# State Lock Auctions: Towards Collaborative Block Building <center> <img src="https://hackmd.io/_uploads/BJ506v_E2.png" width="350" height="300"> </center> ## Overview Due to the public first-price nature of the [MEV-boost auction](https://github.com/flashbots/mev-boost), searchers have become incentivized to vertically integrate, becoming "searcher-builders" to bid "more strategically". This verticalization aimed at gaining an edge in the MEV-Boost auction has had the unfortunate consequence of considerably raising the barriers to entry for statistical arbitrage, and as a follow on consequence, has created an unfavorable market structure where new "searcher-builders" are bulk purchasing orderflow from other builders and subsidizing blocks as an effective "advertisement spend" to reach orderflow parity with incumbent block builders. Attempts to remove this edge from "strategic bidding" have primarily been focused on [modifying the auction into a sealed-bid format](https://github.com/flashbots/mev-boost/issues/112), all of which have fallen short as they introduce new collusion vectors in the absence of private and credible commitment technology such as MPC, FHE, and TEEs. Greatly borrowing from distributed systems literature, this post sketches a proposal for enabling the ability to "lock state" in the mev-boost auction, with a follow-on feature of providing visibility into this "locked state". The ultimate outcome of this approach is that block builders are no longer effectively "[pipeline stalled](https://en.wikipedia.org/wiki/Pipeline_stall)" via uncertainty in constructing the rest of the block, which opens the door for "Collaborative Block Building". In distributed systems terms, we are creating a "[boot leg](https://en.wikipedia.org/wiki/Rum-running)" decentralized multi-version concurrency control system for the ethereum distributed state machine by [leveraging visibility](https://arxiv.org/pdf/1704.01355.pdf). The main advantages of this approach are that it maintains basic privacy and bid update-ability to searchers competing in these high-velocity arbitrages, supports more generic arbitrage compared to previous "laned" approaches, and is easily deployable into the current market. The main drawbacks are its creation of a "pseudo-enshrinement" of single transaction arbitrages at the top of the block and offering a new censorship and griefing vector. As this proposal is merely a sketch, there are still large unknowns around how to effectively price the cost to lock state, the effects on searcher's bidding strategies, and how to generalize the auction past the ability to lock a single set of states. ## Desirable Properties for a State Lock Auction While not exhaustive, some immediately apparent favorable properties: 1. **Locker Safety** - Revealing the address of the person who locked the state before the block is confirmed creates a targeted DoS vector. 2. **Bid Update-ability** - A searcher who commits to a state lock should be able to update the parameters of their transaction as long as it does not modify the state access list. 3. **Locked State Visibility** - The storage slots of a locked state should be publicly visible to block builders. 4. **Guaranteed Lock Payment** - Whether a searcher updates the bid or not, a payment transaction should be included in the block for locking state. 5. **Squatting Resistance** - Ensuring the cost to lock up extensive amounts of state is prohibitively high to prevent griefing. 6. **Contention Aware** - The price of a lack should reflect the amount of interest in writing to that state. ## Access Lists For most of this post we refer to the state to be locked as an "access list". In the context of [EIP-2930](https://eips.ethereum.org/EIPS/eip-2930), a state access list $A$ is defined as a sequence of tuples: $$A = [ ( \text{address}, [ \text{storageKey}_1, \text{storageKey}_2, \ldots ] ), \ldots ]$$ Where: - $\text{address}$ is an Ethereum address of a contract or an Externally Owned Account (EOA) that the transaction interacts with. - $[\text{storageKey}_1, \text{storageKey}_2, \ldots]$ represents a list of storage keys within the specified contract's storage the transaction will access. An example access list for a swap is shown in [Appendix A](#A-Example-Access-List). ## Proposal: Relay Run Single Lock Auction Representing searchers as $S$, the relay as $R$, and partial block builders as $PB$, the auction process unfolds as follows: 1. **Open Auction**: - Prior to the cutoff time $T_{cutoff}$ seconds into the slot, searchers submit their state lock commitments to $R$ with two distinct transactions: $$\text{SubmitStateCommitment}(n, A, tx_{state}, tx_{payment}, b)$$ where - $n$: Slot number. - $A$: Access list. - $tx_{state}$: State access transaction. - $tx_{payment}$: Payment transaction ensuring the lock cost is covered. - $b$: Bid value, and upon submission $R$ valdates: - $b$ must meet or exceed the lock reserve cost based on $A$. - The lock reserve cost is determined by: $$\text{LockCost}(A) = C \times |A|$$ - Where $C$ represents a fixed cost per storage slot, and $|A|$ is the count of storage slots in the access list $A$ for $tx_{state}$. This approach naively makes it more expensive to lock large amounts of state but is far from an ideal pricing rule. - $tx_{state}$ should be a transaction with access list equal to $A$. - $tx_{payment}$ should be a transaction paying the validator from an EOA with no calldata. - ($tx_{state}$, $tx_{payment}$) simulated together at top-of-block pay the amount promised by $b$. 2. **Winner Selection**: - At $T_{cutoff}$, $R$ picks the highest bid: $$b_{max} = \max(\{b_i | b_i \geq \text{LockCost}(A_i), \forall i \in S\})$$ - $R$ then discloses the winning access list $A_{max}$ associated with $b_{max}$ to anyone who calls: $$\text{GetLockedState}(n)$$ 3. **Bid Updating and Partial Block Submission**: Two main activites can occur post winner selection: - The winning searcher $addr_{max}$ can update their state access transaction facilitated through: $$\text{UpdateStateCommitment}(n, addr_{max}, A_{max}, tx_{state\_new}, b_{new})$$ - where: - $n$ must equal to the most recent slot associated with the winning bid from $addr_{max}$ - $R$ must validate that the updated state access transaction $tx_{state\_new}$ has an acess list eqal to $A_{max}$. and the payment transaction $tx_{payment}$ implicitly remains unchanged. - Partial block builders query $GetLockedState(n)$ for $A_{max}$, build partial blocks based on this information, and submit them using: $$\text{SubmitPartialPayload}(TX_{list}, b_{PB})$$ where: - $TX_{list}$ includes a list of transactions - $b_{PB}$ represents the bid for the partial block. and - Upon receiving a partial payload submission, the relay ($R$) undertakes the following steps: 1. **Transaction Combination**: $R$ creates $$CollabBlock = (tx_{state}, tx_{payment},TX_{list})$$ 2. **Block Validation**: $R$ simulates $CollabBlock$ to perform usual block validation as well as ensures the combined block bid value is equal to $b_{max} + b_{PB}$. 3. **Payment Handling**: $R$ crafts, signs, and inserts payment transaction to pay validator and partial block builder 4. **State Root Calculation**: If the validation is successful, $R$ calculates the block's state root and related fields to ensure compatibility with the latest EL and CL specs, inserts into a beacon block with latest payload attributes, and makes available to `getHeader` calls from validators. Below is an artist's rendition of the above auction process. ![Screenshot 2024-02-03 at 3.58.51 PM](https://hackmd.io/_uploads/HyeXt729a.png) A rough sketch of the changes to the relay spec can be seen in [Appendix B](#B-Rough-Relay-Spec-Change). ### Analysis This approach meets most of our core objectives for a state lock system: ensuring **Locker Safety**, **Bid Update-ability**, **Locked State Visibility**, and **Guaranteed Lock Payment**, takes an initial stab at **Squatting Resistance**, and makes no attempt at being **Contention Aware**. Even further, **Locked State Visibility** lays the foundation for collaborative block building by allowing builders to append partial blocks to top-of-block arbitrages more confidently. The design deliberately avoids checks for conflicting transactions during $SubmitPartialPayload$ to avoid blocking any other transactions also intending to touch the contentious locked state. BBlock builders are free to send in blocks with conflicts, but they are now aware of conflicts beforehand, which is an improvement over today's market and creates an incentive to participate. Searchers are also incentivized to participate as it makes entry to stat arb easier and increases the likelihood of block inclusion. Relays take on extra work and, therefore, additional cost, but this approach normalizes the ability to take profit through a second price auction between relays in a roundabout incentive. One area of concern is shifting towards a more relay-centric block building and [normalizing builderelays](https://collective.flashbots.net/t/builderelay/2688). My biased and cautious initial reaction is that we should be okay with this trend as long as it does not create opinions on which blocks are built or give an unequal advantage to one party over another. From this POV, relays will continue to house more auction-related logic as a trusted third party amongst a network of builders, each additional piece of logic ideally helping to promote more collaborative block building. This approach requires no protocol changes and can be run in parallel with the current mev-boost auction. Additionally, it creates a "laned" approach without restricting it to a single arbitrage type, but is not fully generalized as it restricts top-of-block arbitrages to a single transaction. Exploring bundle support is thus an ideal future exploration, but if done naively, could create additional complications via a new avenue to submit entire blocks. There are, however, a few complexities with taking this approach live. One is that it suffers from a cold start problem. If, at launch, only one searcher has developed the capabilities to compete in this auction, they will likely dominate for a short period and very cheaply, depending on the lock reserve cost price. The dual of this is that it only takes one searcher's participation to snowball the rest. Another area for improvement is that this design only focused on the singular relay case, but in reality, there are many relays that all act independently. One thought is that maybe synchronization doesn't matter since [bid cancellations are a similar cross-relay problem that is not guaranteed](https://ethresear.ch/t/bid-cancellations-considered-harmful/15500). In the multi-relay scenario, the best case is that each agrees on the state to be locked. In the worst case, each has a different state set and partial block builders construct for all potential paths. This creates more work, but at the very least it is parallelizable and still a significant improvement over the status quo. Another area for future exploration is how this approach plays with optimistic relaying given its more complicated validation logic. Lastly, the most significant unknowns here are the lock pricing mechanism and effects on searcher strategies. The lock pricing mechanism is very undefined and most likely the place where things can go comically wrong, therefore follow up work should try to reason about this analytically and adversarially. Incorporation of historical state access into the pricing mechanism is also difficult because that is an extremely large vector to update if done naively, and cannot be plugged into the block like the base fee relies on. Progress on figuring out this mechanism will also help to assess how big of a censorship vector this auction is and tease out the incentives more concretely. The effects of creating a new upfront cost to doing statistical arbitrage also should be thought through, but in the worst case, a searcher can effectively cancel their trade and simply pay the fee, not requiring them to commit to trading large amounts at a price they no longer find attractive based on signals on other domains. ### Add Ons - A randomized closing time could be used to discourage last second bidding. But in the multiple indepedent relay case, this comes at the cost of creating different winners per relay. - The state lock auction could employ a second-price rule to determine payment, encouraging truthful bidding. This could be achieved by inserting a refund transaction into the block for the difference, at the cost of 21k gas. - [EIP-2930 transaction types](https://eips.ethereum.org/EIPS/eip-2930) could be used for the state access transaction, but they do support access to non-acces-list supplied storage slots so would not enable blind trust. In general moving in this direction will help streamline all future collaborative building efforts. - The block construction in the relay provides an ideal time to plug in [unconditional inclusion lists](https://ethresear.ch/t/unconditional-inclusion-lists/18500). - Leave bidding open to replace the state access transaction with your own as long as it touches the same state as the original. The incenvites around this are a bit unclear. - Allow an auction per overlapping access list in parallel. - One challenge here is that an access list which represents arbitraging two pools can be broken into two auctions to arbitrage each pool, and the cost of locking each pool individually may not be as high as someone trying to lock them both at the same time. The generalization thus requires some form of combinatorial auction that allows you to bid conditionally on winning another auction. - [Tarun has cast'ed about how the Jito Solana MEV Auction works in a similar manner here](https://warpcast.com/pinged/0xa6d3fe25). - Another challenge, in the single auction case, the relay can be sure that a winning transaction will produce a certain access list. In the double auction case, we can no longer be certain of the 2nd transaction's access list solely by looking at the first transaction's access list. This is exemplified by a 2nd transaction which is conditional on a balance modified in transaction 1. Altohugh we should be able to detect ***the possibility*** of such a read-write conflict, it is most likely not stable enough ground to continuously stack these auctions on top of. A relay could simulate the 2nd transaction on top of the winner from the first auction, but this does not give us enough time in the block to run many auctions. Most likely some constraints on the transactions ability to write and read state will need to be employed to fix this. ### Feasability with ePBS The challenge for integrating this approach with something like a futue "ePBS" is that we would need to shift the auction to the attester layer, which naively requires an additionaly synchrony period. The network must come to agreement on "what" the winning access list is. Not to mention the p2p games that this incentivies at the protocol layer. One reason against moving this sort of thing into the protocol is that it doesn't affect the resources on the network from a validator's perspective, more or less locks wont affect the resource requirements needed to perform a validator's duties. Additionally, lock auctions dont represent liveliness risk to the network. If the auction goes down, then we degrade back to the current state of block building. An argument in support of moving it into the protocol is that the auction generates revenue from the protocol's state. ## Conclusion This proposal sketches out a design for a relatively crude mechanism to auction a top-of-block state lock on Ethereum and enables collaboration in the block builder market. While not an end game solution, it creates an ideal interface for experimentation with state locks and ***unlocks*** new aspects of the block building market which may help us out of our current local maxima. Assuming an ideal lock pricing mechanism, this approach can go live into the wild quickly and move us one step towards a better builder market structure. ## Appendix ### A. Example Access List Exmaple Access List for - [tx hash 0x84ba67793c7aa0140ae9f7cbc58a7bec04099672d467dfe280ec5987b5f26b46](https://etherscan.io/tx/0x84ba67793c7aa0140ae9f7cbc58a7bec04099672d467dfe280ec5987b5f26b46) swapping `Wrapped Ether` for `Porktoshi Nakamoto`. Created via Created via these [python scripts](https://gist.github.com/dmarzzz/21827db7b9303088577dc1cca0dd23b4). ``` [ { "address": "0xa65303cbe1186f58dda9cf96b29e1e89ae90b165", "storageKeys": [ "0x0000000000000000000000000000000000000000000000000000000000000008" ] }, { "address": "0xb39bc86ac75118011f646276fca48d56e54c4854", "storageKeys": [ "0x000000000000000000000000000000000000000000000000000000000000000d", "0x7e3bb96fe9c3e8bf8baff39136a5e5778a1f21be90df3270983ce535ed884516", "0x9db3014a7ecc5c8baca43505a03b4e7e24c2ec389a973d5605a299f04defc730" ] }, { "address": "0xc02aaa39b223fe8d0a0e5c4f27ead9083c756cc2", "storageKeys": [ "0x377eec8667584e30e85471441b46e69393e5f35d2b63a0b4c26a5b1f6d059aa5" ] } ] ``` Here - `0xC02aaA...3C756Cc2` is the WETH token contract - `0xb39BC8...e54C4854` is the PORKTOSHI token contract - `0xA65303...AE90B165` is the PORKTOSHI/WETH Uni V2 Pool Based on the storage keys for the PORKTOSHI contract we can see there is some non-standard ERC20 behavior and the [source code verifies that](https://etherscan.io/token/0xb39bc86ac75118011f646276fca48d56e54c4854#code) but is besides the point. ## B. Rough Relay Spec Change Validation rules and internal logic are explained in the previous sections. #### 1. `relay_SubmitStateCommitment` Allows participants to submit a state commitment for a particular slot. - **Accepts:** - `n` (Slot Number): Integer representing the slot number. - `A` (Access List): Array of objects detailing state keys (`address` and `storageKeys`) a transaction intends to interact with. - `statetx` (Signed Transaction): Hexadecimal string of the signed transaction. - `paymenttx` (Signed Transaction): Hexadecimal string of the signed transaction. - `b` (Bid Value): Integer representing the bid value in wei. - **Returns:** Confirmation of submission. #### 2. `relay_GetLockedState` Fetches the access list associated with the winning bid for the specified slot. - **Accepts:** - Slot Number: Integer representing the slot number for which the access list is requested. - **Returns:** - Access List (`A`): Array of objects detailing state keys (`address` and `storageKeys`) for the top bid of the specified slot. #### 3. `relay_SubmitPartialPayload` Enables partial block builders to submit a set of transactions as a partial block proposal. - **Accepts:** - `TX_list` (List of Transactions): Array of hexadecimal strings representing transactions. - `b_PB` (Bid Value for Partial Block): Integer representing the bid value in wei for the partial block. - **Returns:** Confirmation of partial payload submission. ```mermaid sequenceDiagram participant S as Searcher participant R as Relay participant PB as Partial Block Builder participant V as Validator S->>+R: SubmitStateCommitment (slot, access list, state tx,payment tx, bid) Note over R: At 4 seconds into the slot R-->>-S: Select winner, expose access list via GetLockedState Note over R,PB: For the rest of the slot S->>R: Submit bids matching access list R->>PB: Expose winning access list PB->>R: Query winning access list PB->>R: SubmitPartialPayload (list of txs, bid value) R->>V: Combine winning bid with partial block for getHeader requests ```
Last changed by  
dmarz
129

Read more

Sharded Inclusion Lists (Bulletin Board Chains)

Narwhal claim: The leader is the bottleneck

11/23/2023
Distributed Systems Learning Plan

https://medium.com/@VitalikButerin/safety-under-dynamic-validator-sets-ef0c3bbdf9f6

11/2/2023
[WIP] PEPC MEV-boost Relay

mev-boost modifications - add ProposerCommitmentAddress to cli flag

9/21/2023
Simple SUAPP MEV-Share Walkthrough

… for the next 26 blocks

8/8/2023
Read more from dmarz
Published on HackMD