deploy: 39503b77c1

css/chrome.css

@@ -252,7 +252,7 @@ pre > .buttons button {
         padding: 0.3rem 1rem;
     }
 }
-code {
+pre > code {
     padding: 1rem;
 }
 

print.html

@@ -215,6 +215,89 @@
 <div style="break-before: page; page-break-before: always;"></div><h1 id="theory"><a class="header" href="#theory">Theory</a></h1>
 <div style="break-before: page; page-break-before: always;"></div><h1 id="shamirs-secret-sharing-scheme"><a class="header" href="#shamirs-secret-sharing-scheme">Shamirs Secret Sharing Scheme</a></h1>
 <p><a href="https://en.wikipedia.org/wiki/Shamir%27s_Secret_Sharing">Sharmir's Secret Sharing wikipedia</a> is a good reference to understand the concept.</p>
+<p>Reconstruction 1: https://github.com/akinovak/semaphore-lib/blob/5b9bb3210192c8e508eced7ef6579fd56e635ed0/src/rln.ts#L31</p>
+<pre><code class="language-rs">retrievePrivateKey(x1: bigint, x2:bigint, y1:bigint, y2:bigint): Buffer | ArrayBuffer {
+        const slope = Fq.div(Fq.sub(y2, y1), Fq.sub(x2, x1))
+        const privateKey = Fq.sub(y1, Fq.mul(slope, x1));
+        return bigintConversion.bigintToBuf(Fq.normalize(privateKey));
+    }
+</code></pre>
+<p>Reconstruction 2: https://github.com/akinovak/semaphore-lib/blob/rln_signature_changes/test/index.ts#L250</p>
+<pre><code class="language-rs">async function testRlnSlashingSimulation() {
+    RLN.setHasher('poseidon');
+    const identity = RLN.genIdentity();
+    const privateKey = identity.keypair.privKey;
+
+    const leafIndex = 3;
+    const idCommitments: Array&lt;any&gt; = [];
+
+    for (let i=0; i&lt;leafIndex;i++) {
+      const tmpIdentity = OrdinarySemaphore.genIdentity();
+      const tmpCommitment: any = RLN.genIdentityCommitment(identity.keypair.privKey);
+      idCommitments.push(tmpCommitment);
+    }
+
+    idCommitments.push(RLN.genIdentityCommitment(privateKey))
+
+    const signal = 'hey hey';
+    const x1: bigint = OrdinarySemaphore.genSignalHash(signal);
+    const epoch: string = OrdinarySemaphore.genExternalNullifier('test-epoch');
+
+    const vkeyPath: string = path.join('./rln-zkeyFiles', 'verification_key.json');
+    const vKey = JSON.parse(fs.readFileSync(vkeyPath, 'utf-8'));
+
+    const wasmFilePath: string = path.join('./rln-zkeyFiles', 'rln.wasm');
+    const finalZkeyPath: string = path.join('./rln-zkeyFiles', 'rln_final.zkey');
+
+    const witnessData: IWitnessData = await RLN.genProofFromIdentityCommitments(privateKey, epoch, signal, wasmFilePath, finalZkeyPath, idCommitments, 15, BigInt(0), 2);
+
+    const a1 = RLN.calculateA1(privateKey, epoch);
+    const y1 = RLN.calculateY(a1, privateKey, x1);
+    const nullifier = RLN.genNullifier(a1);
+
+    const pubSignals = [y1, witnessData.root, nullifier, x1, epoch];
+
+    let res = await RLN.verifyProof(vKey, { proof: witnessData.fullProof.proof, publicSignals: pubSignals })
+    if (res === true) {
+        console.log(&quot;Verification OK&quot;);
+    } else {
+        console.log(&quot;Invalid proof&quot;);
+        return;
+    }
+
+    const signalSpam = &quot;let's try spamming&quot;;
+    const x2: bigint = OrdinarySemaphore.genSignalHash(signalSpam);
+
+    const witnessDataSpam: IWitnessData = await RLN.genProofFromIdentityCommitments(privateKey, epoch, signalSpam, wasmFilePath, finalZkeyPath, idCommitments, 15, BigInt(0), 2);
+
+    const a1Spam = RLN.calculateA1(privateKey, epoch);
+    const y2 = RLN.calculateY(a1Spam, privateKey, x2);
+    const nullifierSpam = RLN.genNullifier(a1Spam);
+
+    const pubSignalsSpam = [y2, witnessDataSpam.root, nullifierSpam, x2, epoch];
+
+    res = await RLN.verifyProof(vKey, { proof: witnessDataSpam.fullProof.proof, publicSignals: pubSignalsSpam })
+    if (res === true) {
+        console.log(&quot;Spam proof Verification OK&quot;);
+    } else {
+        console.log(&quot;Invalid proof&quot;);
+        return;
+    }
+
+    const identitySecret = RLN.calculateIdentitySecret(privateKey);
+
+    const retreivedPkey = bigintConversion.bufToBigint(RLN.retrievePrivateKey(x1, x2, y1, y2));
+
+
+    if(Fq.eq(identitySecret, retreivedPkey)) {
+        console.log(&quot;PK successfully reconstructed&quot;);
+    } else {
+        console.log(&quot;Error while reconstructing private key&quot;)
+    }
+
+    // TODO: Add removal from tree example
+}
+</code></pre>
 
                     </main>
 

sss.html

@@ -136,6 +136,89 @@
                     <main>
                         <h1 id="shamirs-secret-sharing-scheme"><a class="header" href="#shamirs-secret-sharing-scheme">Shamirs Secret Sharing Scheme</a></h1>
 <p><a href="https://en.wikipedia.org/wiki/Shamir%27s_Secret_Sharing">Sharmir's Secret Sharing wikipedia</a> is a good reference to understand the concept.</p>
+<p>Reconstruction 1: https://github.com/akinovak/semaphore-lib/blob/5b9bb3210192c8e508eced7ef6579fd56e635ed0/src/rln.ts#L31</p>
+<pre><code class="language-rs">retrievePrivateKey(x1: bigint, x2:bigint, y1:bigint, y2:bigint): Buffer | ArrayBuffer {
+        const slope = Fq.div(Fq.sub(y2, y1), Fq.sub(x2, x1))
+        const privateKey = Fq.sub(y1, Fq.mul(slope, x1));
+        return bigintConversion.bigintToBuf(Fq.normalize(privateKey));
+    }
+</code></pre>
+<p>Reconstruction 2: https://github.com/akinovak/semaphore-lib/blob/rln_signature_changes/test/index.ts#L250</p>
+<pre><code class="language-rs">async function testRlnSlashingSimulation() {
+    RLN.setHasher('poseidon');
+    const identity = RLN.genIdentity();
+    const privateKey = identity.keypair.privKey;
+
+    const leafIndex = 3;
+    const idCommitments: Array&lt;any&gt; = [];
+
+    for (let i=0; i&lt;leafIndex;i++) {
+      const tmpIdentity = OrdinarySemaphore.genIdentity();
+      const tmpCommitment: any = RLN.genIdentityCommitment(identity.keypair.privKey);
+      idCommitments.push(tmpCommitment);
+    }
+
+    idCommitments.push(RLN.genIdentityCommitment(privateKey))
+
+    const signal = 'hey hey';
+    const x1: bigint = OrdinarySemaphore.genSignalHash(signal);
+    const epoch: string = OrdinarySemaphore.genExternalNullifier('test-epoch');
+
+    const vkeyPath: string = path.join('./rln-zkeyFiles', 'verification_key.json');
+    const vKey = JSON.parse(fs.readFileSync(vkeyPath, 'utf-8'));
+
+    const wasmFilePath: string = path.join('./rln-zkeyFiles', 'rln.wasm');
+    const finalZkeyPath: string = path.join('./rln-zkeyFiles', 'rln_final.zkey');
+
+    const witnessData: IWitnessData = await RLN.genProofFromIdentityCommitments(privateKey, epoch, signal, wasmFilePath, finalZkeyPath, idCommitments, 15, BigInt(0), 2);
+
+    const a1 = RLN.calculateA1(privateKey, epoch);
+    const y1 = RLN.calculateY(a1, privateKey, x1);
+    const nullifier = RLN.genNullifier(a1);
+
+    const pubSignals = [y1, witnessData.root, nullifier, x1, epoch];
+
+    let res = await RLN.verifyProof(vKey, { proof: witnessData.fullProof.proof, publicSignals: pubSignals })
+    if (res === true) {
+        console.log(&quot;Verification OK&quot;);
+    } else {
+        console.log(&quot;Invalid proof&quot;);
+        return;
+    }
+
+    const signalSpam = &quot;let's try spamming&quot;;
+    const x2: bigint = OrdinarySemaphore.genSignalHash(signalSpam);
+
+    const witnessDataSpam: IWitnessData = await RLN.genProofFromIdentityCommitments(privateKey, epoch, signalSpam, wasmFilePath, finalZkeyPath, idCommitments, 15, BigInt(0), 2);
+
+    const a1Spam = RLN.calculateA1(privateKey, epoch);
+    const y2 = RLN.calculateY(a1Spam, privateKey, x2);
+    const nullifierSpam = RLN.genNullifier(a1Spam);
+
+    const pubSignalsSpam = [y2, witnessDataSpam.root, nullifierSpam, x2, epoch];
+
+    res = await RLN.verifyProof(vKey, { proof: witnessDataSpam.fullProof.proof, publicSignals: pubSignalsSpam })
+    if (res === true) {
+        console.log(&quot;Spam proof Verification OK&quot;);
+    } else {
+        console.log(&quot;Invalid proof&quot;);
+        return;
+    }
+
+    const identitySecret = RLN.calculateIdentitySecret(privateKey);
+
+    const retreivedPkey = bigintConversion.bufToBigint(RLN.retrievePrivateKey(x1, x2, y1, y2));
+
+
+    if(Fq.eq(identitySecret, retreivedPkey)) {
+        console.log(&quot;PK successfully reconstructed&quot;);
+    } else {
+        console.log(&quot;Error while reconstructing private key&quot;)
+    }
+
+    // TODO: Add removal from tree example
+}
+</code></pre>
 
                     </main>