fix utxo pubkey decompress

Author: andkom

composer.json

@@ -15,10 +15,12 @@
   ],
   "require": {
     "php": "^7.1",
+    "ext-gmp": "^7.1",
     "ext-leveldb": "^0.2.1",
     "stephenhill/base58": "^1.1",
     "bitwasp/bech32": "^0.0.1",
-    "andkom/php-bcdatastream": "^1.1"
+    "andkom/php-bcdatastream": "^1.1",
+    "mdanter/ecc": "^0.5.0"
   },
   "require-dev": {
     "phpunit/phpunit": ">=5.0"

src/Header.php

@@ -81,6 +81,6 @@ public function getHash(): string
     {
         $stream = new Writer();
         $this->serialize($stream);
-        return Utils::hash($stream->getBuffer(), true);
+        return Utils::hash256($stream->getBuffer(), true);
     }
 }

src/PublicKey.php

@@ -0,0 +1,191 @@
+<?php
+
+namespace AndKom\Bitcoin\Blockchain;
+
+use Mdanter\Ecc\EccFactory;
+
+/**
+ * Class PublicKey
+ * @package AndKom\Bitcoin\Blockchain
+ */
+class PublicKey
+{
+    const PREFIX_UNCOMPRESSED = "\x04";
+    const PREFIX_COMPRESSED_EVEN = "\x02";
+    const PREFIX_COMPRESSED_ODD = "\x03";
+
+    const LENGTH_UNCOMPRESSED = 65;
+    const LENGTH_COMPRESSED = 33;
+
+    /**
+     * @var \GMP
+     */
+    protected $x;
+
+    /**
+     * @var \GMP
+     */
+    protected $y;
+
+    /**
+     * @var bool
+     */
+    protected $wasOdd;
+
+    /**
+     * PublicKey constructor.
+     * @param \GMP $x
+     * @param \GMP|null $y
+     * @param bool $wasOdd
+     */
+    public function __construct(\GMP $x, \GMP $y = null, bool $wasOdd = false)
+    {
+        $this->x = $x;
+        $this->y = $y;
+        $this->wasOdd = $wasOdd;
+    }
+
+    /**
+     * @return \GMP
+     */
+    public function getX(): \GMP
+    {
+        return $this->x;
+    }
+
+    /**
+     * @return \GMP
+     * @throws Exception
+     */
+    public function getY(): \GMP
+    {
+        if ($this->isCompressed()) {
+            throw new Exception("Compressed public key doesn't have Y coordinate.");
+        }
+
+        return $this->y;
+    }
+
+    /**
+     * @return bool
+     */
+    public function wasOdd(): bool
+    {
+        return $this->wasOdd;
+    }
+
+    /**
+     * @return bool
+     */
+    public function isCompressed(): bool
+    {
+        return is_null($this->y);
+    }
+
+    /**
+     * @return PublicKey
+     * @throws Exception
+     */
+    public function compress(): self
+    {
+        if ($this->isCompressed()) {
+            throw new Exception('Public key is already compressed.');
+        }
+
+        $wasOdd = \gmp_cmp(
+                \gmp_mod($this->y, \gmp_init(2)),
+                \gmp_init(0)
+            ) !== 0;
+
+        return new static($this->x, null, $wasOdd);
+    }
+
+    /**
+     * @return PublicKey
+     * @throws Exception
+     */
+    public function decompress(): self
+    {
+        if (!$this->isCompressed()) {
+            throw new Exception('Public key is already decompressed.');
+        }
+
+        $curve = EccFactory::getSecgCurves()->generator256k1()->getCurve();
+        $y = $curve->recoverYfromX($this->wasOdd, $this->x);
+
+        return new static($this->x, $y);
+    }
+
+    /**
+     * @return \Mdanter\Ecc\Crypto\Key\PublicKey
+     * @throws Exception
+     */
+    public function getEccPublicKey(): \Mdanter\Ecc\Crypto\Key\PublicKey
+    {
+        $adapter = EccFactory::getAdapter();
+        $generator = EccFactory::getSecgCurves()->generator256k1();
+        $curve = $generator->getCurve();
+
+        if ($this->isCompressed()) {
+            $key = $this->decompress();
+        } else {
+            $key = $this;
+        }
+
+        $point = $curve->getPoint($key->getX(), $this->getY());
+
+        return new \Mdanter\Ecc\Crypto\Key\PublicKey($adapter, $generator, $point);
+    }
+
+    /**
+     * @param string $data
+     * @return PublicKey
+     * @throws Exception
+     */
+    static public function parse(string $data): self
+    {
+        $length = strlen($data);
+
+        if ($length == static::LENGTH_COMPRESSED) {
+            $prefix = substr($data, 0, 1);
+
+            if ($prefix != static::PREFIX_COMPRESSED_ODD && $prefix != static::PREFIX_COMPRESSED_EVEN) {
+                throw new Exception('Invalid compressed public key prefix.');
+            }
+
+            $x = \gmp_init(bin2hex(substr($data, 1, 32)), 16);
+            $y = null;
+        } elseif ($length == static::LENGTH_UNCOMPRESSED) {
+            $prefix = substr($data, 0, 1);
+
+            if ($prefix != static::PREFIX_UNCOMPRESSED) {
+                throw new Exception('Invalid uncompressed public key prefix.');
+            }
+
+            $x = \gmp_init(bin2hex(substr($data, 1, 32)), 16);
+            $y = \gmp_init(bin2hex(substr($data, 33, 32)), 16);
+        } else {
+            throw new Exception('Invalid public key size.');
+        }
+
+        return new static($x, $y, $prefix == static::PREFIX_COMPRESSED_ODD);
+    }
+
+    /**
+     * @return string
+     */
+    public function serialize(): string
+    {
+        $x = hex2bin(\gmp_strval($this->x, 16));
+
+        if ($this->isCompressed()) {
+            $prefix = $this->wasOdd ? static::PREFIX_COMPRESSED_ODD : static::PREFIX_COMPRESSED_EVEN;
+            $y = '';
+        } else {
+            $prefix = static::PREFIX_UNCOMPRESSED;
+            $y = hex2bin(\gmp_strval($this->y, 16));
+        }
+
+        return $prefix . $x . $y;
+    }
+}

src/Transaction.php

@@ -137,6 +137,6 @@ public function getHash(bool $segWit = false): string
     {
         $stream = new Writer();
         $this->serialize($stream, $segWit);
-        return Utils::hash($stream->getBuffer(), true);
+        return Utils::hash256($stream->getBuffer(), true);
     }
 }

src/UnspentOutput.php

@@ -119,9 +119,12 @@ public function getAddress(Bitcoin $network = null): string
 
             case 0x02:
             case 0x03:
+                return $addressSerializer->getPayToPubKeyAddress($this->script);
+
             case 0x04:
             case 0x05:
-                return $addressSerializer->getPayToPubKeyAddress($this->script);
+                $decompressed = PublicKey::parse($this->script)->decompress()->serialize();
+                return $addressSerializer->getPayToPubKeyAddress($decompressed);
         }
 
         // fallback

src/Utils.php

@@ -17,7 +17,7 @@ class Utils
      * @param bool $raw
      * @return string
      */
-    static public function hash(string $data, bool $raw = false): string
+    static public function hash256(string $data, bool $raw = false): string
     {
         return hash('sha256', hash('sha256', $data, true), $raw);
     }
@@ -41,7 +41,7 @@ static public function hash160(string $data, bool $raw = false): string
     static public function hash160ToAddress(string $hash160, int $network): string
     {
         $hash160 = chr($network) . $hash160;
-        $checksum = substr(static::hash($hash160, true), 0, 4);
+        $checksum = substr(static::hash256($hash160, true), 0, 4);
         $address = $hash160 . $checksum;
         return (new Base58())->encode($address);
     }

tests/PublicKeyTest.php

@@ -0,0 +1,79 @@
+<?php
+
+declare(strict_types=1);
+
+namespace AndKom\Bitcoin\Blockchain\Tests;
+
+use AndKom\Bitcoin\Blockchain\PublicKey;
+use PHPUnit\Framework\TestCase;
+
+class PublicKeyTest extends TestCase
+{
+    protected $x = '6655feed4d214c261e0a6b554395596f1f1476a77d999560e5a8df9b8a1a3515';
+    protected $y = '217e88dd05e938efdd71b2cce322bf01da96cd42087b236e8f5043157a9c068e';
+
+    public function testCompress()
+    {
+        $pk = new PublicKey(\gmp_init($this->x, 16), \gmp_init($this->y, 16));
+
+        $this->assertEquals(\gmp_strval($pk->getX(), 16), $this->x);
+        $this->assertEquals(\gmp_strval($pk->getY(), 16), $this->y);
+        $this->assertFalse($pk->isCompressed());
+
+        $pkc = $pk->compress();
+
+        $this->assertTrue($pkc->isCompressed());
+        $this->assertFalse($pkc->wasOdd());
+        $this->assertEquals(\gmp_strval($pkc->getX(), 16), $this->x);
+    }
+
+    public function testDecompress()
+    {
+        $pkc = new PublicKey(\gmp_init($this->x, 16), null, false);
+
+        $pk = $pkc->decompress();
+
+        $this->assertFalse($pk->isCompressed());
+        $this->assertEquals(\gmp_strval($pk->getX(), 16), $this->x);
+        $this->assertEquals(\gmp_strval($pk->getY(), 16), $this->y);
+    }
+
+    public function testParseUncompressed()
+    {
+        $key = "04{$this->x}{$this->y}";
+
+        $pk = PublicKey::parse(hex2bin($key));
+
+        $this->assertEquals(\gmp_strval($pk->getX(), 16), $this->x);
+        $this->assertEquals(\gmp_strval($pk->getY(), 16), $this->y);
+        $this->assertFalse($pk->isCompressed());
+    }
+
+    public function testParseCompressed()
+    {
+        $key = "02{$this->x}";
+
+        $pk = PublicKey::parse(hex2bin($key));
+
+        $this->assertEquals(\gmp_strval($pk->getX(), 16), $this->x);
+        $this->assertTrue($pk->isCompressed());
+    }
+
+    public function testSerializeUncompressed()
+    {
+        $key = "04{$this->x}{$this->y}";
+
+        $pk = new PublicKey(\gmp_init($this->x, 16), \gmp_init($this->y, 16));
+
+        $this->assertEquals($pk->serialize(), hex2bin($key));
+    }
+
+    public function testSerializeCompressed()
+    {
+        $key = "02{$this->x}";
+
+        $pk = new PublicKey(\gmp_init($this->x, 16), null, false);
+
+        $this->assertEquals($pk->serialize(), hex2bin($key));
+    }
+}

tests/UnspentOutputTest.php

@@ -0,0 +1,29 @@
+<?php
+
+declare(strict_types=1);
+
+namespace AndKom\Bitcoin\Blockchain\Tests;
+
+use AndKom\Bitcoin\Blockchain\UnspentOutput;
+use PHPUnit\Framework\TestCase;
+
+class UnspentOutputTest extends TestCase
+{
+    public function testPayToPubKeyCompressed()
+    {
+        $uo = new UnspentOutput();
+        $uo->type = 0x02;
+        $uo->script = hex2bin('02633280c0a93b45217059013ddadab8d35b9a858336028fecdff64c6a5e068fad');
+
+        $this->assertEquals($uo->getAddress(), '1A8nTwDWzKhV2UNEss6DtDBKuYfJH8TFDG');
+    }
+
+    public function testPayToPubKeyUncompressed()
+    {
+        $uo = new UnspentOutput();
+        $uo->type = 0x04;
+        $uo->script = hex2bin('02633280c0a93b45217059013ddadab8d35b9a858336028fecdff64c6a5e068fad');
+
+        $this->assertEquals($uo->getAddress(), '1PTYXwamXXgQoAhDbmUf98rY2Pg1pYXhin');
+    }
+}