// Analyze State Transition Function implementations for correctness, threading issues, non-determinism, and simplification opportunities. Use when analyzing STF code, checking threading model, finding non-determinism sources, or reviewing execution layer.
Use the Evolve execution debugger for trace recording, replay, and time-travel debugging. Use when debugging failing tests, recording execution traces, stepping through state changes, or analyzing execution flow.
Write modules for the Evolve SDK using AccountCode trait and account_impl macro. Use when creating modules, writing account code, using AccountState, storage prefixes, or developing new blockchain modules.
Create custom Evolve blockchain nodes by composing storage, STF, mempool, RPC, and gRPC components. Use when the user wants to create a new node binary, build a custom chain, compose node components, or asks about evd/testapp architecture.
Write property-based tests for Evolve SDK using proptest. Use when writing property tests, invariant testing, fuzz testing, test generators, or finding edge cases.
Use the Evolve deterministic simulator for testing with controlled time, storage, and randomness. Use when creating simulations, seed-based testing, fault injection, stress testing, or deterministic test reproduction.
Overview of Evolve SDK testing infrastructure including TestApp, SimTestApp, MockEnv, and transaction generators. Use when writing tests, setting up test harnesses, using test infrastructure, or choosing between testing approaches.
| name | stf-analysis |
| description | Analyze State Transition Function implementations for correctness, threading issues, non-determinism, and simplification opportunities. Use when analyzing STF code, checking threading model, finding non-determinism sources, or reviewing execution layer. |
Use this skill to analyze State Transition Function implementations for:
Check for unnecessary Send/Sync bounds:
# Find all Send/Sync trait bounds
grep -rn "Send + Sync\|: Send\|: Sync" crates/
# Check if bounds are actually needed by looking for:
# - spawn, thread usage
# - Arc, Mutex, RwLock patterns
# - async/await with cross-task sharing
Questions to answer:
Check for common non-determinism issues:
# HashMap iteration (non-deterministic order)
grep -rn "\.iter()\|\.into_iter()" --include="*.rs" crates/app/stf/
# Look for into_changes() and verify output is sorted or order-independent
Common sources:
Verify checkpoint/restore pattern:
// Every state-changing operation should follow this pattern:
let checkpoint = storage.checkpoint();
let result = do_operation();
if result.is_err() {
storage.restore(checkpoint);
}
Check:
Gas metering is configured via StorageGasConfig passed to the STF at construction:
use evolve_stf::{Stf, StorageGasConfig};
let gas_config = StorageGasConfig {
storage_get_charge: 10, // gas per storage read
storage_set_charge: 10, // gas per storage write
storage_remove_charge: 10, // gas per storage delete
};
let stf = Stf::new(begin_blocker, end_blocker, tx_validator, post_tx, gas_config);
Key types:
StorageGasConfig - defines gas costs for storage operationsGasCounter - tracks gas during execution (Infinite or Finite mode)ERR_OUT_OF_GAS - returned when gas limit exceededThe gas config is stored in the STF and used in do_begin_block to configure gas metering for the block. This avoids the overhead of reading config from storage every block.
Verify security limits exist:
| Resource | Expected Limit | Location |
|---|---|---|
| Overlay entries | ~100,000 | execution_state.rs |
| Events per tx | ~10,000 | execution_state.rs |
| Key size | ~256 bytes | execution_state.rs |
| Value size | ~1 MB | execution_state.rs |
| Call depth | ~64 | invoker.rs |
Property tests that should exist:
// ExecutionState model test
#[test]
fn prop_execution_state_model() { /* overlay + undo = correct state */ }
// Gas counter model test
#[test]
fn prop_gas_counter_model() { /* no overflow, correct tracking */ }
// Gas calculation accuracy (uses correct charge per operation type)
#[test]
fn test_gas_calculation_accuracy() { /* set uses set_charge, remove uses remove_charge */ }
// Block failure invariance
#[test]
fn prop_apply_block_failure_invariance() { /* checkpoint/restore works */ }
// Determinism test (NEW - often missing)
#[test]
fn prop_determinism() { /* same input = same output, always */ }
Look for:
Unused trait bounds
// If ReadonlyKV: Send + Sync but only warm_cache needs Sync
// Move the bound to warm_cache, not the trait
Atomic overhead without threading
// If metrics use AtomicU64 but execution is single-threaded
// Consider Cell<u64> if Sync not required
Dead code paths
// Fields that exist but are never called
// e.g., post_tx_handler that's never invoked
After analysis, produce a report:
## STF Analysis Report
### Threading Model
- Execution model: [single-threaded / parallel]
- Concurrency locations: [list]
- Unnecessary bounds: [list]
### Non-Determinism Risks
- [x] HashMap iteration in into_changes() - NEEDS SORTING
- [ ] No floating point usage - OK
- [ ] No system time in execution - OK
### Atomicity
- [x] Checkpoints before state changes - OK
- [x] Restore on all error paths - OK
- [ ] Missing: [any gaps]
### Resource Limits
- [x] Overlay: 100,000 entries
- [x] Call depth: 64 levels
- [ ] Missing: [any gaps]
### Test Gaps
- [ ] Determinism test missing
- [ ] Call depth exhaustion test missing
### Simplification Recommendations
1. Remove Send+Sync from ReadonlyKV, add to warm_cache only
2. Replace AtomicU64 with Cell<u64> in metrics (if Sync not needed)
3. [other recommendations]
# Check current Send/Sync usage
rg "Send \+ Sync|: Send|: Sync" crates/app/stf/src/
# Find HashMap iterations that might be non-deterministic
rg "\.into_iter\(\)|\.iter\(\)" crates/app/stf/src/ -A 2
# Check for checkpoint usage
rg "checkpoint\(\)|restore\(" crates/app/stf/src/
# Find all error returns without restore
rg "return Err" crates/app/stf/src/invoker.rs -B 5
# Check test coverage
cargo test -p evolve_stf -- --list 2>&1 | grep "test "