a035b235b4
* 4.6.0-rc.0 * Fix release script to only release @openzeppelin/contracts (cherry picked from commit2bd75a44bb) * make ERC2981:royaltyInfo public (#3305) (cherry picked from commitd2832ca7a9) Signed-off-by: Hadrien Croubois <hadrien.croubois@gmail.com> * add transpilation guards to the crosschain mocks (#3306) (cherry picked from commit9af5af8fff) Signed-off-by: Hadrien Croubois <hadrien.croubois@gmail.com> * Fix tests on upgradeable contracts after transpilation (cherry picked from commit0762479dd5) Signed-off-by: Hadrien Croubois <hadrien.croubois@gmail.com> * Remove unused constructor argument (cherry picked from commit69c3781043) Signed-off-by: Hadrien Croubois <hadrien.croubois@gmail.com> * Bump minimum Solidity version for Initializable.sol to 0.8.2 (#3328) (cherry picked from commitcb14ea3c5c) * Fix update-comment script to ignore invalid tags (cherry picked from commit848fef5b6c) Signed-off-by: Hadrien Croubois <hadrien.croubois@gmail.com> * 4.6.0 Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
66 lines
2.5 KiB
Solidity
66 lines
2.5 KiB
Solidity
// SPDX-License-Identifier: MIT
|
|
// OpenZeppelin Contracts (last updated v4.6.0) (utils/cryptography/MerkleProof.sol)
|
|
|
|
pragma solidity ^0.8.0;
|
|
|
|
/**
|
|
* @dev These functions deal with verification of Merkle Trees proofs.
|
|
*
|
|
* The proofs can be generated using the JavaScript library
|
|
* https://github.com/miguelmota/merkletreejs[merkletreejs].
|
|
* Note: the hashing algorithm should be keccak256 and pair sorting should be enabled.
|
|
*
|
|
* See `test/utils/cryptography/MerkleProof.test.js` for some examples.
|
|
*
|
|
* WARNING: You should avoid using leaf values that are 64 bytes long prior to
|
|
* hashing, or use a hash function other than keccak256 for hashing leaves.
|
|
* This is because the concatenation of a sorted pair of internal nodes in
|
|
* the merkle tree could be reinterpreted as a leaf value.
|
|
*/
|
|
library MerkleProof {
|
|
/**
|
|
* @dev Returns true if a `leaf` can be proved to be a part of a Merkle tree
|
|
* defined by `root`. For this, a `proof` must be provided, containing
|
|
* sibling hashes on the branch from the leaf to the root of the tree. Each
|
|
* pair of leaves and each pair of pre-images are assumed to be sorted.
|
|
*/
|
|
function verify(
|
|
bytes32[] memory proof,
|
|
bytes32 root,
|
|
bytes32 leaf
|
|
) internal pure returns (bool) {
|
|
return processProof(proof, leaf) == root;
|
|
}
|
|
|
|
/**
|
|
* @dev Returns the rebuilt hash obtained by traversing a Merkle tree up
|
|
* from `leaf` using `proof`. A `proof` is valid if and only if the rebuilt
|
|
* hash matches the root of the tree. When processing the proof, the pairs
|
|
* of leafs & pre-images are assumed to be sorted.
|
|
*
|
|
* _Available since v4.4._
|
|
*/
|
|
function processProof(bytes32[] memory proof, bytes32 leaf) internal pure returns (bytes32) {
|
|
bytes32 computedHash = leaf;
|
|
for (uint256 i = 0; i < proof.length; i++) {
|
|
bytes32 proofElement = proof[i];
|
|
if (computedHash <= proofElement) {
|
|
// Hash(current computed hash + current element of the proof)
|
|
computedHash = _efficientHash(computedHash, proofElement);
|
|
} else {
|
|
// Hash(current element of the proof + current computed hash)
|
|
computedHash = _efficientHash(proofElement, computedHash);
|
|
}
|
|
}
|
|
return computedHash;
|
|
}
|
|
|
|
function _efficientHash(bytes32 a, bytes32 b) private pure returns (bytes32 value) {
|
|
assembly {
|
|
mstore(0x00, a)
|
|
mstore(0x20, b)
|
|
value := keccak256(0x00, 0x40)
|
|
}
|
|
}
|
|
}
|