d1 re entrancy
play

D1: Re-entrancy Where has this term been used before? #1: - PowerPoint PPT Presentation

Dec 26, 2023 •177 likes •338 views

D1: Re-entrancy Where has this term been used before? #1: Re-entrancy entrancy Race to empty , recursive call vulnerability , call to the unknown Top vulnerability in DASP Calls to external contracts that result in new calls back

  1. D1: Re-entrancy

  2. Where has this term been used before?

  3. #1: Re-entrancy entrancy  Race to empty , recursive call vulnerability , call to the unknown  Top vulnerability in DASP  Calls to external contracts that result in new calls back into the calling contract (often via low-level call() that forwards all gas)  For the calling function, this means that the contract state may change in the middle of its execution.  Loss : estimated at 3.6M ETH (~$60M at the time) Portland State University CS 410/510 Blockchain Development & Security

  4. Walkthr kthroug ough h sc scen enario ario  A victim contract tracks the balance of a number of addresses and allows users to retrieve funds with its public withdraw() function.  A malicious smart contract uses the withdraw() function to retrieve its entire balance.  The victim contract executes the call.value(amount)() low level function to send the ether to the malicious contract before updating the balance of the malicious contract .  The malicious contract has a payable fallback() function that accepts the funds and then calls back into the victim contract 's withdraw() function again.  This second execution triggers a transfer of funds: remember, the balance of the malicious contract still hasn't been updated from the first withdrawal.  The malicious contract successfully withdraws its entire balance a second time. Portland State University CS 410/510 Blockchain Development & Security

  5. Ex Example ple #1  Expected scenario TheDao Balance: 100 Balance: 100 Balance: 0 splitDAO(proposal, address) Payout : 0 Payout : 100 Payout : 100 withdrawRewardFor(msg.sender) Receiver rewardAccount.payOut(_account, reward) splitDAO() function() {} balances[msg.sender] = 0; Portland State University CS 410/510 Blockchain Development & Security

  6.  Exploitation scenario TheDao Balance: 100 Balance: 100 Balance: 100 Balance: 100 Balance: 100 Balance: 100 Payout : 300 Payout : 100 Payout : 200 Payout : 500 Payout : 0 Payout : 400 splitDAO(proposal, address) withdrawRewardFor(msg.sender) Receiver splitDAO() rewardAccount.payOut(_account, reward) Portland State University CS 410/510 Blockchain Development & Security

  7.  Call before balance update Portland State University CS 410/510 Blockchain Development & Security

  8. Code e vul ulnerability nerability exa xample ple #1 #1  withdrawRewardFor() uses low level call() function to send ether to the msg.sender address  Address is a smart contract and payment will trigger its fallback function with what's left of the transaction gas.  Fallback function can then call (recurse) back into vulnerable contract to again call withdrawRewardFor()  Done before balances are updated! // withdrawRewardFor() to get DAO Tokens if (balances[msg.sender] == 0) function () { withdrawRewardFor(); revert (); } withdrawRewardFor(msg.sender); totalSupply -= balances[msg.sender]; balances[msg.sender] = 0; paidOut[msg.sender] = 0; return true; Portland State University CS 410/510 Blockchain Development & Security

  9. Rem emed ediation iation #1: Check eck-ef effects ects-in interactions eractions  Vulnerable pattern (check-interactions-effects) function withdraw (uint _amount) { require(balances[msg.sender] >= _amount); msg.sender.call.value(_amount)(); balances[msg.sender] -= _amount; }  Fixed pattern (Checks-effects-interactions)  https://fravoll.github.io/solidity- patterns/checks_effects_interactions.html  Check all pre-conditions using assert and require  Then, make changes to contract state  Then, interact with other contracts via external calls function withdraw (uint _amount) { require(balances[msg.sender] >= _amount); balances[msg.sender] -= _amount; msg.sender.call.value(_amount)(); } Portland State University CS 410/510 Blockchain Development & Security

  10. Check eck-Ef Effects ects-Int Interation eration  Counter-intuitive  Typical pattern in programming is to apply effects after interactions already have happened  Wait for return stating that function execution successful  Then change state based on result  But, does not need to address multiple encapsulated function invocations (e.g. re-entrancy from within program)  Must use regardless of trustworthiness of the external call  External call my transfer control to a third party that is malicious Portland State University CS 410/510 Blockchain Development & Security

  11. function getReward(address recipient) public { // Check that reward hasn’t already been claimed require(!claimedReward[recipient]); // Internal work first (claimedReward ) claimedReward[recipient] = true; require(recipient.call.value(rewardValue)()); } Portland State University CS 410/510 Blockchain Development & Security

  12. function buy (uint256 _itemId) payable public { require(priceOf(_itemId) > 0); // Check require(ownerOf(_itemId) != address(0)); require(msg.value == priceOf(_itemId)); require(ownerOf(_itemId) != msg.sender); require(!isContract(msg.sender)); address oldOwner = ownerOf(_itemId); address newOwner = msg.sender; uint256 price = priceOf(_itemId); ownerOfItem[_itemId] = newOwner; // Effects priceOfItem[_itemId] = nextPriceOf(_itemId); Bought(_itemId, newOwner, price); Sold(_itemId, oldOwner, price); uint256 cut = 0; if (cutDenominator > 0 && cutNumerator > 0) { cut = price.mul(cutNumerator).div(cutDenominator); } oldOwner.transfer(price - cut); // Interact } Portland State University CS 410/510 Blockchain Development & Security

  13. Rem emed ediation iation #2  Use a lock/mutex to protect against re-entrancy contract ReentrancyGuard { bool private reentrancyLock = false; // Prevent contract from calling itself (directly or indirectly). modifier nonReentrant() { require(!reentrancyLock); reentrancyLock = true; _; reentrancyLock = false; } }  Modifier then used to protect… Portland State University CS 410/510 Blockchain Development & Security

  14. function claimDay(uint256 _dayIndex) public nonReentrant payable { ... require(msg.sender != seller); require(amountPaid >= purchasePrice); ... // Fire Claim Events Bought(_dayIndex, buyer, purchasePrice); Sold(_dayIndex, seller, purchasePrice); ... // Transfer Funds if (seller != address(0)) { seller.transfer(salePrice); } if (changeToReturn > 0) { buyer.transfer(changeToReturn); } } Portland State University CS 410/510 Blockchain Development & Security

  15. SI CTF Lab Portland State University CS 410/510 Blockchain Development & Security

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Inlining Java Native Calls at Runtime (CASCON 2005 4 th Workshop on Compiler Driven

Inlining Java Native Calls at Runtime (CASCON 2005 4 th Workshop on Compiler Driven

Inlining Java Native Calls at Runtime (CASCON 2005 4 th Workshop on Compiler Driven Performance) Levon Stepanian, Angela Demke Brown Computer Systems Group Department of Computer Science, University of Toronto Allan Kielstra, Gita Koblents,

731 views • 38 slides
OIC/IoTivity Base Framework Sashi Penta Senior Software Engineer IoTivity & OIC Open

OIC/IoTivity Base Framework Sashi Penta Senior Software Engineer IoTivity & OIC Open

OIC/IoTivity Base Framework Sashi Penta Senior Software Engineer IoTivity & OIC Open Source Open Standard OIC Architecture Discovery and Connectivity Interoperability Security and Identification Different device

532 views • 28 slides
Back to the future Back to the future Pointcuts as Pointcuts as Predicates over Predicates

Back to the future Back to the future Pointcuts as Pointcuts as Predicates over Predicates

Back to the future Back to the future Pointcuts as Pointcuts as Predicates over Predicates over Traces Traces Karl Klose, Klaus Ostermann Darmstadt University of Technology, Germany Back to the Future Pointcuts as Predicates over

295 views • 16 slides
Dynamic Detection of Event Handlers Steven P. Reiss Brown University July 21, 2008 DYMON -

Dynamic Detection of Event Handlers Steven P. Reiss Brown University July 21, 2008 DYMON -

Dynamic Detection of Event Handlers Steven P. Reiss Brown University July 21, 2008 DYMON - Page 1 REACTIONS Server Application Todays complex systems Interactions MSG DBMS Messages CLIENT Replies UI (w/ updates)

440 views • 20 slides
SQL and JS Pitfalls Assignment 2 Preparation SQL Concepts SQL vs. NoSQL

SQL and JS Pitfalls Assignment 2 Preparation SQL Concepts SQL vs. NoSQL

SQL and JS Pitfalls Assignment 2 Preparation SQL Concepts SQL vs. NoSQL https://www.youtube.com/watch?v=Nu1UQblRQdM SQL Support for complex aggregation tools Normalized Data NoSQL Flexible data models

667 views • 17 slides
CS251 Jeopardy Spring 2005 CS251 Jeopardy Spring05 p.1/42 Gameboard Data Naming

CS251 Jeopardy Spring 2005 CS251 Jeopardy Spring05 p.1/42 Gameboard Data Naming

CS251 Jeopardy Spring 2005 CS251 Jeopardy Spring05 p.1/42 Gameboard Data Naming Laziness Xforms Imperative Control Types Potpourri 1 1 1 1 1 1 1 1 2 2 2 2 2 2 2 2 3 3 3 3 3 3 3 3 4 4 4 4 4 4 4 4 5

634 views • 42 slides
NAVIGATING MEDIA Research the various media outlets in your community Television, Radio,

NAVIGATING MEDIA Research the various media outlets in your community Television, Radio,

NAVIGATING MEDIA Research the various media outlets in your community Television, Radio, Print, Community Blog Create a relationship Invite them to lunch to start a relationship Promise them always the first lead of a story and a

360 views • 10 slides
Telephone Charging Systems Charging CDR (Call detail Records) IP-DR (IP Detail

Telephone Charging Systems Charging CDR (Call detail Records) IP-DR (IP Detail

Telephone Charging Systems Charging CDR (Call detail Records) IP-DR (IP Detail Records) Petri Noponen, 60136B Charging 3GPP :Charging A function where whereby information related to chargeable operation is

341 views • 18 slides
1 Thank you, Debbie! In todays Webcast, Ill discuss all of the details you must know to

1 Thank you, Debbie! In todays Webcast, Ill discuss all of the details you must know to

Presented by: Richard Ali Ryan White HIV/AIDS Program Data Support Phone: (888) 640 9356 E mail: ryanwhitedatasupport@wrma.com Presentation Date: February 8, 2018 Session Description: Welcome to todays Webcast. Thank you so much for

578 views • 25 slides
Preparing for the 2019 US Proxy and Annual Reporting Season Robert Gray, Jr. Candace Jackson

Preparing for the 2019 US Proxy and Annual Reporting Season Robert Gray, Jr. Candace Jackson

Preparing for the 2019 US Proxy and Annual Reporting Season Robert Gray, Jr. Candace Jackson Laura Richman Partner Associate Counsel +1 713 238 2600 +1 312 701 8754 +1 312 701 7304 rgray@mayerbrown.com crjackson@mayerbrown.com

1.1k views • 76 slides
COVID 19 UPDATE 5-7-2020 Todays Agenda Welcome Cathy Franklin Opening remarks

COVID 19 UPDATE 5-7-2020 Todays Agenda Welcome Cathy Franklin Opening remarks

COVID 19 UPDATE 5-7-2020 Todays Agenda Welcome Cathy Franklin Opening remarks Paul Throne Announcements Shopping App update Cynthia Huskey Ideas for staff when theyre not with a participant - Heidi Feston

408 views • 20 slides
1 Good morning and Thank you all for being on this call today. We recognize that switching

1 Good morning and Thank you all for being on this call today. We recognize that switching

1 Good morning and Thank you all for being on this call today. We recognize that switching systems is never without bumps for any of us and we appreciate your patience as we are onboarding this new system. Today we will be walking through how

413 views • 20 slides
Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You

Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You

Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You Only Get One Look A Tutorial A Tutorial Minos Garofalakis Garofalakis Johannes Gehrke Johannes Gehrke Minos Rajeev Rastogi Rajeev

1.58k views • 125 slides
Lync Server 2010 Overview of Features and Capabilities October 18 th , 2012 Helps you create

Lync Server 2010 Overview of Features and Capabilities October 18 th , 2012 Helps you create

Administration of Lync Server 2010 Overview of Features and Capabilities October 18 th , 2012 Helps you create an initial topology design Collects component configuration information Provides a preview of deployment Exports XML

302 views • 26 slides
MPI-Checker Static Analysis for MPI Alexander Droste, Michael Kuhn, Thomas Ludwig November

MPI-Checker Static Analysis for MPI Alexander Droste, Michael Kuhn, Thomas Ludwig November

MPI-Checker Static Analysis for MPI Alexander Droste, Michael Kuhn, Thomas Ludwig November 15, 2015 Motivation Clang Static Analyzer MPI-Checker Limitations Evaluation Future Work Motivation 2 / 39 Motivation Clang Static Analyzer

535 views • 41 slides
Algebraic Voting Theory Michael Orrison Harvey Mudd College Collaborators and Sounding Boards

Algebraic Voting Theory Michael Orrison Harvey Mudd College Collaborators and Sounding Boards

Algebraic Voting Theory Michael Orrison Harvey Mudd College Collaborators and Sounding Boards Don Saari (UC Irvine) Anna Bargagliotti (University of Memphis) Steven Brams (NYU) Brian Lawson (Santa Monica College) Zajj Daugherty 05 Alex

908 views • 38 slides
What is fairness? The parties have not shown us, and I have not been able to discover . . . .

What is fairness? The parties have not shown us, and I have not been able to discover . . . .

What is fairness? The parties have not shown us, and I have not been able to discover . . . . statements of principled, well-accepted rules of fairness that should govern districting. - Justice Anthony Kennedy, Vieth v Jubelirer (2004) Is

1.23k views • 79 slides
Computational Social Choice: Autumn 2013 Ulle Endriss Institute for Logic, Language and

Computational Social Choice: Autumn 2013 Ulle Endriss Institute for Logic, Language and

Voting in Combinatorial Domains COMSOC 2013 Computational Social Choice: Autumn 2013 Ulle Endriss Institute for Logic, Language and Computation University of Amsterdam Ulle Endriss 1 Voting in Combinatorial Domains COMSOC 2013 Plan for

450 views • 24 slides
BELLA VISTA PROPERTY OWNERS ASSOCIATION ELECTION COMMITTEE MEETING ELECTION RESULTS NOVEMBER

BELLA VISTA PROPERTY OWNERS ASSOCIATION ELECTION COMMITTEE MEETING ELECTION RESULTS NOVEMBER

BELLA VISTA PROPERTY OWNERS ASSOCIATION ELECTION COMMITTEE MEETING ELECTION RESULTS NOVEMBER 19, 2019 RIORDAN HALL MEMBERS PRESENT: Chairperson Tom Throne, Ann Dahlke, James Miller, and Robert Ritschel. MEMBERS VIA TELEPHONE: None. MEMBERS

356 views • 23 slides
Guidelines for IEEE-SA Meetings All IEEE-SA standards meetings shall be conducted in

Guidelines for IEEE-SA Meetings All IEEE-SA standards meetings shall be conducted in

This is a call of the IEEE 802.1 TSN TG to discuss the application of TSN to automotive in-vehicle networks Dial-in information United States - New York, NY +1.646.307.1990 United States - San Francisco, CA +1.415.655.0381

450 views • 5 slides
2010 Election Administration and Voting Survey The Statutory Overview Provides information

2010 Election Administration and Voting Survey The Statutory Overview Provides information

2010 Election Administration and Voting Survey The Statutory Overview Provides information about States definitions, laws, processes and procedures related to administering elections. EAC provided States with their 2008 responses and

466 views • 14 slides
The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll

The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll

EXPLORATORY DATA ANALYSIS: CASE STUDY The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll call ID Session (year) Vote Country code rcid session vote ccode Each row is a country- 46 2 1 2

461 views • 26 slides
Members - Call to Action, August 2020 Miami Group Legislative Action Committee Rich Jordan,

Members - Call to Action, August 2020 Miami Group Legislative Action Committee Rich Jordan,

Members - Call to Action, August 2020 Miami Group Legislative Action Committee Rich Jordan, Committee Chairperson Email: richard.jordan.oh@gmail.com / PH: (513) 575-9545 Sierra Club of Ohio, Miami Group. Web address: https://miamigroup.org

401 views • 15 slides
Brexit, Trump, and Polling: A Form of Statistical Inference November

Brexit, Trump, and Polling: A Form of Statistical Inference November

Brexit, Trump, and Polling: A Form of Statistical Inference November 16, 2016 Prof. Michael Paul Prof. William Aspray Statistics Powerful but can be misleading. Ex

732 views • 9 slides

More recommend