signer/core: verify safeTxHash when chain id is present in payload

2026-06-12 01:41:36 +00:00 · 2026-04-19 13:38:18 +08:00 · 2026-04-19 13:38:18 +08:00 · b7811d2699
commit b7811d2699
parent eb67d61933
1 changed files with 3 additions and 3 deletions
--- a/signer/core/api.go
+++ b/signer/core/api.go
@ -645,9 +645,9 @@ func (api *SignerAPI) SignGnosisSafeTx(ctx context.Context, signerAddress common
 			gnosisTx.ChainId = (*math.HexOrDecimal256)(api.chainID)
 			typedData = gnosisTx.ToTypedData()
 			sighash, _, _ = apitypes.TypedDataAndHash(typedData)
-			if !bytes.Equal(sighash, gnosisTx.InputExpHash.Bytes()) {
-				return nil, fmt.Errorf("mismatched safeTxHash; have %#x want %#x", sighash, gnosisTx.InputExpHash[:])
-			}
+		}
+		if !bytes.Equal(sighash, gnosisTx.InputExpHash.Bytes()) {
+			return nil, fmt.Errorf("mismatched safeTxHash; have %#x want %#x", sighash, gnosisTx.InputExpHash[:])
 		}
 	}
 	signature, preimage, err := api.signTypedData(ctx, signerAddress, typedData, msgs)