In the first article of this series we've peeked into the assembly code of a simple Solidity contract:
https://gist.github.com/6b1a4aa90daaf9b44e4c88257abd583c
This contract boils down to an invocation of the sstore instruction:
https://gist.github.com/3fe5c45b233073577674479b9d397eb5
- The EVM stores the value
0x1in the storage position0x0. - Each storage position can store exactly 32 bytes (or 256 bits).
(If this seems unfamiliar, I recommend reading: Diving Into The Ethereum VM Part 1 - Assembly & Bytecode)
In this article we'll start to look into how Solidity uses chunks of 32 bytes to represent more complex data types like structs and arrays.
In a typical programming language it's not terribly useful to understand how data types are represented at such a low-level. In Solidity (or any EVM language) this knowledge is crucial because storage access is super expensive:
sstorecosts 20000 gas, or ~5000x more expensive than a basic arithmetic instruction.sloadcosts 5000 gas, or ~1600x more expensive than a basic arithmetic instruction.
And by "cost", we are talking about real money here, not just milliseconds of performance. The cost of running & using your contract is likely to be dominated by sstore and sload!
[insert turing machine image]
It takes two essential ingredients to build an Universal Computation Machine:
- A way to loop, either jump or recursion.
- An infinite amount of memory.
The EVM assembly code has jump, and the EVM storage provides the infinite memory. That's enough for EVERYTHING, including simulating a world that also runs a version of Ethereum, which is itself simulating a world that runs Ethereum that is...
The EVM storage for a contract is like an infinite ticker tape, and each slot of the tape holds 32 bytes. Like this:
https://gist.github.com/13e094c5d6dc48cb22c5950304b73e27
We'll see how data lives on the infinite tape.
The length of the tape is 2^256, or ~10^77 storage slots per contract. The number of particles of the observable universe is 10^80. About 1000 contracts would be enough to hold all those protons, neutrons, and electrons. Don't believe the marketing hype, as it is a lot shorter than infinity.
The storage is initially blank, defaulting to zero. It doesn't cost you anything have an infinite tape.
Let's look at a simple contract to illustrate the zero-value behaviour:
https://gist.github.com/10ad3af2112282b622ab2e1142458b45
The layout in storage is simple.
- The variable
ain position0x0 - The variable
bin position0x1 - and so on...
The key question: if we only use f, how much do we pay for a, b, c, d, e?
Let's compile and see:
https://gist.github.com/918d2bdfc18781331abaf52da099ffad
The assembly:
https://gist.github.com/ab0fc343282825748c8d6c1b00d80308
So a storage variable declaration doesn't cost anything, as there's no initialization necessary. Solidity reserves a position for that store variable, and you pay only when you store something in it.
In this case, we are only paying for storing to 0x5.
Solidity lays the state variables one after another. If we were writing assembly by hand, we could choose any storage position without having to "expand" the storage:
https://gist.github.com/02c39f3bb421a32d75ccbafa197b3d62
Not only can you write anywhere in storage, you can read from anywhere immediately. Reading from an uninitialized position simply returns 0x0.
Let's see a contract that reads from an uninitialized position:
https://gist.github.com/b82aeb96c32d7769175d4e7fdfae9d4e
Compile:
https://gist.github.com/77557ca4d2fdfe56a77eee29ff02db25
The assembly:
https://gist.github.com/7b76c655d305517abda0eeeeea4611b0
Notice that it's valid to generate code that sload from an uninitialized position.
We can be smarter than the Solidity compiler, however. Since we know that tag_2 is the constructor, and a had never been written to, we can replace the sload sequence with 0x0 to save 5000 gas.
Let's look at our first complex data type, a struct that has 6 fields:
https://gist.github.com/537332de7ee4c404403c27c66f5be01d
The layout in storage is the same as state variables:
- The field
t.ain position0x0 - The field
t.bin position0x1 - and so on...
Like before, we can write directly to t.f without paying for initialization.
Let's see compile:
https://gist.github.com/83477a86402f5bfc42ca6175fa0a34f2
And we see the exact same assembly:
https://gist.github.com/27f0395fd9a2452b280e8dcdee1886ac
Now let's define a fixed length array:
https://gist.github.com/d1ed8dcf756b5c4cdf5741c5679573af
Since the compiler knows exactly how many uint256 (32 bytes) there are, it can simply lay out the elements of the array in storage one after another, just as it did for store variables and structs.
In this contract, we are again storing to the position 0x5.
Compile:
https://gist.github.com/e4e1d5b181ef19bd5f9ed19ffcf10c02
The assembly:
https://gist.github.com/41b13175b99bf13b0ea5c1c279c5c88a
OK, the assembly is slight longer. But if you squint a little, you'd see that it's actually the same. Let's optimize this further by hand:
https://gist.github.com/32f5ecfab4d499b896619ca7575f00ef
Removing the tags and spurious instructions, we arrive at the same bytecode sequence again:
https://gist.github.com/5b93209e4602c4d04a2aa1d1d9f96a7e
We've seen that fixed-length arrays has the same storage layout as struct and state variables, but the generated assembly code is different. The reason is that Solidity generates bound-checking for array access.
Let's compile the array contract again, turning off the optimizations this time:
https://gist.github.com/7fc1f13521af2953b4104813795f2e08
The assembly commented, printing the machine state after each instruction:
https://gist.github.com/73e2c53aab430b3b9f377746ca3e7ce0
We see the the bound-checking code now. Notice that the compiler optimized some of this stuff, but not perfectly.
Later in this article we will to see how array bound-checking interferes with compiler optimization, making fixed-length arrays much less efficient than store variables or structs.
Storage is expensive (yayaya I've said it a million times). One key optimization is to pack as much data into one 32 bytes slot as possible.
Consider a contract that has four store variables, 64 bits each, adding up to 256 bits (32 bytes) altogether:
https://gist.github.com/1964b44296471277dca65b9473e1f414
We'd expect (hope) that the compiler use one sstore to store these in the same slot.
Compile:
https://gist.github.com/3ec5443ca620de041451fe4c5f47cd6b
The assembly:
https://gist.github.com/fc4236687c6a1165aca14527cf401d50
A lot of bit-shuffling that I can't decipher, and I don't care. The key thing to notice is that there's only one sstore.
Optimization success!
If only the optimizer works so well all the time. Let's break it.
https://gist.github.com/20807b367bcd5afd3dd86038e1a3fba2
Compile:
https://gist.github.com/790756aec7744b2d7e702e50365ad2dd
The assembly output is too much. We'll ignore most of the detail and focus on the structure:
https://gist.github.com/19300e3d2244a988885598d6649f893a
Notice that there are now two sstore instead of one. The Solidity compiler can optimize within a tag, but not across tags.
Calling functions could cost you far more not so much because function calls are expensive (they are only jump instructions), but because sstore optimization could fail.
To solve this problem, the Solidity compiler needs to learn how to inline functions, essentially getting the same code as not calling functions:
https://gist.github.com/05e582a6fc6592d10ee97d9e8469c4b6
If you peruse the complete assembly output, you might have noticed that the assembly code for the functions
setAB()andsetCD()is included twice, bloating the size of the code, costing you extra gas to deploy the contract. We'll talk about this later when learning about the contract lifecycle.
The optimizer doesn't optimize across tags. Consider "1+1", it can be optimized to 0x2 if under the same tag:
https://gist.github.com/71ae31ff47fc6f4775cfcfc8e7b28532
But not if the instructions are separated by tags:
https://gist.github.com/80531814d64e0fc1b3089853c520dc60
This behaviour is true as of Version 0.4.13. Could change in the future.
Now let's see another way the optimizer fails. Let's see if packing works for a fixed length array. Consider:
https://gist.github.com/284101fa53c65d618d5edab2f5274f36
Again, there are four 64 bits numbers we'd hope to pack into one 32 bytes storage slot, using exactly one sstore instruction.
The compiled assembly is too long. Let's instead just count the number of sstore and sload instructions:
https://gist.github.com/b57e044dedbdaf9edf26ce43791ced64
Oh noes. Even though this fixed-length array has exactly the same storage layout as equivalent struct or store variables, optimization fails. It now takes four pairs of sload and sstore.
A quick look at the assembly code would reveal that each array access has bound checking code, and organized under different tags. And tag boundaries break optimization.
There is a small consolation though. The 3 extra sstore instructions are cheaper than the first:
sstorecosts 20000 gas for first write to a new position.sstorecosts 5000 gas for subsequent writes to an existing position.
So this particular optimization fail costs us 35k instead of 20k, 75% extra.
If the Solidity compiler can figure out the size of a data type, it simply lays them out one after another in storage. And if possible, the compiler packs the data tightly in chunks of 32 bytes.
To summarize the packing behaviour we've seen so far:
- Store variables: yes
- Struct fields: yes
- Fixed-length arrays: no. In theory, yes.
Because storage access costs so much, you should think of the store variables as your database schema. When writing contracts, it could be useful to do small experiments, and examine the assembly to find out if the compiler is optimizing properly.
We can be sure that the Solidity compiler will improve in the future. For now, unfortunately, we can't trust its optimizer blindly.
It pays, literally, to understand your store variables.
In this article series about the EVM I will write about:
- Introduction to the EVM assembly code.
- How fixed-length data types are represented.
- How dynamic data types are represented.
- What is going on when a new contract is created.
- What is going on when a method is called.
- How the ABI bridges different EVM languages.
If you’d like to learn more about EVM, subscribe to my weekly tutorial: