Error Handling in Solidity: Safeguard Your Smart Contracts

In blockchain development, errors aren’t just bugs—they’re potential financial disasters. Solidity provides robust tools to handle failures gracefully. Let’s explore how to manage exceptions and protect your contracts.

Why Proper Error Handling Matters

  • πŸ’Έ Prevent fund loss from invalid operations
  • πŸ”’ Secure contracts against malicious inputs
  • πŸ“‰ Reduce debugging time with clear reverts

Core Error Handling Tools

Function Usage Gas Refund
require Input validation Yes
revert Complex conditions Yes
assert Invariant checks No

1. require(): Input Validation Guard

function transfer(address to, uint256 amount) public {
    require(amount <= balances[msg.sender], "Insufficient balance");
    require(to != address(0), "Invalid recipient");
    
    balances[msg.sender] -= amount;
    balances[to] += amount;
}
  • ✅ Use for user input validation
  • πŸ’‘ Provides revert reason string
  • ⛽ Refunds remaining gas

2. revert(): Complex Error Handling

function withdraw(uint256 amount) public {
    if (amount > balances[msg.sender]) {
        revert("Withdrawal amount exceeds balance");
    }
    if (block.timestamp < lockTime[msg.sender]) {
        revert("Funds are locked");
    }
    
    balances[msg.sender] -= amount;
}
  • 🎚️ Handles multiple conditions
  • πŸ“¦ Can use custom errors for gas savings

3. assert(): Invariant Protector

function divide(uint256 a, uint256 b) public pure returns(uint256) {
    uint256 result = a / b;
    assert(b != 0); // Should never fail
    return result;
}
  • πŸ›‘ Use for internal consistency checks
  • πŸ”₯ Consumes all gas on failure (post 0.8.0)

4. try/catch: External Call Safety

try otherContract.execute{value: 1 ether}() {
    emit Success();
} catch Error(string memory reason) {
    emit Failure(reason);
} catch (bytes memory) {
    emit GenericFailure();
}
  • 🎯 Only works with external calls
  • 🧩 Catches specific error types

⚠️ Common Mistakes

  • Using assert for input validation
  • Empty revert messages ("Something failed")
  • Ignoring return values from low-level calls

Best Practices

  1. Use custom errors for frequent reverts
  2. Validate all external inputs with require
  3. Reserve assert for impossible states
  4. Test error paths thoroughly

Custom Errors (Solidity ≥0.8.4)

error InsufficientBalance(uint256 available, uint256 required);

function withdraw(uint256 amount) public {
    if (amount > balances[msg.sender]) {
        revert InsufficientBalance(balances[msg.sender], amount);
    }
    // ...
}

→ Saves gas compared to string messages

Your Challenge

Improve this vulnerable function:

function buyTokens(uint256 amount) public payable {
    if (msg.value != amount * tokenPrice) return;
    // Proceed with transfer
}

Error Handling Tools

  • πŸ” Hardhat Console Logging
  • πŸ“œ Tenderly Debugger
  • πŸ§ͺ Foundry’s expectRevert

Comments

Post a Comment

Popular posts from this blog

Mastering Events & Logging in Solidity: The Blockchain’s Communication Channel

Events are Solidity’s way of leaving breadcrumbs on the blockchain. While smart contracts can’t directly communicate with off-chain applications, events act as a bridge, enabling real-time updates and historical data tracking. Let’s decode this essential feature. Why Events Matter πŸ”” Trigger frontend notifications πŸ“œ Cheaper than storage (gas-efficient logging) πŸ” Enable efficient historical data queries Event Basics: Declaration & Emission // Declare an event event Transfer( address indexed from, address indexed to, uint256 value ); // Emit the event function _transfer(address sender, address receiver, uint256 amount) internal { balances[sender] -= amount; balances[receiver] += amount; emit Transfer(sender, receiver, amount); // ← Event fired! } Key Features of Events Feature Description indexed Parameters Makes events filterable (max 3 per event) ...
Read more

πŸ”’ Secure Your Code: Top 5 Solidity Vulnerabilities & Proven Fixes

Why Smart Contract Security Matters πŸ’Έ Financial Impact Over $3 billion lost to smart contract vulnerabilities in 2022 alone (Immunefi Report) πŸ”— Immutability Challenge 96% of hacked contracts had vulnerabilities that couldn't be patched post-deployment 1. Reentrancy Attacks (The DAO Hack) ❌ Vulnerable Code function withdraw() public { uint balance = balances[msg.sender]; (bool success, ) = msg.sender.call{value: balance}(""); balances[msg.sender] = 0; } Risk: Attacker can recursively call withdraw() ✅ Secure Solution function withdraw() public { uint balance = balances[msg.sender]; balances[msg.sender] = 0; // Checks-Effects-Interactions (bool success, ) = msg.sender.call{value: balance}(""); require(success, "Transfer failed"); } πŸ”§ Prevention Toolkit Use OpenZeppe...
Read more

πŸ”₯ Gas Fees Demystified: The Ultimate Guide to Efficient Smart Contracts

⛽ Understanding Ethereum Gas Fundamentals Gas Components ⛽ Gas Units : Computational work measured in wei πŸ’° Gas Price : Gwei per unit (1 Gwei = 0.000000001 ETH) πŸ“ˆ Gas Limit : Maximum units user will pay for Cost Calculation Total Cost = Gas Used * (Base Fee + Priority Fee) Example: 100,000 gas * (15 Gwei + 2 Gwei) = 1.7 ETH πŸš€ Top 15 Gas Optimization Strategies 1. Memory vs Storage Management ❌ Inefficient function updateUser() public { user.storageVar1 = 1; // 20,000 gas user.storageVar2 = 2; // 20,000 gas } ✅ Optimized function updateUser() public { User memory temp = user; temp.var1 = 1; // Memory write: 3 gas temp.var2 = 2; // Memory write: 3 gas user = temp; // Single storage write: 20,000 gas } πŸ’‘ Savings: 20,000 gas per additional storage write 2. Data Packing & Struct Optimi...
Read more