Add EIP: Revert creation in case of non-empty storage #8161
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,47 @@ | ||
| --- | ||
| eip: 7610 | ||
| title: Revert creation in case of non-empty storage | ||
| description: Revert contract creation if address already has the non-empty storage | ||
| author: Gary Rong (@rjl493456442), Martin Holst Swende (@holiman) | ||
| discussions-to: https://ethereum-magicians.org/t/eip-revert-creation-in-case-of-non-empty-storage/18452 | ||
| status: Draft | ||
| type: Standards Track | ||
| category: Core | ||
| created: 2024-02-02 | ||
| --- | ||
|
|
||
| ## Abstract | ||
|
|
||
| This EIP causes contract creation to throw an error when attempted at an address with pre-existing storage. | ||
|
|
||
| ## Specification | ||
|
|
||
| The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119 and RFC 8174. | ||
|
|
||
| If a contract creation is attempted due to a creation transaction, the `CREATE` opcode, the `CREATE2` opcode, or any other reason, and the destination address already has either a nonzero nonce, a nonzero code length, or non-empty storage, then the creation MUST throw as if the first byte in the init code were an invalid opcode. This change MUST apply retroactively for all existing blocks. | ||
|
|
||
| This EIP amends [EIP-684](./eip-684.md) with one extra condition, requiring empty storage for contract deployment. | ||
|
There was a problem hiding this comment. could you explain or write pesudo code of how this check will be done? There was a problem hiding this comment. I assume you are rite or I don't understand |
||
|
|
||
| ## Rationale | ||
|
|
||
| EIP-684 defines two conditions for contract deployment: the destination address must have zero nonce and zero code length. Unfortunately, this is not sufficient. Before [EIP-158](./eip-158.md) was applied, the nonce of a newly deployed contract remained set to zero. Therefore, it was entirely possible to create a contract with a zero nonce and zero code length but with non-empty storage, if slots were set in the constructor. There exists 28 such contracts on Ethereum mainnet at this time. | ||
|
|
||
| As one of the core tenets of smart contracts is that its code will not change, even if the code is zero length. The contract creation must be rejected in such instanace. | ||
|
|
||
| ## Backwards Compatibility | ||
|
|
||
| This is an execution layer upgrade, and so it requires a hard fork. | ||
|
There was a problem hiding this comment. Does this actually require a hard fork? There was a problem hiding this comment. https://eips.ethereum.org/EIPS/eip-684 uses the same terminology. There was a problem hiding this comment. Given we are "retroactively activating" this from genesis, it may be worth being a bit more specific here @rjl493456442 |
||
|
|
||
| ## Test Cases | ||
|
|
||
| There exists quite a number of tests in the ethereum tests repo as well as in the execution spec tests, which test the scenario of deployment to targets with non-empty storage. These tests have been considered problematic in the past; Reth and EELS both intentionally implement a version of the account reset solely to pass the tests. Py-evm declared the situation impossible and never implemented account reset. | ||
|
|
||
| Refilling the existing tests will provide sufficient coverage for this EIP. | ||
|
|
||
| ## Security Considerations | ||
|
|
||
| This EIP is a security upgrade: it enforces the imutability of deployed code. | ||
|
|
||
| ## Copyright | ||
|
|
||
| Copyright and related rights waived via [CC0](../LICENSE.md). | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Avoid restating the title in the description. Maybe include why this is important to do.