Bitcoin
Signatures – Bitcoin message signing and other functions coded in C (not C++). Is there a good library that handles everything?
After searching the internet for libraries that can do this and/or code and AI code helpers that can do it, I have succeeded in writing C code (simple C, not C++) that generates valid Bitcoins. Sign your message! I coded in C 30 years ago, so my code may not be the best. If anyone knows a good library that does all the functions, I’d like to share it here. The next step is to verify and prepare your signature. Including transaction posting and more. Here’s what I did:
Next compile (assuming you have all the libs in your path):
gcc btcsign.c -o btcsign -lsecp256k1 -lssl -lcrypto -lm
Run with:
./btcsign "Private Key WIF" "Text message or SHA256 hash of a file"
for example:
./btcsign "5JkH4WGyg1XcUAzcfqLhKwpfs5A4v4Jdw6gWpgTLFhQW7wcnUMo" "Hello"
It produces the following output:
Decoded Private Key: 7a97de76a46131c657bb9cc1ea2a19db73a4db1977c613ae2d6b1359466f0738
Uncompressed Public Key: 042a5d607f02bc50d6472eb1f098a6255cbdcf8ac181b43e52c15fc0abe0aa44bb9890417f2336f47e963e9892ef5f8ee6379a7aa9196324e4b11e550e921c7bce
Address: 136sTPvs2UWRUS7sLScmPqWiqCKveqnewL
Message Hash: c6e436f77154a548799e2b749f9a0687b4dc03a1c4b0d3ebf962f5e862ae1b6e
sig: bf2015fab095a0acc6e53245fc72de4de431008638069b49f20f8b1ad2457bba7db492187e42d70d38e7ace0d2f184ec156aabf8de5979ed1e5e877209518864
bitcoin_sig: 1cbf2015fab095a0acc6e53245fc72de4de431008638069b49f20f8b1ad2457bba7db492187e42d70d38e7ace0d2f184ec156aabf8de5979ed1e5e877209518864
signature_base64: HL8gFfqwlaCsxuUyRfxy3k3kMQCGOAabSfIPixrSRXu6fbSSGH5C1w0456zg0vGE7BVqq/jeWXntHl6HcglRiGQ=
Verify the signature (last string) using the following public tools:
https://bitaps.com/signature
or
https://tools.qz.sg/
The full code is below:
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <openssl/sha.h>
#include <openssl/bio.h>
#include <openssl/buffer.h>
#include <openssl/evp.h>
#include <openssl/ripemd.h>
#include <secp256k1.h>
#include <secp256k1_recovery.h>
const char BASE58_CHARS() = "123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz";
void base58c_encode(uint8_t *input, size_t input_len, char **output)
// Count leading zeros
size_t leading_zeros = 0;
while (leading_zeros < input_len && input(leading_zeros) == 0)
++leading_zeros;
// Determine the size of the output buffer
size_t output_size = (input_len - leading_zeros) * 138 / 100 + 1;
uint8_t buffer(output_size);
memset(buffer, 0, output_size);
// Encode the input data
for (size_t i = leading_zeros, j = output_size - 1; i < input_len; ++i, j = output_size - 1)
for (int carry = input(i); j >= 0
// Determine the start index of the encoded data
size_t start_index = 0;
while (start_index < output_size && buffer(start_index) == 0)
++start_index;
// Allocate memory for the output string
*output = malloc(leading_zeros + output_size - start_index + 1);
if (*output == NULL)
fprintf(stderr, "Memory allocation failed\n");
return;
// Add leading zeros to the output string
memset(*output, '1', leading_zeros);
// Copy the encoded data to the output string
for (size_t i = start_index, j = leading_zeros; i < output_size; ++i, ++j)
(*output)(j) = BASE58_CHARS(buffer(i));
(*output)(leading_zeros + output_size - start_index) = '\0';
// Base58 decoding
int base58_decode(const char *base58, unsigned char *output, int *out_len)
unsigned char buffer(50) = 0;
int i, j, carry;
for (i = 0; i < strlen(base58); i++)
const char *ptr = strchr(BASE58_CHARS, base58(i));
if (!ptr) return -1;
carry = ptr - BASE58_CHARS;
for (j = sizeof(buffer) - 1; j >= 0; j--)
carry += 58 * buffer(j);
buffer(j) = carry & 0xff;
carry >>= 8;
// Find the starting non-zero position
for (i = 0; i < sizeof(buffer) && buffer(i) == 0; i++);
int leading_zeros = i;
int size = sizeof(buffer) - leading_zeros;
memcpy(output, buffer + leading_zeros, size);
*out_len = size;
return 0;
// Decode WIF private key to hex
int decode_wif_to_hex(const char *wif_key, unsigned char *hex_key)
unsigned char buffer(37);
int out_len;
if (base58_decode(wif_key, buffer, &out_len) != 0)
return -1;
// Validate checksum
unsigned char checksum(SHA256_DIGEST_LENGTH);
SHA256(buffer, out_len - 4, checksum);
SHA256(checksum, SHA256_DIGEST_LENGTH, checksum);
if (memcmp(checksum, buffer + out_len - 4, 4) != 0)
return -1;
// Extract private key (strip first and last byte)
memcpy(hex_key, buffer + 1, 32);
return 32;
// Base64 encoding
char *base64_encode(const unsigned char *input, int length)
BIO *bmem, *b64;
BUF_MEM *bptr;
char *buff;
b64 = BIO_new(BIO_f_base64());
BIO_set_flags(b64, BIO_FLAGS_BASE64_NO_NL);
bmem = BIO_new(BIO_s_mem());
b64 = BIO_push(b64, bmem);
BIO_write(b64, input, length);
BIO_flush(b64);
BIO_get_mem_ptr(b64, &bptr);
buff = (char *)malloc(bptr->length + 1);
memcpy(buff, bptr->data, bptr->length);
buff(bptr->length) = '\0';
BIO_free_all(b64);
return buff;
// Helper function to convert a recovered ECDSA signature to Bitcoin format
int ecdsa_signature_to_bitcoin(const unsigned char *sig, unsigned int sig_len, int recid, unsigned char *output) recid > 3) return -1;
output(0) = 27 + recid + (recid & 2 ? 4 : 0);
memcpy(output + 1, sig, sig_len);
return sig_len + 1;
// Function to print hexadecimal data
void print_hex(const char *label, const unsigned char *data, int len)
printf("%s: ", label);
for (int i = 0; i < len; i++)
printf("%02x", data(i));
printf("\n");
// Helper function to print the uncompressed public key
void print_uncompressed_pubkey(secp256k1_pubkey *pubkey, secp256k1_context *ctx)
unsigned char pubkey_serialized(65);
size_t pubkey_len = 65;
secp256k1_ec_pubkey_serialize(ctx, pubkey_serialized, &pubkey_len, pubkey, SECP256K1_EC_UNCOMPRESSED);
print_hex("Uncompressed Public Key", pubkey_serialized, pubkey_len);
void double_sha256(const unsigned char *input, size_t length, unsigned char *output)
unsigned char hash(SHA256_DIGEST_LENGTH);
SHA256(input, length, hash);
SHA256(hash, SHA256_DIGEST_LENGTH, output);
int main(int argc, char *argv()) SECP256K1_CONTEXT_VERIFY);
// Load the private key
secp256k1_ecdsa_recoverable_signature recoverable_sig;
secp256k1_pubkey pubkey;
if (!secp256k1_ec_pubkey_create(secp256k1_ctx, &pubkey, private_key_hex))
printf("Error creating public key\n");
return 1;
// Print the uncompressed public key
print_uncompressed_pubkey(&pubkey, secp256k1_ctx);
// Generate un_Bitcoin address from public key
unsigned char un_serialized_pubkey(65); // Increase the buffer size to 65 bytes
size_t un_serialized_pubkey_len = 65;
secp256k1_ec_pubkey_serialize(secp256k1_ctx, un_serialized_pubkey, &un_serialized_pubkey_len, &pubkey, SECP256K1_EC_UNCOMPRESSED);
const unsigned char *d = un_serialized_pubkey;
uint8_t un_sha256_hash(32);
uint8_t un_pubkey_hash(20);
SHA256(un_serialized_pubkey, sizeof(un_serialized_pubkey), un_sha256_hash);
RIPEMD160(un_sha256_hash, sizeof(un_sha256_hash), un_pubkey_hash);
uint8_t un_address_payload(21);
un_address_payload(0) = 0x00; // Main net version byte
memcpy(un_address_payload + 1, un_pubkey_hash, 20);
uint8_t un_address_checksum(4);
uint8_t un_address_hash(32);
SHA256(un_address_payload, 21, un_address_hash);
SHA256(un_address_hash, 32, un_address_hash);
memcpy(un_address_checksum, un_address_hash, 4);
uint8_t un_address_pre_base58(25);
memcpy(un_address_pre_base58, un_address_payload, 21);
memcpy(un_address_pre_base58 + 21, un_address_checksum, 4);
size_t un_address_base58_len = 25;
char* un_base58_address = malloc(34 * sizeof(char));
if (un_base58_address == NULL)
exit(EXIT_FAILURE);
base58c_encode(un_address_pre_base58, un_address_base58_len, &un_base58_address);
// Print the Address
printf("Address: %s\n", un_base58_address);
free(un_base58_address);
// Create the prefixed message
unsigned char prefixed_message(256);
size_t prefix_len = strlen(bitcoin_prefix);
size_t msg_len = strlen(message);
prefixed_message(0) = (unsigned char)msg_len;
memcpy(prefixed_message + 1, message, msg_len);
unsigned char full_prefixed_msg(256);
size_t full_prefixed_len = prefix_len + msg_len + 1;
memcpy(full_prefixed_msg, bitcoin_prefix, prefix_len);
memcpy(full_prefixed_msg + prefix_len, prefixed_message, msg_len + 1);
// Hash the prefixed message using SHA256 twice
unsigned char hash2(SHA256_DIGEST_LENGTH);
double_sha256(full_prefixed_msg, full_prefixed_len, hash2);
// Print the message hash
print_hex("Message Hash", hash2, SHA256_DIGEST_LENGTH);
// Sign the message hash
if (!secp256k1_ecdsa_sign_recoverable(secp256k1_ctx, &recoverable_sig, hash2, private_key_hex, NULL, NULL))
printf("Error signing the message\n");
return 1;
// Serialize the recoverable signature
unsigned char sig(64);
int recid;
secp256k1_ecdsa_recoverable_signature_serialize_compact(secp256k1_ctx, sig, &recid, &recoverable_sig);
printf("sig: ");
for (int i = 0; i < 64; i++)
printf("%02x", sig(i));
printf("\n");
// Convert to Bitcoin format
unsigned char bitcoin_sig(65);
int bitcoin_sig_len = ecdsa_signature_to_bitcoin(sig, sizeof(sig), recid, bitcoin_sig);
printf("bitcoin_sig: ");
for (int i = 0; i < 65; i++)
printf("%02x", bitcoin_sig(i));
printf("\n");
// Encode the signature in base64
char *signature_base64 = base64_encode(bitcoin_sig, bitcoin_sig_len);
printf("signature_base64: %s\n", signature_base64);
// Clean up
free(signature_base64);
secp256k1_context_destroy(secp256k1_ctx);
return 0;
