Dria

Swan

NFTHardhat

21,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Valid

No Slashing Mechanism Allows Malicious Oracles to Exit Without Consequences

0xnbvc

Vulnerability Details

The LLMOracleRegistry implements a staking mechanism but lacks any slashing mechanism or timelock delay for unstaking. This allows malicious oracles to:

Register as an oracle by staking tokens
Act maliciously (e.g., provide incorrect responses/validations)
Immediately unregister and withdraw their entire stake before any penalties can be applied

The issue occurs in the unregister() function which has no delay or conditions:

LLMOracleRegistry.sol#L113-L131

/// @notice Remove registration of an Oracle.

/// @dev Reverts if the user is not registered.

/// @param kind The kind of Oracle to unregister.

/// @return amount Amount of stake approved back.

function unregister(LLMOracleKind kind) public returns (uint256 amount) {

amount = registrations[msg.sender][kind];

// ensure the user is registered

if (amount == 0) {

revert NotRegistered(msg.sender);

}

// unregister the user

delete registrations[msg.sender][kind];

emit Unregistered(msg.sender, kind);

// approve its stake back

token.approve(msg.sender, token.allowance(address(this), msg.sender) + amount);

}

While the protocol relies on Proof-of-Work as a security measure, this only prevents spam but does not ensure honest behavior. A malicious oracle with sufficient computational power could still:

Submit incorrect responses that pass PoW verification
Have their validator address validate these incorrect responses
Immediately unregister both addresses and withdraw their stakes
Keep all earned fees while damaging the protocol's integrity

Impact

No economic penalties for malicious behavior
Oracles can act maliciously without risking their stake
The protocol's quality assurance relies solely on PoW which only prevents spam
Malicious oracles can damage the protocol's reputation and still recover their full stake
This undermines the entire staking mechanism's purpose of ensuring honest behavior

Recommendations

Add a timelock delay (e.g., 7 days) between requesting unstake and being able to withdraw
Implement a slashing mechanism for provably malicious behavior
Consider a reputation system where oracles build up trust over time
Add a dispute period during the unstaking timelock where other participants can flag malicious behavior

Updates

Lead Judging Commences

inallhonesty Lead Judge about 1 year ago

Submission Judgement Published

Validated

Assigned finding tags:

There is no oracle whitelisting

Prize pool breakdown

Total prize

21,000 USDC

nSLOC

1,034

20 USDC / LOC

High Medium

20,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.