alloy_primitives/signature/utils.rs
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116
use crate::ChainId;
/// Applies [EIP-155](https://eips.ethereum.org/EIPS/eip-155).
#[inline]
pub const fn to_eip155_v(v: u8, chain_id: ChainId) -> ChainId {
(v as u64) + 35 + chain_id * 2
}
/// Attempts to normalize the v value to a boolean parity value.
///
/// Returns `None` if the value is invalid for any of the known Ethereum parity encodings.
pub const fn normalize_v(v: u64) -> Option<bool> {
if !is_valid_v(v) {
return None;
}
// Simplifying:
// 0| 1 => v % 2 == 0
// 27|28 => (v - 27) % 2 == 0
// 35.. => (v - 35) % 2 == 0
// ---
// 0| 1 => v % 2 == 0
// 27|28 => v % 2 == 1
// 35.. => v % 2 == 1
// ---
// ..2 => v % 2 == 0
// _ => v % 2 == 1
let cmp = (v <= 1) as u64;
Some(v % 2 == cmp)
}
/// Returns `true` if the given `v` value is valid for any of the known Ethereum parity encodings.
#[inline]
const fn is_valid_v(v: u64) -> bool {
matches!(
v,
// Case 1: raw/bare
0 | 1
// Case 2: non-EIP-155 v value
| 27 | 28
// Case 3: EIP-155 V value
| 35..
)
}
/// Normalizes a `v` value, respecting raw, legacy, and EIP-155 values.
///
/// This function covers the entire u64 range, producing v-values as follows:
/// - 0-26 - raw/bare. 0-3 are legal. In order to ensure that all values are covered, we also handle
/// 4-26 here by returning v % 4.
/// - 27-34 - legacy. 27-30 are legal. By legacy bitcoin convention range 27-30 signals uncompressed
/// pubkeys, while 31-34 signals compressed pubkeys. We do not respect the compression convention.
/// All Ethereum keys are uncompressed.
/// - 35+ - EIP-155. By EIP-155 convention, `v = 35 + CHAIN_ID * 2 + 0/1` We return (v-1 % 2) here.
///
/// NB: raw and legacy support values 2, and 3, while EIP-155 does not.
/// Recovery values of 2 and 3 are unlikely to occur in practice. In the
/// vanishingly unlikely event that you encounter an EIP-155 signature with a
/// recovery value of 2 or 3, you should normalize out of band.
#[cfg(feature = "k256")]
#[inline]
pub(crate) const fn normalize_v_to_recid(v: u64) -> k256::ecdsa::RecoveryId {
let byte = normalize_v_to_byte(v);
debug_assert!(byte <= k256::ecdsa::RecoveryId::MAX);
match k256::ecdsa::RecoveryId::from_byte(byte) {
Some(recid) => recid,
None => unsafe { core::hint::unreachable_unchecked() },
}
}
/// Normalize the v value to a single byte.
pub(crate) const fn normalize_v_to_byte(v: u64) -> u8 {
match v {
// Case 1: raw/bare
0..=26 => (v % 4) as u8,
// Case 2: non-EIP-155 v value
27..=34 => ((v - 27) % 4) as u8,
// Case 3: EIP-155 V value
35.. => ((v - 1) % 2) as u8,
}
}
#[cfg(test)]
mod test {
use super::*;
#[test]
fn normalizes_v() {
assert_eq!(normalize_v(0), Some(false));
assert_eq!(normalize_v(1), Some(true));
for invalid_v in 2..27 {
assert_eq!(normalize_v(invalid_v), None);
}
assert_eq!(normalize_v(27), Some(false));
assert_eq!(normalize_v(28), Some(true));
for invalid_v in 29..35 {
assert_eq!(normalize_v(invalid_v), None);
}
assert_eq!(normalize_v(35), Some(false));
assert_eq!(normalize_v(36), Some(true));
for v in 35..100 {
assert_eq!(normalize_v(v), Some((v - 35) % 2 != 0));
}
}
#[test]
#[cfg(feature = "k256")]
fn normalizes_v_to_recid() {
assert_eq!(normalize_v_to_recid(27), k256::ecdsa::RecoveryId::from_byte(0).unwrap());
assert_eq!(normalize_v_to_recid(28), k256::ecdsa::RecoveryId::from_byte(1).unwrap());
}
}