Solidity: [evmone] interpreter returns "EVMC_BAD_JUMP_DESTINATION" on contract deployment

To confirm, the same bytecode executed gives different results in evmone 0.2 and 0.3?

To confirm, the same bytecode executed gives different results in evmone 0.2 and 0.3?

That's right. The same solidity contract gives different results. I'm yet to make sure if the bytecode is identical.

0.2

• deployContract succeeds

0.3

• deployContract returns EVMC_BAD_JUMP_DESTINATION

I'm trying to figure out why. Do you have any hints? ;)

@bshastry, if that is not blocker for you, I will debug it on my own.

I'm yet to make sure if the bytecode is identical.

Yes, please confirm that.

Hey, I have taken the bytecode you attached and have run it in both evmone/master and evmone/0.2. In both cases I get EVMC_BAD_JUMP_DESTINATION exception. So bug not confirmed in evmone so far.

Hey, I have taken the bytecode you attached and have run it in both evmone/master and evmone/0.2. In both cases I get EVMC_BAD_JUMP_DESTINATION exception. So bug not confirmed in evmone so far.

Ah I see, I was just getting my setup ready to replay the same byte code on both evmone versions. It is possible that a change in the compiler caused it. Still debugging.

Here is a unit tests added to evmone: https://github.com/ethereum/evmone/pull/214
The same patch can be applied to v0.2.0. In both cases it returns EVMC_BAD_JUMP_DESTINATION.

To confirm, the same bytecode executed gives different results in evmone 0.2 and 0.3?

The same bytecode gives the same result (EVMC_BAD_JUMP_DESTINATION) for both evmone 0.2 and 0.3. So I was wrong with my initial assessment. Will edit title and description.

Will now try to execute the bytecode on evmone 0.1

Identical byte code successfully runs on evmone 0.1. So I think this may be an evmone issue that was introduced in 0.2

I've found the issue in evmone. It wrongly assumed the code is always within the 0x6000 limit, but the limit do not apply to create transactions.

If a workaround is needed, can you limit the size of the bytecode?

@chfast Ah I see. The main issue is that Fuzzing the abiv2 coder requires somewhat elaborate programs (especially when we are en/decoding multi dimensional arrays as in this issue).

My concern is that, if we limit byte code size to 0x6000, then we won't be able to thoroughly test the abiv2 coder.

@chriseth @ekpyron Do you have other opinions/suggestions?

Related https://github.com/ethereum/evmone/issues/205#issuecomment-558136843

Please try this fix: https://github.com/ethereum/evmone/pull/217.
There are some other case not related to jumpdest where evmone can fail, but it is unlikely solidity fuzzer will hit these.

@bshastry this was fixed in evmone, is there anything to discuss here?

@chfast will there be an evmone release we can use?

@chfast will there be an evmone release we can use?

I will try to make the release this week, but there is more work there needed.

Summary from the call: Update oss-fuzz docker file once the new release is made.

Thank you @chfast for the timely fixes!

The evmone 0.4.0 has been released: https://github.com/ethereum/evmone/releases/tag/v0.4.0

Updated oss-fuzz docker file (see https://github.com/google/oss-fuzz/pull/3100)

Pending: Upgrade to evmone v0.4.0 in CI docker images (see #7936 )

Fixed by #7936