EOS EVM Contract Drain Vulnerability: Difference between revisions
(Another 30 minutes complete.) |
(Another 30 minutes and the prevention section filled in now for regulators.) |
||
| Line 99: | Line 99: | ||
== Immediate Reactions == | == Immediate Reactions == | ||
According to release notes, three developers @yarkinwho, @spoonincode, and @taokayan were responsible for investigation and resolution of the vulnerability<ref name=":3" />. Developer @taokayan was responsible for the actual proposal to resolve the vulnerability<ref name=":4" />. | |||
The EOS Network Foundation ultimately released version 0.4.2 of their Ethereum Virtual Machine, which resolved the vulnerability. This required an upgrade to the EVM smart contract, EVM nodes, and EVM RPC components<ref name="eosnetworkfoundationgithub-11035" />. | |||
While the resolution was technically a breaking change, this wasn't a fatal problem as the vulnerability had never been exploited<ref name="eosnetworkfoundationgithub-11035" />. | |||
<ref name="eosnetworkfoundationgithub-11035" /> | |||
== Ultimate Outcome == | == Ultimate Outcome == | ||
| Line 126: | Line 115: | ||
The EOS EVM Contract, EOS EVM Node, and EOS EVM RPC for the EOS mainnet implementation have already been patched prior to this public release.</blockquote> | The EOS EVM Contract, EOS EVM Node, and EOS EVM RPC for the EOS mainnet implementation have already been patched prior to this public release.</blockquote> | ||
=== Required Upgrades === | |||
"Upgrading EOS EVM Contract from v0.4.1 simply requires a setcode of the v0.4.2 contract. There are no changes to the ABI." | It was reported that there was no change required to the Application Binary Interface (ABI)<ref name="eosnetworkfoundationgithub-11035" />, making the smart contract upgrade easy.<blockquote> | ||
"Upgrading EOS EVM Contract from v0.4.1 simply requires a setcode of the v0.4.2 contract. There are no changes to the ABI."</blockquote>At the same time, the node and RPC services needed to have their binaries updated and then be restarted<ref name="eosnetworkfoundationgithub-11035" />.<blockquote>"Upgrading EOS EVM Node and EOS EVM RPC from v0.4.1 only requires restarting the services with the updated binaries."</blockquote> | |||
== Total Amount Recovered == | == Total Amount Recovered == | ||
| Line 147: | Line 137: | ||
== Regulatory Prevention Policies == | == Regulatory Prevention Policies == | ||
{{Prevention:Regulators: | No funds were lost in this case, as the vulnerability was never exploited. | ||
{{Prevention:Regulators:Blockchain Level Exploit Handling}} | |||
{{Prevention:Regulators:Establish Industry Insurance Fund}} | |||
{{Prevention:Regulators:End}} | {{Prevention:Regulators:End}} | ||
Revision as of 11:11, 29 May 2023
Notice: This page is a freshly imported case study from the original repository. The original content was in a different format, and may not have relevant information for all sections. Please help restructure the content by moving information from the 'About' section to other sections, and add any missing information or sources you can find. If you are new here, please read General Tutorial on Wikis or Anatomy of a Case Study for help getting started.
A critical vulnerability was uncovered and resolved in the EOS EVM before it could be exploited. The vulnerability, if exploited, would have allowed draining all contracts storing EOS across the trustless bridge. According to the report, the vulnerability was never exploited.
About EOS Blockchain
The EOS (Electro-Optical System[1]) blockchain is "a highly performant open-source blockchain platform, built to support and operate safe, compliant, and predictable digital infrastructures."[2] EOS launched in June 2018 with a $4.1 billion USD initial coin offering[1]. The core team of EOS is based in the Cayman Islands[3].
The core team behind EOS is “Block.one”, which is based in the Cayman Islands. Brendon Blumer, the CEO, has been involved in blockchain since 2014. He has previously been involved in companies that dealt with currency exchanges in MMORPGs and in real estate. Dan Larimer, is the CTO. He is the creator of delegated proof-of-stake and decentralized autonomous organizations aka DAOs. He is the also the man behind BitShares and Steem.
The EOS platform allows the development of decentralized blockchain applications in a similar manner to Ethereum and was initially dubbed the ethereum killer[4].
"EOS is a platform that uses the blockchain technology for the development of decentralized applications (dapps), very similar to Ethereum in function. As a matter of fact, supporters have dubbed it as the “Ethereum killer”. By providing an operating-system-like set of services and features that dapps can make use of, it makes dapp development very easy."
About EOS EVM
EVM, or the Ethereum Virtual Machine, is a core computation engine of Ethereum which powers the blockchain and smart contracts[5]. The EOS EVM is a compatibility layer that's designed to allow EOS to mimic the same functionality as the EVM. "It enables developers to deploy and run their applications on top of the EOS blockchain infrastructure but to build, test, and debug those applications using the common languages and tools they are used to using with other EVM compatible blockchains.[6]"
The EOS EVM allows EOS developers access to use all of the tools and code which are available for Ethereum development on EOS. There are five parts to the EOS EVM[6]:
- A fork of the Blockscout blockchain explorer with adaptations for the EOS EVM.
- The EVM bridge front-end, a front-end which allows for the operation of the EVM trustless bridge[7].
- The EOS EVM contract, an Antelope smart contract implementing the main runtime for the EVM.
- The EOS EVM Node and RPC (remote procedure call). This allows for the operation of EVM nodes and remote interaction with those nodes.
- The transaction wrapper, an Node.js application to service the eth_sendRawTransaction and eth_gasPrice functions.
Getting Blockchain Information
The EOS EVM allows for a blockchain which is built in a deterministic way. Through the RPC, clients such as MetaMask can gain a read-only view of the blockchain[6].
Sending EVM-Compatible Transactions
Clients can push transactions via a proxy and the transaction wrapper. This encapsulates the EVM transaction into an Antelope smart contract transaction. The EVM transactions are then validated and executed by the EOS EVM smart contract deployed in the EOS blockchain[6].
The Reality
The EOS EVM contained a critical security vulnerability. The security vulnerability related to "state objects" tracking the reserved addresses of the trustless bridge. The tracking was not properly being undone in the case where the EVM execution context was reverted[8].
The vulnerability could potentially allow an attacker to illegitimately drain all of the EOS stored by the EOS EVM smart contract across the trustless bridge[8].
TBD - Need to fill in more details on the exact exploit and how it was introduced into the source code.
The vulnerability primarily affected the EOS EVM smart contract, although the EOS EVM node, and the EOS EVM RPC would expect the failed behaviour.
What Happened
The vulnerability was kept confidential and patched behind the scenes by the EOS team. They released an update to the EOS EVM on May 15th.
| Date | Event | Description |
|---|---|---|
| May 11th, 2023 12:20:00 AM MDT | taokayan Provides Silkwork Stability Fix | EOS developer taokayan[9] commits a fix to the silkworm module[10]. |
| May 11th, 2023 7:50:00 PM MDT | Version Bumped To 0.4.2 | The EOS EVM software version is bumped up to 0.4.2[8]. |
| May 15th, 2023 7:07:00 PM MDT | Upgrade Available | The upgrage to the EVM is made available on Twitter[11][12]. |
| May 16th, 2023 | Included In SlowMist | The vulnerability is included as an exploit on the SlowMist website[13]. |
| May 22nd, 2023 7:37:11 AM MDT | EOS GO Publication on Vulnerability | The EOS GO publishes information about the vulnerability in the weekly newsletter[14][15]. |
Technical Details
According to the release notes.[16]
"The security vulnerability is related to the state objects tracking the reserved addresses of the trustless bridge and how they were not properly being undone in the case of an EVM execution context being reverted. If exploited, it could potentially allow an attacker to illegitimately drain all of the EOS stored by the EOS EVM Contract across the trustless bridge." "The EOS Network Foundation tweeted that the EOS EVM has released version v0.4.2, which fixes a serious security vulnerability found in the EOS EVM. The EOS EVM contracts, EOS EVM nodes, and EOS EVM RPC components implemented by the EOS mainnet all need to be upgraded."
While there are several updates in 0.4.2[8], the specific modifications to correct the vulnerability apply to two separate files within the silkworm module[10]:
core/silkworm/state/delta.cpp
void CreateDelta::revert(IntraBlockState& state) noexcept {
if(is_reserved_address(address_))
state.reserved_objects_.erase(address_);
else
state.objects_.erase(address_);
}
void UpdateDelta::revert(IntraBlockState& state) noexcept {
if(is_reserved_address(address_))
state.reserved_objects_[address_] = previous_;
else
state.objects_[address_] = previous_;
}
void UpdateBalanceDelta::revert(IntraBlockState& state) noexcept {
if(is_reserved_address(address_))
state.reserved_objects_[address_].current->balance = previous_;
else
state.objects_[address_].current->balance = previous_;
}
core/silkworm/stagedsync/stage_hashstate.cpp
Stage::Result HashState::write_changes_from_changed_addresses(db::RWTxn& txn, const ChangedAddresses& changed_addresses) {
throw_if_stopping();
if (changed_addresses.size() == 0) return Stage::Result::kSuccess;
TBD - Need more details on the exploit itself.
Total Amount Lost
There were no funds lost since the EOS EVM smart contract was patched prior to a public release of any information. The vulnerability does not appear to have been exploited on either the EOS EVM testnet or mainnet. Therefore, it was possible to treat the fix as simpler retroactive change of the EVM. It does not appear that any bounty was paid out for discovering the vulnerability either.
Immediate Reactions
According to release notes, three developers @yarkinwho, @spoonincode, and @taokayan were responsible for investigation and resolution of the vulnerability[9]. Developer @taokayan was responsible for the actual proposal to resolve the vulnerability[10].
The EOS Network Foundation ultimately released version 0.4.2 of their Ethereum Virtual Machine, which resolved the vulnerability. This required an upgrade to the EVM smart contract, EVM nodes, and EVM RPC components[16].
While the resolution was technically a breaking change, this wasn't a fatal problem as the vulnerability had never been exploited[16].
Ultimate Outcome
The EOS Foundation announced the resolution on Twitter with a new version of the EVM being released for people to download.
EOS Foundation Announcement on Twitter
The EOS Foundation posted on Twitter to announce the resolution of the vulnerability[11][12].
EOS EVM v0.4.2 Released!
This release fixes a critical security vulnerability discovered in the EOS EVM.
The EOS EVM Contract, EOS EVM Node, and EOS EVM RPC for the EOS mainnet implementation have already been patched prior to this public release.
Required Upgrades
It was reported that there was no change required to the Application Binary Interface (ABI)[16], making the smart contract upgrade easy.
"Upgrading EOS EVM Contract from v0.4.1 simply requires a setcode of the v0.4.2 contract. There are no changes to the ABI."
At the same time, the node and RPC services needed to have their binaries updated and then be restarted[16].
"Upgrading EOS EVM Node and EOS EVM RPC from v0.4.1 only requires restarting the services with the updated binaries."
Total Amount Recovered
No funds were lost in this case, and therefore no recovery was needed.
Ongoing Developments
There don't appear to be any remaining developments in this case. The original vulnerability has already been patched by the EOS team.
The fix to the security vulnerability is technically a breaking change to EOS EVM, so it is possible that existing clients may still continue to run the old version of the EVN client. However, the exploit was never exploited, and it is unlikely that an attacker would want to exploit in a way that is likely to only affect a portion of current nodes and be easily resolved by the remaining nodes upgrading. Any assets they gained would only exist on a fork state of the EVM.
Individual Prevention Policies
No specific policies for individual prevention have yet been identified in this case.
For the full list of how to protect your funds as an individual, check our Prevention Policies for Individuals guide.
Platform Prevention Policies
Policies for platforms to take to prevent this situation have not yet been selected in this case.
For the full list of how to protect your funds as a financial service, check our Prevention Policies for Platforms guide.
Regulatory Prevention Policies
No funds were lost in this case, as the vulnerability was never exploited.
In general, blockchain-level exploits can be resolved by reverting the blockchain to a prior state, which restores all funds to their prior ownership and limits potential losses to those who are transacting between the time of the exploit and the time of the revert. Effort should be undertaken by node operators to switch to a branch that eliminates the exploit as soon as possible to minimize losses. Any remaining losses would be resolved through the industry insurance fund.
Set up a multi-signature wallet with private keys held separately by delegate signatories from seven prominent platforms and services within the industry. Establish requirements for contributions by all platforms and services within the country, designed to be affordable for small platforms yet large enough to cover anticipated breach events. Any breach event can be brought forth by a member platform or a petition of 100 signatures for consideration by the delegate signatories. A vote of 4 or more delegate signatures is required to release any funds, which could partially or fully restore lost funds based on their assessment.
For the full list of regulatory policies that can prevent loss, check our Prevention Policies for Regulators guide.
References
- ↑ 1.0 1.1 EOS Tokens Defined: The Basics and Examples - Investopedia (May 24, 2023)
- ↑ EOSIO Blockchain Software & Services Homepage (May 29, 2022)
- ↑ What is EOS Blockchain: Beginners Guide - BlockGeeks (May 24, 2023)
- ↑ EOS Oversimplified: A Beginners Guide To EOS.IO Cryptocurrency - DataDrivenInvestor Medium (May 29, 2022)
- ↑ What is the Ethereum Virtual Machine (EVM)? - QuickNode (May 24, 2023)
- ↑ 6.0 6.1 6.2 6.3 EOS EVM Readme.md - Github (May 24, 2023)
- ↑ evm-bridge-frontend - Github (May 24, 2023)
- ↑ 8.0 8.1 8.2 8.3 Comparing v0.4.1...v0.4.2 · eosnetworkfoundation/eos-evm · GitHub (May 19, 2023)
- ↑ 9.0 9.1 taokayan - Github (May 25, 2023)
- ↑ 10.0 10.1 10.2 Comparing Silkworm Stability Fixes - eosnetworkfoundation/silkworm - GitHub (May 25, 2023)
- ↑ 11.0 11.1 EOSnFoundation - "EOS EVM v0.4.2 Released! This release fixes a critical security vulnerability discovered in the EOS EVM." - Twitter Archive May 19th, 2023 11:23:47 AM MDT (May 19, 2023)
- ↑ 12.0 12.1 EOSnFoundation - "EOS EVM v0.4.2 Released! This release fixes a critical security vulnerability discovered in the EOS EVM." - Twitter (May 19, 2023)
- ↑ SlowMist Hacked - SlowMist Zone Archive May 19th, 2023 10:13:38 AM MDT (May 19, 2023)
- ↑ This Week: Progress and Direction of the EOS Comeback - EOS GO Archive May 22nd, 2023 7:37:11 AM MDT (May 24, 2023)
- ↑ This Week: Progress and Direction of the EOS Comeback - EOS GO (May 24, 2023)
- ↑ 16.0 16.1 16.2 16.3 16.4 Release EOS EVM v0.4.2 Release Notes · eosnetworkfoundation/eos-evm · GitHub (May 19, 2023)