From 7a12a9650196d3c1292674052009913d3b9cd695 Mon Sep 17 00:00:00 2001
From: LHerskind <16536249+LHerskind@users.noreply.github.com>
Date: Mon, 22 Sep 2025 08:46:44 +0000
Subject: [PATCH 1/2] chore: add comment to addRollup

---
 l1-contracts/src/governance/GSE.sol | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/l1-contracts/src/governance/GSE.sol b/l1-contracts/src/governance/GSE.sol
index f190c172e569..84b6380af0f8 100644
--- a/l1-contracts/src/governance/GSE.sol
+++ b/l1-contracts/src/governance/GSE.sol
@@ -250,6 +250,9 @@ contract GSECore is IGSECore, Ownable {
    * simply add a new rollup and the bonus instance mechanism ensures a smooth transition by allowing the new rollup
    * to immediately inherit attesters.
    *
+   * @dev Beware that multiple calls to `addRollup` at the same `block.timestamp` will override each other and only
+   * the last will be in the `rollups`.
+   *
    * @param _rollup - The address of the rollup to add
    */
   function addRollup(address _rollup) external override(IGSECore) onlyOwner {

From 46e3dd7517ddfcff60b172a3bf2cbd09d62bfef2 Mon Sep 17 00:00:00 2001
From: Lasse Herskind <16536249+LHerskind@users.noreply.github.com>
Date: Thu, 25 Sep 2025 10:05:46 +0200
Subject: [PATCH 2/2] chore: update gse deposit natspec (#17247)

Please read [contributing guidelines](CONTRIBUTING.md) and remove this
line.

For audit-related pull requests, please use the [audit PR
template](?expand=1&template=audit.md).
---
 l1-contracts/src/governance/GSE.sol           | 21 +++++++++++--------
 .../src/governance/proposer/EmpireBase.sol    |  2 ++
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/l1-contracts/src/governance/GSE.sol b/l1-contracts/src/governance/GSE.sol
index 84b6380af0f8..c67141f82197 100644
--- a/l1-contracts/src/governance/GSE.sol
+++ b/l1-contracts/src/governance/GSE.sol
@@ -271,26 +271,29 @@ contract GSECore is IGSECore, Ownable {
    *
    * @dev if _moveWithLatestRollup is true, then msg.sender must be the latest rollup.
    *
-   * @dev The same attester may deposit on multiple *instances*, so long as
-   * the latest-rollup-instance-attesters-form-set invariant described above BONUS_INSTANCE_ADDRESS holds.
+   * @dev An attester configuration is registered globally to avoid BLS troubles when moving stake.
    *
-   * E.g. Suppose the registered rollups are A, then B, then C, so C's effective attesters are
+   * Suppose the registered rollups are A, then B, then C, so C's effective attesters are
    * those associated with C and the bonus address.
    *
-   * Alice may come along now and deposit on A, and B, with _moveWithLatestRollup=false in both cases.
+   * Alice may come along now and deposit on A or B, with _moveWithLatestRollup=false in either case.
    *
    * For depositing into C, she can deposit *either* with _moveWithLatestRollup = true OR false.
    * If she deposits with _moveWithLatestRollup = false, then she is associated with C's address.
    * If she deposits with _moveWithLatestRollup = true, then she is associated with the bonus address.
    *
    * Suppose she deposits with _moveWithLatestRollup = true, and a new rollup D is added to the rollups.
-   *
-   * Now she cannot deposit through D AT ALL, since she is already in D's effective attesters.
-   * But she CAN go back and deposit directly into C, with _moveWithLatestRollup = false.
+   * Then her stake moves to D, and she is in the effective attesters of D.
    *
    * @param _attester     - The attester address on behalf of which the deposit is made.
-   * @param _withdrawer   - Address which can initiate a withdraw for the `_attester`
-   * @param _moveWithLatestRollup  - Whether to deposit into the specific instance, or the bonus instance
+   * @param _withdrawer   - Address which the user wish to use to initiate a withdraw for the `_attester` and
+   *                        to update delegation with. The withdrawals are enforced by the rollup to which it is
+   *                        controlled, so it is practically a value for the rollup to use, meaning dishonest rollup
+   *                        can reject withdrawal attempts.
+   * @param _publicKeyInG1 - BLS public key for the attester in G1
+   * @param _publicKeyInG2 - BLS public key for the attester in G2
+   * @param _proofOfPossession - A proof of possessions for the private key corresponding _publicKey in G1 and G2
+   * @param _moveWithLatestRollup - Whether to deposit into the specific instance, or the bonus instance
    */
   function deposit(
     address _attester,
diff --git a/l1-contracts/src/governance/proposer/EmpireBase.sol b/l1-contracts/src/governance/proposer/EmpireBase.sol
index 01231241e2de..4ab901ce0a77 100644
--- a/l1-contracts/src/governance/proposer/EmpireBase.sol
+++ b/l1-contracts/src/governance/proposer/EmpireBase.sol
@@ -80,6 +80,8 @@ struct CompressedRoundAccounting {
  * - QUORUM_SIZE: Minimum signals needed for submission
  * - ROUND_SIZE: Slots per round
  * - Constraint: QUORUM_SIZE > ROUND_SIZE/2 and QUORUM_SIZE ≤ ROUND_SIZE
+ * Note that it it possible to have QUORUM_SIZE = 1 for ROUND_SIZE = 1, which effectively give all the
+ * power to the first signal.
  *
  * @dev SIGNALING METHODS:
  * 1. Direct signal: Current signaler calls `signal()`