Skip to content

NONEVM-5258: billing for Sui => Sui #403

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
faisal-chainlink merged 5 commits into from
Jun 9, 2026
Merged

NONEVM-5258: billing for Sui => Sui #403

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
c51603d
NONEVM-5258: billing for Sui => Sui
FelixFan1992 Jun 5, 2026
a3a7555
fix tests
FelixFan1992 Jun 5, 2026
c312126
fi
FelixFan1992 Jun 5, 2026
e63e045
Merge branch 'chore/e2e-tests' into nonevm-5258
FelixFan1992 Jun 5, 2026
d5d6240
fix
FelixFan1992 Jun 5, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
114 changes: 109 additions & 5 deletions contracts/ccip/ccip/sources/fee_quoter.move
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -71,6 +71,25 @@ const SVM_TOKEN_TRANSFER_DATA_OVERHEAD: u64 =
+ 32 // per-chain token billing config, not always included in the token lookup table
+ 32; // OffRamp pool signer PDA, not included in the token lookup table;

/// The maximum number of receiver object IDs that can be passed in SuiExtraArgsV1.
const SUI_EXTRA_ARGS_MAX_RECEIVER_OBJECT_IDS: u64 = 64;

/// Number of overhead accounts needed for message execution on SUI.
/// This is the message.receiver.
const SUI_MESSAGING_ACCOUNTS_OVERHEAD: u64 = 1;

/// The size of each SUI account address in bytes.
const SUI_ACCOUNT_BYTE_SIZE: u64 = 32;

/// The expected static payload size of a token transfer when BCS encoded on SUI.
/// TokenPool extra_data contents are dynamic and billed via dest_bytes_overhead.
const SUI_TOKEN_TRANSFER_DATA_OVERHEAD: u64 =
(1 + 32) // source_pool_address: ULEB128 length + 32 bytes
+ 32 // dest_token_address
+ 4 // dest_gas_amount
+ 1 // extra_data: ULEB128 length for empty vector
+ 32; // amount

const MAX_U64: u256 = 18446744073709551615;
const MAX_U160: u256 = 1461501637330902918203684832716283019655932542975;
const VAL_1E5: u256 = 100_000;
Expand Down Expand Up @@ -241,6 +260,8 @@ const EInvalidSvmAccountLength: u64 = 35;
const ETokenAmountMismatch: u64 = 36;
const EInvalidOwnerCap: u64 = 37;
const EInvalidFunction: u64 = 38;
const ETooManySuiExtraArgsReceiverObjectIds: u64 = 39;
const EInvalidSuiReceiverObjectIdLength: u64 = 40;

public fun type_and_version(): String {
string::utf8(b"FeeQuoter 1.6.1")
Expand Down Expand Up @@ -708,7 +729,18 @@ public fun get_validated_fee(
) {
resolve_generic_gas_limit(dest_chain_config, extra_args)
} else if (chain_family_selector == CHAIN_FAMILY_SELECTOR_SUI) {
resolve_sui_gas_limit(dest_chain_config, extra_args)
let (gas, overhead) = resolve_sui_gas_limit(
dest_chain_config,
state,
dest_chain_selector,
extra_args,
receiver,
data_len,
tokens_len,
local_token_addresses,
);
svm_payload_overhead = overhead;
gas
} else if (chain_family_selector == CHAIN_FAMILY_SELECTOR_SVM) {
let (gas, overhead) = resolve_svm_gas_limit(
dest_chain_config,
Expand Down Expand Up @@ -866,19 +898,91 @@ fun resolve_generic_gas_limit(dest_chain_config: &DestChainConfig, extra_args: v
gas_limit
}

fun resolve_sui_gas_limit(dest_chain_config: &DestChainConfig, extra_args: vector<u8>): u256 {
/// Returns `(gas_limit, sui_payload_overhead_bytes)`.
/// `sui_payload_overhead_bytes` is the SUI-specific payload size counted in maxDataBytes validation
/// but not already included in `data_len` or per-token `dest_bytes_overhead` billing.
fun resolve_sui_gas_limit(
dest_chain_config: &DestChainConfig,
state: &FeeQuoterState,
dest_chain_selector: u64,
extra_args: vector<u8>,
receiver: vector<u8>,
data_len: u64,
tokens_len: u64,
local_token_addresses: vector<address>,
): (u256, u64) {
let (
gas_limit,
allow_out_of_order_execution,
_token_receiver,
_receiver_object_ids,
token_receiver,
receiver_object_ids,
) = decode_sui_extra_args(extra_args);
assert!(gas_limit <= (dest_chain_config.max_per_msg_gas_limit as u64), EMessageGasLimitTooHigh);
assert!(
!dest_chain_config.enforce_out_of_order || allow_out_of_order_execution,
EExtraArgOutOfOrderExecutionMustBeTrue,
);
gas_limit as u256

let receiver_object_ids_length = receiver_object_ids.length();
assert!(
receiver_object_ids_length <= SUI_EXTRA_ARGS_MAX_RECEIVER_OBJECT_IDS,
ETooManySuiExtraArgsReceiverObjectIds,
);

let mut i = 0;
while (i < receiver_object_ids_length) {
assert!(receiver_object_ids[i].length() == 32, EInvalidSuiReceiverObjectIdLength);
i = i + 1;
};

let mut sui_payload_overhead = tokens_len * SUI_TOKEN_TRANSFER_DATA_OVERHEAD;

assert!(receiver.length() == 32, EInvalid32BytesAddress);
let receiver_uint = eth_abi::decode_u256_value(receiver);
if (receiver_uint == 0) {
assert!(receiver_object_ids_length == 0, ETooManySuiExtraArgsReceiverObjectIds);
Comment thread
FelixFan1992 marked this conversation as resolved.
} else {
sui_payload_overhead =
sui_payload_overhead + (
receiver_object_ids_length + SUI_MESSAGING_ACCOUNTS_OVERHEAD
) * SUI_ACCOUNT_BYTE_SIZE;
};

if (tokens_len > 0) {
assert!(
token_receiver.length() == 32
&& eth_abi::decode_u256_value(token_receiver) != 0,
EInvalidTokenReceiver,
);
};

let mut sui_expanded_data_length = data_len + sui_payload_overhead;

let mut i = 0;
while (i < tokens_len) {
let local_token_address = local_token_addresses[i];
let destBytesOverhead = get_token_transfer_fee_config_internal(
state,
dest_chain_selector,
local_token_address,
).dest_bytes_overhead;

if (destBytesOverhead > 0) {
sui_expanded_data_length = sui_expanded_data_length + (destBytesOverhead as u64);
} else {
sui_expanded_data_length =
sui_expanded_data_length + (CCIP_LOCK_OR_BURN_V1_RET_BYTES as u64);
};

i = i + 1;
};

assert!(
sui_expanded_data_length <= (dest_chain_config.max_data_bytes as u64),
EMessageTooLarge,
);

(gas_limit as u256, sui_payload_overhead)
}

fun check_svm_writable_bitmap(account_is_writable_bitmap: u64, accounts_length: u64) {
Expand Down
22 changes: 7 additions & 15 deletions contracts/ccip/ccip/tests/state_object_upgrade_test.move
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,7 @@ use sui::test_scenario::{Self as ts, Scenario};

const ADMIN: address = @0xA;
const PACKAGE_OWNER: address = @0xB;
const TEST_PACKAGE: address = @0xCCCC;

fun init_mcms_and_ccip(ctx: &mut TxContext) {
mcms_account::test_init(ctx);
Expand Down Expand Up @@ -62,16 +63,14 @@ fun test_upgrade_flow_updates_state_correctly() {

ts::next_tx(&mut scenario, PACKAGE_OWNER);
let mut deployer_state = ts::take_shared<DeployerState>(&scenario);
let registry = ts::take_shared<Registry>(&scenario);
let ctx = ts::ctx(&mut scenario);

let upgrade_cap = package::test_publish(@ccip.to_id(), ctx);
let upgrade_cap = package::test_publish(TEST_PACKAGE.to_id(), ctx);
let old_package_address = upgrade_cap.package().to_address();
let cap_id = object::id(&upgrade_cap);

mcms_deployer::register_upgrade_cap(
mcms_deployer::test_register_upgrade_cap(
&mut deployer_state,
&registry,
upgrade_cap,
ctx,
);
Expand All @@ -80,7 +79,6 @@ fun test_upgrade_flow_updates_state_correctly() {
assert!(mcms_deployer::has_upgrade_cap(&deployer_state, old_package_address), 0);

ts::return_shared(deployer_state);
ts::return_shared(registry);

// Perform upgrade: authorize -> upgrade -> commit
ts::next_tx(&mut scenario, ADMIN);
Expand Down Expand Up @@ -165,21 +163,18 @@ fun test_cannot_authorize_upgrade_with_old_package_address_after_upgrade() {
{
ts::next_tx(&mut scenario, PACKAGE_OWNER);
let mut deployer_state = ts::take_shared<DeployerState>(&scenario);
let registry = ts::take_shared<Registry>(&scenario);
let ctx = ts::ctx(&mut scenario);

let upgrade_cap = package::test_publish(@ccip.to_id(), ctx);
let upgrade_cap = package::test_publish(TEST_PACKAGE.to_id(), ctx);
old_package_address = upgrade_cap.package().to_address();

mcms_deployer::register_upgrade_cap(
mcms_deployer::test_register_upgrade_cap(
&mut deployer_state,
&registry,
upgrade_cap,
ctx,
);

ts::return_shared(deployer_state);
ts::return_shared(registry);
};

// Perform one upgrade
Expand Down Expand Up @@ -247,21 +242,18 @@ fun test_multiple_upgrades_chain_correctly() {
{
ts::next_tx(&mut scenario, PACKAGE_OWNER);
let mut deployer_state = ts::take_shared<DeployerState>(&scenario);
let registry = ts::take_shared<Registry>(&scenario);
let ctx = ts::ctx(&mut scenario);

let upgrade_cap = package::test_publish(@ccip.to_id(), ctx);
let upgrade_cap = package::test_publish(TEST_PACKAGE.to_id(), ctx);
current_package_address = upgrade_cap.package().to_address();

mcms_deployer::register_upgrade_cap(
mcms_deployer::test_register_upgrade_cap(
&mut deployer_state,
&registry,
upgrade_cap,
ctx,
);

ts::return_shared(deployer_state);
ts::return_shared(registry);
};

// Perform 3 consecutive upgrades
Expand Down
Loading
Loading