A service that allows Ethereum PoS consensus clients to outsource block construction to third party block builders in addition to execution clients. See ethresearch post for the high level architecture.
Request flow:
sequenceDiagram
Title: Block Proposal
consensus-->+mev_boost: engine_forkchoiceUpdatedV1
mev_boost->>-relays: engine_forkchoiceUpdatedV1
Note over consensus: wait for allocated slot
consensus->>+mev_boost: builder_getPayloadHeaderV1
mev_boost->>relays: relay_getPayloadHeaderV1
Note over mev_boost: select most valuable payload
mev_boost-->>-consensus: builder_getPayloadHeaderV1 response
Note over consensus: sign the block
consensus->>+mev_boost: builder_proposeBlindedBlockV1
Note over mev_boost: identify payload source
mev_boost->>relays: relay_proposeBlindedBlockV1
Note over relays: validate signature
relays-->>mev_boost: relay_proposeBlindedBlockV1 response
mev_boost-->>-consensus: builder_proposeBlindedBlockV1 response
A summary of consensus client changes can be found here.
simple sidecar logic with minimal consensus client changes, simple networking, no authentication, and manual safety mechanism
- mev-boost sends
feeRecipientto relay with directengine_forkchoiceUpdatedV1request at beginning of block - mev-boost fetches signed payloads from relay using unauthenticated
getPayloadHeaderrequest - mev-boost selects best payload that matches expected
payloadIdand requests signature from consensus client, this requires passing header object to the consensus client and flagging that it should be returned to the middleware once signed - mev-boost returns signed block + initial payload header to relay with direct request
Specification: https://github.com/flashbots/mev-boost/wiki/Specification
security, authentication & reputation
- mev-boost requests authenticated
feeRecipientmessage from consensus client and gossips over p2p at regular interval - add module for verifying previous relay payload validity and accuracy with hard or statistical blacklist (may require modifications to execution client)
- add module for subscribing to 3rd party relay monitoring service
- in event of middleware crash, consensus client must be able to bypass the middleware to reach a local or remote execution client
- consensus client must implement Proposal Promises
add p2p comms mechanisms to prevent validator deanonymization
- mev-boost gossips signed block + initial payload header over p2p
- consensus client must implement New Gossipsub Topics
add optional configurations to provide alternative guarantees
- consider adding direct
relay_forkchoiceUpdatedV1call to relay for syncing state - consider returning full payload directly to validator as optimization
- consider adding merkle proof of payment to shift verification requirements to the relay
make build
and then run it with:
./mev-boost
make test
We use revive as a linter and staticcheck. You need to install them with
go install github.com/mgechev/revive@latest
go install honnef.co/go/tools/cmd/staticcheck@masterLint and check the project:
make lintWe are currently testing using a forked version of mergemock, see https://github.com/flashbots/mergemock
Make sure you've setup and built mergemock first, refer to its README but here's a quick setup guide:
git clone https://github.com/flashbots/mergemock.git
cd mergemock
go build . mergemock
wget https://gist.githubusercontent.com/lightclient/799c727e826483a2804fc5013d0d3e3d/raw/2e8824fa8d9d9b040f351b86b75c66868fb9b115/genesis.json
Then you can run an integration test with mergemock, spawning both a mergemock execution engine and a mergemock consensus client as well as mev-boost:
cd mev-boost
make run-mergemock-integration
The path to the mergemock repo is assumed to be ../mergemock, you can override like so:
make MERGEMOCK_DIR=/PATH-TO-MERGEMOCK-REPO run-mergemock-integration
to run mergemock in dev mode:
make MERGEMOCK_BIN='go run .' run-mergemock-integration