Guy Golan-Gueta (VMWare Research)
Wednesday, 27.12.2017, 11:30
Callbacks are essential in many programming environments, but drastically complicate program understanding and reasoning because they allow to mutate object’s local states by external objects in unexpected fashions, thus breaking modularity. The famous DAO bug in the cryptocurrency framework Ethereum, employed callbacks to steal $150M. We define the notion of Effectively Callback Free (ECF) objects in order to allow callbacks without preventing modular reasoning.
An object is ECF in a given execution trace if there exists an equivalent execution trace without callbacks to this object. An object is ECF if it is ECF in every possible execution trace. We study the decidability of dynamically checking ECF in a given execution trace and statically checking if an object is ECF. We also show that dynamically checking ECF in Ethereum is efficient and can be done online. By running the history of all execution traces in Ethereum, we were able to verify that virtually all existing contract executions, excluding the DAO or contracts with similar known vulnerabilities, are ECF. Finally, we show that ECF, whether it is verified dynamically or statically, enables modular reasoning about objects with encapsulated state.
This is a joint work with Shelly Grossman, Ittai Abraham, Yan Michalevsky, Noam Rinetzky, Mooly Sagiv and Yoni Zohar. The full paper will appear in POPL '18.
Guy Gueta is a Senior Researcher at VMware Research Group. His research interests include distributed systems, synchronization techniques, and programming languages. Recently, he has focused on consensus algorithms and execution models for Blockchain technologies.
Prior to VMware, Guy was a Researcher at Yahoo Labs, and a software architect in several large software projects. Guy received a Ph.D. degree in Computer Science from Tel Aviv University in 2015.