function getBalance(address addr) public view returns(uint) { return balances[addr]; } }
It is a very common and simple token contract, which has functions to transfer tokens and to check the balance of each account.
At first glance, there is nothing in this contract that can possibly go wrong. Incrementally add a quantity to the variable and, when it reaches the maximum value allocated to uint256 (2^256), it will circle back to zero. This is called integer overflow:
balances[receiver] += amount;
The same thing is applicable if the value is made to be less than zero. The value will circle back to the maximum value of uint256. This is called integer underflow:
balances[msg.sender] -= amount;
This may not occur in every condition and is completely dependent on the use case. Most of the time, the total supply will never reach the maximum value of uint256. But, it is always recommended to include enough validations to ensure that this cannot happen.
Try applying it for all integer types in solidity, including uint8, uint32, and uint64. These smaller values can easily hit the overflow value.
To avoid overflow or underflow situations, it is recommended to check whether the value after an arithmetic operation is the expected result:
balanceOf[_to] + _value >= balanceOf[_to]
Modify the transfer function in the following way to avoid any overflow during token transfer:
function sendToken(address receiver, uint amount) public returns(bool) { require(balances[msg.sender] < amount); require(balanceOf[_to] + _value >= balanceOf[_to]);
