Bugfix: invalid resource type passed in CompactSignature

afk11 · afk11 · commit 183e79313cec · 2019-12-11T01:48:18.000Z
In the secp256k1 CompactSignature implementation we pass
the recoverable signature instead of the signature..
This is a bug, although it does make us wonder what the
goal of this design decision was (to extend Signature)
diff --git a/src/Crypto/EcAdapter/Impl/Secp256k1/Signature/CompactSignature.php b/src/Crypto/EcAdapter/Impl/Secp256k1/Signature/CompactSignature.php
@@ -33,31 +33,34 @@ class CompactSignature extends Signature implements CompactSignatureInterface
 
     /**
      * @param EcAdapter $ecAdapter
-     * @param resource $secp256k1_ecdsa_signature_t
+     * @param resource $secp256k1_recoverable_signature_t
      * @param int $recid
      * @param bool $compressed
      */
-    public function __construct(EcAdapter $ecAdapter, $secp256k1_ecdsa_signature_t, int $recid, bool $compressed)
+    public function __construct(EcAdapter $ecAdapter, $secp256k1_recoverable_signature_t, int $recid, bool $compressed)
     {
-        if (!is_resource($secp256k1_ecdsa_signature_t) || SECP256K1_TYPE_RECOVERABLE_SIG !== get_resource_type($secp256k1_ecdsa_signature_t)) {
-            throw new \RuntimeException('CompactSignature: must pass recoverable signature resource');
+        if (!is_resource($secp256k1_recoverable_signature_t) || SECP256K1_TYPE_RECOVERABLE_SIG !== get_resource_type($secp256k1_recoverable_signature_t)) {
+            throw new \RuntimeException('CompactSignature: must pass recoverable signature resource, not ' . $secp256k1_recoverable_signature_t);
         }
 
         $ser = '';
         $recidout = 0;
-        secp256k1_ecdsa_recoverable_signature_serialize_compact($ecAdapter->getContext(), $ser, $recidout, $secp256k1_ecdsa_signature_t);
+        secp256k1_ecdsa_recoverable_signature_serialize_compact($ecAdapter->getContext(), $ser, $recidout, $secp256k1_recoverable_signature_t);
         list ($r, $s) = array_map(
             function ($val) {
                 return (new Buffer($val))->getGmp();
             },
             str_split($ser, 32)
         );
 
-        $this->resource = $secp256k1_ecdsa_signature_t;
+        $this->resource = $secp256k1_recoverable_signature_t;
         $this->recid = $recid;
         $this->compressed = $compressed;
         $this->ecAdapter = $ecAdapter;
-        parent::__construct($ecAdapter, $r, $s, $secp256k1_ecdsa_signature_t);
+
+        $sig_t = null;
+        secp256k1_ecdsa_recoverable_signature_convert($this->ecAdapter->getContext(), $sig_t, $this->resource);
+        parent::__construct($ecAdapter, $r, $s, $sig_t);
     }
 
     /**
diff --git a/tests/Crypto/EcAdapter/Impl/Secp256k1/Signature/CompactSignatureTest.php b/tests/Crypto/EcAdapter/Impl/Secp256k1/Signature/CompactSignatureTest.php
@@ -20,7 +20,7 @@ public function testNotResource()
         if (!function_exists('secp256k1_context_create')) {
             $this->markTestSkipped("secp256k1 not installed");
         }
-        $this->expectException(\InvalidArgumentException::class);
+        $this->expectException(\RuntimeException::class);
         $this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');
         $this->callConstructor("");
     }
@@ -29,7 +29,7 @@ public function testWrongResourceType()
         if (!function_exists('secp256k1_context_create')) {
             $this->markTestSkipped("secp256k1 not installed");
         }
-        $this->expectException(\InvalidArgumentException::class);
+        $this->expectException(\RuntimeException::class);
         $this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');
         $this->callConstructor(gmp_init(1));
     }
diff --git a/tests/Crypto/EcAdapter/Impl/Secp256k1/Signature/SignatureTest.php b/tests/Crypto/EcAdapter/Impl/Secp256k1/Signature/SignatureTest.php
@@ -20,7 +20,7 @@ public function testNotResource()
             $this->markTestSkipped("secp256k1 not installed");
         }
         $this->expectException(\InvalidArgumentException::class);
-        $this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');
+        $this->expectExceptionMessage('Secp256k1\Signature\Signature expects ' . SECP256K1_TYPE_SIG . ' resource');
         $this->callConstructor("");
     }
     public function testWrongResourceType()
@@ -29,7 +29,7 @@ public function testWrongResourceType()
             $this->markTestSkipped("secp256k1 not installed");
         }
         $this->expectException(\InvalidArgumentException::class);
-        $this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');
+        $this->expectExceptionMessage('Secp256k1\Signature\Signature expects ' . SECP256K1_TYPE_SIG . ' resource');
         $this->callConstructor(gmp_init(1));
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ public function testNotResource()`
`20`	`20`	`if (!function_exists('secp256k1_context_create')) {`
`21`	`21`	`$this->markTestSkipped("secp256k1 not installed");`
`22`	`22`	`}`
`23`		`- $this->expectException(\InvalidArgumentException::class);`
	`23`	`+ $this->expectException(\RuntimeException::class);`
`24`	`24`	`$this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');`
`25`	`25`	`$this->callConstructor("");`
`26`	`26`	`}`
`@@ -29,7 +29,7 @@ public function testWrongResourceType()`
`29`	`29`	`if (!function_exists('secp256k1_context_create')) {`
`30`	`30`	`$this->markTestSkipped("secp256k1 not installed");`
`31`	`31`	`}`
`32`		`- $this->expectException(\InvalidArgumentException::class);`
	`32`	`+ $this->expectException(\RuntimeException::class);`
`33`	`33`	`$this->expectExceptionMessage('CompactSignature: must pass recoverable signature resource');`
`34`	`34`	`$this->callConstructor(gmp_init(1));`
`35`	`35`	`}`