Error Handling in Solidity: require, revert, assert, and Custom Errors

2025.10.20 · 5 min read

Solidity gives you four ways to stop execution when something goes wrong: require, revert, assert, and custom errors. Each one serves a different purpose. Using the wrong one does not break your contract, but it makes your code harder to read and costs more gas than necessary.

This post explains what each mechanism does, when to reach for it, and how they compare in terms of gas cost.

What Happens When an Error Fires

Before Solidity 0.8.0, failed operations could silently continue or produce unpredictable results. That changed in 0.8.0. Now, all four error mechanisms do the same thing at the EVM level: they revert the transaction, roll back every state change made during that call, and refund the remaining gas to the caller.

The difference between them is not what they do when they fail, it is what they signal to readers of your code, and how much gas the failure itself costs.

require: Validate Inputs and Preconditions

Use require to check conditions that depend on external input or state that your contract does not control. The pattern is: if this condition is not met, there is no point continuing.

 1function withdraw(uint amount) public {
 2    require(amount > 0, "Amount must be positive");
 3    require(balance[msg.sender] >= amount, "Insufficient balance");
 4
 5    balance[msg.sender] -= amount;
 6    (bool success, ) = msg.sender.call{value: amount}("");
 7    require(success, "Transfer failed");
 8}

The first two require calls validate inputs before any state is modified. The third one verifies the result of an external call after it returns. All three are valid uses.

When require fails, it reverts the transaction and returns the error string to the caller. This string is what appears in most wallets and block explorers when a transaction fails.

Good places to use require:

Checking msg.sender, msg.value, or function arguments
Verifying return values from external calls (token.transfer, call, etc.)
Enforcing access control at the start of a function

revert: Explicit Control Flow

revert does the same thing as a failing require, it stops execution and rolls back state. The difference is where you can place it.

require works well at the top of a function where you can check a single condition. Inside nested if statements, it gets awkward. revert fits naturally there.

 1function buyTicket(uint ticketId) public payable {
 2    if (msg.value < ticketPrice) {
 3        revert("Payment too low");
 4    }
 5
 6    if (tickets[ticketId].sold) {
 7        revert("Ticket already sold");
 8    }
 9
10    tickets[ticketId].owner = msg.sender;
11    tickets[ticketId].sold = true;
12}

You can also call revert() without a message. This saves a small amount of gas because no string is encoded into the revert data. The tradeoff is that the caller gets no information about what went wrong, useful only in cases where the revert reason is obvious from context.

assert: Internal Invariant Checks

assert is for conditions that should never be false if your contract logic is correct. It checks internal invariants, not user inputs, not external state, but properties that your own code must maintain.

 1function transfer(address to, uint amount) public {
 2    uint senderBefore = balance[msg.sender];
 3    uint recipientBefore = balance[to];
 4
 5    balance[msg.sender] -= amount;
 6    balance[to] += amount;
 7
 8    // Total balance must be conserved
 9    assert(balance[msg.sender] + balance[to] == senderBefore + recipientBefore);
10}

If an assert fires in production, it means your contract has a bug. It is not for validating user input. It is a signal to yourself and to auditors: "this must always be true, if it is not, something is fundamentally broken."

Before Solidity 0.8.0, a failed assert consumed all remaining gas. In 0.8.0 and later, it behaves like require in terms of gas refunds. If you are working with older contracts, be aware of this difference.

Custom Errors: Gas-Efficient Error Handling

Custom errors were introduced in Solidity 0.8.4. They give you the control of revert with significantly lower gas cost compared to string-based errors.

Define them at the file or contract level, then use them with revert:

 1error InsufficientBalance(uint available, uint requested);
 2error Unauthorized(address caller);
 3
 4contract Wallet {
 5    mapping(address => uint) public balance;
 6    address public owner;
 7
 8    function withdraw(uint amount) public {
 9        if (msg.sender != owner) {
10            revert Unauthorized(msg.sender);
11        }
12
13        if (balance[msg.sender] < amount) {
14            revert InsufficientBalance(balance[msg.sender], amount);
15        }
16
17        balance[msg.sender] -= amount;
18    }
19}

Custom errors can carry parameters. When the transaction reverts, the caller receives typed data, the exact values that caused the failure, rather than a plain string. This makes debugging easier on both the contract side and the frontend side.

The gas saving comes from how Solidity encodes errors. A string like "Insufficient balance" is stored in the contract bytecode and encoded into the revert data at runtime. A custom error uses a 4-byte selector (the first four bytes of the keccak256 hash of the error signature), plus ABI-encoded parameters. This is significantly cheaper, especially for errors with long messages.

Custom errors cost roughly 2,000 gas less than an equivalent require with a string message. For a function called thousands of times per day, that is real money.

Choosing the Right Tool

Mechanism	Use when
`require`	Validating inputs, checking preconditions, verifying external call results
`revert`	Complex conditional logic where `require` would be awkward
`assert`	Checking invariants that must always hold if your code is correct
Custom errors	Production contracts where gas efficiency matters

In most new contracts, the pattern is: require for simple preconditions at function entry, custom errors with revert for everything else, and assert sparingly for internal consistency checks.

A Complete Example

This contract combines all four mechanisms in realistic ways:

 1// SPDX-License-Identifier: MIT
 2pragma solidity ^0.8.4;
 3
 4error NotOwner();
 5error InsufficientFunds(uint available, uint requested);
 6
 7contract Vault {
 8    address public owner;
 9    mapping(address => uint) public balances;
10    uint public totalDeposited;
11
12    constructor() {
13        owner = msg.sender;
14    }
15
16    function deposit() public payable {
17        // require: validates external input (msg.value)
18        require(msg.value > 0, "Must deposit something");
19
20        balances[msg.sender] += msg.value;
21        totalDeposited += msg.value;
22
23        // assert: verifies internal invariant, contract balance must match our accounting
24        assert(address(this).balance == totalDeposited);
25    }
26
27    function withdraw(uint amount) public {
28        // custom error with revert: gas-efficient, carries typed context
29        if (balances[msg.sender] < amount) {
30            revert InsufficientFunds(balances[msg.sender], amount);
31        }
32
33        balances[msg.sender] -= amount;
34        totalDeposited -= amount;
35
36        (bool success, ) = msg.sender.call{value: amount}("");
37        // require: verifies result of external call
38        require(success, "Transfer failed");
39
40        assert(address(this).balance == totalDeposited);
41    }
42
43    function emergencyWithdraw() public {
44        // custom error: cheap, precise
45        if (msg.sender != owner) {
46            revert NotOwner();
47        }
48
49        uint contractBalance = address(this).balance;
50        totalDeposited = 0;
51
52        (bool success, ) = owner.call{value: contractBalance}("");
53        require(success, "Emergency withdrawal failed");
54    }
55}

Notice that assert appears after state changes, not before. That is intentional. assert checks that the state your code just produced is internally consistent. It is not a replacement for require at the start of a function.

One Pattern to Avoid

A common mistake is using assert for input validation:

1// Wrong, this is input validation, not an invariant
2assert(msg.value > 0);
3
4// Correct
5require(msg.value > 0, "Must send ETH");

The practical consequence in pre-0.8.0 contracts: a failed assert would burn all remaining gas. Even in 0.8.0+, using assert for input validation signals to auditors that you either misunderstand the distinction or have a logic error you are trying to catch. Neither is a good look.

Summary

Solidity's four error mechanisms share the same outcome, transaction revert, but communicate different things:

require says "the caller did something wrong or the external state is not ready"
revert says "a condition was not met, and I need explicit control over when to stop"
assert says "my contract's internal state is broken, this should never happen"
Custom errors say all of the above, with less gas and better typed data for callers

Use each for what it was designed for. The distinction matters most when someone else is reading your code, or when an auditor is trying to understand what your contract assumes about the world.