This is an Ethereum multisig contract designed to be as simple as possible. It is described further in this medium post.
The main idea behind the contract is to pass in a threshold of detached signatures into the
execute function and the contract will check the signatures and send off the transaction.
For a review by maurelian, see the file
Version 2.0.0 Update to EIP712
In version 2.0.0 the Simple Multisig was updated to use the EIP712 signature standard. This means that the signature format of the previous version is no longer compatible. If your contract is already deployed and in use it still works but that version will no longer be supported in the future. We recommend moving ETH and tokens over to a newly deployed contract and using the EIP712 format going forward. Another change to be aware of is that the constructor now takes an extra parameter
chainId to specify which network the contract is deployed on.
Data to be signed
The Simple MultiSig uses the EIP712 standard to package and hash the data to be signed. Each signer will sign a message over the following data fields, which encode the ethereum transaction to execute:
address destination- The target address for the transaction
uint256 value- The value of the transaction expressed in Wei
bytes data- The data of the transaction in hex format
uint256 nonce- The nonce for this transaction. Must match the current nonce in the multisig contract.
address executor- Specifies which Ethereum address is allowed to call the
executefunction. It is allowed to specify the zero address as an executor, in which case any address can call the
executefunction. This field is mainly to address concerns about replay attacks in some edge cases.
uint256 gasLimit- Specifies how much gas to pass on to the final
call, independently of how much gas is supplied to the transaction calling the
executefunction. This can be used to constrain what kind of computations can be performed by the target smart contract. If the signers do not need this level of control a very high gasLimit of several million can be used for this data field.
The data to be signed also includes the following EIP712 Domain data that specifies the context of the signed data:
- Name (
- Version (
- ChainId (Integer marking current chain, e.g. 1 for mainnet)
- Contract Address (Address of the specific multisig contract instance)
- Salt (
0x251543af6a222378665a76fe38dbceae4871a070b7fdaf5c6c30cf758dc33cc0, unique identifier specific to SimpleMultisig)
Installation and testing
Install global dependencies:
npm install -g truffle
npm install -g ganache-cli
To run the tests:
- Make sure
ganache-cliis running in its own terminal window.
npm run test
Testing signatures in a browser
If you have the MetaMask browser extension you can open the page
browsertest/index.html in your browser and test signing data. The signature will be returned in a
(r,s,v) format which can be plugged into the