-
Notifications
You must be signed in to change notification settings - Fork 43
/
Copy pathCompleteMerkle.sol
116 lines (108 loc) · 5.2 KB
/
CompleteMerkle.sol
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import "./common/MurkyBase.sol";
/// @notice simple, kinda efficient (and improving!) Merkle proof generator and verifier using complete binary trees.
/// @author dmfxyz
/// @dev Note Merkle Tree implemented as a Complete Binary Tree. Merkle.sol uses full binary trees.
contract CompleteMerkle is MurkyBase {
/**
*
* HASHING FUNCTION *
*
*/
/// @notice Hash function used when verifying proofs.
/// @dev WARNING: This method is only used by verifyProof (inherited from MurkyBase.sol).
// If modified, you **MUST** ensure the inline assembly methods in buildTree and getProof are modified to match.
function hashLeafPairs(bytes32 left, bytes32 right) public pure override returns (bytes32 _hash) {
assembly {
switch lt(left, right)
case 0 {
mstore(0x0, right)
mstore(0x20, left)
}
default {
mstore(0x0, left)
mstore(0x20, right)
}
_hash := keccak256(0x0, 0x40)
}
}
///@dev internal function that builds initial *sparse* array that is the shell of a complete tree
function _initTree(bytes32[] memory data) internal pure returns (bytes32[] memory) {
require(data.length > 1, "wont generate root for single leaf");
bytes32[] memory tree = new bytes32[](2 * data.length - 1);
assembly {
let dlen := mload(data)
let titer := add(sub(mload(tree), dlen), 1)
for { let i := add(data, mul(dlen, 0x20)) } gt(i, data) { i := sub(i, 0x20) } {
mstore(add(tree, mul(titer, 0x20)), mload(i))
titer := add(titer, 1)
}
}
return tree;
}
/// @notice Builds array representation of a complete binary merkle tree from given data. Tree[0] will contain the trees root.
/// @dev Visibility set to private rather than internal as there is likely useful composability with this function.
/// @param data The data to build the tree from. It should already be sorted if sorting is required.
/// @return tree as a standard array representation of a complete binary tree.
function buildTree(bytes32[] memory data) private pure returns (bytes32[] memory) {
bytes32[] memory tree = _initTree(data);
assembly {
function hash_leafs(left, right) -> _hash {
switch lt(left, right)
case 0 {
mstore(0x0, right)
mstore(0x20, left)
}
default {
mstore(0x0, left)
mstore(0x20, right)
}
_hash := keccak256(0x0, 0x40)
}
for { let i := mload(tree) } gt(i, 1) { i := sub(i, 2) } {
// TODO: clean all this up, mainly broken out for early understanding and debugging
let left := mload(add(tree, mul(sub(i, 1), 0x20)))
let right := mload(add(tree, mul(i, 0x20)))
let posToWrite := add(tree, shr(1, mul(sub(i, 1), 0x20)))
mstore(posToWrite, hash_leafs(left, right))
}
}
return tree;
}
/// @notice Calculates the merkle tree root for a given set of data.
/// @param data The data to generate the root for. It should already be sorted if sorting is required.
/// @return root as bytes32.
function getRoot(bytes32[] memory data) public pure override returns (bytes32) {
require(data.length > 1, "wont generate root for single leaf");
bytes32[] memory tree = buildTree(data);
return tree[0];
}
/// @notice Generates proof for given set of data and target index
/// @dev Note that this returns a dynamic memory array constructed via assembly.
/// This may cause issues with certain REPL interpreters (e.g. Chisel).
/// @param data The data to generate the inclusion proof for. It should already be sorted if sorting is required.
/// @param index The index of the value in the data that you wish to generate the inclusion proof for
/// @return proof array that can subsequently be used by verifyProof or other libraries
function getProof(bytes32[] memory data, uint256 index) public pure override returns (bytes32[] memory) {
require(data.length > 1, "wont generate proof for single leaf");
bytes32[] memory tree = buildTree(data);
assembly {
let iter := sub(sub(mload(tree), index), 0x1)
let ptr := mload(0x40)
mstore(ptr, 0x20)
let proofSizePtr := add(ptr, 0x20)
let proofIndexPtr := add(ptr, 0x40)
for {} 0x1 {} {
// while (true)
let sibling := mload(add(tree, mul(add(iter, shl(0x1, and(iter, 0x1))), 0x20)))
mstore(proofIndexPtr, sibling)
iter := shr(1, sub(iter, eq(and(iter, 0x1), 0x0)))
if eq(iter, 0x0) { break }
proofIndexPtr := add(proofIndexPtr, 0x20)
}
mstore(proofSizePtr, div(sub(proofIndexPtr, proofSizePtr), 0x20))
return(ptr, add(0x40, sub(proofIndexPtr, proofSizePtr)))
}
}
}