Notes for session D1 at WalletUncon 2023

Title of talk: Account Abstraction’s relationship to MEV & Block-Building
Convener(s) of talk: eshon
Scribe(s) of talk:
Links to any presentation matter: https://hackmd.io/@evangelion808/rkVwA5VNT

Tips:

  • if you use github or gitlab handles instead of names, that allows scribes and conveners to be easily findable/taggable in threads when these notes get published to the CASA github org)
  • preface remarks with name/handle and org if you WANT to be credited for contributions or ideas.
  • feel free to call multiple people "anon" if you don't catch their names or they do not give them
  • most scribes love an assist!

Notes

Presentation Notes

Context

  • More and more chains are adding support for AA (Ethereum, BSC, Solana, Avax, Polygon, Algorand, Fantom, Gnosis, Tezos, Iotex, Harmony, Fuse, Optimism, Arbitrum, Celo, Near, Cosmos, Aurora, Polkadot, Flow), as well as many RPC Providers.
  • Filecoin launched an EVM this past March 2023 and the community is interested in adding support for AA.
    • However Filecoin's blockchain has a different structure from Ethereum's and does not have an MEV economy or tools like MEV-boost.
    • We are also worried about the possible attack vectors of AA because there are lots of trust assumptions between bundlers and block builders

What about Malicious Miners?

  • There are places in the AA spec where submitting Txns to a malicious miner can cause trouble.
  • These issues also exist on Eth where Txns are supposed to be submitted to "block builders you trust"
  • What if there are malicious miners who attack bundlers?
    • 4337 addresses this by saying that bundlers can only submit bundles to block producers they trust:

Screen Shot 2023-11-17 at 11.45.42 AM

Screen Shot 2023-11-17 at 11.54.15 AM

  • From the PIP excerpt above: "The validator trusts that the bundler is not going to spam him, and the bundler trusts that the validator will not front-run the transaction."

Centralized AA Infra & Private Mempools

  • Trust is straightforward when your AA infra provider is private but this is centralized
    • Users must select a specific private bundler to trust
    • AA infra provider must also be a block builder or work with block builders they trust.
  • A public p2p mempool is coming to Ethereum

A Public Mempool is coming to Eth

The article Why Must ERC-4337 Bundlers Work with Block Builders talks about nonce collision attacks in bundlers:

Screen Shot 2023-11-17 at 12.04.42 PM

  • To summarize the article:

    • After the public mempool is introduced, most UserOps are from this pool.
    • There must be a mechanism to prevent multiple Bundlers from bundling the same UserOperation in the mempool.
    • EtherSpot is developing this p2p network where once bundled and processed on-chain, UserOps will be marked and delisted. They say: "it is meaningless to send duplicate UserOps to the mempool because it can be easily detected by the p2p network."
    • At this point, multiple Bundlers will access the same set of unprocessed UserOps.
    • They recommend that "One cannot and should not run a bundler in the p2p mempool without a service like mevboost on a public mempool on Ethereum."
    • This will ensure the elimination of duplicate submissions and reduce online rejections.

There seem to be additional hidden assumptions in how the mevboost block builder market work with bundlers.

  • Filecoin doesn’t have an mevboost block builder market
    • Do all of these chains have this?..
      • More and more chains (Eth, BSC, Solana, Avax, Polygon, Algorand, Fantom, Gnosis, Tezos, Iotex, Harmony, Fuse, Optimism, Arbitrum, Celo, Near, Cosmos, Aurora, Polkadot, Flow) are adding support for AA
Select a repo