However, when constructing the digets for the signature, the data which is the bytes type is not keccak256 hashed, which not following the EIP-712 standards.
modifier checkSignature(bytes32 edgeId, bytes calldata data, bytes calldata signature) {
bytes32 digest = _hashTypedData(keccak256(abi.encode(ACK_TYPEHASH, edgeId, data))); // @audit the data is not keccak256 hashed
if (
!edges[edgeId].to.creator.target.isValidSignatureNowCalldata(digest, signature)
|| _isUsed[keccak256(signature)]
) {
revert Unauthorized();
}
_;
_isUsed[keccak256(signature)] = true;
}
ast3ros
medium
TitlesGraph contract does not strictly follow EIP-712 standard
Summary
The TitlesGraph contract does not adhere strictly to the EIP-712 standard during signature verification.
Vulnerability Detail
From the readme, the
TitlesGraphcontract strictly implements the EIP-712 standard for signing messages.From EIP-712 about encodeData:
https://eips.ethereum.org/EIPS/eip-712
However, when constructing the digets for the signature, the data which is the bytes type is not keccak256 hashed, which not following the EIP-712 standards.
https://github.com/sherlock-audit/2024-04-titles/blob/2ac20d07d0b4562c0b0ee15e1becbf786f0ed896/wallflower-contract-v2/src/graph/TitlesGraph.sol#L40-L50
Impact
The current implementation does not follow the EIP-712 standard, which could lead to potential issues with signature verification.
Code Snippet
https://github.com/sherlock-audit/2024-04-titles/blob/2ac20d07d0b4562c0b0ee15e1becbf786f0ed896/wallflower-contract-v2/src/graph/TitlesGraph.sol#L40-L50
Tool used
Manual Review
Recommendation
modify the
checkSignaturemodifier to hash the data parameter before encoding itDuplicate of #74