TheDude
/
slither
mirror of https://github.com/crytic/slither
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Static Analyzer for Solidity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2898 Commits
76 Branches
41 Tags
110 MiB
Tag: Branch: Tree: eb49e396fd
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'eb49e396fd'
${ noResults }
slither/tests/detectors/reentrancy-eth/0.4.25/reentrancy.sol

101 lines
2.8 KiB
Raw Normal View History Unescape

Add re-entrancy detector Add Prioritization information to README
6 years ago
pragma solidity ^0.4.24;
contract Reentrancy {
mapping (address => uint) userBalance;
function getBalance(address u) view public returns(uint){
return userBalance[u];
}
function addToBalance() payable public{
userBalance[msg.sender] += msg.value;
}
fix issue-887, FP reentrancy in constructor
3 years ago
// Should not detect reentrancy in constructor
constructor() public {
// send userBalance[msg.sender] ethers to msg.sender
// if mgs.sender is a contract, it will call its fallback function
if (!(msg.sender.call.value(userBalance[msg.sender])())) {
revert();
}
userBalance[msg.sender] = 0;
}
Add re-entrancy detector Add Prioritization information to README
6 years ago
function withdrawBalance() public{
// send userBalance[msg.sender] ethers to msg.sender
// if mgs.sender is a contract, it will call its fallback function
if( ! (msg.sender.call.value(userBalance[msg.sender])() ) ){
revert();
}
userBalance[msg.sender] = 0;
}
function withdrawBalance_fixed() public{
// To protect against re-entrancy, the state variable
// has to be change before the call
uint amount = userBalance[msg.sender];
userBalance[msg.sender] = 0;
if( ! (msg.sender.call.value(amount)() ) ){
revert();
}
}
function withdrawBalance_fixed_2() public{
// send() and transfer() are safe against reentrancy
// they do not transfer the remaining gas
// and they give just enough gas to execute few instructions
// in the fallback function (no further call possible)
msg.sender.transfer(userBalance[msg.sender]);
userBalance[msg.sender] = 0;
}
function withdrawBalance_fixed_3() public{
// The state can be changed
// But it is fine, as it can only occur if the transaction fails
uint amount = userBalance[msg.sender];
userBalance[msg.sender] = 0;
if( ! (msg.sender.call.value(amount)() ) ){
userBalance[msg.sender] = amount;
}
}
Improve reentrancy
6 years ago
function withdrawBalance_fixed_4() public{
// The state can be changed
// But it is fine, as it can only occur if the transaction fails
uint amount = userBalance[msg.sender];
userBalance[msg.sender] = 0;
if( (msg.sender.call.value(amount)() ) ){
return;
}
else{
userBalance[msg.sender] = amount;
}
}
function withdrawBalance_nested() public{
uint amount = userBalance[msg.sender];
if( ! (msg.sender.call.value(amount/2)() ) ){
msg.sender.call.value(amount/2)();
userBalance[msg.sender] = 0;
}
}
Add re-entrancy detector Add Prioritization information to README
6 years ago
}
Reentrancies detectors: - Clean Reentrancy based class - Add ReentrancyEvent to detect reentrancies leading to out of order Events - Add ReentrancyNoGas to detect reentrancies based on send/transfer Fix #236
5 years ago
contract Called{
function f() public;
}
contract ReentrancyEvent {
event E();
function test(Called c) public{
c.f();
emit E();
}
}