search

20 - Denial

reentrancy and gas

Ethernaut Levl20: Denialarrow-up-right

// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
contract Denial {

    address public partner; // withdrawal partner - pay the gas, split the withdraw
    address public constant owner = address(0xA9E);
    uint timeLastWithdrawn;
    mapping(address => uint) withdrawPartnerBalances; // keep track of partners balances

    function setWithdrawPartner(address _partner) public {
        partner = _partner;
    }

    // withdraw 1% to recipient and 1% to owner
    function withdraw() public {
        uint amountToSend = address(this).balance / 100;
        // perform a call without checking return
        // The recipient can revert, the owner will still get their share
        partner.call{value:amountToSend}("");
        payable(owner).transfer(amountToSend);
        // keep track of last withdrawal time
        timeLastWithdrawn = block.timestamp;
        withdrawPartnerBalances[partner] +=  amountToSend;
    }

    // allow deposit of funds
    receive() external payable {}

    // convenience function
    function contractBalance() public view returns (uint) {
        return address(this).balance;
    }
}

hashtag
Goal of this level

  • deny the owner from withdrawing funds

hashtag
What you should know before

  • reentrancy

Withdrawal from the owner will be reverted because of infinite while loop.

(If we merely reverted from our fallback function, the next line will still be executed because it's using low-level call )

hashtag
Key Takeaway

  • external calls to unknown contracts can still create denial of service attack vectors

  • makes sure a fixed amount of gas is not specified

  • make sure you follow checks-effects-interactions pattern to prevent reentrancy attack

Previous19 - Alien CodexNext21 - Shop

Last updated