In the context of Account Abstraction via ERC-4337, a User Operation is a pseudo-transaction object. Unlike a traditional blockchain transaction, which is signed by an Externally Owned Account (EOA), a User Operation is a package of data that describes a desired action—such as a token transfer or a smart contract interaction—to be executed by a smart contract wallet. This structure is submitted to a dedicated mempool, where Bundlers (special network participants) collect, validate, and package them into a single on-chain transaction for execution.
LABS
Glossary
User Operation
A User Operation is a standardized data structure defined by ERC-4337 that represents a user's intent, which is packaged and executed by a network participant called a bundler.
Chainscore © 2026
definition
ERC-4337
What is a User Operation?
A User Operation is a standardized data structure that represents a user's intent to execute an action on a blockchain, serving as the fundamental transaction object within an Account Abstraction (ERC-4337) framework.
The core components of a User Operation include the sender (the smart account address), the nonce, the callData (the encoded target and function calls), the signature, and critical fields for the paymaster and bundler ecosystem like maxFeePerGas and maxPriorityFeePerGas. Crucially, it also contains a paymasterAndData field, which enables gas sponsorship and payment in ERC-20 tokens, and a signature that can be validated by custom logic within the smart account, enabling features like social recovery and multisig approvals.
This abstraction decouples transaction execution from its payment and validation. A Bundler pays the gas fees to include the operation on-chain and is reimbursed by either the sender's smart account or a Paymaster. This model enables key user experience improvements impossible with EOAs, including: - Gasless transactions (sponsored by dApps) - Session keys for automated actions - Atomic multi-operations (batch calls) - Flexible signature schemes (e.g., biometrics).
The lifecycle of a User Operation begins when a client (like a wallet) constructs and signs it, then broadcasts it to a peer-to-peer mempool. Bundlers simulate the operation's validity using the eth_call RPC method against a EntryPoint contract to ensure it will pay fees, then bundle it for on-chain execution. The EntryPoint contract acts as a singleton, orchestrating the final atomic execution, fee payment, and reimbursement, ensuring the system's security and consistency.
User Operations are foundational to achieving account abstraction without requiring consensus-layer changes to Ethereum. By standardizing intent representation, ERC-4337 and User Operations create a permissionless ecosystem for smart account innovation, allowing wallet developers to build more secure and user-friendly experiences while maintaining compatibility with Ethereum's existing infrastructure and security model.
how-it-works
ERC-4337 MECHANISM
How a User Operation Works
A User Operation is the fundamental transaction object in ERC-4337 account abstraction, representing a user's intent to be executed by a decentralized network of Bundlers.
A User Operation is a pseudo-transaction object defined by ERC-4337 that describes an action a smart contract wallet, or account, wants to perform. Unlike a traditional blockchain transaction sent directly to a mempool, a User Operation is broadcast to a peer-to-peer network where specialized nodes called Bundlers collect and submit them. The core structure includes fields for the target contract, call data, signatures, and crucially, parameters for gas payment and validation, decoupling the transaction's execution from its sponsorship.
The lifecycle begins when a user's wallet client creates and signs a User Operation. It is then sent to a network of Bundlers via a dedicated UserOperation mempool. Bundlers perform an initial simulation, called eth_estimateUserOperationGas, to verify the operation will pass on-chain validation. This simulation checks the account's signature and pays a preliminary fee, preventing spam. A Bundler that selects the operation will then package, or bundle, it into a single transaction sent to a special EntryPoint contract on the blockchain.
Upon receiving the bundle, the EntryPoint contract acts as a central orchestrator. It first calls the validateUserOp function on the user's smart account to verify the signature and pay any upfront gas. If validation passes, the EntryPoint executes the account's logic via execute. A key innovation is the paymaster model, where a third-party contract can sponsor gas fees, allowing for meta-transactions. Finally, the EntryPoint reimburses the Bundler and any paymaster, ensuring all parties are compensated for their work, completing the abstracted transaction flow.
key-features
ERC-4337
Key Features of a User Operation
A User Operation is a standardized data structure in ERC-4337 that represents a user's intent for their smart account, enabling account abstraction without core protocol changes.
01
Standardized Structure
A User Operation is a packed ABI-encoded struct containing all necessary data for a transaction, including the sender (smart account address), nonce, callData (the desired actions), and signature. This standardization allows Bundlers and Paymasters to process intents from any compliant smart account uniformly.
02
Signature Abstraction
The signature field is flexible, not limited to a single EOA's cryptographic signature. It can be:
- A traditional ECDSA signature.
- A multi-signature from a Safe.
- A signature validated by a custom verification logic in the smart account (e.g., social recovery, passkeys). This decouples transaction authorization from a specific private key.
03
Gas Management & Sponsorship
Fields like maxFeePerGas, maxPriorityFeePerGas, and preVerificationGas let users set gas parameters. Crucially, the paymasterAndData field enables gas sponsorship. A Paymaster contract can pay for the User Operation's gas fees, allowing for:
- Meta-transactions (gasless UX).
- Fee payment in ERC-20 tokens.
- Sponsored transactions for onboarding.
04
Atomic Batch Execution
The callData field can encode a series of calls to be executed atomically by the smart account. For example, a single User Operation could:
- Approve a token spend to a DEX.
- Execute a swap on that DEX.
- Deposit the received tokens into a lending protocol. All actions succeed or fail together, preventing partial execution states.
05
Verification & Execution Loop
Processing involves two distinct phases handled by the smart account:
validateUserOp: The account verifies the signature and pays the entry point for upfront gas. It can stake ETH here for reputation.- Execution: If validation passes, the Entry Point calls the account's execution function with the
callData. This separation is critical for security and preventing DoS attacks on the network.
06
Relayed by Bundlers
User Operations are not sent directly to the blockchain. They are broadcast to a peer-to-peer mempool and picked up by Bundlers. A Bundler is a special node that:
- Packages multiple User Operations into a single bundle transaction.
- Sends this bundle to the Entry Point contract on-chain.
- Acts as the transaction's
tx.origin, paying gas and earning fees via priority tips.
structure
USER OPERATION
Technical Structure & Fields
A User Operation is the fundamental data structure in ERC-4337 that represents a user's intent for execution on a blockchain, decoupling transaction logic from the traditional Externally Owned Account (EOA) model.
A User Operation is a standardized, pseudo-transaction object defined by ERC-4337 that encapsulates a user's intent for execution by a decentralized network of bundlers. Unlike a traditional transaction signed by an Externally Owned Account (EOA), a User Operation is signed by a smart contract wallet (or Account Abstraction wallet). Its core fields include the sender's address (sender), the target contract (to), calldata (data), a signature (signature), and critical parameters for gas management and paymaster sponsorship. This structure enables advanced features like gas abstraction, session keys, and batched operations.
The technical fields of a User Operation are meticulously designed for verification and execution by the EntryPoint contract. Key fields include nonce for replay protection, initCode for wallet deployment, callData for the desired actions, callGasLimit, verificationGasLimit, and preVerificationGas. The paymasterAndData field allows a paymaster to sponsor transaction fees. A bundler collects these operations, validates them against the EntryPoint, and submits them as a single bundled transaction to the underlying blockchain, abstracting gas complexities from the end-user.
This abstraction enables sophisticated transaction flows. For example, a User Operation can specify multiple calls (to and callData) to be executed atomically, sponsor gas fees via a paymaster in a stablecoin, or include signature logic for social recovery. The separation of verification (handled by the smart wallet) and execution (handled by the EntryPoint) is central to its design, allowing for arbitrary signature schemes and security models without requiring changes to the core Ethereum protocol.
ARCHITECTURAL COMPARISON
User Operation vs. Traditional Transaction
A structural comparison between the Account Abstraction's User Operation object and a standard blockchain transaction.
| Feature | Traditional Transaction (EOA) | User Operation (ERC-4337) |
|---|---|---|
Sender Entity | Externally Owned Account (EOA) | Smart Contract Wallet |
Transaction Initiator | Private Key Holder | Bundler (via EntryPoint) |
Signature Validation | Fixed (ECDSA) | Programmable (Custom Logic) |
Gas Payment | Sender's Native Token | Any Token (via Paymaster) |
Atomic Batch Execution | ||
On-Chain Sponsorship | ||
Transaction Memo Field | ||
Gas Fee Estimation | Simple (Base + Priority) | Complex (Multiple Components) |
ecosystem-usage
USER OPERATION
Ecosystem Implementation & Examples
A User Operation is the fundamental transaction object in ERC-4337 account abstraction, representing a user's intent. These examples showcase how this standard is implemented across wallets, infrastructure, and major blockchains.
03
EntryPoint Contract
The singleton, audited smart contract that serves as the central orchestrator and security anchor for the ERC-4337 system. Its core functions are:
- Validation: Calls the
validateUserOpfunction on the user's smart contract wallet to verify signatures and paymaster deposits. - Execution: If validation passes, it calls
executeon the wallet to run the intended operations. - Fee Handling: Manages the distribution of gas fees to bundlers and reimbursements to paymasters. All User Operation flows must pass through this contract.
04
Major Chain Deployments
ERC-4337 and User Operations are deployed as a standard across multiple EVM-compatible networks, enabling a consistent account abstraction experience. Key deployments include:
- Ethereum Mainnet: The primary network where the standard was first deployed.
- Polygon, Arbitrum, Optimism: Major Layer 2 scaling solutions that natively support the ERC-4337 infrastructure.
- Base, zkSync Era, Linea: Emerging L2s that have integrated the EntryPoint and supporting tools from day one.
05
Alternative Mempool (p2p)
User Operations are broadcast to a dedicated, permissionless peer-to-peer mempool separate from the traditional transaction mempool. This specialized network ensures:
- Standardized Propagation: Bundlers and clients use a defined JSON-RPC method (
eth_sendUserOperation) to submit and receive User Operations. - DoS Protection: The mempool implements rules to prevent spam, such as requiring a pre-fund for gas from the wallet or its paymaster.
- Bundler Competition: Multiple bundlers monitor this mempool, competing to include User Operations in the next bundle.
security-considerations
USER OPERATION
Security Model & Considerations
A User Operation is a pseudo-transaction object in ERC-4337 that represents a user's intent, enabling account abstraction by separating the transaction's content from its validation and execution logic.
01
Core Structure & Validation
A User Operation is a structured data packet containing fields like sender, nonce, initCode, callData, callGasLimit, verificationGasLimit, preVerificationGas, maxFeePerGas, maxPriorityFeePerGas, paymasterAndData, and signature. The EntryPoint contract validates these operations by calling the validateUserOp function on the sender's smart contract wallet, checking signatures and paying for gas.
02
Paymaster Sponsorship
The paymasterAndData field enables gas abstraction, allowing a third-party paymaster to sponsor transaction fees. This enables use cases like:
- Gasless transactions for improved UX.
- Fee payment in ERC-20 tokens.
- Sponsored sessions for dApps. Security hinges on the paymaster's validation logic, which must correctly verify the user operation to avoid subsidizing malicious actions.
03
Signature & Replay Protection
The signature field is validated by the smart account, enabling flexible authentication beyond EOA private keys. Security considerations include:
- Account-specific nonces prevent replay attacks.
- Support for multi-signature schemes and social recovery.
- Session keys for limited authority. The signature is only one part of the validation; the smart account can implement arbitrary logic, making its security critical.
04
Gas Limits & Economic Attacks
User Operations specify three gas limits: callGasLimit, verificationGasLimit, and preVerificationGas. Bundlers must carefully manage these to prevent DoS attacks where malicious users submit operations with high verification gas costs. The Paymaster is also at risk if its postOp function consumes unexpected gas, potentially making sponsorship unprofitable.
05
Bundler Incentives & Censorship
Bundlers are actors that package User Operations into Ethereum transactions. Their profit (priorityFee) is derived from the difference between the maxPriorityFeePerGas set by the user and the network's base fee. This creates a market but introduces risks:
- Censorship if bundlers exclude certain operations.
- MEV extraction opportunities by reordering ops.
- Stake requirements for bundlers to guarantee operation execution.
06
EntryPoint as a Trusted Singleton
The EntryPoint is a global, audited singleton contract that orchestrates the validation and execution of all User Operations. It represents a centralization and security focal point:
- A bug or exploit in the EntryPoint could affect all ERC-4337 accounts.
- It handles gas reimbursement and paymaster stake management.
- Users and developers must trust the canonical, community-audited deployment.
USER OPERATIONS
Common Misconceptions
User Operations are the fundamental transaction type in ERC-4337 account abstraction. This section clarifies widespread misunderstandings about their structure, security, and relationship to traditional transactions.
No, a User Operation is not a traditional EOA-signed transaction; it is a structured data packet that describes a desired action for a smart contract wallet. While a standard transaction is signed by an Externally Owned Account (EOA) and executed directly by the network, a User Operation is submitted to a separate network of bundlers and paymasters who package and relay it. The critical difference is that the validation and execution logic is decoupled and handled by the smart contract account itself, enabling features like sponsored gas, batch transactions, and social recovery.
USER OPERATION
Frequently Asked Questions
Common questions about User Operations, the fundamental transaction object in ERC-4337 account abstraction.
A User Operation is a pseudo-transaction object defined by ERC-4337 that represents a user's intent, which is bundled and executed by a separate network of actors instead of being sent directly to the blockchain. It is the core data structure for account abstraction, allowing smart contract wallets (like those built with Safe or ZeroDev) to initiate transactions. Unlike a standard Ethereum transaction, a User Operation contains fields for a sender, nonce, callData, signature, and critical parameters for the paymaster and bundler systems that facilitate its execution and payment. This separation of intent from execution enables advanced features like gas sponsorship, batched actions, and session keys.
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall