Thomas Bocek 79dd498b16 Signature Malleability: (#1622) ...

* Transaction Malleability:
If you allow for both values 0/1 and 27/28, you allow two different
signatures both resulting in a same valid recovery. (r,s,0/1) and
(r,s,27/28) would both be valid, recover the same public key and sign
the same data. Furthermore, given (r,s,0/1), (r,s,27/28) can be
constructed by anyone.

* Transaction Malleability:
EIP-2 still allows signature malleabality for ecrecover(), remove this
possibility and force the signature to be unique.

* Added a reference to appendix F to the yellow paper and improved
comment.

* better test description for testing the version 0, which returns
a zero address

* Check that the conversion from 0/1 to 27/28 only happens if its 0/1

* improved formatting

* Refactor ECDSA code a bit.

* Refactor ECDSA tests a bit.

* Add changelog entry.

* Add high-s check test.

2019-03-07 12:44:28 -03:00

..

access

Fix warnings (#1606)

2019-01-17 15:59:30 -03:00

crowdsale

Add TimedCrowdsale::_extendTime (#1636)

2019-03-06 11:38:57 -03:00

cryptography

Signature Malleability: (#1622)

2019-03-07 12:44:28 -03:00

drafts

Add guard to ERC20Migrator migrate function (#1659)

2019-03-02 12:36:36 -03:00

examples

Fix warnings (#1606)

2019-01-17 15:59:30 -03:00

introspection

Use canonical EIP reference format

2019-02-24 11:52:22 -05:00

lifecycle

Fix warnings (#1606)

2019-01-17 15:59:30 -03:00

math

Unify code comments style. (#1603)

2019-01-25 13:16:40 -03:00

mocks

Add TimedCrowdsale::_extendTime (#1636)

2019-03-06 11:38:57 -03:00

ownership

Nonfunctional typos #1643 (#1652)

2019-02-28 11:46:13 -03:00

payment

Nonfunctional typos #1643 (#1652)

2019-02-28 11:46:13 -03:00

token

Add extcodesize check to SafeERC20. (#1662)

2019-03-06 14:11:08 -03:00

utils

Nonfunctional typos #1643 (#1652)

2019-02-28 11:46:13 -03:00

.npmignore

Clean up npm package (#904)

2018-04-26 12:36:41 -03:00

ARCHITECTURE.md

Fix typo in ARCHITECTURE.md (#1406)

2018-10-10 15:15:38 -03:00