sig malleability detection

erc7579 · Nov 8, 2024 · d76cc51 · d76cc51
1 parent dfc03c3
commit d76cc51
Showing 1 changed file with 10 additions and 0 deletions.
diff --git a/src/ERC7739Validator.sol b/src/ERC7739Validator.sol
@@ -47,6 +47,16 @@ abstract contract ERC7739Validator {
             }
         }
 
+        // sig malleability prevention
+        bytes32 s;
+        assembly {
+            // same as `s := mload(add(signature, 0x40))` but for calldata
+            s := calldataload(add(signature.offset, 0x20))
+        }
+        if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
+            return 0xffffffff;
+        }
+
         bool success = _erc1271IsValidSignatureViaSafeCaller(sender, hash, signature)
             || _erc1271IsValidSignatureViaNestedEIP712(hash, signature)
             || _erc1271IsValidSignatureViaRPC(hash, signature);