The current implementation recalculates getStakeTotal() and getTstTotal() each time, which can lead to inefficiencies.
Summary
The current implementation recalculates getStakeTotal() and getTstTotal() each time, which can lead to inefficiencies. The vulnerability lies in not maintaining a storage variable for the total number, resulting in redundant calculations.
Vulnerability Details
Instead of storing the total number of stakes and TST tokens in a storage variable, the contract calculates these totals each time through getStakeTotal() and getTstTotal(). This can lead to increased gas costs and inefficiencies, especially when these totals are queried frequently.
Impact
The vulnerability impacts the contract's efficiency and gas consumption. Redundant calculations increase the computational load, potentially affecting the overall performance and user experience.
Tools Used
Manual
Recommendations
-
Utilize Storage Variables:
Maintain storage variables to store and update the total number of stakes and TST tokens.
This approach reduces computational overhead and gas costs when retrieving these values.
uint256 public totalStakes;
uint256 public totalTstTokens; -
Update Functions:
Whenever stakes or TST tokens are added or removed, ensure that the storage variables (totalStakes and totalTstTokens) are updated accordingly.
By incorporating these recommendations, the contract can significantly improve efficiency and reduce gas costs associated with redundant calculations.
Lead Judging Commences
informational/invalid
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.