Skip to content

Destiner/module-frame

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

42 Commits
.github/workflows
.github/workflows
 
 
script
script
 
 
src
src
 
 
test/validators
test/validators
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
.prettierignore
.prettierignore
 
 
.solhint.json
.solhint.json
 
 
README.md
README.md
 
 
bun.lockb
bun.lockb
 
 
foundry.toml
foundry.toml
 
 
package.json
package.json
 
 
remappings.txt
remappings.txt
 
 

Repository files navigation

Frame Validator Module

An ERC7579-compatible validator module to validate UserOps using Farcaster Frame signatures.

Compatible with Entrypoint 0.6 and Entrypoint 0.7.

Built using ModuleKit 0.3.0.

Warning

Not audited, not tested enough, not production-ready

Usage

Install dependencies

pnpm install

Building the module

forge build

Testing the module

forge test

Deploying the module

Note

For security, the module expects the frame URL to be coming from a trusted base URL. For a custom deployment, you can provide your own URL using the BASE_URL variable.

Create the .env file and provide the environment variables.

source .env && forge script script/[SCRIPT_NAME].s.sol:[CONTRACT_NAME] --rpc-url $RPC_URL --sender $SENDER_ADDRESS --broadcast

Example

Polygon Mumbai

Note

The deployed version is based on the biconomy-v2-compat tag and is slightly different, to provide the compatibility with Biconomy Account V2.

baseUrl = "https://frame-validator.vercel.app/execute/"
  • Address: 0x2007dB9DB73AD549439A2ADEe17e74083A275A72 (explorer)
  • Deployment tx: 0xac8b9a15e98294021c297481789dcb1c69a77364c24411cf8337f47d18709915 (explorer)
  • Installation tx: 0x4a9f4f42bf9f02b6b4a4ee0c1efc664d0a43386036cd966a527af556147e6e60 (explorer)
  • Usage tx: 0x3f033d7f14756de0ce822fa69cb3126e224fa0522470b5426ee41f766a7596a7 (explorer)

Design Notes

Uses frame-verifier.

The URL schema is BASE_URL + CHAIN/CALLDATA_HASH, where BASE_URL is the module-defined trusted base URL, CHAIN is the chain where the tx will be executed, and CALLDATA_HASH is a URL-friendly base64-encoded keccak256 hash of the UserOp calldata.

The frame message data gets passed via UserOp signature.

The replay attack protection is implemented via storing the last frame timestamp for each account.

The best way to understand how to craft the FC frame message and the UserOp payload is to go through the tests.

Gotchas

There are some limitations and possible attack vectors with the current degisn.

  • The frame hoster (owner of the BASE_URL) can censor and omit UserOps signed via the frame
  • The frame hoster can spoof the transaction data, showing one calldata in the frame image but providing another one to sign. This can technically be circumvented by users manually comparing the shown calldata with the URL. In practice, some level of trust between the frame user and the frame hoster is assumed.
  • The frame hoster has to know the preimage calldata of the hash to render the tx properly for users. The exchange between the frame hoster and the frame publisher could be done offchain or even onchain. This is a non-issue if the hoster and publisher is the same party

About

FC frames + ERC7579 modules

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

 
 
 

Languages