GitBross Home Explore Help
Register Sign In
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a68eaa4e2d
Branches Tags
openzeppelin-co...
/
contracts
/
ECRecovery.sol

ECRecovery.sol 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. pragma solidity ^0.4.11;
    2. 

  2. 

  3. 

  4. /**
    5. 

  5.  * @title Eliptic curve signature operations
    6. 

  6.  *
    7. 

  7.  * @dev Based on https://gist.github.com/axic/5b33912c6f61ae6fd96d6c4a47afde6d
    8. 

  8.  */
    9. 

  9. 

  10. library ECRecovery {
    11. 

  11. 

  12.   /**
    13. 

  13.    * @dev Duplicate Solidity's ecrecover, but catching the CALL return value
    14. 

  14.    * @param hash bytes32 messahe hash from which the signature will be recovered
    15. 

  15.    * @param v uint8 signature version
    16. 

  16.    * @param r bytes32 signature r value
    17. 

  17.    * @param s bytes32 signature s value
    18. 

  18.    */
    19. 

  19.   function safeRecover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) constant returns (bool, address) {
    20. 

  20.     // We do our own memory management here. Solidity uses memory offset
    21. 

  21.     // 0x40 to store the current end of memory. We write past it (as
    22. 

  22.     // writes are memory extensions), but don't update the offset so
    23. 

  23.     // Solidity will reuse it. The memory used here is only needed for
    24. 

  24.     // this context.
    25. 

  25. 

  26.     bool ret;
    27. 

  27.     address addr;
    28. 

  28. 

  29.     assembly {
    30. 

  30.       let size := mload(0x40)
    31. 

  31.       mstore(size, hash)
    32. 

  32.       mstore(add(size, 32), v)
    33. 

  33.       mstore(add(size, 64), r)
    34. 

  34.       mstore(add(size, 96), s)
    35. 

  35. 

  36.       // NOTE: we can reuse the request memory because we deal with
    37. 

  37.       //       the return code
    38. 

  38.       ret := call(3000, 1, 0, size, 128, size, 32)
    39. 

  39.       addr := mload(size)
    40. 

  40.     }
    41. 

  41. 

  42.     return (ret, addr);
    43. 

  43.   }
    44. 

  44. 

  45.   /**
    46. 

  46.    * @dev Recover signer address from a message by using his signature
    47. 

  47.    * @param hash bytes32 messahe hash from which the signature will be recovered
    48. 

  48.    * @param sig bytes signature
    49. 

  49.    */
    50. 

  50.   function recover(bytes32 hash, bytes sig) constant returns (address) {
    51. 

  51.     bytes32 r;
    52. 

  52.     bytes32 s;
    53. 

  53.     uint8 v;
    54. 

  54. 

  55.     if (sig.length != 65)
    56. 

  56.       return (address(0));
    57. 

  57. 

  58.     assembly {
    59. 

  59.       r := mload(add(sig, 32))
    60. 

  60.       s := mload(add(sig, 64))
    61. 

  61.       v := byte(0, mload(add(sig, 96)))
    62. 

  62.     }
    63. 

  63. 

  64.     // albeit non-transactional signatures are not specified by the YP, one would expect it
    65. 

  65.     // to match the YP range of [27, 28]
    66. 

  66.     //
    67. 

  67.     // geth uses [0, 1] and some clients have followed. This might change, see:
    68. 

  68.     //  https://github.com/ethereum/go-ethereum/issues/2053
    69. 

  69.     if (v < 27)
    70. 

  70.      v += 27;
    71. 

  71. 

  72.     if (v != 27 && v != 28)
    73. 

  73.       return (address(0));
    74. 

  74. 

  75.     bool ret;
    76. 

  76.     address addr;
    77. 

  77.     (ret, addr) = safeRecover(hash, v, r, s);
    78. 

  78. 

  79.     if (!ret)
    80. 

  80.       return address(0);
    81. 

  81.     else
    82. 

  82.       return addr;
    83. 

  83.   }
    84. 

  84. 

  85. }
    86.