research-article

Super-optimization of Smart Contracts

Authors:
Elvira Albert

Complutense University of Madrid, Spain

Complutense University of Madrid, Spain
View Profile

,
Pablo Gordillo

Complutense University of Madrid, Spain

Complutense University of Madrid, Spain

0000-0001-6189-4667
View Profile

,
Alejandro Hernández-Cerezo

Complutense University of Madrid, Spain

Complutense University of Madrid, Spain

0000-0003-2109-8863
View Profile

,
Albert Rubio

Complutense University of Madrid, Spain

Complutense University of Madrid, Spain
View Profile

,
Maria A. Schett

University College London, UK

University College London, UK
View Profile

ACM Transactions on Software Engineering and Methodology Volume 31 Issue 4Article No.: 70pp 1–29https://doi.org/10.1145/3506800

Published:12 July 2022Publication History

ACM Transactions on Software Engineering and Methodology

Abstract

Smart contracts are programs deployed on a blockchain. They are executed for a monetary fee paid in gas—a clear optimization target for smart contract compilers. Because smart contracts are a young, fast-moving field without (manually) fine-tuned compilers, they highly benefit from automated and adaptable approaches, especially as smart contracts are effectively immutable, and as such need a high level of assurance. This makes them an ideal domain for applying formal methods. Super-optimization is a technique to find the best translation of a block of instructions by trying all possible sequences of instructions that produce the same result. We present a framework for super-optimizing smart contracts based on Max-SMT with two main ingredients: (1) a stack functional specification extracted from the basic blocks of a smart contract, which is simplified using rules capturing the semantics of arithmetic, bit-wise, and relational operations, and (2) the synthesis of optimized blocks, which finds—by means of an efficient SMT encoding—basic blocks with minimal gas cost whose stack functional specification is equal (modulo commutativity) to the extracted one.

We implemented our framework in the tool syrup 2.0. Through large-scale experiments on real-world smart contracts, we analyze performance improvements for different SMT encodings, as well as tradeoffs between quality of optimizations and required optimization time.

REFERENCES

[1] 2018. Etherscan. https://etherscan.io.Google Scholar
[2] 2018. Rattle - An EVM Binary Static Analysis Framework. https://github.com/crytic/rattle.Google Scholar
[3] Ethereum. 2021. Solidity documentation. https://docs.soliditylang.org/en/latest/index.html.Google Scholar
[4] Ethereum. 2021. Yul documentation. https://docs.soliditylang.org/en/latest/yul.html.Google Scholar
[5] Albert Elvira, Correas Jesús, Gordillo Pablo, Román-Díez Guillermo, and Rubio Albert. 2020. GASOL: Gas analysis and optimization for Ethereum smart contracts. In Proceedings of 26th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS’20)(Lecture Notes in Computer Science, Vol. 12079), Biere Armin and Parker David (Eds.). 118–125.Google ScholarDigital Library
[6] Albert Elvira, Correas Jesús, Gordillo Pablo, Román-Díez Guillermo, and Rubio Albert. 2021. Don’t run on fumes–Parametric gas bounds for smart contracts. Journal of Systems and Software 176 (2021), 110923. Google ScholarCross Ref
[7] Albert Elvira, Gordillo Pablo, Livshits Benjamin, Rubio Albert, and Sergey Ilya. 2018. EthIR: A framework for high-level analysis of Ethereum bytecode. In 16th International Symposium on Automated Technology for Verification and Analysis (ATVA’18), Proceedings(LNCS, Vol. 11138), Lahiri Shuvendu and Wang Chao (Eds.). Springer, 513–520. Google ScholarCross Ref
[8] Albert Elvira, Gordillo Pablo, Rubio Albert, and Schett Maria A.. 2020. Synthesis of super-optimized smart contracts using Max-SMT. In Computer Aided Verification - 32nd International Conference (CAV’20), Proceedings, Part I(Lecture Notes in Computer Science, Vol. 12224), Lahiri Shuvendu K. and Wang Chao (Eds.). Springer, 177–200.Google ScholarDigital Library
[9] Bofill Miquel, Nieuwenhuis Robert, Oliveras Albert, Rodríguez-Carbonell Enric, and Rubio Albert. 2008. The Barcelogic SMT solver. In Computer Aided Verification, 20th International Conference (CAV’08), Proceedings. 294–298.Google ScholarDigital Library
[10] Brain Martin, Crick Tom, Vos Marina De, and Fitch John P.. 2006. TOAST: Applying answer set programming to superoptimisation. In Logic Programming, 22nd International Conference (ICLP’06), Proceedings(Lecture Notes in Computer Science, Vol. 4079). Springer, 270–284.Google ScholarDigital Library
[11] Brandstätter T., Schulte S., Cito J., and Borkowski M.. 2020. Characterizing efficiency optimizations in solidity smart contracts. In 2020 IEEE International Conference on Blockchain (Blockchain’20). 281–290. Google ScholarCross Ref
[12] Chen Ting, Li Xiaoqi, Luo Xiapu, and Zhang Xiaosong. 2017. Under-optimized smart contracts devour your money. In SANER. IEEE Computer Society, 442–446.Google Scholar
[13] Chen Ting, Li Zihao, Zhou Hao, Chen Jiachi, Luo Xiapu, Li Xiaoqi, and Zhang Xiaosong. 2018. Towards saving money in using smart contracts. In Proceedings of the 40th International Conference on Software Engineering: New Ideas and Emerging Results (ICSE (NIER)’18). 81–84. Google ScholarDigital Library
[14] Cimatti Alessandro, Griggio Alberto, Schaafsma Bastiaan Joost, and Sebastiani Roberto. 2013. The MathSAT5 SMT solver. In Tools and Algorithms for the Construction and Analysis of Systems - 19th International Conference (TACAS’13), Proceedings. 93–107.Google ScholarDigital Library
[15] Moura Leonardo Mendonça de and Bjørner Nikolaj. 2008. Z3: An efficient SMT solver. In Tools and Algorithms for the Construction and Analysis of Systems, 14th International Conference (TACAS’08)(Lecture Notes in Computer Science, Vol. 4963), Ramakrishnan C. R. and Rehof Jakob (Eds.). Springer, 337–340.Google ScholarCross Ref
[16] Ethereum. 2018. Solidity. https://solidity.readthedocs.io.Google Scholar
[17] Goodman L. M.. 2014. Tezos: A Self-Amending Crypto-Ledger Position Paper. (2014), 18.Google Scholar
[18] Grech Neville, Kong Michael, Jurisevic Anton, Brent Lexi, Scholz Bernhard, and Smaragdakis Yannis. 2018. MadMax: Surviving out-of-gas conditions in Ethereum smart contracts. PACMPL 2, OOPSLA (2018), 116:1–116:27.Google Scholar
[19] Jangda Abhinav and Yorsh Greta. 2017. Unbounded superoptimization. In Proceedings of the 2017 ACM SIGPLAN International Symposium on New Ideas, New Paradigms, and Reflections on Programming and Software, Onward! 2017. 78–88. Google ScholarDigital Library
[20] Kiffer Lucianna, Levin Dave, and Mislove Alan. 2018. Analyzing Ethereum’s contract topology. In Proceedings of the Internet Measurement Conference 2018 (IMC’18). 494–499.Google ScholarDigital Library
[21] Labs Nomadic. 2018. Michelson: The Language of Smart Contracts in Tezos. https://www.michelson-lang.com.Google Scholar
[22] Lattner Chris and Adve Vikram. 2004. LLVM: A compilation framework for lifelong program analysis and transformation. In Proceedings of the International Symposium on Code Generation and Optimization: Feedback-Directed and Runtime Optimization(CGO’04). IEEE Computer Society, 75.Google ScholarCross Ref
[23] Lopes Nuno P., Menendez David, Nagarakatte Santosh, and Regehr John. 2018. Practical verification of peephole optimizations with Alive. Communications of the ACM 61, 2 (Jan. 2018), 84–91. Google ScholarDigital Library
[24] Luu Loi, Chu Duc-Hiep, Olickel Hrishi, Saxena Prateek, and Hobor Aquinas. 2016. Making smart contracts smarter. In CCS. ACM, 254–269.Google Scholar
[25] Massalin Henry. 1987. Superoptimizer - A look at the smallest program. In Proceedings of the 2nd International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS II’87). 122–126. https://dl.acm.org/citation.cfm?id=36194.Google Scholar
[26] Members Libra Association. 2019. White paper: The Libra Blockchain. 29.Google Scholar
[27] Meudec Christophe. 2001. ATGen: Automatic test data generation using constraint logic programming and symbolic execution. Software Testing, Verifications and Reliability 11, 2 (2001), 81–96.Google ScholarCross Ref
[28] Mueller Bernhard. 2018. Smashing Ethereum smart contracts for fun and real profit. In The 9th Annual HITB Security Conference.Google Scholar
[29] Mukherjee Manasij, Kant Pranav, Liu Zhengyang, and Regehr John. 2020. Dataflow-based pruning for speeding up superoptimization. Proceedings of the ACM on Programming Languages 4, OOPSLA (Nov. 2020), 1–24. Google ScholarDigital Library
[30] Mukhopadhyay Mayukh. 2018. Ethereum Smart Contract Development. Packt Publishing.Google Scholar
[31] Nagele Julian and Schett Maria A.. 2019. Blockchain superoptimizer. In Preproceedings of 29th International Symposium on Logic-based Program Synthesis and Transformation (LOPSTR’19). https://arxiv.org/abs/2005.05912.Google Scholar
[32] Nakamoto Satoshi. 2008. Bitcoin: A peer-to-peer electronic cash system.Google Scholar
[33] Pérez Daniel and Livshits Benjamin. 2019. Broken metre: Attacking resource metering in EVM. CoRR abs/1909.07220 (2019). arxiv:1909.07220 http://arxiv.org/abs/1909.07220.Google Scholar
[34] Sasnauskas Raimondas, Chen Yang, Collingbourne Peter, Ketema Jeroen, Lup Gratian, Taneja Jubi, and Regehr John. 2017. Souper: A synthesizing superoptimizer. arXiv:1711.04422 [cs] (Nov. 2017). arxiv:1711.04422 [cs].Google Scholar
[35] Schett Maria A. and Nagele Julian. 2020. Populating the peephole optimizer of a smart contract compiler. In 2nd Workshop on Formal Methods for Blockchains (FMBC’20)(OpenAccess Series in Informatics (OASIcs), Vol. 84), Bernardo Bruno and Marmsoler Diego (Eds.). Schloss Dagstuhl–Leibniz-Zentrum für Informatik, Dagstuhl, Germany, 3:1–3:15. Google ScholarCross Ref
[36] Sergey Ilya, Nagaraj Vaivaswatha, Johannsen Jacob, Kumar Amrit, Trunov Anton, and Hao Ken Chan Guan. 2019. Safer smart contract programming with Scilla. In 34th ACM SIGPLAN Conference on Object-Oriented Programming Systems, Languages and Applications (OOPSLA’19).Google ScholarDigital Library
[37] Team The LibraBFT. 2020. Move: A Language With Programmable Resources. Technical Report. Novi. 27 pages. https://developers.libra.org/docs/state-machine-replication-paper.Google Scholar
[38] Wood Gavin. 2019. Ethereum: A secure decentralised generalised transaction ledger.Google Scholar
[39] Yang Renlord, Murray Toby, Rimba Paul, and Parampalli Udaya. 2019. Empirically analyzing Ethereum’s gas mechanism. In 2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&P Workshops’19). 310–319. Google ScholarCross Ref
[40] Yu Xiao Liang, Al-Bataineh Omar, Lo David, and Roychoudhury Abhik. 2020. Smart contract repair. ACM Transactions on Software Engineering and Methodology 29, 4 (Sept. 2020), 27:1–27:32. Google ScholarDigital Library

Index Terms

Super-optimization of Smart Contracts
1. Mathematics of computing
  1. Mathematical software
    1. Solvers
2. Software and its engineering
  1. Software creation and management
    1. Software verification and validation
      1. Formal software verification

Recommendations

Formal Modeling and Verification of Smart Contracts
ICSCA '18: Proceedings of the 2018 7th International Conference on Software and Computer Applications

Smart contracts can automatically perform the contract terms according to the received information, and it is one of the most important research fields in digital society. The core of smart contracts is algorithm contract, that is, the parties reach an ...
Read More
Security Vulnerabilities in Ethereum Smart Contracts
iiWAS2018: Proceedings of the 20th International Conference on Information Integration and Web-based Applications & Services

Smart contracts (SC) are one of the most appealing features of blockchain technologies facilitating, executing, and enforcing predefined terms of coded contracts without intermediaries. The steady adoption of smart contracts on the Ethereum blockchain ...
Read More
Blockchain smart contracts formalization: Approaches and challenges to address vulnerabilities
Highlights
- Blockchain smart contracts formalization.
- Vulnerability aspects of smart ...
Abstract
Blockchain as a distributed computing platform enables users to deploy pieces of software (known as smart contracts) for a wealth of next-generation decentralized applications without involving a trusted third-party. The advantages of ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

Published in
ACM Transactions on Software Engineering and Methodology Volume 31, Issue 4
October 2022
867 pages
ISSN:1049-331X
EISSN:1557-7392
DOI:10.1145/3543992
Editor:
Mauro Pezzè
USI Università della Svizzera italiana and SIT Schaffhausen Institute of Technology, Switzerland
Issue’s Table of Contents
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 12 July 2022
- Online AM: 23 April 2022
- Accepted: 1 December 2021
- Revised: 1 September 2021
- Received: 1 April 2021
Published in tosem Volume 31, Issue 4

Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
Smart contracts
synthesis
optimization
Max-SMT solvers
Qualifiers
- research-article
- Refereed
Conference
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 2
  Total Citations
  View Citations
- 911
  Total Downloads
- Downloads (Last 12 months)370
- Downloads (Last 6 weeks)31
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Full Text

View this article in Full Text.

View Full Text

HTML Format

View this article in HTML Format .

View HTML Format

Super-optimization of Smart Contracts

ACM Transactions on Software Engineering and Methodology

Abstract

REFERENCES

Cited By

Index Terms

Recommendations

Formal Modeling and Verification of Smart Contracts

Security Vulnerabilities in Ethereum Smart Contracts

Blockchain smart contracts formalization: Approaches and challenges to address vulnerabilities