Share this page!

ً Profile picture
Twitter logo
Jun 6 26 tweets 6 min read
After the merge, there will be a much larger faction of "at home" block producers than we've seen under proof-of-work. In order for these independent stakers to extract MEV, we need to think differently about our approach to block production (thread).
First, let's recap how MEV is extracted today.

There are many actors in this game, but we can roughly distill the interaction down to three: searchers, builders, and miners.
The searcher's goal is to extract MEV from txs. When they find a vulnerable tx, they package it with their own tx that does the extraction. This bundle is often referred to as a "fragment". The searcher sends their fragments to the builder to be aggregated.
The builder aggregates the fragments into a block. This provides a layer of DoS protection for the miner. The miner could do the building themselves, but allowing this to be a specialized role means the builder can focus on providing good service to searchers and users.
Once the builder has produced a block, it forwards the block to the miners who can create a seal for the block (e.g. mine it).
The system ends up looking something like the diagram below. Imagine also that multiple builders are providing this service in parallel.
That's roughly what MEV extraction looks like today. Searchers send txs to the builder in plaintext, builders send blocks to the miner in plaintext, and the miner extends the chain. Each actor trusting the next actor to not steal their MEV.
This is more-or-less works today. Searchers tend to have a 1:1 relationship with builders, so it's straightforward to know if a builder is stealing searcher MEV. Builders are incentivized not to do this, because they could quickly lose business if they are suspected of theft.
Builders/miner relationships are typically one-to-many. This makes it more difficult to track theft, but there are still plausible solutions (see: iterated games). We accept this, because builders are sophisticated and should be able to combat adversarial miners.
Stealing MEV could also be extremely detrimental to mining pools' profits, because they risk being blocked by builders. MEV is a non-negligible portion of their revenue, so that will directly result in reduced earnings.
It will be interesting if, as we approach the merge, miners will become more hostile to builders. The expected value of the relationship will continue to decrease as the transition closes in. This would be a more realistic scorched-earth policy than previously anticipated.
And this is really the crux of the transition. Post-merge, there will be many more entities proposing blocks than today (just a few pools vs. thousands of validators) - meaning - builders have many relationships, but of lower value.
This becomes a problem when the MEV in a block is worth more than the relationship a validator has with a builder. If the relationship is worth X over the next 5 years and the MEV in the block is worth 2X, the validator could get 10 years of returns in a single block!
Builders will almost certainly not allow themselves to get in this situation, so the most likely outcome is that small validators will not be eligible to get MEV blocks. This will lead to large validators earning more proportionally for their stake than small validators.
This is not a desirable property. Fortunately, we can fix this. The long-term solution is in-protocol proposer-builder separation (PBS). However, this is a problem immediately after the merge. PBS is still under research & development. We need an interim solution.
The interim solution is the External Builder Protocol. It flips the trust assumption from validators not stealing to builders not withholding data. This subtle difference allows for constructions where the validator blindly signs the block w/o seeing the underlying txs.
The full exchange would look something like this:
There is a bit more setup that I've omitted for simplicity, but basically the validator needs to register with the builder their fee recipient address and preferred gas limit.

You can find the full list of endpoints at ethereum.github.io/builder-specs/ (see screenshot below).
This also isn't even the full picture. The protocol only describes a direct communication between the validator and builder. Whereas it's actually expected that validators will use additional software (see: mev-boost) to multiplex the communication with many builders.
The full interaction, including mev-boost, actually ends up looking more like the diagram below. Roughly the same as the 1:1 relation, but with the flexibility to interact with many validators.
You can find the two mev-boost implementations here:
* github.com/flashbots/mev-…
* github.com/ralexstokes/me…
This scheme gets the job done, but it isn't perfect. If you recall, we flipped the trust assumption from the validator to builder. So the question is: how does this protocol break down when a builder breaks this trust?
In this case, the validator signs the blinded beacon block and sends it to the builder requesting the full block. The builder can withhold the information and say "they didn't receive the request". There is no way to attribute the fault to either party.
This causes the validator to unduly lose out on the revenue from producing a block in their slot. What's worse, they have no recourse because the fault was not attributable.
A possible workaround that is still under research is using a bonded committee to attest to the availability of protocol message. Combine this with an unconditional payment from the builder to make false-negatives unprofitable and now the system is a bit more robust.
There is still a lot more work to be done to make the external builder protocol + mev-boost robust in the interim. I recommend following #block-construction on the Eth R&D discord or the github.com/ethereum/build… repository for the latest information.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with ً

ً Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @lightclients

ً Profile picture
Dec 5, 2021
The design space for protocol upgrades that improve the user experience on Ethereum is large, however, there are two categories that I believe deserve most of our attention (thread).
These categories can be deduced by working backwards from the types of accounts available today, and the functionality each of them provide.
It's also important to note _why_ UX in Ethereum tends to be so poor:

Authentication is a critical building block for smart contracts. There needs to be a secure way to know "account X is okay with Y happening". Developers have turned to `msg.sender` for this functionality.
Read 25 tweets
ً Profile picture
Nov 22, 2021
Ethereum clients currently store 275 GB of historical data that is unnecessary to validate the chain. That number is growing at a rate of around 140 GB per year. EIP-4444 proposes clients prune data older than 1 y/o.

So why don't we just prune the data already?
To understand why the data has yet to be pruned and why this is even a discussion, it's important to understand how historical data is used today. There are two main categories of usage: syncing and user requests over JSON-RPC.
In the world of syncing, there are two main approaches:
- Full sync - from genesis, download every block & execute it until tip of chain is reached.
- State sync - many schemes here, but essentially header sync using PoW checks and then download the state for the latest block.
Read 23 tweets
ً Profile picture
Apr 26, 2021
Smart contract developers:

How much does the storage refund need to decrease before you start using a different value to represent 0?
The London hard fork in July will almost certainly modify the behavior of refunds. There have been several iterations, but the latest is EIP-3529: Reduction in refunds.
I recommend reading the EIP as it is very thorough and explains the past proposals, however the main case we care about for this thread is setting a nonzero storage element to zero and the refund that incurs.

eips.ethereum.org/EIPS/eip-3529
Read 16 tweets
ً Profile picture
Apr 23, 2021
In the last month, users spent $23,830,482 on ERC-20 approvals. EIP-3074 would reduce that number by at least 30%, saving users millions while freeing up block space (thread). Image
Anyone whose nonce is greater than ten has likely experienced the approve+transfer flow that defi applications use to interact with ERC-20 tokens. The approve method is a relic of the original ERC-20 design.

@DuneAnalytics dashboard for above tweet: duneanalytics.com/lightclient/US…
There have been many attempts to alleviate the burden of token approvals, but none have succeeded. We believe EIP-3074 will resolve the issue because it addresses the two problems that have beleaguered other approaches.
Read 15 tweets
ً Profile picture
Mar 16, 2021
Ethereum wallets may be getting a significant upgrade soon. With the proposed change, EOAs will immediately be able to send batch txs, expiring txs, unordered txs, and more. (thread)
My colleagues, @_SamWilsn_ and @adietrichs, and I have been working on improving the UX of interacting with Ethereum. After many iterations, we've come up with EIP-3074: AUTH and AUTHCALL opcodes.
To use these opcodes, an EOA signs a message off-chain, provides the message to a relayer, the relayer passes the signature and calldata to a contract on-chain (called an invoker), the contract verifies the signature using AUTH, and then relays the EOA's call with AUTHCALL.
Read 26 tweets
ً Profile picture
Jan 13, 2021
2021 will be the most innovative year for the Ethereum protocol since 2016. Here are the EIPs to keep an eye on this year (thread):
The next hardfork is named "Berlin" & is scheduled to ship with 4 EIPs:

* EIP-2929: Gas cost increases for state access opcodes
* EIP-2930: Optional Access List Txs
* EIP-2718: Typed Transaction Envelope
* EIP-2315: Simple Subroutines
EIP-2929: Gas cost increases for state access opcodes

Storage accessing opcodes have historically been underpriced & malicious txs which take 20-80 seconds to execute can be created today.

This EIP increases the cost of state accesses by ~3x.
Read 21 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(