Comments (8)
Ivshti
commented on September 23, 2024
@schmanu the EIP was updated to use bytes32, bytes and that's it's latest version AFAIK?
Also, using bytes as input presumes that the function would take input that isn't the final digest, but might not be compatible with different schemes (eg with prefix vs without prefix, in other words hash(ethereum signed message+hash(input)) vs hash(input)). Unless it is used for the final digest.
Anyway, we have nothing against implementing this, I'm just curious what the rationale is. Furthermore whether the input is the final digest affects the implementation
from signature-validator.
schmanu
commented on September 23, 2024
Hey @Ivshti, at the time the isValidSignaturecall was implemented in the safe-contracts the standard was still isValidSignature(bytes, bytes). That's why it is implemented in this way.
from signature-validator.
Ivshti
commented on September 23, 2024
@schmanu can you give me an example of how it's used? are the first bytes the input to keccak256? Or is prefixing also done (Ethereum signed message)?
from signature-validator.
Ivshti
commented on September 23, 2024
closing due to inactivity
@schmanu feel free to reopen if you feel strongly about this, especially if you're willing to PR it
from signature-validator.
ChaituVR
commented on September 23, 2024
At Snapshot we verify EIP-712, ERC-1271 (signatures on both old and new versions) and want to support ERC-6492
We found this library awesome library just today, and this library got everything we want to verify, except a check for signatures coming from older safe version, i.e checking for magic value 0x20c13b0b
Is there some way to get this added?
from signature-validator.
Ivshti
commented on September 23, 2024
I think so, @ChaituVR: can you point to verification logic for the older safe version and we can try to get it implemented
from signature-validator.
ChaituVR
commented on September 23, 2024
Hey @Ivshti It is here https://github.com/snapshot-labs/snapshot.js/blob/master/src/verify/evm.ts#L72-L81
from signature-validator.
Related Issues (7)
- High Severity Security Risk (yarn audit): Regular Expression Denial of Service in trim
- Guidance and/or permission to use the Solidity code in this repository HOT 3
- Signature Validation failed on https://sigtool.ambire.com/ HOT 6
- Unable to sign counterfactual contract address HOT 2
- verifyMessage does not work with undeployed smart accounts. HOT 3
- Proposal - Support for viem client in Verify Message HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from signature-validator.