PR O: EIP-712 / JWS event signatures (pluggable signer) #19
Open
nsatoshi
wants to merge 1 commits from
devin/1776882169-pr-o-eip712 into main
pull from: devin/1776882169-pr-o-eip712
merge into: d-bis:main
d-bis:main
d-bis:devin/1776919187-responsive-uiux-system
d-bis:devin/1776918348-pr-ab-complete-phoenix-scaffolding
d-bis:sync/currencicombo-phoenix-e2e
d-bis:devin/1776898782-pr-aa-phoenix-migration
d-bis:devin/1776896284-pr-z-deploy-sandbox
d-bis:devin/1776890754-pr-t-evaluator-consolidation
d-bis:devin/1776883227-pr-s-obligations
d-bis:devin/1776883027-pr-r-fin-sandbox
d-bis:devin/1776882556-pr-q-e2e
d-bis:devin/1776882394-pr-p-rules-engine
d-bis:devin/1776881860-pr-n-swift-msgid
d-bis:devin/1776881763-pr-m-role-binding
d-bis:devin/1776881508-pr-l-participants
d-bis:devin/1776881375-pr-k-phase-timeouts
d-bis:devin/1776881249-pr-j-redis-event-bus
d-bis:devin/1776880983-pr-i-boot-assertions-ci
d-bis:devin/1776533597-fix-undo-redo-history
d-bis:develop
1 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Devin
|
4c90617208 |
EIP-712 / JWS event signatures via pluggable signer
Some checks failed
CI / Frontend Lint (pull_request) Failing after 8s
CI / Frontend Type Check (pull_request) Failing after 6s
CI / Frontend Build (pull_request) Failing after 6s
CI / Frontend E2E Tests (pull_request) Failing after 7s
CI / Orchestrator Build (pull_request) Failing after 6s
CI / Contracts Compile (pull_request) Failing after 5s
CI / Contracts Test (pull_request) Failing after 6s
Code Quality / SonarQube Analysis (pull_request) Failing after 21s
Code Quality / Code Quality Checks (pull_request) Failing after 5s
Security Scan / Dependency Vulnerability Scan (pull_request) Failing after 4s
Security Scan / OWASP ZAP Scan (pull_request) Failing after 4s
Closes gap-analysis v2 §7.5 and §10.5.
- services/eventSigner.ts — three interchangeable strategies
selected via EVENT_SIGNING_MODE:
hmac (default; back-compat) HMAC-SHA256 via EVENT_BUS_HMAC_SECRET
eip712 EIP-712 typed data signed by ORCHESTRATOR_PRIVATE_KEY
(ethers Wallet) or via services/hsm.ts when
EVENT_SIGNING_HSM_KEY_ID is set. Domain pinned to
CurrenciCombo/1/chain-138/NOTARY_REGISTRY_ADDRESS.
jws Compact JWS (HS256), useful when the signature has to
traverse a JWT-aware infra layer.
- services/eventBus.ts — publish() now delegates to getEventSigner();
verifyChain() uses the active signer, falling through to legacyHmac
for rows written before PR O so the historical tail still verifies.
- legacyHmac() helper + payloadHashOf() re-exported.
- 13 unit tests across mode resolution, HMAC round-trip, JWS
round-trip + tamper rejection, EIP-712 round-trip + ethers address
recovery, and cross-event replay rejection.
- Full suite 93/93 green; tsc --noEmit clean.
|