Lottery Smart Contracts on Blockchain with Chainlink VRF

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Lottery Smart Contracts on Blockchain with Chainlink VRF
Medium
~3-5 days
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

Imagine you launch a lottery dApp with a $100K pool. Participants demand guaranteed fairness—selecting a winner via block.timestamp gives validators manipulation power. One wrong step and funds can be lost due to reentrancy or front-running. We, blockchain engineers with experience in dozens of projects, solve these problems by implementing Chainlink VRF and rigorous contract audits. Similar architecture has been used in lotteries with cumulative pools over $2M—zero vulnerabilities. In this article, we'll walk through building a verifiably fair lottery on smart contracts.

Why on-chain randomness is unsafe

block.prevrandao in Ethereum gives validators 1 bit of influence. RANDAO aggregates entropy, but the last reveal has influence. For a lottery with a pool >$1M, this is economically attackable: a validator can withhold the reveal. Chainlink VRF solves this cryptographically: randomness is generated off-chain with a proof verifiable on-chain. Faking the random is impossible. Moreover, VRF uses a key pair: the oracle's secret key generates the number, and the public key allows the contract to verify the proof. This guarantees fairness even if the VRF operator is untrusted.

How Chainlink VRF ensures fairness

The contract requests a random number via requestRandomWords, and the oracle returns it in fulfillRandomWords along with a proof. The contract verifies the proof—if invalid, result is rejected. We use the subscription model (VRF 2.5), which is cheaper for frequent requests: pay once for a subscription, then only for gas. Gas cost per request is about 200k gas, which on Ethereum at 20 Gwei is roughly $5-10. For lotteries with frequent draws, this is acceptable.

Lottery contract architecture with VRF

// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;

import {VRFConsumerBaseV2Plus} from "@chainlink/contracts/src/v0.8/vrf/dev/VRFConsumerBaseV2Plus.sol";
import {VRFV2PlusClient} from "@chainlink/contracts/src/v0.8/vrf/dev/libraries/VRFV2PlusClient.sol";

contract Lottery is VRFConsumerBaseV2Plus {
    uint256 public subscriptionId;
    bytes32 public keyHash;
    uint32 public callbackGasLimit = 100000;
    uint16 public requestConfirmations = 3;

    address[] public participants;
    uint256 public pendingRequestId;
    LotteryState public state;

    enum LotteryState { OPEN, DRAWING, CLOSED }

    function drawWinner() external onlyOwner {
        require(state == LotteryState.OPEN, "Not open");
        require(participants.length > 0, "No participants");
        state = LotteryState.DRAWING;

        pendingRequestId = s_vrfCoordinator.requestRandomWords(
            VRFV2PlusClient.RandomWordsRequest({
                keyHash: keyHash,
                subId: subscriptionId,
                requestConfirmations: requestConfirmations,
                callbackGasLimit: callbackGasLimit,
                numWords: 1,
                extraArgs: VRFV2PlusClient._argsToBytes(
                    VRFV2PlusClient.ExtraArgsV1({nativePayment: false})
                )
            })
        );
    }

    function fulfillRandomWords(
        uint256 requestId,
        uint256[] calldata randomWords
    ) internal override {
        require(requestId == pendingRequestId, "Wrong requestId");
        uint256 winnerIndex = randomWords[0] % participants.length;
        address winner = participants[winnerIndex];
        state = LotteryState.CLOSED;
        // payout to winner
        payable(winner).transfer(address(this).balance);
    }
}

Critical implementation details

requestConfirmations: how many blocks to wait before generating random. Minimum 3, recommended 5 or more. callbackGasLimit: gas limit for fulfillRandomWords. If the logic uses more gas, the transaction reverts and the contract gets stuck. Better to store the winnerIndex and let the winner claim the prize. Subscription vs Direct Funding: subscription model is recommended for regular draws—it reduces request cost by up to 40%.

How to protect against front-running?

If the draw time is known, MEV bots can buy the last ticket in the same block as drawWinner. Solutions: commit-reveal for ticket purchases or close sales N blocks before the draw. Chainlink Automation eliminates manual calls—the contract itself calls drawWinner on a schedule or when conditions are met. This makes front-running practically impossible.

Common vulnerabilities in lottery contracts

Reentrancy during payout

We use the pull-pattern: the winner calls claimPrize(), which updates state before the transfer. This prevents reentrancy. In the code above we use push—for production contracts we always replace it with pull.

Centralization of control

onlyOwner on drawWinner is centralized. We automate the draw via Chainlink Automation, removing the risk of owner collusion with participants.

Integration with Chainlink Automation

Draw on schedule or condition without manual call:

function checkUpkeep(bytes calldata)
    external view override returns (bool upkeepNeeded, bytes memory) {
    upkeepNeeded = (
        state == LotteryState.OPEN &&
        participants.length >= minParticipants &&
        block.timestamp >= nextDrawTime
    );
}

function performUpkeep(bytes calldata) external override {
    drawWinner();
}

Testing and audit

Tests with Foundry using a mock VRF Coordinator. Code coverage: 100% branches, 99% lines. Fuzzing on parameters (number of participants, amounts, gas limit). For testnet: Sepolia with real VRF. We guarantee quality: over 50 implemented projects, 15+ lottery systems.

What's included

  • Smart contract development with VRF and Automation
  • Full test coverage (Foundry, fuzzing)
  • Deployment to mainnet/testnet
  • Documentation and operational guide
  • Post-launch support (2 weeks)
Payout method Security Gas cost Additional risks
Push (direct transfer) Low (reentrancy) Low Reentrancy, high cost on error
Pull (claim) High Medium (user pays) User dependency
Randomness source Security Cost Example
block.timestamp Low (miner attack) Free Hobby contract
block.prevrandao Medium (1 bit influence) Free Old projects
Chainlink VRF Cryptographic LINK per request Reliable lottery

Timelines

Basic contract: 3-5 days development + 1-2 days testing. Extended (multiple pools, NFT tickets): 2-3 weeks. Audit recommended for any contract with pool >$50K. Cost calculated individually.

Contact us for a consultation on your project—we'll analyze requirements and propose the optimal solution. Request a turnkey lottery contract development with a fairness guarantee.

Smart Contract Development

We faced a situation: a contract was deployed, two weeks later a message arrives—the pool drained for $800k. Looked at the transaction in Tenderly: attacker called deposit(), inside an ERC-777 callback re-called withdraw()—balance only updated after the second exit. Classic reentrancy, but not via ETH transfer—through an ERC-777 hook. ReentrancyGuard was only on withdraw().

Such cases are not rare. A smart contract is financial logic with no possibility to patch it overnight. Our team develops turnkey contracts, embedding protection against reentrancy, MEV, and gas attacks from the early stages.

How We Develop Smart Contracts Turnkey

We start with business logic audit and stack selection. Solidity 0.8.x is the standard for EVM-compatible chains: Ethereum, Arbitrum, Optimism, Polygon, BSC, Avalanche C-Chain. For Solana, we use Rust and Anchor: the account and program model requires explicit declaration of all resources. For projects requiring formal verification, Move (Aptos, Sui) fits—linear types eliminate resource copying at the compiler level. Vyper is chosen for contracts where audit simplicity is critical (Curve Finance).

Language Execution Model Typical Domain Risks
Solidity 0.8.x EVM, sequential DeFi, NFT, tokens Reentrancy, overflow (unchecked)
Rust (Anchor) Solana, parallel High-throughput DEX, games Incorrect account declaration
Move Aptos/Sui, resource Large protocols Ecosystem complexity
Vyper EVM, limited syntax Critical contracts (Curve) Compiler stability dependency

Gas optimization is not premature optimization—it is an architectural decision. On Ethereum mainnet, deploying a poorly designed contract can cost a significant amount of ETH due to suboptimal storage layout. Repacking a Proposal structure from 7 slots to 4 saved thousands of gas per vote—substantial savings when scaled across thousands of votes per day.

Typical gas mistakes: passing arrays via memory instead of calldata in external functions (2–3x more expensive); using require with long strings instead of custom errors like error InsufficientBalance(...). Custom errors are cheaper on revert and pass structured data to the frontend.

Why Smart Contract Audit Is Critical for Security

Audit is not a one-time check—it is a built-in development stage. We use three levels:

  1. Static analysisSlither (30 seconds in CI) detects reentrancy, uninitialized variables, dangerous delegatecall.
  2. Fuzzing and invariant testsFoundry with --fuzz-runs 50000 finds edge cases missed by hundreds of unit tests. Real case: an AMM contract with custom math passed 150 Hardhat tests; Foundry found an integer division truncation that allowed a dust attack to accumulate dust on the contract. Echidna checks invariants ("sum of all balances ≤ totalSupply").
  3. Manual code review—our engineers with 10+ years in blockchain identify logic errors that tools miss. For protocols with TVL > $1M, external audit from Trail of Bits, Consensys Diligence, or OpenZeppelin is mandatory. Timeline: 2–4 weeks.

Any upgradeable protocol must have a timelock. TimelockController from OpenZeppelin: operation proposed → wait minimum delay (48–72 hours) → executed. Without timelock, one compromised deployer wallet means losing the entire pool.

What Upgrade Patterns Do We Choose?

Pattern Mechanism Risk When to Use Our Experience
Transparent Proxy (OZ) admin vs user separation Storage collision, centralization Standard projects 15+ implementations
UUPS Upgrade logic in implementation Forget _authorizeUpgrade → contract permanently broken Gas-optimized projects 7 projects
Diamond (EIP-2535) Multiple facets Audit complexity Large protocols with 10+ contracts 3 deployments
Beacon Proxy One beacon for multiple proxies Beacon = single point of failure Factories of identical contracts 5 factories

Storage collision is the main danger of proxies. Implementation v2 must not add variables before existing ones. OpenZeppelin Upgrades plugin for Hardhat and Foundry checks this automatically, but only when using its API.

How to Protect a Contract from MEV and Front-Running

On Ethereum mainnet, transactions in the mempool are visible to all. MEV bots execute sandwich attacks on DEX, front-run mints and governance. Solution: commit-reveal scheme for auctions, private submission via Flashbots PROTECT RPC. EIP-7702 and PBS (proposer-builder separation) are changing the landscape but not yet widespread.

What Is the Development Process?

  1. Analysis—functional specification, call diagram, edge case analysis. Without this, coding starts in vain.
  2. Development—Solidity/Rust with tests in parallel. Test → code → refactoring. Use Foundry for fuzz and invariant tests.
  3. Internal audit—Slither + Echidna + manual code review. Foundry invariant tests for protocol invariants.
  4. External audit—for projects with real money. Timeline: 2–4 weeks.
  5. Deployment—Foundry scripts or Hardhat Ignition with verification on Etherscan. Gnosis Safe for ownership transfer immediately after deployment.
  6. Monitoring—Tenderly alerts, OpenZeppelin Defender, Forta Network.

What Is Included

  • Architecture documentation and contract specification (NatSpec).
  • Source code with repository and CI (Slither, Foundry, coverage).
  • Deployed contract with verification on blockchain explorer.
  • Audit results (internal and external upon request).
  • Access to monitoring and management (Gnosis Safe).
  • Code warranty: critical bug fixes within one month after deployment.
  • Consultation on web integration (wagmi, RainbowKit).

Estimated Timelines

  • ERC-20 token with basic functions: 1–2 weeks
  • Vesting contract with cliff/linear schedule: 2–3 weeks
  • NFT ERC-721/1155 with marketplace: 4–6 weeks
  • AMM or lending protocol: 2–4 months
  • Multichain protocol with bridge: 4–7 months

Audit adds 3–6 weeks and runs in parallel with final testing where possible. Cost is calculated individually—contact us for a free project evaluation.

Order smart contract development—get consultation on architecture and protection against reentrancy, MEV, and gas attacks. Want to discuss details? Write to us—we will select the optimal stack for your task.