Signature

如何計算有效簽名?

  • October 2, 2021

我正在嘗試創建一個在https://etherscan.io/verifySig上有效的簽名,但它始終顯示我的簽名無效:

在此處輸入圖像描述

我創建了一個隨機的私鑰和公鑰:

private key: 0xb9b2098efa21fd9fa0595c589c8487af8e2feb96569d8ed7dea3d3942f9e86ee
public key: 0x9b6eafcfec58f95f3771d5c2f9042ff80e491fd04a3aa1a847e7fd8442f1ee8c197f65b0d783b8a6f4c5d5ceaa4c027bc7e3ee36706af488972690fab52434b3

地址應該是:

address: 0x98f13dc425811444c9c288cf366acfaf7e3b6d52

現在我嘗試使用此處提供的公式對消息“Test_Signature”進行簽名: https ://cryptobook.nakov.com/digital-signatures/ecdsa-sign-verify-messages

消息雜湊計算eth_utils如下:

msg = b"Test_Signature"
h = eth_utils.keccak(msg)
h = int.from_bytes(h, "big")

生成一個隨機整數後,我使用方程直接計算r, s, v

from tinyec.ec import SubGroup, Curve


# secp256k1 properties
p = 115792089237316195423570985008687907853269984665640564039457584007908834671663
n = 115792089237316195423570985008687907852837564279074904382605163141518161494337
G = (55066263022277343669578718895168534326250603453777594175500187360389116729240, 32670510020758816978083085130507043184471273380659243275938904335757337482424)

field = SubGroup(p=p, g=G, n=n, h=1)
curve = Curve(a=0, b=7, field=field, name='secp256k1')

# private key
priv_key = 83992441735806437997249052063040008803625856260092149954869332104473242142446

# public key
P = (70304058118741863582262393380291673246306160516057781381001139033552194760332, 11532912635836483492238225363108614691575607518644120117126194555700524627123)

# message hash
h = 87606763373646199415553583347194012180136404149033607198826021616865742156857

# random integer
k = 3721177852896846111935695432081468296180303375615453253386435739478984180396

R = k * curve.g
r = R.x
v = 27 + (R.y % 2)
s = pow(k, -1, n) * (h + r*priv_key) % n

輸出是:

r: 29336491788943161357283692504069157144877470785894834840899135746381367540519
v: 27
s: 12775157475818852054720297346653863004672088843187914057777144577979593234619
r:  0x40dbddadd4d5faf1743ff01ddae18d12d5a61b3b230aee8dbb06b7179c20fb27
s:  0x1c3e7b9eda633d88aceff79ca9887e88022f1aeca2813784250e8ff4b62398bb
v:  0x1b
signature: 40dbddadd4d5faf1743ff01ddae18d12d5a61b3b230aee8dbb06b7179c20fb271c3e7b9eda633d88aceff79ca9887e88022f1aeca2813784250e8ff4b62398bb1b

為什麼網站上的簽名被標記為無效?計算中是否有任何錯誤?

問題是錯誤計算的地址。

signerPrivKey = eth_keys.keys.PrivateKey(priv_key.to_bytes(32, "big"))
signerPubKey = signerPrivKey.public_key
print("address: ", signerPubKey.to_checksum_address())
#address:  0xE144236EFb7932bDaE617eBAAFD24aF962152c77

引用自:https://ethereum.stackexchange.com/questions/110873

相關問答

Segregated-Witness

如何使用 ECDSA 簽署比特幣交易?

  • June 22, 2022
檢視問答
Signature

如何在 Ruby 中使用 secp256k1 簽署消息?

  • February 10, 2022
檢視問答
Elliptic-Curves

secp256k1:理論上是否可以使用不同的密鑰、消息雜湊和 k 生成相同的簽名?

  • May 6, 2021
檢視問答
Signature

secp256k1 素數模數與階數

  • November 20, 2020
檢視問答
Signature

ethers.js 錯誤的簽名

  • September 24, 2020
檢視問答
Javascript

簽署原始交易,錯誤的 R 和 S 值

  • May 14, 2020
檢視問答