Add a guideline

2018-12-23 18:49:56 +01:00 · 2018-12-23 18:49:56 +01:00 · 2916230061
commit 2916230061
parent b4617940f3
1 changed files with 4 additions and 0 deletions
--- a/src/libsodium/include/sodium/crypto_core_ed25519.h
+++ b/src/libsodium/include/sodium/crypto_core_ed25519.h
@ -46,6 +46,10 @@ SODIUM_EXPORT
 int crypto_core_ed25519_scalar_invert(unsigned char *recip, const unsigned char s[64])
            __attribute__ ((nonnull));

+/*
+ * The interval `s` is sampled from should be at least 317 bits to ensure almost
+ * uniformity of `r` over `L`.
+ */
 SODIUM_EXPORT
 void crypto_core_ed25519_scalar_reduce(unsigned char *r, const unsigned char s[64])
            __attribute__ ((nonnull));