I noticed that there is a bug in splitSignatureToRSV function when attempting to sign permits via a Ledger wallet and then trying to pass the resulting signature to an on-chain Ethereum contract method that consumes it. This is due to how Ledger produces vrs signatures with a canonical v value of {0,1}, while Ethereum's ecrecover accepts a non-standard v value of {27,28}. More on that here and here.

Metamask handles this internally when signing a permit directly through it, since it uses ecsign that normalizes the v value for Ethereum. But the problem is when signing a permit internally on a Ledger and then relay the resulting signature to Metamask, the v value is still {0,1}.

This could be resolved by replacing splitSignatureToRSV by ether's splitSignature, since it handles normalizing the resulting v value to Ethereum (i.e., 0 -> 27, 1 -> 28). Plus, it includes handling other special types signatures that are also not handled in splitSignatureToRSV's implementation (i.e., EIP-2098 signatures).

@dmihal I tried to fix it and the following changes made it work:

1. Change

   eth-permit/src/rpc.ts

   Line 37 in 5dfcfa5

   const result = await send(provider, 'eth_signTypedData_v4', [fromAddress, _typeData]);

   to const result = await send(provider, 'eth_signTypedData', [fromAddress, JSON.parse(_typeData)]); (two changes)

2. Add jsonrpc: '2.0', to

   eth-permit/src/rpc.ts

   Line 4 in 5dfcfa5

   const payload = {

   .

Do you have any insights on this?

The generated permit is incorrect when EIP712 is instantiated with any version other than "1" because the value is hardcoded in the gerDomain method

For example, the current version of the USDC token on Ethereum uses version "2"

    function initializeV2(string calldata newName) external {
        // solhint-disable-next-line reason-string
        require(initialized && _initializedVersion == 0);
        name = newName;
        DOMAIN_SEPARATOR = EIP712.makeDomainSeparator(newName, "2");
        _initializedVersion = 1;
    }

Therefore, using the signERC2612Permit does not work for USDC, i.e. called permit() reverts with EIP2612: invalid signature

I get wrong "nonce" value when use deployed DAI token on Ropsten or Kovan - https://etherscan.io/address/0x6B175474E89094C44Da98b954EedeAC495271d0F
All is fine on Ethereum Mainnet

Hi, eth permit and get following error

D:\@@MRT@@\driver\node_modules\eth-permit\dist\rpc.js:55
        _provider.send(payload, callback).catch((error) => {
                                         ^

TypeError: Cannot read properties of undefined (reading 'catch')
    at D:\@@MRT@@\driver\node_modules\eth-permit\dist\rpc.js:55:42
    at new Promise (<anonymous>)
    at Object.exports.send (D:\@@MRT@@\driver\node_modules\eth-permit\dist\rpc.js:25:46)
    at Object.exports.call (D:\@@MRT@@\driver\node_modules\eth-permit\dist\rpc.js:109:48)
    at D:\@@MRT@@\driver\node_modules\eth-permit\dist\eth-permit.js:94:38
    at Generator.next (<anonymous>)
    at D:\@@MRT@@\driver\node_modules\eth-permit\dist\eth-permit.js:8:71
    at new Promise (<anonymous>)
    at __awaiter (D:\@@MRT@@\driver\node_modules\eth-permit\dist\eth-permit.js:4:12)
    at exports.signERC2612Permit (D:\@@MRT@@\driver\node_modules\eth-permit\dist\eth-permit.js:88:100)
    at create_transaction (D:\@@MRT@@\driver\scripts\Alice-2st-approve.js:143:26)
    at processTicksAndRejections (node:internal/process/task_queues:96:5)
    at async main (D:\@@MRT@@\driver\scripts\Alice-2st-approve.js:228:3)

Dai permits are hard-coded to allow: true. Consequently there is no way to set the allowance back to zero using the permitting API, once permitting should be disallowed.

https://github.com/dmihal/eth-permit/blob/master/src/eth-permit.ts#L116

The edge case where setting nonce=0 currently does not override the function to query the contract for the nonce.

This is actually an extremely important edge case as it is the first nonce that you must use for DAI. There is no way that I can see to work around this limitation to interact with a pre-fork deployment of the DAI contract on a test chain fork like what you get with hardhat.

The library works great on all wallets except the trust wallet, it's even strange that I tested the trust on Android and on iPhone, but it only works on android, the error lies in the fact that when trying to call a subscription on the trust wallet, the vallet gives the error Chain ID mismatch, although the wallet is changed to the right one before the permit, via RPC the request is wallet_switchEthereumChain, I would like to know if anyone has the same error, and this is a problem with the library or the wallet itself

I'm developing a dapp with a smart contract that can receive ERC20 tokens. What's the best way for a dapp (using ethers or web3) to check whether a token has the permit function, so that execution can fall back to using approve if not?

I had just tried signERC2612Permit with WETH on Rinkeby and it succeeded to create signature values, however when the smart contract tries to call permit the transaction is reverted without a reason. I then checked WETH and found that that WETH doesn't have permit.

Should signERC2612Permit check for permit before returning signature values, throwing an error if it doesn't exist?

Hey, this looks like a really useful library as getting permit txs right can be confusing!

It seems to me that the library is designed to be used on the client-side in conjunction with a remote signer. However sometimes it is useful to sign transactions from the backend, using e.g. https://github.com/MetaMask/eth-sig-util. It would be useful if there was a function within eth-permit which constructed the typedData and returned it without signing, allowing the calling code to decide how it should be signed.

I think this could be achieved by exporting the createTypedERC2612Data function as public, and similar for the Dai version. What do you think?

I'm using this and it works great. However, what is the default amount that it sets the deadline to?

How can I set my own custom time for the deadline?

Also, when testing on test nets, the nonce always is 0x0, even after signing multiple messages.

Hello, I'm receiving 0 for the "v" value of the signature object. Hence, when passing this to the contract, the transaction is reverting with the msg error:
“execution reverted: ECDSA: invalid signature ‘v’ value”.

What could be causing this issue?

Some specs to generate the signature;

Using Metamask + Hardware Ledger

ethers version: 5.5.1
nodejs version: 16
Error: processing response error (body="{\"jsonrpc\":\"2.0\",\"id\":49,\"error\":{\"code\":-32601,\"message\":\"the method eth_signTypedData_v4 does not exist/is not available\"}}", error={"code":-32601}, requestBody="{\"method\":\"eth_signTypedData_v4\",\"params\":[\"0xBaA081282D82602d79EF300Ba29EC3b2466D4723\",\"{\\\"types\\\":{\\\"EIP712Domain\\\":[{\\\"name\\\":\\\"name\\\",\\\"type\\\":\\\"string\\\"},{\\\"name\\\":\\\"version\\\",\\\"type\\\":\\\"string\\\"},{\\\"name\\\":\\\"chainId\\\",\\\"type\\\":\\\"uint256\\\"},{\\\"name\\\":\\\"verifyingContract\\\",\\\"type\\\":\\\"address\\\"}],\\\"Permit\\\":[{\\\"name\\\":\\\"holder\\\",\\\"type\\\":\\\"address\\\"},{\\\"name\\\":\\\"spender\\\",\\\"type\\\":\\\"address\\\"},{\\\"name\\\":\\\"nonce\\\",\\\"type\\\":\\\"uint256\\\"},{\\\"name\\\":\\\"expiry\\\",\\\"type\\\":\\\"uint256\\\"},{\\\"name\\\":\\\"allowed\\\",\\\"type\\\":\\\"bool\\\"}]},\\\"primaryType\\\":\\\"Permit\\\",\\\"domain\\\":{\\\"name\\\":\\\"Dai Stablecoin\\\",\\\"version\\\":\\\"1\\\",\\\"chainId\\\":\\\"0x1\\\",\\\"verifyingContract\\\":\\\"0x6b175474e89094c44da98b954eedeac495271d0f\\\"},\\\"message\\\":{\\\"holder\\\":\\\"0xBaA081282D82602d79EF300Ba29EC3b2466D4723\\\",\\\"spender\\\":\\\"0x5049bE34eE05627aD0C500f11B25d23c02F530b1\\\",\\\"nonce\\\":\\\"0x0000000000000000000000000000000000000000000000000000000000000000\\\",\\\"expiry\\\":\\\"0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff\\\",\\\"allowed\\\":true}}\"],\"id\":49,\"jsonrpc\":\"2.0\"}", requestMethod="POST", url="https://eth.llamarpc.com", code=SERVER_ERROR, version=web/5.7.1) at _Logger.makeError (index.ts:269:28) at _Logger.throwError (index.ts:281:20) at index.ts:341:28 at Generator.next (<anonymous>) at fulfilled (browser-geturl.ts:55:2) ![Screenshot 2023-09-04 020904](https://github.com/dmihal/eth-permit/assets/67296782/ca107808-e056-4b81-a4e8-876ef5cb541a)

Hi! 👋

Firstly, thanks for your work on this project! 🙂

Today I used patch-package to patch [email protected] for the project I'm working on.

Please consider exporting the interface ERC2612PermitMessage. It would make it easier to strongly-type TypeScript references.

Here is the diff that solved my problem:

diff --git a/node_modules/eth-permit/dist/eth-permit.d.ts b/node_modules/eth-permit/dist/eth-permit.d.ts
index 73dc998..a28e9c7 100644
--- a/node_modules/eth-permit/dist/eth-permit.d.ts
+++ b/node_modules/eth-permit/dist/eth-permit.d.ts
@@ -6,7 +6,7 @@ interface DaiPermitMessage {
     expiry: number | string;
     allowed?: boolean;
 }
-interface ERC2612PermitMessage {
+export interface ERC2612PermitMessage {
     owner: string;
     spender: string;
     value: number | string;

This issue body was partially generated by patch-package.

Hello there,

I am a bit confused as to the validity of a signer. On synthetix v3 implementation of EIP2612 I authored a test that permit() should reject a non-owner signed digest.

However, that's not the case, and I needed your assistance on this.

Using hardhat, I setup the following test case:

  let holder, spender;

  before('identify signers', async () => {
    [holder, spender] = await ethers.getSigners();
  });

And then use the "spender", who is not the "owner", to sign a digest on the owner's behalf. A case that should throw:

    it('Should reject non owner signature', async () => {
      const { deadline, v, r, s } = await signERC2612Permit(
        spender,
        ERC20.address,
        holder.address,
        spender.address,
        value
      );

      await assertRevert(
        ERC20.permit(holder.address, spender.address, value, deadline, v, r, s),
        'INVALID_PERMIT_SIGNATURE'
      );
    });

However, the contract accepts the signed "v, r, s" and the test fails.

Am I missing something obvious here?

Thank you

Im using this exact demo code while using Hardhat on a forked Ethereum mainnet node.

const result = await signDaiPermit(window.ethereum, tokenAddress, senderAddress, spender);
await token.methods.permit(senderAddress, spender, result.nonce, result.expiry, true, result.v, result.r, result.s)

I'm able to console log all the variables and I tripled checked everything matches. However no matter what I do I always get the error message 'Dai/invalid-permit'

This is for the DAI token

See https://eips.ethereum.org/EIPS/eip-712