assume in the simulation to be in a certain condition by using overrides, and submit the transaction when that is not met. That tx will be mined and will revert (most probably).
There was a problem hiding this comment.
I'd personally like to hear from some people to say they need this first.
Our team would like it because it allows us to verify that the transaction is properly constructed and will execute against mainnet without error. In some cases we ship a set of transactions as a "bundle" to searchers, and they need to all execute properly in sequence (including things like balance checks), and in other cases we ship a single transaction to a signer and we want a high degree of confidence that it will execute on-chain just like it did during simulation.
Co-authored-by: Jochem Brouwer <jochembrouwer96@gmail.com>
Co-authored-by: Jochem Brouwer <jochembrouwer96@gmail.com>
…ution-apis into eth_multicallv1
docs/multicall-notes.md
Outdated
| An interesting note here is that an user can specify block numbers and times of some blocks, but not for others. When block numbers of times are left unspecified, the default values will be used. After the blocks have been constructed, and default values are calculated, the blocks are checked that their block numbers and times are still valid. | ||
|
|
||
| ## ETH transfer logs | ||
| When `traceTransfers` setting is enabled on `eth_multicallV1` The multical will return logs for ethereum transfers along with the normal logs sent by contracts. The ETH transfers are identical to ERC20 transfers, except the "sending contract" is address `0x0`. |
There was a problem hiding this comment.
I'd suggest using 0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE as the sending contract, since that's become a de facto approach for representing ETH as a token address within contracts.
Here's a simple sourcegraph search showing usage: https://sourcegraph.com/search?q=0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE&groupBy=repo
There was a problem hiding this comment.
I suspect if you were to do a similar search of 0x000... you would get even more results. "A lot of people use X" is quite different from "Most people use X".
If we ignore any past precedence, I feel like 0x000... makes it a tad more explicit that this is special, and not some precompile or something. For parameters, 0xEee... makes a bit of sense because 0 is the default value for a lot of stuff (e.g., null, missing, etc.) and thus often passed on accident, so using nonzero helps protect against a class of bugs. In the case of event sourcing, 0x000... isn't provided by user/developer so they cannot get it wrong.
That being said, I don't have a strong argument against 0xEeee..., only that I think 0x000... is marginally better and I suspect more widely used.
There was a problem hiding this comment.
I agree a search for the zero address would yield more results, but only because the zero address is used for a much wider range of cases, whereas 0xEee... seems to only be used to represent ETH. This is anecdotal and it's hard to know concretely, but in my experience 0xEee... is more common for representing ETH than the zero address.
Personally, if I didn't know about the special ETH logs, seeing 0xEee... would make the log's meaning more intuitive and apparent than seeing 0x000....
There was a problem hiding this comment.
I agree a search for the zero address would yield more results, but only because the zero address is used for a much wider range of cases
Sorry, I meant if you could somehow limit the search of 0x0000... to only places where it was being used as a representation of ETH I suspect it would be more/bigger. That being said, perhaps the searchability of 0xEeee... is a significant selling point.
Personally, if I didn't know about the special ETH logs, seeing
0xEee...would make the log's meaning more intuitive and apparent than seeing0x000....
For what it is worth, this feature is disabled by default and you need to set a flag to turn it on. I'm not sure that is a meaningful argument though.
There was a problem hiding this comment.
I agree a search for the zero address would yield more results, but only because the zero address is used for a much wider range of cases, whereas
0xEee...seems to only be used to represent ETH. This is anecdotal and it's hard to know concretely, but in my experience0xEee...is more common for representing ETH than the zero address.
I agree with @mds1 that 0xEee.. seems more appropriate for Eth transfer logs
There was a problem hiding this comment.
I believe the spec has since been updated to use 0xEee.....
There was a problem hiding this comment.
The notes still mentions 0x0 here: https://github.com/ethereum/execution-apis/pull/484/files#diff-1e4727bbfb75c5cc85054abbf972a1cd472e9e512a9d8bbc8152210a0062182bR116
Aside: It still feels "unclean" to me using a specific non-reserved address, but in researching this I was surprised to learn that EIP-1352 was never officially adopted.
There was a problem hiding this comment.
0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE is not correct if you're using EIP-1191, the correct chainId encoded address would be 0xeeeEEEeEEeeeEeEeEEEeEeeeeEEEEeEEeEeeeeeE
having it as 0x00... would be agnostic to chainId encoding.
Edit: this is a purely aesthetic choice, though I would find it helpful
There was a problem hiding this comment.
I and others have argued against EIP-1191 in the discussion for it: ethereum/EIPs#1121
My position is still largely the same. It is backward incompatible with EIP-55 checksumming, so I generally don't recommend apps checksum to 1191 until long after almost all tooling supports reading 1191 checksums.
There was a problem hiding this comment.
This endpoint sounds very useful. I believe this is very similar to eth_callMany that some clients support: erigontech/erigon#4471
imo it makes sense to introduce a standardized endpoint.
If I understood this currently, then the calls in the batch are treated as separate transactions.
I think multicall could potentially be confusing because "mutlicall" is already widely used as
Multicall allows multiple smart contract constant function calls to be grouped into a single call and the results aggregated into a single result.
|
You are correct, this allows you to run multiple calls against one or more blocks in sequence (all building up the same state). Maybe |
|
I'm mostly indifferent to the name, but On this topic, why is the method proposed as |
The lack of versioning in existing JSON-RPC methods has been a thorn in the side of people wanting to make changes to them since essentially the beginning of Ethereum. Rather than continue to cause our future selves suffering to maintain a naming convention, we felt it would be wise to break the cycle and introduce versioning. As for the naming convention, it follows the Engine API's naming convention (the communication channel between execution and consensus clients). |
these are great alternative suggestions, would lean towards Using versioning for this sgtm! |
I think |
… calculation when gasLimit is not defined)
docs/ethsimulatev1-notes.md
Outdated
| Our solution to this problem is to define block hash of a phantom block to be: | ||
|
|
||
| ``` | ||
| keccak(rlp([hash_of_previous_non_phantom_block, phantom_block_number])) |
There was a problem hiding this comment.
Are these numbers left-padded? I think adding this would be clear (there are a lot of EIPs where the spec says to either left pad them or not)
There was a problem hiding this comment.
I assumed that hash_of_previous_non_phantom_block is a 256-bit integer value (meaning 32 bytes of data), but perhaps I'm wrong here? If so, that would mean it is "left padded" I guess, though that seems like a weird way to think about these values to me. Either way, clarification would be an improvement so I agree that we should provide some clarity here.
There was a problem hiding this comment.
Ok, I actually assumed it was not left-padded, so this should definitely be clarified :)
docs/ethsimulatev1-notes.md
Outdated
| | sha3Uncles | Empty trie root | | ||
| | withdrawals | Empty array | | ||
| | uncles | Empty array | | ||
| | blobBaseFee | Calculated on what it should be according to EIP-4844 spec. Note: blobBaseFee is not adjusted in the phantom blocks. | |
There was a problem hiding this comment.
This is not a block property, we have excessBlobGas and blobGasUsed, but for this simulation I can understand why one would directly input the output of whatever calculates the blob gas fee (it is something that looks like an exponential with two inputs, and you dont want to "find" the right inputs I guess)
| | baseFeePerGas | Calculated on what it should be according to Ethereum's spec. Note: baseFeePerGas is not adjusted in the phantom blocks. | | ||
| | sha3Uncles | Empty trie root | | ||
| | withdrawals | Empty array | | ||
| | uncles | Empty array | |
There was a problem hiding this comment.
Nit: do we throw here on post-merge blocks if the uncles are non-empty? There can be no uncles post-merge and the uncle hash is therefore also stubbed to the empty trie hash.
| | uncles | Empty array | | ||
| | blobBaseFee | Calculated on what it should be according to EIP-4844 spec. Note: blobBaseFee is not adjusted in the phantom blocks. | | ||
| | number | Previous block number + 1 | | ||
| | logsBloom | Calculated normally. ETH logs are not part of the calculation | |
There was a problem hiding this comment.
What are ETH logs? For clarity it would be nice to link that these are explain further down 😄
| | logsBloom | Calculated normally. ETH logs are not part of the calculation | | ||
| | receiptsRoot | Calculated normally | | ||
| | transactionsRoot | Calculated normally | | ||
| | size | Calculated normally | |
There was a problem hiding this comment.
size is not part of the block header (so I also don't see why it is necessary here?)
docs/ethsimulatev1-notes.md
Outdated
| | nonce | Take the correct nonce for the account prior multicall and increment by one for each transaction by the account | | ||
| | to | `null` | | ||
| | from | `0x0000000000000000000000000000000000000000` | | ||
| | gas limit | (blockGasLimit - SumOfGasLimitOfTransactionsWithDefinedGasLimit) / NumberOfTransactionsWithoutKnownGasLimit | |
There was a problem hiding this comment.
Ok, this is smart! I had to play with this for a while to see if I could find an exception but obviously not, if you ensure the sum of all txs equals the block gas limit it works (ensure this is rounded down to really make sure there is no exception, so I would use // instead of / to property note this).
However there is an edge case: we can get a negative gas limit, and we can also get a gas limit which cannot cover the base gas costs of 21000 (or, if you include the calldata costs or the contract creation costs this is more). This edge case can lead to invalid blocks. (Since the txs are invalid)
The other case is the negative one, lets say we have 30M gas limit and we have 3 txs, one has gas limit 30M, the other has gas limit 30M as well (if we execute both they only use 100k gas), but then the 3rd one now has a negative gas limit of 30M which is obviously not possible.
There was a problem hiding this comment.
Ah right, I see we throw if this happens.
| | value | `0x0` | | ||
| | input | no data | | ||
| | gasPrice | `0x0` | | ||
| | maxPriorityFeePerGas | `0x0` | |
There was a problem hiding this comment.
Should we throw for the fields set if these are not available for the tx type? (The 4 types below here, so maxPriorityFeePerGas, maxFeePerGas, accessList, blobVersionedHashes)
There was a problem hiding this comment.
(they can be set and it is fine, but might be confusing for the end user)
| | maxPriorityFeePerGas | `0x0` | | ||
| | maxFeePerGas | `0x0` | | ||
| | accessList | empty array | | ||
| | blobVersionedHashes | empty array | |
There was a problem hiding this comment.
Blob txs cannot be simulated it seems per the current spec since it cannot be overridden.
| | blobVersionedHashes | empty array | | ||
|
|
||
| ## Overriding default values | ||
| The default values of blocks and transactions can be overriden. For Transactions we allow overriding of variables `type`, `nonce`, `to`, `from`, `gas limit`, `value`, `input`, `gasPrice`, `maxPriorityFeePerGas`, `maxFeePerGas`, `accessList`, and for blocks we allow modifications of `number`, `time`, `gasLimit`, `feeRecipient`, `prevRandao`, `baseFeePerGas` and `blobBaseFee`: |
There was a problem hiding this comment.
What if I have a specific use case that I want a block hash of a previous block be of some kind? Then I should be able to override hash as well.
What about withdrawals?
|
|
||
| ## Clients can set their own limits | ||
| Clients may introduce their own limits to prevent DOS attacks using the method. We have thought of three such standard limits | ||
| - How many blocks can be defined in `BlockStateCalls`. The suggested default for this is 256 blocks |
There was a problem hiding this comment.
I would also argue that there is a max number, because if one allows to create only one block, then one can still request block very high number and this would impose a lot of phantom block hashings.
…ons`, add more fields to block to return
…to zero by default
…zero basefee reasoning
This is a successor PR to #25743. This PR is based on a new iteration of the spec: ethereum/execution-apis#484. `eth_multicall` takes in a list of blocks, each optionally overriding fields like number, timestamp, etc. of a base block. Each block can include calls. At each block users can override the state. There are extra features, such as: - Include ether transfers as part of the logs - Overriding precompile codes with evm bytecode - Redirecting accounts to another address ## Breaking changes This PR includes the following breaking changes: - Block override fields of eth_call and debug_traceCall have had the following fields renamed - `coinbase` -> `feeRecipient` - `random` -> `prevRandao` - `baseFee` -> `baseFeePerGas` --------- Co-authored-by: Gary Rong <garyrong0905@gmail.com> Co-authored-by: Martin Holst Swende <martin@swende.se>
ref ethereum/execution-apis#484 paradigmxyz/reth#10829 Also added hook for `eofcreate` and moved all handling away from `_env` hooks to ensure correct ordering. We don't yet insert logs for selfdestructs, would need update on revm side to pass journaled state into the hook
add rationale for pre-computed calls
eth_simulateV1
This PR is a cleaned up version from #383. The #383 is based heavily on #312 from @s1na (
eth_batchCall). This spec encompasses some of the ideas presented by @MicahZoltu @OlegJakushkin, @LukaszRozmej, @KillariDev, @epheph and others.Summary
This introduces a new RPC method
eth_multicallV1allows users to make complex RPC calls to Ethereum nodes. Compared toeth_call,eth_multicallV1has following extra features:eth_callMotivation
The features of
eth_multicallV1allow many interesting simulation use cases such as:This blog post also explains motivation around eth_simulate: https://mirror.xyz/killaridev.eth/NXR9v4r8b4SWl-hbqJqRQyIAcE4GACobzMObREvL0fo and a PEEPanEIP episode: https://www.youtube.com/watch?v=4uZyQQ6qz4U
Implementation
Geth: https://github.com/s1na/go-ethereum/tree/multicall
Nethermind: https://github.com/NethermindEth/nethermind