Skip to content
This repository has been archived by the owner. It is now read-only.

/ parity-ethereum Public archive

anyone can kill your contract #6995

Closed
ghost opened this issue Nov 6, 2017 · 17 comments
Closed

anyone can kill your contract #6995

ghost opened this issue Nov 6, 2017 · 17 comments
Labels
F1-security 🛡 M8-contracts 🤝 P0-dropeverything 🌋
Milestone
1.9 Velocity

Comments

@ghost
Copy link

@ghost ghost commented Nov 6, 2017
edited by ghost

I accidentally killed it.

https://etherscan.io/address/0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4
@jtakalai
Copy link

@jtakalai jtakalai commented Nov 6, 2017

Hmmh, clearly the kill came from registered owner, and required signatures was 0, see initWallet transaction arguments https://etherscan.io/tx/0x05f71e1b2cb4f03e547739db15d080fd30c989eda04d37ce6264c5686e0722c9

@ghost
Copy link
Author

@ghost ghost commented Nov 6, 2017

Will it effect the dependent multisig wallets? When i query " isowner(<any_addr>)" the multisig wallets returns TRUE.

@Office-Julia

This comment has been hidden.

Sign in to view
@ghost
Copy link
Author

@ghost ghost commented Nov 7, 2017
edited by ghost

Hello, first of all i'm not the owner of that contract. I was able to make myself the owner of that contract because its uninitialized.

These (https://pastebin.com/ejakDR1f) multi_sig wallets deployed using Parity were using the library located at "0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4" address. I made myself the owner of "0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4" contract and killed it and now when i query the dependent contracts "isowner(<any_addr>)" they all return TRUE because the delegate call made to a died contract.

I believe some one might exploit.

@ghost ghost closed this Nov 7, 2017
@ghost ghost reopened this Nov 7, 2017
@hlogeon
Copy link

@hlogeon hlogeon commented Nov 7, 2017

Hello! We've clashed this problem! Thanks Parity for the great contract again ;)
Any ideas on how can we get our ETH and tokens back from hacked multisig?
I think that we can get ETH back just by killing contract itself but what about tokens?

@hlogeon
Copy link

@hlogeon hlogeon commented Nov 7, 2017

For those Parity guys who doesn't believe that this exploit works - check out your library which were used by multiple multisigs: https://etherscan.io/address/0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4#code

@hlogeon
Copy link

@hlogeon hlogeon commented Nov 7, 2017

It looks like kill will not work on the contract itself if the library was killed. Nice job, Parity

@ghost
Copy link
Author

@ghost ghost commented Nov 7, 2017

@hlogeon 1. Why kill won't work?
2. Will ether transfer by owners work?

@hlogeon
Copy link

@hlogeon hlogeon commented Nov 7, 2017

@devops199
Because there is onlymanyowners modifier. Which I think refers library. I didin't check why it's not working but the result of calling kill by 3 owners with the same arguments is just nothing.

@noxonsu
Copy link

@noxonsu noxonsu commented Nov 7, 2017

"pragma solidity ^0.4.9;" released on 31 Jan

@hlogeon
Copy link

@hlogeon hlogeon commented Nov 7, 2017

"pragma solidity ^0.4.9;" released on 31 Jan

How does it solves problem?

@tomusdrw
Copy link
Collaborator

@tomusdrw tomusdrw commented Nov 7, 2017

Please read the details of the issue here: https://paritytech.io/blog/security-alert.html

We are analysing the situation and will release an update with further details shortly.

@openethereum openethereum locked and limited conversation to collaborators Nov 7, 2017
@KeithSSmith KeithSSmith mentioned this issue Nov 7, 2017
Open
@5chdn
Copy link
Contributor

@5chdn 5chdn commented Nov 9, 2017

The library is removed from the registry and all current Parity Wallet versions default to the WHG multi-signature wallets.

@5chdn 5chdn closed this Nov 9, 2017
@5chdn 5chdn added this to the 1.9 milestone Nov 13, 2017
@openethereum openethereum unlocked this conversation Nov 13, 2017
@RafaelCosman
Copy link

@RafaelCosman RafaelCosman commented Dec 22, 2017
edited by kirushik

Thought I'd post some resources to help people that come across this thread:

In historical order:

  1. Original Security Alert
  2. Parity Technologies Multi-Sig Wallet Issue Update
  3. A Postmortem on the Parity Multi-Sig Library Self-Destruct
  4. On Classes of Stuck Ether and Potential Solutions

@bernardpeh
Copy link

@bernardpeh bernardpeh commented Jan 19, 2018
edited

How come the last 2 links no longer work?

@kirushik
Copy link
Collaborator

@kirushik kirushik commented Jan 19, 2018

@bernardpeh Our bad, blog engine update ruined some of the links. Thanks for reporting.
I took a liberty to fix the links in the comment — it will do as a stopgap measure, but we'll definitely fix the underlying cause as well.

@5chdn 5chdn mentioned this issue Apr 12, 2018
Merged
@ksloven ksloven mentioned this issue May 8, 2018
Open
@maraoz maraoz mentioned this issue May 15, 2018
Closed
@ksloven ksloven mentioned this issue May 23, 2018
Closed
@whilei whilei mentioned this issue Jun 18, 2018
Open
@jschiarizzi jschiarizzi mentioned this issue Jul 16, 2018
Merged
@wongwf82
Copy link

@wongwf82 wongwf82 commented Jul 22, 2018
edited

FYI, the transaction that was submitted here:
https://etherscan.io/tx/0x05f71e1b2cb4f03e547739db15d080fd30c989eda04d37ce6264c5686e0722c9

The transaction Successfully completed here:
https://etherscan.io/tx/0x47f7cff7a5e671884629c93b368cb18f58a993f4b19c2a53a8662e3f1482f690

@rmeissner rmeissner mentioned this issue Aug 24, 2018
Open
@OFRBG OFRBG mentioned this issue Oct 22, 2018
Closed
@fubuloubu fubuloubu mentioned this issue Feb 27, 2021
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
F1-security 🛡 M8-contracts 🤝 P0-dropeverything 🌋
Projects
None yet
Milestone
1.9 Velocity
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
11 participants
@kirushik @bernardpeh @wongwf82 @tomusdrw @RafaelCosman @noxonsu @hlogeon @5chdn @jtakalai @Office-Julia and others