feat(stack): encode signatures as concatenated bytes

tmpolaczyk · tmpolaczyk · commit 4b16e47c55a8 · 2022-08-17T14:56:49.000+02:00
diff --git a/stack/src/operators.rs b/stack/src/operators.rs
@@ -2,11 +2,8 @@ use crate::{ScriptContext, ScriptError};
 use scriptful::prelude::{ConditionStack, Stack};
 use serde::{Deserialize, Serialize};
 use witnet_crypto::hash::{calculate_sha256, Sha256};
-use witnet_data_structures::chain::Hash;
-use witnet_data_structures::{
-    chain::{KeyedSignature, PublicKeyHash},
-    proto::ProtobufConvert,
-};
+use witnet_data_structures::chain::{Hash, PublicKey, Secp256k1Signature, Signature};
+use witnet_data_structures::chain::{KeyedSignature, PublicKeyHash};
 
 #[derive(Clone, Debug, PartialEq, Eq, Deserialize, Serialize)]
 // TODO: Include more operators
@@ -33,7 +30,7 @@ pub enum MyOperator {
     EndIf,
 }
 
-#[derive(Clone, Debug, PartialEq, Deserialize, Serialize)]
+#[derive(Clone, Debug, PartialEq, Eq, Deserialize, Serialize)]
 pub enum MyValue {
     /// A binary value: either `true` or `false`.
     Boolean(bool),
@@ -43,6 +40,43 @@ pub enum MyValue {
     Bytes(Vec<u8>),
 }
 
+impl MyValue {
+    pub fn from_signature(ks: &KeyedSignature) -> Self {
+        let public_key_bytes = ks.public_key.to_bytes();
+        let signature_bytes = match &ks.signature {
+            Signature::Secp256k1(signature) => &signature.der,
+        };
+
+        let bytes = [&public_key_bytes[..], signature_bytes].concat();
+
+        MyValue::Bytes(bytes)
+    }
+
+    pub fn to_signature(&self) -> Result<KeyedSignature, ScriptError> {
+        match self {
+            MyValue::Bytes(bytes) => {
+                // Public keys are always 33 bytes, so first 33 bytes of KeyedSignature will always
+                // be the public key, and the rest will be the signature
+                if bytes.len() < 33 {
+                    return Err(ScriptError::InvalidSignature);
+                }
+                let (public_key_bytes, signature_bytes) = bytes.split_at(33);
+
+                let ks = KeyedSignature {
+                    public_key: PublicKey::try_from_slice(public_key_bytes)
+                        .expect("public_key_bytes must have length 33"),
+                    signature: Signature::Secp256k1(Secp256k1Signature {
+                        der: signature_bytes.to_vec(),
+                    }),
+                };
+
+                Ok(ks)
+            }
+            _ => Err(ScriptError::UnexpectedArgument),
+        }
+    }
+}
+
 fn equal_operator(stack: &mut Stack<MyValue>) -> Result<(), ScriptError> {
     let a = stack.pop().ok_or(ScriptError::EmptyStackPop)?;
     let b = stack.pop().ok_or(ScriptError::EmptyStackPop)?;
@@ -146,30 +180,21 @@ fn check_multi_sig(
 ) -> Result<bool, ScriptError> {
     let mut signed_pkhs = vec![];
     let mut keyed_signatures = vec![];
-    for signature in bytes_keyed_signatures {
-        match signature {
-            MyValue::Bytes(bytes) => {
-                // TODO: signatures are encoded using Protocol Buffers, maybe choose a different encoding?
-                let ks: KeyedSignature = KeyedSignature::from_pb_bytes(&bytes)
-                    .map_err(|_e| ScriptError::InvalidSignature)?;
-                let signed_pkh = ks.public_key.pkh();
-                signed_pkhs.push(signed_pkh);
-                let signature = ks
-                    .signature
-                    .clone()
-                    .try_into()
-                    .map_err(|_e| ScriptError::InvalidSignature)?;
-                let public_key = ks
-                    .public_key
-                    .clone()
-                    .try_into()
-                    .map_err(|_e| ScriptError::InvalidPublicKey)?;
-                keyed_signatures.push((signature, public_key));
-            }
-            _ => {
-                return Err(ScriptError::UnexpectedArgument);
-            }
-        }
+    for value in bytes_keyed_signatures {
+        let ks = value.to_signature()?;
+        let signed_pkh = ks.public_key.pkh();
+        signed_pkhs.push(signed_pkh);
+        let signature = ks
+            .signature
+            .clone()
+            .try_into()
+            .map_err(|_e| ScriptError::InvalidSignature)?;
+        let public_key = ks
+            .public_key
+            .clone()
+            .try_into()
+            .map_err(|_e| ScriptError::InvalidPublicKey)?;
+        keyed_signatures.push((signature, public_key));
     }
 
     let mut pkhs = vec![];
diff --git a/stack/src/tests.rs b/stack/src/tests.rs
@@ -4,7 +4,6 @@ use crate::{
 };
 use witnet_crypto::hash::calculate_sha256;
 use witnet_data_structures::chain::KeyedSignature;
-use witnet_data_structures::proto::ProtobufConvert;
 
 const EQUAL_OPERATOR_HASH: [u8; 20] = [
     52, 128, 191, 80, 253, 28, 169, 253, 237, 29, 0, 51, 201, 0, 31, 203, 157, 99, 218, 210,
@@ -161,7 +160,7 @@ fn test_check_sig() {
 
     let pk_1 = ks_1.public_key.clone();
 
-    let witness = vec![Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap()))];
+    let witness = vec![Item::Value(MyValue::from_signature(&ks_1))];
     let redeem_bytes = encode(&[
         Item::Value(MyValue::Bytes(pk_1.pkh().bytes().to_vec())),
         Item::Operator(MyOperator::CheckSig),
@@ -176,7 +175,7 @@ fn test_check_sig() {
         Ok(true)
     ));
 
-    let invalid_witness = vec![Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap()))];
+    let invalid_witness = vec![Item::Value(MyValue::from_signature(&ks_2))];
     assert!(matches!(
         execute_redeem_script(
             &encode(&invalid_witness).unwrap(),
@@ -198,8 +197,8 @@ fn test_check_multisig() {
     let pk_3 = ks_3.public_key.clone();
 
     let witness = vec![
-        Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap())),
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_1)),
+        Item::Value(MyValue::from_signature(&ks_2)),
     ];
     let redeem_bytes = encode(&[
         Item::Value(MyValue::Integer(2)),
@@ -220,8 +219,8 @@ fn test_check_multisig() {
     ));
 
     let other_valid_witness = vec![
-        Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap())),
-        Item::Value(MyValue::Bytes(ks_3.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_1)),
+        Item::Value(MyValue::from_signature(&ks_3)),
     ];
     assert!(matches!(
         execute_redeem_script(
@@ -234,8 +233,8 @@ fn test_check_multisig() {
 
     let ks_4 = test_ks_id(4);
     let invalid_witness = vec![
-        Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap())),
-        Item::Value(MyValue::Bytes(ks_4.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_1)),
+        Item::Value(MyValue::from_signature(&ks_4)),
     ];
     assert!(matches!(
         execute_redeem_script(
@@ -416,7 +415,7 @@ fn test_execute_script_atomic_swap() {
 
     // 1 can spend after timelock
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_1)),
         Item::Value(MyValue::Boolean(true)),
     ];
     assert!(matches!(
@@ -433,7 +432,7 @@ fn test_execute_script_atomic_swap() {
 
     // 1 cannot spend before timelock
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_1)),
         Item::Value(MyValue::Boolean(true)),
     ];
     assert!(matches!(
@@ -450,7 +449,7 @@ fn test_execute_script_atomic_swap() {
 
     // 2 can spend with secret
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_2)),
         Item::Value(MyValue::Bytes(secret)),
         Item::Value(MyValue::Boolean(false)),
     ];
@@ -468,7 +467,7 @@ fn test_execute_script_atomic_swap() {
 
     // 2 cannot spend with a wrong secret
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_2)),
         Item::Value(MyValue::Bytes(vec![0, 0, 0, 0])),
         Item::Value(MyValue::Boolean(false)),
     ];
@@ -512,7 +511,7 @@ fn test_execute_script_atomic_swap_2() {
     .unwrap();
 
     // 1 can spend after timelock
-    let witness_script = vec![Item::Value(MyValue::Bytes(ks_1.to_pb_bytes().unwrap()))];
+    let witness_script = vec![Item::Value(MyValue::from_signature(&ks_1))];
     assert!(matches!(
         execute_redeem_script(
             &encode(&witness_script).unwrap(),
@@ -539,7 +538,7 @@ fn test_execute_script_atomic_swap_2() {
 
     // 2 can spend with secret
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_2)),
         Item::Value(MyValue::Bytes(secret.clone())),
     ];
     assert!(matches!(
@@ -556,7 +555,7 @@ fn test_execute_script_atomic_swap_2() {
 
     // 2 cannot spend with a wrong secret
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_2)),
         Item::Value(MyValue::Bytes(vec![0, 0, 0, 0])),
     ];
     assert!(matches!(
@@ -573,7 +572,7 @@ fn test_execute_script_atomic_swap_2() {
 
     // 2 cannot spend after timelock
     let witness_script = vec![
-        Item::Value(MyValue::Bytes(ks_2.to_pb_bytes().unwrap())),
+        Item::Value(MyValue::from_signature(&ks_2)),
         Item::Value(MyValue::Bytes(secret)),
     ];
     assert!(matches!(
