Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/critesjosh/ethereum-address-generator-js

this is an exercise in creating ethereum keys and associated addresses
https://github.com/critesjosh/ethereum-address-generator-js

Last synced: 15 days ago
JSON representation

this is an exercise in creating ethereum keys and associated addresses

Awesome Lists containing this project

README

        

# Generating Ethereum accounts in Javascript

Public pey cryptography and digital signatures are a foundational technology that enable blockchains to work. In this project you are going to get your hands dirty and understand how they work at the code level. You will be using Javascript and a simple web interface to see what is going on.

First, we are going to generate a private key, derive public keys from the private key and determine the
associated accounts.

To get started clone the project and

```
$ npm install
$ npm run watch # this will watch for updates in main.js and update bundle.js
$ npm run reload # this will serve the app @ localhost:8081 and refresh the page when there are updates
```

If you run into any problems while implementing this demo application, try opening the developer tools in the browser (Ctrl + Shift + I or F12) and checking the 'Console' tab.

## Generating randomness

In the [main.js](./main.js) file include the [bip39 package](https://www.npmjs.com/package/bip39). We will use this to generate random input to generate a private key.

```javascript
const BIP39 = require("bip39")
```
and directly below that include
```javascript
// Generate a random mnemonic (uses crypto.randomBytes under the hood), defaults to 128-bits of entropy
function generateMnemonic(){
return BIP39.generateMnemonic()
}
```
Not all strings of characters are valid mneomics for generating keys. You can check if a mnemonic is valid using
```javascript
var isValid = BIP39.validateMnemonic("Enter your mnemonic here")
// This will return false
```

With this mnemonic, you can generate a seed from which to generate a private key. Add the following line to main.js
```javascript
function generateHexSeed(mnemonic){
return BIP39.mnemonicToSeedHex(mnemonic)
}
```

## Generate a Public / Private Keypair

Using this mnemonic as a source of randomness, you can now create signing keypair.

To generate a private key from the hex seed, we will to use the [ethereumjs-wallet library](https://github.com/ethereumjs/ethereumjs-wallet). Add the following line to the top of main.js to import the hdkey function.
```javascript
const hdkey = require('ethereumjs-wallet/hdkey')
```

__*Note that the method by which randomness is passed to the private key generator in this demonstration application is different than other common tools such as [myetherwallet.com](https://www.myetherwallet.com/) or the [Metamask chrome extension](https://metamask.io/). Explore a much more robust address derivation application at [iancoleman.io](https://iancoleman.io/bip39/)*__

To generate a private key, create a private key seed from the random mnemonic and feed it to the hdkey.fromMasterSeed() function. Add the following code to main.js.

```javascript
function generatePrivKey(mnemonic){
const seed = generateHexSeed(mnemonic)
return hdkey.fromMasterSeed(seed).derivePath(`m/44'/60'/0'/0`).getWallet().getPrivateKey()
}
```
With the private key, we can generate the public key. Import the ethereumjs wallet and derive the public key with the following code

```javascript
// Import the wallet
const Wallet = require('ethereumjs-wallet')

...

// Derive the public key from the private key
function derivePubKey(privKey){
const wallet = Wallet.fromPrivateKey(privKey)
return wallet.getPublicKey()
}
```

Generating the private key and public key is the same for both Bitcoin and Ethereum, the both use [secp256k1 elliptic curve cryptography](https://en.bitcoin.it/wiki/Secp256k1). Deriving an account address
from the public differs slightly. We will see how to generate an Ethereum address.

## Derive the Address

Deriving an Ethereum address from a public key requires an additional hashing algorithm. Import it like so
```javascript
const keccak256 = require('js-sha3').keccak256;
```
Taking the keccak-256 hash of the public key will return 32 bytes which you need to trim down to the last 20 bytes (40 characters in hex) to get the address the following function should do the trick.

```javascript
function deriveEthAddress(pubKey){
const address = keccak256(pubKey) // keccak256 hash of publicKey
// Get the last 20 bytes of the public key
return "0x" + address.substring(address.length - 40, address.length)
}
```

You can check this private key and address against [myetherwallet](https://www.myetherwallet.com/#view-wallet-info). Select restore from private key and verify that the derived address matches the one in this app.

## Using your key

Using this private key we can sign transactions from this address and broadcast them to the network.

Nodes that are verifying transactions in the network will use the signature to determine the address of the signatory, cryptographically verifying that every transaction from this account is coming from someone who has access to the corresponding private key.

You can sign transactions in the browser with the [ethereumjs-tx library](https://github.com/ethereumjs/ethereumjs-tx).

```javascript
// Import the ethereumjs transaction library
const EthereumTx = require('ethereumjs-tx')

...

// Add the following function to enable transaction signing
function signTx(privKey, txData){
const tx = new EthereumTx(txData)
tx.sign(privKey)
return tx
}
```

You can recover the sender address from the signed transaction with the following function. Add this function to main.js as well.

```javascript
function getSignerAddress(signedTx){
return "0x" + signedTx.getSenderAddress().toString('hex')
}
```

Unsigned Ethereum transactions looks something like this
```javascript
{
nonce: '0x00',
gasPrice: '0x09184e72a000',
gasLimit: '0x2710',
to: '0x31c1c0fec59ceb9cbe6ec474c31c1dc5b66555b6',
value: '0x10',
data: '0x7f7465737432000000000000000000000000000000000000000000000000000000600057',
chainId: 3
}
```

And a signed transaction looks something like this

```javascript
{
nonce: '0x00',
gasPrice: '0x09184e72a000',
gasLimit: '0x2710',
to: '0x31c1c0fec59ceb9cbe6ec474c31c1dc5b66555b6',
value: '0x00',
data: '0x7f7465737432000000000000000000000000000000000000000000000000000000600057',
v: '0x29',
r: '0xb934fbdb16fda944ddc0cb33e64344b90fbd25564444832f7f8d697512069402',
s: '0x29'
}
```

Notice the main difference is the inclusion of the variables v, r and s. These variables are used to recover the address corresponding to the key that signed the transaction. This signed transaction is broadcast to the network to be included in a block.

### Resources

[Understanding the concept of private keys, public keys and addresses in Ethereum](https://etherworld.co/2017/11/17/understanding-the-concept-of-private-key-public-key-and-address-in-ethereum-blockchain/)

[Bitcoin wiki on Secp256k1](https://en.bitcoin.it/wiki/Secp256k1)

[Ethereum yellow paper](http://gavwood.com/paper.pdf)