Skip to content
This repository has been archived by the owner on Oct 19, 2024. It is now read-only.

fix: eip712 signing with ledger hw #518

Merged
merged 11 commits into from
Oct 19, 2021
Merged

fix: eip712 signing with ledger hw #518

merged 11 commits into from
Oct 19, 2021

Conversation

sebastinez
Copy link
Contributor

@sebastinez sebastinez commented Oct 17, 2021
edited
Loading

Motivation

This PR fixes the way a EIP712 derived struct is sent to the Ledger HW to obtain the signature.

Solution

Based on the following specification: https://github.com/LedgerHQ/app-ethereum/blob/master/doc/ethapp.asc#sign-eth-eip-712

  • Adds a new INS variant = SIGN_ETH_EIP_712
  • Replaces self.sign_message with self.signed_typed_struct
  • signed_typed_struct creates a payload consisting of the domain separator and the typed data hash.
  • This allows the Ledger to display both in its display to be signed by the user.
  • It also checks if the Ledger ETH app is at least 1.6.0 since this is a requirement, according to Support for EIP-712 message signing LedgerHQ/app-ethereum#105 (comment).
    • If you prefer a different way to handle this issue please let me know!

PR Checklist

  • Added Tests
  • Added Documentation
  • Updated the changelog

I tested the generated signature on a deployed contract on Rinkeby and it works great.
Please let me know if you have any feedback @gakonst @prestwich @Ryanmtate.

Sebastian Martinez added 3 commits October 17, 2021 22:18
fix: eip712 signing with ledger hw
cd35265 
This commit fixes the way a EIP712 derived struct is sent to the
Ledger HW to obtain the signature.

It also checks if the Ledger ETH app is at least 1.6.0 since this
is a requirement.
fix: apply cargo fmt
628397a
fix: revert ledger eip712 test
d4cc4ed
@sebastinez sebastinez force-pushed the sebastinez/fix-ledger-eip712 branch from 7b79f3b to d4cc4ed Compare October 17, 2021 20:52
@sebastinez
Copy link
Contributor Author

This PR resolves the issue #516

@Ryanmtate
Copy link
Contributor

Nice work @sebastinez! Looks great!

@Ryanmtate
Copy link
Contributor

Can we add a test case to the tests module?

@sebastinez
Copy link
Contributor Author

Can we add a test case to the tests module?

Yeah should be no problem, the thing I'm missing is since I'm not able to mock a Ledger (at least I think so) it's kinda hard to assert something.
We could eventually check that an error gets thrown when the Eth app version does not match semver.

Did you have some specific test in mind?

@gakonst
Copy link
Owner

gakonst commented Oct 18, 2021

I think just writing a simple test for any 712 struct that you ignore by default with the Ledger signer is sufficient. Just want something that I could run locally and check that it works!

@sebastinez
Copy link
Contributor Author

I think just writing a simple test for any 712 struct that you ignore by default with the Ledger signer is sufficient. Just want something that I could run locally and check that it works!

Okay understood, np 👍

Ryanmtate
Ryanmtate reviewed Oct 18, 2021
View reviewed changes
ethers-signers/src/ledger/mod.rs Outdated
let version = semver::Version::parse(&self.version().await?)?;

// Enforce app version is greater than EIP712_MIN_VERSION
if !req.matches(&version) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I suggest we move the version check to the sign_typed_struct method, as it should be checked there as well if the method was used instead of sign_typed_data.

@sebastinez
Copy link
Contributor Author

sebastinez commented Oct 19, 2021
edited
Loading

In b5587ba I moved the version check and the parsing of domain_separator and struct_hash to sign_typed_struct and let sign_typed_data be a simple entrypoint, like the other functions do in mod.rs

If we are able to merge let me know and I squash some commits and sign the remaining ones.

@gakonst gakonst merged commit 9db36e5 into gakonst:master Oct 19, 2021
@gakonst
Copy link
Owner

gakonst commented Oct 19, 2021

OK this looks great. Thank you for the work on it. I made the test slightly tighter and manually verified that it works!

@gakonst gakonst mentioned this pull request Oct 19, 2021
Closed
@sebastinez sebastinez deleted the sebastinez/fix-ledger-eip712 branch November 4, 2021 19:27
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@Ryanmtate Ryanmtate Ryanmtate left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sebastinez @Ryanmtate @gakonst