DOS caused by external call failure
Summary
Denial of Service can occur for a player when their opponent fails to receive funds. The player will be unable to cancel/tie the game, therefore the player will be unable to be refunded ETH.
Vulnerability Details
The functions RockPaperScissors::_handleTie(uint256 _gameId) and RockPaperScissors::_cancelGame(uint256 _gameId) contain external calls to the addresses of both players.
A problem arises when a call to one of the players fails.
Let's examine the following code from _cancelGame which attempts to refund both players:
If successA is false, then the logic for refunding playerB is never reached. Likewise, if successB is false, then the transaction is reverted and playerA is not refunded.
Impact
A player will be unable to cancel or tie their game if the other player fails to receive their funds. This means that a malicious actor could utilize a Smart Contract to revert the transaction upon receiving the funds, effectively locking the ETH that was bet by both players.
Tools Used
Manual Review.
Recommendations
It is recommended to simply change the game state to Cancelled or Finished in _cancelGame and _handleTie respectively. Afterwards, it is recommended implement a separate function allowing players to withdraw their refunds individually.
Appeal created
Denial of Service (DoS) due to Unhandled External Call Revert
Malicious player wins a game using a contract that intentionally reverts when receiving ETH, the entire transaction will fail
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.