breaking change: reordering of aux tape in spec

IAIK · Apr 14, 2020 · edddeab · edddeab
1 parent 9cb3cc2
commit edddeab
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 3 deletions.
diff --git a/lowmc_impl_aux.c.i b/lowmc_impl_aux.c.i
@@ -30,7 +30,8 @@ static void N_LOWMC(lowmc_key_t* lowmc_key, randomTape_t* tapes) {
       bitstream_t bs = {{tapes->parity_tapes}, LOWMC_N * 2 * (LOWMC_R - 1 - r)};
       mzd_from_bitstream(&bs, x, (LOWMC_N + 63) / (sizeof(uint64_t) * 8), LOWMC_N);
     }
-    tapes->pos = LOWMC_N * 2 * (LOWMC_R - 1 - r) + LOWMC_N;
+    tapes->pos     = LOWMC_N * 2 * (LOWMC_R - 1 - r) + LOWMC_N;
+    tapes->aux_pos = LOWMC_N * (LOWMC_R - 1 - r);
     SBOX(x, y, tapes);
   }
 }

diff --git a/picnic3_impl.c b/picnic3_impl.c
@@ -222,9 +222,9 @@ static void setAuxBits(randomTape_t* tapes, uint8_t* input, const picnic_instanc
   size_t last  = params->num_MPC_parties - 1;
   size_t inBit = 0;
 
-  for (size_t j = params->lowmc.r; j > 0; j--) {
+  for (size_t j = 0; j < params->lowmc.r; j++) {
     for (size_t i = 0; i < params->lowmc.n; i++) {
-      setBit(tapes->tape[last], params->lowmc.n + params->lowmc.n * 2 * (j - 1) + i,
+      setBit(tapes->tape[last], params->lowmc.n + params->lowmc.n * 2 * (j) + i,
              getBit(input, inBit++));
     }
   }