1.7 KiB
| eip | title | author | discussions-to | category | type | status | created |
|---|---|---|---|---|---|---|---|
| 1344 | ChainID opcode | Richard Meissner (@rmeissner) | https://ethereum-magicians.org/t/add-chain-id-opcode-for-replay-protection-when-handling-signed-messages-in-contracts/1131 | Core | Standards Track | Draft | 2018-08-22 |
Abstract
This EIP adds an opcode that returns the current chain's EIP-155 unique identifier.
Motivation
EIP-155 proposes to use the chain id to prevent replay attacks between different chains. It would be a great benefit to have the same possibility inside smart contracts when handling signatures, especially for Layer 2 signature schemes using EIP-712.
Specification
Adds a new opcode at 0x46, which takes 0 stack arguments. It will return the chain id of the chain where the block was mined. It should cost 2 gas (G_base) to execute this opcode.
Rationale
The current approach proposed by EIP-712 is to specify the chain id on compile time. Using this approach will result in problems after a hardfork, as well as human error that may lead to loss of funds or replay attacks on signed messages. By adding the opcode it would be possible to access the current chain id and validate signatures based on that.
Backwards Compatibility
This EIP should be fully backwards compatible for all chains which implement EIP-155 chain ID domain separator for transaction signing.
Test Cases
TBD
Implementation
A sample implementation was attempted here: eaab5ffa21
Copyright
Copyright and related rights waived via CC0.