308 words
2 minutes
Arithmetic Overflow & Underflow in Solidity (With Examples & Fixes).
Arithmetic Overflow & Underflow In Solidity
π Definition
- Overflow: Happens when a number exceeds the maximum value of its type and wraps back to zero (or the minimum value).
- Underflow: Happens when a number goes below zero and wraps around to the maximum possible value of its type.
Example with uint8
uint8 x = 255;x = x + 1;// Overflow β wraps to 0uint8 y = 0;y = y - 1;// Underflow β wraps to 255Solidity Version Behavior
-
Before Solidity 0.8.0
- Arithmetic operations do not revert.
- Overflow/underflow wraps silently.
- Developers used SafeMath library (OpenZeppelin) to catch errors.
-
Solidity 0.8.0 and above
- Arithmetic operations revert automatically on overflow/underflow.
- You can still use
unchecked { ... }to deliberately allow wraparound (usually for gas optimization).
Vulnerable Code (<0.8.0)
// SPDX-License-Identifier: MITpragma solidity ^0.7.6;
contract OverflowUnderflowExample { uint8 public value;
function add(uint8 _amount) public { // Vulnerable: silent overflow possible value += _amount; }
function subtract(uint8 _amount) public { // Vulnerable: silent underflow possible value -= _amount; }}Safe Code (>=0.8.0)
// SPDX-License-Identifier: MITpragma solidity ^0.8.24;
contract SafeArithmetic { uint8 public value;
function add(uint8 _amount) public { value += _amount; // reverts on overflow }
function subtract(uint8 _amount) public { value -= _amount; // reverts on underflow }}Security Impact
- Incorrect balances or counters.
- Ability for attackers to bypass logic.
- Potential infinite minting or balance inflation.
Recommendations
- Always use Solidity >=0.8.0.
- For legacy contracts, use SafeMath.
- Review any
unchecked { ... }usage carefully.
Key Notes
- Overflow = βToo high β wraps to low.β
- Underflow = βToo low β wraps to high.β
- Modern Solidity handles checks automatically, but auditors must still confirm.