chainsafe-bls/test/unit/index.test.ts

import {expect} from "chai";
import {IBls} from "../../src/interface";
import {getN, randomMessage} from "../util";
import {hexToBytes} from "../../src/helpers";
import {maliciousVerifyMultipleSignaturesData} from "../data/malicious-signature-test-data";

export function runIndexTests(bls: IBls): void {
  // eslint-disable-next-line @typescript-eslint/explicit-function-return-type
  function getRandomData() {
    const sk = bls.SecretKey.fromKeygen();
    const pk = sk.toPublicKey();
    const msg = randomMessage();
    const sig = sk.sign(msg);
    return {sk, pk, msg, sig};
  }

  describe("verify", () => {
    it("should verify signature", () => {
      const {pk, msg, sig} = getRandomData();
      const pkHex = pk.toHex();
      const isValid = bls.verify(pk.toBytes(), msg, sig.toBytes());
      expect(isValid, "fail verify").to.be.true;

      // Make sure to not modify original pubkey when verifying
      expect(pk.toHex()).to.be.equal(pkHex, "pubkey modified when verifying");
    });

    it("should fail verify empty signature", () => {
      const {pk, msg} = getRandomData();
      const emptySig = Buffer.alloc(96);
      const isValid = bls.verify(pk.toBytes(), msg, emptySig);
      expect(isValid).to.be.false;
    });

    it("should fail verify signature of different message", () => {
      const {pk, sig} = getRandomData();
      const msg2 = randomMessage();
      const isValid = bls.verify(pk.toBytes(), msg2, sig.toBytes());
      expect(isValid).to.be.false;
    });

    it("should fail verify signature signed by different key", () => {
      const {msg, sig} = getRandomData();
      const {pk: pk2} = getRandomData();
      const isValid = bls.verify(pk2.toBytes(), msg, sig.toBytes());
      expect(isValid).to.be.false;
    });
  });

  describe("verify multiple", () => {
    it("should verify aggregated signatures", () => {
      const sks = getN(4, () => bls.SecretKey.fromKeygen());
      const msgs = getN(2, () => randomMessage());
      const pks = sks.map((sk) => sk.toPublicKey());

      const sigs = [sks[0].sign(msgs[0]), sks[1].sign(msgs[0]), sks[2].sign(msgs[1]), sks[3].sign(msgs[1])];

      const aggPubkeys = [
        bls.aggregatePublicKeys([pks[0], pks[1]].map((pk) => pk.toBytes())),
        bls.aggregatePublicKeys([pks[2], pks[3]].map((pk) => pk.toBytes())),
      ];

      const aggSig = bls.aggregateSignatures(sigs.map((sig) => sig.toBytes()));

      expect(bls.verifyMultiple(aggPubkeys, msgs, aggSig), "should be valid").to.be.true;
      expect(bls.verifyMultiple(aggPubkeys.reverse(), msgs, aggSig), "should fail - swaped pubkeys").to.be.false;
    });

    it("should verify aggregated signatures - same message", () => {
      const n = 4;
      const msg = randomMessage();
      const sks = getN(n, () => bls.SecretKey.fromKeygen());
      const pks = sks.map((sk) => sk.toPublicKey());
      const sigs = sks.map((sk) => sk.sign(msg));

      const aggregateSignature = bls.aggregateSignatures(sigs.map((sig) => sig.toBytes()));

      const isValid = bls.verifyMultiple(
        pks.map((pk) => pk.toBytes()),
        getN(4, () => msg), // Same message n times
        aggregateSignature
      );
      expect(isValid).to.be.true;
    });

    it("should fail to verify aggregated signatures - no public keys", () => {
      const sig = Buffer.alloc(96);
      const msg1 = randomMessage();
      const msg2 = randomMessage();

      const isValid = bls.verifyMultiple([], [msg2, msg1], sig);
      expect(isValid).to.be.false;
    });
  });

  describe("verifyMultipleSignatures", () => {
    it("Should verify multiple signatures", () => {
      const n = 4;
      const dataArr = getN(n, () => {
        const sk = bls.SecretKey.fromKeygen();
        const pk = sk.toPublicKey();
        const msg = randomMessage();
        const sig = sk.sign(msg);
        return {pk, msg, sig};
      });
      const pks = dataArr.map((data) => data.pk);
      const msgs = dataArr.map((data) => data.msg);
      const sigs = dataArr.map((data) => data.sig);

      expect(bls.Signature.verifyMultipleSignatures(pks, msgs, sigs)).to.equal(true, "class interface failed");

      expect(
        bls.verifyMultipleSignatures(
          pks.map((pk) => pk.toBytes()),
          msgs,
          sigs.map((sig) => sig.toBytes())
        )
      ).to.equal(true, "functional (bytes serialized) interface failed");
    });

    it("Test fails correctly against a malicous signature", async () => {
      const pks = maliciousVerifyMultipleSignaturesData.pks.map(bls.PublicKey.fromHex);
      const msgs = maliciousVerifyMultipleSignaturesData.msgs.map(hexToBytes);
      const sigs = maliciousVerifyMultipleSignaturesData.sigs.map(bls.Signature.fromHex);

      maliciousVerifyMultipleSignaturesData.manipulated.forEach((isManipulated, i) => {
        expect(sigs[i].verify(pks[i], msgs[i])).to.equal(
          !isManipulated,
          isManipulated ? "Manipulated signature should not verify" : "Ok signature should verify"
        );
      });

      // This method (AggregateVerify in BLS spec lingo) should verify

      const dangerousAggSig = bls.Signature.aggregate(sigs);
      expect(dangerousAggSig.verifyMultiple(pks, msgs)).to.equal(
        true,
        "Malicious signature should be validated with bls.verifyMultiple"
      );

      // This method is expected to catch the malicious signature and not verify
      expect(bls.Signature.verifyMultipleSignatures(pks, msgs, sigs)).to.equal(
        false,
        "Malicous signature should not validate with bls.verifyMultipleSignatures"
      );
    });
  });
}
Run prettier 2020-11-05 20:55:25 +00:00			`import {expect} from "chai";`
Define common implementation 2020-11-20 19:03:17 +00:00			`import {IBls} from "../../src/interface";`
Fix lint errors 2020-11-20 12:27:30 +00:00			`import {getN, randomMessage} from "../util";`
Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00			`import {hexToBytes} from "../../src/helpers";`
Move test data to file 2020-12-02 23:15:39 +00:00			`import {maliciousVerifyMultipleSignaturesData} from "../data/malicious-signature-test-data";`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00
Fix type errors in benchmark runner Lint issues 2020-11-20 19:35:32 +00:00			`export function runIndexTests(bls: IBls): void {`
Fix lint errors 2020-11-20 12:27:30 +00:00			`// eslint-disable-next-line @typescript-eslint/explicit-function-return-type`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`function getRandomData() {`
Consistent naming 2020-11-30 18:01:13 +00:00			`const sk = bls.SecretKey.fromKeygen();`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const pk = sk.toPublicKey();`
			`const msg = randomMessage();`
Clean interface 2020-11-25 16:09:44 +00:00			`const sig = sk.sign(msg);`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`return {sk, pk, msg, sig};`
			`}`

			`describe("verify", () => {`
fix tests 2019-09-17 20:03:24 +00:00			`it("should verify signature", () => {`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const {pk, msg, sig} = getRandomData();`
			`const pkHex = pk.toHex();`
			`const isValid = bls.verify(pk.toBytes(), msg, sig.toBytes());`
			`expect(isValid, "fail verify").to.be.true;`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`// Make sure to not modify original pubkey when verifying`
			`expect(pk.toHex()).to.be.equal(pkHex, "pubkey modified when verifying");`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`

fix tests 2019-09-17 20:03:24 +00:00			`it("should fail verify empty signature", () => {`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const {pk, msg} = getRandomData();`
			`const emptySig = Buffer.alloc(96);`
			`const isValid = bls.verify(pk.toBytes(), msg, emptySig);`
			`expect(isValid).to.be.false;`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`

fix tests 2019-09-17 20:03:24 +00:00			`it("should fail verify signature of different message", () => {`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const {pk, sig} = getRandomData();`
			`const msg2 = randomMessage();`
			`const isValid = bls.verify(pk.toBytes(), msg2, sig.toBytes());`
			`expect(isValid).to.be.false;`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`

fix tests 2019-09-17 20:03:24 +00:00			`it("should fail verify signature signed by different key", () => {`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const {msg, sig} = getRandomData();`
			`const {pk: pk2} = getRandomData();`
			`const isValid = bls.verify(pk2.toBytes(), msg, sig.toBytes());`
			`expect(isValid).to.be.false;`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`
			`});`

Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`describe("verify multiple", () => {`
Fix lint errors 2020-11-20 12:27:30 +00:00			`it("should verify aggregated signatures", () => {`
Consistent naming 2020-11-30 18:01:13 +00:00			`const sks = getN(4, () => bls.SecretKey.fromKeygen());`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const msgs = getN(2, () => randomMessage());`
			`const pks = sks.map((sk) => sk.toPublicKey());`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Clean interface 2020-11-25 16:09:44 +00:00			`const sigs = [sks[0].sign(msgs[0]), sks[1].sign(msgs[0]), sks[2].sign(msgs[1]), sks[3].sign(msgs[1])];`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const aggPubkeys = [`
Consistent naming 2020-11-30 18:01:13 +00:00			`bls.aggregatePublicKeys([pks[0], pks[1]].map((pk) => pk.toBytes())),`
			`bls.aggregatePublicKeys([pks[2], pks[3]].map((pk) => pk.toBytes())),`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`];`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const aggSig = bls.aggregateSignatures(sigs.map((sig) => sig.toBytes()));`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`expect(bls.verifyMultiple(aggPubkeys, msgs, aggSig), "should be valid").to.be.true;`
			`expect(bls.verifyMultiple(aggPubkeys.reverse(), msgs, aggSig), "should fail - swaped pubkeys").to.be.false;`
			`});`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`it("should verify aggregated signatures - same message", () => {`
			`const n = 4;`
			`const msg = randomMessage();`
Consistent naming 2020-11-30 18:01:13 +00:00			`const sks = getN(n, () => bls.SecretKey.fromKeygen());`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const pks = sks.map((sk) => sk.toPublicKey());`
Clean interface 2020-11-25 16:09:44 +00:00			`const sigs = sks.map((sk) => sk.sign(msg));`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const aggregateSignature = bls.aggregateSignatures(sigs.map((sig) => sig.toBytes()));`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const isValid = bls.verifyMultiple(`
			`pks.map((pk) => pk.toBytes()),`
			`getN(4, () => msg), // Same message n times`
Replace herumi src with BLST 2020-11-19 00:23:34 +00:00			`aggregateSignature`
add faster signature verification 2019-08-28 13:57:26 +00:00			`);`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`expect(isValid).to.be.true;`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`

fix tests 2019-09-17 20:03:24 +00:00			`it("should fail to verify aggregated signatures - no public keys", () => {`
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const sig = Buffer.alloc(96);`
			`const msg1 = randomMessage();`
			`const msg2 = randomMessage();`
Move to packages/bls 2019-08-05 15:48:26 +00:00
Update tests to run both implementations 2020-11-19 14:41:45 +00:00			`const isValid = bls.verifyMultiple([], [msg2, msg1], sig);`
			`expect(isValid).to.be.false;`
Move to packages/bls 2019-08-05 15:48:26 +00:00			`});`
			`});`
Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00
			`describe("verifyMultipleSignatures", () => {`
			`it("Should verify multiple signatures", () => {`
			`const n = 4;`
			`const dataArr = getN(n, () => {`
			`const sk = bls.SecretKey.fromKeygen();`
			`const pk = sk.toPublicKey();`
			`const msg = randomMessage();`
			`const sig = sk.sign(msg);`
			`return {pk, msg, sig};`
			`});`
			`const pks = dataArr.map((data) => data.pk);`
			`const msgs = dataArr.map((data) => data.msg);`
			`const sigs = dataArr.map((data) => data.sig);`

Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00			`expect(bls.Signature.verifyMultipleSignatures(pks, msgs, sigs)).to.equal(true, "class interface failed");`

Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00			`expect(`
			`bls.verifyMultipleSignatures(`
			`pks.map((pk) => pk.toBytes()),`
			`msgs,`
			`sigs.map((sig) => sig.toBytes())`
			`)`
			`).to.equal(true, "functional (bytes serialized) interface failed");`
			`});`

			`it("Test fails correctly against a malicous signature", async () => {`
Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00			`const pks = maliciousVerifyMultipleSignaturesData.pks.map(bls.PublicKey.fromHex);`
Move test data to file 2020-12-02 23:15:39 +00:00			`const msgs = maliciousVerifyMultipleSignaturesData.msgs.map(hexToBytes);`
Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00			`const sigs = maliciousVerifyMultipleSignaturesData.sigs.map(bls.Signature.fromHex);`
Move test data to file 2020-12-02 23:15:39 +00:00
			`maliciousVerifyMultipleSignaturesData.manipulated.forEach((isManipulated, i) => {`
Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00			`expect(sigs[i].verify(pks[i], msgs[i])).to.equal(`
Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00			`!isManipulated,`
			`isManipulated ? "Manipulated signature should not verify" : "Ok signature should verify"`
			`);`
			`});`

			`// This method (AggregateVerify in BLS spec lingo) should verify`
Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00
			`const dangerousAggSig = bls.Signature.aggregate(sigs);`
			`expect(dangerousAggSig.verifyMultiple(pks, msgs)).to.equal(`
Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00			`true,`
			`"Malicious signature should be validated with bls.verifyMultiple"`
			`);`

			`// This method is expected to catch the malicious signature and not verify`
Use class interface for more transparent errors 2020-12-02 23:32:42 +00:00			`expect(bls.Signature.verifyMultipleSignatures(pks, msgs, sigs)).to.equal(`
Test verifyMultipleSignatures against malicious input 2020-12-02 23:12:40 +00:00			`false,`
			`"Malicous signature should not validate with bls.verifyMultipleSignatures"`
			`);`
			`});`
			`});`
Define common implementation 2020-11-20 19:03:17 +00:00			`}`