3 # Electrum - lightweight Bitcoin client
4 # Copyright (C) 2013 thomasv@gitorious
6 # This program is free software: you can redistribute it and/or modify
7 # it under the terms of the GNU General Public License as published by
8 # the Free Software Foundation, either version 3 of the License, or
9 # (at your option) any later version.
11 # This program is distributed in the hope that it will be useful,
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 # GNU General Public License for more details.
16 # You should have received a copy of the GNU General Public License
17 # along with this program. If not, see <http://www.gnu.org/licenses/>.
22 from transaction import Transaction, is_extended_pubkey
23 from util import print_msg
26 class Account(object):
27 def __init__(self, v):
28 self.addresses = v.get('0', [])
29 self.change = v.get('1', [])
32 return {'0':self.addresses, '1':self.change}
34 def get_addresses(self, for_change):
35 return self.change[:] if for_change else self.addresses[:]
37 def create_new_address(self, for_change):
38 addresses = self.change if for_change else self.addresses
40 address = self.get_address( for_change, n)
41 addresses.append(address)
45 def get_address(self, for_change, n):
48 def get_pubkeys(self, sequence):
49 return [ self.get_pubkey( *sequence )]
54 def get_name(self, k):
55 return _('Main account')
57 def get_keyID(self, *sequence):
60 def redeem_script(self, *sequence):
64 class PendingAccount(Account):
65 def __init__(self, v):
66 self.addresses = [ v['pending'] ]
73 return {'pending':self.addresses[0]}
75 def get_name(self, k):
76 return _('Pending account')
79 class ImportedAccount(Account):
80 def __init__(self, d):
81 self.keypairs = d['imported']
83 def get_addresses(self, for_change):
84 return [] if for_change else sorted(self.keypairs.keys())
86 def get_pubkey(self, *sequence):
87 for_change, i = sequence
88 assert for_change == 0
89 addr = self.get_addresses(0)[i]
90 return self.keypairs[addr][0]
92 def get_private_key(self, sequence, wallet, password):
93 from wallet import pw_decode
94 for_change, i = sequence
95 assert for_change == 0
96 address = self.get_addresses(0)[i]
97 pk = pw_decode(self.keypairs[address][1], password)
98 # this checks the password
99 assert address == address_from_private_key(pk)
102 def has_change(self):
105 def add(self, address, pubkey, privkey, password):
106 from wallet import pw_encode
107 self.keypairs[address] = (pubkey, pw_encode(privkey, password ))
109 def remove(self, address):
110 self.keypairs.pop(address)
113 return {'imported':self.keypairs}
115 def get_name(self, k):
116 return _('Imported keys')
119 def update_password(self, old_password, new_password):
120 for k, v in self.keypairs.items():
122 b = pw_decode(a, old_password)
123 c = pw_encode(b, new_password)
124 self.keypairs[k] = (pubkey, c)
127 class OldAccount(Account):
128 """ Privatekey(type,n) = Master_private_key + H(n|S|type) """
130 def __init__(self, v):
131 self.addresses = v.get(0, [])
132 self.change = v.get(1, [])
133 self.mpk = v['mpk'].decode('hex')
136 return {0:self.addresses, 1:self.change}
139 def mpk_from_seed(klass, seed):
141 secexp = klass.stretch_key(seed)
142 master_private_key = ecdsa.SigningKey.from_secret_exponent( secexp, curve = SECP256k1 )
143 master_public_key = master_private_key.get_verifying_key().to_string().encode('hex')
144 return master_public_key
147 def stretch_key(self,seed):
149 for i in range(100000):
150 seed = hashlib.sha256(seed + oldseed).digest()
151 return string_to_number( seed )
154 def get_sequence(self, mpk, for_change, n):
155 return string_to_number( Hash( "%d:%d:"%(n,for_change) + mpk ) )
157 def get_address(self, for_change, n):
158 pubkey = self.get_pubkey(for_change, n)
159 address = public_key_to_bc_address( pubkey.decode('hex') )
163 def get_pubkey_from_mpk(self, mpk, for_change, n):
165 z = self.get_sequence(mpk, for_change, n)
166 master_public_key = ecdsa.VerifyingKey.from_string( mpk, curve = SECP256k1 )
167 pubkey_point = master_public_key.pubkey.point + z*curve.generator
168 public_key2 = ecdsa.VerifyingKey.from_public_point( pubkey_point, curve = SECP256k1 )
169 return '04' + public_key2.to_string().encode('hex')
171 def get_pubkey(self, for_change, n):
172 return self.get_pubkey_from_mpk(self.mpk, for_change, n)
174 def get_private_key_from_stretched_exponent(self, for_change, n, secexp):
175 order = generator_secp256k1.order()
176 secexp = ( secexp + self.get_sequence(self.mpk, for_change, n) ) % order
177 pk = number_to_string( secexp, generator_secp256k1.order() )
179 return SecretToASecret( pk, compressed )
182 def get_private_key(self, sequence, wallet, password):
183 seed = wallet.get_seed(password)
184 self.check_seed(seed)
185 for_change, n = sequence
186 secexp = self.stretch_key(seed)
187 pk = self.get_private_key_from_stretched_exponent(for_change, n, secexp)
191 def check_seed(self, seed):
193 secexp = self.stretch_key(seed)
194 master_private_key = ecdsa.SigningKey.from_secret_exponent( secexp, curve = SECP256k1 )
195 master_public_key = master_private_key.get_verifying_key().to_string()
196 if master_public_key != self.mpk:
197 print_error('invalid password (mpk)', self.mpk.encode('hex'), master_public_key.encode('hex'))
198 raise Exception('Invalid password')
201 def redeem_script(self, sequence):
204 def get_master_pubkeys(self):
205 return [self.mpk.encode('hex')]
208 return _('Old Electrum format')
210 def get_keyID(self, sequence):
212 return 'old(%s,%d,%d)'%(self.mpk.encode('hex'),a,b)
214 def get_xpubkeys(self, sequence):
215 s = ''.join(map(lambda x: bitcoin.int_to_hex(x,2), sequence))
216 mpk = self.mpk.encode('hex')
217 x_pubkey = 'fe' + mpk + s
221 def parse_xpubkey(self, x_pubkey):
222 assert is_extended_pubkey(x_pubkey)
228 n = int(bitcoin.rev_hex(dd[0:4]), 16)
235 class BIP32_Account(Account):
237 def __init__(self, v):
238 Account.__init__(self, v)
239 self.xpub = v['xpub']
242 d = Account.dump(self)
243 d['xpub'] = self.xpub
246 def get_address(self, for_change, n):
247 pubkey = self.get_pubkey(for_change, n)
248 address = public_key_to_bc_address( pubkey.decode('hex') )
251 def first_address(self):
252 return self.get_address(0,0)
254 def get_master_pubkeys(self):
258 def get_pubkey_from_x(self, xpub, for_change, n):
259 _, _, _, c, cK = deserialize_xkey(xpub)
260 for i in [for_change, n]:
261 cK, c = CKD_pub(cK, c, i)
262 return cK.encode('hex')
264 def get_pubkeys(self, sequence):
265 return sorted(map(lambda x: self.get_pubkey_from_x(x, *sequence), self.get_master_pubkeys()))
267 def get_pubkey(self, for_change, n):
268 return self.get_pubkeys((for_change, n))[0]
271 def get_private_key(self, sequence, wallet, password):
273 xpubs = self.get_master_pubkeys()
274 roots = [k for k, v in wallet.master_public_keys.iteritems() if v in xpubs]
276 xpriv = wallet.get_master_private_key(root, password)
279 _, _, _, c, k = deserialize_xkey(xpriv)
280 pk = bip32_private_key( sequence, k, c )
286 def redeem_script(self, sequence):
290 return _('Standard 1 of 1')
292 def get_xpubkeys(self, sequence):
293 s = ''.join(map(lambda x: bitcoin.int_to_hex(x,2), sequence))
294 mpks = self.get_master_pubkeys()
297 pubkey = self.get_pubkey_from_x(xpub, *sequence)
298 x_pubkey = 'ff' + bitcoin.DecodeBase58Check(xpub).encode('hex') + s
299 out.append( (pubkey, x_pubkey ) )
300 # sort it, so that x_pubkeys are in the same order as pubkeys
302 return map(lambda x:x[1], out )
305 def parse_xpubkey(self, pubkey):
306 assert is_extended_pubkey(pubkey)
307 pk = pubkey.decode('hex')
309 xkey = bitcoin.EncodeBase58Check(pk[0:78])
313 n = int( bitcoin.rev_hex(dd[0:2].encode('hex')), 16)
320 def get_name(self, k):
321 name = "Unnamed account"
322 m = re.match("m/(\d+)'", k)
326 name = "Main account"
328 name = "Account %s"%num
334 class BIP32_Account_2of2(BIP32_Account):
336 def __init__(self, v):
337 BIP32_Account.__init__(self, v)
338 self.xpub2 = v['xpub2']
341 d = BIP32_Account.dump(self)
342 d['xpub2'] = self.xpub2
345 def redeem_script(self, sequence):
346 pubkeys = self.get_pubkeys(sequence)
347 return Transaction.multisig_script(pubkeys, 2)
349 def get_address(self, for_change, n):
350 address = hash_160_to_bc_address(hash_160(self.redeem_script((for_change, n)).decode('hex')), 5)
353 def get_master_pubkeys(self):
354 return [self.xpub, self.xpub2]
357 return _('Multisig 2 of 2')
360 class BIP32_Account_2of3(BIP32_Account_2of2):
362 def __init__(self, v):
363 BIP32_Account_2of2.__init__(self, v)
364 self.xpub3 = v['xpub3']
367 d = BIP32_Account_2of2.dump(self)
368 d['xpub3'] = self.xpub3
371 def get_master_pubkeys(self):
372 return [self.xpub, self.xpub2, self.xpub3]
375 return _('Multisig 2 of 3')