Skip to content

Added temporary fix for the EIP 1271 Issue #171

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Added temporary fix for the EIP 1271 Issue #171

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
f448cd2
Update authSig.md
brieyla1 Nov 17, 2023
35bc697
Update auth-sig.md
brieyla1 Nov 17, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
59 changes: 48 additions & 11 deletions docs/sdk/authentication/auth-sig.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ In the `AuthSig` data structure:
- `signedMessage` is the original message that was signed
- `address` is the public key address that was used to create the signature

You can refer to the `AuthSig` type definition in the [Lit JS SDK Latest Version](https://js-sdk.litprotocol.com/interfaces/types_src.AuthSig.html).
You can refer to the `AuthSig` type definition in the [Lit JS SDK V2](https://js-sdk.litprotocol.com/interfaces/types_src.AuthSig.html).

## Obtaining an `AuthSig` in the browser

Expand Down Expand Up @@ -75,16 +75,56 @@ Following the same data structure as above, you can format your smart contract `

- `sig` is the actual hex-encoded signature
- `derivedVia` must be "EIP1271" to inform the nodes that this `AuthSig` is for smart contracts
- `signedMessage` is any string that you want to pass to the `isValidSignature(bytes32 _hash, bytes memory _signature)` as the `_hash` argument
- `signedMessage` is any string that you want to pass to the `isValidSignature(bytes32 _hash, bytes memory _signature)` as the `_hash` argument.
- `address` is the address of the smart contract

You can present the smart contract `AuthSig` object to the Lit Nodes just like any other `AuthSig`.
Check out this [**React** project](https://replit.com/@lit/Smart-Contract-Authsig-EIP1271#smart-contract-authsig/src/App.js) for an example of how to generate and use a smart contract `AuthSig`.

:::note
The smart contract must implement the `isValidSignature(bytes32 _hash, bytes memory _signature)` function since the Lit Nodes will call this function to validate the `AuthSig`. Refer to the [EIP-1271](https://eips.ethereum.org/EIPS/eip-1271) docs to understand the `isValidSignature` function.
The smart contract must implement the `isValidSignature(bytes32 _hash, bytes memory _signature)` function since the Lit Nodes will call this function to validate the `AuthSig`. Refer to the [EIP-1271](https://eips.ethereum.org/EIPS/eip-1271) docs to understand the `isValidSignature` function. The current behavior is having an issue as of 16/11/23. This is because of a bug detailed below in the consideration.
:::

You can present the smart contract `AuthSig` object to the Lit Nodes just like any other `AuthSig`.
#### Current Behavior with `signedMessage`
The current implementation involves a specific handling of the `signedMessage` parameter that may not be immediately apparent. This has led to some confusion and difficulty in implementation. The key points are:

Encoding of `signedMessage`: The `signedMessage` should be a `string` without modifications. It's not meant to be in _hexadecimal_ format or any other encoding.

**Backend Processing:**

- The backend processes the `signedMessage` by first converting it to `bytes`, then encoding it in hex without the `0x` prefix.
- This `hex` string is then passed to the `keccak256` hash function.

The issue arises because `keccak256` interprets this as a `string`, not as _hexadecimal_ bytes.


**Solution to signedMessage Issue**
To correctly process the `signedMessage`, follow these steps:

_Correct Encoding:_

Convert the `signedMessage` to `bytes`.
Then convert these `bytes` to a `hex` string, then remove `0x` prefix and convert back to `bytes`.
Finally, apply `keccak256` to these bytes.

_Example Implementation:_
```js
const message = "example message";
const hexMessage = toBytes(toHex(toBytes(message)).slice(2).toLowerCase());
const hashBytes = keccak256(hexMessage);

// ERC-1271 Signing Logic
const signature = ....

authSig = {
sig: signature, // 0x00
derivedVia: "EIP1271",
signedMessage: "test message",
address: "0x..." // abstracted wallet address
};
```


Check out this [**React** project](https://replit.com/@lit/Smart-Contract-Authsig-EIP1271#smart-contract-authsig/src/App.js) for an example of how to generate and use a smart contract `AuthSig`.

### Clearing Local Storage

Expand All @@ -101,15 +141,12 @@ const siwe = require('siwe');

async function main() {
// Initialize LitNodeClient
const litNodeClient = new LitJsSdk.LitNodeClientNodeJs({
alertWhenUnauthorized: false,
litNetwork: 'cayenne',
});
const litNodeClient = new LitJsSdk.LitNodeClientNodeJs();
await litNodeClient.connect();

// Initialize the signer
const wallet = new ethers.Wallet('<Your private key>');
const address = ethers.getAddress(await wallet.getAddress());
const address = ethers.utils.getAddress(await wallet.getAddress());

// Craft the SIWE message
const domain = 'localhost';
Expand All @@ -122,7 +159,7 @@ async function main() {
statement,
uri: origin,
version: '1',
chainId: 1,
chainId: '1',
});
const messageToSign = siweMessage.prepareMessage();

Expand Down
48 changes: 44 additions & 4 deletions versioned_docs/version-2.0/sdk/explanation/authentication/authSig.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,16 +75,56 @@ Following the same data structure as above, you can format your smart contract `

- `sig` is the actual hex-encoded signature
- `derivedVia` must be "EIP1271" to inform the nodes that this `AuthSig` is for smart contracts
- `signedMessage` is any string that you want to pass to the `isValidSignature(bytes32 _hash, bytes memory _signature)` as the `_hash` argument
- `signedMessage` is any string that you want to pass to the `isValidSignature(bytes32 _hash, bytes memory _signature)` as the `_hash` argument.
- `address` is the address of the smart contract

You can present the smart contract `AuthSig` object to the Lit Nodes just like any other `AuthSig`.
Check out this [**React** project](https://replit.com/@lit/Smart-Contract-Authsig-EIP1271#smart-contract-authsig/src/App.js) for an example of how to generate and use a smart contract `AuthSig`.

:::note
The smart contract must implement the `isValidSignature(bytes32 _hash, bytes memory _signature)` function since the Lit Nodes will call this function to validate the `AuthSig`. Refer to the [EIP-1271](https://eips.ethereum.org/EIPS/eip-1271) docs to understand the `isValidSignature` function.
The smart contract must implement the `isValidSignature(bytes32 _hash, bytes memory _signature)` function since the Lit Nodes will call this function to validate the `AuthSig`. Refer to the [EIP-1271](https://eips.ethereum.org/EIPS/eip-1271) docs to understand the `isValidSignature` function. The current behavior is having an issue as of 16/11/23. This is because of a bug detailed below in the consideration.
:::

You can present the smart contract `AuthSig` object to the Lit Nodes just like any other `AuthSig`.
#### Current Behavior with `signedMessage`
The current implementation involves a specific handling of the `signedMessage` parameter that may not be immediately apparent. This has led to some confusion and difficulty in implementation. The key points are:

Encoding of `signedMessage`: The `signedMessage` should be a `string` without modifications. It's not meant to be in _hexadecimal_ format or any other encoding.

**Backend Processing:**

- The backend processes the `signedMessage` by first converting it to `bytes`, then encoding it in hex without the `0x` prefix.
- This `hex` string is then passed to the `keccak256` hash function.

The issue arises because `keccak256` interprets this as a `string`, not as _hexadecimal_ bytes.


**Solution to signedMessage Issue**
To correctly process the `signedMessage`, follow these steps:

_Correct Encoding:_

Convert the `signedMessage` to `bytes`.
Then convert these `bytes` to a `hex` string, then remove `0x` prefix and convert back to `bytes`.
Finally, apply `keccak256` to these bytes.

_Example Implementation:_
```js
const message = "example message";
const hexMessage = toBytes(toHex(toBytes(message)).slice(2).toLowerCase());
const hashBytes = keccak256(hexMessage);

// ERC-1271 Signing Logic
const signature = ....

authSig = {
sig: signature, // 0x00
derivedVia: "EIP1271",
signedMessage: "test message",
address: "0x..." // abstracted wallet address
};
```


Check out this [**React** project](https://replit.com/@lit/Smart-Contract-Authsig-EIP1271#smart-contract-authsig/src/App.js) for an example of how to generate and use a smart contract `AuthSig`.

### Clearing Local Storage

Expand Down