from typing import ( Any, Dict, NamedTuple, Optional, Union, ) from eth_typing import ( Address, Hash32, ) from eth_utils.curried import ( ValidationError, keccak, text_if_str, to_bytes, to_canonical_address, ) from hexbytes import ( HexBytes, ) from eth_account._utils.encode_typed_data.encoding_and_hashing import ( get_primary_type, hash_domain, hash_eip712_message, ) from eth_account._utils.validation import ( is_valid_address, ) text_to_bytes = text_if_str(to_bytes) # watch for updates to signature format class SignableMessage(NamedTuple): """ A message compatible with EIP-191_ that is ready to be signed. The properties are components of an EIP-191_ signable message. Other message formats can be encoded into this format for easy signing. This data structure doesn't need to know about the original message format. For example, you can think of EIP-712 as compiling down to an EIP-191 message. In typical usage, you should never need to create these by hand. Instead, use one of the available encode_* methods in this module, like: - :meth:`encode_intended_validator` - :meth:`encode_defunct` - :meth:`encode_typed_data` .. _EIP-191: https://eips.ethereum.org/EIPS/eip-191 """ version: bytes # must be length 1 header: bytes # aka "version specific data" body: bytes # aka "data to sign" def _hash_eip191_message(signable_message: SignableMessage) -> Hash32: version = signable_message.version if len(version) != 1: raise ValidationError( f"The supplied message version is {version!r}. " "The EIP-191 signable message standard only supports one-byte versions." ) joined = b"\x19" + version + signable_message.header + signable_message.body return Hash32(keccak(joined)) # watch for updates to signature format def encode_intended_validator( validator_address: Union[Address, str], primitive: Optional[bytes] = None, *, hexstr: Optional[str] = None, text: Optional[str] = None, ) -> SignableMessage: """ Encode a message using the "intended validator" approach (ie~ version 0) defined in EIP-191_. Supply the message as exactly one of these three arguments: bytes as a primitive, a hex string, or a unicode string. .. WARNING:: Note that this code has not gone through an external audit. :param validator_address: which on-chain contract is capable of validating this message, provided as a checksummed address or in native bytes. :param primitive: the binary message to be signed :type primitive: bytes or int :param str hexstr: the message encoded as hex :param str text: the message as a series of unicode characters (a normal Py3 str) :returns: The EIP-191 encoded message, ready for signing .. _EIP-191: https://eips.ethereum.org/EIPS/eip-191 """ if not is_valid_address(validator_address): raise ValidationError( f"Cannot encode message with 'Validator Address': {validator_address!r}. " "It must be a checksum address, or an address converted to bytes." ) # The validator_address is a str or Address (which is a subtype of bytes). Both of # these are AnyStr, which includes str and bytes. # Not sure why mypy complains here... canonical_address = to_canonical_address(validator_address) message_bytes = to_bytes(primitive, hexstr=hexstr, text=text) return SignableMessage( HexBytes(b"\x00"), # version 0, as defined in EIP-191 canonical_address, message_bytes, ) def encode_defunct( primitive: Optional[bytes] = None, *, hexstr: Optional[str] = None, text: Optional[str] = None, ) -> SignableMessage: r""" Encode a message for signing, using an old, unrecommended approach. Only use this method if you must have compatibility with :meth:`w3.eth.sign() `. EIP-191 defines this as "version ``E``". .. NOTE: This standard includes the number of bytes in the message as a part of the header. Awkwardly, the number of bytes in the message is encoded in decimal ascii. So if the message is 'abcde', then the length is encoded as the ascii character '5'. This is one of the reasons that this message format is not preferred. There is ambiguity when the message '00' is encoded, for example. Supply exactly one of the three arguments: bytes, a hex string, or a unicode string. :param primitive: the binary message to be signed :type primitive: bytes or int :param str hexstr: the message encoded as hex :param str text: the message as a series of unicode characters (a normal Py3 str) :returns: The EIP-191 encoded message, ready for signing .. doctest:: python >>> from eth_account.messages import encode_defunct >>> from eth_utils.curried import to_hex, to_bytes >>> message_text = "I♥SF" >>> encode_defunct(text=message_text) SignableMessage(version=b'E', header=b'thereum Signed Message:\n6', body=b'I\xe2\x99\xa5SF') These four also produce the same hash: >>> encode_defunct(to_bytes(text=message_text)) SignableMessage(version=b'E', header=b'thereum Signed Message:\n6', body=b'I\xe2\x99\xa5SF') >>> encode_defunct(bytes(message_text, encoding='utf-8')) SignableMessage(version=b'E', header=b'thereum Signed Message:\n6', body=b'I\xe2\x99\xa5SF') >>> to_hex(text=message_text) '0x49e299a55346' >>> encode_defunct(hexstr='0x49e299a55346') SignableMessage(version=b'E', header=b'thereum Signed Message:\n6', body=b'I\xe2\x99\xa5SF') >>> encode_defunct(0x49e299a55346) SignableMessage(version=b'E', header=b'thereum Signed Message:\n6', body=b'I\xe2\x99\xa5SF') """ message_bytes = to_bytes(primitive, hexstr=hexstr, text=text) msg_length = str(len(message_bytes)).encode("utf-8") # Encoding version E defined by EIP-191 return SignableMessage( b"E", b"thereum Signed Message:\n" + msg_length, message_bytes, ) def defunct_hash_message( primitive: Optional[bytes] = None, *, hexstr: Optional[str] = None, text: Optional[str] = None, ) -> HexBytes: """ Convert the provided message into a message hash, to be signed. .. CAUTION:: Intended for use with :meth:`eth_account.account.Account.unsafe_sign_hash`. This is for backwards compatibility only. All new implementations should use :meth:`encode_defunct` instead. :param primitive: the binary message to be signed :type primitive: bytes or int :param str hexstr: the message encoded as hex :param str text: the message as a series of unicode characters (a normal Py3 str) :returns: The hash of the message, after adding the prefix """ signable = encode_defunct(primitive, hexstr=hexstr, text=text) hashed = _hash_eip191_message(signable) return HexBytes(hashed) def encode_typed_data( domain_data: Optional[Dict[str, Any]] = None, message_types: Optional[Dict[str, Any]] = None, message_data: Optional[Dict[str, Any]] = None, full_message: Optional[Dict[str, Any]] = None, ) -> SignableMessage: r""" Encode an EIP-712_ message in a manner compatible with other implementations in use, such as the Metamask and Ethers ``signTypedData`` functions. See the `EIP-712 spec `_ for more information. You may supply the information to be encoded in one of two ways: As exactly three arguments: - ``domain_data``, a dict of the EIP-712 domain data - ``message_types``, a dict of custom types (do not include a ``EIP712Domain`` key) - ``message_data``, a dict of the data to be signed Or as a single argument: - ``full_message``, a dict containing the following keys: - ``types``, a dict of custom types (may include a ``EIP712Domain`` key) - ``primaryType``, (optional) a string of the primary type of the message - ``domain``, a dict of the EIP-712 domain data - ``message``, a dict of the data to be signed .. WARNING:: Note that this code has not gone through an external audit, and the test cases are incomplete. Type Coercion: - For fixed-size bytes types, smaller values will be padded to fit in larger types, but values larger than the type will raise ``ValueOutOfBounds``. e.g., an 8-byte value will be padded to fit a ``bytes16`` type, but 16-byte value provided for a ``bytes8`` type will raise an error. - Fixed-size and dynamic ``bytes`` types will accept ``int``s. Any negative values will be converted to ``0`` before being converted to ``bytes`` - ``int`` and ``uint`` types will also accept strings. If prefixed with ``"0x"`` , the string will be interpreted as hex. Otherwise, it will be interpreted as decimal. - Any value for a ``bool`` type that Python considers "falsy" will be interpreted as ``False``. The strings ``"False"``, ``"false"``, and ``"0"`` will be also interpreted as ``False``. All other values will be interpreted as ``True``. Noteable differences from ``signTypedData``: - Custom types that are not alphanumeric will encode differently. - Custom types that are used but not defined in ``types`` will not encode. :param domain_data: EIP712 domain data :param message_types: custom types used by the `value` data :param message_data: data to be signed :param full_message: a dict containing all data and types :returns: a ``SignableMessage``, an encoded message ready to be signed .. doctest:: python >>> # examples of basic usage >>> from eth_account import Account >>> from eth_account.messages import encode_typed_data >>> # 3-argument usage >>> # all domain properties are optional >>> domain_data = { ... "name": "Ether Mail", ... "version": "1", ... "chainId": 1, ... "verifyingContract": "0xCcCCccccCCCCcCCCCCCcCcCccCcCCCcCcccccccC", ... "salt": b"decafbeef", ... } >>> # custom types >>> message_types = { ... "Person": [ ... {"name": "name", "type": "string"}, ... {"name": "wallet", "type": "address"}, ... ], ... "Mail": [ ... {"name": "from", "type": "Person"}, ... {"name": "to", "type": "Person"}, ... {"name": "contents", "type": "string"}, ... ], ... } >>> # the data to be signed >>> message_data = { ... "from": { ... "name": "Cow", ... "wallet": "0xCD2a3d9F938E13CD947Ec05AbC7FE734Df8DD826", ... }, ... "to": { ... "name": "Bob", ... "wallet": "0xbBbBBBBbbBBBbbbBbbBbbbbBBbBbbbbBbBbbBBbB", ... }, ... "contents": "Hello, Bob!", ... } >>> key = "0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" >>> signable_message = encode_typed_data(domain_data, message_types, message_data) >>> signed_message = Account.sign_message(signable_message, key) >>> signed_message.message_hash HexBytes('0xc5bb16ccc59ae9a3ad1cb8343d4e3351f057c994a97656e1aff8c134e56f7530') >>> # the message can be signed in one step using Account.sign_typed_data >>> signed_typed_data = Account.sign_typed_data(key, domain_data, message_types, message_data) >>> signed_typed_data == signed_message True >>> # 1-argument usage >>> # all domain properties are optional >>> full_message = { ... "types": { ... "EIP712Domain": [ ... {"name": "name", "type": "string"}, ... {"name": "version", "type": "string"}, ... {"name": "chainId", "type": "uint256"}, ... {"name": "verifyingContract", "type": "address"}, ... {"name": "salt", "type": "bytes32"}, ... ], ... "Person": [ ... {"name": "name", "type": "string"}, ... {"name": "wallet", "type": "address"}, ... ], ... "Mail": [ ... {"name": "from", "type": "Person"}, ... {"name": "to", "type": "Person"}, ... {"name": "contents", "type": "string"}, ... ], ... }, ... "primaryType": "Mail", ... "domain": { ... "name": "Ether Mail", ... "version": "1", ... "chainId": 1, ... "verifyingContract": "0xCcCCccccCCCCcCCCCCCcCcCccCcCCCcCcccccccC", ... "salt": b"decafbeef" ... }, ... "message": { ... "from": { ... "name": "Cow", ... "wallet": "0xCD2a3d9F938E13CD947Ec05AbC7FE734Df8DD826" ... }, ... "to": { ... "name": "Bob", ... "wallet": "0xbBbBBBBbbBBBbbbBbbBbbbbBBbBbbbbBbBbbBBbB" ... }, ... "contents": "Hello, Bob!", ... }, ... } >>> signable_message_2 = encode_typed_data(full_message=full_message) >>> signed_message_2 = Account.sign_message(signable_message_2, key) >>> signed_message_2.message_hash HexBytes('0xc5bb16ccc59ae9a3ad1cb8343d4e3351f057c994a97656e1aff8c134e56f7530') >>> signed_message_2 == signed_message True >>> # the full_message can be signed in one step using Account.sign_typed_data >>> signed_typed_data_2 = Account.sign_typed_data(key, domain_data, message_types, message_data) >>> signed_typed_data_2 == signed_message_2 True .. _EIP-712: https://eips.ethereum.org/EIPS/eip-712 """ # noqa: E501 if full_message is not None: if ( domain_data is not None or message_types is not None or message_data is not None ): raise ValueError( "You may supply either `full_message` as a single argument or " "`domain_data`, `message_types`, and `message_data` as three arguments," " but not both." ) full_message_types = full_message["types"].copy() full_message_domain = full_message["domain"].copy() # If EIP712Domain types were provided, check that they match the domain data if "EIP712Domain" in full_message_types: domain_data_keys = list(full_message_domain.keys()) domain_types_keys = [ field["name"] for field in full_message_types["EIP712Domain"] ] if set(domain_data_keys) != (set(domain_types_keys)): raise ValidationError( "The fields provided in `domain` do not match the fields provided" " in `types.EIP712Domain`. The fields provided in `domain` were" f" `{domain_data_keys}`, but the fields provided in " f"`types.EIP712Domain` were `{domain_types_keys}`." ) full_message_types.pop("EIP712Domain", None) # If primaryType was provided, check that it matches the derived primaryType if "primaryType" in full_message: derived_primary_type = get_primary_type(full_message_types) provided_primary_type = full_message["primaryType"] if derived_primary_type != provided_primary_type: raise ValidationError( "The provided `primaryType` does not match the derived " "`primaryType`. The provided `primaryType` was " f"`{provided_primary_type}`, but the derived `primaryType` was " f"`{derived_primary_type}`." ) parsed_domain_data = full_message_domain parsed_message_types = full_message_types parsed_message_data = full_message["message"] else: parsed_domain_data = domain_data parsed_message_types = message_types parsed_message_data = message_data return SignableMessage( HexBytes(b"\x01"), hash_domain(parsed_domain_data), hash_eip712_message(parsed_message_types, parsed_message_data), )