Closed gith1chris closed 5 years ago
The calculation at C.2.2.1.4 Prover Verifies the Issuerβs Proof of Correctness calculates π©^ and π‘^π² wrongly: Instead of π©^ = π©^π¬.. π‘^π² = π‘..
it should be π©^ = π©inv^π¬.. π‘^π² = π‘inv^i
because the inverse of z and Ri is used in the code, which is for a sound equation: https://github.com/hyperledger/indy-crypto/blob/master/libindy-crypto/src/cl/prover.rs :[293,308]
The calculation at C.2.2.1.4 Prover Verifies the Issuerβs Proof of Correctness calculates π©^ and π‘^π² wrongly: Instead of
π©^ = π©^π¬.. π‘^π² = π‘..
it should be π©^ = π©inv^π¬.. π‘^π² = π‘inv^i
because the inverse of z and Ri is used in the code, which is for a sound equation: https://github.com/hyperledger/indy-crypto/blob/master/libindy-crypto/src/cl/prover.rs :[293,308]