digaran
Copper Member
Hero Member
 Offline
Activity: 1330
Merit: 903
🖤😏
|
 |
June 30, 2023, 11:32:16 PM |
|
what calculation do you have made
*Insert random numbers *Insert random logic Puzzle 125 starts with 1A. I understood it Lol, weren't you satoshi himself just yesterday? You should already know all the keys of all puzzles! My estimations are rounded up numbers and they could be inversed/ backwards, since I calculate from greater keys down the bit range, I could be 99.99% off the correct path, I am still working on validating the exact range, though if the puzzle key was out of the 2^125 range, like in 128 bit, I could tell according to my calculations. The keys and their value representations I provided above are for simplicity, though we could calculate the keys based on decimal values of bit ranges. For example, we could consider 2^124 as 16 in decimal and 2^125 as 32, we could as well call 2^124 "21" in decimal, I chose to represent 2^124 as 1000 in decimal. The other miscalculation of mine could be due to the fact that I focus on hexadecimal representation of keys too much, therefore I could have confused the hex characters with their mirror versions, i.e, if we divide "a" by 2, we would get 5, dividing 1 by 2 will result in "e" and depending on each character on the right side of a hex character, the result of dividing them could differ and cause more confusion, which is why I might be off with my numbers. One thing I have failed so far to figure out, is to subtract a key from another key to land on a rounded key. But my random logic and random numbers stop me from moving forward.😉 |
🖤😏
|
|
|
|
|
J1980
Newbie
Offline
Activity: 14
Merit: 0
|
|
July 04, 2023, 11:30:48 AM |
|
Just wondering I get on the 125-bit puzzle (BSGS) search using Keyhunt (CPU) 192 Pkeys/s
(using this best test settings on a i7: -t8 -k1024)
How is it doing compared to a decent GPU?
|
|
|
|
|
james5000
Jr. Member
Offline
Activity: 69
Merit: 2
|
|
July 04, 2023, 12:56:34 PM |
|
Please can someone help me to implement private hex key to hash160 in gpu cuda c++? I believe I have found a possible way to eliminate too many checks, leaving the challenge interval 66 to about 27 trillion  , please  |
|
|
|
|
rosengold
Jr. Member
Offline
Activity: 149
Merit: 7
|
|
July 06, 2023, 05:01:22 PM |
|
Please can someone help me to implement private hex key to hash160 in gpu cuda c++? I believe I have found a possible way to eliminate too many checks, leaving the challenge interval 66 to about 27 trillion , please all you need is there. mod mult, mod add, sha256 and hash160 for cuda. |
|
|
|
|
digaran
Copper Member
Hero Member
Offline
Activity: 1330
Merit: 903
🖤😏
|
|
July 07, 2023, 07:01:35 PM |
|
Some updates on my previous hints!
If we add this key (later multiply it by 2 and 4 to see what result you get)
0209393576e52df0c10a165b31ac6d1da4ffb01da64c10fc496765ac823bdd7b3b
To this known key
0x4000000000000000000000000000000
We will reach this one
028e99d794f780a074945a2c53abb69184f46f07a707aab1a618a849f935224d0a
And if we double each of them, we will see something interesting, and I didn't even divide any key using division op.
|
🖤😏
|
|
|
CryptoHFs
Member
Offline
Activity: 182
Merit: 35
STRAIGHT FORWARD
|
|
July 08, 2023, 09:35:24 AM |
|
What is the difference between that and Dat file scams
|
Ich habe keine lust
|
|
|
JDScreesh
Jr. Member
Offline
Activity: 53
Merit: 13
|
|
July 09, 2023, 10:29:31 AM
Last edit: July 09, 2023, 10:45:30 AM by JDScreesh |
|
Hello there  Congratulations to the solver (or solvers) of the puzzle #125 👍🏼 Looks like was the same person (or people) who solved the puzzle # 120  |
|
|
|
|
s.john
Jr. Member
Offline
Activity: 40
Merit: 8
|
|
July 09, 2023, 12:10:49 PM |
|
yeah, I'm not confident anymore about the security of Bitcoin and secp256k1, especially when the solvers of these large keys are not willing to share what methods they used to reveal the private keys, the whole purpose of this challenge is to prove the immunity of the math behind bitcoin from any attack, so when someone is able to solve the challenge and not coming out to explain the method, this is basically telling us that someone knows a backdoor.
|
|
|
|
|
|
Etar
|
|
July 09, 2023, 05:50:40 PM
Last edit: July 09, 2023, 07:27:03 PM by Etar |
|
He/they solved puzzle #120 27.02.2023 Most likely after that they immediately moved on to solving puzzle #125 that was solved 09.7.2023 In total it took them about 130 days = 11232000s = 2^23.42s Expected op for #125 2^63.4 so solving speed around 2^40 op/s If for ex. GPU speed 2^32(~4Gkey/s) than need 256 GPUs to solve #125 puzzle in 130 days. I don't see anything out of the ordinary here. As far as I understand, these people have access to a large number of GPUs In addition, they already have additional funds to rent additional GPUs to speed up the process of finding #130 puzzles. In order to defeat this monopoly, it is necessary to unite.Creating a pool does not make sense for many reasons. I propose an alternative solution that will also require the participation of each hunter. We can use fraction-kangaroo or just a python script that will divide #130 puzzles into 2^20 pieces. Each hunter will look at least for 1 key in the range of 109 bits. Search position in the range from 0 to 2^20-1 everyone can determine himself randomly. If you have multiple rigs you can use multiple random positions for each rig. For example, a rig of 6 3070 will be able to find or say with a probability of 75% that there is no key in this range for 90 days Thus, if we can cover 2^20 positions at the same time, then one of us will find the key in 90 days. Naturally, the prize will remain with the winner. But each participant will at least have a chance and will not require too many resources from each. 3Emiwzxme7Mrj4d89uqohXNncnRM15YESs will need at least 1500GPUs to solve #130 puzzle in this time. Otherwise, if everyone tries to look for a puzzle #130 with their few rigs in the entire range 2^129, then I can definitely say that these guys 3Emiwzxme7Mrj4d89uqohXNncnRM15YESs will find it earlier.Here is python scrypt that devide 2^129 bit range by 2^20 with random position: import random
import math
def inverse(x, p):
"""
Calculate the modular inverse of x ( mod p )
"""
inv1 = 1
inv2 = 0
n=1
while p != 1 and p!=0:
quotient = x // p
inv1, inv2 = inv2, inv1 - inv2 * quotient
x, p = p, x % p
n = n+1
return inv2
def dblpt(pt, p):
"""
Calculate pt+pt = 2*pt
"""
if pt is None:
return None
(x,y)= pt
if y==0:
return None
slope= 3*pow(x,2,p)*pow(2*y,p-2,p)
xsum= pow(slope,2,p)-2*x
ysum= slope*(x-xsum)-y
return (xsum%p, ysum%p)
def addpt(p1,p2, p):
"""
Calculate p1+p2
"""
if p1 is None or p2 is None:
return None
(x1,y1)= p1
(x2,y2)= p2
if x1==x2:
return dblpt(p1, p)
# calculate (y1-y2)/(x1-x2) modulus p
slope=(y1-y2)*pow(x1-x2,p-2,p)
xsum= pow(slope,2,p)-(x1+x2)
ysum= slope*(x1-xsum)-y1
return (xsum%p, ysum%p)
def ptmul(pt,a, p):
"""
Calculate pt*a
"""
scale= pt
acc=None
while a:
if a&1:
if acc is None:
acc= scale
else:
acc= addpt(acc,scale, p)
scale= dblpt(scale, p)
a >>= 1
return acc
def ptdiv(pt,a,p,n):
"""
Calculate pt/a
"""
divpt=inverse(a, n)%n
return ptmul(pt, divpt, p)
def getuncompressedpub(compressed_key):
"""
returns uncompressed public key
"""
y_parity = int(compressed_key[:2]) - 2
x = int(compressed_key[2:], 16)
a = (pow(x, 3, p) + 7) % p
y = pow(a, (p+1)//4, p)
if y % 2 != y_parity:
y = -y % p
return (x,y)
def compresspub(uncompressed_key):
"""
returns compressed public key
"""
(x,y)=uncompressed_key
y_parity = y&1
head='02'
if y_parity ==1:
head='03'
compressed_key = head+'{:064x}'.format(x)
return compressed_key
#secp256k1 constants
Gx=0x79BE667EF9DCBBAC55A06295CE870B07029BFCDB2DCE28D959F2815B16F81798
Gy=0x483ADA7726A3C4655DA4FBFC0E1108A8FD17B448A68554199C47D08FFB10D4B8
n=0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141
p = 2**256 - 2**32 - 977
g= (Gx,Gy)
rangePower=129
rb=2**rangePower
re=2**(rangePower+1)-1
print ("Bit range 2^",math.log2(re-rb))
print ("Begin > 0x%x"%rb,">DEC ",rb)
print ("End > 0x%x"%re,">DEC ",re)
#MANUAL
compressed_key='03633CBE3EC02B9401C5EFFA144C5B4D22F87940259634858FC7E59B1C09937852'
point=getuncompressedpub(compressed_key)
divisor = pow(2,20)
print("")
rbdiv = rb//divisor
rediv = re//divisor
print ("Div Begin > 0x%x"%rbdiv,">DEC ",rbdiv)
print ("Div End > 0x%x"%rediv,">DEC ",rediv)
print ("Div Bit range 2^",math.log2(rediv-rbdiv))
newpub=ptdiv(point,divisor,p,n)
(partGx,partGy)=ptdiv(g,divisor,p,n)
idx=random.randrange(0,divisor-1)
#Randomly generate position in range 0..divisor-1
print("pos > 0x%x"%idx)
if idx<divisor:
if idx==0:
(searchpubx,searchpuby)=newpub
(fracX, fracY)=(partGx,partGy)
else:
(fracX, fracY)=ptmul((partGx,partGy),idx,p)
(searchpubx,searchpuby) = addpt(newpub,(fracX,p-fracY), p)
(fracX, fracY) = addpt((fracX, fracY),(partGx,partGy), p)
print("searchpub > ",compresspub((searchpubx,searchpuby)))
else:
print("idx>=divisor")
|
|
|
|
|
CryptoHFs
Member
Offline
Activity: 182
Merit: 35
STRAIGHT FORWARD
|
|
July 09, 2023, 05:55:25 PM |
|
He/they solved puzzle #120 27.02.2023
Most likely after that they immediately moved on to solving puzzle #125 that was solved 09.7.2023
In total it took them about 130 days = 11232000s = 2^23.42s
Expected op for #125 2^63.4 so solving speed around 2^40 op/s
If for ex. GPU speed 2^32(~4Gkey/s) than need 256 GPUs to solve #125 puzzle in 130 days.
I don't see anything out of the ordinary here.
As far as I understand, these people have access to a large number of GPUs
In addition, they already have additional funds to rent additional GPUs to speed up the process of finding #130 puzzles.
In order to defeat this monopoly, it is necessary to unite.
Creating a pool does not make sense for many reasons.
I propose an alternative solution that will also require the participation of each hunter.
We can use fraction-kangaroo or just a python script that will divide #130 puzzles into 2^20 pieces.
Each hunter will look at least for 1 key in the range of 109 bits.
Search position in the range from 0 to 2^20-1 everyone can determine himself randomly.
If you have multiple rigs you can use multiple random positions for each rig.
For example, a rig of 6 3070 will be able to find or say with a probability of 75% that there is no key in this range for 90 days
Thus, if we can cover 2^20 positions at the same time, then one of us will find the key in 90 days.
Naturally, the prize will remain with the winner. But each participant will at least have a chance and will not require too many resources from each.
3Emiwzxme7Mrj4d89uqohXNncnRM15YESs will need at least 1500GPUs to solve #130 puzzle in this time.
Otherwise, if everyone tries to look for a puzzle #130 with their few rigs in the entire range 2^129, then I can definitely say that these guys 3Emiwzxme7Mrj4d89uqohXNncnRM15YESs will find it earlier.
In your example what is the cost of 1 gpu? |
Ich habe keine lust
|
|
|
digaran
Copper Member
Hero Member
Offline
Activity: 1330
Merit: 903
🖤😏
|
|
July 09, 2023, 09:48:26 PM |
|
We need to see the private keys for #120 & #125, we deserve that much.
|
🖤😏
|
|
|
|
dextronomous
|
|
July 09, 2023, 10:43:46 PM |
|
hi there etar, Here is python scrypt that devide 2^129 bit range by 2^20 with random position: import random
import math
def inverse(x, p):
"""
Calculate the modular inverse of x ( mod p )
"""
inv1 = 1
inv2 = 0
n=1
while p != 1 and p!=0:
quotient = x // p
inv1, inv2 = inv2, inv1 - inv2 * quotient
x, p = p, x % p
n = n+1
return inv2
def dblpt(pt, p):
"""
Calculate pt+pt = 2*pt
"""
if pt is None:
return None
(x,y)= pt
if y==0:
return None
slope= 3*pow(x,2,p)*pow(2*y,p-2,p)
xsum= pow(slope,2,p)-2*x
ysum= slope*(x-xsum)-y
return (xsum%p, ysum%p)
def addpt(p1,p2, p):
"""
Calculate p1+p2
"""
if p1 is None or p2 is None:
return None
(x1,y1)= p1
(x2,y2)= p2
if x1==x2:
return dblpt(p1, p)
# calculate (y1-y2)/(x1-x2) modulus p
slope=(y1-y2)*pow(x1-x2,p-2,p)
xsum= pow(slope,2,p)-(x1+x2)
ysum= slope*(x1-xsum)-y1
return (xsum%p, ysum%p)
def ptmul(pt,a, p):
"""
Calculate pt*a
"""
scale= pt
acc=None
while a:
if a&1:
if acc is None:
acc= scale
else:
acc= addpt(acc,scale, p)
scale= dblpt(scale, p)
a >>= 1
return acc
def ptdiv(pt,a,p,n):
"""
Calculate pt/a
"""
divpt=inverse(a, n)%n
return ptmul(pt, divpt, p)
def getuncompressedpub(compressed_key):
"""
returns uncompressed public key
"""
y_parity = int(compressed_key[:2]) - 2
x = int(compressed_key[2:], 16)
a = (pow(x, 3, p) + 7) % p
y = pow(a, (p+1)//4, p)
if y % 2 != y_parity:
y = -y % p
return (x,y)
def compresspub(uncompressed_key):
"""
returns compressed public key
"""
(x,y)=uncompressed_key
y_parity = y&1
head='02'
if y_parity ==1:
head='03'
compressed_key = head+'{:064x}'.format(x)
return compressed_key
#secp256k1 constants
Gx=0x79BE667EF9DCBBAC55A06295CE870B07029BFCDB2DCE28D959F2815B16F81798
Gy=0x483ADA7726A3C4655DA4FBFC0E1108A8FD17B448A68554199C47D08FFB10D4B8
n=0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141
p = 2**256 - 2**32 - 977
g= (Gx,Gy)
rangePower=129
rb=2**rangePower
re=2**(rangePower+1)-1
print ("Bit range 2^",math.log2(re-rb))
print ("Begin > 0x%x"%rb,">DEC ",rb)
print ("End > 0x%x"%re,">DEC ",re)
#MANUAL
compressed_key='03633CBE3EC02B9401C5EFFA144C5B4D22F87940259634858FC7E59B1C09937852'
point=getuncompressedpub(compressed_key)
divisor = pow(2,20)
print("")
rbdiv = rb//divisor
rediv = re//divisor
print ("Div Begin > 0x%x"%rbdiv,">DEC ",rbdiv)
print ("Div End > 0x%x"%rediv,">DEC ",rediv)
print ("Div Bit range 2^",math.log2(rediv-rbdiv))
newpub=ptdiv(point,divisor,p,n)
(partGx,partGy)=ptdiv(g,divisor,p,n)
idx=random.randrange(0,divisor-1)
#Randomly generate position in range 0..divisor-1
print("pos > 0x%x"%idx)
if idx<divisor:
if idx==0:
(searchpubx,searchpuby)=newpub
(fracX, fracY)=(partGx,partGy)
else:
(fracX, fracY)=ptmul((partGx,partGy),idx,p)
(searchpubx,searchpuby) = addpt(newpub,(fracX,p-fracY), p)
(fracX, fracY) = addpt((fracX, fracY),(partGx,partGy), p)
print("searchpub > ",compresspub((searchpubx,searchpuby)))
else:
print("idx>=divisor")
[/quote] so if the private key found with this divisor = pow(2,20) can i adjust higher 2/30 ? how to get the private of 130 in console if the next pubkey found belonging to pubkey below. thanks man.> Div Bit range 2^ 109.0 pos > 0xc3273 searchpub > 023 |
|
|
|
|
|
Etar
|
|
July 10, 2023, 06:06:35 AM |
|
-snip-
so if the private key found with this divisor = pow(2,20) can i adjust higher 2/30 ? how to get the private of 130
in console if the next pubkey found belonging to pubkey below. thanks man.>
Div Bit range 2^ 109.0
pos > 0xc3273
searchpub > 023
When you find the key in the kangaroo, you need to multiply it by the divisor and add the position For ex, your position 0xc3273, divisor = 2^20 = 0x100000 searchpub > 02c5b7be6babe3224acd1f87c02c387f9c4701e7ede2d511f93ca4733191b904bb When kangaroo find the key you need: PrivatKey = KangarooKey * Divisor + position PrivatKey = KangarooKey * 0x100000 + 0xc3273 If we want to search for a key, as I described above, then we need to search for it according to certain rules. And not so that someone divides by 2 ^ 30, and someone by 2 ^ 20. As well as the division must be performed according to the rules from the script, and not according to some others. In order to get success, we need to cover 2 ^ 20 positions, if we do not have enough resources, then we should not even start.But I don't see a lot of people interested yet. Most likely everything will remain as it was and will try to look for the key in the entire range. |
|
|
|
|
GR Sasa
Member
Offline
Activity: 200
Merit: 14
|
|
July 10, 2023, 07:16:02 AM |
|
@Etar, I'm interested. I recommend using ecctools for dividing the range. Anyways if we don't unite as you said, the miners will get the third key and we won't get anything
|
|
|
|
|
|
Etar
|
|
July 10, 2023, 08:14:44 AM |
|
@Etar, I'm interested. I recommend using ecctools for dividing the range. Anyways if we don't unite as you said, the miners will get the third key and we won't get anything
The first problem is that we need thousands of hunters, not just you and me. The second problem is that kangaroo is a probabilistic algorithm. It is good when you know for sure that the public key you are looking for lies in the given range. But in our case, only one public key will be in the range, so you need to set the -m parameter. At the same time, it must be set to at least 2. And then this is not a guarantee that the desired key is not in the range. For good in this case, need to search using BSGS. However, searching for a key using BSGS in the range of 109 bits is too resource-intensive, many times more resource-intensive than kangaroo. So maybe someone can offer an alternative solution to this problem. |
|
|
|
|
bestie1549
Jr. Member
Offline
Activity: 75
Merit: 5
|
|
July 10, 2023, 09:08:34 AM |
|
The real question here is why is nobody solving for the keys without the pubkeys e.g puzzle 66
We understand that the pubkeys puzzles would soon be fully solved but the focus here is solving the keys without the pubkeys because giving an example, if puzzle 64 was last solved on this day "2022-09-10" and up until now its almost one year now since the lask key without a pubkey was solved but just about 4 to 5 months since the last key with a pubkey was solved then I assume that puzzle 99 for example might take forever fot solve.
What is the best method to apply to solving for the keys without the pubkeys because puzzle 66 shoud have been solved by now.
|
|
|
|
|
bestie1549
Jr. Member
Offline
Activity: 75
Merit: 5
|
|
July 10, 2023, 09:43:41 AM |
|
and for the solvers of puzzle 120 and 125 we kindly plead that you publish the private keys of these puzzles respectfully. It is only fair to give us the keys for us to better understand the puzzle. Thank you. We don't need to know who you are if you solely choose to stay anonymous then that is fine. you could just create a random account and post the keys then you can go ahead to delete the account.
|
|
|
|
|
digaran
Copper Member
Hero Member
Offline
Activity: 1330
Merit: 903
🖤😏
|
|
July 10, 2023, 10:48:13 AM |
|
The real question here is why is nobody solving for the keys without the pubkeys e.g puzzle 66
We understand that the pubkeys puzzles would soon be fully solved but the focus here is solving the keys without the pubkeys because giving an example, if puzzle 64 was last solved on this day "2022-09-10" and up until now its almost one year now since the lask key without a pubkey was solved but just about 4 to 5 months since the last key with a pubkey was solved then I assume that puzzle 99 for example might take forever fot solve.
What is the best method to apply to solving for the keys without the pubkeys because puzzle 66 shoud have been solved by now.
Is that really the real question though? It has easy answers, with public key you can solve thousands of times faster, without public key, you either go directly to brute force all the keys in the range, or you'd go breaking 2 hash functions just to reach the public key, so it is more wise to skip all the drama and stick with the easy way. I'd say up to puzzle 79 is solvable in a few years given the price going up to make it worth the effort, however even puzzle #159 can be cracked with special ASICs as long as the prize is more than the cost, I suspect that we will never see more than #79 solved in our life time and this puzzle will remain a legacy among other achievements of Satoshi for the future generations! |
🖤😏
|
|
|
WanderingPhilospher
Sr. Member
Offline
Activity: 1372
Merit: 268
Shooters Shoot...
|
|
July 10, 2023, 12:43:33 PM |
|
We can use fraction-kangaroo or just a python script that will divide #130 puzzles into 2^20 pieces.
Each hunter will look at least for 1 key in the range of 109 bits. What if we divide the pubkey by x amount. we will say divide #130 pubkey by 10; that gives us 1,024 pubkeys and reduces the range to 2^120/2^119. I will run tames and then we just need 1,024 people (or less if multiple people run multiple pubkeys) to run wilds. I will post tame points (text files with all tame points) and then all who run wild points just need to verify if they have a match. If there is a match, we can share/split the reward. This way 2 people will share prize and people can run as many pubkeys as they want to. We can decide on the best number to divide by, if interested. Example tame points: 72eaff741b31e674e823570ea0000000
0ef943b6b900c758c17bd6f0c0000000
f8536da415411e4bb2c0177600000000
0bc01c4051c4b9d2b80c5d6900000000
e14aec9c4a01765c809410a5c0000000
c9bc2740735b478ee9cd841d80000000
31b580628f072553f30f5167c0000000
dac9c736237cd07117b71490a0000000
321f92692348055814d4eb5d00000000
eade44fe5ae49ffbfa972e5180000000
ad54552d665c1baaba46068d20000000
aab1759d8241aba0015fa611c0000000
e5ab9e9fd481a789f178b93a40000000
7e92ee441d924c83faee5d6800000000
2e8512535a029c1b5a841a3de0000000
8dcadd24e8f2990df80c961420000000
9d14e08ed9c558904c26892620000000
d93fda5a52d6112e7b9de460a0000000
405607ddd7a740b1f2903be2a0000000
ab6ebbdb77d55b14053f5a5900000000
17000a072245075a9ed2d66600000000
b8d81acdc5431b721dd5cb6140000000
3e825233033301486048390960000000
fc3b3117a291d34b4a865050a0000000
d315708ef56dfef75d2d640120000000
056bbb63a91be97200c435af60000000
94addc9dc093f8e54c86ab0600000000
eaa896be8970e3bdb8e0d1e2e0000000
c3f7c22c2b06460ce977a8cce0000000
45f68f5450fc5a8dfa6a7d9880000000
8b25ed6f78450eb98b86bd4420000000
6fc311534d7a988a92adf36c40000000
e223581788f08cf6f7e9e1de20000000
e0bf51daee64355694adeae480000000
a4ff4aaa40b238d16b2b3110c0000000
fc10fad238d54db43be74eb680000000
740959dd6375f90af1c10a8c40000000
3ef027cc12a6160697e2c453a0000000
df9de9947e9bc75dba0b6c22c0000000
d32d019d02b333e60d05b95140000000
And all anyone has to do is check their wild points against the above; if match, winner winner. |
|
|
|
|
|
