区块链拍卖退款交易智能合约DoS漏洞优化研究

针对智能合约的DoS漏洞可能在拍卖退款交易中造成资源耗尽问题进行了研究，设计了拍卖退款交易中智能合约DoS漏洞优化方案。首先构造可能存在DoS漏洞的智能合约，然后采用增加映射以及压栈出栈方法完成漏洞优化，最后通过形式化验证运行优化后的智能合约，检测其是否存在逻辑错误或不一致性。实验结果表明，采用该方法优化的智能合约能够避免因资源耗尽产生的拒绝服务，与带有漏洞智能合约相比，优化后的智能合的等效内存使用量减少了约62.8%，运行时间也有缩短。

Research on DoS vulnerability optimization of blockchain auction refund transaction smart contract

Aiming at the problem that DoS vulnerabilities of smart contracts may cause resource exhaustion in auction refund transactions, this paper studied and designed an optimization scheme for DoS vulnerabilities of smart contracts in auction refund transactions. Firstly, it constructed a smart contract that may have DoS vulnerabilities, and then used the method of increasing mapping and pushing the stack out to complete vulnerability optimization. Finally, it ran the optimized smart contract through formal verification to detect whether there was logic errors or inconsistencies. The experimental results show that the smart contract optimized by this algorithm can avoid the denial of service caused by resource exhaustion. Compared with the smart contract with vulnerabilities, the equivalent memory usage of the optimized smart contract reduces about 62.8%, and the running time is shortened.