Ethereum & smart contracts

Solidity: Ethereum's Programming Language

Pomegra Learn

Solidity: Ethereum's Programming Language

Solidity is the primary programming language for writing smart contracts on Ethereum. Inspired by JavaScript, C++, and Python, Solidity is a statically typed, object-oriented language designed specifically for the Ethereum Virtual Machine (EVM). Since its introduction in 2014, Solidity has become the lingua franca of smart contract development, with thousands of production contracts managing billions of dollars in value. Understanding Solidity is essential for anyone building decentralized applications or auditing smart contracts.

Quick Definition

Solidity is a high-level programming language for writing smart contracts that run on Ethereum and EVM-compatible blockchains. Contracts written in Solidity are compiled to bytecode and stored on-chain; when called, the EVM executes this bytecode deterministically across all validating nodes.

Key Takeaways

EVM-specific language: Solidity is designed for Ethereum's execution model (accounts, state, gas metering).
Statically typed: Variables and functions declare types explicitly, reducing bugs.
Object-oriented: Contracts are similar to classes; they maintain state and define methods.
Immutable on-chain: Deployed contracts cannot be updated; new versions must be redeployed.
Gas-conscious design: Developers must optimize for gas cost, affecting architecture and design patterns.
Mature tooling: Solidity has excellent development environments (Hardhat, Foundry), testing frameworks, and auditing tools.

Language Origins and Evolution

Vitalik Buterin and the Ethereum team designed Solidity to abstract away EVM bytecode details while exposing blockchain-specific concepts like accounts, gas, and state. The name "Solidity" was chosen to convey the language's goal: creating solid, immutable systems on-chain.

Version history:

2014: Solidity introduced with Ethereum's design phase.
2015: Solidity 0.1 released alongside Ethereum mainnet.
2017: Solidity 0.4 introduces safer arithmetic (checks for overflow/underflow).
2020: Solidity 0.6 and later add significant improvements (safer syntax, libraries).
2026: Solidity 0.8.x is the stable version; development continues toward 1.0.

Each major version introduces breaking changes, requiring developers to upgrade contracts and tooling. This reflects blockchain's reality: perfect code is impossible, and evolution is necessary.

Core Language Concepts

State Variables and Storage

State variables are data stored on-chain, persisting between transactions. Every instance of a contract has its own state.

contract Counter {
  uint256 public count = 0;  // State variable

  function increment() public {
    count += 1;
  }

  function getCount() public view returns (uint256) {
    return count;
  }
}

When deployed, Counter creates a storage slot for count, initialized to 0. Calling increment() adds 1 to this stored value. Calling getCount() returns the current value without modifying state.

Key insight: State variables are expensive. Each storage write costs 20,000 gas; reads cost 100 gas (or 2,100 gas if previously unaccessed in the transaction). Developers optimize by batching writes, using temporary local variables, and avoiding unnecessary storage access.

Functions and Visibility

Functions specify visibility (who can call them) and state access patterns.

contract Example {
  uint256 private internal_value = 42;
  uint256 public public_value = 100;

  function publicFunc() public {
    // Anyone can call
  }

  function internalFunc() internal {
    // Only this contract and contracts inheriting from it
  }

  function privateFunc() private {
    // Only this contract
  }

  function externalFunc() external {
    // Only called from outside; cannot be called from this contract
  }
}

View and Pure functions read state but do not modify it, making them "free" (no gas cost) when called from off-chain clients, though they cost gas when called from on-chain transactions.

function getBalance() public view returns (uint256) {
  return address(this).balance;  // Reads but does not modify state
}

function add(uint256 a, uint256 b) public pure returns (uint256) {
  return a + b;  // Does not even read state
}

Events and Logging

Events are logs emitted when important actions occur. They are stored off-chain in logs but their hashes are recorded on-chain, enabling verification.

event Transfer(address indexed from, address indexed to, uint256 amount);

function transfer(address to, uint256 amount) public {
  balances[msg.sender] -= amount;
  balances[to] += amount;
  emit Transfer(msg.sender, to, amount);  // Emit event
}

Events are indexed, allowing off-chain services to listen and react. When a Transfer event is emitted, dApps can detect it, update their UI, and notify users. Indexed parameters (marked with indexed) are searchable; up to 3 per event.

Modifiers and Access Control

Modifiers are reusable checks applied to functions, common in access control and validation.

modifier onlyOwner() {
  require(msg.sender == owner, "Not authorized");
  _;  // Placeholder for the function body
}

function withdraw() public onlyOwner {
  // Only owner can call this
}

The _; represents where the function body executes. The modifier's checks run first; if any require() fails, the transaction reverts and state remains unchanged.

Type System and Safety

Solidity is statically typed, reducing certain classes of bugs. However, type safety does not prevent all vulnerabilities.

Integer Arithmetic and Overflow

In Solidity 0.8+, integer overflow and underflow are checked by default:

uint8 x = 255;
x += 1;  // Reverts! (would overflow)

In earlier versions, overflow silently wrapped around; developers had to use SafeMath libraries. This change eliminated a major vulnerability class.

Special Types

Address: Represents a 20-byte Ethereum address.

address user = 0x123...;
uint256 balance = user.balance;  // Query balance
user.transfer(1 ether);  // Send Ether

Bytes: Fixed-size byte arrays (bytes32, bytes16) or dynamic (bytes).

Enums: Named constants, useful for state machines.

enum OrderStatus { Pending, Filled, Cancelled }
OrderStatus status = OrderStatus.Pending;

Control Flow and Transactions

Transactions Are Atomic

Solidity functions execute atomically: either the entire transaction succeeds and state is updated, or it reverts and all changes are undone.

function atomicSwap(address other) public {
  uint256 myBalance = balances[msg.sender];
  uint256 theirBalance = balances[other];

  balances[msg.sender] = theirBalance;
  balances[other] = myBalance;
  // If anything fails during execution, all updates revert
}

This atomic property is foundational to smart contract security and consistency.

Error Handling

Functions can revert with an error message:

function withdraw(uint256 amount) public {
  require(amount <= balances[msg.sender], "Insufficient funds");
  balances[msg.sender] -= amount;
  (bool success, ) = msg.sender.call{value: amount}("");
  require(success, "Transfer failed");
}

If a require() check fails, the transaction reverts, and the user is charged some gas but their state remains unchanged. Custom error types provide more gas-efficient revert messages:

error InsufficientFunds(uint256 available, uint256 requested);

function withdraw(uint256 amount) public {
  if (amount > balances[msg.sender]) {
    revert InsufficientFunds(balances[msg.sender], amount);
  }
  // ...
}

Data Structures and Patterns

Mappings

Mappings are key-value stores, the Solidity equivalent of hash tables.

mapping(address => uint256) public balances;

function setBalance(address user, uint256 amount) public {
  balances[user] = amount;
}

function getBalance(address user) public view returns (uint256) {
  return balances[user];  // Returns 0 if key does not exist
}

Mappings are efficient (O(1) lookup) and allow sparse storage (unused keys consume no storage).

Arrays and Structs

Arrays store ordered collections; structs group related data.

struct Order {
  address buyer;
  uint256 amount;
  bool filled;
}

Order[] public orders;

function placeOrder(uint256 amount) public {
  orders.push(Order({
    buyer: msg.sender,
    amount: amount,
    filled: false
  }));
}

Arrays can be dynamic (Order[]) or fixed-size (Order[10]). Iterating over large arrays is expensive; many production contracts limit array iteration or use off-chain indexing.

Gas Optimization Patterns

Storage Packing

The EVM allocates storage in 32-byte slots. Tightly packing variables reduces storage use.

// Inefficient: uses 3 storage slots
uint256 a;
uint8 b;
uint256 c;

// Efficient: uses 2 storage slots
uint256 a;
uint256 c;
uint8 b;  // Packed with c

Local Variables and Memory

Local variables are cheaper than state variables.

// Expensive: reads state 3 times
function calculate() public view returns (uint256) {
  return value + value * 2 + value - 100;
}

// Cheaper: reads state once
function calculate() public view returns (uint256) {
  uint256 v = value;
  return v + v * 2 + v - 100;
}

Avoiding Loops Over Large Collections

// Expensive: iterates all orders
function getTotalVolume() public view returns (uint256) {
  uint256 total = 0;
  for (uint256 i = 0; i < orders.length; i++) {
    total += orders[i].amount;
  }
  return total;
}

// Better: maintain running total
uint256 public totalVolume = 0;

function placeOrder(uint256 amount) public {
  orders.push(Order(...));
  totalVolume += amount;
}

Inheritance and Code Reuse

Solidity supports inheritance, allowing contracts to extend others.

contract Ownable {
  address public owner = msg.sender;

  modifier onlyOwner() {
    require(msg.sender == owner);
    _;
  }
}

contract PaymentSplitter is Ownable {
  function withdrawAll() public onlyOwner {
    // Only owner can withdraw
  }
}

Multiple inheritance is supported, though order matters (linearization via C3 algorithm). Many production contracts inherit from libraries like OpenZeppelin, which provide audited, well-tested components.

Common Vulnerabilities and Safeguards

Reentrancy

A contract calls an external contract, which calls back into the original contract before the original transaction completes, allowing the attacker to repeat actions (e.g., withdrawing multiple times).

Safeguard: Use the checks-effects-interactions pattern and reentrancy guards.

function withdraw(uint256 amount) public {
  require(amount <= balances[msg.sender]);
  balances[msg.sender] -= amount;  // Update state first
  (bool success, ) = msg.sender.call{value: amount}("");  // Then call external code
  require(success);
}

Integer Overflow/Underflow

Fixed in Solidity 0.8 with checked arithmetic. Use unchecked blocks only when convinced of correctness.

Front-Running

Pending transactions are visible in the mempool; attackers can submit higher-priority transactions to profit. Mitigations include commit-reveal schemes, MEV-resistant designs, and private mempools.

Development Workflow

Write contracts in Solidity using an IDE (Remix, VS Code with Solidity extension).
Compile using solc (Solidity compiler) or through Hardhat/Foundry.
Test locally with Hardhat or Foundry, writing test cases for all functions.
Deploy to a testnet (Sepolia, Goerli) to verify behavior on-chain.
Audit by independent security firms before mainnet deployment.
Monitor post-deployment for unexpected behavior and emergencies.

FAQ

Is Solidity the only language for Ethereum?

No. Vyper is an alternative Python-like language emphasizing security and readability. Lower-level languages like Yul allow EVM bytecode manipulation. However, Solidity dominates by adoption and tooling.

Can Solidity contracts be upgraded?

The contract code at a deployed address is immutable. However, proxy patterns allow delegating calls to new implementations, effectively upgrading logic while preserving state and address. This introduces complexity and potential vulnerabilities.

How are Solidity contracts tested?

Unit tests are written in JavaScript (Hardhat) or Solidity (Foundry). Tests invoke contract functions, verify state changes, and check for expected reverts. Formal verification proves correctness mathematically but requires significant expertise.

Is Solidity secure?

Solidity itself is reasonably safe; the compiler prevents many common programming errors. However, smart contracts face unique risks: oracle vulnerabilities, integer arithmetic edge cases, and gas limit exceptions. Security requires careful design, auditing, and testing.

Summary

Solidity is a powerful, purpose-built language for writing Ethereum smart contracts. It combines familiar syntax (influenced by JavaScript and C++) with blockchain-specific concepts (state variables, gas metering, atomicity). Mastering Solidity requires understanding not just syntax but also gas optimization, security patterns, and the EVM execution model. Most successful smart contracts are well-tested, formally audited, and designed with security in mind. Solidity's evolution continues; future versions will add features (like formal verification support) to make secure smart contract development easier.

How Smart Contracts Execute

Quick Definition​

Key Takeaways​

Language Origins and Evolution​

Core Language Concepts​

State Variables and Storage​

Functions and Visibility​

Events and Logging​

Modifiers and Access Control​

Type System and Safety​

Integer Arithmetic and Overflow​

Special Types​

Control Flow and Transactions​

Transactions Are Atomic​

Error Handling​

Data Structures and Patterns​

Mappings​

Arrays and Structs​

Gas Optimization Patterns​

Storage Packing​

Local Variables and Memory​

Avoiding Loops Over Large Collections​

Inheritance and Code Reuse​

Common Vulnerabilities and Safeguards​

Reentrancy​

Integer Overflow/Underflow​

Front-Running​

Development Workflow​

FAQ​

Related Concepts​

Summary​

Next​