Browse Source

ECSignature: fixes for canonical signatures

hk-custom-address
Daniel Cousens 11 years ago
parent
commit
53595784e1
  1. 33
      src/ecsignature.js
  2. 29
      test/bitcoin.core.js
  3. 30
      test/fixtures/ecsignature.json

33
src/ecsignature.js

@ -1,5 +1,4 @@
var assert = require('assert') var assert = require('assert')
var BigInteger = require('bigi') var BigInteger = require('bigi')
function ECSignature(r, s) { function ECSignature(r, s) {
@ -34,28 +33,50 @@ ECSignature.parseCompact = function(buffer) {
ECSignature.fromDER = function(buffer) { ECSignature.fromDER = function(buffer) {
assert.equal(buffer.readUInt8(0), 0x30, 'Not a DER sequence') assert.equal(buffer.readUInt8(0), 0x30, 'Not a DER sequence')
assert.equal(buffer.readUInt8(1), buffer.length - 2, 'Invalid sequence length') assert.equal(buffer.readUInt8(1), buffer.length - 2, 'Invalid sequence length')
assert.equal(buffer.readUInt8(2), 0x02, 'Expected a DER integer') assert.equal(buffer.readUInt8(2), 0x02, 'Expected a DER integer')
var rLen = buffer.readUInt8(3) var rLen = buffer.readUInt8(3)
var rB = buffer.slice(4, 4 + rLen) assert(rLen > 0, 'R length is zero')
var offset = 4 + rLen var offset = 4 + rLen
assert.equal(buffer.readUInt8(offset), 0x02, 'Expected a DER integer (2)') assert.equal(buffer.readUInt8(offset), 0x02, 'Expected a DER integer (2)')
var sLen = buffer.readUInt8(1 + offset)
var sB = buffer.slice(2 + offset) var sLen = buffer.readUInt8(offset + 1)
assert(sLen > 0, 'R length is zero')
var rB = buffer.slice(4, offset)
var sB = buffer.slice(offset + 2)
offset += 2 + sLen offset += 2 + sLen
if (rLen > 1 && rB.readUInt8(0) === 0x00) {
assert(rB.readUInt8(1) & 0x80, 'R value excessively padded')
}
if (sLen > 1 && sB.readUInt8(0) === 0x00) {
assert(sB.readUInt8(1) & 0x80, 'S value excessively padded')
}
assert.equal(offset, buffer.length, 'Invalid DER encoding') assert.equal(offset, buffer.length, 'Invalid DER encoding')
var r = BigInteger.fromDERInteger(rB) var r = BigInteger.fromDERInteger(rB)
var s = BigInteger.fromDERInteger(sB) var s = BigInteger.fromDERInteger(sB)
assert(r.signum() >= 0, 'R value is negative')
assert(s.signum() >= 0, 'S value is negative')
return new ECSignature(r, s) return new ECSignature(r, s)
} }
// FIXME: 0x00, 0x04, 0x80 are SIGHASH_* boundary constants, importing Transaction causes a circular dependency
ECSignature.parseScriptSignature = function(buffer) { ECSignature.parseScriptSignature = function(buffer) {
var hashType = buffer.readUInt8(buffer.length - 1)
var hashTypeMod = hashType & ~0x80
assert(hashTypeMod > 0x00, 'Invalid hashType')
assert(hashTypeMod < 0x04, 'Invalid hashType')
return { return {
signature: ECSignature.fromDER(buffer.slice(0, -1)), signature: ECSignature.fromDER(buffer.slice(0, -1)),
hashType: buffer.readUInt8(buffer.length - 1) hashType: hashType
} }
} }

29
test/bitcoin.core.js

@ -6,6 +6,7 @@ var networks = require('../src/networks')
var Address = require('../src/address') var Address = require('../src/address')
var BigInteger = require('bigi') var BigInteger = require('bigi')
var ECKey = require('../src/eckey') var ECKey = require('../src/eckey')
var ECSignature = require('../src/ecsignature')
var Transaction = require('../src/transaction') var Transaction = require('../src/transaction')
var Script = require('../src/script') var Script = require('../src/script')
@ -197,4 +198,32 @@ describe('Bitcoin-core', function() {
}) })
}) })
}) })
describe('ECSignature', function() {
sig_canonical.forEach(function(hex) {
var buffer = new Buffer(hex, 'hex')
it('can parse ' + hex, function() {
var parsed = ECSignature.parseScriptSignature(buffer)
var actual = parsed.signature.toScriptSignature(parsed.hashType)
assert.equal(actual.toString('hex'), hex)
})
})
sig_noncanonical.forEach(function(hex, i) {
if (i === 0) return
if (i % 2 !== 0) return
var description = sig_noncanonical[i - 1].slice(0, -1)
if (description === 'too long') return // we support non secp256k1 signatures
var buffer = new Buffer(hex, 'hex')
it('throws on ' + description, function() {
assert.throws(function() {
ECSignature.parseScriptSignature(buffer)
})
})
})
})
}) })

30
test/fixtures/ecsignature.json

@ -103,8 +103,8 @@
"i": 1 "i": 1
}, },
"scriptSignature": { "scriptSignature": {
"hex": "3045022100cde1302d83f8dd835d89aef803c74a119f561fbaef3eb9129e45f30de86abbf9022006ce643f5049ee1f27890467b77a6a8e11ec4661cc38cd8badf90115fbd03cefff", "hex": "3045022100cde1302d83f8dd835d89aef803c74a119f561fbaef3eb9129e45f30de86abbf9022006ce643f5049ee1f27890467b77a6a8e11ec4661cc38cd8badf90115fbd03cef81",
"hashType": 255 "hashType": 129
}, },
"DER": "3045022100cde1302d83f8dd835d89aef803c74a119f561fbaef3eb9129e45f30de86abbf9022006ce643f5049ee1f27890467b77a6a8e11ec4661cc38cd8badf90115fbd03cef", "DER": "3045022100cde1302d83f8dd835d89aef803c74a119f561fbaef3eb9129e45f30de86abbf9022006ce643f5049ee1f27890467b77a6a8e11ec4661cc38cd8badf90115fbd03cef",
"signature": { "signature": {
@ -131,23 +131,39 @@
"DER": [ "DER": [
{ {
"exception": "Invalid sequence length", "exception": "Invalid sequence length",
"hex": "30ff0204ffffffff0204ffffffff" "hex": "30ff020400ffffff020400ffffff"
}, },
{ {
"exception": "Invalid sequence length", "exception": "Invalid sequence length",
"hex": "300c0304ffffffff0304ffffffff0000" "hex": "300c030400ffffff030400ffffff0000"
}, },
{ {
"exception": "Expected a DER integer", "exception": "Expected a DER integer",
"hex": "300cff04ffffffff0204ffffffff" "hex": "300cff0400ffffff020400ffffff"
}, },
{ {
"exception": "Expected a DER integer \\(2\\)", "exception": "Expected a DER integer \\(2\\)",
"hex": "300c0202ffffffff0204ffffffff" "hex": "300c020200ffffff020400ffffff"
}, },
{ {
"exception": "Invalid DER encoding", "exception": "Invalid DER encoding",
"hex": "300c0204ffffffff0202ffffffff" "hex": "300c020400ffffff020200ffffff"
},
{
"exception": "R value is negative",
"hex": "300c0204ffffffff020400ffffff"
},
{
"exception": "S value is negative",
"hex": "300c020400ffffff0204ffffffff"
},
{
"exception": "R value excessively padded",
"hex": "300c02040000ffff020400ffffff"
},
{
"exception": "S value excessively padded",
"hex": "300c020400ffffff02040000ffff"
} }
] ]
} }

Loading…
Cancel
Save