Your SlideShare is downloading. ×

Smart Contract Testing

•

Mar. 20, 2021

• •

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Ad

Australia’s National Science Agency
Smart
Contract
Testing
Dilum Bandara
| Architecture & Analytics Platforms (AAP) team
|...

Failures in Blockchains are Catastrophic
2 | Source: https://magoo.github.io/Blockchain-Graveyard/

Test Scope of Blockchain-Based Applications
3 |
Access control
& KYC
Smart contract
Integration
Data
management
Cryptograp...

Known Issues/Vulnerabilities
4 |

Known Issues/Vulnerabilities in SCs
• Race conditions
– Reentrancy
– Cross-function race conditions
– Deadlocks
• Denial o...

Arithmetic Overflow/Underflow
6 |
mapping (address => uint256) public balanceOf;
function transfer(address _to, uint256 _v...

Single Function Reentrancy
7 |
Source: https://github.com/ConsenSys/smart-contract-best-
practices/blob/master/docs/known_...

Cross Function Reentrancy
8 |
Source: https://github.com/ConsenSys/smart-contract-best-
practices/blob/master/docs/known_a...

Cross Function Reentrancy – Failure Case
9 |
Source: https://github.com/ConsenSys/smart-contract-best-
practices/blob/mast...

Tools & Techniques
10 |

• Avoid external calls
– Finish all internal work before making external calls
– Favour pull over push – Let users withdra...

Types of Software Testing
12 |
Software
Testing
Static
Source
code
Byte
code
Dynamic
White
box
Black
box

Code Smells[1]
13 |
[1] Chen, Jiachi, Xin Xia, David Lo, John Grundy, Daniel Xiapu Luo, and Ting Chen. "Domain Specific Co...

Ethereum SC
Testing
Solution
Space
14 |
Source: Di Angelo, M., & Salzer,
G. (2019, April). A survey of tools
for analyzing...

Ethereum SC Security Testing Solutions
15 |
Source: Di Angelo,
M., & Salzer, G.
(2019, April).

• Fuzz testing – Automated testing
by providing invalid, unexpected,
or random data as inputs
• Set of test oracles
• Gasl...

• Use an intermediate representation called Slither
• Supports security testing, code optimization, review, & user
underst...

Other Tools[4]
18 |
[4] Parizi, Reza M. et al., "Empirical vulnerability analysis of automated smart contracts security te...

Australia’s National Science Agency
Dilum.Bandara@
data61.csiro.au
linkedin.com/in/dilumb/
19 |

Next SlideShares

Upcoming SlideShare

Blockchain testing strategy

Blockchain testing strategy

Loading in …3

×

Check these out next

Examples of Smart Contracts

101 Blockchains

Decentralised Exchanges - An Introduction

Blockchain concepts

Murughan Palaniachari

How To Become A Blockchain Engineer

101 Blockchains

PedramDehghanpour

Basic introduction in blockchain, smart contracts, permissioned ledgers

Koen Vingerhoets

Consensus Algorithms - Nakov at CryptoBlockCon - Las Vegas (2018)

Smart Contract Testing

Mar. 20, 2021

• •

Download to read offline

My talk on Smart Contract Testing conducted at Colombo Blockchain Summit 2020. The talk covers topics such as the need for serious testing, test scope, known issues/vulnerabilities, and tools and techniques

Research Scientist

My talk on Smart Contract Testing conducted at Colombo Blockchain Summit 2020. The talk covers topics such as the need for serious testing, test scope, known issues/vulnerabilities, and tools and techniques

License: CC Attribution-NonCommercial License

More Related Content

Examples of Smart Contracts

101 Blockchains

Decentralised Exchanges - An Introduction

Blockchain concepts

Murughan Palaniachari

How To Become A Blockchain Engineer

101 Blockchains

PedramDehghanpour

Basic introduction in blockchain, smart contracts, permissioned ledgers

Koen Vingerhoets

Consensus Algorithms - Nakov at CryptoBlockCon - Las Vegas (2018)

Blockchain Consensus Protocols

Blockchain Explained | How Does A Blockchain Work | Blockchain Explained Simp...

Understanding Blockchain Security

6 Key Blockchain Features You Need to Know Now

101 Blockchains

PoW vs. PoS - Key Differences

101 Blockchains

Merkle Trees and Fusion Trees

Blockchain Technology and Its Application in Libraries

An Introduction to Blockchain

NexThoughts Technologies

Blockchain and Cryptocurrency for Dummies

Narudom Roongsiriwong, CISSP

An introduction to block chain technology

yaminisindhurabandar

A Complete Guide On Diem Blockchain

101 Blockchains

JEEVARATHINAM ANTONY

Examples of Smart Contracts

101 Blockchains

Decentralised Exchanges - An Introduction

Blockchain concepts

Murughan Palaniachari

How To Become A Blockchain Engineer

101 Blockchains

PedramDehghanpour

Basic introduction in blockchain, smart contracts, permissioned ledgers

Koen Vingerhoets

Design Patterns para Microsserviços com MicroProfile

Víctor Leonel Orozco López

Student Spring 2021

Smart Contract Security Testing

DEF CON 24 - Sean Metcalf - beyond the mcse red teaming active directory

Sumo Logic Cert Jam - Security Analytics

Kamailio - SIP Firewall for Carrier Grade Traffic

Daniel-Constantin Mierla

Implementation domain driven design - ch04 architecture

Application Security

SANS_PentestHackfest_2022-PurpleTeam_Cloud_Identity.pptx

Application Security from the Inside - OWASP

Microservices in Go_Dessi_Massimiliano_Codemotion_2017_Rome

Massimiliano Dessì

Security in Node.JS and Express:

Petros Demetrakopoulos

Applying Provenance in APT Monitoring and Analysis Practical Challenges for S...

Graeme Jenkinson

New Features of JSR 317 (JPA 2.0)

Verifiable Round-Robin Scheme for Smart Homes (CODASPY 2019)

Shantanu Sharma

MongoDB.local Atlanta: Introduction to Serverless MongoDB

IRJET- An Approach for Implemented Secure Proxy Server for Multi-User Searcha...

Beyond the mcse red teaming active directory

Secure and Privacy-Preserving Big-Data Processing

Shantanu Sharma

NET Systems Programming Learned the Hard Way.pptx

Design Patterns para Microsserviços com MicroProfile

Víctor Leonel Orozco López

Student Spring 2021

Smart Contract Security Testing

DEF CON 24 - Sean Metcalf - beyond the mcse red teaming active directory

Sumo Logic Cert Jam - Security Analytics

Kamailio - SIP Firewall for Carrier Grade Traffic

Daniel-Constantin Mierla

Modeling Multi-Layer Access Control Policies of a Hyperledger-Fabric-Based Ag...

A Decision Model for Choosing Patterns in Blockchain-based Applications

What's not a cloud

Blockchain - A Catalyst for Solving Age-old Distributed Systems Problems

Protocols for Fast Delivery of Large Data Volumes

Content-Centric Networking (CCN)

Internet Architecture and Design Philosophy

Cloud Computing

Transactions and Concurrency Control

Physical and Logical Clocks

Content Delivery Networks (CDN)

Message and Stream Oriented Communication

CAP Theorem and Split Brain Syndrome

Communication in Distributed Systems

Problem Formulation

02 - Topologies of Distributed Systems

01 - Introduction to Distributed Systems

Use of Technology in Toll Collection & Management

Big data, Security, or Privacy in IoT: Choice is Yours

OWASP Top 10 2017 - New Vulnerabilities

Modeling Multi-Layer Access Control Policies of a Hyperledger-Fabric-Based Ag...

A Decision Model for Choosing Patterns in Blockchain-based Applications

What's not a cloud

Blockchain - A Catalyst for Solving Age-old Distributed Systems Problems

Protocols for Fast Delivery of Large Data Volumes

Content-Centric Networking (CCN)

Introductions to MAP

The Knot Ultimate Wedding Planner & Organizer [

Expert React Native App Development Company | Webtrills

Promovidz V2 Platinum

Shadows in Death (Eve Dallas)

Twine: An Embedded Trusted Runtime for WebAssembly - Presentation slides

Jämes Ménétrey

Plant Maintenance Overview.pptx

WaTZ: A Trusted WebAssembly Runtime Environment with Remote Attestation for T...

Jämes Ménétrey

EduPorch Pitch-deck New.pdf

Onaopemipo Adewumi

Advantage of CRM.pdf

NAVITIME Location Cloud サービスご紹介資料.pdf

Javascript Methods and events

JVS Future Technologies

WebAssembly as a Common Layer for the Cloud-edge Continuum - Presentation slides

Jämes Ménétrey

SYSTEMS BIOLOGY MARKUP LANGUAGE.pptx

SAP MM Purchasing .pptx

Vorstellung .NET User Group Bern

NETUserGroupBern

The Color of Law: A Forgotten History of How Our Government Segregated America

Introductions to MAP

The Knot Ultimate Wedding Planner & Organizer [

Expert React Native App Development Company | Webtrills

Promovidz V2 Platinum

Shadows in Death (Eve Dallas)

Smart Contract Testing

1. Australia’s National Science Agency Smart Contract Testing Dilum Bandara | Architecture & Analytics Platforms (AAP) team | Data61, CSIRO | Dilum.Bandara@data61.csiro.au
2. Failures in Blockchains are Catastrophic 2 | Source: https://magoo.github.io/Blockchain-Graveyard/
3. Test Scope of Blockchain-Based Applications 3 | Access control & KYC Smart contract Integration Data management Cryptography & Key management Infrastructure Consensus Privacy DApp architecture Scalability & Performance Governance & Compliance
4. Known Issues/Vulnerabilities 4 |
5. Known Issues/Vulnerabilities in SCs • Race conditions – Reentrancy – Cross-function race conditions – Deadlocks • Denial of Service (DoS) – Unexpected throw – Size/gas limit – SC calls & block • Arithmetic overflow/underflow • TX order dependence • Front running • Timestamp & block no dependence – Random no • Access control – Ability to call selfdestruct() • Bad error handling • Language-specific behaviour – In solidity SC owner is set at time of initialization – Depreciated functions – Short address attack in EVM – Call stack depth 5 |
6. Arithmetic Overflow/Underflow 6 | mapping (address => uint256) public balanceOf; function transfer(address _to, uint256 _value) { require(balanceOf[msg.sender] >= _value); balanceOf[msg.sender] -= _value; balanceOf[_to] += _value; } function transfer(address _to, uint256 _value) { require(balanceOf[msg.sender] >= _value && balanceOf[_to] + _value >= balanceOf[_to]); balanceOf[msg.sender] -= _value; balanceOf[_to] += _value; } Source: https://github.com/ConsenSys/smart-contract-best- practices/blob/master/docs/known_attacks.md Another solution is to use SafeMath.sol library
7. Single Function Reentrancy 7 | Source: https://github.com/ConsenSys/smart-contract-best- practices/blob/master/docs/known_attacks.md mapping (address => uint) private userBalances; function withdrawBalance() public { uint amountToWithdraw = userBalances[msg.sender]; (bool success, ) = msg.sender.call.value(amountToWithdraw)(""); require(success); userBalances[msg.sender] = 0; } withdrawBalance() Value()
8. Cross Function Reentrancy 8 | Source: https://github.com/ConsenSys/smart-contract-best- practices/blob/master/docs/known_attacks.md mapping (address => uint) private userBalances; function transfer(address to, uint amount) { if (userBalances[msg.sender] >= amount) { userBalances[to] += amount; userBalances[msg.sender] -= amount; } } function withdrawBalance() public { uint amountToWithdraw = userBalances[msg.sender]; (bool success, ) = msg.sender.call.value(amountToWithdraw)(""); require(success); userBalances[msg.sender] = 0; } withdrawBalance() Value() transfer()
9. Cross Function Reentrancy – Failure Case 9 | Source: https://github.com/ConsenSys/smart-contract-best- practices/blob/master/docs/known_attacks.md mapping (address => uint) private userBalances; mapping (address => bool) private claimedBonus; mapping (address => uint) private rewardsForA; function withdrawReward(address recipient) public { uint amountToWithdraw = rewardsForA[recipient]; rewardsForA[recipient] = 0; (bool success, ) = recipient.call.value(amountToWithdraw)(""); require(success); } function getFirstWithdrawalBonus(address recipient) public { require(!claimedBonus[recipient]); rewardsForA[recipient] += 100; withdrawReward(recipient); claimedBonus[recipient] = true; }
10. Tools & Techniques 10 |
11. • Avoid external calls – Finish all internal work before making external calls – Favour pull over push – Let users withdraw funds – Use send() over call.value() – send() has a fixed gas limit of 2,300 – Keep fallback function simple • Good programming practices – Explicitly set visibility of functions & variables – Exception handling – Be aware of different function behaviour – Reuse well-tested code – Use libraries/languages that prevent overflow & underflow – Upgradable contracts – No hardcoded addresses, Proxy & SC Registry patterns • Avoid multi-party contracts – One party may disappear • Rate limiting – No of calls & crypto Best Practices 11 |
12. Types of Software Testing 12 | Software Testing Static Source code Byte code Dynamic White box Black box
13. Code Smells[1] 13 | [1] Chen, Jiachi, Xin Xia, David Lo, John Grundy, Daniel Xiapu Luo, and Ting Chen. "Domain Specific Code Smells in Smart Contracts." arXiv preprint arXiv:1905.01467 (2019).
14. Ethereum SC Testing Solution Space 14 | Source: Di Angelo, M., & Salzer, G. (2019, April). A survey of tools for analyzing Ethereum smart contracts. In 2019 IEEE Int. Conf. on Decentralized Applications and Infrastructures (DAPPCON).
15. Ethereum SC Security Testing Solutions 15 | Source: Di Angelo, M., & Salzer, G. (2019, April).
16. • Fuzz testing – Automated testing by providing invalid, unexpected, or random data as inputs • Set of test oracles • Gasless send • Exception disorder • Reentrancy • Timestamp dependency • Block no dependency • Dangerous delegate calls • Freezing Ether ContractFuzzer – Fuzzing SCs for Vulnerability Detection[2] 16 | [2] Jiang, Bo, Ye Liu, and W. K. Chan. "Contractfuzzer: Fuzzing smart contracts for vulnerability detection." In Proc. 33rd ACM/IEEE Intl. Conf. on Automated Software Engineering, pp. 259-269. ACM, 2018.
17. • Use an intermediate representation called Slither • Supports security testing, code optimization, review, & user understanding Slither – A Static Analysis Framework for SCs[3] 17 | [3] Feist, Josselin, Gustavo Grieco, and Alex Groce. "Slither: a static analysis framework for smart contracts." In 2019 IEEE/ACM 2nd Intl. Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB), pp. 8-15. IEEE, 2019.
18. Other Tools[4] 18 | [4] Parizi, Reza M. et al., "Empirical vulnerability analysis of automated smart contracts security testing on blockchains." In Proc. 28th Annual Intl. Conf. on Computer Science and Software Engineering, pp. 103-113, 2018.
19. Australia’s National Science Agency Dilum.Bandara@ data61.csiro.au linkedin.com/in/dilumb/ 19 |

Editor's Notes

For about 3-years, I have been researching on BC-based applications, data migration, workloads, & performance
I have also involved in BC architecture & security assessment of a couple of supply chain & capital market applications
In this talk, my goal is to motivate why smart contracts testing is extremely important
I will also cover a couple of example on how things can go wrong & tools we can rely on
Failures in Blockchains are Permanent & Catastrophic
Here’s some statistics from a web site called Blockchain graveyard
We can see that application vulnerabilities & how you manage keys are key sources of attacks
More frighteningly, quite a lot of attacks are classified as “unknowns”
There are also issues around system-level vulnerabilities
To guard against these issues
First we need to be build secure software & infrastructure
Then we should thoroughly test them
BCs are not standalone systems.
They need to interact with various external systems ranging from DApps to cloud & legacy systems, & even IoT devices
We need to manage keys, data, privacy, & govern both the BC & things that interact with it
Thus, when we saying we are testing a BC-based application we need to conduct a whole lot of assessments on:
Architecture & Integration
Smart contracts
Key management & access control
Data management & privacy
When it comes to consortium or private BCs we also need to focus on
Scalability & performance
Consensus algorithm
Infrastructure
Data management, privacy, & governance
While this broad evaluation is essential, it is costly & time consuming. Usually 3rd parties are used to perform last phase of testing
In this talk, I’ll limit my discussion to smart contract testing
These are some of the well-know issues in SCs
A race condition occurs when more than one piece of code try to concurrently update a state. For e.g., we have seen the infamous DAO re-entrancy attack
Today, we also advanced re-entrancy attacks spanning multiple functions. If you mess-up you may ended up with a deadlock too
Denial of Service is possible when you don’t properly handle errors or due to the block size/gas limit
Arithmetic overflow & underflow of variables are common too
There can be unintended behaviour when your SC is sensitive to TX order. One such example is front running
Time & block no dependent decisions can invite attacks
There can also be SC language specific issues, e.g., if you forget to set the owner of a SC. Also, use of depreciated functions is another problem, which can go unnoticed depending on the solidity compiler version you use
Also, there were specific issues related to how EVM handle certain addresses and limits on function depth
Now that you know these, you should definitely try to check for these. There can also be many others that are specific to a given SC. Hence, you need to check for those are well
He’s a function to transfer crypto from a SC to a given address
This is usual cases of over or under flowing a variable.
Also, be aware this can happen with ++, --, *, /, and bit shift operations
Be careful with the smaller data-types like uint8, uint16, uint24...etc: they can even more easily hit their maximum value.
Solution is to check if sender has balance and for overflows
Another solution is to rely on a library like SafeMath that perform these checks for you
This is an example of re-entrancy within a single function.
Call the fallback function. You don’t have any idea what that fallback function does.
For e.g., while you wait for success it may call the withdrawBalance func again & initiate multiple withdrawals. As there’s money you’ll call this again & again
This is what happened in DAO attack
We need to move userBalance set to zero before call.value
Also, we can use a withdraw function to get the receiver to pull the crypto
Here’s an example with 2 functions
In this example, re-entrancy can be used either to call transfer or withdraw functions
Same bug can occur across multiple contracts, if those contracts share state
Here’s another example where just setting balance won’t work
The withdrawReward function is fixed to overcome re-entrancy issue
However, it can be called within getFirstWithdrawalBonus function, where for the 1st withdrawal you get a bonus
While call.value is pending you can call getFirstWithdrawalBonus function
In this case, by calling withdraw function claimedBonus need to be set to True
Potential solutions
Use a mutex
Use withdraw function
Here are some of the best practices, some of which we have already seen as patterns
For e.g., upgradable contracts can be developed through proxy or SC registry
We also talked about speed bumps, rate limits, and balance limit as various from of limiting TXs
There are several classifications of software testing. Here’s one way, that I would consider more relevant to SCs
Most developers are familiar with dynamic testing, where we observe a SC while executing it in a local or test network
Unit testing & integration testing are forms of dynamic testing as we execute the code
White box testing – You know code or international functionality
Black box testing – Only ABI is available so you know the functions & parameters
Static testing – is a class of methods that examine the source code or bytecode of a contract without executing it
Source code – use code as it is. Typically IDEs (e.g., Remix) give various hints as you write code. Or evaluated at the time of compilation
Byte code – Use the compiled code, e.g., when multiple high-level languages can generate the same byte code
Code smells are symptoms in source code that possibly indicate deeper problems
By detecting code smells we can try to avoid potential bugs & improve the design of our code
For e.g., 1st one check whether we are validating return value for an external call.
Other e.g., include use of hard corded addresses, call in loops, high gas consuming functions, and reentrancy
Here’s a checklist of 20 code smells that you should make sure your SC doesn’t have these issues
Here’s a table from a survey of testing tools for Ethereum SCs
Each row is a tool
Columns are group based on their purpose of testing (or objective) whether the test is performed based on bytecode or source code.
We can see that most tools are for static testing & support for dynamic testing is low
These 2 sets of columns capture the technique used by the tool
Some tools will translate or convert either byte or source code to another intermediate language that is easier to analyse using formal techniques
I would encourage your to have a look at this paper as it’s not very difficult to read
Here’s another table from the same paper on SC security testing tools
It also split the testing based on the target, for e.g., whether it’s testing the BC platform, EVM, or the source code. Source code testing may actually happen at bytecode
You can see that Remix-IDE has a good coverage of tests. However, remember that good coverage doesn’t necessarily mean good accuracy
For e.g., a tool may not detect a more complex cases of these vulnerabilities. Hence, detailed & wide-spread testing is needed
Good thing is, most of these tools are either open source or free
Fuzzing or fuzz testing is an automated testing technique that gives invalid or random inputs to a program, & then monitor for exceptions such as crashes, failed assertions, or other potential issues.
Groups of such inputs are called test oracles.
ContractFuzzer generates fuzzing inputs based on the ABI specifications of a SC to detect security vulnerabilities
For e.g., in gasless send address.send() is called with value = 0
In exception disorder we check whether an exception is propagated through a chain of calls
Freezing Ether check for cases like calling selfdestruct without returning Ether
It also use EVM to log SC runtime behavior, and analyzes these logs to identify security vulnerabilities
Slither is another static analysis tool
Given a complied SC, it transform the code and then perform various analysis on the transformed code
Based on this analysis, Slither can support security testing, code optimization, review, & user understanding
For e.g., it can check for re-entrancy, code optimizations, and provide various visualizations to understand code
There are several other tools and Oyente and Myrhril are popular
All these are static analysis tools
Support for other smart contract languages such as JavaScript, Java, Go, & DAML is limited.
Alternatively, some consortium blockchains also support Solidity so it’s something to keep in mind when choosing your SC language
There seems to be an interest to use WebAssembly as the SC binarly language. Then we’ll have access to quite a lot static & dynamic testing tools design for WebAssembly