In [1]:
import numpy as np
import hashlib
import base64

In [37]:
def egcd(a, b):
    if a == 0:
        return (b, 0, 1)
    else:
        g, y, x = egcd(b % a, a)
        return (g, x - (b // a) * y, y)

def modinv(a, m):
    g, x, y = egcd(a, m)
    if g != 1:
        raise Exception('modular inverse does not exist')
    else:
        return x % m

In [122]:
f = open("./ecdsa-keyrec/msg1.txt")
msg1 = f.read()
f.close()
f = open("./ecdsa-keyrec/msg2.txt")
msg2 = f.read()
f.close()

print('msg1:', msg1)
print('msg2:', msg2)

header1, payload1, sign1 = msg1.split(".")
header2, payload2, sign2 = msg2.split(".")

sign1 = base64.urlsafe_b64decode(sign1+'==')
sign1 = bin(int.from_bytes(sign1, 'big'))[2:]
r1 = int(sign1[:256],2)
s1 = int(sign1[256:],2)
print('r1:', r1); print('s1:', s1)

sign2 = base64.urlsafe_b64decode(sign2+'==')
sign2 = bin(int.from_bytes(sign2, 'big'))[2:]
r2 = int(sign2[:256],2)
s2 = int(sign2[256:],2)
print('r2:', r2); print('s2:', s2)

m1 = int.from_bytes(hashlib.sha256(base64.urlsafe_b64decode(header1+payload1+'=')).digest(), 'big')
m2 = int.from_bytes(hashlib.sha256(base64.urlsafe_b64decode(header2+payload2+'==')).digest(), 'big')
#print(m1); print(m2)
# m1 = int.from_bytes(hashlib.sha256((header1+'.'+payload1).encode('ascii')).digest(), 'big')
# m2 = int.from_bytes(hashlib.sha256((header2+'.'+payload2).encode('ascii')).digest(), 'big')
# print(m1); print(m2)

n = int("FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFE BAAEDCE6 AF48A03B BFD25E8C D0364141".replace(" ",""), 16) #secp256k1
n = int("FFFFFFFF 00000000 FFFFFFFF FFFFFFFF BCE6FAAD A7179E84 F3B9CAC2FC632551".replace(" ",""), 16) #secp256r1
#print(n)

z = (s1 * modinv(s2, n)) % n
#print(z)

x1 = (m1 - z * m2) % n
x2 = modinv(r1 * z - 1, n) % n
#print(x1); print(x2)

x = (x1 * x2) % n
print('kpriv:', hex(x)[2:])


msg1: eyJhbGciOiAiRVMyNTYiLCAidHlwIjogIkpXVCJ9.eyJ1c2VybmFtZSI6ICJTZWJhc3RpYWFuIn0.wN0kGlDUj5n8x6GGptROB2PskEeOHe-ONvXE6VDWevtS_ScXs5MI9Pi2ZJSOTIXe9L3ZKlr3Xw8xUOfHU9Dg0A
msg2: eyJhbGciOiAiRVMyNTYiLCAidHlwIjogIkpXVCJ9.eyJ1c2VybmFtZSI6ICJWZW5lbmRhYWwifQ.wN0kGlDUj5n8x6GGptROB2PskEeOHe-ONvXE6VDWevv04KMQTlsx-KgAhmKh7AQJmXzcnjVhHiXeMXZpNOwDTg
r1: 87234789301642693144486766090678679091825510750069565881544368855433960913659
s1: 37536935698314460152818460957841850138376584893859266954551528991542859587792
r2: 87234789301642693144486766090678679091825510750069565881544368855433960913659
s2: 110761234221092904668856657666118078713978551428394795828037190764154669761358
kpriv: a0252d0c6e22323845b45752eef496cc452d8550223ca980ed2852f0b1493cd1
