Description:
Smart contract deployed on Ethereum with Factory features.
Blockchain: Ethereum
Source Code: View Code On The Blockchain
Solidity Source Code:
{{
"language": "Solidity",
"sources": {
"contracts/beacon/BeaconProofs.sol": {
"content": "// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.0;
import { BeaconProofsLib } from "./BeaconProofsLib.sol";
import { IBeaconProofs } from "../interfaces/IBeaconProofs.sol";
/**
* @title Verifies merkle proofs of beacon chain data.
* @author Origin Protocol Inc
*/
contract BeaconProofs is IBeaconProofs {
/// @notice Verifies the validator index is for the given validator public key.
/// Also verify the validator's withdrawal credential points to the withdrawal address.
/// BeaconBlock.state.validators[validatorIndex].pubkey
/// @param beaconBlockRoot The root of the beacon block
/// @param pubKeyHash Hash of validator's public key using the Beacon Chain's format
/// @param proof The merkle proof for the validator public key to the beacon block root.
/// This is 53 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param validatorIndex The validator index
/// @param withdrawalCredentials a value containing the validator type and withdrawal address.
function verifyValidator(
bytes32 beaconBlockRoot,
bytes32 pubKeyHash,
bytes calldata proof,
uint40 validatorIndex,
bytes32 withdrawalCredentials
) external view {
BeaconProofsLib.verifyValidator(
beaconBlockRoot,
pubKeyHash,
proof,
validatorIndex,
withdrawalCredentials
);
}
function verifyValidatorWithdrawable(
bytes32 beaconBlockRoot,
uint40 validatorIndex,
uint64 withdrawableEpoch,
bytes calldata withdrawableEpochProof
) external view {
BeaconProofsLib.verifyValidatorWithdrawableEpoch(
beaconBlockRoot,
validatorIndex,
withdrawableEpoch,
withdrawableEpochProof
);
}
/// @notice Verifies the balances container to the beacon block root
/// BeaconBlock.state.balances
/// @param beaconBlockRoot The root of the beacon block
/// @param balancesContainerRoot The merkle root of the the balances container
/// @param balancesContainerProof The merkle proof for the balances container to the beacon block root.
/// This is 9 witness hashes of 32 bytes each concatenated together starting from the leaf node.
function verifyBalancesContainer(
bytes32 beaconBlockRoot,
bytes32 balancesContainerRoot,
bytes calldata balancesContainerProof
) external view {
BeaconProofsLib.verifyBalancesContainer(
beaconBlockRoot,
balancesContainerRoot,
balancesContainerProof
);
}
/// @notice Verifies the validator balance to the root of the Balances container.
/// @param balancesContainerRoot The merkle root of the Balances container.
/// @param validatorBalanceLeaf The leaf node containing the validator balance with three other balances.
/// @param balanceProof The merkle proof for the validator balance to the Balances container root.
/// This is 39 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param validatorIndex The validator index to verify the balance for
/// @return validatorBalanceGwei The balance in Gwei of the validator at the given index
function verifyValidatorBalance(
bytes32 balancesContainerRoot,
bytes32 validatorBalanceLeaf,
bytes calldata balanceProof,
uint40 validatorIndex
) external view returns (uint256 validatorBalanceGwei) {
validatorBalanceGwei = BeaconProofsLib.verifyValidatorBalance(
balancesContainerRoot,
validatorBalanceLeaf,
balanceProof,
validatorIndex
);
}
/// @notice Verifies the pending deposits container to the beacon block root.
/// BeaconBlock.state.pendingDeposits
/// @param beaconBlockRoot The root of the beacon block.
/// @param pendingDepositsContainerRoot The merkle root of the the pending deposits container.
/// @param proof The merkle proof for the pending deposits container to the beacon block root.
/// This is 9 witness hashes of 32 bytes each concatenated together starting from the leaf node.
function verifyPendingDepositsContainer(
bytes32 beaconBlockRoot,
bytes32 pendingDepositsContainerRoot,
bytes calldata proof
) external view {
BeaconProofsLib.verifyPendingDepositsContainer(
beaconBlockRoot,
pendingDepositsContainerRoot,
proof
);
}
/// @notice Verified a pending deposit to the root of the Pending Deposits container.
/// @param pendingDepositsContainerRoot The merkle root of the Pending Deposits container.
/// @param pendingDepositRoot The leaf node containing the validator balance with three other balances.
/// @param proof The merkle proof for the pending deposit root to the Pending Deposits container root.
/// This is 28 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param pendingDepositIndex The pending deposit index in the Pending Deposits container
function verifyPendingDeposit(
bytes32 pendingDepositsContainerRoot,
bytes32 pendingDepositRoot,
bytes calldata proof,
uint32 pendingDepositIndex
) external view {
BeaconProofsLib.verifyPendingDeposit(
pendingDepositsContainerRoot,
pendingDepositRoot,
proof,
pendingDepositIndex
);
}
/// @notice If the deposit queue is not empty,
/// verify the slot of the first pending deposit to the beacon block root.
/// BeaconBlock.state.pendingDeposits[0].slot
/// If the deposit queue is empty, verify the root of the first pending deposit is empty
/// BeaconBlock.state.PendingDeposits[0]
/// @param beaconBlockRoot The root of the beacon block.
/// @param slot The beacon chain slot of the first deposit in the beacon chain's deposit queue.
/// Can be anything if the deposit queue is empty.
/// @param firstPendingDepositSlotProof The merkle proof to the beacon block root. Can be either:
/// - 40 witness hashes for BeaconBlock.state.PendingDeposits[0].slot when the deposit queue is not empty.
/// - 37 witness hashes for BeaconBlock.state.PendingDeposits[0] when the deposit queue is empty.
/// The 32 byte witness hashes are concatenated together starting from the leaf node.
/// @return isEmptyDepositQueue True if the deposit queue is empty, false otherwise.
function verifyFirstPendingDeposit(
bytes32 beaconBlockRoot,
uint64 slot,
bytes calldata firstPendingDepositSlotProof
) external view returns (bool isEmptyDepositQueue) {
isEmptyDepositQueue = BeaconProofsLib.verifyFirstPendingDeposit(
beaconBlockRoot,
slot,
firstPendingDepositSlotProof
);
}
/// @notice Merkleizes a beacon chain pending deposit.
/// @param pubKeyHash Hash of validator's public key using the Beacon Chain's format
/// @param withdrawalCredentials The 32 byte withdrawal credentials.
/// @param amountGwei The amount of the deposit in Gwei.
/// @param signature The 96 byte BLS signature.
/// @param slot The beacon chain slot the deposit was made in.
/// @return root The merkle root of the pending deposit.
function merkleizePendingDeposit(
bytes32 pubKeyHash,
bytes calldata withdrawalCredentials,
uint64 amountGwei,
bytes calldata signature,
uint64 slot
) external pure returns (bytes32) {
return
BeaconProofsLib.merkleizePendingDeposit(
pubKeyHash,
withdrawalCredentials,
amountGwei,
signature,
slot
);
}
/// @notice Merkleizes a BLS signature used for validator deposits.
/// @param signature The 96 byte BLS signature.
/// @return root The merkle root of the signature.
function merkleizeSignature(bytes calldata signature)
external
pure
returns (bytes32 root)
{
return BeaconProofsLib.merkleizeSignature(signature);
}
}
"
},
"contracts/beacon/BeaconProofsLib.sol": {
"content": "// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.0;
import { Merkle } from "./Merkle.sol";
import { Endian } from "./Endian.sol";
/**
* @title Library to verify merkle proofs of beacon chain data.
* @author Origin Protocol Inc
*/
library BeaconProofsLib {
// Known generalized indices in the beacon block
/// @dev BeaconBlock.state.PendingDeposits[0]
/// Beacon block container: height 3, state at at index 3
/// Beacon state container: height 6, pending deposits at index 34
/// Pending deposits container: height 28, first deposit at index 0
/// ((2 ^ 3 + 3) * 2 ^ 6 + 34) * 2 ^ 28 + 0 = 198105366528
uint256 internal constant FIRST_PENDING_DEPOSIT_GENERALIZED_INDEX =
198105366528;
/// @dev BeaconBlock.state.PendingDeposits[0].pubkey
/// Pending Deposit container: height 3, pubkey at index 4
/// (((2 ^ 3 + 3) * 2 ^ 6 + 34) * 2 ^ 28 + 0) * 2 ^ 3 + 4 = 1584842932228
uint256 internal constant FIRST_PENDING_DEPOSIT_SLOT_GENERALIZED_INDEX =
1584842932228;
/// @dev BeaconBlock.state.validators
/// Beacon block container: height 3, state at at index 3
/// Beacon state container: height 6, validators at index 11
/// (2 ^ 3 + 3) * 2 ^ 6 + 11 = 715
uint256 internal constant VALIDATORS_CONTAINER_GENERALIZED_INDEX = 715;
/// @dev BeaconBlock.state.balances
/// Beacon block container: height 3, state at at index 3
/// Beacon state container: height 6, balances at index 12
/// (2 ^ 3 + 3) * 2 ^ 6 + 12 = 716
uint256 internal constant BALANCES_CONTAINER_GENERALIZED_INDEX = 716;
/// @dev BeaconBlock.state.pendingDeposits
/// Beacon block container: height 3, state at at index 3
/// Beacon state container: height 6, balances at index 34
/// (2 ^ 3 + 3) * 2 ^ 6 + 34 = 738
uint256 internal constant PENDING_DEPOSITS_CONTAINER_GENERALIZED_INDEX =
738;
/// @dev Number of bytes in the proof to the first pending deposit.
/// 37 witness hashes of 32 bytes each concatenated together.
/// BeaconBlock.state.PendingDeposits[0]
/// 37 * 32 bytes = 1184 bytes
uint256 internal constant FIRST_PENDING_DEPOSIT_PROOF_LENGTH = 1184;
/// @dev Number of bytes in the proof from the slot of the first pending deposit to the beacon block root.
/// 40 witness hashes of 32 bytes each concatenated together.
/// BeaconBlock.state.PendingDeposits[0].slot
/// 40 * 32 bytes = 1280 bytes
uint256 internal constant FIRST_PENDING_DEPOSIT_SLOT_PROOF_LENGTH = 1280;
/// @dev Merkle height of the Balances container
/// BeaconBlock.state.balances
uint256 internal constant BALANCES_HEIGHT = 39;
/// @dev Merkle height of the Validators container list
/// BeaconBlock.state.validators
uint256 internal constant VALIDATORS_LIST_HEIGHT = 41;
/// @dev Merkle height of the Pending Deposits container list
/// BeaconBlock.state.pendingDeposits
uint256 internal constant PENDING_DEPOSITS_LIST_HEIGHT = 28;
/// @dev Merkle height of the Validator container
/// BeaconBlock.state.validators[validatorIndex]
uint256 internal constant VALIDATOR_CONTAINER_HEIGHT = 3;
/// @dev Position of the pubkey field in the Validator container.
/// BeaconBlock.state.validators[validatorIndex].pubkey
uint256 internal constant VALIDATOR_PUBKEY_INDEX = 0;
/// @dev Position of the withdrawable epoch field in the Validator container.
/// BeaconBlock.state.validators[validatorIndex].withdrawableEpoch
uint256 internal constant VALIDATOR_WITHDRAWABLE_EPOCH_INDEX = 7;
/// @notice Verifies the validator index is for the given validator public key.
/// Also verify the validator's withdrawal credential points to the withdrawal address.
/// BeaconBlock.state.validators[validatorIndex].pubkey
/// @param beaconBlockRoot The root of the beacon block
/// @param pubKeyHash Hash of validator's public key using the Beacon Chain's format
/// @param proof The merkle proof for the validator public key to the beacon block root.
/// This is 53 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param validatorIndex The validator index
/// @param withdrawalCredentials a value containing the validator type and withdrawal address.
function verifyValidator(
bytes32 beaconBlockRoot,
bytes32 pubKeyHash,
bytes calldata proof,
uint40 validatorIndex,
bytes32 withdrawalCredentials
) internal view {
require(beaconBlockRoot != bytes32(0), "Invalid block root");
// BeaconBlock.state.validators[validatorIndex]
uint256 generalizedIndex = concatGenIndices(
VALIDATORS_CONTAINER_GENERALIZED_INDEX,
VALIDATORS_LIST_HEIGHT,
validatorIndex
);
// BeaconBlock.state.validators[validatorIndex].pubkey
generalizedIndex = concatGenIndices(
generalizedIndex,
VALIDATOR_CONTAINER_HEIGHT,
VALIDATOR_PUBKEY_INDEX
);
// Get the withdrawal credentials from the first witness in the pubkey merkle proof.
bytes32 withdrawalCredentialsFromProof = bytes32(proof[:32]);
require(
withdrawalCredentialsFromProof == withdrawalCredentials,
"Invalid withdrawal cred"
);
require(
// 53 * 32 bytes = 1696 bytes
proof.length == 1696 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: pubKeyHash,
index: generalizedIndex
}),
"Invalid validator proof"
);
}
/// @notice Verifies a validator's withdrawable epoch to the beacon block root
/// for a given validator index.
/// BeaconBlock.state.validators[validatorIndex].withdrawableEpoch
/// @param beaconBlockRoot The root of the beacon block
/// @param validatorIndex The validator index to verify the withdrawable epoch for.
/// @param withdrawableEpoch The withdrawable epoch to verify in big endian uint64 format
/// @param proof The merkle proof for the validator's withdrawable epoch to the beacon block root.
/// This is 53 witness hashes of 32 bytes each concatenated together starting from the leaf node.
function verifyValidatorWithdrawableEpoch(
bytes32 beaconBlockRoot,
uint40 validatorIndex,
uint64 withdrawableEpoch,
bytes calldata proof
) internal view {
require(beaconBlockRoot != bytes32(0), "Invalid block root");
// BeaconBlock.state.validators[validatorIndex]
uint256 exitEpochGenIndex = concatGenIndices(
VALIDATORS_CONTAINER_GENERALIZED_INDEX,
VALIDATORS_LIST_HEIGHT,
validatorIndex
);
// BeaconBlock.state.validators[validatorIndex].withdrawableEpoch
exitEpochGenIndex = concatGenIndices(
exitEpochGenIndex,
VALIDATOR_CONTAINER_HEIGHT,
VALIDATOR_WITHDRAWABLE_EPOCH_INDEX
);
require(
// 53 * 32 bytes = 1696 bytes
proof.length == 1696 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: Endian.toLittleEndianUint64(withdrawableEpoch),
index: exitEpochGenIndex
}),
"Invalid withdrawable proof"
);
}
/// @notice Verifies the balances container to the beacon block root.
/// BeaconBlock.state.balances
/// @param beaconBlockRoot The root of the beacon block.
/// @param balancesContainerRoot The merkle root of the the balances container.
/// @param proof The merkle proof for the balances container to the beacon block root.
/// This is 9 witness hashes of 32 bytes each concatenated together starting from the leaf node.
function verifyBalancesContainer(
bytes32 beaconBlockRoot,
bytes32 balancesContainerRoot,
bytes calldata proof
) internal view {
require(beaconBlockRoot != bytes32(0), "Invalid block root");
// BeaconBlock.state.balances
require(
// 9 * 32 bytes = 288 bytes
proof.length == 288 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: balancesContainerRoot,
index: BALANCES_CONTAINER_GENERALIZED_INDEX
}),
"Invalid balance container proof"
);
}
/// @notice Verifies the validator balance to the root of the Balances container.
/// @param balancesContainerRoot The merkle root of the Balances container.
/// @param validatorBalanceLeaf The leaf node containing the validator balance with three other balances.
/// @param proof The merkle proof for the validator balance to the Balances container root.
/// This is 39 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param validatorIndex The validator index to verify the balance for.
/// @return validatorBalanceGwei The balance in Gwei of the validator at the given index.
function verifyValidatorBalance(
bytes32 balancesContainerRoot,
bytes32 validatorBalanceLeaf,
bytes calldata proof,
uint40 validatorIndex
) internal view returns (uint256 validatorBalanceGwei) {
require(balancesContainerRoot != bytes32(0), "Invalid container root");
// Four balances are stored in each leaf so the validator index is divided by 4
uint64 balanceIndex = validatorIndex / 4;
// Get the index within the balances container, not the Beacon Block
// BeaconBlock.state.balances[balanceIndex]
uint256 generalizedIndex = concatGenIndices(
1,
BALANCES_HEIGHT,
balanceIndex
);
validatorBalanceGwei = balanceAtIndex(
validatorBalanceLeaf,
validatorIndex
);
require(
// 39 * 32 bytes = 1248 bytes
proof.length == 1248 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: balancesContainerRoot,
leaf: validatorBalanceLeaf,
index: generalizedIndex
}),
"Invalid balance proof"
);
}
/// @notice Verifies the pending deposits container to the beacon block root.
/// BeaconBlock.state.pendingDeposits
/// @param beaconBlockRoot The root of the beacon block.
/// @param pendingDepositsContainerRoot The merkle root of the the pending deposits container.
/// @param proof The merkle proof for the pending deposits container to the beacon block root.
/// This is 9 witness hashes of 32 bytes each concatenated together starting from the leaf node.
function verifyPendingDepositsContainer(
bytes32 beaconBlockRoot,
bytes32 pendingDepositsContainerRoot,
bytes calldata proof
) internal view {
require(beaconBlockRoot != bytes32(0), "Invalid block root");
// BeaconBlock.state.pendingDeposits
require(
// 9 * 32 bytes = 288 bytes
proof.length == 288 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: pendingDepositsContainerRoot,
index: PENDING_DEPOSITS_CONTAINER_GENERALIZED_INDEX
}),
"Invalid deposit container proof"
);
}
/// @notice Verifies a pending deposit in the pending deposits container.
/// BeaconBlock.state.pendingDeposits[depositIndex]
/// @param pendingDepositsContainerRoot The merkle root of the pending deposits list container
/// @param pendingDepositRoot The merkle root of the pending deposit to verify
/// @param proof The merkle proof for the pending deposit root to the pending deposits list container root.
/// This is 28 witness hashes of 32 bytes each concatenated together starting from the leaf node.
/// @param pendingDepositIndex The index in the pending deposits list container for the deposit to verify.
function verifyPendingDeposit(
bytes32 pendingDepositsContainerRoot,
bytes32 pendingDepositRoot,
bytes calldata proof,
uint32 pendingDepositIndex
) internal view {
require(pendingDepositsContainerRoot != bytes32(0), "Invalid root");
// ssz-merkleizing a list which has a variable length, an additional
// sha256(pending_deposits_root, pending_deposits_length) operation is done to get the
// actual pending deposits root so the max pending deposit index is 2^(28 - 1)
require(
pendingDepositIndex < 2**(PENDING_DEPOSITS_LIST_HEIGHT - 1),
"Invalid deposit index"
);
// BeaconBlock.state.pendingDeposits[depositIndex]
uint256 generalizedIndex = concatGenIndices(
1,
PENDING_DEPOSITS_LIST_HEIGHT,
pendingDepositIndex
);
require(
// 28 * 32 bytes = 896 bytes
proof.length == 896 &&
Merkle.verifyInclusionSha256({
proof: proof,
root: pendingDepositsContainerRoot,
leaf: pendingDepositRoot,
index: generalizedIndex
}),
"Invalid deposit proof"
);
}
/// @notice If the deposit queue is not empty,
/// verify the slot of the first pending deposit to the beacon block root.
/// BeaconBlock.state.pendingDeposits[0].slot
/// If the deposit queue is empty, verify the root of the first pending deposit is empty
/// BeaconBlock.state.PendingDeposits[0]
/// @param beaconBlockRoot The root of the beacon block.
/// @param slot The beacon chain slot of the first deposit in the beacon chain's deposit queue.
/// Can be anything if the deposit queue is empty.
/// @param proof The merkle proof to the beacon block root. Can be either:
/// - 40 witness hashes for BeaconBlock.state.PendingDeposits[0].slot when the deposit queue is not empty.
/// - 37 witness hashes for BeaconBlock.state.PendingDeposits[0] when the deposit queue is empty.
/// The 32 byte witness hashes are concatenated together starting from the leaf node.
/// @return isEmptyDepositQueue True if the deposit queue is empty, false otherwise.
function verifyFirstPendingDeposit(
bytes32 beaconBlockRoot,
uint64 slot,
bytes calldata proof
) internal view returns (bool isEmptyDepositQueue) {
require(beaconBlockRoot != bytes32(0), "Invalid block root");
// If the deposit queue is empty
if (proof.length == FIRST_PENDING_DEPOSIT_PROOF_LENGTH) {
require(
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: bytes32(0),
index: FIRST_PENDING_DEPOSIT_GENERALIZED_INDEX
}),
"Invalid empty deposits proof"
);
return true;
}
// Verify the public key of the first pending deposit
// BeaconBlock.state.PendingDeposits[0].slot
require(
proof.length == FIRST_PENDING_DEPOSIT_SLOT_PROOF_LENGTH &&
Merkle.verifyInclusionSha256({
proof: proof,
root: beaconBlockRoot,
leaf: Endian.toLittleEndianUint64(slot),
index: FIRST_PENDING_DEPOSIT_SLOT_GENERALIZED_INDEX
}),
"Invalid deposit slot proof"
);
}
/// @notice Merkleizes a beacon chain pending deposit.
/// @param pubKeyHash Hash of validator's public key using the Beacon Chain's format
/// @param withdrawalCredentials The 32 byte withdrawal credentials.
/// @param amountGwei The amount of the deposit in Gwei.
/// @param signature The 96 byte BLS signature.
/// @param slot The beacon chain slot the deposit was made in.
/// @return root The merkle root of the pending deposit.
function merkleizePendingDeposit(
bytes32 pubKeyHash,
bytes calldata withdrawalCredentials,
uint64 amountGwei,
bytes calldata signature,
uint64 slot
) internal pure returns (bytes32 root) {
bytes32[] memory leaves = new bytes32[](8);
leaves[0] = pubKeyHash;
leaves[1] = bytes32(withdrawalCredentials[:32]);
leaves[2] = Endian.toLittleEndianUint64(amountGwei);
leaves[3] = merkleizeSignature(signature);
leaves[4] = Endian.toLittleEndianUint64(slot);
leaves[5] = bytes32(0);
leaves[6] = bytes32(0);
leaves[7] = bytes32(0);
root = Merkle.merkleizeSha256(leaves);
}
/// @notice Merkleizes a BLS signature used for validator deposits.
/// @param signature The 96 byte BLS signature.
/// @return root The merkle root of the signature.
function merkleizeSignature(bytes calldata signature)
internal
pure
returns (bytes32)
{
require(signature.length == 96, "Invalid signature");
bytes32[] memory leaves = new bytes32[](4);
leaves[0] = bytes32(signature[:32]);
leaves[1] = bytes32(signature[32:64]);
leaves[2] = bytes32(signature[64:96]);
leaves[3] = bytes32(0);
return Merkle.merkleizeSha256(leaves);
}
////////////////////////////////////////////////////
/// Internal Helper Functions
////////////////////////////////////////////////////
function balanceAtIndex(bytes32 validatorBalanceLeaf, uint40 validatorIndex)
internal
pure
returns (uint256)
{
uint256 bitShiftAmount = (validatorIndex % 4) * 64;
return
Endian.fromLittleEndianUint64(
bytes32((uint256(validatorBalanceLeaf) << bitShiftAmount))
);
}
/// @notice Concatenates two beacon chain generalized indices into one.
/// @param genIndex The first generalized index or 1 if calculating for a single container.
/// @param height The merkle tree height of the second container. eg 39 for balances, 41 for validators.
/// @param index The index within the second container. eg the validator index.
/// @return genIndex The concatenated generalized index.
function concatGenIndices(
uint256 genIndex,
uint256 height,
uint256 index
) internal pure returns (uint256) {
return (genIndex << height) | index;
}
}
"
},
"contracts/beacon/Endian.sol": {
"content": "// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @title Library to handle conversion between little-endian and big-endian formats.
* @author Origin Protocol Inc
*/
library Endian {
/**
* @notice Converts a little endian-formatted uint64 to a big endian-formatted uint64
* @param lenum little endian-formatted uint64 input, provided as 'bytes32' type
* @return n The big endian-formatted uint64
* @dev Note that the input is formatted as a 'bytes32' type (i.e. 256 bits),
* but it is immediately truncated to a uint64 (i.e. 64 bits)
* through a right-shift/shr operation.
*/
function fromLittleEndianUint64(bytes32 lenum)
internal
pure
returns (uint64 n)
{
// the number needs to be stored in little-endian encoding (ie in bytes 0-8)
n = uint64(uint256(lenum >> 192));
// forgefmt: disable-next-item
return
(n >> 56) |
((0x00FF000000000000 & n) >> 40) |
((0x0000FF0000000000 & n) >> 24) |
((0x000000FF00000000 & n) >> 8) |
((0x00000000FF000000 & n) << 8) |
((0x0000000000FF0000 & n) << 24) |
((0x000000000000FF00 & n) << 40) |
((0x00000000000000FF & n) << 56);
}
function toLittleEndianUint64(uint64 benum)
internal
pure
returns (bytes32 n)
{
// Convert to little-endian by reversing byte order
uint64 reversed = (benum >> 56) |
((0x00FF000000000000 & benum) >> 40) |
((0x0000FF0000000000 & benum) >> 24) |
((0x000000FF00000000 & benum) >> 8) |
((0x00000000FF000000 & benum) << 8) |
((0x0000000000FF0000 & benum) << 24) |
((0x000000000000FF00 & benum) << 40) |
((0x00000000000000FF & benum) << 56);
// Store the little-endian uint64 in the least significant 64 bits of bytes32
n = bytes32(uint256(reversed));
// Shift to most significant bits
n = n << 192;
}
}
"
},
"contracts/beacon/Merkle.sol": {
"content": "// SPDX-License-Identifier: MIT
// Adapted from OpenZeppelin Contracts (last updated v4.8.0) (utils/cryptography/MerkleProof.sol)
pragma solidity ^0.8.0;
/**
* @dev These functions deal with verification of Merkle Tree proofs.
*
* The tree and the proofs can be generated using our
* https://github.com/OpenZeppelin/merkle-tree[JavaScript library].
* You will find a quickstart guide in the readme.
*
* WARNING: You should avoid using leaf values that are 64 bytes long prior to
* hashing, or use a hash function other than keccak256 for hashing leaves.
* This is because the concatenation of a sorted pair of internal nodes in
* the merkle tree could be reinterpreted as a leaf value.
* OpenZeppelin's JavaScript library generates merkle trees that are safe
* against this attack out of the box.
*/
library Merkle {
error InvalidProofLength();
/**
* @dev Returns the rebuilt hash obtained by traversing a Merkle tree up
* from `leaf` using `proof`. A `proof` is valid if and only if the rebuilt
* hash matches the root of the tree. The tree is built assuming `leaf` is
* the 0 indexed `index`'th leaf from the bottom left of the tree.
*
* Note this is for a Merkle tree using the sha256 hash function
*/
function verifyInclusionSha256(
bytes memory proof,
bytes32 root,
bytes32 leaf,
uint256 index
) internal view returns (bool) {
return processInclusionProofSha256(proof, leaf, index) == root;
}
/**
* @dev Returns the rebuilt hash obtained by traversing a Merkle tree up
* from `leaf` using `proof`. A `proof` is valid if and only if the rebuilt
* hash matches the root of the tree. The tree is built assuming `leaf` is
* the 0 indexed `index`'th leaf from the bottom left of the tree.
*
* _Available since v4.4._
*
* Note this is for a Merkle tree using the sha256 hash function
*/
function processInclusionProofSha256(
bytes memory proof,
bytes32 leaf,
uint256 index
) internal view returns (bytes32) {
require(
proof.length != 0 && proof.length % 32 == 0,
InvalidProofLength()
);
bytes32[1] memory computedHash = [leaf];
for (uint256 i = 32; i <= proof.length; i += 32) {
if (index % 2 == 0) {
// if ith bit of index is 0, then computedHash is a left sibling
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(0x00, mload(computedHash))
mstore(0x20, mload(add(proof, i)))
if iszero(
staticcall(
sub(gas(), 2000),
2,
0x00,
0x40,
computedHash,
0x20
)
) {
revert(0, 0)
}
}
} else {
// if ith bit of index is 1, then computedHash is a right sibling
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(0x00, mload(add(proof, i)))
mstore(0x20, mload(computedHash))
if iszero(
staticcall(
sub(gas(), 2000),
2,
0x00,
0x40,
computedHash,
0x20
)
) {
revert(0, 0)
}
}
}
index = index / 2;
}
return computedHash[0];
}
/**
* @notice Returns the merkle root of a tree created from a set of leaves using sha256 as its hash function.
* @param leaves the leaves of the merkle tree
* @return The computed Merkle root of the tree.
* @dev A pre-condition to this function is that leaves.length is a power of two.
* If not, the function will merkleize the inputs incorrectly.
*/
function merkleizeSha256(bytes32[] memory leaves)
internal
pure
returns (bytes32)
{
//there are half as many nodes in the layer above the leaves
uint256 numNodesInLayer = leaves.length / 2;
//create a layer to store the internal nodes
bytes32[] memory layer = new bytes32[](numNodesInLayer);
//fill the layer with the pairwise hashes of the leaves
for (uint256 i = 0; i < numNodesInLayer; i++) {
layer[i] = sha256(
abi.encodePacked(leaves[2 * i], leaves[2 * i + 1])
);
}
//the next layer above has half as many nodes
numNodesInLayer /= 2;
//while we haven't computed the root
while (numNodesInLayer != 0) {
//overwrite the first numNodesInLayer nodes in layer with the pairwise hashes of their children
for (uint256 i = 0; i < numNodesInLayer; i++) {
layer[i] = sha256(
abi.encodePacked(layer[2 * i], layer[2 * i + 1])
);
}
//the next layer above has half as many nodes
numNodesInLayer /= 2;
}
//the first node in the layer is the root
return layer[0];
}
}
"
},
"contracts/interfaces/IBeaconProofs.sol": {
"content": "// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.0;
interface IBeaconProofs {
function verifyValidator(
bytes32 beaconBlockRoot,
bytes32 pubKeyHash,
bytes calldata validatorPubKeyProof,
uint40 validatorIndex,
bytes32 withdrawalCredentials
) external view;
function verifyValidatorWithdrawable(
bytes32 beaconBlockRoot,
uint40 validatorIndex,
uint64 withdrawableEpoch,
bytes calldata withdrawableEpochProof
) external view;
function verifyBalancesContainer(
bytes32 beaconBlockRoot,
bytes32 balancesContainerLeaf,
bytes calldata balancesContainerProof
) external view;
function verifyValidatorBalance(
bytes32 balancesContainerRoot,
bytes32 validatorBalanceLeaf,
bytes calldata balanceProof,
uint40 validatorIndex
) external view returns (uint256 validatorBalance);
function verifyPendingDepositsContainer(
bytes32 beaconBlockRoot,
bytes32 pendingDepositsContainerRoot,
bytes calldata proof
) external view;
function verifyPendingDeposit(
bytes32 pendingDepositsContainerRoot,
bytes32 pendingDepositRoot,
bytes calldata proof,
uint32 pendingDepositIndex
) external view;
function verifyFirstPendingDeposit(
bytes32 beaconBlockRoot,
uint64 slot,
bytes calldata firstPendingDepositSlotProof
) external view returns (bool isEmptyDepositQueue);
function merkleizePendingDeposit(
bytes32 pubKeyHash,
bytes calldata withdrawalCredentials,
uint64 amountGwei,
bytes calldata signature,
uint64 slot
) external pure returns (bytes32 root);
function merkleizeSignature(bytes calldata signature)
external
pure
returns (bytes32 root);
}
"
}
},
"settings": {
"optimizer": {
"enabled": true,
"runs": 200
},
"evmVersion": "paris",
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"metadata": {
"useLiteralContent": true
}
}
}}Submitted on: 2025-10-27 12:56:43
Comments
Log in to comment.
No comments yet.