forked from SunWeb3Sec/DeFiVulnLabs
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathDivmultiply.sol
78 lines (67 loc) · 2.71 KB
/
Divmultiply.sol
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.18;
import "forge-std/Test.sol";
/*
Name: Precision Issues - Divide before multiply
Description:
The contracts demonstrate a common issue when performing division operations in Solidity,
as Solidity doesn't support floating-point numbers. The order of operations can affect the result due to integer truncation.
In the Miscalculation contract, the function price performs the division before the
multiplication (price / 100) * discount. Due to the fact that Solidity truncates integers
when dividing, the result of price / 100 will be 0 if the price is less than 100.
This causes the result of the multiplication to be 0 as well.
On the other hand, in the Calculation contract, the function price performs the multiplication
before the division (price * discount) / 100. This way, the result will be correct as the multiplication
doesn't get truncated, only the final result does.
Mitigation:Always perform multiplication before division to avoid losing precision.
REF:
https://twitter.com/1nf0s3cpt/status/1599774264437395461
https://blog.solidityscan.com/precision-loss-in-arithmetic-operations-8729aea20be9
*/
contract ContractTest is Test {
Miscalculation MiscalculationContract;
Calculation CalculationContract;
function testMiscalculation() public {
MiscalculationContract = new Miscalculation();
console.log("Perform Miscalculation Contract");
console.log(
"Scenario: DeFi store 10% off now, Then we buy 1 item price: $80."
);
console.log(
"Subtract the discount, get the sale price:",
MiscalculationContract.price(80, 90)
);
console.log(
"Solidity doesn't do decimals, so dividing before multiplying will round to zero. 0.8*90=0"
);
console.log(
"---------------------------------------------------------"
);
CalculationContract = new Calculation();
console.log("Perform Correct calculation Contract");
console.log(
"Scenario: DeFi store 10% off now, Then we buy 1 item price: $80."
);
console.log(
"Subtract the discount, get the sale price:",
CalculationContract.price(80, 90)
);
console.log("Multiply before dividing is correct. 80*90/100=72");
}
}
contract Miscalculation {
function price(
uint256 price,
uint256 discount
) public pure returns (uint256) {
return (price / 100) * discount; // wrong calculation
}
}
contract Calculation {
function price(
uint256 price,
uint256 discount
) public pure returns (uint256) {
return (price * discount) / 100; // correct calculation
}
}