ckb-multisig 1.1.1

Multi-signatures
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115

use ckb_crypto::secp::{Message, Privkey, Pubkey, Signature};
use rand::{Rng, thread_rng};
use std::collections::HashSet;

use crate::{error::ErrorKind, secp256k1::verify_m_of_n};

fn random_message() -> Message {
    let mut data = [0; 32];
    thread_rng().fill(&mut data[..]);
    loop {
        if let Ok(msg) = Message::from_slice(&data) {
            return msg;
        }
    }
}

fn random_signature(message: &Message) -> Signature {
    let secret_key = random_secret_key();
    secret_key.sign_recoverable(message).expect("sign")
}

fn random_secret_key() -> Privkey {
    let mut data = [0; 32];
    thread_rng().fill(&mut data[..]);
    loop {
        let key = Privkey::from_slice(&data);
        if key.pubkey().is_ok() {
            return key;
        }
    }
}

#[test]
fn test_m_of_n() {
    // (thresholds, sigs: [is_valid], pks, result)
    let test_set = [
        (2, vec![true, true], 3, Ok(())),
        (2, vec![true, true, true], 3, Ok(())),
        (3, vec![true, true, true], 3, Ok(())),
        (3, vec![true, false, true, true], 4, Ok(())),
        (
            2,
            vec![true, true, true],
            1,
            Err(ErrorKind::SigCountOverflow),
        ),
        (3, vec![true, true], 3, Err(ErrorKind::SigNotEnough)),
        (
            3,
            vec![true, true, false],
            3,
            Err(ErrorKind::Threshold {
                pass_sigs: 2,
                threshold: 3,
            }),
        ),
    ];
    for (threshold, sigs, pks, result) in test_set.iter() {
        let message = random_message();
        let sks: Vec<Privkey> = (0..sigs.len()).map(|_| random_secret_key()).collect();
        let pks: HashSet<Pubkey> = sks
            .iter()
            .map(|sk| sk.pubkey().expect("pk"))
            .take(*pks)
            .collect();
        let sigs: Vec<Signature> = sigs
            .iter()
            .enumerate()
            .map(|(i, valid)| {
                if *valid {
                    sks[i].sign_recoverable(&message).expect("sign")
                } else {
                    random_signature(&message)
                }
            })
            .collect();
        let verify_result =
            verify_m_of_n(&message, *threshold, &sigs, &pks).map_err(|err| err.kind());
        assert_eq!(&verify_result, result);
    }
}

#[test]
fn test_2_of_3_with_wrong_signature() {
    let message = random_message();
    let sks: Vec<Privkey> = (0..3).map(|_| random_secret_key()).collect();
    let pks: HashSet<Pubkey> = sks.iter().map(|sk| sk.pubkey().expect("pk")).collect();
    let sigs: Vec<Signature> = vec![
        sks[0].sign_recoverable(&message).expect("sign"),
        sks[2].sign_recoverable(&message).expect("sign"),
        random_signature(&message),
    ];
    let verify_result = verify_m_of_n(&message, 2, &sigs, &pks);
    assert!(verify_result.is_ok());
}

#[test]
fn test_duplicate_pubkeys() {
    let message = random_message();
    let sks: Vec<Privkey> = (0..3).map(|_| random_secret_key()).collect();
    let pks: HashSet<Pubkey> = sks.iter().map(|sk| sk.pubkey().expect("pk")).collect();
    let sigs: Vec<Signature> = vec![
        sks[0].sign_recoverable(&message).expect("sign"),
        sks[0].sign_recoverable(&message).expect("sign"),
        random_signature(&message),
    ];
    let verify_result = verify_m_of_n(&message, 2, &sigs, &pks).map_err(|err| err.kind());
    assert_eq!(
        verify_result,
        Err(ErrorKind::Threshold {
            pass_sigs: 1,
            threshold: 2
        })
    );
}