eth2.0-specs/specs/phase0/deposit-contract.md

# Phase 0 -- Deposit Contract

## Table of contents
<!-- TOC -->
<!-- START doctoc generated TOC please keep comment here to allow auto update -->
<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->

- [Introduction](#introduction)
- [Constants](#constants)
- [Configuration](#configuration)
- [Staking deposit contract](#staking-deposit-contract)
  - [`deposit` function](#deposit-function)
    - [Deposit amount](#deposit-amount)
    - [Withdrawal credentials](#withdrawal-credentials)
    - [`DepositEvent` log](#depositevent-log)
- [Solidity code](#solidity-code)

<!-- END doctoc generated TOC please keep comment here to allow auto update -->
<!-- /TOC -->

## Introduction

This document represents the specification for the beacon chain deposit contract, part of Phase 0.

## Constants

The following values are (non-configurable) constants used throughout the specification.

| Name | Value |
| - | - |
| `DEPOSIT_CONTRACT_TREE_DEPTH` | `2**5` (= 32) |

## Configuration

*Note*: The default mainnet configuration values are included here for spec-design purposes.
The different configurations for mainnet, testnets, and YAML-based testing can be found in the [`configs/constant_presets`](../../configs) directory.
These configurations are updated for releases and may be out of sync during `dev` changes.

| Name | Value |
| - | - |
| `DEPOSIT_CHAIN_ID` | `1` |
| `DEPOSIT_NETWORK_ID` | `1` |
| `DEPOSIT_CONTRACT_ADDRESS` | `0x00000000219ab540356cBB839Cbe05303d7705Fa` |

## Staking deposit contract

The initial deployment phases of Ethereum proof-of-stake are implemented without consensus changes to the existing Ethereum proof-of-work chain. A deposit contract at address `DEPOSIT_CONTRACT_ADDRESS` is added to the Ethereum proof-of-work chain defined by the [chain-id](https://eips.ethereum.org/EIPS/eip-155) -- `DEPOSIT_CHAIN_ID` -- and the network-id -- `DEPOSIT_NETWORK_ID` -- for deposits of ETH to the beacon chain. Validator balances will be withdrawable to the execution-layer in a followup fork after Bellatrix upgrade.

_Note_: See [here](https://chainid.network/) for a comprehensive list of public Ethereum chain chain-id's and network-id's.

### `deposit` function

The deposit contract has a public `deposit` function to make deposits. It takes as arguments `bytes calldata pubkey, bytes calldata withdrawal_credentials, bytes calldata signature, bytes32 deposit_data_root`. The first three arguments populate a [`DepositData`](./beacon-chain.md#depositdata) object, and `deposit_data_root` is the expected `DepositData` root as a protection against malformatted calldata.

#### Deposit amount

The amount of ETH (rounded down to the closest Gwei) sent to the deposit contract is the deposit amount, which must be of size at least `MIN_DEPOSIT_AMOUNT` Gwei. Note that ETH consumed by the deposit contract is no longer usable on the execution-layer until sometime after Bellatrix upgrade.

#### Withdrawal credentials

One of the `DepositData` fields is `withdrawal_credentials` which constrains validator withdrawals.
The first byte of this 32-byte field is a withdrawal prefix which defines the semantics of the remaining 31 bytes.
The withdrawal prefixes currently supported are `BLS_WITHDRAWAL_PREFIX` and `ETH1_ADDRESS_WITHDRAWAL_PREFIX`.
Read more in the [validator guide](./validator.md#withdrawal-credentials).

*Note*: The deposit contract does not validate the `withdrawal_credentials` field.
Support for new withdrawal prefixes can be added without modifying the deposit contract.

#### `DepositEvent` log

Every deposit emits a `DepositEvent` log for consumption by the beacon chain. The deposit contract does little validation, pushing most of the validator onboarding logic to the beacon chain. In particular, the proof of possession (a BLS12-381 signature) is not verified by the deposit contract.

## Solidity code

The deposit contract source code, written in Solidity, is available [here](../../solidity_deposit_contract/deposit_contract.sol).

*Note*: To save on gas, the deposit contract uses a progressive Merkle root calculation algorithm that requires only O(log(n)) storage. See [here](https://github.com/ethereum/research/blob/master/beacon_chain_impl/progressive_merkle_tree.py) for a Python implementation, and [here](https://github.com/runtimeverification/verified-smart-contracts/blob/master/deposit/formal-incremental-merkle-tree-algorithm.pdf) for a formal correctness proof.
rename eth1 and eth2 throughout specs and readme where reasonable 2021-08-18 23:11:38 +00:00			`# Phase 0 -- Deposit Contract`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
			`## Table of contents`
			`<!-- TOC -->`
Update ToC of specs to consistent use of doctoc 2019-12-10 14:17:06 +00:00			`<!-- START doctoc generated TOC please keep comment here to allow auto update -->`
			`<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Update ToC of specs to consistent use of doctoc 2019-12-10 14:17:06 +00:00			`- [Introduction](#introduction)`
			`- [Constants](#constants)`
split config vs constants in deposit-contract spec 2020-07-23 21:05:25 +00:00			`- [Configuration](#configuration)`
rename eth1 and eth2 throughout specs and readme where reasonable 2021-08-18 23:11:38 +00:00			`- [Staking deposit contract](#staking-deposit-contract)`
Update ToC of specs to consistent use of doctoc 2019-12-10 14:17:06 +00:00			- [`deposit` function](#deposit-function)
			`- [Deposit amount](#deposit-amount)`
			`- [Withdrawal credentials](#withdrawal-credentials)`
			- [`DepositEvent` log](#depositevent-log)
Update the docs and remove unused code 2020-08-17 16:51:03 +00:00			`- [Solidity code](#solidity-code)`
Update ToC of specs to consistent use of doctoc 2019-12-10 14:17:06 +00:00
			`<!-- END doctoc generated TOC please keep comment here to allow auto update -->`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00			`<!-- /TOC -->`

			`## Introduction`

rename eth1 and eth2 throughout specs and readme where reasonable 2021-08-18 23:11:38 +00:00			`This document represents the specification for the beacon chain deposit contract, part of Phase 0.`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
			`## Constants`

split config vs constants in deposit-contract spec 2020-07-23 21:05:25 +00:00			`The following values are (non-configurable) constants used throughout the specification.`

			`\| Name \| Value \|`
			`\| - \| - \|`
			\| `DEPOSIT_CONTRACT_TREE_DEPTH` \| `2**5` (= 32) \|

			`## Configuration`

			`Note: The default mainnet configuration values are included here for spec-design purposes.`
			The different configurations for mainnet, testnets, and YAML-based testing can be found in the [`configs/constant_presets`](../../configs) directory.
			These configurations are updated for releases and may be out of sync during `dev` changes.
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
			`\| Name \| Value \|`
			`\| - \| - \|`
add chain id and netowrk id to config 2020-07-23 18:05:22 +00:00			\| `DEPOSIT_CHAIN_ID` \| `1` \|
			\| `DEPOSIT_NETWORK_ID` \| `1` \|
add mainnet deposit contract address and min genesis time 2020-11-04 15:02:57 +00:00			\| `DEPOSIT_CONTRACT_ADDRESS` \| `0x00000000219ab540356cBB839Cbe05303d7705Fa` \|
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
rename eth1 and eth2 throughout specs and readme where reasonable 2021-08-18 23:11:38 +00:00			`## Staking deposit contract`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
minor fix 2021-12-23 09:32:15 +00:00			The initial deployment phases of Ethereum proof-of-stake are implemented without consensus changes to the existing Ethereum proof-of-work chain. A deposit contract at address `DEPOSIT_CONTRACT_ADDRESS` is added to the Ethereum proof-of-work chain defined by the [chain-id](https://eips.ethereum.org/EIPS/eip-155) -- `DEPOSIT_CHAIN_ID` -- and the network-id -- `DEPOSIT_NETWORK_ID` -- for deposits of ETH to the beacon chain. Validator balances will be withdrawable to the execution-layer in a followup fork after Bellatrix upgrade.
add links for network and chain id 2020-07-23 18:25:44 +00:00
			`_Note_: See [here](https://chainid.network/) for a comprehensive list of public Ethereum chain chain-id's and network-id's.`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Address HW's comments 2019-06-09 10:03:38 +00:00			### `deposit` function
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Update the docs and remove unused code 2020-08-17 16:51:03 +00:00			The deposit contract has a public `deposit` function to make deposits. It takes as arguments `bytes calldata pubkey, bytes calldata withdrawal_credentials, bytes calldata signature, bytes32 deposit_data_root`. The first three arguments populate a [`DepositData`](./beacon-chain.md#depositdata) object, and `deposit_data_root` is the expected `DepositData` root as a protection against malformatted calldata.
Address HW's comments 2019-06-09 10:03:38 +00:00
			`#### Deposit amount`

minor fix 2021-12-23 09:32:15 +00:00			The amount of ETH (rounded down to the closest Gwei) sent to the deposit contract is the deposit amount, which must be of size at least `MIN_DEPOSIT_AMOUNT` Gwei. Note that ETH consumed by the deposit contract is no longer usable on the execution-layer until sometime after Bellatrix upgrade.
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Adjust headers 2019-04-25 07:06:21 +00:00			`#### Withdrawal credentials`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
copy edits 2020-12-14 20:09:25 +00:00			One of the `DepositData` fields is `withdrawal_credentials` which constrains validator withdrawals.
			`The first byte of this 32-byte field is a withdrawal prefix which defines the semantics of the remaining 31 bytes.`
			The withdrawal prefixes currently supported are `BLS_WITHDRAWAL_PREFIX` and `ETH1_ADDRESS_WITHDRAWAL_PREFIX`.
			`Read more in the [validator guide](./validator.md#withdrawal-credentials).`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
copy edits 2020-12-14 20:09:25 +00:00			Note: The deposit contract does not validate the `withdrawal_credentials` field.
			`Support for new withdrawal prefixes can be added without modifying the deposit contract.`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Renames: 1. `Deposit` log -> `DepositEvent` log 2. `get_deposit_root` -> `get_hash_tree_root` 2019-06-29 19:42:00 +00:00			#### `DepositEvent` log
Adjust headers 2019-04-25 07:06:21 +00:00
rename eth1 and eth2 throughout specs and readme where reasonable 2021-08-18 23:11:38 +00:00			Every deposit emits a `DepositEvent` log for consumption by the beacon chain. The deposit contract does little validation, pushing most of the validator onboarding logic to the beacon chain. In particular, the proof of possession (a BLS12-381 signature) is not verified by the deposit contract.
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Update the docs and remove unused code 2020-08-17 16:51:03 +00:00			`## Solidity code`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
Update the docs and remove unused code 2020-08-17 16:51:03 +00:00			`The deposit contract source code, written in Solidity, is available [here](../../solidity_deposit_contract/deposit_contract.sol).`
Add 0_deposit-contract.md 2019-04-22 13:29:19 +00:00
phase 0 doc standardization b4 spec freeze (#1212) 2019-06-25 13:32:56 +00:00			`Note: To save on gas, the deposit contract uses a progressive Merkle root calculation algorithm that requires only O(log(n)) storage. See [here](https://github.com/ethereum/research/blob/master/beacon_chain_impl/progressive_merkle_tree.py) for a Python implementation, and [here](https://github.com/runtimeverification/verified-smart-contracts/blob/master/deposit/formal-incremental-merkle-tree-algorithm.pdf) for a formal correctness proof.`