commit d4031428d0ab9d79252364a5cb491d958e451282
parent 8401280e70f66717370c7e61f6b3f12653498cb4
Author: Martin Schanzenbach <schanzen@gnunet.org>
Date: Wed, 19 Jul 2023 10:22:22 +0200
Fix h mod L with 512 bit value
Diffstat:
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
@@ -1350,7 +1350,7 @@ ZKDF(zk,label):
PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label || "gns", 512 / 8)
/* Ensure that h == h mod L */
- h[31] &= 7
+ h = h mod L
zk' := h * zk
return zk'
@@ -1419,7 +1419,7 @@ SignDerived(d,label,message):
PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label || "gns", 512 / 8)
/* Ensure that h == h mod L */
- h[31] &= 7
+ h = h mod L
zk' := h * zk
a1 := a >> 3
