safe-global / safe-modules

100%

master: 85%

LAST BUILD ON BRANCH hats/14-check-static-call

branch: hats/14-check-static-call

CHANGE BRANCH

x

Reset

• hats/14-check-static-call
• feature-79-document-tx-flow
• feature-81-implement-4337-exec-flow
• feature-82-implement-4337-deploy-flow
• feature-83-integration-tests
• master
• dependabot/npm_and_yarn/4337/undici-5.25.4
• dependabot/npm_and_yarn/allowances/undici-5.26.3
• dependabot/npm_and_yarn/4337/undici-5.26.3
• feature/require-success-for-operation-execution
• feature/contract-call-in-runOp-script
• feature/document-optimizer-usage
• update-hardhat-version
• define-code-owners
• minor-ci-adjustments
• migrate-to-hardhat-toolbox
• feature/add-unit-tests-0
• dependabot/npm_and_yarn/4337/minimist-1.2.8
• dependabot/npm_and_yarn/allowances/get-func-name-2.0.2
• dependabot/npm_and_yarn/4337/ansi-regex-3.0.1
• feature/skip-coverage-for-test-contracts
• feature/increase-test-coverage
• chore/format-source
• rename-4337-module
• feature/e2e-with-reference-entrypoint
• 4337-module-audit-preparations
• fix/sequence-diagram-update
• 4337m-preparations-lint-setup
• 4337m-remove-redunant-ifaces
• mmv08-patch-1
• dependabot/npm_and_yarn/dutchx_seller/browserify-sign-4.2.2
• tiny-readme-fix
• feature/add-cla-action
• dependabot/npm_and_yarn/recurring_transfers/browserify-sign-4.2.2
• mmv08-patch-2
• rename-prefund-param
• rename-validation-return
• fix/4337-runop-script
• document-signature-validation-result
• feature/cla-action-permissions
• fix/cla-action-secret-name
• rename-contract-file
• comment-on-not-handling-return
• check-address-on-constructor
• internal-function-naming-convention
• fix-ts-lints
• fix-readme-initcode
• add-audit-report
• add-sepolia-network
• refs/tags/v0.1.0
• fix-local-verify
• hardhat-config-cleanup
• entrypoint-deployment
• e2e-local-bundler
• feat/validUntil-validAfter-timestamp-support-4337
• entrypoint-modifier
• signer-singleton
• feature-142-4337-module-formal-verification
• bundler-updates
• fix-revert-propagation
• wait-for-user-op
• check-signatures-data
• 4337/upgrade-dependencies
• sign-validity
• v0.1
• internal-function-naming-again
• dependabot/npm_and_yarn/dutchx_seller/handlebars-4.7.8
• feature-4337
• gas-metering
• sign-paymaster-data
• sign-full-op
• package-v0.2.0
• dependabot/npm_and_yarn/recurring_transfers/handlebars-4.7.8
• launchpad-contract
• fix-validate-signatures-nat-spec
• launchpad-contract-signer
• audit-report-v2.0
• documentation-is-nice
• refs/tags/4337/v0.2.0
• fix-warning-icons
• vendor-fcl
• feat/update-vendored-fc
• feature/webauthn-poc
• certora/spec-fixes
• ci/fix-certora-branch-name
• webauthn-shim
• hardcoded-constants
• refactor-146-npm-workspaces
• e2e-webauthn-signer
• memory-safe-fallback
• feat/webauth-poc-app
• gas-metering-for-webauthn
• feat/migrate-and-deploy-webauthn-signer
• feature-169-rename-master-to-main
• main
• feat/eip1271-version-update
• 0.8.19-compile
• certora/v6-spec-update
• fix-208-update-package-name
• bug/webauthn-signerfactory-validateuserop-reverts
• fix-entrypoint-natspec
• p256/extract-verification-logic
• new-webauthn-signature-format
• fix/broken-install
• tests/improve-e2e-running-experience
• revert-216-fix-entrypoint-natspec
• audit/l-01
• audit/l-02
• audit/l-03,n-01,n-02
• audit/n-06
• audit/n-04
• audit/m-01
• audit/m-01-alternative
• audit/n-05
• audit/n-03
• feature/entrypoint-v0.7
• refactor-signer-logic
• specify-docker-command-e2e
• webauthn-singleton-signer
• use-custom-errors
• v0.7/emit-safe-operation-event
• chore/fix-lint-warnings
• audit/0.2.0-include-report
• docs/entrypoint-version
• fix-singleton-signer-e2e-flakiness
• sign-all-gas-parameters
• feat/4337/use-production-entrypoint-contract
• 230-update-changelog-for-safe-4337-module
• dependencies/update
• dependabot/npm_and_yarn/undici-5.28.3
• fv/use-ref-entrypoint
• fix/example-app-file
• feature/entrypoint-v0.7-2024-02-24
• update-to-entrypoint-release
• dependabot/npm_and_yarn/es5-ext-0.10.64
• feature/nested-safe-exec
• dependabot/npm_and_yarn/openzeppelin/contracts-5.0.2
• 282-create-passkey-project
• 286-introduce-p256-verifier-contract
• 288-implement-a-passkey-signaturevalidator-factory
• feature/entrypoint-v0.7-2024-03-05
• 227-fix-tests-for-0.7-bundler
• feature-287-webauthn-package
• 270-fix-passkey-example
• 285-support-multiple-verifiers
• chore/refactor-monorepo-1
• chore/refactor-monorepo-2
• chore/refactor-monorepo-3
• feature-289-base64-encoding-optimization
• chore/refactor-monorepo-4
• refactor-webauthn-signing
• chore/fix-4337-comment
• chore/add-gas-benchmark
• feature-293-document-passkey-signer-flow
• gelato-4337
• dependabot/npm_and_yarn/follow-redirects-1.15.6
• finishing-touches
• refs/tags/4337/v0.3.0
• correct-verifier-behaviour
• porting-passkey-experiments
• passkey-example-porting
• passkey-offchain-sig-verification
• chore/fix=p256-account-test-impl
• core/remove-dead-code
• chore/test-cleanup
• feature-275-4337-account-passkey-owner
• dependencies/upgrade
• feature-279
• feature-277
• feature-277-user-story-exec-userop
• chore/bench-script
• passkey-credential-creation
• inline-base64-encoding
• feature-276-user-story-paymaster
• custom-sha256-impl
• split-signing-message-computation
• chore/consolidate-userstories-directory
• chore/safe-rename-tradition
• feature-312-webAuthn-proxy
• 360-enhance-passkey-example-app-2
• unit-test-coverage
• unit-test-coverage-2
• use-erc1271-constants
• utils-to-src
• 308/add-nat-spec
• 313/precompile-with-fallback
• fix-import-error
• check-signature-length
• safe-recovery-setup
• 360-enhance-passkey-example-app-3
• fix/include-types-npm
• passkey/release-0.2.0-alpha.0
• bug/passkey-no-declaration-files
• feat/add-deploy-task-to-passkey
• feature-381-document-passkeys-package
• fix-verifiers-range
• feature-emit-signer-creation-event
• feat/dep-update
• optimize-webauthn-proxy
• 308/single-setup
• 100-coverage-on-factory
• 308/single-setup-unit-tests
• 408/use-self-storage
• 407/promote-shared-signer
• 407/full-coverage-shared-signer
• 40x/experimental-4337-support
• 409/additional-tests-and-userstories
• 409/additional-4337-tests
• 408/use-self-storage-2
• pnpm-experiment
• 4337-gas-metering-pimlico
• 420-small-changes
• test-all-changes-single-commit
• useless-launchpad
• chore/fix-shared-signer-docs
• feature/multi-shared-signer
• 317/precompile-test
• chore/docker-compose-version
• chore/multi-passkey-e2e
• chore/deprecate-launchpad
• chore/fix-runop-script
• chore/prevent-launchpad-double-init
• passkey-audit
• chore/sourcify
• update-certora-audit-report
• chore/sourcify-4337
• refs/tags/passkey/v0.2.0
• add-recovery-module
• refs/tags/recovery/v0.1.0
• 426-release-a-new-4337-module-version-with-updated-js-tooling
• refs/tags/4337/v0.3.0-1
• 425-gas-benchmarking-in-4337-tests-outputs-gas-used-for-the-transaction-instead-of-useroperation-gas
• hats/3-emit-configuration-event
• chore/indexed-signer-in-event
• chore/optimal-solidity-configuration
• chore/0.2.1-changelog
• hats/17-consitent-pragmas
• 4337/remove-inlining-in-the-mock
• chore/ir-optimizations
• fix-754-signature-length-check
• chore/hats-audit-competition-report
• ci/add-monorepo-linter
• chore/userstory-for-safe
• fv-signature-length-check
• chore/increase-e2e-gas-buffer
• benchmark/alchemy-0.7.0
• certora-script
• feature-comment-on-dynamic-signatures
• chore/fix-flaky-webauthn-test
• certora-update
• certora-audit
• using-factory
• chore/rename-audit-file
• chore/use-arachnid-deployer-for-some-contracts
• chore/remove-not-audited-note
• chore/fix-docker-build
• chore/bump-passkey-version
• refs/tags/passkey/v0.2.1
• chore/fix-passkey-verification
• refs/tags/passkey/v0.2.1-1
• feature-safe-module-6900
• 395-explore-adding-a-esm-build-to-passkey4337-packages
• deps/bump
• fix/allowance-module-test
• allowance-module/audit-l1
• allowance-module/0.1.1
• refs/tags/allowance/v0.1.1
• allowance-module/improve-docs
• fv-passkey
• custom-deployment
• chore/passkey-safe-tx-userstory

Build # 9614608842

Build Type

push

github

Committed by nlordell

Commit Message

Check `staticcall` Result From SHA-256 Precompile

This PR changes the `_sha256` implementation to check the result from
the static call. There is a very subtle bug with not checking, where,
for very large inputs, you would be able to get the precompile to revert
but have the function finish executing successfully (and use whatever is
in the scratch space as the digest).

Note that **we do not check the length of the `returndata`**. This is
intentional and the same thing that the Solidity compiler does for the
builtin `sha256` function.

Run Details

28 of 28 branches covered (100.0%)

Branch coverage included in aggregate %.

90 of 90 relevant lines covered (100.0%)

30.06 hits per line