# Ethereum transaction OpenSSL signing

Create, sign and send ethereum transaction by the hard way

**ToDo:** use own dir for temp files or make all subprocess operations without generatin files in project folder

## 1 Imports, Web3 connection
Now connect to Ethereum provider via web3 RPC

In [1]:
import subprocess
from web3 import Web3

from eth_account._utils.transactions import (
    encode_transaction,
    serializable_unsigned_transaction_from_dict,
)

from eth_keys import (
    keys,
)

from eth_keys.datatypes import (  
    PublicKey,
)

from eth_keys.backends.native.ecdsa import (
    ecdsa_raw_verify,
    ecdsa_raw_recover,
    decode_public_key,
    private_key_to_public_key,
)

In [2]:
w3 = Web3(Web3.HTTPProvider('http://127.0.0.1:8545'))
CHAIN_ID = 1

## 2.1 Generate private key via OpenSSL (optional)

In [3]:
subprocess.run('openssl ecparam -name secp256k1 -genkey -noout -out private_key.pem', shell=True).returncode
with open('private_key.pem') as f:
    for line in f:
        print(line, end='')

-----BEGIN EC PRIVATE KEY-----
MHQCAQEEIPX0XyQMU+HK8+yKzd4rpvt01r5GifuwyQHmNId7qDt5oAcGBSuBBAAK
oUQDQgAEP3i3kf3dJnM6RL87N7egr0+jv7fzQkbT35RGQWQ+w1NOO7FTjmSGTPqV
cOHNBAhgzVAaAInXduX2koFpOrZwqQ==
-----END EC PRIVATE KEY-----


In [4]:
raw_output = subprocess.run('openssl ec -in private_key.pem -text -noout', shell=True, capture_output=True).stdout.decode()
print(raw_output)

Private-Key: (256 bit)
priv:
    f5:f4:5f:24:0c:53:e1:ca:f3:ec:8a:cd:de:2b:a6:
    fb:74:d6:be:46:89:fb:b0:c9:01:e6:34:87:7b:a8:
    3b:79
pub:
    04:3f:78:b7:91:fd:dd:26:73:3a:44:bf:3b:37:b7:
    a0:af:4f:a3:bf:b7:f3:42:46:d3:df:94:46:41:64:
    3e:c3:53:4e:3b:b1:53:8e:64:86:4c:fa:95:70:e1:
    cd:04:08:60:cd:50:1a:00:89:d7:76:e5:f6:92:81:
    69:3a:b6:70:a9
ASN1 OID: secp256k1



In [5]:
private_key_hexstr = ''.join([x.replace(' ','').replace(':','') for x in raw_output.split('\n')[2:5]])
print('priv: ' + private_key_hexstr)
public_key_hexstr = ''.join([x.replace(' ','').replace(':','') for x in raw_output.split('\n')[6:11]])
print('pub: ' + public_key_hexstr)

priv: f5f45f240c53e1caf3ec8acdde2ba6fb74d6be4689fbb0c901e634877ba83b79
pub: 043f78b791fddd26733a44bf3b37b7a0af4fa3bfb7f34246d3df944641643ec3534e3bb1538e64864cfa9570e1cd040860cd501a0089d776e5f69281693ab670a9


## 2.2 Import raw private key (e.g. from ganache) and create locally its .pem file
It should be in hex format without `0x` prefix

In [6]:
# this adress is 0 account from ganache
private_key_hexstr = '44d01ff7ab5e778dac355876d5200b1f0d4f8d9bbd0f15723e7683f9c6ee8a78'

public_key_hexstr = '04' + Web3.toHex(private_key_to_public_key(Web3.toBytes(hexstr=private_key_hexstr)))[2:]
subprocess.run(f'echo 30740201010420 {private_key_hexstr} a00706052b8104000aa144034200 {public_key_hexstr} | xxd -r -p > raw_pem_key', shell=True).returncode
subprocess.run('openssl ec -inform d < raw_pem_key > private_key.pem', shell=True).returncode

0

## 3 Create ethereum transaction dict

In [7]:
address = PublicKey(private_key_to_public_key(Web3.toBytes(hexstr=private_key_hexstr))).to_address()
w3.eth.defaultAccount = Web3.toChecksumAddress(address)
w3.eth.defaultAccount

'0x90C08087aF274b77516Df05952273008FEA2c4b9'

In [8]:
# w3.eth.defaultAccount = w3.eth.accounts[0]

nonce = w3.eth.getTransactionCount(w3.eth.defaultAccount)
transaction_dict = {
    #'from': w3.eth.accounts[0],
    'to': Web3.toChecksumAddress(w3.eth.accounts[1]),
    'value': 1,
    'gas': 200000,
    'gasPrice': 0, # Web3.toWei(1, 'gwei'),
    'nonce': nonce,
    'chainId': CHAIN_ID
}

nonce

21

## 4 Transaction dict RLP serialize and get Keccak256 hash

Prepare to serialize transaction dict (create abstract web3py transaction object), then RLP encode transaction and get keccak hash. 

In [9]:
unsigned_tx = serializable_unsigned_transaction_from_dict(transaction_dict)
unsigned_tx_keccak_hash = unsigned_tx.hash()
Web3.toHex(unsigned_tx_keccak_hash)

'0xdcf680f0bfb7b1d0d76cde05393b07d39f63f912060b131f501ca8b2a912da1d'

## 5.1 Sign transaction dict via web3.py (optional)

In [10]:
signed_tx = w3.eth.account.signTransaction(transaction_dict, private_key_hexstr)
print('signed tx hex:\n' + w3.toHex(signed_tx.rawTransaction) + '\n')
print('signed tx hash hex:\n' + w3.toHex(signed_tx.hash) + '\n')
print('tx ecdsa signature, (v, r, s):')
print(w3.toHex(signed_tx.v))
print(w3.toHex(signed_tx.r))
print(w3.toHex(signed_tx.s))

signed tx hex:
0xf860158083030d4094bab021f651b216ae46f3f73f75df3c5cb91b631b018026a0adb79d12b2cf1167ff794a64d02e12ce14f4d095937b36275853dcf215ab2ea1a0415ea2c485348ce056e4ee191b1845ad5411df84b6adadf9d12cfe187f4adb6a

signed tx hash hex:
0xcecc0f464701b3bb80c6eb336a48f439ef7467d157b3d16a35e2f6a4eb05cec9

tx ecdsa signature, (v, r, s):
0x26
0xadb79d12b2cf1167ff794a64d02e12ce14f4d095937b36275853dcf215ab2ea1
0x415ea2c485348ce056e4ee191b1845ad5411df84b6adadf9d12cfe187f4adb6a


## 5.2 Sign transaction via ecdsa_signer (STM32 using wolfSSL)

ToDo: finalize communicating via serial port

In [11]:
import serial

ecdsa_signer = serial.Serial('/dev/ttyACM0')  # open serial port
ecdsa_signer.timeout = 5
ecdsa_signer.stopbits = 2
print(ecdsa_signer.name) # check connection

/dev/ttyACM0


Import private key to STM32:

In [12]:
command = b'IMPK' + bytes.fromhex(private_key_hexstr)
ecdsa_signer.write(command)
line = ecdsa_signer.read_until(size=8)
print(line)

b'OKAYPKID'


Sign transaction hash via STM32:

In [13]:
command = b'SGHS' + bytes.fromhex(Web3.toHex(unsigned_tx_keccak_hash)[2:])
ecdsa_signer.write(command)
feedback_msg = ecdsa_signer.read_until(size=4)

r_str = ecdsa_signer.read_until(size=32).hex()
s_str = ecdsa_signer.read_until(size=32).hex()

[feedback_msg, r_str, s_str]

[b'SGRS',
 'c4f598bc6e9cea9becea23e60448e9c7c3201a4623e280d9c04b7060104665bc',
 '489708b733d1dceb51c1d64644aaad39cd709b31f729988f29cfdb977bd06ffc']

In [None]:
ecdsa_signer.readline()

In [None]:
ecdsa_signer.close()

## 5.3 Sign transaction via OpenSSL

keccak hash should be used in openssl sign.
```bash
echo <keccak_hash> | xxd -r -p > keccak_hash_file
```

In [None]:
subprocess.run(f'echo {Web3.toHex(unsigned_tx_keccak_hash)[2:]} | xxd -r -p > unsigned_tx_keccak_hash', shell=True).returncode

* **s** must be less than ```secp256k1n / 2 + 1```
* raw recovery ID (**v**) (0/1) role description: value 0 represents an even **y** value of elliptic curve signature, 1 is odd

> it's not possible to get y from openssl, but this value can be only in [0,1]

In [None]:
secp256k1n = 115792089237316195423570985008687907852837564279074904382605163141518161494337
s_num = secp256k1n
while s_num > secp256k1n / 2:
    subprocess.run('openssl pkeyutl -sign -inkey private_key.pem -in unsigned_tx_keccak_hash > signature', shell=True)
    raw_output = subprocess.run('openssl asn1parse -inform DER -in signature', shell=True, capture_output=True).stdout.decode()
    r_str, s_str = [x.split(':')[-1] for x in raw_output.split('\n')[1:3]]
    s_num = int(s_str, 16)
print(r_str)
print(s_str)

## 6 Check signature

Check if signature is valid:

In [14]:
ecdsa_raw_verify(
    Web3.toBytes(unsigned_tx_keccak_hash),
    [int(r_str, 16), int(s_str, 16)],
    private_key_to_public_key(Web3.toBytes(hexstr=private_key_hexstr))
)

True

It must return your ethereum address:
> if address does not match, try to change raw recovery ID (0,1)

In [15]:
v_raw = 0

PublicKey(ecdsa_raw_recover(
    Web3.toBytes(unsigned_tx_keccak_hash),
    [v_raw, int(r_str, 16), int(s_str, 16)],
)).to_address()

'0x90c08087af274b77516df05952273008fea2c4b9'

RLP encode signed transaction, it's final step before you can send it

In [16]:
CHAIN_ID_OFFSET = 35
v = v_raw + CHAIN_ID_OFFSET + 2 * CHAIN_ID # it's from yellow paper

signed_tx = encode_transaction(
    unsigned_tx,
    vrs=(v,
         int(r_str, 16),
         int(s_str, 16)
    )
)
Web3.toHex(signed_tx)

'0xf860158083030d4094bab021f651b216ae46f3f73f75df3c5cb91b631b018025a0c4f598bc6e9cea9becea23e60448e9c7c3201a4623e280d9c04b7060104665bca0489708b733d1dceb51c1d64644aaad39cd709b31f729988f29cfdb977bd06ffc'

## 7 Send signed transaction 

In [17]:
tx_hash = w3.eth.sendRawTransaction(signed_tx)
tx_hash

HexBytes('0x3cdc649d48dd4a55c210d9f10b02239e8ae89df528939b435f09485cfae1969e')

In [18]:
w3.eth.getTransactionReceipt(tx_hash)

AttributeDict({'transactionHash': HexBytes('0x3cdc649d48dd4a55c210d9f10b02239e8ae89df528939b435f09485cfae1969e'),
 'transactionIndex': 0,
 'blockHash': HexBytes('0x7a9e1f29912b786d3514eafb51612802e27a6a3ad27097f9f761fc0f12eb5382'),
 'blockNumber': 22,
 'from': '0x90c08087af274b77516df05952273008fea2c4b9',
 'to': '0xbab021f651b216ae46f3f73f75df3c5cb91b631b',
 'gasUsed': 21000,
 'cumulativeGasUsed': 21000,
 'contractAddress': None,
 'logs': [],
 'status': 1,
 'logsBloom': HexBytes('0x00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000'