Lost txn, how to adjust or interpret the data? (was R verified but can't find it)

7 replies 79 views
Posts: 22 · Reputation: 134
#1Oct 17, 2017, 03:07 PM
So I ran into a PK that validated R on the signature I was working on for a whale... I've got this... sorry for leaving out the important numbers, but you get the picture... My problem is... I can't find the address when I try to do a bip44 1000adddy dump... and even though it validates the R against the correct signature... I'm not sure what my next steps should be... Can anyone help me out here? Yeah, I know there’s some room for error and sometimes the lattice can throw out weird results... it wasn't a standard lattice either. Thanks DEBUG:lattice_recovery:Relative error: 0.0408481761 INFO:lattice_recovery:Successfully recovered private key: 0x6xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx INFO:main:Successfully recovered private key: 6xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx INFO:main:Verifying signature... DEBUG:lattice_recovery:Verification details for k=0xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx, r=0xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx: DEBUG:lattice_recovery:Direct error: some numbers DEBUG:lattice_recovery:Wrapped error: same as above DEBUG:lattice_recovery:Relative error: 0.0408481761 INFO:main:✓ Signature verified successfully Great news! We’ve managed to recover and verify the private key for signature 1234. Here are the details: Private key: 6xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx The recovery process went well with: Found a candidate private key in the initial lattice reduction Verification passed with ~4.08% relative error (within our acceptable range)
4 Reply Quote Share
the_bearMember
Posts: 24 · Reputation: 187
#2Oct 17, 2017, 03:42 PM
What program/engine are you using? Are you sure that this program is not fake/scam? (Anyway, you can get p2pkh address with www.bitaddress.org with your private key and check the balance on any blockexplorer)
3 Reply Quote Share
Posts: 22 · Reputation: 134
#3Oct 17, 2017, 05:28 PM
Not a scam   just something i made and seems to work.  Granted i had a issue with the publick key logic, i think i fixed it.. What i dont get is why it would validate 2 sigs with the key but then be off on the publickey translation... so ill have to run it again .. Just python with advanced lattice methods..
2 Reply Quote Share
Posts: 22 · Reputation: 134
#4Oct 17, 2017, 09:01 PM
ok someone ......  here just argh i wish i could show values... SO i looked over it all and restarted and saw i had values from back in December .. so i used those and ... verified two Bitcoin ECDSA signatures with their known nonce (k) values: Signature 1: Signature 2: Both signatures were successfully verified - meaning when we multiply k by the generator point G, we get points whose x-coordinates match the r values in the signatures. This confirms the k values are correct and can be used for private key recovery. DEBUG: Scalar multiplication took 8.10ms INFO: R.x matches r value! INFO: Signature 1 verified successfully INFO: Testing signature 2: DEBUG: Scalar multiplication took 8.42ms INFO: R.x matches r value! INFO: Signature 2 verified successfully INFO: Success! Results: {'success': True, 'method': 'Signature verification', 'result': 'All signatures verified successfully'} Now I can show you all the points used in the ECDSA verification:   Public Key Point Q: Q.x = Q.y =d     Generator Point G (the base point of secp256k1): G.x = G.y =     For Signature 1, the R point (k*G): R.x = R.y =     For Signature 2, the R point (k*G): R.x = R.y = The logs show that for both signatures, the x-coordinate of the R point (R.x) exactly matches the r value in each signature, confirming the signatures are valid Success! Results: {'success': True, 'method': 'Signature verification', 'result': 'All signatures verified successfully'} Based on the verification results for address MONDO, the signature has been successfully verified on the secp256k1 curve. Here's what was confirmed:     The signature coordinates are valid on the secp256k1 curve     The nonce k =  was verified     The R point (k*G) calculation matches the signature's r value     Both the curve point validation and signature verification passed successfully this isnt available anywhere so dont bother looking... OKAY - it shows the addy block and everything is cool...  but im not seeing it and got another result for sig 2 ...   wtf... like really.... and its not whatever this guy is talking about...... ok ok whatever... if i have RSK valid i should be able to sign and add a Z ...  any script that works id appriciate it. Question ... K changes value from sig1 to sig2 ... so the addage if you have K you have PK inst correct? otherwise K would be the same value? .. or it shifting is normal?
5 Reply Quote Share
Posts: 22 · Reputation: 134
#5Oct 18, 2017, 02:19 AM
What do you do.... if there is a missing txn you cannot locate?   Which is not allowing the VALID CURRENT txn from not being accepted. I made a txn  and everything is good..it checks out validates etc.... BUT when i go to push it i get a missing or spent txn warning...   This should be the one that is missing but how do i  adjust for it ?   dfb11825bc3c1dd1c0004fcbc70c900d91c70da90f19b3206a2cfcb645d0f646 Any help would be appriciated...  or are you all just going to hate instead?  lol Thank you. IS there a way to adjust for the missing item? IS there a way to parse the data since its not on the chain  i cant locate it... only thing left...argh.... figures.
2 Reply Quote Share
Posts: 17 · Reputation: 184
#6Oct 18, 2017, 08:23 AM
I think the easiest way to solve your issue is to ask the real coder of your "tool" about this. Pretending it's yours although you can't see the obvious issue in the code, won't help. Good luck anyway!
2 Reply Quote Share
Posts: 22 · Reputation: 134
#7Oct 18, 2017, 02:38 PM
IT was not a txn... .but some malformed result that was being inserted... that said i stripped it and am trying to compile it .. but comes out malformed.. I have the RS i can sign its shows valid and resolves to the pubkey.  -- this result is GOOD,. Its the rest i have an issue with ... Can someone recommend a buillder a compiler for the signature data..  ive widdled it down to a few inputs maybe i should just do 1  and test it? Ask a real coder..yeah like who? cuz last time i did that on here... i got burned and my stuff stolen.   not looking for a repeat of that.
6 Reply Quote Share
omega_bearFull Member
Posts: 116 · Reputation: 780
#8Oct 18, 2017, 08:29 PM
ask openai make python code if you geberate sighnatures buy yourself, result will be not work for real blockchain
3 Reply Quote Share

Related topics