feat: update pkpSign test to use verify all signing schemes and remove extra validation leaving it as consumer responsibility

Author: FedericoAmura

local-tests/tests/testUseEoaSessionSigsToPkpSign.ts

@@ -1,13 +1,12 @@
+import { p256 } from '@noble/curves/p256';
+import { p384 } from '@noble/curves/p384';
+import { secp256k1 } from '@noble/curves/secp256k1';
 import { hexToBytes } from '@noble/hashes/utils';
 
 import { UnknownSignatureError } from '@lit-protocol/constants';
-import {
-  curveFunctions,
-  hashLitMessage,
-  verifyLitSignature,
-} from '@lit-protocol/crypto';
+import { hashLitMessage } from '@lit-protocol/crypto';
 import { log } from '@lit-protocol/misc';
-import { SigType } from '@lit-protocol/types';
+import { EcdsaSigType, SigType } from '@lit-protocol/types';
 
 import { getEoaAuthContext } from 'local-tests/setup/session-sigs/get-eoa-session-sigs';
 import { TinnyEnvironment } from 'local-tests/setup/tinny-environment';
@@ -19,6 +18,13 @@ interface SigningSchemeConfig {
   signingScheme: SigType;
 }
 
+// Map the right curve function per signing scheme
+export const ecdsaCurveFunctions: Record<EcdsaSigType, any> = {
+  EcdsaK256Sha256: secp256k1,
+  EcdsaP256Sha256: p256,
+  EcdsaP384Sha384: p384,
+} as const;
+
 /**
  * Test Commands:
  * ✅ NETWORK=naga-dev yarn test:local --filter=testUseEoaSessionSigsToPkpSign
@@ -32,9 +38,13 @@ export const testUseEoaSessionSigsToPkpSign = async (
   const signingSchemeConfigs: SigningSchemeConfig[] = [
     // BLS
     // {
-    //   signingScheme: 'Bls12381G1ProofOfPossession', // TODO pkpSignature.signature: '{ProofOfPossession:984ffb9ef7a0e6225dd074bade4b9494fab3487ff543f25a90d86f794cbf190ed20179df6eb6dd3eb9a285838d3cf4980e5e7028688e0461bd1cb95c075046fcafa343d3702e7edff70fb8eb8ada130f58fa45140ab2d90f24b1309b026d98d6}'
+    //   signingScheme: 'Bls12381', // TODO nodes accept this signing scheme but they throw an unexpected error
     //   hashesMessage: false,
     // },
+    {
+      signingScheme: 'Bls12381G1ProofOfPossession',
+      hashesMessage: false,
+    },
     // ECDSA
     {
       hasRecoveryId: true,
@@ -59,49 +69,48 @@ export const testUseEoaSessionSigsToPkpSign = async (
       signingScheme: 'SchnorrEd25519Sha512',
       hashesMessage: false,
     },
-    // {
-    //   signingScheme: 'SchnorrK256Sha256', // TODO signature of length 64 expected, got 65
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrP256Sha256', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrP384Sha384', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrRistretto25519Sha512', // TODO curve.verify is not a function
-    //   hashesMessage: false,
-    // },
+    {
+      signingScheme: 'SchnorrK256Sha256',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrP256Sha256',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrP384Sha384',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrRistretto25519Sha512',
+      hashesMessage: false,
+    },
     {
       signingScheme: 'SchnorrEd448Shake256',
       hashesMessage: false,
     },
-    // {
-    //   signingScheme: 'SchnorrRedJubjubBlake2b512', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrK256Taproot', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrRedDecaf377Blake2b512', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
-    // {
-    //   signingScheme: 'SchnorrkelSubstrate', // TODO Expected pkpSignature to consistently verify its components
-    //   hashesMessage: false,
-    // },
+    {
+      signingScheme: 'SchnorrRedJubjubBlake2b512',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrK256Taproot',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrRedDecaf377Blake2b512',
+      hashesMessage: false,
+    },
+    {
+      signingScheme: 'SchnorrkelSubstrate',
+      hashesMessage: false,
+    },
   ];
 
   for (const signingSchemeConfig of signingSchemeConfigs) {
     try {
       const signingScheme = signingSchemeConfig.signingScheme;
       log(`Checking testUseEoaSessionSigsToPkpSign for ${signingSchemeConfig}`);
-      // const eoaSessionSigs = await getEoaSessionSigs(devEnv, alice);
 
       const pkpSignature = await devEnv.litNodeClient.pkpSign({
         pubKey: alice.pkp.publicKey,
@@ -119,6 +128,15 @@ export const testUseEoaSessionSigsToPkpSign = async (
         'signedData',
         'publicKey',
       ]) {
+        // Bls12381G1ProofOfPossession signature is a json string with ProofOfPossession, not an hex signature
+        if (
+          signingScheme === 'Bls12381G1ProofOfPossession' &&
+          hexString === 'signature' &&
+          pkpSignature.signature.startsWith('{')
+        ) {
+          continue;
+        }
+
         if (
           !pkpSignature[hexString] ||
           !pkpSignature[hexString].startsWith('0x')
@@ -139,21 +157,8 @@ export const testUseEoaSessionSigsToPkpSign = async (
         );
       }
 
-      // Signature, public key and signed data verification
-      const signatureVerification = verifyLitSignature(
-        signingSchemeConfig.signingScheme,
-        pkpSignature.publicKey.replace('0x', ''),
-        pkpSignature.signedData.replace('0x', ''),
-        pkpSignature.signature.replace('0x', '')
-      );
-      if (!signatureVerification) {
-        throw new Error(
-          `Expected pkpSignature to consistently verify its components. Signing Scheme: ${signingScheme}`
-        );
-      }
-
       if (signingSchemeConfig.recoversPublicKey) {
-        const curve = curveFunctions[signingScheme];
+        const curve = ecdsaCurveFunctions[signingScheme];
         const signatureBytes = hexToBytes(
           pkpSignature.signature.replace(/^0x/, '')
         );
@@ -182,7 +187,7 @@ export const testUseEoaSessionSigsToPkpSign = async (
       }
 
       const messageHash = signingSchemeConfig.hashesMessage
-        ? hashLitMessage(signingScheme, alice.loveLetter)
+        ? hashLitMessage(signingScheme as EcdsaSigType, alice.loveLetter)
         : alice.loveLetter;
       const messageHashHex = Buffer.from(messageHash).toString('hex');
       if (pkpSignature.signedData.replace('0x', '') !== messageHashHex) {

packages/constants/src/lib/constants/curves.ts

@@ -46,8 +46,7 @@ export const LIT_CURVE = {
   ...LIT_ECDSA_VARIANT,
 };
 
-export type LIT_CURVE_TYPE = keyof typeof LIT_CURVE; // Identical to Sig
-// This should replicate SigShare.sigType in types package
+export type LIT_CURVE_TYPE = keyof typeof LIT_CURVE; // Identical to SigType = BlsSigType | EcdsaSigType | FrostSigType;
 export type LIT_CURVE_VALUES = (typeof LIT_CURVE)[keyof typeof LIT_CURVE];
 
 export const CURVE_GROUPS = ['BLS', 'ECDSA', 'FROST'] as const;

packages/crypto/src/lib/crypto.ts

@@ -1,14 +1,5 @@
-import { bls12_381 } from '@noble/curves/bls12-381';
-import { ed25519, RistrettoPoint } from '@noble/curves/ed25519';
-import { ed448 } from '@noble/curves/ed448';
-import { jubjub } from '@noble/curves/jubjub';
-import { p256 } from '@noble/curves/p256';
-import { p384 } from '@noble/curves/p384';
-import { schnorr as schnorrK256, secp256k1 } from '@noble/curves/secp256k1';
-import { blake2b } from '@noble/hashes/blake2b';
 import { sha256 } from '@noble/hashes/sha256';
-import { shake256 } from '@noble/hashes/sha3';
-import { sha384, sha512 } from '@noble/hashes/sha512';
+import { sha384 } from '@noble/hashes/sha512';
 
 import {
   CurveTypeNotFoundError,
@@ -30,11 +21,11 @@ import { nacl } from '@lit-protocol/nacl';
 import {
   CleanLitNodeSignature,
   CombinedLitNodeSignature,
+  EcdsaSigType,
   LitActionSignedData,
   NodeAttestation,
   PKPSignEndpointResponse,
   SessionKeyPair,
-  SigType,
 } from '@lit-protocol/types';
 import {
   uint8arrayFromString,
@@ -489,48 +480,20 @@ export const checkSevSnpAttestation = async (
 };
 
 // Map the right hash function per signing scheme
-export const hashFunctions: Record<SigType, any> = {
-  Bls12381G1ProofOfPossession: sha256, // TODO needed here? Which hash?
+export const ecdsaHashFunctions: Record<
+  EcdsaSigType,
+  (arg0: Uint8Array) => Uint8Array
+> = {
   EcdsaK256Sha256: sha256,
   EcdsaP256Sha256: sha256,
   EcdsaP384Sha384: sha384,
-  SchnorrEd25519Sha512: sha512,
-  SchnorrK256Sha256: sha256,
-  SchnorrP256Sha256: sha256,
-  SchnorrP384Sha384: sha384,
-  SchnorrRistretto25519Sha512: sha512,
-  SchnorrEd448Shake256: (msg: Uint8Array) => shake256(msg, 114),
-  SchnorrRedJubjubBlake2b512: (msg: Uint8Array) => blake2b(msg, { dkLen: 64 }),
-  SchnorrK256Taproot: sha256,
-  SchnorrRedDecaf377Blake2b512: (msg: Uint8Array) =>
-    blake2b(msg, { dkLen: 64 }),
-  SchnorrkelSubstrate: (msg: Uint8Array) => blake2b(msg, { dkLen: 64 }),
-} as const;
-
-// Map the right curve function per signing scheme
-export const curveFunctions: Record<SigType, any> = {
-  Bls12381G1ProofOfPossession: bls12_381,
-  EcdsaK256Sha256: secp256k1,
-  EcdsaP256Sha256: p256,
-  EcdsaP384Sha384: p384,
-  SchnorrEd25519Sha512: ed25519,
-  SchnorrK256Sha256: schnorrK256,
-  SchnorrP256Sha256: p256,
-  SchnorrP384Sha384: p384,
-  SchnorrRistretto25519Sha512: (msg: Uint8Array) =>
-    RistrettoPoint.hashToCurve(sha512(msg)).toHex(),
-  SchnorrEd448Shake256: ed448,
-  SchnorrRedJubjubBlake2b512: jubjub,
-  SchnorrK256Taproot: secp256k1,
-  SchnorrRedDecaf377Blake2b512: p256, // TODO check curve function
-  SchnorrkelSubstrate: ed25519, // TODO check curve function
 } as const;
 
 export function hashLitMessage(
-  signingScheme: SigType,
+  signingScheme: EcdsaSigType,
   message: Uint8Array
 ): Uint8Array {
-  const hashFn = hashFunctions[signingScheme];
+  const hashFn = ecdsaHashFunctions[signingScheme];
 
   if (!hashFn) {
     throw new CurveTypeNotFoundError(
@@ -545,25 +508,3 @@ export function hashLitMessage(
 
   return hashFn(message);
 }
-
-export function verifyLitSignature(
-  signingScheme: SigType,
-  publicKey: string,
-  message: string,
-  signature: string
-) {
-  const curve = curveFunctions[signingScheme];
-  if (!curve) {
-    throw new CurveTypeNotFoundError(
-      {
-        info: {
-          signingScheme,
-        },
-      },
-      `No known curve function for specified signing scheme ${signingScheme}`
-    );
-  }
-
-  // TODO call correct verification on all curve functions
-  return curve.verify(signature, message, publicKey);
-}

packages/lit-node-client-nodejs/src/lib/lit-node-client-nodejs.ts

@@ -37,6 +37,7 @@ import {
   PRODUCT_IDS_TYPE,
   SIWE_URI_PREFIX,
   UnknownError,
+  UnknownSignatureError,
   UnsupportedMethodError,
   WalletSignatureNotFoundError,
 } from '@lit-protocol/constants';
@@ -72,6 +73,7 @@ import {
 import { nacl } from '@lit-protocol/nacl';
 import {
   AuthMethod,
+  EcdsaSigType,
   ExecuteJsValueResponse,
   LitNodeSignature,
 } from '@lit-protocol/types';
@@ -899,7 +901,10 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
         const toSign =
           CURVE_GROUP_BY_CURVE_TYPE[params.signingScheme] !== 'ECDSA'
             ? params.messageToSign!
-            : hashLitMessage(params.signingScheme, params.messageToSign!);
+            : hashLitMessage(
+                params.signingScheme as EcdsaSigType,
+                params.messageToSign!
+              );
 
         const reqBody: JsonPkpSignRequest = {
           toSign: normalizeArray(toSign),
@@ -958,9 +963,17 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
 
       return signatures;
     } catch (e) {
-      // TODO remove log and re throw pattern. Wrap in LitError
-      console.error('Error getting signature', e);
-      throw e;
+      throw new UnknownSignatureError(
+        {
+          info: {
+            responseData,
+            requestId,
+            threshold: this._getThreshold(),
+          },
+          cause: e,
+        },
+        'Could not combine pkp signature shares'
+      );
     }
   };
 

packages/types/src/lib/interfaces.ts

@@ -629,7 +629,12 @@ export interface FormattedMultipleAccs {
   formattedUnifiedAccessControlConditions: any;
 }
 
-// BLS TODO
+// BLS
+// ================== unifiedSignature: {
+// "signature":"{\"ProofOfPossession\":\"abff2ed7e23d0e7c01880e76fd66c84b23427842447ec5474a842ca729d5f21b675342aac3fe94386ffd02c6726b14740c4571efcf45fb86342fd806b6557bcfb32c225f006d7870eea0980810c26606779667786c1a875d563b5731c65da21f\"}",
+// "verifying_key":"\"af93eb21b135d6a95d46f03662168f34e0ea8a749d0579ac46aa7aff721c1259991997c0598aad6838678a2f17dd85e2\"",
+// "signed_data":"0102030405",
+// "recovery_id":null}
 // ECDSA
 // ================== unifiedSignature: {
 // "signature":"\"F0E7A72197D93FFF7A5A22B2A865511C6A117DE75E08519A2298061485169A2B6EE44425E45AD3A7455720C5D786EFFFBB24D94DD4E8F2143CDBF777BBCA6FE1\"",