如何将ed25519字节转换为Tezos公钥

Question

如何将ed25519字节转换为Tezos公钥

2

159 2020-01-17

我试图通过base58编码ed255191公钥字节来做到这一点.考虑以下代码示例:

 const seed = crypto.randomBytes(32);
const keyPair = ed25519.MakeKeypair(seed);
const base58encoded = base58.encode(keyPair.publicKey);

console.log('ed25519 pub key bytes len: ' + keyPair.publicKey.length);
console.log('base58 pub key: ' + base58encoded);
console.log('base58 pub key len: ' + base58encoded.length);
console.log('actual key: edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE');
console.log('actual key len: ' + 'edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE'.length);

它打印:

 ed25519 pub key bytes len: 32
base58 pub key: 6jRoreKb7RXAQZBuKZs7WDzsFHHrg62GkMmkXuiWqtKm
base58 pub key len: 44
actual key: edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE
actual key len: 54

我得到的base58字符串比实际的Tezos公钥短10个字符.这以及该主题建议我在使用base58对其进行编码之前,需要给我的base58数据加上一些神奇的字节作为前缀.那些神奇的字节是什么?是否有关于此的文档?

谢谢.

在亚瑟·B回答后编辑:

我尝试在base58对其进行编码之前,将前缀前缀ed25519附加到base58字节.但是,当真正的Tezos公钥包含54个字符时,我还是得到了49个字符.附加了4个随机字节后,我需要54个字符和一个以edpk开头的值.显然,这意味着前缀是正确的-但是我从哪里得到剩余的4个字节?

在评论中进行讨论后编辑:

由于我使用base58而不是具有额外4个字节作为校验和的base58check,因此缺少

4个字节.使用base58check后,我得到了以1edpk开头的55个字节-这样看起来像是一个有效的公共Tezos地址,前缀为1.

当前问题是:当使用键(特别是-计算其哈希)时,我删除了前导1并获得了54个字符.结果,我正在使用的用于散列密钥的库引发了Invalid checksum错误.显然,1是base58check校验和的一部分.不过,如果未删除,则密钥将具有无效的前缀.更新的代码示例如下所示:

 const realKey = 'edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE';
const seed = crypto.randomBytes(32);
const keyPair = ed25519.MakeKeypair(seed);
const directPubKeyBytes = keyPair.publicKey;

const tezosPublicKeyPrefix = Buffer.from([13, 15, 37, 217]);
const prefixedPublicKey = Buffer.concat([tezosPublicKeyPrefix, directPubKeyBytes]);
const base58checkEncoded = base58check.encode(prefixedPublicKey).substr(1);

console.log('ed25519 pub key bytes len: ' + prefixedPublicKey.length);
console.log('base58 pub key: ' + base58checkEncoded);
console.log('base58 pub key len: ' + base58checkEncoded.length);
console.log('actual key len: ' + realKey.length);

const publicKey = new Key({ key: base58checkEncoded });
await publicKey.ready;
return publicKey.publicKeyHash();

它打印:

 ed25519 pub key bytes len: 36
base58 pub key: edpkvCRxvpVG6FYAevL5Kqf4cQhaVAdyovGqrSCezHhNnav5BwjhuZ
base58 pub key len: 54
actual key len: 54
(node:12395) UnhandledPromiseRejectionWarning: Error: Invalid checksum
    at Object.decode (/home/kspisacki/coding/wallets/node_modules/bs58check/base.js:41:25)
    at Object.b58cdecode (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:12743)
    at z.<anonymous> (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:15122)
    at Generator.next (<anonymous>)
    at o (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:13324)

对此的任何进一步帮助将不胜感激,因为尽管阅读了很多有关该主题的知识,但我不知道如何使它起作用；)

I tried to do that by base58 encoding ed255191 public key bytes. Consider a following code sample:

const seed = crypto.randomBytes(32);
const keyPair = ed25519.MakeKeypair(seed);
const base58encoded = base58.encode(keyPair.publicKey);

console.log('ed25519 pub key bytes len: ' + keyPair.publicKey.length);
console.log('base58 pub key: ' + base58encoded);
console.log('base58 pub key len: ' + base58encoded.length);
console.log('actual key: edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE');
console.log('actual key len: ' + 'edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE'.length);

It prints:

ed25519 pub key bytes len: 32
base58 pub key: 6jRoreKb7RXAQZBuKZs7WDzsFHHrg62GkMmkXuiWqtKm
base58 pub key len: 44
actual key: edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE
actual key len: 54

A base58 string that I got is 10 characters shorter than an actual Tezos public key. This, and also that topic suggests I need to prefix my ed25519 data with some magical bytes before encoding it with base58. What are those magical bytes? Is there a documentation about that?

Thanks.

EDIT after Arthur B's answer:

I tried appending prefix bytes: \013\015\037\217 to ed25519 bytes before base58 encoding them. Still, I got 49 characters when a real Tezos public key has 54 characters. After appending additional 4 random bytes, I got desired 54 chars and a value that starts with edpk. Clearly this means that prefix is correct - but where do I get remaining 4 bytes from?

EDIT after discussion in comments:

4 bytes were missing due to me using base58 instead of base58check that has additional 4 bytes as a checksum. After using base58check I got 55 bytes starting with 1edpk - so something looking like a valid public Tezos address prepended with a 1 .

Current problem is: when working with the key (specifically - computing its hash) I removed a leading 1 and got 54 characters. As a result, a library I'm using to hash a key threw an Invalid checksum error. Clearly, 1 is a part of base58check checksum. Still, if not removed the key is going to have an invalid prefix. An updated code sample looks like this:

const realKey = 'edpktx799pgw7M4z8551URER52VcENNCSZwE9f9cst4v6h5vCrQmJE';
const seed = crypto.randomBytes(32);
const keyPair = ed25519.MakeKeypair(seed);
const directPubKeyBytes = keyPair.publicKey;

const tezosPublicKeyPrefix = Buffer.from([13, 15, 37, 217]);
const prefixedPublicKey = Buffer.concat([tezosPublicKeyPrefix, directPubKeyBytes]);
const base58checkEncoded = base58check.encode(prefixedPublicKey).substr(1);

console.log('ed25519 pub key bytes len: ' + prefixedPublicKey.length);
console.log('base58 pub key: ' + base58checkEncoded);
console.log('base58 pub key len: ' + base58checkEncoded.length);
console.log('actual key len: ' + realKey.length);

const publicKey = new Key({ key: base58checkEncoded });
await publicKey.ready;
return publicKey.publicKeyHash();

It prints:

ed25519 pub key bytes len: 36
base58 pub key: edpkvCRxvpVG6FYAevL5Kqf4cQhaVAdyovGqrSCezHhNnav5BwjhuZ
base58 pub key len: 54
actual key len: 54
(node:12395) UnhandledPromiseRejectionWarning: Error: Invalid checksum
    at Object.decode (/home/kspisacki/coding/wallets/node_modules/bs58check/base.js:41:25)
    at Object.b58cdecode (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:12743)
    at z.<anonymous> (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:15122)
    at Generator.next (<anonymous>)
    at o (/home/kspisacki/coding/wallets/node_modules/sotez/dist/node/index.js:1:13324)

Any further help with that would be greatly appreciated as I don't understand how to get this to work despite reading up A LOT on the topic ;)

原文
K SS

- 这回答了你的问题了吗?[如何对Tezos公钥进行哈希处理](https://tezos.stackexchange.com/questions/2016/how-to-hash-a-tezos-public-key)
  
  Does this answer your question? [How to hash a Tezos public key](https://tezos.stackexchange.com/questions/2016/how-to-hash-a-tezos-public-key)
  - 0
  - 2020-01-17
  - utdrmac
- 并不是的.我也是链接问题的作者;).链接的是关于创建公钥的哈希,而这是关于创建公钥本身的-这是之前的一步.
  
  Not really. I am an author of the linked question as well ;) . The linked one is about creating a hash of a public key while this one is about creating a public key itself - it's a step before that.
  - 0
  - 2020-01-17
  - K SS

1 个回答

投票数

Arthur B · Accepted Answer · 2020-01-17

3

2020-01-17

您可以在文件底部找到这些字节

https://gitlab.com/tezos/tezos/blob/master/src/lib_crypto/base58.ml

您的情况是" \ 013 \ 015 \ 037 \ 217"

我试过了我的base58编码了我的36个字节,并得到49个base58字符.然后除了前缀,我还附加了4个随机字节.我从`edpk`开始有54个`base58`字符.这意味着前缀显然是正确的-但是我应该从哪里获得剩余的4个字节来替换随机的呢?

I tried that. I `base58` encoded my 36 bytes and got 49 `base58` characters. Then apart from the prefix, I also appended 4 random bytes. I got 54 `base58` characters, starting from `edpk`. This means that prefix is clearly correct - but where do I get remaining 4 bytes to replace my random ones from?
- 0
- 2020-01-17
- K SS
您必须使用base58Check,它将从二进制数据的哈希中追加一些字节作为校验和.

You have to use base58Check which appends some bytes from a hash of the binary data as a checksum.
- 0
- 2020-01-17
- Arthur B
真好这给了我一个以`1edpk`开头的55字符串.我删除了开头的" 1"(我应该这样做吗?),并且得到了看起来像有效的Tezos公钥的东西.但是,在尝试使用[sotez](https://www.npmjs.com/package/sotez)为此公钥创建哈希之后,出现了"错误:无效的校验和".这是否表明ed25519字节是错误的?Tezos是否使用一些自定义的"ed25519"变体?我用来生成ed25519字节的实现是[this](https://www.npmjs.com/package/ed25519).

Nice. This gives me a 55 character string starting with `1edpk` . I removed leading `1` (am I supposed to do that?) and got something that looks like a valid Tezos public key. However, after attempting to create a hash for this public key using [sotez](https://www.npmjs.com/package/sotez) I got `Error: Invalid checksum` . Does this suggest that `ed25519` bytes are wrong? Does Tezos use some custom `ed25519` variant? Implementation that I'm using to generate `ed25519` bytes is [this one](https://www.npmjs.com/package/ed25519) .
- 0
- 2020-01-17
- K SS
我不确定该特定模块,但是Sotez使用[libsodium-wrappers](https://www.npmjs.com/package/libsodium-wrappers)来执行其ed25519加密功能.例如,您可以参考[this](https://github.com/AndrewKishino/sotez/blob/master/src/crypto.ts#L163).

I'm not sure about that specific module, but Sotez uses [libsodium-wrappers](https://www.npmjs.com/package/libsodium-wrappers) to perform its ed25519 crypto functions. You can reference [this](https://github.com/AndrewKishino/sotez/blob/master/src/crypto.ts#L163) for example.
- 0
- 2020-01-18
- AKISH
使用libsodium生成ed25519字节给了我同样的错误.前导1似乎是base58check校验和的一部分,因此不应删除它.但是如果不删除,密钥以1edpk开头,因此毫不奇怪,我得到了Error:Invalidprefix.我不知道该如何解决O_O

Using `libsodium` to generate `ed25519` bytes gave me the same error. It seems that leading `1` is a part of `base58check` checksum so it should not be removed. But if not removed, the key starts with `1edpk` so, unsurprisingly I'm getting `Error: Invalid prefix` . I have no idea how to work that out O_O
- 0
- 2020-01-20
- K SS