Search…
ICON2
What is ICON?
Getting Started
How to run a local network
How to run a Validator node
How to run an API Endpoint
How to create an ICON account
How to write a smart contract
How to use the JSON-RPC API
Concepts
Economics
Governance
Network
Computational utilities
ICON Stack
Intro to the stack
ICON execution environments
Java
Python (deprecated)
Smart contracts
ICON networks
Client APIs
Storage
IDEs
Projects
BTP & ICON Bridge
Decentralized applications (dApps)
ICON Improvement Proposals (IIPs)
Support
Support
Security
Advanced topics
Release notes
2022-04-11
2021-12-23
2021-12-20
2021-12-10
2021-12-07
2021-10-22
2021-10-12
2021-03-20
2021-03-04
2021-02-17
2020-09-03
2020-08-27
2020-08-23
2020-08-10
2020-04-08
2020-01-28
2019-12-19
Powered By GitBook
Java
The Java execution engine is the main execution environment for smart contracts on ICON. This environment is equivalent to the Java Virtual Machine developed by the OpenJDK project with a translation and auditing layer wrapped around it to provide features supporting a cryptocurrency distributed computing network. The translation and auditing layer is based off of the Aion Virtual Machine. The purpose of this layer is to provide cryptocurrency-specific features and address specific security concerns. A short overview of the features and security considerations in the overall Java execution environment for Java are described below.

Features

Multi-threading

ICON supports multi-threaded code due to support from the JVM. This means that multiple transactions can be executed in parallel on a single node.

Data storage

The Java execution environment uses a combination of the Java Object Graph as well as the typical Merkle Patricia Tree. All objects must be serializable. The contract developer can choose to place objects into the object graph or the tree. If the object is specified to be associated with either VarDB, ArrayDB, or DictDB, then it will be stored as a key-value pair in the merkle tree.
Else, it will go into the object graph. Storing data in the object graph is very expensive, as the entire object must be copied and stored each time that the object is modified. For those who are curious, the object graph is stored as a heap.

Fees per instruction

The ICON translation and audit layer modifies the written smart contract code to include cryptocurrency-specific instructions for accumulating fees related for each computational instruction. Objects in the graph are lazy-loaded and incur fees related to the amount of I/O required to load them.
The step of adding per-instruction fees happens after smart contracts are deployed to the blockchain.

Aion Virtual Machine

ICON's usage of the Aion Virtual Machine includes modified versions of the following features:
  • Data storage layer
  • Java class library restrictions
    • E.g. prevention of non-deterministic behavior
  • Insertion of per-instruction fees
  • Internal error-handling
Here are some articles where you can learn more about the Aion Virtual Machine:

Language Support

As the smart contract code ultimately runs on the Java Virtual Machine, theoretically there is support for development using the other JVM languages, such as Scala, Kotlin, or Groovy. However, this is highly untested, and is probably an area that deserves more attention. If you have interest, feel free to experiment and organize a working group through the ICON Technical Forum or ICON Community Development Organization.

Security

This section details the security features implemented in the Java execution environment. It is separated from the prior Features section in order to highlight security-specific components of the execution environment.

Blacklisting Java features & classes

Among the blacklisted features and classes are the following:
  • Random operation
  • Floating point operation
  • Network calls
  • System calls (incl. file management)
  • Long-running operations

Type-safe heap for data in the object graph

Type-safety is a Java feature that ensures that the only functions allowed to operate on an object are the functions that are defined for that object type. This prevents some types of attacks from occurring on objects in the graph.
ICON Stack - Previous
ICON execution environments
Next
Python (deprecated)
Last modified 1mo ago
Copy link
Contents
Features
Security