In the first article of this series, we generated a bitcoin private key: 60cf347dbc59d31c1358c8e5cf5e45b822ab85b79cb32a9f3d98184779a9efc2
.
Jun 02, 2017 Easiest way to get the private key is by using recover feature of keythereum module to find out the private key from the geth keystore file. Below is the code to get the private key from keyfile.
Just in case there are any future travellers looking to do this. The RSA module support writing out the public key in OpenSSH format now (possibly didn't at the time of earlier posts). I'm interested in generating an Ethereum public key from a private key using Python. I've tried googling around and found some resources but these are all JS nothing using Python itself. How do I generate an Ethereum public key from a known private key using Python. Ethereum private keys are based on KECCAK-256 hashes. To generate such a hash we use the keccak256 function from the pysha3 module on a random 32 byte seed: import secrets from sha3 import keccak256 privatekey = keccak256(secrets.tokenbytes(32)).digest. The above command uses the string input to generate the myaccount object, which contains a private key (myaccount.privatekey) and its associated Ethereum address (myaccount.address). However, since this has been posted publicly, someone could generate and use the same private key. Not a Python tip, but rather a MUST when it comes to sensitive information (quote from @nzall's comment). Those private keys should NEVER, EVER be posted in a location even as remotely public as a code review site.More, replacing them is not enough.For all purposes, you should now view the original keys as compromised and must NEVER EVER EVER use them again for bitcoin storage.
Here, we’ll use that key to get the public address and then the Ethereum wallet address of that private key.
Creating the Bitcoin wallet address from the private key is a bit complicated. Here, the process will be much simpler. We need to apply one hash function to get the public key and another one to get the address.
So let’s get started.
This part is almost identical to what we discussed in the Bitcoin article, so if you read that one, you can skip it (unless you need a refresher).
The first thing we need to go is to apply the ECDSA, or Elliptic Curve Digital Signature Algorithm, to our private key. An elliptic curve is a curve defined by the equation y² = x³ + ax + b
with chosen a
and b
. There is a whole family of such curves that are widely known and used. Bitcoin uses the secp256k1 curve. If you want to learn more about Elliptic Curve Cryptography, I’ll refer you to this article.
Ethereum uses the same elliptic curve, secp256k1, so the process to get the public key is identical in both cryptocurrencies.
By applying the ECDSA to the private key, we get a 64-byte integer, which is two 32-byte integers that represent X and Y of the point on the elliptic curve, concatenated together.
For our example, we got 1e7bcc70c72770dbb72fea022e8a6d07f814d2ebe4de9ae3f7af75bf706902a7b73ff919898c836396a6b0c96812c3213b99372050853bd1678da0ead14487d7
.
In Python, it would look like this: Generate license key for any software.
Note: as you can see from the code above, I used a method from the ecdsa
module and I decoded the private key using codecs
. This is relevant more to the Python and less to the algorithm itself, but I will explain what are we doing here to remove possible confusion.
In Python, there are at least two classes that can keep the private and public keys: “str” and “bytes”. The first is a string and the second is a byte array. Cryptographic methods in Python work with a “bytes” class, taking it as input and returning it as the result.
Now, there’s a little catch: a string, say, 4f3c
does not equal the byte array 4f3c
. Rather, it equals the byte array with two elements, O&
lt;. And that’s what the codecs.dec
ode method does: it converts a string into a byte array. This will be the same for all cryptographic manipulations that we’ll do in this article.
Once we’ve gotten the public key, we can calculate the address. Now, unlike Bitcoin, Ethereum has the same addresses on both the main and all test networks. Users specify the network that they want to use later in the process when they make and sign a transaction.
To make an address from the public key, all we need to do is to apply Keccak-256 to the key and then take the last 20 bytes of the result. And that’s it. No other hash functions, no Base58 or any other conversion. The only thing you need is to add ‘0x’ at the start of the address.
Here’s the Python code:
Now, as you may remember, Bitcoin creates the checksum by hashing the public key and taking the first 4 bytes of the result. This is true for all Bitcoin addresses, so you can’t get the valid address without adding the checksum bytes.
In Ethereum, that’s not how things work. Initially, there were no checksum mechanisms to validate the integrity of the key. However, in 2016, Vitalik Buterin introduced a checksum mechanism, which has since been adopted by wallets and exchanges.
Adding a checksum to the Ethereum wallet address makes it case-sensitive.
First, you need to get the Keccak-256 hash of the address. Note that this address should be passed to the hash function without the 0x
part.
Second, you iterate over the characters of the initial address. If the ith byte of the hash is greater than or equal to 8, you convert the ith address’s character to uppercase, otherwise you leave it lowercase.
Finally, you add 0x
back at the start of the resulting string. The checksum address is the same as the initial one if you ignore the case. But the uppercase letters let anyone check that the address is indeed valid. You can find the algorithm of the checksum validation at the page linked here.
As you’ll read in the proposal, for this checksum scheme,
“on average there will be 15 check bits per address, and the net probability that a randomly generated address if mistyped will accidentally pass a check is 0.0247%.”
And here’s the code to add checksum to the Ethereum address:
As you can see, creating an address for Ethereum is much simpler than for Bitcoin. All we need to do is to apply the ECDSA to public key, then apply Keccak-256, and finally take the last 20 bytes of that hash.
If you want to play with the code, I published it to the GitHub repository. Generate csr and private key openssl on desktop.
I am making a course on cryptocurrencies here on freeCodeCamp News. The first part is a detailed description of the blockchain.
I also post random thoughts about crypto on Twitter, so you might want to check it out.
*Code adapted from two1 library for bitcoin by 21 Inc. (https://github.com/21dotco/two1-python/tree/master/two1)
Python packages:pip install -r requirements.txt
Imports:from crypto import HDPrivateKey, HDPublicKey, HDKey
Creation of multiple accounts under master key derived from seed phrase.Compatible with Metamask. You can just restore your walletwith seed phrase and get access to all the accounts under master key via Metamask.