a.a your release is not working
Topic: BitCrack - A tool for brute-forcing private keys - page 33. (Read 76850 times)
Does somebody has an idea why there is an keyFinderKernelWithDouble additionally to keyFinderKernel. What is the point of this additional function?
After further inspection I found that the call chain trickles down like this:
keyFinderKernelWithDouble
|
v
doIterationWithDouble -> CompleteBatchAddWithDouble
|
v
BeginBatchAddWithDouble
The same call chain appears for keyFinderKernel but without the "WithDouble" suffix.
keyFinderKernel and doIteration don't do anything different apart from calling these differently named functions, it's in Begin/CompleteBatchAdd where the interesting stuff happens.
Code:
__device__ __forceinline__ static void beginBatchAdd(const unsigned int *px, const unsigned int *x, unsigned int *chain, int i, int batchIdx, unsigned int inverse[8])
{
// x = Gx - x
unsigned int t[8];
subModP(px, x, t);
...
}
__device__ __forceinline__ static void beginBatchAddWithDouble(const unsigned int *px, const unsigned int *py, unsigned int *xPtr, unsigned int *chain, int i, int batchIdx, unsigned int inverse[8])
{
unsigned int x[8];
readInt(xPtr, i, x);
if(equal(px, x)) {
addModP(py, py, x);
} else {
// x = Gx - x
subModP(px, x, x);
}
...
}
Notice how there's an extra argument "py" (appears to be generator point y according to the comments) in the WithDouble function that doesn't appear in the non-double function. It appears to be doubling the py value if subtracting px-x (Gx-x) would make the point at 0, whilst there's no such protective measure in the non-double function.
In CompleteBatchAddWithDouble the only different snippet is this:
Code:
if(equal(px, x)) {
// currently s = 1 / 2y
unsigned int x2[8];
unsigned int tx2[8];
// 3x^2
mulModP(x, x, x2);
addModP(x2, x2, tx2);
addModP(x2, tx2, tx2);
// s = 3x^2 * 1/2y
mulModP(tx2, s);
// s^2
unsigned int s2[8];
mulModP(s, s, s2);
// Rx = s^2 - 2px
subModP(s2, x, newX);
subModP(newX, x, newX);
// Ry = s(px - rx) - py
unsigned int k[8];
subModP(px, newX, k);
mulModP(s, k, newY);
subModP(newY, py, newY);
} else {
unsigned int rise[8];
subModP(py, y, rise);
mulModP(rise, s);
// Rx = s^2 - Gx - Qx
unsigned int s2[8];
mulModP(s, s, s2);
subModP(s2, px, newX);
subModP(newX, x, newX);
// Ry = s(px - rx) - py
unsigned int k[8];
subModP(px, newX, k);
mulModP(s, k, newY);
subModP(newY, py, newY);
}
Specifically, this part is not in the non-double counterpart, while the rest are in there:
Code:
// 3x^2
mulModP(x, x, x2);
addModP(x2, x2, tx2);
addModP(x2, tx2, tx2);
// s = 3x^2 * 1/2y
mulModP(tx2, s);
// s^2
unsigned int s2[8];
mulModP(s, s, s2);
mulModP(x, x, x2);
addModP(x2, x2, tx2);
addModP(x2, tx2, tx2);
// s = 3x^2 * 1/2y
mulModP(tx2, s);
// s^2
unsigned int s2[8];
mulModP(s, s, s2);
So it looks like the only changes are using the double of py in the beginBatchAdd and s = (3x^2 * 1/2y)^2 in the completeBatchAdd
in other words we just double Gy and use that if our search stumbles upon Gx,Gy point by chance, and we use an s = (3Gx^2 * 1/2Gy)^2 used to calculate the next point (Rx,Ry).
This might also explain why the main code only calls keyFinderKernelWithDouble and never keyFinderKernel.
Does somebody has an idea why there is an keyFinderKernelWithDouble additionally to keyFinderKernel. What is the point of this additional function?
[2021-06-03.15:54:20] [Info] Compression: compressed
[2021-06-03.15:54:20] [Info] Starting at: 00000000000000000000000000000000000000000000000000000000CDB4C578
[2021-06-03.15:54:20] [Info] Ending at: 000000000000000000000000000000000000000000000000FFFFFFFFFFFFFFFF
[2021-06-03.15:54:20] [Info] Counting by: 0000000000000000000000000000000000000000000000000000000100000000
[2021-06-03.15:54:20] [Info] Initializing NVIDIA GeForce RTX 3060 Ti
[2021-06-03.15:54:21] [Info] Generating 39,845,888 starting points (1520.0MB)
[2021-06-03.15:54:24] [Info] 10.0%
[2021-06-03.15:54:24] [Info] 20.0%
[2021-06-03.15:54:25] [Info] 30.0%
[2021-06-03.15:54:25] [Info] 40.0%
[2021-06-03.15:54:25] [Info] 50.0%
[2021-06-03.15:54:25] [Info] 60.0%
[2021-06-03.15:54:25] [Info] 70.0%
[2021-06-03.15:54:26] [Info] 80.0%
[2021-06-03.15:54:26] [Info] 90.0%
[2021-06-03.15:54:26] [Info] 100.0%
[2021-06-03.15:54:26] [Info] Done
[2021-06-03.15:54:26] [Info] Loading addresses from 'd:/1.txt'
[2021-06-03.15:54:26] [Info] 105 addresses loaded (0.0MB)
[2021-06-03.15:54:26] [Info] Allocating bloom filter (0.0MB)
NVIDIA GeForce R 4684 / 8192MB | 105 targets 1000.03 MKey/s (3,506,438,144 total) [00:00:01][2021-06-03.15:54:30] [Info] Reached end of keyspace
with 1 3060ti = 1bk/s , 2^1 to 2^32, solve in 1 second
with 10 3060ti = 10bk/s , 2^1 to 2^36, solve in 1 second
with 100 3060ti = 100bk/s , 2^1 to 2^40, solve in 1 second
with 1000 3060ti = 1000bk/s , 2^1 to 2^44, solve in 1 second
with 10000 3060ti = 10000bk/s , 2^1 to 2^48, solve in 1 second
with 100000 3060ti = 100000bk/s , 2^1 to 2^52, solve in 1 second
with 1000000 3060ti = 100000bk/s , 2^1 to 2^56, solve in 1 second
with 10000000 3060ti = 1000000bk/s , 2^1 to 2^60, solve in 1 second
with 100000000 3060ti = 10000000bk/s , 2^1 to 2^64, solve in 1 second
Finally, I need 100 million 3060ti to solve puzzle 64 in 1 second, am I right?
[2021-06-03.15:54:20] [Info] Starting at: 00000000000000000000000000000000000000000000000000000000CDB4C578
[2021-06-03.15:54:20] [Info] Ending at: 000000000000000000000000000000000000000000000000FFFFFFFFFFFFFFFF
[2021-06-03.15:54:20] [Info] Counting by: 0000000000000000000000000000000000000000000000000000000100000000
[2021-06-03.15:54:20] [Info] Initializing NVIDIA GeForce RTX 3060 Ti
[2021-06-03.15:54:21] [Info] Generating 39,845,888 starting points (1520.0MB)
[2021-06-03.15:54:24] [Info] 10.0%
[2021-06-03.15:54:24] [Info] 20.0%
[2021-06-03.15:54:25] [Info] 30.0%
[2021-06-03.15:54:25] [Info] 40.0%
[2021-06-03.15:54:25] [Info] 50.0%
[2021-06-03.15:54:25] [Info] 60.0%
[2021-06-03.15:54:25] [Info] 70.0%
[2021-06-03.15:54:26] [Info] 80.0%
[2021-06-03.15:54:26] [Info] 90.0%
[2021-06-03.15:54:26] [Info] 100.0%
[2021-06-03.15:54:26] [Info] Done
[2021-06-03.15:54:26] [Info] Loading addresses from 'd:/1.txt'
[2021-06-03.15:54:26] [Info] 105 addresses loaded (0.0MB)
[2021-06-03.15:54:26] [Info] Allocating bloom filter (0.0MB)
NVIDIA GeForce R 4684 / 8192MB | 105 targets 1000.03 MKey/s (3,506,438,144 total) [00:00:01][2021-06-03.15:54:30] [Info] Reached end of keyspace
with 1 3060ti = 1bk/s , 2^1 to 2^32, solve in 1 second
with 10 3060ti = 10bk/s , 2^1 to 2^36, solve in 1 second
with 100 3060ti = 100bk/s , 2^1 to 2^40, solve in 1 second
with 1000 3060ti = 1000bk/s , 2^1 to 2^44, solve in 1 second
with 10000 3060ti = 10000bk/s , 2^1 to 2^48, solve in 1 second
with 100000 3060ti = 100000bk/s , 2^1 to 2^52, solve in 1 second
with 1000000 3060ti = 100000bk/s , 2^1 to 2^56, solve in 1 second
with 10000000 3060ti = 1000000bk/s , 2^1 to 2^60, solve in 1 second
with 100000000 3060ti = 10000000bk/s , 2^1 to 2^64, solve in 1 second
Finally, I need 100 million 3060ti to solve puzzle 64 in 1 second, am I right?
I refactored more. Still trying to determine your Issue. Locally it works with my P620 Quadro and my Radeon Vega56. I use now Radeon Developer Tools and there I get some similar errors. So i will try to fix those issues and hoping solving the issues you mentioned.
I am now at about 95 MKeys/s. So I improved the performance about 30 Mkeys so about 45 % faster than standard OpenCL Bitcrack
When doing clBitCrack.exe -i addresses.txt --keyspace 1:fffffffffff -b 512 -t 256 -p 256 I get now about 360 MKeys/s
EDIT:
After reading again your remark:
Actually this should be solved now. But the remarks in Radeon Developer Tools make me think. So I will fix them also. Then the tool should be a piece of cake.
.
Also forgot to mention:
Now you get a System Beep when you find a key.
I am now at about 95 MKeys/s. So I improved the performance about 30 Mkeys so about 45 % faster than standard OpenCL Bitcrack
When doing clBitCrack.exe -i addresses.txt --keyspace 1:fffffffffff -b 512 -t 256 -p 256 I get now about 360 MKeys/s
EDIT:
After reading again your remark:
Actually this should be solved now. But the remarks in Radeon Developer Tools make me think. So I will fix them also. Then the tool should be a piece of cake.
.Also forgot to mention:
Now you get a System Beep when you find a key.
Hmm yeah I am on it. What gpu are you using?
RTX 3060Ti on home box
GTX 1080 on work box
Win 10 on both box and same error
Hmm yeah I am on it. What gpu are you using?
When you have time could you compile an .exe release please? Would like to test it vs. the original. Thanks.
Done:
https://github.com/Uzlopak/BitCrackOpenCL/releases/tag/v.0.4.0
I also tested the performance:
On my System with a Vega56 I had at the beginning with the old clBitCrack about 58 MKeys/s. Now I get about 83 MKeys/s. Keep in mind: This is just without any specified -b -t -p parameters, which will increase the throughput significally. with -p 5000. I get about 215 MKeys/s. With the old clBitCrack I get with -b 5000 about 190 MKeys/s. If I change only -b to 512 I get about 130 MKeys/s
So the 30 % Improvement are significantly when having low pressure on the GPU. On big load I get "just" 12 % improvement.
I read you can get the bytecode of the on-the-fly compiled openCL part.I will probably implement a solution to store the compiled openCL bytecode in the same folder and load if you run again clBitCrack. Thus should speed up the starting speed... Testing the best parameters should be then not taking always 20 seconds, because OpenCL is building.....
EDIT:
I get with clBitCrack.exe -i addresses.txt --keyspace 1:fffffffffff -b 512 -t 256 -p 256 about 268 MKeys/s
With the old clBitCrack I get in the same case about 210 MKeys/s
So the performance gain is definetely there
Got this error:
[2021-05-28.22:18:44] [Info] Compiling OpenCL kernels...
[2021-05-28.22:18:44] [Info] Error:
addc(&a[7], &P[7], &carry, &c[7]);
^~~~~
void addc(unsigned int *a, unsigned int *b, unsigned int *carry, unsigned int *sum)
^
addc(&a[7], &P[7], &carry, &c[7]);
^~~~~
"Original" bitcrack works normal.
Suggestion?
I am looking for c code snippet, which covers the whole privatekey to pubkey compressed and uncompressed in a simple manner or a code snippet utilizing such a c-library?
I want to generate privatekeys and put them directly into secp256k1 to get the both pubkeys, but it seems, that the one I find are all optimized for point addition.
Any suggestions?
I want to generate privatekeys and put them directly into secp256k1 to get the both pubkeys, but it seems, that the one I find are all optimized for point addition.
Any suggestions?
Better to make one ourselves that links with libsecp256k1 and use our own structures for representing points and uint256's for maximum speed (let's raid the uint256 class in Bitcoind
)
I am looking for c code snippet, which covers the whole privatekey to pubkey compressed and uncompressed in a simple manner or a code snippet utilizing such a c-library?
I want to generate privatekeys and put them directly into secp256k1 to get the both pubkeys, but it seems, that the one I find are all optimized for point addition.
Any suggestions?
I want to generate privatekeys and put them directly into secp256k1 to get the both pubkeys, but it seems, that the one I find are all optimized for point addition.
Any suggestions?
With the pool/program, you can't fake a range searched.
Well... I could do the same by just forking the client or sniffing the network commucation and sending garbage to the server... There is shares you can create like in pooled mining.
And most ask for more than 1 range at a time. For example, if you want to scan 16 ranges at once (to limit startup time from just running 1 small range) then you will have to find 16 generated addresses within the range and send back to server.
So if your program sends back garbage, i.e. it doesn't send the correct private keys to the randomly generated addresses assigned to you/your range, then the range will not be considered searched.
So if you have a way to "guess" private keys to addresses correctly, without actually searching a range, well...you can find any private key to any address and you own Bitcoin.
Puzzle 64 is between --keyspace D450000000000000:D46fffffffffffff Let's see who solve it first..
B*sh*t.
1) How do you know it is between D45...D47, not before D45 and not after D47?
2) You say that because you have found several addresses which starts with 16jY7qLJ, the final address must be somewhere close. Of course not. Address is a result of double hash on public key -> so you say that there is a range of private keys which produce public keys which double(!) hashed produce similar addresses. Nonsense.
Show me proof that key CANNOT be outside of your range.
With the pool/program, you can't fake a range searched.
Well... I could do the same by just forking the client or sniffing the network commucation and sending garbage to the server... There is shares you can create like in pooled mining.
Anyone who's going to make a pool must have a method for banning spamming clients so that the pool server doesn't get overloaded.
fail2ban paired with a firewall should do the trick. I've never been good at managing firewalls though, and I believe fail2ban uses iptables.
With the pool/program, you can't fake a range searched.
Well... I could do the same by just forking the client or sniffing the network commucation and sending garbage to the server... There is shares you can create like in pooled mining.
good or not if we open new thread post only keyspace that already scan it
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
I think that's a good idea. we have to create a pool something like that https://bitcointalksearch.org/topic/m.52933921 same... except here the rewards are splits in computing power of a person but our pool would be based on luck.
With the pool/program, you can't fake a range searched.
But you all can start the thread, just be careful with whom you trust.
good or not if we open new thread post only keyspace that already scan it
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
I think that's a good idea. we have to create a pool something like that https://bitcointalksearch.org/topic/m.52933921 same... except here the rewards are splits in computing power of a person but our pool would be based on luck.
good or not if we open new thread post only keyspace that already scan it
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
like public pool share keyspace scaned
if you scan what keyspace for what puzzle done already post to forum it not found key
Puzzle 64 is between --keyspace D450000000000000:D46fffffffffffff Let's see who solve it first..
Range completed with --stride 1111
Proof of work
16jY7qLJ7nCjNCw3vnHjsNZbswAWbjgJRE D451B2D7C5C1F338
16jY7qLJ3Dvbu1wTLpuTqpNpmeoyZu6edt D4532C684B1A0377
16jY7qLJnByZxp2wFGigyn18Q1H53TTmVa D4538334E25AE667
16jY7qLJqUPuYXpH2sG2RDLs7bkxQ8PeEJ D457720CFE8EF9B9
16jY7qLJmL7ASHkjmYxyeocgsyCGF7dLuG D4590E552E66414D
16jY7qLJX52y1TU63G3dZENuZdfbhQNMtp D45B9DA6D0CCA91C
16jY7qLJWAAv5RTtZ3RzgazoiS8hEV1sAX D463D679528F8815
16jY7qLJU8XxLVq2BM2bHBEe5vwr4Pffuc D46458AB1B9F130B
16jY7qLJHSatNNrmU6m3MRJEPuN7RiJaV7 D46B91712BD763C2
16jY7qLJQ1m34R4YBGRWRdGTdABEcyLE65 D46BE3E6992BFEC5
Next --stride 12345
Try using large primes as your strides (not something like 11111), something tells me that adding easy numbers like this is as far as you can get from the PK.
Addition is done on the stride so even keys will be searched too.
I fixed that bug and program finds all keys in the range.
Jump to: