Typing Fallback Functions: A Semantic Approach to Type Safe Smart Contracts
For blockchain developers and users, this provides a way to verify type safety of smart contracts with dynamic constructs, but the approach is incremental as it adapts existing proof-carrying code and coinductive techniques to a new domain.
The paper introduces a semantic typing approach for smart contracts to ensure type safety of code with statically untypable constructs like fallback functions, using proof-carrying code. It demonstrates the method on TinySol, a subset of Solidity, to enforce information flow control and non-interference, and shows it can type the pointer-to-implementation pattern and reject a version of the Parity Multisig Wallet Attack.
This paper develops semantic typing in a smart-contract setting to ensure type safety of code that uses statically untypable language constructs, such as the fallback function. The idea is that the creator of a contract on the blockchain equips code containing such constructs with a formal proof of its type safety, given in terms of the semantics of types. Then, a user of the contract only needs to check the validity of the provided 'proof certificate' of type safety. This is a form of proof-carrying code, which naturally fits with the immutable nature of the blockchain environment. As a concrete application of our approach, we focus on ensuring information flow control and non-interference for TinySol, a distilled version of the Solidity language, through security types. We provide the semantics of types in terms of a typed operational semantics of TinySol and we express the proofs of safety as coinductively-defined typing interpretations, which can be represented compactly via up-to techniques, similar to those used for bisimilarity. We also show how our machinery can be used to type the typical pointer-to-implementation pattern based on the fallback function and to reject a distilled version of the infamous Parity Multisig Wallet Attack.