Day 72 of #100DaysOfDeFI 🚀  Today I looked at arithmetic Over/Under Flows in #Solidity 👾 This vulnerability been secured by the current Solidity version 🦸‍♂️ Nevertheless, it is important to understand what it is and how to avoid it 👩🏻‍💻
#womenwhocode #100DaysOfCode

Summary 🧵 Image
1/ An overflow in Solidity occurs when a number is incremented beyond its maximum value. For example, if we have a uint8 with a value of 255 and increment it by 1, it will “reset” and set a value to 0. Remember, the maximum value for uint8 is 255❗
2/ Similar thing happens when we decrease a value beyond its minimal level. Taking the same example, if a uint8 is set to 0 and we decrease it by 1, it will set to 255, since 0 is the minimal value of uint8❗
3/ Let’s check it with code 👩🏻‍💻 Image
4/ Deploy contract and check the value → it should be set to 0️⃣ Try to decrease a value and it will return 255 👇 ImageImage
5/ Increase it and it will be set back to 0 👇 Image
6/ To avoid this vulnerability the best option is to use the latest version of Solidity 👾  There is also an option to use SafeMath library by OpenZeppelin that helps preventing overflows and underflows 👩🏻‍💻

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Anna Kondratenko 👩🏻‍💻

Anna Kondratenko 👩🏻‍💻 Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @anacoding

May 25
Day 73 of #100DaysOfDeFI 🚀 Learned about Self Destruct vulnerability in #Solidity 🦹🏼‍♀️ Selfdestruct deletes the contract from the blockchain and and sends all Ether to a designated address 💸  In some scenarios it can lead to unexpected problems ❌
#100DaysOfCode

How it works 🧵 Image
1/ Let’s see how it works with an example of a simple game 🎲  Players send to the contract 1 token 🪙 the one who deposits the fifth token wins 🏆
Game code 👇 Image
2/ Attacker smart contract 🦹🏼‍♀️ Image
Read 5 tweets
May 23
Day 71 of #100DaysOfDeFI 🚀 looked at Re-Entrancy vulnerability🦹🏻 It is one of the most destructive attacks in the #Solidity smart contracts 💸 The untrusted contract that exploits the vulnerability is able to drain all user's funds 🚰
#100DaysOfCode

How it works 🧵
1/ To make it happen, there should be 2 contracts: a vulnerable contract and an attacker’s contract 👺
2/ The attacker should deposit some funds into the vulnerable contract 💰
Read 11 tweets
May 18
Day 68 of #100DaysOfDeFI 🚀 Today I worked on the Factory smart contract that is a part of the decentralized exchange architecture 💱  Factory creates and keeps track of all Pair contracts 👩🏻‍💻
#womenwhocode #100DaysOfCode

Summary 🧵 Image
1/ The Factory will include:
🔷 createPair - create a Liquidity Pool;
🔷 adjustAmount - adjust a number of tokens using a formula;
🔷 getReserves - a getter function;
🔷 addLiquidity - add liquidity to the LP;
🔷 removeLiquidity - withdraw liquidity;
🔷 trade1for2 - swap tokens.
2/ First, initialize contract and define the state variables 👩🏻‍💻 Image
Read 8 tweets
May 17
Day 67 of #100DaysOfDeFI 🚀 Today I continued creating a basic DEX 👩🏻‍💻  and focused on developing a Pair smart contract 👾  Pair represents the Liquidity Pool 🪙 it is in charge of swapping 💱 managing the liquidity pool and burning 🔥
#womenwhocode #100DaysOfCode

Summary 🧵
1/ In this example of the Pair smart contract I’ll implement the following methods:
🔶  getReservers - get quantities of each token;
🔶  updateReserves - update the tokens’ quantities;
🔶  swap - exchange two tokens;
🔶  withdrawTokens - send the tokens back to the LP.
2/ First, initialize the Pair contract. We’ll need to import some contracts from OpenZeppelin and a Tokens contract from the day 66 of the challenge. Initialize state variables and constructor, too👩🏻‍💻
Read 7 tweets
May 16
Day 66 of #100DaysOfDeFI 🚀  Today and the following days I'll dive into DEXs implementation in #Solidity ⭐️ I’ll review the Uniswap smart contracts and create a decentralized exchange protocol 👩🏻‍💻 
#womenwhocode #100DaysOfCode

Summary 🧵 Image
1/ Uniswap smart contract architecture consists of Core and Periphery:
🔹 Core is used for storing and swapping the tokens, adding funds, getting rewards, etc;
🔹 Periphery interacts with the Core.
2/ Core stores the following smart contracts:
🔹 Pair - swaps, mints and burns tokens;
🔹 Factory - creates pairs of tokens;
🔹 ERC20 - keeps track of ownership of pool.

Periphery has only 1 smart contract:
🔹 Router - interacts with the Core.
Read 6 tweets
May 11
Day 63 of #100DaysOfDeFI 🚀 Today I learned how to deploy an NFT collection on a testnet 🤖  and uploaded a collection of watermelon houses generated with AI on OpenSea 🐳  special thanks to @javilop for creating these cute houses! 🍉
#womenwhocode #100DaysOfCode

Summary 🧵
1/ First, upload a collection of images on Pinata, I described it in detail on day 56 of the challenge 🔙
2/ Now create json files for each image and add CID to “image” 👇
Read 9 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(