Video: Account Abstraction - System Contracts

Support

## Understanding Account Abstraction Transactions in zkSync zkSync introduces a refined approach to transaction processing, particularly with its native support for account abstraction. A transaction under this model typically undergoes a two-phase lifecycle: Validation and Execution. 1. **Phase 1: Validation:** This initial phase is crucial for verifying the transaction's legitimacy before it consumes significant resources or impacts the state. 2. **Phase 2: Execution:** Once validated, the transaction proceeds to the execution phase, where its intended operations are carried out. A practical illustration of this two-phase process can be seen in the `ZkMinimalAccount.sol` contract, which serves as a foundational example for account abstraction implementations on zkSync. ```solidity // src/zksync/ZkMinimalAccount.sol // // Phase 1 Validation // // Phase 2 Execution contract ZkMinimalAccount is IAccount { function validateTransaction(bytes32 _txHash, bytes32 _suggestedSignedHash, Transaction memory _transaction) external payable returns (bytes4 magic) { // Logic for validating the transaction, e.g., signature verification, nonce check // ... } function executeTransaction(bytes32 _txHash, bytes32 _suggestedSignedHash, Transaction memory _transaction) external payable { // Logic for executing the transaction's operations // ... } // ... other functions like executeTransactionFromOutside, payForTransaction, prepareForPaymaster } ``` The `validateTransaction` function handles the first phase, ensuring prerequisites are met, while `executeTransaction` manages the actual state changes in the second phase. ## Deep Dive: The Transaction Validation Process The validation phase (Phase 1) in zkSync's account abstraction model involves several key steps to ensure a transaction's integrity before it's processed further. Let's break down the initial interactions: 1. **Transaction Submission:** The user initiates the process by sending their transaction to what can be described as a "zkSync API client." This client acts somewhat like a light node, serving as the entry point for transactions into the zkSync network. ``` /** * Phase 1 Validation * 1. The user sends the transaction to the "zkSync API client" (sort of a "light node") * ... */ ``` 2. **Nonce Uniqueness Verification:** A critical step in preventing replay attacks and ensuring orderly transaction processing is verifying the uniqueness of the transaction's nonce. The zkSync API client achieves this by querying a specialized system contract known as the **`NonceHolder`**. ``` /** * Phase 1 Validation * ... * 2. The zkSync API client checks to see the nonce is unique by querying the * NonceHolder system contract * ... */ ``` This interaction with the `NonceHolder` system contract is a distinctive feature of zkSync. ## The Role of System Contracts in zkSync One of the most significant architectural distinctions between Ethereum and zkSync lies in zkSync's extensive utilization of **System Contracts**. These are pre-deployed smart contracts on the zkSync network that manage fundamental protocol-level functionalities. Unlike Ethereum, where many core operations are handled by the client software or hard-coded into the protocol, zkSync delegates these to on-chain smart contracts. The **`NonceHolder.sol`** contract is a prime example. Its responsibility is to manage nonces for all accounts on zkSync, ensuring that each transaction from a specific sender has a unique nonce. This mechanism is vital for maintaining transaction order and preventing double-spending. A partial view of the `NonceHolder.sol` contract reveals its purpose: ```solidity // lib/foundry-era-contracts/src/system-contracts/contracts/NonceHolder.sol (partial view) /** * @author Matter Labs * @custom:security-contact security@matterlabs.dev * @notice A contract used for managing nonces for accounts. Together with bootloader, * this contract ensures that the pair (sender, nonce) is always unique, ensuring * unique transaction hashes. * @dev The account allows for both ascending growth in nonces and mapping nonces to specific * stored values in them. * The users can either marked a range of nonces by increasing the `minNonce`. This way all th * less than `minNonce` will become used. The other way to mark a certain 256-bit key as nonce * some value under it in this contract. * @dev Apart from transaction nonces, this contract also stores the deployment nonce for acco * will be used for address derivation using CREATE. For the economy of space, this nonce is s * packed with the `minNonce`. * @dev The behavior of some of the methods depends on the nonce ordering of the account. Nonc * here serve more as a help to users to prevent from doing mistakes, rather than any invarian */ contract NonceHolder is INonceHolder, ISystemContract { uint256 private constant DEPLOY_NONCE_MULTIPLIER = 2 ** 128; // ... mapping(uint256 account => uint256 packedMinAndDeploymentNonce) internal rawNonces; // ... } ``` Other system contracts on zkSync handle tasks like managing account code storage (`AccountCodeStorage`), system-wide context (`SystemContext`), and, crucially, contract deployment. Understanding these system contracts is essential for developers building applications that deeply integrate with zkSync's capabilities. You can find a comprehensive list and descriptions of these contracts in the official zkSync Era documentation under "System Contracts." ## Contract Deployment: A Tale of Two Networks (Ethereum vs. zkSync) The process of deploying smart contracts differs notably between Ethereum and zkSync, primarily due to zkSync's reliance on system contracts for core operations. **Ethereum's Deployment Mechanism:** On Ethereum, deploying a smart contract involves sending a transaction where the `to` field (recipient address) is left null or set to the zero address. The transaction's data payload contains the compiled bytecode of the contract. Ethereum nodes recognize this specific transaction format as a contract creation request and execute the deployment. This method is well-documented in Ethereum's developer resources. **zkSync's Deployment Mechanism:** zkSync takes a different path. Instead of the null-recipient pattern, contract deployment is facilitated by interacting with a dedicated system contract: the **`ContractDeployer`**. This contract resides at a well-known, predefined address on the zkSync network (for instance, `0x0000000000000000000000000000000000008006` on zkSync Era Mainnet, verifiable via the zkSync block explorer). To deploy a contract on zkSync, you call specific functions on this `ContractDeployer` system contract. These functions include: * `create` * `create2` * `createAccount` * `create2Account` * `forceDeployOnAddress` And others, each serving slightly different deployment scenarios or offering varied control over the deployment process. For example, `createAccount` is specifically designed for deploying account abstraction-compatible smart contract accounts. Developers can inspect the `ContractDeployer.sol` source code and its available functions directly on the zkSync block explorer by navigating to its address and viewing the "Write Contract" tab. This system contract-based approach centralizes and standardizes contract deployment logic within the zkSync protocol. ## Navigating zkSync Deployment with Developer Tools: The Foundry Case The divergence in contract deployment mechanisms between Ethereum and zkSync has direct implications for developer tooling. Standard Ethereum development tools, often designed around Ethereum's deployment conventions, may require specific configurations or flags to operate correctly with zkSync. Foundry, a popular smart contract development toolkit, provides a good example. The standard Foundry command for deploying a contract, `forge create`, is tailored for the Ethereum deployment model (sending bytecode to a null address). When targeting zkSync, this command, in its vanilla form, won't work as expected because zkSync requires interaction with the `ContractDeployer` system contract. To accommodate zkSync's deployment flow, `foundry-zksync` (the zkSync-compatible version of Foundry) introduces specific flags. For instance, you might use a command like: ```bash # Terminal command forge create --zksync --legacy ``` The `--zksync` flag tells Foundry to prepare the transaction for the zkSync network. The `--legacy` flag, in this context, instructs `foundry-zksync` to use an older deployment method that specifically interacts with the `ContractDeployer` system contract's `create` function. This ensures that the deployment adheres to zkSync's native process rather than attempting an Ethereum-style deployment. Without such flags or zkSync-aware configurations, developers might find that their usual deployment commands fail or behave unexpectedly on zkSync. This highlights the importance of understanding how system contracts influence tooling interactions. ## Key Takeaways: Embracing zkSync's Unique Architecture zkSync's architecture, particularly its extensive use of system contracts like `NonceHolder` for nonce management and `ContractDeployer` for smart contract deployment, represents a notable departure from Ethereum's operational model. These system contracts are not just peripheral components; they are integral to zkSync's core functionality and define how developers interact with the protocol at a low level. While interacting with system contracts might initially seem like an added layer of complexity, it also offers standardization and dedicated functionalities (e.g., `createAccount` for streamlined AA wallet deployment). For developers building on zkSync, a thorough understanding of these system contracts and their impact on transaction flows and tooling is crucial for successful and efficient development. This knowledge allows for better utilization of zkSync's unique features and a smoother transition from Ethereum-centric development practices.

System Contracts

An essential primer to Unpacking zkSync: How Transactions and System Contracts Work - Delve into zkSync's two-phase transaction model (validation and execution) and the key functions of system contracts such as NonceHolder and ContractDeployer. Understand how this architecture handles nonces and deploys contracts differently from Ethereum, affecting tools like Foundry.

Course Overview

About the course

What you'll learn

Advanced smart contract development

How to develop a stablecoin

How to develop a DeFi protocol

How to develop a DAO

Advanced smart contracts testing

Fuzz testing

Manual verification

Course Description

Who is this course for?

Engineers
Smart Contract Security researchers

Potential Careers

Web3 Developer Relations

$85,000 - $125,000 (avg. salary)

Web3 developer

$60,000 - $150,000 (avg. salary)

Smart Contract Engineer

$100,000 - $150,000 (avg. salary)

Smart Contract Auditor

$100,000 - $200,000 (avg. salary)

Security researcher

$49,999 - $120,000 (avg. salary)

Meet your instructors

Patrick Collins

Founder at Cyfrin

Web3 engineer, educator, and Cyfrin co-founder. Patrick's smart contract development and security courses have helped hundreds of thousands of engineers kickstarting their careers into web3.

Guest lecturers:

Juliette Chevalier

Lead Developer relations at Aragon

Ciara Nightingale

Developer relations at Cyfrin

Vasiliy Gualoto

Developer relations at ThirdWeb

Nader Dabit

Director of developer relations at EigenLayer

Ally Haire

Developer relations at Protocol Labs

Harrison

Founder at GasliteGG

Vitto Rivabella

CPO at Cyfrin

Last updated on May 12, 2025

Thanks for checking us out

Start learning for free

Start for free

Solidity Developer

Advanced Foundry

Section 1: Develop an ERC20 Crypto Currency

Duration: 36min

Section 2: Develop an NFTs Collection

Duration: 3h 06min

Section 3: Develop a DeFi Protocol

Duration: 5h 02min

Section 4: Cross Chain Rebase Token

Duration: 6h 02min

Section 5: Airdrop and Signatures

Duration: 2h 47min

Section 6: Upgradeable Smart Contracts

Duration: 1h 23min

Section 7: Account Abstraction

Duration: 4h 28min

1. Introduction

An essential guide to Understanding Account Abstraction - Explore how Account Abstraction is revolutionizing Web3 by enabling programmable smart contract wallets, moving beyond traditional private key limitations. This lesson delves into Ethereum's EIP-4337, its components like UserOps and Bundlers, and contrasts it with native AA solutions like zkSync. Duration: 11min

2. Code Overview

An enlightening exploration of Account Abstraction: The Future of Web3 Wallets on Ethereum & zkSync - Discover how smart contract wallets are reshaping user experience, comparing Ethereum's ERC-4337 (EntryPoint, Bundlers) with zkSync's native AA (Bootloader). Learn from minimal examples to unlock custom transaction logic and advanced features. Duration: 4min

3. Ethereum Setup

A foundational setup guide to Setting Up Your Account Abstraction Project - Initialize your Foundry project, structure directories for Ethereum ERC-4337 and zkSync AA wallets, and create your first `MinimalAccount.sol`. You'll install ERC-4337 dependencies and implement the `IAccount` interface by stubbing `validateUserOp`. Duration: 10min

4. PackedUserOperation

A deep-dive exploration to Understanding the PackedUserOperation Struct for Account Abstraction - Journey through each field of ERC-4337's `PackedUserOperation`, from `sender` to `signature`, and grasp their individual roles. Understand how this vital struct underpins account abstraction by enabling secure and flexible transaction handling by smart contract wallets. Duration: 2min

5. Validate UserOp

A crucial deep dive to ERC-4337 `validateUserOp`: Signature Validation with `Ownable` - Implement the core signature validation logic within `validateUserOp` for ERC-4337 smart contract accounts. You'll use OpenZeppelin's `Ownable` for owner-based authorization and `ECDSA` for secure signature verification. Duration: 15min

6. EntryPoint Contract

An in-depth security enhancement to Refining Smart Account EntryPoint Security - Solidify your ERC-4337 `MinimalAccount` by restricting `validateUserOp` to the EntryPoint contract using constructor initialization and an `IEntryPoint` interface. You'll learn to implement and apply a custom modifier for robust, EntryPoint-only access. Duration: 3min

7. Execute Function Ethereum

A developer's guide to Activating Smart Contract Accounts: The ERC-4337 `execute` Function - Unlock the power of your ERC-4337 smart contract account by implementing the `execute` function, enabling it to call other contracts and manage its own Ether. This lesson details low-level call mechanics, the `requireFromEntryPointOrOwner` modifier for security, the `receive` function for funding, and best practices with custom errors. Duration: 8min

8. Deployment Script for an Ethereum Account

A constructive walkthrough to Building Your ERC-4337 Deployment Foundation - Establish core Foundry deployment scripts (`DeployMinimal.s.sol`, `HelperConfig.s.sol`) for an ERC-4337 `MinimalAccount` contract. Learn to manage multi-chain `EntryPoint` configurations with `HelperConfig`, preparing for robust account abstraction deployments. Duration: 12min

9. Test Owner can Execute

A foundational guide to Testing MinimalAccount Owner Execution with Foundry - Set up robust Foundry tests for `MinimalAccount.sol`, using `vm.prank` and mock contracts to verify owner `execute` capabilities. Solidify access control by ensuring non-owner attempts correctly revert with `vm.expectRevert`. Duration: 13min

10. Unsigned PackedUserOperation Test

An essential coding tutorial to Crafting an Unsigned PackedUserOperation for ERC-4337 - Learn to code a Foundry script that generates an unsigned `PackedUserOperation`, crucial for ERC-4337. This lesson covers populating key fields like `sender`, `nonce` (using `vm.getNonce`), `callData`, and packing gas parameters, preparing the operation for later signing. Duration: 11min

11. Signed UserOp Test

A practical guide to Correctly Signing ERC-4337 UserOperations for the EntryPoint - Learn to generate the precise `userOpHash` for ERC-4337 `EntryPoint` interactions and create EIP-191 compliant signatures for `PackedUserOperations`. You'll deploy mock `EntryPoints`, use `vm.sign` in Foundry, handle test signing, and verify signatures for reliable ERC-4337 development. Duration: 23min

12. Quiz 12 Quiz

Questions: 8

13. Local Dev Unlocked

A practical refactoring guide to Streamlining UserOperation Signing for Local and Testnet Development - Master conditional ERC-4337 UserOperation signing in Foundry, using Anvil's default key locally and configured keys on testnets. You'll implement `vm.sign` with `block.chainId` checks and update `HelperConfig` for consistency. Duration: 4min

14. Test Validate UserOps

An indispensable security walkthrough to Testing User Operation Validation in Your Smart Contract Account - Bolster your ERC-4337 smart account's security by mastering the `testValidationOfUserOps` test, ensuring correct validation of EntryPoint-invoked user operations. You'll practice signing user ops, simulating EntryPoint calls via `vm.prank`, and asserting expected validation results. Duration: 5min

15. Test EntryPoint

An advanced tutorial to Mastering EntryPoint Execution for ERC-4337 UserOperations - Unlock the "crazy skill" of verifying `EntryPoint` execution of UserOperations in ERC-4337. You'll set up tests for `handleOps`, fund smart accounts for bundler compensation, and diagnose an EVM revert, deepening your Account Abstraction expertise. Duration: 6min

16. Advanced Debugging

A hands-on guide to Debugging ERC-4337 UserOperations in Foundry - Troubleshoot failing ERC-4337 tests by mastering Foundry's debugger to fix `UserOperation` `sender` and `nonce` errors. You'll use `Shift + G` to locate reverts, step through EVM opcodes, and ensure your smart contract accounts behave as expected. Duration: 5min

17. Mid Session Recap

A vital recap to Unpacking Account Abstraction on Ethereum and zkSync - Reinforce your understanding of Ethereum's EIP-4337, including UserOperations, Bundlers, and the EntryPoint contract. Then, explore zkSync's native Account Abstraction, contrasting its streamlined Type 113 transaction flow and simplified architecture. Duration: 4min

18. Quiz 18 Quiz

Questions: 8

19. Live Demo on Arbitrum

An illustrative guide to Deploying an ERC-4337 Smart Account and Sending a UserOperation on Arbitrum - Follow the deployment of an ERC-4337 `MinimalAccount` to Arbitrum using Foundry, then craft and send a `UserOperation`. This lesson walks through constructing calldata for contract interactions and verifying the entire flow on Arbiscan. Duration: 8min

20. zkSync Setup

A foundational guide to Understanding zkSync Native Account Abstraction: Setup and Core Concepts - Dive into zkSync's native Account Abstraction, contrasting its advantages like no alt-mempool with ERC-4337, and learn how all accounts are smart contracts. You'll install `foundry-era-contracts` and begin building a `ZkMinimalAccount.sol` by implementing the `IAccount` interface. Duration: 9min

21. Iaccount

A detailed primer to Understanding the `IAccount` Interface in ZK Sync - Explore ZK Sync's native Account Abstraction via the IAccount interface, comparing it to EIP-4337 and dissecting the core Transaction struct. Learn how functions like `validateTransaction`, `executeTransaction`, and paymaster interactions empower smart accounts. Duration: 8min

22. System Contracts

23. Type 113 Lifecycle

A clarifying exploration to Unpacking the zkSync TxType 113 Account Abstraction Lifecycle - Discover the two-phase (Validation and Execution) process for native account abstraction (TxType 113) on zkSync. You'll understand the vital roles of the Bootloader, `NonceHolder`, and the key `IAccount` methods `validateTransaction` and `executeTransaction`. Duration: 7min

24. zkSync Accounts Recap

A foundational guide to zkSync Era's Native Account Abstraction - Discover how smart contracts become primary accounts through zkSync Era's native AA and Type 113 transactions. Learn the roles of the Bootloader, NonceHolder, the transaction lifecycle, and how gas fees are managed. Duration: 3min

25. Quiz 25 Quiz

Questions: 6

26. zkSync Transaction Simulations

A practical guide to Building a Minimal Account Abstraction Contract on zkSync Era: System Calls and Simulations - Construct `ZkMinimalAccount.sol` on zkSync Era, implementing the `validateTransaction` logic for nonce increments and signature checks. Navigate zkSync's unique "System Contract Calls" and "Simulations" using `SystemContractsCaller` and the `--system-mode` flag to manage nonces via `NonceHolder`. Duration: 14min

27. Validate Transaction zkSync

A comprehensive guide to Deep Dive: The `validateTransaction` Function in `ZkMinimalAccount.sol` - Learn the intricacies of zkSync Era's `validateTransaction`, covering nonce management, fee validation, and signature verification. Understand its role in account abstraction, including bootloader access control and magic return values. Duration: 12min

28. Execute Function zkSync

A practical examination to Deep Dive: The `executeTransaction` Function in zkSync Smart Accounts - Explore the `executeTransaction` function's role in zkSync smart accounts, covering how it handles validated transactions by extracting parameters and ensuring type safety. You'll implement calls to system contracts using `SystemContractsCaller`, external calls via assembly, and secure the function with access control modifiers. Duration: 9min

29. Pay For Transaction zkSync

A vital lesson to Implementing Fee Payment in zkSync Native Account Abstraction - Implement the `payForTransaction` function, empowering your zkSync native account to manage its own transaction fees. You'll also explore `prepareForPaymaster`, zkSync's distinct pre-execution payment mechanism, and the `payToTheBootloader` helper. Duration: 3min

30. Execute Transaction From Outside

A refactoring masterclass for Implementing External Transaction Execution in Your zkSync AA Contract - Discover how to enable third-party transaction relay and gas payment by adding `executeTransactionFromOutside` to your zkSync AA contract. This lesson thoroughly details refactoring common validation and execution logic into internal helper functions for cleaner, more reusable code. Duration: 8min

31. zkSync Tests

A foundational guide to Setting Up Your zkSync AA Test Environment with Foundry - Learn to establish your Foundry project for zkSync native Account Abstraction tests, including directory structure, initial test files, and boilerplate for `ZkMinimalAccount`. This lesson also contrasts zkSync's native AA mechanics with Ethereum's ERC-4337. Duration: 6min

32. Transaction Struct

A developer's deep-dive to zkSync Transaction Structs for Smart Account Foundry Tests - Explore building the zkSync `Transaction` struct with a helper function in Foundry, vital for smart contract account testing. Master its fields, address casting, nonce handling, and execute owner-initiated transactions via `executeTransaction`. Duration: 9min

33. Via Ir

A crucial deep-dive to Mastering Solidity's "Stack Too Deep" Error via Foundry's IR Pipeline - Learn why the "stack too deep" error plagues complex Solidity contracts, especially with zkSync, and how to resolve it by enabling the via-IR compiler option in your `foundry.toml`. This lesson details the fix and applies it to a zkSync account abstraction test. Duration: 2min

34. Validate Transaction Test

An essential guide to Validating zkSync AA Transactions in Foundry - Master testing the `validateTransaction` function for zkSync Account Abstraction contracts, focusing on signature verification and the `ACCOUNT_VALIDATION_SUCCESS_MAGIC` return. You'll configure Foundry with `--zksync` and `--system-mode`, use `vm.prank` for Bootloader simulation, and `vm.sign` for test signatures. Duration: 14min

35. Clean Up zkSync

A comprehensive guide to Mastering zkSync Account Abstraction: Testing and Lifecycle Deep Dive - Consolidate your understanding by testing core zkSync AA functions like `validateTransaction` and `executeTransaction`. Explore the detailed zkSync transaction lifecycle and master Foundry test execution using zkSync-specific flags for accurate simulation. Duration: 3min

36. Testnet zkSync Demo

An essential guide to Deploying and Interacting with Account Abstraction on zkSync - Deploy your first Account Abstraction contract on zkSync using Hardhat and initiate transactions as the contract itself. Learn vital smart contract adjustments for correct EIP-712 signature validation and secure transaction execution via magic value checks. Duration: 5min

37. Recap End

An enlightening exploration to Understanding Account Abstraction: A Comprehensive Guide - Uncover the power of Account Abstraction, transforming user accounts into programmable smart contracts for better UX and security. Compare the ERC-4337 standard on EVM chains with native AA solutions like zkSync, detailing their distinct workflows and components. Duration: 8min

38. Quiz 39 Quiz

Questions: 11

Section 8: DAOs

Duration: 1h 19min

Section 9: Security

Duration: 1h 10min