OpenZeppelin · ernestognw · Apr 16, 2025 · Mar 25, 2025 · Mar 25, 2025 · Mar 26, 2025
@@ -9,3 +9,6 @@
 [submodule "lib/forge-std"]
 	path = lib/forge-std
 	url = https://github.com/foundry-rs/forge-std.git
+[submodule "lib/email-tx-builder"]
+	path = lib/email-tx-builder
+	url = https://github.com/zkemail/email-tx-builder
diff --git a/contracts/utils/cryptography/ZKEmailSigner.sol b/contracts/utils/cryptography/ZKEmailSigner.sol
@@ -0,0 +1,126 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.20;
+
+import {IERC1271} from "@openzeppelin/contracts/interfaces/IERC1271.sol";
+import {Strings} from "@openzeppelin/contracts/utils/Strings.sol";
+import {IDKIMRegistry} from "@zk-email/contracts/DKIMRegistry.sol";
+import {IVerifier, EmailProof} from "@zk-email/email-tx-builder/interfaces/IVerifier.sol";
+import {EmailAuthMsg} from "@zk-email/email-tx-builder/interfaces/IEmailTypes.sol";
+import {CommandUtils} from "@zk-email/email-tx-builder/libraries/CommandUtils.sol";
+import {AbstractSigner} from "./AbstractSigner.sol";
+
+abstract contract ZKEmailSigner is AbstractSigner {
+    bytes32 private _accountSalt;
+    IDKIMRegistry private _registry;
+    IVerifier private _verifier;
+    uint256 private _commandTemplate;
+
+    enum EmailProofError {
+        NoError,
+        CommandTemplate, // The template ID doesn't match
+        DKIMPublicKeyHash, // The DKIM public key hash verification fails
+        AccountSalt, // The account salt doesn't match
+        MaskedCommandLength, // The masked command length exceeds the maximum
+        SkippedCommandPrefixSize, // The skipped command prefix size is invalid
+        Command, // The command format is invalid
+        EmailProof // The email proof verification fails
+    }
+
+    error InvalidEmailProof(EmailProofError err);
+
+    /// @dev Unique identifier for owner of this contract defined as a hash of an email address and an account code.
+    function accountSalt() public view virtual returns (bytes32) {
+        return _accountSalt;
+    }
+
+    /// @dev An instance of the DKIM registry contract.
+    // solhint-disable-next-line func-name-mixedcase
+    function DKIMRegistry() public view virtual returns (IDKIMRegistry) {
+        return _registry;
+    }
+
+    /// @dev An instance of the Verifier contract.
+    function verifier() public view virtual returns (IVerifier) {
+        return _verifier;
+    }
+
+    /// @dev The templateId of the sign hash command.
+    function commandTemplate() public view virtual returns (uint256) {
+        return _commandTemplate;
+    }
+
+    /// @dev Initialize the contract with the account salt, DKIM registry, verifier, and command template.
+    function _setUp(
+        bytes32 accountSalt_,
+        IDKIMRegistry registry_,
+        IVerifier verifier_,
+        uint256 commandTemplate_
+    ) internal virtual {
+        _accountSalt = accountSalt_;
+        _registry = registry_;
+        _verifier = verifier_;
+        _commandTemplate = commandTemplate_;
+    }
+
+    /** @dev Authenticate the email sender and authorize the message in the email command.
+     *
+     * NOTE: This function only verifies the authenticity of the email and command, without
+     * handling replay protection. The calling contract should implement its own mechanisms
+     * to prevent replay attacks, similar to how nonces are used with ECDSA signatures.
+     */
+    function verifyEmail(EmailAuthMsg memory emailAuthMsg) public view virtual {
+        (bool verified, EmailProofError err) = _verifyEmail(emailAuthMsg);
+        if (!verified) revert InvalidEmailProof(err);
+    }
+
+    /// @inheritdoc AbstractSigner
+    function _rawSignatureValidation(
+        bytes32 hash,
+        bytes calldata signature
+    ) internal view virtual override returns (bool) {
+        // signature is a serialized EmailAuthMsg
+        EmailAuthMsg memory emailAuthMsg = abi.decode(signature, (EmailAuthMsg));
+        (bool verified, ) = _verifyEmail(emailAuthMsg);
+        return verified && abi.decode(emailAuthMsg.commandParams[0], (bytes32)) == hash;
+    }
+
+    /// @dev Internal function to verify an email authenticated message that doesn't revert and returns a boolean and the error instead.
+    function _verifyEmail(EmailAuthMsg memory emailAuthMsg) internal view virtual returns (bool, EmailProofError) {
+        if (commandTemplate() != emailAuthMsg.templateId) return (false, EmailProofError.CommandTemplate);
+        string[] memory signHashTemplate = new string[](2);
+        signHashTemplate[0] = "signHash";
+        signHashTemplate[1] = "{uint}";
+
+        if (!DKIMRegistry().isDKIMPublicKeyHashValid(emailAuthMsg.proof.domainName, emailAuthMsg.proof.publicKeyHash))
+            return (false, EmailProofError.DKIMPublicKeyHash);
+        if (accountSalt() != emailAuthMsg.proof.accountSalt) return (false, EmailProofError.AccountSalt);
+        if (bytes(emailAuthMsg.proof.maskedCommand).length > verifier().commandBytes())
+            return (false, EmailProofError.MaskedCommandLength);
+        if (emailAuthMsg.skippedCommandPrefix >= verifier().commandBytes())
+            return (false, EmailProofError.SkippedCommandPrefixSize);
+
+        // Construct an expectedCommand from template and the values of emailAuthMsg.commandParams.
+        string memory trimmedMaskedCommand = CommandUtils.removePrefix(
+            emailAuthMsg.proof.maskedCommand,
+            emailAuthMsg.skippedCommandPrefix
+        );
+        string memory expectedCommand = "";
+        for (uint256 stringCase = 0; stringCase < 3; stringCase++) {
+            expectedCommand = CommandUtils.computeExpectedCommand(
+                emailAuthMsg.commandParams,
+                signHashTemplate,
+                stringCase
+            );
+            if (Strings.equal(expectedCommand, trimmedMaskedCommand)) {
+                break;
+            }
+            if (stringCase == 2) {
+                return (false, EmailProofError.Command);
+            }
+        }
+
+        if (!verifier().verifyEmailProof(emailAuthMsg.proof)) return (false, EmailProofError.EmailProof);
+        return (true, EmailProofError.NoError);
+    }
+}
diff --git a/lib/@openzeppelin-contracts b/lib/@openzeppelin-contracts
diff --git a/lib/@openzeppelin-contracts-upgradeable b/lib/@openzeppelin-contracts-upgradeable
@@ -43,7 +43,8 @@
     "zeppelin"
   ],
   "dependencies": {
-    "@axelar-network/axelar-gmp-sdk-solidity": "^6.0.6"
+    "@axelar-network/axelar-gmp-sdk-solidity": "^6.0.6",
+    "@zk-email/contracts": "^6.3.2"
   },
   "devDependencies": {
     "@openzeppelin/contracts": "file:lib/@openzeppelin-contracts",

@@ -2,3 +2,5 @@
 @openzeppelin/contracts-upgradeable/=lib/@openzeppelin-contracts-upgradeable/contracts/
 @openzeppelin/community-contracts/=contracts/
 @axelar-network/axelar-gmp-sdk-solidity/=node_modules/@axelar-network/axelar-gmp-sdk-solidity/
+@zk-email/email-tx-builder/=lib/email-tx-builder/packages/contracts/src/
+@zk-email/contracts/=node_modules/@zk-email/contracts/
+5 −0		.changeset/blue-nails-give.md
+1 −1		.changeset/brown-turkeys-marry.md
+5 −0		.changeset/fair-pumpkins-compete.md
+5 −0		.changeset/fast-coats-try.md
+5 −0		.changeset/fuzzy-crews-poke.md
+5 −0		.changeset/good-cameras-rush.md
+5 −0		.changeset/good-zebras-ring.md
+5 −0		.changeset/gorgeous-apes-jam.md
+0 −5		.changeset/lucky-teachers-sip.md
+5 −0		.changeset/nice-cherries-reply.md
+5 −0		.changeset/ninety-rings-suffer.md
+5 −0		.changeset/quiet-shrimps-kiss.md
+5 −0		.changeset/rare-shirts-unite.md
+5 −0		.changeset/sixty-tips-wink.md
+4 −4		.github/actions/gas-compare/action.yml
+2 −2		.github/workflows/checks.yml
+1 −1		CHANGELOG.md
+3 −0		FUNDING.json
+1 −1		GUIDELINES.md
+1 −1		RELEASING.md
+5 −5		audits/2017-03.md
+2 −2		contracts/governance/GovernorUpgradeable.sol
+8 −0		contracts/governance/README.adoc
+1 −1		contracts/governance/TimelockControllerUpgradeable.sol
+1 −1		contracts/governance/extensions/GovernorCountingFractionalUpgradeable.sol
+65 −0		contracts/governance/extensions/GovernorSuperQuorumUpgradeable.sol
+1 −1		contracts/governance/extensions/GovernorTimelockControlUpgradeable.sol
+16 −13		contracts/governance/extensions/GovernorVotesQuorumFractionUpgradeable.sol
+153 −0		contracts/governance/extensions/GovernorVotesSuperQuorumFractionUpgradeable.sol
+52 −0		contracts/mocks/ArraysMockUpgradeable.sol
+8 −0		contracts/mocks/MerkleTreeMockUpgradeable.sol
+28 −0		contracts/mocks/WithInit.sol
+100 −0		contracts/mocks/governance/GovernorSuperQuorumMockUpgradeable.sol
+43 −0		contracts/mocks/governance/GovernorVotesSuperQuorumFractionMockUpgradeable.sol
+12 −2		contracts/proxy/utils/Initializable.sol
+2 −2		contracts/token/ERC20/ERC20Upgradeable.sol
+1 −1		contracts/token/ERC20/extensions/draft-ERC20TemporaryApprovalUpgradeable.sol
+1 −1		contracts/token/ERC6909/README.adoc
+2 −2		contracts/utils/README.adoc
+1 −1		fv-requirements.txt
+0 −1		hardhat.config.js
+47 −15		hardhat/common-contracts.js
+1 −1		lib/erc4626-tests
+1 −1		lib/forge-std
+1 −1		lib/halmos-cheatcodes
+1 −1		lib/openzeppelin-contracts
+10 −10		package-lock.json
+2 −2		package.json
+5 −1		scripts/checks/coverage.sh
+50 −0		scripts/fetch-common-contracts.js
+23 −21		scripts/generate/templates/Arrays.js
+7 −1		scripts/generate/templates/Arrays.opts.js
+1 −1		scripts/generate/templates/Checkpoints.js
+1 −1		scripts/generate/templates/Checkpoints.t.js
+25 −0		scripts/generate/templates/EnumerableMap.js
+27 −119		scripts/generate/templates/EnumerableSet.js
+5 −9		scripts/generate/templates/EnumerableSet.opts.js
+1 −1		scripts/generate/templates/SlotDerivation.js
+1 −1		scripts/generate/templates/TransientSlot.js
+1 −1		scripts/release/format-changelog.js
+2 −2		scripts/set-max-old-space-size.sh
+1 −1		test/access/AccessControl.behavior.js
+12 −16		test/account/utils/draft-ERC4337Utils.test.js
+2 −2		test/account/utils/draft-ERC7579Utils.t.sol
+1 −0		test/bin/EntryPoint080.abi
+ −		test/bin/EntryPoint080.bytecode
+1 −0		test/bin/SenderCreator080.abi
+ −		test/bin/SenderCreator080.bytecode
+168 −0		test/governance/extensions/GovernorSuperQuorum.test.js
+79 −0		test/governance/extensions/GovernorSuperQuorumGreaterThanQuorum.t.sol
+160 −0		test/governance/extensions/GovernorVotesSuperQuorumFraction.test.js
+7 −5		test/helpers/enums.js
+2 −20		test/helpers/erc4337.js
+12 −0		test/helpers/precompiles.js
+7 −2		test/helpers/random.js
+1 −1		test/metatx/ERC2771Context.test.js
+1 −1		test/proxy/beacon/BeaconProxy.test.js
+2 −2		test/token/ERC20/extensions/ERC20Wrapper.test.js
+1 −1		test/token/ERC6909/ERC6909.behavior.js
+2 −2		test/token/ERC6909/extensions/ERC6909ContentURI.test.js
+47 −43		test/utils/Arrays.test.js
+7 −0		test/utils/Strings.test.js
+33 −0		test/utils/cryptography/MessageHashUtils.t.sol
+34 −5		test/utils/cryptography/MessageHashUtils.test.js
+21 −7		test/utils/cryptography/SignatureChecker.test.js
+60 −22		test/utils/math/Math.t.sol
+298 −147		test/utils/math/Math.test.js
+3 −3		test/utils/structs/Checkpoints.t.sol
+49 −2		test/utils/structs/EnumerableMap.behavior.js
+1 −0		test/utils/structs/EnumerableMap.test.js
+43 −0		test/utils/structs/EnumerableSet.behavior.js
+5 −7		test/utils/structs/EnumerableSet.test.js
+108 −28		test/utils/structs/MerkleTree.test.js