Skip to content
Permalink
Browse files
rend-spec-v3: document trailing zero byte in BLIND_STRING (A.2.)
The implementation uses sizeof instead of strlen, so the C string NUL byte is hashed.
  • Loading branch information
FiloSottile committed Nov 17, 2017
1 parent 53b7dee commit 73f26437470e4b4b360a484daaa1ce94efad317f
Showing with 1 addition and 1 deletion.
  1. +1 −1 rend-spec-v3.txt
@@ -2160,7 +2160,7 @@ A.2. Tor's key derivation scheme
blinding factor like this:

h = H(BLIND_STRING | A | s | B | N)
BLIND_STRING = "Derive temporary signing key"
BLIND_STRING = "Derive temporary signing key" | INT_1(0)
N = "key-blind" | INT_8(period-number) | INT_8(period_length)

then clamp the blinding factor 'h' according to the ed25519 spec:

0 comments on commit 73f2643

Please sign in to comment.