Smart Contract Vulnerability - Insufficient Gas Griefing

1. Insufficient Gas Griefing
2. Insufficient gas griefing can be done on contracts that accept data and use it in a sub-call on another contract. This method is often used in multi-signature wallets as well as transaction relayers. If the sub-call fails, either the whole transaction is reverted, or execution is continued.
3.  
4. Let's consider a simple relayer contract as an example. As shown below, the relayer contract allows someone to make and sign a transaction, without having to execute the transaction. Often this is used when a user can't pay for the gas associated with the transaction.
5.  
6. contract Relayer {
7.     mapping (bytes => bool) executed;
8.  
9.     function relay(bytes _data) public {
10.         // replay protection; do not call the same transaction twice
11.         require(executed[_data] == 0, "Duplicate call");
12.         executed[_data] = true;
13.         innerContract.call(bytes4(keccak256("execute(bytes)")), _data);
14.     }
15. }
16.  
17. The user who executes the transaction, the 'forwarder', can effectively censor transactions by using just enough gas so that the transaction executes, but not enough gas for the sub-call to succeed.
18.  
19. There are two ways this could be prevented. The first solution would be to only allow trusted users to relay transactions. The other solution is to require that the forwarder provides enough gas, as seen below.
20.  
21. // contract called by Relayer
22. contract Executor {
23.     function execute(bytes _data, uint _gasLimit) {
24.         require(gasleft() >= _gasLimit);
25.         ...
26.     }
27. }
28.  
29. Sources
30. https://consensys.github.io/smart-contract-best-practices/attacks/griefing/
31. https://ethereum.stackexchange.com/questions/62829/what-does-griefing-mean
32. https://ethereum.stackexchange.com/questions/73261/griefing-attacks-are-they-profitable-for-the-attacker
33. https://en.wikipedia.org/wiki/Griefer