## Understanding Upgradeable Smart Contracts: Proxies and `delegatecall` In the world of blockchain, smart contracts are, by default, immutable. Once deployed, their code cannot be changed. This permanence is a cornerstone of trust and security, but it also presents a significant challenge: how do you fix bugs or add new features to a live protocol? The answer lies in upgradeable smart contracts, a powerful pattern that every smart contract developer and auditor must understand deeply. This lesson explores the fundamental mechanisms that enable upgradeability: the proxy pattern and the low-level EVM opcode `delegatecall`. We will examine minimal code examples to reveal how these components work together, providing the foundation you need to analyze and secure complex decentralized applications. For auditors, a thorough grasp of this pattern is not optional—it is essential for identifying a wide range of critical vulnerabilities. ### The Proxy Pattern: Separating State from Logic The primary design pattern used to achieve upgradeability is the **proxy pattern**. This approach cleverly circumvents immutability by separating a contract's responsibilities into two distinct parts: 1. **The Proxy Contract:** This contract is what users interact with. It holds all the contract state (the data and balances) and has a permanent, unchanging address. Its primary job is to forward all incoming calls to a logic contract. 2. **The Implementation (or Logic) Contract:** This contract contains the active business logic of the application. It is stateless and simply provides the code that the proxy will execute. To perform an upgrade, you deploy a new version of the implementation contract and then update the proxy contract to point to the new implementation's address. Users continue to interact with the same proxy address, but their calls are now directed to the new logic. The state is preserved in the proxy, ensuring a seamless transition. This separation is the key to evolving a smart contract after its initial deployment. ### The Technical Engine: How `delegatecall` Works The magic that powers the proxy pattern is a low-level EVM function called `delegatecall`. Understanding its behavior is crucial. When a contract `A` makes a `delegatecall` to another contract `B`, the code from contract `B` is executed, but it operates within the **context** of contract `A`. This means the code from `B` reads from and writes to `A`'s storage. Furthermore, the values of `msg.sender` and `msg.value` remain those of the original call to contract `A`. Let's examine a minimal example to see this in action. ```solidity // SPDX-License-Identifier: MIT pragma solidity ^0.8.19; // NOTE: Deploy this contract first contract B { // NOTE: storage layout must be the same as contract A uint256 public num; address public sender; uint256 public value; function setVars(uint256 _num) public payable { num = _num; sender = msg.sender; value = msg.value; } } contract A { uint256 public num; address public sender; uint256 public value; function setVars(address _contractB, uint256 _num) public payable { // A's storage is set, B is not modified. (bool success, ) = _contractB.delegatecall( abi.encodeWithSignature("setVars(uint256)", _num) ); require(success, "delegatecall failed"); } } ``` In this example: * `A` and `B` have identical storage layouts (the same variables in the same order). This is a critical requirement. * When we call the `setVars` function on contract `A`, it uses `delegatecall` to execute the `setVars` function from contract `B`. * Although the code from `B` is running, it modifies the `num`, `sender`, and `value` state variables within contract `A`'s storage. Contract `B`'s storage remains untouched. The comment "**storage layout must be the same**" highlights the most significant risk associated with `delegatecall`. If the storage variables in the proxy and implementation contracts do not align perfectly, the implementation contract can inadvertently overwrite incorrect storage slots in the proxy, leading to state corruption and catastrophic bugs. ### Building a Minimal Proxy Contract With an understanding of `delegatecall`, we can now construct a basic proxy. A robust proxy needs to do two things: forward all calls to an implementation contract and provide a mechanism to update the implementation address. Modern proxies use a specific storage slot to store the implementation address, as defined by standard EIP-1967. This prevents "storage collisions," where a variable in the proxy accidentally occupies the same storage slot as a variable in the implementation contract. Consider this minimal proxy implementation: ```solidity // SPDX-License-Identifier: MIT pragma solidity ^0.8.19; import "@openzeppelin/contracts/proxy/Proxy.sol"; contract SmallProxy is Proxy { // This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1 bytes32 private constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc; function setImplementation(address newImplementation) public { assembly { sstore(_IMPLEMENTATION_SLOT, newImplementation) } } function _implementation() internal view override returns (address implementationAddress) { assembly { implementationAddress := sload(_IMPLEMENTATION_SLOT) } } // The 'fallback' function delegates all calls to the implementation contract. // This functionality is inherited from OpenZeppelin's Proxy.sol contract. // function _fallback() internal override { // _beforeFallback(); // _delegate(_implementation()); // } } ``` Key takeaways from this code: * **EIP-1967 Implementation Slot:** The `_IMPLEMENTATION_SLOT` constant is a carefully chosen storage location. By storing the implementation address here, we ensure it won't conflict with state variables in the implementation contract (like `uint256 public myVar;`, which would otherwise occupy storage slot 0). * **Inline Assembly:** The `setImplementation` and `_implementation` functions use `sstore` and `sload` opcodes via inline assembly. This is a common, gas-efficient pattern for directly manipulating specific storage slots. * **Inheritance:** The contract inherits from OpenZeppelin's battle-tested `Proxy.sol`. This library provides the core `fallback` function that automatically catches any function call made to the proxy and uses `delegatecall` to forward it to the logic contract returned by `_implementation()`. ### Final Takeaway for Developers and Auditors Upgradeable smart contracts are a staple of the web3 ecosystem, and the proxy pattern powered by `delegatecall` is the industry standard for implementing them. While this pattern provides essential flexibility, it also introduces significant complexity and potential for severe security flaws, such as storage collisions and improper access control on upgrade functions. For auditors, being "very well versed" in these mechanics is a prerequisite for a successful audit. You must be able to trace execution flow through proxies, verify storage layouts between upgrades, and scrutinize the mechanisms that govern the upgrade process itself. Understanding these fundamentals is the first step toward securing the next generation of decentralized applications.

Understanding Upgradeable Smart Contracts: Proxies and `delegatecall`

In the world of blockchain, smart contracts are, by default, immutable. Once deployed, their code cannot be changed. This permanence is a cornerstone of trust and security, but it also presents a significant challenge: how do you fix bugs or add new features to a live protocol? The answer lies in upgradeable smart contracts, a powerful pattern that every smart contract developer and auditor must understand deeply.

This lesson explores the fundamental mechanisms that enable upgradeability: the proxy pattern and the low-level EVM opcode delegatecall. We will examine minimal code examples to reveal how these components work together, providing the foundation you need to analyze and secure complex decentralized applications. For auditors, a thorough grasp of this pattern is not optional—it is essential for identifying a wide range of critical vulnerabilities.

The Proxy Pattern: Separating State from Logic

The primary design pattern used to achieve upgradeability is the proxy pattern. This approach cleverly circumvents immutability by separating a contract's responsibilities into two distinct parts:

The Proxy Contract: This contract is what users interact with. It holds all the contract state (the data and balances) and has a permanent, unchanging address. Its primary job is to forward all incoming calls to a logic contract.
The Implementation (or Logic) Contract: This contract contains the active business logic of the application. It is stateless and simply provides the code that the proxy will execute.

To perform an upgrade, you deploy a new version of the implementation contract and then update the proxy contract to point to the new implementation's address. Users continue to interact with the same proxy address, but their calls are now directed to the new logic. The state is preserved in the proxy, ensuring a seamless transition. This separation is the key to evolving a smart contract after its initial deployment.

The Technical Engine: How `delegatecall` Works

The magic that powers the proxy pattern is a low-level EVM function called delegatecall. Understanding its behavior is crucial.

When a contract A makes a delegatecall to another contract B, the code from contract B is executed, but it operates within the context of contract A. This means the code from B reads from and writes to A's storage. Furthermore, the values of msg.sender and msg.value remain those of the original call to contract A.

Let's examine a minimal example to see this in action.

// SPDX-License-Identifier: MIT

pragma solidity ^0.8.19;

// NOTE: Deploy this contract first

contract B {

// NOTE: storage layout must be the same as contract A

uint256 public num;

address public sender;

uint256 public value;

function setVars(uint256 _num) public payable {

num = _num;

sender = msg.sender;

value = msg.value;

}

}

contract A {

uint256 public num;

address public sender;

uint256 public value;

function setVars(address _contractB, uint256 _num) public payable {

// A's storage is set, B is not modified.

(bool success, ) = _contractB.delegatecall(

abi.encodeWithSignature("setVars(uint256)", _num)

);

require(success, "delegatecall failed");

}

}

In this example:

A and B have identical storage layouts (the same variables in the same order). This is a critical requirement.
When we call the setVars function on contract A, it uses delegatecall to execute the setVars function from contract B.
Although the code from B is running, it modifies the num, sender, and value state variables within contract A's storage. Contract B's storage remains untouched.

The comment "storage layout must be the same" highlights the most significant risk associated with delegatecall. If the storage variables in the proxy and implementation contracts do not align perfectly, the implementation contract can inadvertently overwrite incorrect storage slots in the proxy, leading to state corruption and catastrophic bugs.

Building a Minimal Proxy Contract

With an understanding of delegatecall, we can now construct a basic proxy. A robust proxy needs to do two things: forward all calls to an implementation contract and provide a mechanism to update the implementation address.

Modern proxies use a specific storage slot to store the implementation address, as defined by standard EIP-1967. This prevents "storage collisions," where a variable in the proxy accidentally occupies the same storage slot as a variable in the implementation contract.

Consider this minimal proxy implementation:

// SPDX-License-Identifier: MIT

pragma solidity ^0.8.19;

import "@openzeppelin/contracts/proxy/Proxy.sol";

contract SmallProxy is Proxy {

// This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1

bytes32 private constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;

function setImplementation(address newImplementation) public {

assembly {

sstore(_IMPLEMENTATION_SLOT, newImplementation)

}

}

function _implementation() internal view override returns (address implementationAddress) {

assembly {

implementationAddress := sload(_IMPLEMENTATION_SLOT)

}

}

// The 'fallback' function delegates all calls to the implementation contract.

// This functionality is inherited from OpenZeppelin's Proxy.sol contract.

// function _fallback() internal override {

// _beforeFallback();

// _delegate(_implementation());

// }

}

Key takeaways from this code:

EIP-1967 Implementation Slot: The _IMPLEMENTATION_SLOT constant is a carefully chosen storage location. By storing the implementation address here, we ensure it won't conflict with state variables in the implementation contract (like uint256 public myVar;, which would otherwise occupy storage slot 0).
Inline Assembly: The setImplementation and _implementation functions use sstore and sload opcodes via inline assembly. This is a common, gas-efficient pattern for directly manipulating specific storage slots.
Inheritance: The contract inherits from OpenZeppelin's battle-tested Proxy.sol. This library provides the core fallback function that automatically catches any function call made to the proxy and uses delegatecall to forward it to the logic contract returned by _implementation().

Final Takeaway for Developers and Auditors

Upgradeable smart contracts are a staple of the web3 ecosystem, and the proxy pattern powered by delegatecall is the industry standard for implementing them. While this pattern provides essential flexibility, it also introduces significant complexity and potential for severe security flaws, such as storage collisions and improper access control on upgrade functions.

For auditors, being "very well versed" in these mechanics is a prerequisite for a successful audit. You must be able to trace execution flow through proxies, verify storage layouts between upgrades, and scrutinize the mechanisms that govern the upgrade process itself. Understanding these fundamentals is the first step toward securing the next generation of decentralized applications.

Upgradeable Contracts

An essential guide to Upgradeable Smart Contracts and the Proxy Pattern - Unpack the technical magic behind upgradeable contracts by examining the proxy pattern and see how delegatecall allows logic contracts to operate on a proxy's state.

Give us feedback

Smart Contract Security Auditor Smart Contract Security

Course Introduction

Duration: 25min

Section 1: Review

Duration: 1h 30min

1. A Message From Rocket Pool

Learn more about Rocket Pool @ https://rocketpool.net/. Duration: 1min

2. Tooling Prerequisites

This lesson provides an overview of the essential tools required for Solidity and Smart Contract development. It includes a guide to text editors like Visual Studio Code and VSCodium, and an introduction to frameworks such as Foundry, alongside compatibility tips for different operating systems. It also highlights the importance of AI tools like Find and ChatGPT in the development process. Duration: 4min

3. Solidity Prerequisites

Review the prerequisites for the Security and Auditing course, including skills like using Remix and Foundry. Duration: 4min

4. Fuzzing and Invariants

Explore the concepts of fuzz testing and invariant testing in Solidity. This lesson explains how fuzz testing can help uncover unexpected application failures, and dives into the practice of testing invariants, or properties that always hold true, in smart contracts. Duration: 10min

5. Installing Libraries

Learn to use OpenZeppelin for ERC20 token integration, including installation and contract creation. Insights into ERC-721 as well. Duration: 3min

6. What is an ERC20?

introduction to ERC-20 tokens, their functionality, and applications. Learn ERC-20 basics like token creation and use cases. Duration: 2min

7. What is an ERC721?

What is an NFT? Learn the role of ERC-721 in representing unique digital assets on the blockchain. Duration: 6min

8. Advanced Solidity Prerequisites

Learn advanced concepts in Solidity, focusing on storage in smart contracts. Delve into how storage works and the role of constants and immutables. Duration: 2min

Gain a comprehensive understanding of storage in Solidity. This lesson covers global variables, the storage data structure, handling dynamic variables, and the role of constant and immutable variables. It also explains the use of the 'memory' keyword for efficient data management. Duration: 5min

10. Fallback and Receive

Learn about the fallback and receive functions in Solidity. Investigate how these functions influence smart contract functionality. Duration: 2min

This lesson focuses on ABI (Application Binary Interface) encoding in Solidity, explaining its role in concatenating strings and encoding data into binary. It provides insights into the process of compressing binary data and techniques for multiple data encoding. Duration: 23min

12. Encoding Functions

Learn about ABI encoding and how it's used in the context of low level function calls in Ethereum. Duration: 6min

13. Upgradeable Contracts

An essential guide to Upgradeable Smart Contracts and the Proxy Pattern - Unpack the technical magic behind upgradeable contracts by examining the proxy pattern and see how delegatecall allows logic contracts to operate on a proxy's state. Duration: 12min

14. Self Destruct and Review

Understand the use and implications of the selfdestruct keyword in Solidity. This lesson explains how selfdestruct can remove contracts and force ETH into specified addresses, a unique behavior with significant impact on contract functionality and security. Duration: 10min

Section 2: What is a smart contract audit

Duration: 35min

Section 3: Your First Audit | PasswordStore

Duration: 2h 28min

Section 4: Puppy raffle

Duration: 5h 04min

Section 5: TSwap

Duration: 5h 23min

Section 6: Thunder Loan

Duration: 4h 33min

Section 7: Boss Bridge

Duration: 2h 01min

Section 8: MEV & Governance

Duration: 1h 41min

Give us feedback!