bitcoinjs-lib/test/ecdsa.js

var assert = require('assert')
var crypto = require('../').crypto
var ecdsa = require('..').ecdsa
var sec = require('../src/jsbn/sec.js')
var BigInteger = require('../src/jsbn/jsbn.js')
var ecparams = sec("secp256k1")
var rng = require('secure-random')

var BigInteger = require('..').BigInteger
var ECKey = require('..').ECKey
var ECPubKey = require('..').ECPubKey
var Message = require('..').Message

describe('ecdsa', function() {
  describe('recoverPubKey', function() {
    it('succesfully recovers a public key', function() {
      var addr = 'mgQK8S6CfSXKjPmnujArSmVxafeJfrZsa3'
      var signature = new Buffer('H0PG6+PUo96UPTJ/DVj8aBU5it+Nuli4YdsLuTMvfJxoHH9Jb7jYTQXCCOX2jrTChD5S1ic3vCrUQHdmB5/sEQY=', 'base64')
      var obj = ecdsa.parseSigCompact(signature)
      var pubKey = new ECPubKey(ecdsa.recoverPubKey(obj.r, obj.s, Message.magicHash('1111'), obj.i))

      assert.equal(pubKey.toHex(true), '02e8fcf4d749b35879bc1f3b14b49e67ab7301da3558c5a9b74a54f1e6339c334c')
    })
  })

  describe('sign/verify', function() {
    it('Signing and Verifying', function () {
      var s1 = ECKey.makeRandom()
      var sig_a = s1.sign(BigInteger.ZERO)

      assert.ok(sig_a, 'Sign null')
      assert.ok(s1.pub.verify(BigInteger.ZERO, sig_a))

      var message = new Buffer(1024) // More or less random :P
      var hash = crypto.sha256(message)
      var sig_b = s1.sign(hash)
      assert.ok(sig_b, 'Sign random string')
      assert.ok(s1.pub.verify(hash, sig_b))

      var message2 = new Buffer(
        '12dce2c169986b3346827ffb2305cf393984627f5f9722a1b1368e933c8d' +
        'd296653fbe5d7ac031c4962ad0eb1c4298c3b91d244e1116b4a76a130c13' +
        '1e7aec7fa70184a71a2e66797052831511b93c6e8d72ae58a1980eaacb66' +
        '8a33f50d7cefb96a5dab897b5efcb99cbafb0d777cb83fc9b2115b69c0fa' +
        '3d82507b932b84e4', 'hex')

      var hash2 = crypto.sha256(message2)

      var sig_c = new Buffer(
        '3044022038d9b8dd5c9fbf330565c1f51d72a59ba869aeb2c2001be959d3' +
        '79e861ec71960220a73945f32cf90d03127d2c3410d16cee120fa1a4b4c3' +
        'f273ab082801a95506c4', 'hex')

      var s2 = new Buffer(
        '045a1594316e433fb91f35ef4874610d22177c3f1a1060f6c1e70a609d51' +
        'b20be5795cd2a5eae0d6b872ba42db95e9afaeea3fbb89e98099575b6828' +
        '609a978528', 'hex')

      assert.ok(ecdsa.verify(hash2, sig_c, s2), 'Verify constant signature')
    })

    it('should sign with low S value', function() {
      var priv = ECKey.fromHex('ca48ec9783cf3ad0dfeff1fc254395a2e403cbbc666477b61b45e31d3b8ab458')
      var message = 'Vires in numeris'
      var signature = priv.sign(message)
      var parsed = ecdsa.parseSig(signature)

      // Check that the 's' value is 'low', to prevent possible transaction malleability as per
      // https://github.com/bitcoin/bips/blob/master/bip-0062.mediawiki#low-s-values-in-signatures
      assert.ok(parsed.s.compareTo(ecparams.getN().divide(BigInteger.valueOf(2))) <= 0)

      assert.ok(priv.pub.verify(message, signature))
    })
  })
})
Adds recoverPubKey simple test 2014-03-28 18:24:23 +01:00			`var assert = require('assert')`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`var crypto = require('../').crypto`
			`var ecdsa = require('..').ecdsa`
Moves 'low S value' test from eckey.js to ecdsa.js 2014-04-17 06:33:35 +02:00			`var sec = require('../src/jsbn/sec.js')`
			`var BigInteger = require('../src/jsbn/jsbn.js')`
			`var ecparams = sec("secp256k1")`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`var rng = require('secure-random')`

			`var BigInteger = require('..').BigInteger`
			`var ECKey = require('..').ECKey`
			`var ECPubKey = require('..').ECPubKey`
			`var Message = require('..').Message`
Adds recoverPubKey simple test 2014-03-28 18:24:23 +01:00
			`describe('ecdsa', function() {`
			`describe('recoverPubKey', function() {`
			`it('succesfully recovers a public key', function() {`
			`var addr = 'mgQK8S6CfSXKjPmnujArSmVxafeJfrZsa3'`
Removes use of convert module 2014-04-16 20:13:51 +02:00			`var signature = new Buffer('H0PG6+PUo96UPTJ/DVj8aBU5it+Nuli4YdsLuTMvfJxoHH9Jb7jYTQXCCOX2jrTChD5S1ic3vCrUQHdmB5/sEQY=', 'base64')`
Adds recoverPubKey simple test 2014-03-28 18:24:23 +01:00			`var obj = ecdsa.parseSigCompact(signature)`
Merge branch 'msgvers-patch2' of github.com:dcousens/bitcoinjs-lib into dcousens-msgvers-patch2 Conflicts: src/message.js 2014-03-31 04:08:25 +02:00			`var pubKey = new ECPubKey(ecdsa.recoverPubKey(obj.r, obj.s, Message.magicHash('1111'), obj.i))`
Adds recoverPubKey simple test 2014-03-28 18:24:23 +01:00
			`assert.equal(pubKey.toHex(true), '02e8fcf4d749b35879bc1f3b14b49e67ab7301da3558c5a9b74a54f1e6339c334c')`
			`})`
			`})`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
			`describe('sign/verify', function() {`
			`it('Signing and Verifying', function () {`
Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`var s1 = ECKey.makeRandom()`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`var sig_a = s1.sign(BigInteger.ZERO)`

			`assert.ok(sig_a, 'Sign null')`
Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`assert.ok(s1.pub.verify(BigInteger.ZERO, sig_a))`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`var message = new Buffer(1024) // More or less random :P`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`var hash = crypto.sha256(message)`
			`var sig_b = s1.sign(hash)`
			`assert.ok(sig_b, 'Sign random string')`
Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`assert.ok(s1.pub.verify(hash, sig_b))`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
Removes use of convert module 2014-04-16 20:13:51 +02:00			`var message2 = new Buffer(`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`'12dce2c169986b3346827ffb2305cf393984627f5f9722a1b1368e933c8d' +`
			`'d296653fbe5d7ac031c4962ad0eb1c4298c3b91d244e1116b4a76a130c13' +`
			`'1e7aec7fa70184a71a2e66797052831511b93c6e8d72ae58a1980eaacb66' +`
			`'8a33f50d7cefb96a5dab897b5efcb99cbafb0d777cb83fc9b2115b69c0fa' +`
Removes use of convert module 2014-04-16 20:13:51 +02:00			`'3d82507b932b84e4', 'hex')`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
			`var hash2 = crypto.sha256(message2)`

Removes use of convert module 2014-04-16 20:13:51 +02:00			`var sig_c = new Buffer(`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`'3044022038d9b8dd5c9fbf330565c1f51d72a59ba869aeb2c2001be959d3' +`
			`'79e861ec71960220a73945f32cf90d03127d2c3410d16cee120fa1a4b4c3' +`
Removes use of convert module 2014-04-16 20:13:51 +02:00			`'f273ab082801a95506c4', 'hex')`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
Removes use of convert module 2014-04-16 20:13:51 +02:00			`var s2 = new Buffer(`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`'045a1594316e433fb91f35ef4874610d22177c3f1a1060f6c1e70a609d51' +`
			`'b20be5795cd2a5eae0d6b872ba42db95e9afaeea3fbb89e98099575b6828' +`
Removes use of convert module 2014-04-16 20:13:51 +02:00			`'609a978528', 'hex')`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00
			`assert.ok(ecdsa.verify(hash2, sig_c, s2), 'Verify constant signature')`
			`})`
Moves 'low S value' test from eckey.js to ecdsa.js 2014-04-17 06:33:35 +02:00
			`it('should sign with low S value', function() {`
Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`var priv = ECKey.fromHex('ca48ec9783cf3ad0dfeff1fc254395a2e403cbbc666477b61b45e31d3b8ab458')`
Moves 'low S value' test from eckey.js to ecdsa.js 2014-04-17 06:33:35 +02:00			`var message = 'Vires in numeris'`
			`var signature = priv.sign(message)`
			`var parsed = ecdsa.parseSig(signature)`

			`// Check that the 's' value is 'low', to prevent possible transaction malleability as per`
			`// https://github.com/bitcoin/bips/blob/master/bip-0062.mediawiki#low-s-values-in-signatures`
			`assert.ok(parsed.s.compareTo(ecparams.getN().divide(BigInteger.valueOf(2))) <= 0)`

Migrates ECKey to stricter API 2014-04-17 11:08:16 +02:00			`assert.ok(priv.pub.verify(message, signature))`
Moves 'low S value' test from eckey.js to ecdsa.js 2014-04-17 06:33:35 +02:00			`})`
Moves test/misc.js tests to appropriate location 2014-04-16 20:10:05 +02:00			`})`
Adds recoverPubKey simple test 2014-03-28 18:24:23 +01:00			`})`