比特币钱包地址的生成过程
比特币钱包地址生成过程.png
- 通过OpenSSL命令随机生成密钥对
生成椭圆曲线的私钥
openssl ecparam -name secp256k1 -genkey -out ec-priv.pem
执行上述命令会生成ec-prive.pem文件,将其快速解码为可读的16进制形式。
openssl ec -in ec-priv.pem -text -noout
将上述密钥对中的公钥部分取出,存储到一个叫做ec-pub.pem的外部文件中:
openssl ec -in ec-priv.pem -pubout -out ec-pub.pem
接着将它解码
openssl ec -in ec-pub.pem -pubin -text -noout
公钥部分就会显示出来
read EC key
Private-Key: (256 bit)
pub:
04:4d:d2:58:cc:3e:05:0b:57:02:99:ef:45:de:5d:
96:e5:24:05:10:96:a2:a9:ae:52:d2:2b:a8:92:7b:
16:7f:ce:f2:97:f3:5a:0d:e8:b7:c5:78:92:64:d2:
de:85:8d:c8:58:2c:39:36:8c:39:9f:d9:1d:c5:a9:
2c:33:d8:5a:a1
ASN1 OID: secp256k1
生成公钥的过程.jpeg
- 对公钥进行SHA-256加密
提取上述16进制的公钥,转换成字符串
044dd258cc3e050b570299ef45de5d96e524051096a2a9ae52d22ba8927b167fcef297f35a0de8b7c5789264d2de858dc8582c39368c399fd91dc5a92c33d85aa1
然后使用SHA-256加密
byte[] publicKey = new BigInteger("044dd258cc3e050b570299ef45de5d96e524051096a2a9ae52d22ba8927b167fcef297f35a0de8b7c5789264d2de858dc8582c39368c399fd91dc5a92c33d85aa1", 16).toByteArray();
byte[] sha256Bytes = Utils.sha256(publicKey);
System.out.println("sha256加密=" + Utils.bytesToHexString(sha256Bytes));
执行结果:
sha256加密=C96A913851413BDC2FBF5CC60085CA2C23FB8289B44BDDAD5FC15226DB1E30A7
- 使用RIPEMD160加密
其中,RIPEMD160的加密使用了bouncycastle这个加密算法库。
RIPEMD160Digest digest = new RIPEMD160Digest();
digest.update(sha256Bytes, 0, sha256Bytes.length);
byte[] ripemd160Bytes = new byte[digest.getDigestSize()];
digest.doFinal(ripemd160Bytes, 0);
System.out.println("ripemd160加密=" + Utils.bytesToHexString(ripemd160Bytes));
执行结果:
ripemd160加密=9AF1DD0C939624E1984CB56B44B9C5F28E6B21FF
- 将版本号添加到上述加密结果之前,变成21位
其中,Main Network:0x00, Test Network:0x64,Namecoin Net:0x34
这里,使用Main Network
byte[] networkID = new BigInteger("00", 16).toByteArray();
byte[] extendedRipemd160Bytes = Utils.add(networkID, ripemd160Bytes);
System.out.println("添加NetworkID=" + Utils.bytesToHexString(extendedRipemd160Bytes));
执行结果:
添加NetworkID=009AF1DD0C939624E1984CB56B44B9C5F28E6B21FF
- 两次SHA-256加密
byte[] twiceSha256Bytes = Utils.sha256(Utils.sha256(extendedRipemd160Bytes));
System.out.println("两次sha256加密=" + Utils.bytesToHexString(twiceSha256Bytes));
执行结果:
两次sha256加密=1C17FA056AABA3B6B9768F83F460BC190D19CC2890D933249781D476451D22B4
- 将两次SHA-256加密后的结果取前4bytes,作为地址的checksum
byte[] checksum = new byte[4];
System.arraycopy(twiceSha256Bytes, 0, checksum, 0, 4);
System.out.println("checksum=" + Utils.bytesToHexString(checksum));
执行结果:
checksum=1C17FA05
- 生成25-byte binary Bitcoin Address
需要将checksum加到第四步结果的最后,形成一个25位的地址。
byte[] binaryBitcoinAddressBytes = Utils.add(extendedRipemd160Bytes, checksum);
System.out.println("添加checksum之后=" + Utils.bytesToHexString(binaryBitcoinAddressBytes));
执行结果:
添加checksum之后=009AF1DD0C939624E1984CB56B44B9C5F28E6B21FF1C17FA05
- 使用base58编码生成比特币的钱包地址
String bitcoinAddress = Base58.encode(binaryBitcoinAddressBytes);
System.out.println("bitcoinAddress=" + bitcoinAddress);
执行结果:
bitcoinAddress=1F8GoWchAb56ePqftqRvLf7L729JGQSdqW
上述整个流程的代码:
byte[] publicKey = new BigInteger("044dd258cc3e050b570299ef45de5d96e524051096a2a9ae52d22ba8927b167fcef297f35a0de8b7c5789264d2de858dc8582c39368c399fd91dc5a92c33d85aa1", 16).toByteArray();
byte[] sha256Bytes = Utils.sha256(publicKey);
System.out.println("sha256加密=" + Utils.bytesToHexString(sha256Bytes));
RIPEMD160Digest digest = new RIPEMD160Digest();
digest.update(sha256Bytes, 0, sha256Bytes.length);
byte[] ripemd160Bytes = new byte[digest.getDigestSize()];
digest.doFinal(ripemd160Bytes, 0);
System.out.println("ripemd160加密=" + Utils.bytesToHexString(ripemd160Bytes));
byte[] networkID = new BigInteger("00", 16).toByteArray();
byte[] extendedRipemd160Bytes = Utils.add(networkID, ripemd160Bytes);
System.out.println("添加NetworkID=" + Utils.bytesToHexString(extendedRipemd160Bytes));
byte[] twiceSha256Bytes = Utils.sha256(Utils.sha256(extendedRipemd160Bytes));
System.out.println("两次sha256加密=" + Utils.bytesToHexString(twiceSha256Bytes));
byte[] checksum = new byte[4];
System.arraycopy(twiceSha256Bytes, 0, checksum, 0, 4);
System.out.println("checksum=" + Utils.bytesToHexString(checksum));
byte[] binaryBitcoinAddressBytes = Utils.add(extendedRipemd160Bytes, checksum);
System.out.println("添加checksum之后=" + Utils.bytesToHexString(binaryBitcoinAddressBytes));
String bitcoinAddress = Base58.encode(binaryBitcoinAddressBytes);
System.out.println("bitcoinAddress=" + bitcoinAddress);
执行结果:
sha256加密=C96A913851413BDC2FBF5CC60085CA2C23FB8289B44BDDAD5FC15226DB1E30A7
ripemd160加密=9AF1DD0C939624E1984CB56B44B9C5F28E6B21FF
添加NetworkID=009AF1DD0C939624E1984CB56B44B9C5F28E6B21FF
两次sha256加密=1C17FA056AABA3B6B9768F83F460BC190D19CC2890D933249781D476451D22B4
checksum=1C17FA05
添加checksum之后=009AF1DD0C939624E1984CB56B44B9C5F28E6B21FF1C17FA05
bitcoinAddress=1F8GoWchAb56ePqftqRvLf7L729JGQSdqW
最后,既然我们生成了钱包地址,那怎么进行校验呢?
可以访问这个网站:http://lenschulwitz.com/base58
将最后的结果进行校验
地址校验.jpeg
可以看到上述地址是一个正确的地址。
总结
整个过程模拟了比特币钱包地址的生成,这是本人对比特币钱包地址学习过程的回顾。
所有的代码都在github上,
github地址:https://github.com/fengzhizi715/blockchain_study
