1. 09 Aug, 2017 1 commit
    • George Kadianakis's avatar
      Don't double hash the ed25519 blind key parameter. · 4ad4467f
      George Kadianakis authored and Nick Mathewson's avatar Nick Mathewson committed
      We used to do:
         h = H(BLIND_STRING | H(A | s | B | N )
      when we should be doing:
         h = H(BLIND_STRING | A | s | B | N)
      
      Change the logic so that hs_common.c does the hashing, and our ed25519
      libraries just receive the hashed parameter ready-made. That's easier
      than doing the hashing on the ed25519 libraries, since that means we
      would have to pass them a variable-length param (depending on whether
      's' is set or not).
      
      Also fix the ed25519 test vectors since they were also double hashing.
      4ad4467f
  2. 25 Sep, 2014 2 commits