Skip to content

[pallet-revive] small improvements #10922

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
0xRVE wants to merge 8 commits into
base: master
Choose a base branch
from
Open

[pallet-revive] small improvements #10922

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
612b14d
added debug_assert! in evm/ext_bytecode.rs
0xRVE Jan 27, 2026
04da5f5
get rid of transmute from instructions/arithmetic/i256.rs
0xRVE Jan 27, 2026
f6dd782
add calltrace for terminate
0xRVE Jan 27, 2026
717557b
add gas to terminate calltrace call
0xRVE Jan 27, 2026
abf89a1
Merge remote-tracking branch 'origin/master' into rve/improvements
0xRVE Jan 29, 2026
70df786
small improvements
0xRVE Jan 29, 2026
cb962a3
format
0xRVE Jan 29, 2026
a55bdf2
Update from github-actions[bot] running command 'prdoc --audience run…
github-actions[bot] Jan 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 12 additions & 0 deletions prdoc/pr_10922.prdoc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
title: '[pallet-revive] small improvements'
doc:
- audience: Runtime Dev
description: |-
Small safety and completeness improvements for pallet-revive:

- Add selfdestruct call tracing: Emit terminate trace after successful SELFDESTRUCT
- Add debug assertions for unsafe bytecode operations: in relative_jump, absolute_jump, and read_slice
- Remove transmute in i256 sign detection: Replace unsafe { core::mem::transmute } with explicit conditional logic for determining Sign::Zero vs Sign::Plus
crates:
- name: pallet-revive
bump: patch
25 changes: 19 additions & 6 deletions substrate/frame/revive/src/exec.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1744,25 +1744,38 @@ where
// we do this last as we cannot roll this back
transaction_meter.terminate(contract_account.clone(), refund);

Ok(())
Ok(balance)
};

// we cannot fail here as the contract that called `SELFDESTRUCT`
// is no longer on the call stack. hence we simply roll back the
// termination so that nothing happened.
with_transaction(|| -> TransactionOutcome<Result<_, DispatchError>> {
let result = with_transaction(|| -> TransactionOutcome<Result<_, DispatchError>> {
match delete_contract(&args.trie_id, &args.code_hash) {
Ok(()) => {
// TODO: emit sucicide trace
Ok(balance) => {
log::trace!(target: LOG_TARGET, "Terminated {contract_address:?}");
TransactionOutcome::Commit(Ok(()))
TransactionOutcome::Commit(Ok(balance))
},
Err(e) => {
log::debug!(target: LOG_TARGET, "Contract at {contract_address:?} failed to terminate: {e:?}");
TransactionOutcome::Rollback(Err(e))
},
}
})
});

// emit selfdestruct trace only after the transaction successfully commits
if let Ok(balance) = result {
if_tracing(|t| {
t.terminate(
contract_address,
T::AddressMapper::to_address(&args.beneficiary),
transaction_meter.eth_gas_left().unwrap_or_default().saturated_into::<u64>(),
balance,
);
});
}

result.map(|_| ())
}

/// Reference to the current (top) frame.
Expand Down
20 changes: 20 additions & 0 deletions substrate/frame/revive/src/vm/evm/ext_bytecode.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,13 +54,25 @@ impl ExtBytecode {
/// Relative jumps does not require checking for overflow.
pub fn relative_jump(&mut self, offset: isize) {
// SAFETY: The offset is validated by the caller to ensure it points within the bytecode
debug_assert!(
{
let bytes = self.base.bytes_ref();
let new_pc = self.pc().wrapping_add_signed(offset);
new_pc <= bytes.len()
},
"relative_jump would move instruction pointer out of bounds"
);
self.instruction_pointer = unsafe { self.instruction_pointer.offset(offset) };
}

/// Absolute jumps require checking for overflow and if target is a jump destination
/// from jump table.
pub fn absolute_jump(&mut self, offset: usize) {
// SAFETY: The offset is validated by the caller to ensure it points within the bytecode
debug_assert!(
offset <= self.base.bytes_ref().len(),
"absolute_jump would move instruction pointer out of bounds"
);
self.instruction_pointer = unsafe { self.base.bytes_ref().as_ptr().add(offset) };
}

Expand Down Expand Up @@ -89,6 +101,14 @@ impl ExtBytecode {
pub fn read_slice(&self, len: usize) -> &[u8] {
// SAFETY: The caller ensures that `len` bytes are available from the current instruction
// pointer position.
debug_assert!(
{
let bytes = self.base.bytes_ref();
let pc = self.pc();
pc.checked_add(len).map_or(false, |end| end <= bytes.len())
},
"read_slice would read out of bounds"
);
unsafe { core::slice::from_raw_parts(self.instruction_pointer, len) }
}
}
6 changes: 3 additions & 3 deletions substrate/frame/revive/src/vm/evm/instructions/arithmetic/i256.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,6 @@ pub enum Sign {
Minus = -1,
/// Zero value sign
Zero = 0,
#[allow(dead_code)] // "constructed" with `mem::transmute` in `i256_sign` below
/// Positive value sign
Plus = 1,
}
Expand All @@ -43,9 +42,10 @@ const FLIPH_BITMASK_U64: u64 = 0x7FFF_FFFF_FFFF_FFFF;
pub fn i256_sign(val: &U256) -> Sign {
if val.bit(255) {
Sign::Minus
} else if val.is_zero() {
Sign::Zero
} else {
// SAFETY: false == 0 == Zero, true == 1 == Plus
unsafe { core::mem::transmute::<bool, Sign>(!val.is_zero()) }
Sign::Plus
}
}

Expand Down
Loading