Writeup for Vault

Hello h4ck3r, welcome to the world of smart contract hacking. Solving the challenges from Ethernaut will help you understand Solidity better. For each challenge, a contract will be deployed and its instance will be provided. Your task is to interact with the contract and exploit its vulnerabilities. Don’t worry if you are new to Solidity and have never deployed a smart contract before. You can learn how to deploy a contract using Remix here.

Challenge

The goal of this level is to unlock the vault and pass the challenge!

Contract Explanation

Click to view source contract

         1// SPDX-License-Identifier: MIT
 2pragma solidity ^0.8.0;
 3
 4contract Vault {
 5    bool public locked;
 6    bytes32 private password;
 7
 8    constructor(bytes32 _password) {
 9        locked = true;
10        password = _password;
11    }
12
13    function unlock(bytes32 _password) public {
14        if (password == _password) {
15            locked = false;
16        }
17    }
18}

If you feel like you understand the contract, you can move to the exploit part. If you are a beginner, please go through the Contract Explanation as well. It will help you understand Solidity better.

The contract has two state variables: locked and password. locked is a boolean variable and it is initialized to true in the constructor. password is a bytes32 variable and it is initialized to a bytes32 value in the constructor.

1constructor(bytes32 _password) {
2    locked = true;
3    password = _password;
4}

The constructor initializes the locked variable to true and the password variable to the value of _password, which is an argument to the constructor.

1function unlock(bytes32 _password) public {
2    if (password == _password) {
3        locked = false;
4    }
5}

The function unlock() is a public function that takes a bytes32 _password as an argument. If the value of _password matches the value of password, the function sets the locked variable to false.

Exploit

By looking into the code, we can see that we can unlock the vault by calling the unlock() function with the password as an argument.

We can see that the password is a private variable, which means it can only be accessed by functions within the contract. It is not visible to outside contracts. So we can’t know the password value by interacting with the contract. If we check the ABI, we cannot find the password because its visibility is restricted to only that contract. If it were public, anyone outside the contract could interact with the contract and know the password.

Now it’s time to open the console. Open the Vault challenge and press ctrl+shift+j to open the console.

1> contract.abi

In the ABI, we can’t find the password. So now how can we get the password?

Now for a moment, let’s come out of this challenge and think about what blockchain is and what is so special about blockchain.

You are right!! It’s immutability and transparency. The entire data of a blockchain is public and anyone will be able to see any transaction in the blockchain.

Now let’s discuss the different types of variables in Solidity. There are three types of variables in Solidity.

State Variables: Variables whose values are permanently stored in a contract storage.
Local Variables: Variables whose values are present till the function is executing.
Global Variables: Special variables that exist in the global namespace used to get information about the blockchain.

Check the below contract to understand the different types of variables.

 1contract Variables{
 2    uint256 State_number; // State Variable which means it is stored permanently in blockchain
 3
 4    function set_State_number(uint256 _num)public{
 5        uint256 _temp=_num; // Local variable which means the _temp value will be stored in memory and
 6                            // Once function execution completes the storage of _temp will be freed.
 7        State_number=_temp;
 8    }
 9
10    function get_blockhash()public returns(bytes32){
11        return blockhash(block.number-1);
12        /*blockhash is a global variable. for simpler understanding assume global variables as a function which
13        * is not defined by you but you can use it anywhere in the contract.
14        */
15    }
16}

Now let’s understand where these variables are stored. Local variables are stored in memory, which is a temporary storage. Once the function execution completes, the memory storage given to a particular local variable will be freed.

State variables are stored in the contract’s permanent storage, unlike local variables stored in memory. To be more clear, let’s assume the contract has two kinds of storage: permanent storage and temporary storage. State variables are stored in permanent storage and local variables are stored in permanent storage.

Now let’s dive into how state variables storage works. Assume you have a book containing 200 pages and you have written some important data on the 100th page. The next day you want to see the data, how are you going to refer to that data? Will you go from page 1 to page 100 and check for data, or will you directly open the 100th page since you know the data is stored on the 100th page? Obviously, you will directly open the 100th page and check for data.

The same way, just like pages in a book, we have storage slots in EVM. A page in a book contains a certain number of lines to be filled, and in storage slots, we can store a maximum of 32 bytes. In a page, you may or may not fill all the lines, same way here the storage slot may or may not contain a full 32 bytes of data. Suppose you have a large amount of data to be stored that cannot be filled in one single page, then how are you going to write? You will write whatever data fills this page and write the remaining data in another page. Same way, we store large amounts of data in different slots, but it won’t be the same as how we write in a book, it will be different. I will be explaining it in the coming challenges.

So, as far as we understood, EVM stores state variables in storage slots. So, if there is some data stored in one of the slots, how can you get that particular data? We can get that data by using the key. The key is basically the slot number. Just like an array has indexes from 0, storage slots also start from 0. The first 32 bytes of data will be stored in slot 0, and the next 32 bytes will be stored in slot 2, etc. Check the following example.

 1contract Storage_slots{
 2    bool boolean=true; // 1 byte
 3    uint256 number=256;  //32 bytes
 4    uint128 number1=100; //16 bytes
 5    uint128 number2=101; //16 bytes
 6
 7    //1 byte=8bits
 8    //uint256=256 bits =32 bytes
 9
10    //slot 0: boolean
11    //slot 1: number
12    //slot 2: number1,number2
13}

Now, if we check the state variables of the contract, the first variable is locked, which is of type bool, and the second state variable is password, which is of type bytes32. So, locked will be stored in the 0th slot, and password will be stored in the 1st slot.

The web3 library has a function named getStorageAt() that takes the contract address and slot number as arguments and returns the value at the slot.

Our challenge is to unlock the vault. If we know the password, we can unlock the vault. Enter the following:

1> await web3.eth.getStorageAt(contract.address,1)

Now, once we get the password, we need to call the unlock() function by passing the password as an argument to unlock().

1> await contract.unlock("0x412076657279207374726f6e67207365637265742070617373776f7264203a29")

We can verify whether the vault is unlocked or not by calling locked().

1> await contract.locked()

That’s it! The challenge is solved. Now we just need to submit the challenge.

Key Takeaways

We should not store any important data in smart contracts. Even though the state variables view is private, it can be accessed by anyone.

***Hope you enjoyed this write-up. Keep on hacking and learning!***

Vault

Contents

Writeup for Vault

Challenge

Contract Explanation

Exploit

Key Takeaways

Comments