Cross-platform Python CFFI bindings for libsecp256k1
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

115 lines
3.7 KiB

from coincurve.context import GLOBAL_CONTEXT
from coincurve.utils import bytes_to_int, int_to_bytes, sha256
from ._libsecp256k1 import ffi, lib
def cdata_to_der(cdata, context=GLOBAL_CONTEXT):
der ='unsigned char[%d]' % MAX_SIG_LENGTH)
der_length ='size_t *', MAX_SIG_LENGTH)
lib.secp256k1_ecdsa_signature_serialize_der(context.ctx, der, der_length, cdata)
return bytes(ffi.buffer(der, der_length[0]))
def der_to_cdata(der, context=GLOBAL_CONTEXT):
cdata ='secp256k1_ecdsa_signature *')
parsed = lib.secp256k1_ecdsa_signature_parse_der(context.ctx, cdata, der, len(der))
if not parsed:
raise ValueError('The DER-encoded signature could not be parsed.')
return cdata
def recover(message, recover_sig, hasher=sha256, context=GLOBAL_CONTEXT):
msg_hash = hasher(message) if hasher is not None else message
if len(msg_hash) != 32:
raise ValueError('Message hash must be 32 bytes long.')
pubkey ='secp256k1_pubkey *')
recovered = lib.secp256k1_ecdsa_recover(context.ctx, pubkey, recover_sig, msg_hash)
if recovered:
return pubkey
raise Exception('failed to recover ECDSA public key')
def serialize_recoverable(recover_sig, context=GLOBAL_CONTEXT):
output ='unsigned char[%d]' % CDATA_SIG_LENGTH)
recid ='int *')
lib.secp256k1_ecdsa_recoverable_signature_serialize_compact(context.ctx, output, recid, recover_sig)
return bytes(ffi.buffer(output, CDATA_SIG_LENGTH)) + int_to_bytes(recid[0])
def deserialize_recoverable(serialized, context=GLOBAL_CONTEXT):
if len(serialized) != 65:
raise ValueError("Serialized signature must be 65 bytes long.")
ser_sig, rec_id = serialized[:64], bytes_to_int(serialized[64:])
if not 0 <= rec_id <= 3:
raise ValueError("Invalid recovery id.")
recover_sig ='secp256k1_ecdsa_recoverable_signature *')
parsed = lib.secp256k1_ecdsa_recoverable_signature_parse_compact(context.ctx, recover_sig, ser_sig, rec_id)
if not parsed:
raise ValueError('Failed to parse recoverable signature.')
return recover_sig
The functions below may change and are not tested!
def serialize_compact(raw_sig, context=GLOBAL_CONTEXT): # no cov
output ='unsigned char[%d]' % CDATA_SIG_LENGTH)
res = lib.secp256k1_ecdsa_signature_serialize_compact(context.ctx, output, raw_sig)
assert res == 1
return bytes(ffi.buffer(output, CDATA_SIG_LENGTH))
def deserialize_compact(ser_sig, context=GLOBAL_CONTEXT): # no cov
if len(ser_sig) != 64:
raise Exception("invalid signature length")
raw_sig ='secp256k1_ecdsa_signature *')
res = lib.secp256k1_ecdsa_signature_parse_compact(context.ctx, raw_sig, ser_sig)
assert res == 1
return raw_sig
def signature_normalize(raw_sig, context=GLOBAL_CONTEXT): # no cov
Check and optionally convert a signature to a normalized lower-S form.
If check_only is True then the normalized signature is not returned.
This function always return a tuple containing a boolean (True if
not previously normalized or False if signature was already
normalized), and the normalized signature. When check_only is True,
the normalized signature returned is always None.
sigout ='secp256k1_ecdsa_signature *')
res = lib.secp256k1_ecdsa_signature_normalize(context.ctx, sigout, raw_sig)
return not not res, sigout
def recoverable_convert(recover_sig, context=GLOBAL_CONTEXT): # no cov
normal_sig ='secp256k1_ecdsa_signature *')
lib.secp256k1_ecdsa_recoverable_signature_convert(context.ctx, normal_sig, recover_sig)
return normal_sig