-
Glossary
-
账户Account
- 合约账户
- 外部拥有账户(EOA)
- 地址Address
- 区块Block
- 区块链Blockchain
- 合约创建交易Contract creation transaction
- 去中心化自治组织 DAO
- 难度 Difficulty
- 数字签名 Digital signature
- 椭圆曲线数字签名算法 ECDSA
-
以太坊改进建议 EIP
- 以太坊注释请求 ERC
- 以太 Ether
- 事件Event
- 以太坊虚拟机 EVM
- EVM汇编语言 EVM Assembly Language
- 后备方法 Fallback function
- 水龙头 Faucet
- 燃气 Gas
- 燃气限制 Gas limit
- 创世区块 Genesis block
- Geth
-
分层确定钱包 HD wallet
- 分层确定钱包种子 HD wallet seed
- 内部交易(又称“消息”)
- Keccak256
- Keystore 文件
- 库 Library
- 矿工 Miner
- 节点 Node
- 随机数 Nonce
- 叔块Ommer
- 权益证明 Proof-of-Stake (PoS)
- 工作量证明 Proof-of-Work (PoW)
- 奖励 Reward
- 私钥private key
- 智能合约 Smart Contract
-
Solidity
- Solidity inline assembly
- 测试网 Testnet
- 钱包 Wallet
- Web3
- Wei
- 零地址 Zero address
-
1.What is Ethereum
-
以太坊的定义
- “世界的计算机”
- “一个图灵完备的可编程和通用区块链”
- 计算机科学的角度:
- 更实际的角度:
- 与比特币的比较
- 以太坊的开发
-
以太坊的诞生
- 2013年底,Vitalik向Mastercoin提案允许用灵活且可编写脚本的合约
- 2013年12月,Vitalik分享一份白皮书,描述了以太坊背后的想法
- 从2013年12月开始,Vitalik和Gavin完善并发展了这个想法,共同构建了形成以太坊的协议层。
- 2015年7月30日,第一个以太坊地块被开采。世界计算机开始为世界服务……
-
以太坊开发的四个阶段
-
Frontier
-
Block #0
- 以太坊的初始阶段, 从2015年7月30日持续到2016年3月。
-
Ice Age
-
Block #200,000
- 引入指数级难度增长的一个难题,激励了到权益证明的过渡。
-
Homestead
-
Block #1,150,000
- 以太坊的第二阶段,2016年3月启动
-
DAO
-
Block #1,192,000
- 恢复被破坏的DAO合约的硬分叉,导致以太坊和以太坊经典分成两个竞争系统。
-
Tangerine Whistle
-
Block #2,463,000
- 改变某些IO密集操作的燃气计算方法和清除拒绝服务攻击(利用这些操作的低燃气成本)累积状态的硬分叉
-
Spurious Dragon
-
Block #2,675,000
- 解决更多拒绝服务攻击向量和另一种状态清除的硬分叉,还包括转播攻击保护机制
-
Metropolis
-
大都会拜占庭
- Block #4,370,000
- 大都会是以太坊的第三阶段,正是撰写本书的时间,于2017年10月启动。拜占庭是Metropolis的两个硬分叉中的第一个。
-
Constantinople
- 大都会阶段的第二部分,计划在2018年中期。预计将包括切换到混合的工作证明/权益证明共识算法,以及其他变更
-
Serenity
- 以太坊的第四个也是最后一个阶段。宁静尚未有计划的发布日期。
-
以太坊的组件
- P2P Network
- Consensus rules
- Transactions
- State Machine
- Blockchain
- Consensus Algorithm
-
Clients
- Geth
- Parity
-
以太坊和图灵完整性
- 以太坊在一个名为以太坊虚拟机的状态机中执行存储程序,在内存中读写数据的能力,使其成为一个图灵完整系统,因此是一台通用图灵机
- 以太坊的突破性创新是将存储程序计算机的通用计算架构与去中心化区块链相结合,从而创建分布式单状态(单例)世界计算机
- 以太坊程序“到处”运行,但却产生了共识规则所保证的共同(共识)状态
-
从通用区块链到去中心化应用 (DApps)
-
DApp至少由两部分组成
- 区块链上的智能合约
- 一个Web前端用户界面
- DApp是一个基于开放的,去中心化的,点对点基础架构服务的Web应用程序
-
万维网的进化
-
Web 2.0
- 网络向用户生成内容,响应接口和交互性的演变
-
Web 3.0
- 从集中拥有和管理的应用程序到基于去中心化协议的应用程序
- 以太坊的开发文化
- 为什么学习以太坊?
-
2.Intro
-
以太网货币单位
- 以太坊的货币单位称为 以太 ether
- 以太最小单位被命名为wei,一个 ether 是 1×10^18或1,000,000,000,000,000,000 个 wei
- 以太坊Ethereum是系统,以太Ether是货币
-
使用MetaMask
- 安装MetaMask浏览器插件
- 切换到测试网
- 获得测试Ether
- 发送Ether
- 查询交易记录
-
控制和责任
- 以太坊的每个用户都应该控制自己的密钥,这些密钥可以控制对资金和合约的访问
- 如果你丢失了你的钥匙,你将无法获得资金和合约。没有人可以帮助你重新获得访问权 - 你的资金将永远锁定
-
管理这一责任的提示
- 提示你选择密码时:强化它,备份并不共享
- 当系统提示你备份密钥或助记词时,请使用笔和纸进行物理备份
- 不要在数字文档,数字照片,屏幕截图,在线驱动器,加密的PDF等中存储密钥材料(加密或不加密),不要临时凑合的安全性
- 在传输任何大量数据之前,先做一个小的测试交易(例如,1美元)
- 勿将金钱汇入本书所示的任何地址
-
合约示例
-
// SPDX-License-Identifier: CC-BY-SA-4.0
// Version of Solidity compiler this program was written for
pragma solidity 0.6.4;
// Our first contract is a faucet!
contract Faucet {
// Accept any incoming amount
receive() external payable {}
// Give out ether to anyone who asks
function withdraw(uint withdraw_amount) public {
// Limit withdrawal amount
require(withdraw_amount <= 100000000000000000);
// Send the amount to the address that requested it
msg.sender.transfer(withdraw_amount);
}
}
- 1. 编译合约
- 2. 部署合约至链上
-
3. 与合约交互
- 查看合约
- 向合约发送以太
- 从合约中提取以太
-
3.Client
- 以太坊客户端是一个软件应用程序,它实现了以太坊规范并通过对等网络与其他以太坊客户端进行通信
-
六个主要实现
- Parity(Rust)
- Geth(Go)
- cpp-ethereum(C++)
- pyethereum(Python)
- Mantis(Scala)
- Harmony(Java)
-
Full Node
-
Advantages
- Supports the resilience and censorship resistance of Ethereum-based networks
- Authoritatively validates all transactions
- Can interact with any contract on the public blockchain without an intermediary
- Can directly deploy contracts into the public blockchain without an intermediary
- Can query (read-only) the blockchain status (accounts, contracts, etc.) offline
- Can query the blockchain without letting a third party know the information you’re reading
-
Disadvantages
- Requires significant and growing hardware and bandwidth resources
- May require several days to fully sync when first started
- Must be maintained, upgraded, and kept online to remain synced
-
Public Testnet
-
Advantages
- A testnet node needs to sync and store significantly less data compared to mainnet—about 75 GB depending on the network.
- A testnet node can sync fully in much less time.
- Deploying contracts or making transactions requires test ether, which has no value and can be acquired for free from several "faucets."
- Testnets are public blockchains with many other users and contracts, running "live."
-
Local Blockchain Simulation, e.g. Ganache
-
Advantages
- No syncing and almost no data on disk; you mine the first block yourself
- No need to obtain test ether; Ganache is initialized with accounts that already hold ether for testing
- No other users, just you
- No other contracts, just the ones you deploy after you launch it unless you use the option of forking off an existing Ethereum node
-
Disadvantages
- Having no other users means that it doesn’t behave the same as a public blockchain. There’s no competition for transaction space or sequencing of transactions.
- No miners other than you means that mining is more predictable; therefore, you can’t test some scenarios that occur on a public blockchain.
- If you are forking off an existing Ethereum node, it will need to be an archival node for you to interact with state from blocks that may have been pruned otherwise
-
4. Keys-addresses
-
Private Keys
- A private key is simply a number, picked at random.
- Ownership and control of the private key is the root of user control over all funds associated with the corresponding Ethereum address, as well as access to contracts that authorize that address.
- The private key is used to create signatures required to spend ether by proving ownership of funds used in a transaction.
-
Public Keys
- An Ethereum public key is a point on an elliptic curve, meaning it is a set of x and y coordinates that satisfy the elliptic curve equation.
- These numbers are produced from the private key by a calculation that can only go one way.
-
Cryptographic Hash Functions
- a hash function is “any function that can be used to map data of arbitrary size to data of fixed size.”
-
main properties
-
Determinism
- A given input message always produces the same hash output.
-
Verifiability
- Computing the hash of a message is efficient (linear complexity).
-
Noncorrelation
- A small change to the message (e.g., a 1-bit change) should change the hash output so extensively that it cannot be correlated to the hash of the original message.
-
Irreversibility
- Computing the message from its hash is infeasible, equivalent to a brute-force search through all possible messages.
-
Collision protection
- It should be infeasible to calculate two different messages that produce the same hash output.
-
Keccak-256
- Ethereum uses the Keccak-256 cryptographic hash function
-
Ethereum Addresses
- Ethereum addresses are unique identifiers that are derived from public keys or contracts using the Keccak-256 one-way hash function.
-
Derivation
- Private key k = f8f8a2f43c8376ccb0871305060d7b27b0554d2cc72bccf41b2705608452f315
- Public key K (x and y coordinates concatenated and shown as hex):
K = 6e145ccef1033dea239875dd00dfb4fee6e3348b84985c92f103444683bae07b83b5c38e5e...
- We use Keccak-256 to calculate the hash of this public key:
Keccak256(K) = 2a5bc342ed616b5ba5732269001d3f1ef827552ae1114027bd3ecf1f086ba0f9
- Then we keep only the last 20 bytes (least significant bytes), which is our Ethereum address:
001d3f1ef827552ae1114027bd3ecf1f086ba0f9
- Most often you will see Ethereum addresses with the prefix 0x that indicates they are hexadecimal-encoded, like this:
0x001d3f1ef827552ae1114027bd3ecf1f086ba0f9
-
5. Wallets
- Nondeterministic (Random) Wallets
-
Deterministic (Seeded) Wallets
- wallets that contain private keys that are all derived from a single master key, or seed
-
Hierarchical Deterministic Wallets (BIP-32/BIP-44)
- easy to derive many keys from a single seed
-
Wallet Best Practices
- Mnemonic code words, based on BIP-39
- HD wallets, based on BIP-32
- Multipurpose HD wallet structure, based on BIP-43
- Multicurrency and multiaccount wallets, based on BIP-44
-
6. Transactions
-
Structure of a transaction
-
Nonce
- A scalar value equal to the number of transactions sent from this address or, in the case of accounts with associated code, the number of contract-creations made by this account.
- Gas price
- Gas limit
- Recipient
- Value
- Data
- v,r,s
-
7. Smart Contracts and Solidity
- "Immutable computer programs that run deterministically in the context of an Ethereum Virtual Machine as part of the Ethereum network protocol."
-
High-level programming languages for smart contracts
-
LLL
- Declarative
- Serpent
-
Solidity
- Imperative
- Vyper
- Bamboo
-
ABI
- "an interface between two program modules; often, between the operating system and user programs"
- "to define the functions in the contract that can be invoked and describe how each function will accept arguments and return its result."
- specified as a JSON array of function descriptions and events
- Data Types
- Global Variables and Functions
-
Contract Definition
- interface
- library
- Functions
- Constructor and selfdestruct
- Function Modifiers
- Inheritance
-
Error Handling
- assert
- require
- revert
- Events
-
Calling Other Contracts
- Send
- call
- callcode
- delegatecall
-
Gas consideration
- Avoid Dynamically Sized Arrays
- Avoid Calls to Other Contracts
- Estimating Gas Cost
-
9. Smart Contracts Security
-
Security Best Practices
- Minimalism/simplicity
- Code reuse
- Code quality
- Readability/auditability
- Test coverage
-
Security Risks and Antipatterns
- Reentrancy
- Arithmetic Over/Underflows
- Unexpected Ether
- DELEGATECALL
- Default Visibilities
- Entropy Illusion
- External Contract Referencing
- Short Address/Parameter Attack
- Unchecked CALL Return Values
- Race Conditions/Front Running
- Denial of Service (DoS)
- Block Timestamp Manipulation
- Constructors with Care
- Uninitialized Storage Pointers
- Floating Point and Precision
- Tx.Origin Authentication
- Contract Libraries
-
10. Tokens
-
Usage
- Currency
- Resource
- Asset
- Access
- Equity
- Voting
- Collectible
- Identity
- Attestation
- Utility
-
Fungibility
-
Fungible tokens
- we can substitute any single unit of the token for another without any difference in its value or function
-
Non-fungible tokens
- tokens that each represent a unique tangible or intangible item and therefore are not interchangeable
-
Counterparty Risk
- the risk that the other party in a transaction will fail to meet their obligations.
-
Intrinsicality
- intrinsic assets
-
extrinsic assets
- e.g. real estate, corporate voting shares, trademarks, and gold bars
-
Standard
-
ERC20
- a standard for fungible tokens
- ERC223
- ERC777
-
ERC721
- Non-fungible Token (Deed) Standard
-
11. Oracles
- systems that can provide external data sources to Ethereum smart contracts
-
Why Oracles?
- In order to maintain consensus, EVM execution must be totally deterministic and based only on the shared context of the Ethereum state and signed transactions.
-
Use Cases
-
extrinsic (i.e., "real-world" or off-chain) information
- e.g. football games, the price of gold, or truly random numbers
-
Attestations
- e.g. academic certificates or government IDs
-
More examples
- Random numbers/entropy from physical sources such as quantum/thermal processes: e.g., to fairly select a winner in a lottery smart contract
- Parametric triggers indexed to natural hazards: e.g., triggering of catastrophe bond smart contracts, such as Richter scale measurements for an earthquake bond
- Exchange rate data: e.g., for accurate pegging of cryptocurrencies to fiat currency
- Capital markets data: e.g., pricing baskets of tokenized assets/securities
- Benchmark reference data: e.g., incorporating interest rates into smart financial derivatives
- Static/pseudostatic data: security identifiers, country codes, currency codes, etc.
- Time and interval data: for event triggers grounded in precise time measurements
- Weather data: e.g., insurance premium calculations based on weather forecasts
- Political events: for prediction market resolution
- Sporting events: for prediction market resolution and fantasy sports contracts
- Geolocation data: e.g., as used in supply chain tracking
- Damage verification: for insurance contracts
- Events occurring on other blockchains: interoperability functions
- Ether market price: e.g., for fiat gas price oracles
- Flight statistics: e.g., as used by groups and clubs for flight ticket pooling
-
Design Patterns
-
key functions
- Collect data from an off-chain source.
- Transfer the data on-chain with a signed message.
- Make the data available by putting it in a smart contract’s storage.
-
3 main ways to set up an oracle
- request–response
-
publish-subscribe
- effectively provides a broadcast service for data that is expected to change
- e.g. price feeds, weather information, economic or social statistics, traffic data
-
immediate-read
- provide data that is only needed for an immediate decision
- Computation Oracles
- Decentralized Oracles
-
12. DApps
-
What Is a DApp
- an application that is mostly or entirely decentralized
-
Advantages of DApp
- Resiliency
- Transparency
- Censorship resistance
-
Components
- Backend(Smart Contract)
- Frontend
-
Data Storage
- IPFS, Swarm, etc.
-
Decentralized Message Communications Protocols
- Whisper, etc.
- DApp Example: Auction DApp
- ENS
-
13. EVM
-
What is EVM
- The EVM is the part of Ethereum that handles smart contract deployment and execution.
- EVM running on the Ethereum blockchain can be thought of as a global decentralized computer containing millions of executable objects, each with its own permanent data store.
- The EVM has a stack-based architecture, storing all in-memory values on a stack.
-
Gas
- Gas is Ethereum’s unit for measuring the computational and storage resources required to perform actions on the Ethereum blockchain.
- miner fee = gas cost * gas price
-
Block Gas Limit
- the maximum amount of gas that may be consumed by all the transactions in a block, and constrains how many transactions can fit into a block.
-
14. Consensus
- Proof of Work (PoW)
- Proof of Stake (PoS)