Logo

dev-resources.site

for different kinds of informations.

What is Reentrancy?

Published at
11/25/2024
Categories
solidity
smartcontract
blockchain
ethereum
Author
vallinayaki21
Author
13 person written this
vallinayaki21
open
What is Reentrancy?

Reentrancy in Smart Contracts means calling a function recursively until the called contract is depleted of funds. This is one of the most common smart contract hacks.

The example below will give a clear idea of the reentrancy attack

// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
//Understand what reentrany is
//This contract contains bug. DONOT use this
contract BadBank {
    receive() external payable {}
    mapping(address => uint256) public balances;
    constructor() payable {}

    function deposit() public payable {
        balances[msg.sender] += msg.value;
    }

    function withdraw() external {
        (bool ok, ) = payable(msg.sender).call{value: balances[msg.sender]}("");
        require(ok, "transfer failed");
        balances[msg.sender] = 0;
    }
}

contract BankDrainer {
    receive() external payable {
        while (msg.sender.balance >= 1 ether) {
            BadBank(payable(msg.sender)).withdraw();
        }
    }

    function attack(BadBank _badBank) external payable {
        _badBank.deposit{value: 1 ether}();
        _badBank.withdraw();
    }
}

Enter fullscreen mode Exit fullscreen mode

There are 2 contracts - BadBank which has the bug and BankDrainer which attacks BadBank

Structure of BadBank

BadBank has one state variable - balances - which tracks how much each user deposits into the contract

receive function - which makes the contract accept payment!

deposit function - adds the input msg.value to the existing balance of the user and transfers money from user wallet to contract (msg.value should be given - this function is payable)

withdraw function - this is where the problem lies :D
This function has three lines of code

First line - transfers user balance (which the user deposited into the contract) back to the user

(bool ok, ) = payable(msg.sender).call{value: balances[msg.sender]}("");

second line - Check if the transfer is successful (ok is true). Else throw error

require(ok, "transfer failed");
Third line: Set the user's balance to zero (as you have already transferred all the money back to the user!).

balances[msg.sender] = 0;

Pretty straightforward right!

Let's see how BankDrainer tries to hack the money stored in BadBank (which is a classic example of a reentrancy attack)

Structure of BankDrainer

attack function - calls deposit and withdraw function in BadBank contract consecutively

receive function - there is some weird logic there! Inside receive if the msg.sender's balance is >= 1 Ether, we are calling BadBank's withdraw again!

Do you remember when the receive() function will be called? Yes! Whenever the contract receives ETH! So this logic will be executed whenever someone / some contract tries to send ETH to BankDrain.

Great! Let's see how these work together to perform the attack!

Deploy the contracts using remix and follow the steps

Image description

Step 1: We'll execute the attack() function using BadBank's contract address.

Image description

deposit() in BadBank will keep track of balance[BankDrainer's] address = 1 ETH and 1 ETH will be transferred to BadBank

Step 2: Calling BadBank's withdraw() function. Moving to withdraw(),

(bool ok, ) = payable(msg.sender).call{value: balances[msg.sender]}("");

That is BadBank sending 1 ETH to BankDrainer. This will redirect the control to receive() function in BankDrainer

So inside receive() function, we are calling withdraw again (as msg.sender = BadBank's address inside BankDrainer >= 1 ETH).

 withdraw() in BadBank -> receive() in BankDrainer -> withdraw() in BadBank -> receive() in BankDrainer -> and on and on ...
Enter fullscreen mode Exit fullscreen mode

This will be recursively called until BadBank runs out of balance.

Eventually, all the money in the BadBank contract will end up in BankDrainer. And that's how you demonstrate a reentrancy attack!

Image description

Happy Learning!

smartcontract Article's
30 articles in total
Favicon
Vyper Data Types (Series 2)
Favicon
Vyper is redefining smart contract development with its focus on simplicity, security, and efficiency. With its rapidly growing community of developers, Vyper is becoming the go-to for smart contract development, creating a thriving ecosystem.
Favicon
Have You Fallen for a Phishing Scam? Let’s Talk About It πŸ‘€
Favicon
How much does smart contract development cost?
Favicon
OverFlow and UnderFlow causes in Solidity
Favicon
INTEGRATION OF DAPPS WITH MODE: WALLET AND SMART CONTRACTS | PART 2: CONNECTING SMART CONTRACTS TO THE FRONT-END
Favicon
Web3 and Blockchain Development: Unlocking the Power of Decentralized Applications
Favicon
OverFlow and UnderFlow causes in Solidity
Favicon
Need some help for getting Web3 internship
Favicon
The Danger of Randomness in Smart Contracts and its solution
Favicon
What is Reentrancy?
Favicon
Smart Contract Upgrades: Enhance Next-Level Blockchain Security
Favicon
Smart Contract Audits: Ensuring Safe Blockchain Migration
Favicon
Send Tokens in Bulk with Low Fees and Fast Delivery: The Ultimate Airdrop Tool for 2024
Favicon
πŸ›‘οΈ Why Using OpenZeppelin in Smart Contracts Is Essential
Favicon
A Walkthrough of Solidity Custom Errors
Favicon
How to write dynamic staking smart contract step by step in practice
Favicon
How to migrate smart contracts to a blockchain?
Favicon
Every Blockchain Developer Must Know About This Scam!
Favicon
Smart Contract Migration: Essential Steps for Secure Upgrades
Favicon
Basic understanding of Dynamic Staking
Favicon
INTEGRATION OF DAPPS WITH MODE: WALLET AND SMART CONTRACTS | PART 1: CONNECTING THE WALLET
Favicon
A Step-by-Step Guide to Automating Smart Contract Upgrades with Deep Storage Data
Favicon
Blockchain-based FinTech Solution
Favicon
How Deep Storage Data Transforms Smart Contract Migration
Favicon
How to Move Smart Contracts From Existing Blockchain Platforms to New Ones?
Favicon
How to Write a Token Price Oracle Smart Contract
Favicon
Future of Smart Contract development: Trends and Predictions forΒ 2025
Favicon
Smart Contract Safety: How to Verify Before You Interact
Favicon
Smart Contract Security Audit using Deep Storage Data

Featured ones: