cmd/geth, core/state, tests: rework EIP7610 check (#34718)

This PR simplifies the implementation of EIP-7610 by eliminating the
need to check storage emptiness during contract deployment.

EIP-7610 specifies that contract creation must be rejected if the
destination account has a non-zero nonce, non-empty runtime code, or 
**non-empty storage**.

After EIP-161, all newly deployed contracts are initialized with a nonce
of one. As a result, such accounts are no longer eligible as deployment 
targets unless they are explicitly cleared.

However, prior to EIP-161, contracts were initialized with a nonce of
zero. This made it possible to end up with accounts that have:

- zero nonce
- empty runtime code
- non-empty storage (created during constructor execution)
- non-zero balance

These edge-case accounts complicate the storage emptiness check.

In practice, contract addresses are derived using one of the following
formulas:
- `Keccak256(rlp({sender, nonce}))[12:]`
- `Keccak256([]byte{0xff}, sender, salt[:], initHash)[12:]`

As such, an existing address is not selected as a deployment target
unless a collision occurs, which is extremely unlikely.

---

Previously, verifying storage emptiness relied on GetStorageRoot.
However, with the transition to the block-based access list (BAL), 
the storage root is no longer available, as computing it would require 
reconstructing the full storage trie from all mutations of preceding 
transactions.

To address this, this PR introduces a simplified approach: it hardcodes
the set of known accounts that have zero nonce, empty runtime code, 
but non-empty storage and non-zero balance. During contract deployment, 
if the destination address belongs to this set, the deployment is
rejected.

This check is applied retroactively back to genesis. Since no address
collision events have occurred in Ethereum’s history, this change does
not
alter existing behavior. Instead, it serves as a safeguard for future
state
transitions.

cmd/geth/snapshot.go

@@ -18,15 +18,18 @@ package main
 
 import (
 	"bytes"
+	"encoding/hex"
 	"encoding/json"
 	"errors"
 	"fmt"
 	"os"
 	"slices"
+	"sort"
 	"time"
 
 	"github.com/ethereum/go-ethereum/cmd/utils"
 	"github.com/ethereum/go-ethereum/common"
+	"github.com/ethereum/go-ethereum/core"
 	"github.com/ethereum/go-ethereum/core/rawdb"
 	"github.com/ethereum/go-ethereum/core/state"
 	"github.com/ethereum/go-ethereum/core/state/pruner"
@@ -168,6 +171,22 @@ block is used.
 				Description: `
 The export-preimages command exports hash preimages to a flat file, in exactly
 the expected order for the overlay tree migration.
+`,
+			},
+			{
+				Name:    "list-eip-7610-accounts",
+				Aliases: []string{"eip7610"},
+				Usage:   "list EIP7610 eligible accounts",
+				Action:  listEIP7610EligibleAccounts,
+				Flags:   slices.Concat(utils.NetworkFlags, utils.DatabaseFlags),
+				Description: `
+geth snapshot list-eip-7610-accounts
+traverses the post–EIP-161 state and returns all accounts that are eligible
+under EIP-7610: accounts with zero nonce, empty runtime code, and non-empty
+storage. The traversal will be aborted immediately if the state is prior to
+EIP-161.
+
+The exported accounts are identified by their address.
 `,
 			},
 		},
@@ -801,3 +820,92 @@ func checkAccount(ctx *cli.Context) error {
 	log.Info("Checked the snapshot journalled storage", "time", common.PrettyDuration(time.Since(start)))
 	return nil
 }
+
+// listEIP7610EligibleAccounts traverses the post–EIP-161 state and returns all
+// accounts that are eligible under EIP-7610: accounts with zero nonce, empty
+// runtime code, and non-empty storage.
+//
+// Such accounts could only have been created before EIP-161, since after that
+// all newly created contracts are initialized with a nonce of one.
+//
+// This helper should be generally applicable to all networks, including the
+// Ethereum mainnet. For most networks where EIP-161 was enabled from genesis,
+// the resulting set is expected to be empty. Otherwise, network operators are
+// responsible for generating the eligible account set themselves.
+//
+// Notably, the exported accounts are identified by their address.
+func listEIP7610EligibleAccounts(ctx *cli.Context) error {
+	stack, _ := makeConfigNode(ctx)
+	defer stack.Close()
+
+	chaindb := utils.MakeChainDatabase(ctx, stack, true)
+	defer chaindb.Close()
+
+	headBlock := rawdb.ReadHeadBlock(chaindb)
+	if headBlock == nil {
+		log.Error("Failed to load head block")
+		return nil
+	}
+	config, _, err := core.LoadChainConfig(chaindb, utils.MakeGenesis(ctx))
+	if err != nil {
+		log.Error("Failed to load chain config", "err", err)
+		return err
+	}
+	if !config.IsEIP158(headBlock.Number()) {
+		log.Info("Local head is prior to EIP-161", "head", headBlock.Number(), "eip-161", *config.EIP158Block)
+		return nil
+	}
+	triedb := utils.MakeTrieDatabase(ctx, stack, chaindb, false, true, false)
+	defer triedb.Close()
+
+	if triedb.Scheme() != rawdb.PathScheme {
+		log.Error("Hash scheme is not supported")
+		return nil
+	}
+	iter, err := triedb.AccountIterator(headBlock.Root(), common.Hash{})
+	if err != nil {
+		log.Error("Failed to get account iterator", "err", err)
+		return err
+	}
+	var (
+		start    = time.Now()
+		accounts []common.Address
+	)
+	for iter.Next() {
+		blob := iter.Account()
+		if blob == nil {
+			log.Error("Failed to get account blob")
+			return nil
+		}
+		var account types.SlimAccount
+		if err := rlp.DecodeBytes(blob, &account); err != nil {
+			log.Error("Failed to decode", "err", err)
+			return err
+		}
+		// EIP-7610 account eligibility:
+		// - account.nonce == 0
+		// - account.runtime_code == empty
+		// - account.storage != empty
+		if len(account.CodeHash) == 0 && account.Nonce == 0 && len(account.Root) != 0 {
+			preimage := rawdb.ReadPreimage(chaindb, iter.Hash())
+			if preimage == nil {
+				log.Error("Failed to read preimage", "hash", iter.Hash().Hex())
+				return nil
+			}
+			accounts = append(accounts, common.BytesToAddress(preimage))
+		}
+	}
+	if len(accounts) == 0 {
+		log.Info("Traversed state", "eligible", len(accounts), "elapsed", common.PrettyDuration(time.Since(start)))
+	} else {
+		sort.Slice(accounts, func(i, j int) bool {
+			return accounts[i].Cmp(accounts[j]) < 0
+		})
+		buf := make([]byte, len(accounts)*common.AddressLength)
+		for i, h := range accounts {
+			copy(buf[i*common.AddressLength:], h[:])
+		}
+		log.Info("Traversed state", "eligible", len(accounts), "elapsed", common.PrettyDuration(time.Since(start)), "output", hex.EncodeToString(buf))
+	}
+	return nil
+}

core/state/statedb.go

@@ -338,6 +338,9 @@ func (s *StateDB) GetNonce(addr common.Address) uint64 {
 
 // GetStorageRoot retrieves the storage root from the given address or empty
 // if object not found.
+//
+// Note: the storage root returned corresponds to the trie since last Intermediate
+// operation, some recent in-memory changes are excluded.
 func (s *StateDB) GetStorageRoot(addr common.Address) common.Hash {
 	stateObject := s.getStateObject(addr)
 	if stateObject != nil {

core/state/statedb_hooked.go

@@ -98,10 +98,6 @@ func (s *hookedStateDB) GetState(addr common.Address, hash common.Hash) common.H
 	return s.inner.GetState(addr, hash)
 }
 
-func (s *hookedStateDB) GetStorageRoot(addr common.Address) common.Hash {
-	return s.inner.GetStorageRoot(addr)
-}
-
 func (s *hookedStateDB) GetTransientState(addr common.Address, key common.Hash) common.Hash {
 	return s.inner.GetTransientState(addr, key)
 }

core/state/statedb_test.go

@@ -247,16 +247,16 @@ func TestCopyWithDirtyJournal(t *testing.T) {
 
 	orig.Finalise(true)
 	for i := byte(0); i < 255; i++ {
-		root := orig.GetStorageRoot(common.BytesToAddress([]byte{i}))
-		if root != (common.Hash{}) {
-			t.Errorf("Unexpected storage root %x", root)
+		balance := orig.GetBalance(common.BytesToAddress([]byte{i}))
+		if !balance.IsZero() {
+			t.Errorf("Unexpected balance %x", root)
 		}
 	}
 	cpy.Finalise(true)
 	for i := byte(0); i < 255; i++ {
-		root := cpy.GetStorageRoot(common.BytesToAddress([]byte{i}))
-		if root != (common.Hash{}) {
-			t.Errorf("Unexpected storage root %x", root)
+		balance := cpy.GetBalance(common.BytesToAddress([]byte{i}))
+		if !balance.IsZero() {
+			t.Errorf("Unexpected balance %x", root)
 		}
 	}
 	if cpy.IntermediateRoot(true) != orig.IntermediateRoot(true) {
@@ -394,9 +394,7 @@ func newTestAction(addr common.Address, r *rand.Rand) testAction {
 				}
 				contractHash := s.GetCodeHash(addr)
 				emptyCode := contractHash == (common.Hash{}) || contractHash == types.EmptyCodeHash
-				storageRoot := s.GetStorageRoot(addr)
-				emptyStorage := storageRoot == (common.Hash{}) || storageRoot == types.EmptyRootHash
-				if s.GetNonce(addr) == 0 && emptyCode && emptyStorage {
+				if s.GetNonce(addr) == 0 && emptyCode {
 					s.CreateContract(addr)
 					// We also set some code here, to prevent the
 					// CreateContract action from being performed twice in a row,

core/state/trie_prefetcher_test.go

@@ -86,18 +86,17 @@ func TestVerklePrefetcher(t *testing.T) {
 	root, _ := state.Commit(0, true, false)
 
 	state, _ = New(root, sdb)
-	sRoot := state.GetStorageRoot(addr)
 	fetcher := newTriePrefetcher(sdb, root, "", false)
 
 	// Read account
 	fetcher.prefetch(common.Hash{}, root, common.Address{}, []common.Address{addr}, nil, false)
 
 	// Read storage slot
-	fetcher.prefetch(crypto.Keccak256Hash(addr.Bytes()), sRoot, addr, nil, []common.Hash{skey}, false)
+	fetcher.prefetch(crypto.Keccak256Hash(addr.Bytes()), common.Hash{}, addr, nil, []common.Hash{skey}, false)
 
 	fetcher.terminate(false)
 	accountTrie := fetcher.trie(common.Hash{}, root)
-	storageTrie := fetcher.trie(crypto.Keccak256Hash(addr.Bytes()), sRoot)
+	storageTrie := fetcher.trie(crypto.Keccak256Hash(addr.Bytes()), common.Hash{})
 
 	rootA := accountTrie.Hash()
 	rootB := storageTrie.Hash()

core/vm/eip7610.go

@@ -0,0 +1,98 @@
+// Copyright 2026 The go-ethereum Authors
+// This file is part of the go-ethereum library.
+//
+// The go-ethereum library is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Lesser General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// The go-ethereum library is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+// GNU Lesser General Public License for more details.
+//
+// You should have received a copy of the GNU Lesser General Public License
+// along with the go-ethereum library. If not, see <http://www.gnu.org/licenses/>.
+
+package vm
+
+import (
+	"math/big"
+
+	"github.com/ethereum/go-ethereum/common"
+	"github.com/ethereum/go-ethereum/params"
+)
+
+// eip7610Accounts lists the addresses eligible for contract deployment
+// rejection under EIP-7610, keyed by chain ID. Only networks that adopted
+// EIP-158 after genesis need an entry; all others have no pre-existing
+// address collisions to guard against.
+var eip7610Accounts = map[uint64][]common.Address{
+	params.MainnetChainConfig.ChainID.Uint64(): {
+		common.HexToAddress("0x02820E4bEE488C40f7455fDCa53125565148708F"),
+		common.HexToAddress("0x14725085d004f1b10Ee07234A4ab28c5Ad2a7b9E"),
+		common.HexToAddress("0x19272418753B90D9a3E3Efc8430b1612c55fcB3A"),
+		common.HexToAddress("0x2c081Ed1949D7Dd9447F9d96e509befE576D4461"),
+		common.HexToAddress("0x3311c08066580cb906a7287b6786E504C2EBD09f"),
+		common.HexToAddress("0x361d7a60b43587c7f6bbA4f9fD9642747F65210A"),
+		common.HexToAddress("0x40490C9c468622d5c89646D6F3097F8Eaf80c411"),
+		common.HexToAddress("0x4d149EB99BDEEFC1f858f8fd22289C6beAE99f2c"),
+		common.HexToAddress("0x5071cb62aA170b7f66b26cae8004d90E6078Bb1E"),
+		common.HexToAddress("0x50b1497068bAE652Df3562EB8Ea7677ff84477FA"),
+		common.HexToAddress("0x5983C6aC846DcF85fbBC4303F43eb91C379F79ae"),
+		common.HexToAddress("0x59EC0410867828E3b8c23Dd8A29d9796ef523b17"),
+		common.HexToAddress("0x5cC182faBFb81A056B6080d4200BC5150673D06f"),
+		common.HexToAddress("0x6f156dbf8Ed30e53F7C9Df73144E69f65cBB7E94"),
+		common.HexToAddress("0x7D6ae067De8d44Ae1A08750e7D626D61A623C44A"),
+		common.HexToAddress("0x8398fF6c618e9515468c1c4b198d53666CBe8462"),
+		common.HexToAddress("0xA21B22389bfC1cd6Bc7BA19A4Fc96aDC3D0FE074"),
+		common.HexToAddress("0xaDD92e0650457C5Db0c4c08cbf7cA580175d33d2"),
+		common.HexToAddress("0xAE3703584494Ade958AD27EC2d289b7a67c19E90"),
+		common.HexToAddress("0xb619f45637C39Ca49A41ac64c11637A0A194455E"),
+		common.HexToAddress("0xD8253352f6044cFE55bcC0748C3FA37b7dF81F98"),
+		common.HexToAddress("0xDB7C577B93Baeb56dAB50aF4D6f86F99A06B96a2"),
+		common.HexToAddress("0xdE425ad4B8d2d9E0E12F65CBcD6D55F447B44083"),
+		common.HexToAddress("0xe62dc49C92fA799033644d2A9aFD7e3BAbE5A80a"),
+		common.HexToAddress("0xF468BcBC4a0BFDB06336E773382C5202E674db71"),
+		common.HexToAddress("0xF4a835ec1364809003dE3925685F24cD360bdffe"),
+		common.HexToAddress("0xFc4465F84B29a1F8794Dc753F41BeF1F4b025ED2"),
+		common.HexToAddress("0xfeE7707fa4b8C0A923A0E40399Db3e7Ce26069C6"),
+	},
+}
+
+// eip7610AccountSets is the membership-lookup form of eip7610Accounts,
+// built once at init for O(1) containment checks.
+var eip7610AccountSets = func() map[uint64]map[common.Address]struct{} {
+	sets := make(map[uint64]map[common.Address]struct{}, len(eip7610Accounts))
+	for chainID, addrs := range eip7610Accounts {
+		set := make(map[common.Address]struct{}, len(addrs))
+		for _, a := range addrs {
+			set[a] = struct{}{}
+		}
+		sets[chainID] = set
+	}
+	return sets
+}()
+
+// isEIP7610RejectedAccount reports whether the account identified by the
+// address is eligible for contract deployment rejection due to having
+// non-empty storage.
+//
+// Note that, historically, there has been no case where a contract deployment
+// targets an already existing account in Ethereum. This situation would only
+// occur in the event of an address collision, which is extremely unlikely.
+//
+// This check is skipped for blocks prior to EIP-158, serving as a safeguard
+// against potential address collisions in the future. Chains that are not
+// registered in eip7610Accounts are assumed to have no rejected accounts,
+// and false is returned for them.
+func isEIP7610RejectedAccount(chainID *big.Int, addr common.Address, isEIP158 bool) bool {
+	// Short circuit for blocks prior to EIP-158.
+	if !isEIP158 {
+		return false
+	}
+	// Unknown chains fall through as a nil set; the second lookup then
+	// returns the zero value (false), treating the chain as empty.
+	_, exist := eip7610AccountSets[chainID.Uint64()][addr]
+	return exist
+}

core/vm/eip7610_test.go

@@ -0,0 +1,62 @@
+// Copyright 2026 The go-ethereum Authors
+// This file is part of the go-ethereum library.
+//
+// The go-ethereum library is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Lesser General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// The go-ethereum library is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+// GNU Lesser General Public License for more details.
+//
+// You should have received a copy of the GNU Lesser General Public License
+// along with the go-ethereum library. If not, see <http://www.gnu.org/licenses/>.
+
+package vm
+
+import (
+	"fmt"
+	"slices"
+
+	"github.com/ethereum/go-ethereum/common"
+	"github.com/ethereum/go-ethereum/params"
+)
+
+func Example_mainnetEIP7610Accounts() {
+	list := slices.Clone(eip7610Accounts[params.MainnetChainConfig.ChainID.Uint64()])
+	slices.SortFunc(list, common.Address.Cmp)
+	for _, addr := range list {
+		fmt.Println(addr.Hex())
+	}
+	// Output:
+	// 0x02820E4bEE488C40f7455fDCa53125565148708F
+	// 0x14725085d004f1b10Ee07234A4ab28c5Ad2a7b9E
+	// 0x19272418753B90D9a3E3Efc8430b1612c55fcB3A
+	// 0x2c081Ed1949D7Dd9447F9d96e509befE576D4461
+	// 0x3311c08066580cb906a7287b6786E504C2EBD09f
+	// 0x361d7a60b43587c7f6bbA4f9fD9642747F65210A
+	// 0x40490C9c468622d5c89646D6F3097F8Eaf80c411
+	// 0x4d149EB99BDEEFC1f858f8fd22289C6beAE99f2c
+	// 0x5071cb62aA170b7f66b26cae8004d90E6078Bb1E
+	// 0x50b1497068bAE652Df3562EB8Ea7677ff84477FA
+	// 0x5983C6aC846DcF85fbBC4303F43eb91C379F79ae
+	// 0x59EC0410867828E3b8c23Dd8A29d9796ef523b17
+	// 0x5cC182faBFb81A056B6080d4200BC5150673D06f
+	// 0x6f156dbf8Ed30e53F7C9Df73144E69f65cBB7E94
+	// 0x7D6ae067De8d44Ae1A08750e7D626D61A623C44A
+	// 0x8398fF6c618e9515468c1c4b198d53666CBe8462
+	// 0xA21B22389bfC1cd6Bc7BA19A4Fc96aDC3D0FE074
+	// 0xaDD92e0650457C5Db0c4c08cbf7cA580175d33d2
+	// 0xAE3703584494Ade958AD27EC2d289b7a67c19E90
+	// 0xb619f45637C39Ca49A41ac64c11637A0A194455E
+	// 0xD8253352f6044cFE55bcC0748C3FA37b7dF81F98
+	// 0xDB7C577B93Baeb56dAB50aF4D6f86F99A06B96a2
+	// 0xdE425ad4B8d2d9E0E12F65CBcD6D55F447B44083
+	// 0xe62dc49C92fA799033644d2A9aFD7e3BAbE5A80a
+	// 0xF468BcBC4a0BFDB06336E773382C5202E674db71
+	// 0xF4a835ec1364809003dE3925685F24cD360bdffe
+	// 0xFc4465F84B29a1F8794Dc753F41BeF1F4b025ED2
+	// 0xfeE7707fa4b8C0A923A0E40399Db3e7Ce26069C6
+}

core/vm/evm.go

@@ -532,10 +532,9 @@ func (evm *EVM) create(caller common.Address, code []byte, gas uint64, value *ui
 	// - the code is non-empty
 	// - the storage is non-empty
 	contractHash := evm.StateDB.GetCodeHash(address)
-	storageRoot := evm.StateDB.GetStorageRoot(address)
 	if evm.StateDB.GetNonce(address) != 0 ||
 		(contractHash != (common.Hash{}) && contractHash != types.EmptyCodeHash) || // non-empty code
-		(storageRoot != (common.Hash{}) && storageRoot != types.EmptyRootHash) { // non-empty storage
+		isEIP7610RejectedAccount(evm.ChainConfig().ChainID, address, evm.chainRules.IsEIP158) {
 		if evm.Config.Tracer != nil && evm.Config.Tracer.OnGasChange != nil {
 			evm.Config.Tracer.OnGasChange(gas, 0, tracing.GasChangeCallFailedExecution)
 		}

core/vm/interface.go

@@ -52,7 +52,6 @@ type StateDB interface {
 	GetStateAndCommittedState(common.Address, common.Hash) (common.Hash, common.Hash)
 	GetState(common.Address, common.Hash) common.Hash
 	SetState(common.Address, common.Hash, common.Hash) common.Hash
-	GetStorageRoot(addr common.Address) common.Hash
 
 	GetTransientState(addr common.Address, key common.Hash) common.Hash
 	SetTransientState(addr common.Address, key, value common.Hash)

tests/block_test.go

@@ -66,6 +66,12 @@ func TestBlockchain(t *testing.T) {
 	// This directory contains no test.
 	bt.skipLoad(`.*\.meta/.*`)
 
+	// Broken tests
+	bt.skipLoad(`RevertInCreateInInit`)
+	bt.skipLoad(`InitCollisionParis`)
+	bt.skipLoad(`dynamicAccountOverwriteEmpty_Paris`)
+	bt.skipLoad(`create2collisionStorageParis`)
+
 	bt.walk(t, blockTestDir, func(t *testing.T, name string, test *BlockTest) {
 		execBlockTest(t, bt, test)
 	})
@@ -85,6 +91,12 @@ func TestExecutionSpecBlocktests(t *testing.T) {
 	bt.skipLoad(".*prague/eip7251_consolidations/test_system_contract_deployment.json")
 	bt.skipLoad(".*prague/eip7002_el_triggerable_withdrawals/test_system_contract_deployment.json")
 
+	// Broken tests
+	bt.skipLoad(`RevertInCreateInInit`)
+	bt.skipLoad(`InitCollisionParis`)
+	bt.skipLoad(`dynamicAccountOverwriteEmpty_Paris`)
+	bt.skipLoad(`create2collisionStorageParis`)
+
 	bt.walk(t, executionSpecBlockchainTestDir, func(t *testing.T, name string, test *BlockTest) {
 		execBlockTest(t, bt, test)
 	})

tests/state_test.go

@@ -57,6 +57,11 @@ func initMatcher(st *testMatcher) {
 	// Broken tests:
 	// EOF is not part of cancun
 	st.skipLoad(`^stEOF/`)
+
+	st.skipLoad(`RevertInCreateInInit`)
+	st.skipLoad(`InitCollisionParis`)
+	st.skipLoad(`dynamicAccountOverwriteEmpty_Paris`)
+	st.skipLoad(`create2collisionStorageParis`)
 }
 
 func TestState(t *testing.T) {
@@ -92,6 +97,12 @@ func TestExecutionSpecState(t *testing.T) {
 	}
 	st := new(testMatcher)
 
+	// Broken tests
+	st.skipLoad(`RevertInCreateInInit`)
+	st.skipLoad(`InitCollisionParis`)
+	st.skipLoad(`dynamicAccountOverwriteEmpty_Paris`)
+	st.skipLoad(`create2collisionStorageParis`)
+
 	st.walk(t, executionSpecStateTestDir, func(t *testing.T, name string, test *StateTest) {
 		execStateTest(t, st, test)
 	})