Smart Contract Security - DoS: Mitigation

Support

_Follow along with this video:_ --- ### Recommended Mitigation Our next step, of course, is providing a recommendation on how to fix this issue. We may be tempted to suggest something like _"Don't check for duplicates."_, but it's important to preserve the original functionality as much as possible. If we do suggest a change in functionality, we must be clear in explaining why. With that said, here are some potential suggestions we could make. 1. Consider allowing duplicates. Users can make new wallet addresses anyway, so a duplicate check doesn't prevent the same person from entering multiple times, only the same wallet address. 2. Consider using a mapping to check duplicates. This would allow you to check for duplicates in constant time, rather than linear time. You could have each raffle have a uint256 id, and the mapping would be a player address mapped to the raffle Id. ```diff + mapping(address => uint256) public addressToRaffleId; + uint256 public raffleId = 0; . . . function enterRaffle(address[] memory newPlayers) public payable { require(msg.value == entranceFee * newPlayers.length, "PuppyRaffle: Must send enough to enter raffle"); for (uint256 i = 0; i < newPlayers.length; i++) { players.push(newPlayers[i]); + addressToRaffleId[newPlayers[i]] = raffleId; } - // Check for duplicates + // Check for duplicates only from the new players + for (uint256 i = 0; i < newPlayers.length; i++) { + require(addressToRaffleId[newPlayers[i]] != raffleId, "PuppyRaffle: Duplicate player"); + } - for (uint256 i = 0; i < players.length; i++) { - for (uint256 j = i + 1; j < players.length; j++) { - require(players[i] != players[j], "PuppyRaffle: Duplicate player"); - } - } emit RaffleEnter(newPlayers); } . . . function selectWinner() external { + raffleId = raffleId + 1; require(block.timestamp >= raffleStartTime + raffleDuration, "PuppyRaffle: Raffle not over"); ``` 3. Alternatively, you could use [**OpenZeppelin's EnumerableSet library**](https://docs.openzeppelin.com/contracts/5.x/api/utils#EnumerableSet). ### Wrap Up That's all there is to it! Let's add this recommendation to our `findings.md` report for this vulnerability and we can move on to the next issue! <details> <Summary>DoS Writeup</summary> ### [M-#] Looping through players array to check for duplicates in `PuppyRaffle::enterRaffle` is a potential denial of service (DoS) attack, incrementing gas costs for future entrants **Description:** The `PuppyRaffle::enterRaffle` function loops through the `players` array to check for duplicates. However, the longer the `PuppyRaffle:players` array is, the more checks a new player will have to make. This means the gas costs for players who enter right when the raffle starts will be dramatically lower than those who enter later. Every additional address in the `players` array is an additional check the loop will have to make. ```javascript // @audit Dos Attack @> for(uint256 i = 0; i < players.length -1; i++){ for(uint256 j = i+1; j< players.length; j++){ require(players[i] != players[j],"PuppyRaffle: Duplicate Player"); } } ``` **Impact:** The gas consts for raffle entrants will greatly increase as more players enter the raffle, discouraging later users from entering and causing a rush at the start of a raffle to be one of the first entrants in queue. An attacker might make the `PuppyRaffle:entrants` array so big that no one else enters, guaranteeing themselves the win. **Proof of Concept:** If we have 2 sets of 100 players enter, the gas costs will be as such: - 1st 100 players: ~6252048 gas - 2nd 100 players: ~18068138 gas This is more than 3x more expensive for the second 100 players. <details> <summary>Proof of Code</summary> ```js function testDenialOfService() public { // Foundry lets us set a gas price vm.txGasPrice(1); // Creates 100 addresses uint256 playersNum = 100; address[] memory players = new address[](playersNum); for (uint256 i = 0; i < players.length; i++) { players[i] = address(i); } // Gas calculations for first 100 players uint256 gasStart = gasleft(); puppyRaffle.enterRaffle{value: entranceFee * players.length}(players); uint256 gasEnd = gasleft(); uint256 gasUsedFirst = (gasStart - gasEnd) * tx.gasprice; console.log("Gas cost of the first 100 players: ", gasUsedFirst); // Creates another array of 100 players address[] memory playersTwo = new address[](playersNum); for (uint256 i = 0; i < playersTwo.length; i++) { playersTwo[i] = address(i + playersNum); } // Gas calculations for second 100 players uint256 gasStartTwo = gasleft(); puppyRaffle.enterRaffle{value: entranceFee * players.length}(playersTwo); uint256 gasEndTwo = gasleft(); uint256 gasUsedSecond = (gasStartTwo - gasEndTwo) * tx.gasprice; console.log("Gas cost of the second 100 players: ", gasUsedSecond); assert(gasUsedSecond > gasUsedFirst); } ``` </details> :br **Recommended Mitigations:** There are a few recommended mitigations. 1. Consider allowing duplicates. Users can make new wallet addresses anyways, so a duplicate check doesn't prevent the same person from entering multiple times, only the same wallet address. 2. Consider using a mapping to check duplicates. This would allow you to check for duplicates in constant time, rather than linear time. You could have each raffle have a uint256 id, and the mapping would be a player address mapped to the raffle Id. ```diff + mapping(address => uint256) public addressToRaffleId; + uint256 public raffleId = 0; . . . function enterRaffle(address[] memory newPlayers) public payable { require(msg.value == entranceFee * newPlayers.length, "PuppyRaffle: Must send enough to enter raffle"); for (uint256 i = 0; i < newPlayers.length; i++) { players.push(newPlayers[i]); + addressToRaffleId[newPlayers[i]] = raffleId; } - // Check for duplicates + // Check for duplicates only from the new players + for (uint256 i = 0; i < newPlayers.length; i++) { + require(addressToRaffleId[newPlayers[i]] != raffleId, "PuppyRaffle: Duplicate player"); + } - for (uint256 i = 0; i < players.length; i++) { - for (uint256 j = i + 1; j < players.length; j++) { - require(players[i] != players[j], "PuppyRaffle: Duplicate player"); - } - } emit RaffleEnter(newPlayers); } . . . function selectWinner() external { + raffleId = raffleId + 1; require(block.timestamp >= raffleStartTime + raffleDuration, "PuppyRaffle: Raffle not over"); ``` 3. Alternatively, you could use [**OpenZeppelin's EnumerableSet library**](https://docs.openzeppelin.com/contracts/5.x/api/utils#EnumerableSet). </details>

DoS: Mitigation

How to Remove Duplicates from Arrays with Patrick

Solidity Developer

Smart Contract Security

Course Introduction

Duration: 25min

Section 1: Review

Duration: 1h 18min

Section 2: What is a smart contract audit

Duration: 35min

Section 3: Your First Audit | PasswordStore

Duration: 2h 28min

Section 4: Puppy raffle

Duration: 5h 03min

1. Introduction

An introduction to PuppyRaffle and all else that will be covered in this section! Duration: 5min

2. Puppy raffle primer

Learn coding bug detection in this mock audit! Explore, discover & review together. Duration: 2min

3. Phase 1: Scoping

Puppy Raffle Code Base, Git & Foundry Installation, Testing Coverage, Security View, Exploits. Duration: 4min

4. Tooling: Slither

Tooling in Smart Contract Auditing, Patrick Introduces Static Analysis. Using Slither by Trail of Bits to find bugs without executing code. Duration: 6min

5. Tooling: Aderyn

Introducing Aderyn: a static analysis tool for smart contracts, built with Rust by Alex Roan. Duration: 2min

6. Tooling: Solidity Visual Developer

Patrick goes over additional useful tools like Solidity Metics and Solidity Visual Developer. Duration: 3min

7. Recon: Reading docs

Puppy Raffle Audit Walkthrough - Main Branch Details. Patrick explains raffle documentation, functions, and entry requirements. Duration: 2min

8. Recon: Reading the code

Navigate PuppyRaffle codebase, player entry points, keyboard shortcuts. Duration: 5min

9. Recon: Reading docs II

In this lesson Patrick continues reading through the docs and even smell a bug! Duration: 3min

10. sc-exploits-minimized

Introducing the sc-exploits-minimized repo, a compilation of common smart contract vulnerability examples. Duration: 2min

11. Exploit: Denial of service

Explore a DoS attack using a minimalistic DOS contract. Learn how loops and arrays can make a protocol unusable. Duration: 7min

12. Case Study: DoS

Joined by Owen, we look into 2 case studies of real life DoS attacks: GMX V2 and the Bridges Exchange. Duration: 21min

13. DoS PoC

Puppy Raffle Denial of Service Attack - Identify and Test. Main focus: Unfair cost increase for late entrants, disadvantaging new players. Duration: 8min

14. DoS: Reporting

How to create a DOS security review report. Step-by-step process including title, root cause, impact, severity, likelihood, and mitigation strategy. Duration: 8min

15. DoS: Mitigation

How to Remove Duplicates from Arrays with Patrick Duration: 3min

16. Exploit: Business logic edge case

Patrick discusses the potential impacts of a user entering PuppyRaffle with a smart contract. Duration: 3min

17. Recon: Refund

Continuing our Recon of PuppyRaffle with the Refund function. Duration: 3min

18. Exploit: Reentrancy

Reentrancy Attack in PuppyRaffle: Deposit-Withdraw Loop Steals Funds Duration: 14min

19. Reentrancy: Remix example

Patrick shows a hacker draining a user's balance via Remix using re-entrancy exploit. Duration: 4min

20. Reentrancy: Mitigation

Fixing Re-Entrancy in Smart Contracts:CEI Pattern, Lock Variables & Non-Reentrant Modifier Duration: 4min

21. Menace To Society

DeFi reentrancy attacks: Importance of understanding past hacks for security pros; The DAO hack case study. Duration: 5min

22. Reentrancy: Recap

Patrick recaps reentrancy vulnerabilities and discusses prevention such as checks-effects-interactions (CEI) and non-reentrant modifiers. Duration: 3min

23. Reentrancy: PoC

Identify & exploit smart contract re-entrancy vulnerability for PuppyRaffle. Demo of POC with a hypothetical attacker contract. Discuss prevention methods. Duration: 8min

24. Recon: Continued

Smart contract codebase analysis, focusing on PuppyRaffle's selectWinner function. Checking timestamp, players, raffle status, winner calculation concern. Duration: 5min

25. Exploit: Weak randomness

Dive into PuppyRaffle's weak randomness. Patrick emphasizes use of secure sources like Chainlink VRF. Duration: 4min

26. Weak randomness: Multiple issues

Blockchain timestamps, previous block hashes, and transaction senders are unsuitable for secure random number generation. Use more reliable methods instead. Duration: 4min

27. Case Study: Weak Randomness

NFT product Mebits attacked, obtained rare NFT worth almost $1M; weak security measures. Duration: 7min

28. Weak randomness: Mitigation

Chainlink VRF for trustless randomness in apps, Patrick explains. No to alternative methods. Duration: 1min

29. Exploit: Integer overflow

Bug in smart contract due to arithmetic overflow; demonstrates with Solidity code & offers solutions. Duration: 8min

30. Integer overflow: Mitigation

Fixing Solidity Arithmetic Issues: Use Newer Version Duration: 2min

31. Exploit: Unsafe casting

Overflow issue: Loss of significant digits due to uint64 casting from uint256, leading to lost fees. Importance of identifying & fixing in audit reports. Duration: 4min

32. Recon II

Patrick continues his reconnaissance of PuppyRaffle! Duration: 11min

33. Exploit: Mishandling Of ETH

Identifying the mishandling of ETH in PuppyRaffle and outlining issue with relying on .balance in contract accounting. Duration: 3min

34. Mishandling of ETH: Minimized

How ETH Misuse Leads to Smart Contract Vulnerability, Patrick Explains Solutions Duration: 6min

35. Case Study: Mishandling of ETH

SushiSwap attack: Poor handling of ETH led to a real-life attack, causing significant monetary loss. Read detailed case study. Duration: 3min

36. Recon III

PuppyRaffle walkthrough continues, covering functions & exploits. Go through code multiple times for understanding. Identify areas for improvement. Duration: 7min

37. Answering our questions

Going back through the notes we left ourselves and answering some of the questions we'd asked! Duration: 4min

38. Info and gas findings

Improving code quality through an audit: Use specific Solidity versions, define constants, check library security, make storage variables immutable. Duration: 5min

39. Pit stop

Conducting Code Quality Test Using Slither & Aderyn Tools; Practice Tips Given by Patrick. Duration: 2min

40. Slither walkthrough

Slither is a static analysis tool that is useful for securing smart contracts. A walkthrough of its use. Duration: 13min

41. Aderyn walkthrough

A brief walkthrough of Aderyn and how to use it to supercharge your smart contract security reviews. Duration: 3min

42. Test coverage

Code Coverage Check Using Foundry, Aderyn & Slither Duration: 1min

43. Phase 4: Reporting primer

Learn report writing for security reviews & effective communication in bug bounties with Patrick. Master competitive audits & finding submission. Duration: 3min

44. What is a competitive audit?

Competitive Audits - Discover Bugs, Win Rewards! Get started with Patrick's guidance, perfect for aspiring smart contract security professionals. Duration: 5min

45. Codehawks

Join CodeHawks for Competitive Audits & practice. Live competitions, real $$$. Duration: 3min

46. Submitting a competitive audit finding

Patrick demonstrates how to submit findings in a competitive audit, emphasizing the importance of building your auditing portfolio. Duration: 4min

47. Reporting templates

Introducing some useful templates and processes for audit reporting. Duration: 3min

48. Reporting: Floating pragma

Walkthrough of the floating pragma informational finding report. Duration: 2min

49. Reporting: Incorrect solc version

Quick walkthrough of reporting an incorrect solc version. Duration: 2min

50. Reporting: Unchanged state variables should be immutable or constant

Learn how to track gas consumption and identify where improvements can be made. Focus on gas optimization techniques and proper variable scoping. Duration: 2min

51. Reporting: Zero address check

Patrick explains zero address check and walks through reporting it. Duration: 1min

52. Reporting: Storage variables in loops should be cached

Optimize gas usage via caching store variables in loops, read memory instead of storage for efficiency. Duration: 2min

53. Reporting Findings We'll Cover Later

Audit Findings: MEV Attacks & Refund Function - To be covered later (Section 7.5) Duration: 1min

54. Reporting Reentrancy

How to write a security review finding for a reentrancy vulnerability including a mitigation recommendation. Duration: 8min

55. Reporting: getActivePlayerindex

Walkthrough of a report for our getActivePlayerIndex edge case! Duration: 5min

56. Reporting: Should Follow CEI

Informational PuppyRaffle issue, improving code with CEI. Duration: 2min

57. Reporting: Weak Randomness

Auditing blockchain randomness, Patrick explains how weak randomness can be exploited and suggests using secure generators like Chainlink VRF. Duration: 6min

58. Reporting: Magic Numbers

Focus on Magic Numbers & Named Constants. Patrick provides Solidity examples & tips. Duration: 2min

59. Reporting: Integer Overflow

Patrick explains two security issues found in PuppyRaffle - integer overflow and unsafe cast. Offers detailed explanations & potential mitigations. Duration: 8min

60. Reporting: Smart Contract Wallet Reverts Winning

Winning smart lottery without fallback causes restart issues & gas waste; Suggested mitigation: mapping addresses to payouts, 'claim prize' function. Duration: 5min

61. Reporting: Mishandling Of ETH

Writing our report for ETH Mishandling in PuppyRaffle. Duration: 2min

62. Reporting: Missing Events And Remove Dead Code

A quick report for missing events and unused function in PuppyRaffle! Duration: 2min

63. Adding The Audit To Our Portfolio

Learn how to create an audit report using Markdown and Pandoc, including adding logos, formatting sections, and converting the report to a PDF. Duration: 6min

64. Exercises

Protecting Web3 Against Hacks & Attacks; Remix Exploits & DeFi Challenges. Presented by Patrick. Includes Exercises & Case Studies. Duration: 5min

65. Solodit

Solodit - a Web3 audit finding aggregator. Learn from other auditors' reports & excel in competitive contests. Duration: 4min

66. Wrapping Up

Raffle complete, tweeting your success, CodeHawks First Flights, rest & rewards encouraged. Duration: 2min

Section 5: TSwap

Duration: 5h 22min

Section 6: Thunder Loan

Duration: 4h 33min

Section 7: Boss Bridge

Duration: 2h 01min