ChainSafe · spiral-ladder · Mar 20, 2026 · Mar 24, 2026 · Mar 31, 2026 · Apr 6, 2026
@@ -468,13 +468,12 @@ pub fn Signature_aggregate(env: napi.Env, cb: napi.CallbackInfo(2)) !napi.Value
     const sigs_len = try sigs_array.getArrayLength();
     if (sigs_len == 0) return error.EmptySignatureArray;
 
-    const sigs = try allocator.alloc(Signature, sigs_len);
+    const sigs = try allocator.alloc(*const Signature, sigs_len);
     defer allocator.free(sigs);
 
     for (0..sigs_len) |i| {
         const sig_value = try sigs_array.getElement(@intCast(i));
-        const sig = try env.unwrap(Signature, sig_value);
-        sigs[i] = sig.*;
+        sigs[i] = try env.unwrap(Signature, sig_value);
     }
 
     const agg_sig = AggregateSignature.aggregate(sigs, sigs_groupcheck) catch return error.AggregationFailed;
@@ -557,8 +556,9 @@ pub fn blst_aggregateVerify(
 
     const msgs = try allocator.alloc([32]u8, msgs_len);
     defer allocator.free(msgs);
-    const pk_ptrs = try allocator.alloc(*PublicKey, pks_len);
-    defer allocator.free(pk_ptrs);
+
+    const pks = try allocator.alloc(*PublicKey, pks_len);
+    defer allocator.free(pks);
 
     for (0..msgs_len) |i| {
         const msg_value = try msgs_array.getElement(@intCast(i));
@@ -567,11 +567,11 @@ pub fn blst_aggregateVerify(
         @memcpy(&msgs[i], msg_info.data[0..32]);
 
         const pk_value = try pks_array.getElement(@intCast(i));
-        pk_ptrs[i] = try env.unwrap(PublicKey, pk_value);
+        pks[i] = try env.unwrap(PublicKey, pk_value);
     }
 
     const pool = thread_pool orelse @panic("ThreadPool not initialized; call initThreadPool first");
-    const result = pool.aggregateVerify(sig, sig_groupcheck, msgs, DST, pk_ptrs, pks_validate) catch {
+    const result = pool.aggregateVerify(sig, sig_groupcheck, msgs, DST, pks, pks_validate) catch {
         return try env.getBoolean(false);
     };
 
@@ -603,13 +603,12 @@ pub fn blst_fastAggregateVerify(env: napi.Env, cb: napi.CallbackInfo(4)) !napi.V
         return try env.getBoolean(false);
     }
 
-    const pks = try allocator.alloc(PublicKey, pks_len);
+    const pks = try allocator.alloc(*const PublicKey, pks_len);
     defer allocator.free(pks);
 
     for (0..pks_len) |i| {
         const pk_value = try pks_array.getElement(@intCast(i));
-        const pk = try env.unwrap(PublicKey, pk_value);
-        pks[i] = pk.*;
+        pks[i] = try env.unwrap(PublicKey, pk_value);
     }
 
     var pairing_buf: [Pairing.sizeOf()]u8 align(@alignOf(Pairing)) = undefined;
@@ -717,13 +716,12 @@ pub fn blst_aggregateSignatures(env: napi.Env, cb: napi.CallbackInfo(2)) !napi.V
 
     if (sigs_len == 0) return error.EmptySignatureArray;
 
-    const sigs = try allocator.alloc(Signature, sigs_len);
+    const sigs = try allocator.alloc(*const Signature, sigs_len);
     defer allocator.free(sigs);
 
     for (0..sigs_len) |i| {
         const sig_value = try sigs_array.getElement(@intCast(i));
-        const sig = try env.unwrap(Signature, sig_value);
-        sigs[i] = sig.*;
+        sigs[i] = try env.unwrap(Signature, sig_value);
     }
 
     const agg_sig = AggregateSignature.aggregate(sigs, sigs_groupcheck) catch return error.AggregationFailed;
@@ -754,13 +752,12 @@ pub fn blst_aggregatePublicKeys(env: napi.Env, cb: napi.CallbackInfo(2)) !napi.V
         return error.EmptyPublicKeyArray;
     }
 
-    const pks = try allocator.alloc(PublicKey, pks_len);
+    const pks = try allocator.alloc(*const PublicKey, pks_len);
     defer allocator.free(pks);
 
     for (0..pks_len) |i| {
         const pk_value = try pks_array.getElement(@intCast(i));
-        const pk = try env.unwrap(PublicKey, pk_value);
-        pks[i] = pk.*;
+        pks[i] = try env.unwrap(PublicKey, pk_value);
     }
 
     const agg_pk = AggregatePublicKey.aggregate(pks, pks_validate) catch return error.AggregationFailed;
@@ -789,16 +786,19 @@ pub fn blst_aggregateSerializedPublicKeys(env: napi.Env, cb: napi.CallbackInfo(2
 
     const pks = try allocator.alloc(PublicKey, pks_len);
     defer allocator.free(pks);
+    const pk_ptrs = try allocator.alloc(*const PublicKey, pks_len);
+    defer allocator.free(pk_ptrs);
 
     for (0..pks_len) |i| {
         const pk_bytes_value = try pks_array.getElement(@intCast(i));
         const bytes_info = try pk_bytes_value.getTypedarrayInfo();
 
         pks[i] = PublicKey.deserialize(bytes_info.data) catch
             return error.DeserializationFailed;
+        pk_ptrs[i] = &pks[i];
     }
 
-    const agg_pk = AggregatePublicKey.aggregate(pks, pks_validate) catch return error.AggregationFailed;
+    const agg_pk = AggregatePublicKey.aggregate(pk_ptrs, pks_validate) catch return error.AggregationFailed;
     const result_pk = agg_pk.toPublicKey();
 
     const pk_value = try newPublicKeyInstance(env);

@@ -16,7 +16,7 @@ pub fn toPublicKey(self: *const Self) PublicKey {
 /// If pks_validate is true, validates each public key before aggregation.
 ///
 /// Returns an error if the slice is empty or if any public key validation fails.
-pub fn aggregate(pks: []const PublicKey, pks_validate: bool) BlstError!Self {
+pub fn aggregate(pks: []const *const PublicKey, pks_validate: bool) BlstError!Self {
     if (pks.len == 0) return BlstError.AggrTypeMismatch;
     if (pks_validate) for (pks) |pk| try pk.validate();
 
@@ -144,7 +144,12 @@ test aggregate {
         sigs[i] = sig;
     }
 
-    _ = try aggregate(pks[0..], true);
+    var pk_ptrs: [num_sigs]*const PublicKey = undefined;
+    for (0..num_sigs) |i| {
+        pk_ptrs[i] = &pks[i];
+    }
+
+    _ = try aggregate(&pk_ptrs, true);
 }
 
 const std = @import("std");

@@ -22,7 +22,7 @@ pub fn toSignature(self: *const Self) Signature {
 ///
 /// Validates each signature before aggregation if `sigs_groupcheck` is true.
 /// Errors if the `sigs` slice is empty or if any signature validation fails.
-pub fn aggregate(sigs: []const Signature, sigs_groupcheck: bool) BlstError!Self {
+pub fn aggregate(sigs: []const *const Signature, sigs_groupcheck: bool) BlstError!Self {
     if (sigs.len == 0) return BlstError.AggrTypeMismatch;
     if (sigs_groupcheck) for (sigs) |sig| try sig.validate(false);
 

@@ -64,7 +64,7 @@ pub fn aggregateVerify(
     buffer: *align(Pairing.buf_align) [Pairing.sizeOf()]u8,
     msgs: []const [32]u8,
     dst: []const u8,
-    pks: []const PublicKey,
+    pks: []const *const PublicKey,
     pks_validate: bool,
 ) BlstError!bool {
     const n_elems = pks.len;
@@ -73,7 +73,7 @@ pub fn aggregateVerify(
     }
     var pairing = Pairing.init(buffer, true, dst);
     try pairing.aggregate(
-        &pks[0],
+        pks[0],
         pks_validate,
         self,
         sig_groupcheck,
@@ -83,7 +83,7 @@ pub fn aggregateVerify(
 
     for (1..n_elems) |i| {
         try pairing.aggregate(
-            &pks[i],
+            pks[i],
             pks_validate,
             null,
             sig_groupcheck,
@@ -108,7 +108,7 @@ pub fn fastAggregateVerify(
     buffer: *align(Pairing.buf_align) [Pairing.sizeOf()]u8,
     msg: *const [32]u8,
     dst: []const u8,
-    pks: []const PublicKey,
+    pks: []const *const PublicKey,
     pks_validate: bool,
 ) BlstError!bool {
     const agg_pk = try AggregatePublicKey.aggregate(pks, pks_validate);
@@ -119,7 +119,7 @@ pub fn fastAggregateVerify(
         buffer,
         @ptrCast(msg),
         dst,
-        &[_]PublicKey{pk},
+        &[_]*const PublicKey{&pk},
         false,
     );
 }
@@ -135,13 +135,12 @@ pub fn fastAggregateVerifyPreAggregated(
     dst: []const u8,
     pk: *const PublicKey,
 ) BlstError!bool {
-    const pks: [*]const PublicKey = @ptrCast(pk);
     return try self.aggregateVerify(
         sig_groupcheck,
         buffer,
         @ptrCast(msg),
         dst,
-        pks[0..1],
+        &[_]*const PublicKey{pk},
         false,
     );
 }
@@ -281,8 +280,15 @@ test aggregateVerify {
         sigs[i] = sig;
     }
 
-    const agg_sig = try AggregateSignature.aggregate(&sigs, false);
+    var sig_ptrs: [num_sigs]*const @This() = undefined;
+    var pk_ptrs: [num_sigs]*const PublicKey = undefined;
+    for (0..num_sigs) |i| {
+        sig_ptrs[i] = &sigs[i];
+        pk_ptrs[i] = &pks[i];
+    }
+
+    const agg_sig = try AggregateSignature.aggregate(&sig_ptrs, false);
     const sig = @This().fromAggregate(&agg_sig);
 
-    try std.testing.expect(try sig.aggregateVerify(false, &buffer, &msgs, dst, &pks, false));
+    try std.testing.expect(try sig.aggregateVerify(false, &buffer, &msgs, dst, &pk_ptrs, false));
 }
@@ -506,7 +506,11 @@ test "aggregateVerify multi-threaded" {
         pk_ptrs[i] = &pks[i];
     }
 
-    const agg_sig = AggregateSignature.aggregate(&sigs, false) catch return error.AggregationFailed;
+    var sig_ptrs: [num_sigs]*const Signature = undefined;
+    for (0..num_sigs) |i| {
+        sig_ptrs[i] = &sigs[i];
+    }
+    const agg_sig = AggregateSignature.aggregate(&sig_ptrs, false) catch return error.AggregationFailed;
     const final_sig = agg_sig.toSignature();
 
     try std.testing.expect(try pool.aggregateVerify(

@@ -50,10 +50,10 @@ pub fn processSyncAggregate(
             const root_signed = try getBlockRootAtSlot(fork, state, previous_slot);
             const domain = try config.getDomain(epoch_cache.epoch, c.DOMAIN_SYNC_COMMITTEE, previous_slot);
 
-            const pubkeys = try allocator.alloc(bls.PublicKey, participant_indices.items.len);
+            const pubkeys = try allocator.alloc(*const bls.PublicKey, participant_indices.items.len);
             defer allocator.free(pubkeys);
             for (0..participant_indices.items.len) |i| {
-                pubkeys[i] = epoch_cache.index_to_pubkey.items[participant_indices.items[i]];
+                pubkeys[i] = &epoch_cache.index_to_pubkey.items[participant_indices.items[i]];
             }
 
             var signing_root: Root = undefined;
@@ -158,9 +158,9 @@ pub fn getSyncCommitteeSignatureSet(
 
     const domain = try config.getDomain(epoch_cache.epoch, c.DOMAIN_SYNC_COMMITTEE, previous_slot);
 
-    const pubkeys = try allocator.alloc(bls.PublicKey, participant_indices_.len);
+    const pubkeys = try allocator.alloc(*const bls.PublicKey, participant_indices_.len);
     for (0..participant_indices_.len) |i| {
-        pubkeys[i] = epoch_cache.index_to_pubkey.items[participant_indices_[i]];
+        pubkeys[i] = &epoch_cache.index_to_pubkey.items[participant_indices_[i]];
     }
     var signing_root: Root = undefined;
     try computeSigningRoot(types.primitive.Root, &root_signed, domain, &signing_root);
@@ -199,7 +199,7 @@ test "process sync aggregate - sanity" {
     const sig0 = try test_utils.interopSign(committee_indices[0], &signing_root);
     // validator 1 signs
     const sig1 = try test_utils.interopSign(committee_indices[1], &signing_root);
-    const agg_sig = try bls.AggregateSignature.aggregate(&.{ sig0, sig1 }, true);
+    const agg_sig = try bls.AggregateSignature.aggregate(&.{ &sig0, &sig1 }, true);
 
     var sync_aggregate: types.electra.SyncAggregate.Type = types.electra.SyncAggregate.default_value;
     sync_aggregate.sync_committee_signature = agg_sig.toSignature().compress();

@@ -35,10 +35,10 @@ pub fn getAttestationWithIndicesSignatureSet(
     signature: BLSSignature,
     attesting_indices: []u64,
 ) !AggregatedSignatureSet {
-    const pubkeys = try allocator.alloc(PublicKey, attesting_indices.len);
+    const pubkeys = try allocator.alloc(*const PublicKey, attesting_indices.len);
     errdefer allocator.free(pubkeys);
     for (0..attesting_indices.len) |i| {
-        pubkeys[i] = epoch_cache.index_to_pubkey.items[@intCast(attesting_indices[i])];
+        pubkeys[i] = &epoch_cache.index_to_pubkey.items[@intCast(attesting_indices[i])];
     }
 
     var signing_root: Root = undefined;

@@ -139,18 +139,20 @@ pub fn generateElectraState(allocator: Allocator, pool: *Node.Pool, chain_config
 
     var next_sync_committee_pubkeys: [preset.SYNC_COMMITTEE_SIZE]BLSPubkey = undefined;
     var next_sync_committee_pubkeys_slices: [preset.SYNC_COMMITTEE_SIZE]bls.PublicKey = undefined;
+    var next_sync_committee_pubkey_ptrs: [preset.SYNC_COMMITTEE_SIZE]*const bls.PublicKey = undefined;
     var validators = try beacon_state.validators();
     for (next_sync_committee_indices, 0..next_sync_committee_indices.len) |index, i| {
         var validator = try validators.get(@intCast(index));
         var pubkey_view = try validator.get("pubkey");
         _ = try pubkey_view.getAllInto(next_sync_committee_pubkeys[i][0..]);
         next_sync_committee_pubkeys_slices[i] = try bls.PublicKey.uncompress(&next_sync_committee_pubkeys[i]);
+        next_sync_committee_pubkey_ptrs[i] = &next_sync_committee_pubkeys_slices[i];
     }
 
     var current_sync_committee = try beacon_state.currentSyncCommittee();
     var next_sync_committee = try beacon_state.nextSyncCommittee();
     // Rotate syncCommittee in state
-    const aggregate_pubkey = (try bls.AggregatePublicKey.aggregate(&next_sync_committee_pubkeys_slices, false)).toPublicKey().compress();
+    const aggregate_pubkey = (try bls.AggregatePublicKey.aggregate(&next_sync_committee_pubkey_ptrs, false)).toPublicKey().compress();
     try next_sync_committee.setValue("pubkeys", &next_sync_committee_pubkeys);
     try next_sync_committee.setValue("aggregate_pubkey", &aggregate_pubkey);
 

@@ -22,7 +22,7 @@ pub fn verify(msg: []const u8, pk: *const PublicKey, sig: *const Signature, in_p
     try sig.verify(sig_groupcheck, msg, DST, null, pk, pk_validate);
 }
 
-pub fn fastAggregateVerify(msg: []const u8, pks: []const PublicKey, sig: *const Signature, in_pk_validate: ?bool, in_sigs_group_check: ?bool) !bool {
+pub fn fastAggregateVerify(msg: []const u8, pks: []const *const PublicKey, sig: *const Signature, in_pk_validate: ?bool, in_sigs_group_check: ?bool) !bool {
     var pairing_buf: [bls.Pairing.sizeOf()]u8 align(@alignOf(bls.Pairing)) = undefined;
 
     const sigs_groupcheck = in_sigs_group_check orelse false;
@@ -44,8 +44,7 @@ test "bls - sanity" {
     const pk = sk.toPublicKey();
     try verify(&msg, &pk, &sig, null, null);
 
-    var pks = [_]PublicKey{pk};
-    var pks_slice: []const PublicKey = pks[0..1];
-    const result = try fastAggregateVerify(&msg, pks_slice[0..], &sig, null, null);
+    var pk_ptrs = [_]*const PublicKey{&pk};
+    const result = try fastAggregateVerify(&msg, &pk_ptrs, &sig, null, null);
     try std.testing.expect(result);
 }
@@ -17,8 +17,7 @@ pub const SingleSignatureSet = struct {
 };
 
 pub const AggregatedSignatureSet = struct {
-    // fastAggregateVerify also requires []*const PublicKey
-    pubkeys: []const PublicKey,
+    pubkeys: []const *const PublicKey,
     signing_root: Root,
     signature: BLSSignature,
 };
@@ -47,7 +46,7 @@ pub fn createSingleSignatureSetFromComponents(pubkey: *const PublicKey, signing_
     };
 }
 
-pub fn createAggregateSignatureSetFromComponents(pubkeys: []const PublicKey, signing_root: Root, signature: BLSSignature) AggregatedSignatureSet {
+pub fn createAggregateSignatureSetFromComponents(pubkeys: []const *const PublicKey, signing_root: Root, signature: BLSSignature) AggregatedSignatureSet {
     return .{
         .pubkeys = pubkeys,
         .signing_root = signing_root,

@@ -35,15 +35,17 @@ pub fn getNextSyncCommittee(
     // Using the index2pubkey cache is slower because it needs the serialized pubkey.
     const pubkeys = &out.sync_committee.pubkeys;
     var pubkeys_uncompressed: [preset.SYNC_COMMITTEE_SIZE]bls.PublicKey = undefined;
+    var pubkey_ptrs: [preset.SYNC_COMMITTEE_SIZE]*const bls.PublicKey = undefined;
     for (indices, 0..indices.len) |index, i| {
         var validator_view = try validators_view.get(index);
         var validator: types.phase0.Validator.Type = undefined;
         try validator_view.toValue(allocator, &validator);
         pubkeys[i] = validator.pubkey;
         pubkeys_uncompressed[i] = try bls.PublicKey.uncompress(&pubkeys[i]);
+        pubkey_ptrs[i] = &pubkeys_uncompressed[i];
     }
 
-    const aggregated_pk = try AggregatePublicKey.aggregate(&pubkeys_uncompressed, false);
+    const aggregated_pk = try AggregatePublicKey.aggregate(&pubkey_ptrs, false);
     out.sync_committee.aggregate_pubkey = aggregated_pk.toPublicKey().compress();
 }