Skip to content

Commit

Permalink
Fix the naming of sqrtMinusA.
Browse files Browse the repository at this point in the history 
It was never sqrt(-A), it was sqrt(-(A+2)), and it wasn't the minimal
root either.
  • Loading branch information
@agl
agl committed Jan 16, 2017
1 parent 278e1ec commit 33e7db2
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions extra25519/extra25519.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,9 +55,9 @@ func PublicKeyToCurve25519(curve25519Public *[32]byte, publicKey *[32]byte) bool
return true
}

// sqrtMinusA is sqrt(-486662)
var sqrtMinusA = edwards25519.FieldElement{
12222970, 8312128, 11511410, -9067497, 15300785, 241793, -25456130, -14121551, 12187136, -3972024,
// sqrtMinusAPlus2 is sqrt(-(486662+2))
var sqrtMinusAPlus2 = edwards25519.FieldElement{
-12222970, -8312128, -11511410, 9067497, -15300785, -241793, 25456130, 14121551, -12187136, 3972024,
}

// sqrtMinusHalf is sqrt(-1/2)
Expand Down Expand Up @@ -114,7 +114,7 @@ func ScalarBaseMult(publicKey, representative, privateKey *[32]byte) bool {
var v edwards25519.FieldElement
edwards25519.FeMul(&v, &t0, &inv1)
edwards25519.FeMul(&v, &v, &A.Z)
edwards25519.FeMul(&v, &v, &sqrtMinusA)
edwards25519.FeMul(&v, &v, &sqrtMinusAPlus2)

var b edwards25519.FieldElement
edwards25519.FeAdd(&b, &u, &edwards25519.A)
Expand Down

0 comments on commit 33e7db2

Please sign in to comment.