Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Protocol Specs] Document signature flow use cases #63

Open
nlordell opened this issue Nov 3, 2023 · 2 comments
Open

[Protocol Specs] Document signature flow use cases #63

nlordell opened this issue Nov 3, 2023 · 2 comments

Comments

@nlordell
Copy link
Collaborator

nlordell commented Nov 3, 2023
edited
Loading

This issue is meant to document potential use cases for signature modules in the Safe Core Protocol

Extending Support for ERC-1271 Signatures

See https://github.com/safe-global/safe-core-protocol-specs/blob/main/modules/README.md#signature-validators.

An existing use case for this is the CoW Protocol Composable CoW framework, where specialised signature validator implementations are used to make custom and "programable" orders for CoW Protocol. It allows injecting additional logic into the isValidSignature check for a CoW Protocol order for additional on-chain guarantees (such as require(block.timestamp > START_TIME) to implement good-after-time orders).

Additional Signing Schemes

A commonly requested feature is to add support for additional signing schemes:

  • Secp256r1 for PassKey support
  • Session key management (where a session key would allow multiple transactions of a specific kind to be executed over a period of time)

While this is currently mentioned in the spec, a possible implementation of this is not clearly defined ATM see #62.

User Operation Signature Support

Additional signing logic for ERC-4337 user operations. Specifically, it would be nice to allow similar behaviour to plugins applied to ERC-4337. That is, plugins currently get access to execute transactions on behalf of Safes that enable them, so some analogy should exist for 4337 user operations where custom validateUserOp logic could trigger a transaction execution from an account.

A potential implementation would have modules expose:

  • A function for validating user operations. Custom logic can be added (for example, check what is being called and what parameters are used)
  • A fallback that would execute as a plugin a transaction on the account. This ensures a registry check to verify that the module has not been flagged (registry checks during user op validation is tricky... while possible if we guarantee that user ops are submitted with a staked paymaster, it would further balloon gas cost of using 4337 over Safe Protocol even further).

The proposed implementation would require these modules to be simultaneously installed as a plugin, a fallback handler and a signature validator, which isn't super clean.
@mmv08
Copy link
Member

mmv08 commented Nov 3, 2023

An existing use case for this is the CoW Protocol Composable CoW framework, where specialised signature validator implementations are used to make

Is this sentence incomplete?

@nlordell
Copy link
Collaborator Author

nlordell commented Nov 6, 2023

Oops - fixed.

@nlordell nlordell mentioned this issue Nov 13, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nlordell @mmv08