bulletproofs: scale points by 8 to ensure subgroup validity

author: moneromooo-monero <moneromooo-monero@users.noreply.github.com> 2018-08-06 11:05:20 +0000
committer: moneromooo-monero <moneromooo-monero@users.noreply.github.com> 2018-09-11 13:38:31 +0000
commit: 044dff5a30deb05f5236f36ebae5e671d15ddb4e (patch)
tree: c0cf4c056ae4933d71f10f70dccc9556ba463541 /src/cryptonote_basic
parent: bulletproofs: match aggregated verification to sarang's latest prototype (diff)
download: monero-044dff5a30deb05f5236f36ebae5e671d15ddb4e.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/cryptonote_basic/cryptonote_format_utils.cpp b/src/cryptonote_basic/cryptonote_format_utils.cpp
index 9061bf105..7ea4718d2 100644
--- a/src/cryptonote_basic/cryptonote_format_utils.cpp
+++ b/src/cryptonote_basic/cryptonote_format_utils.cpp
@@ -169,7 +169,7 @@ namespace cryptonote
           CHECK_AND_ASSERT_MES(n_amounts == rv.outPk.size(), false, "Internal error filling out V");
           rv.p.bulletproofs[0].V.resize(n_amounts);
           for (size_t i = 0; i < n_amounts; ++i)
-            rv.p.bulletproofs[0].V[i] = rv.outPk[i].mask;
+            rv.p.bulletproofs[0].V[i] = rct::scalarmultKey(rv.outPk[i].mask, rct::INV_EIGHT);
         }
       }
     }
author	moneromooo-monero <moneromooo-monero@users.noreply.github.com>	2018-08-06 11:05:20 +0000
committer	moneromooo-monero <moneromooo-monero@users.noreply.github.com>	2018-09-11 13:38:31 +0000
commit	044dff5a30deb05f5236f36ebae5e671d15ddb4e (patch)
tree	c0cf4c056ae4933d71f10f70dccc9556ba463541 /src/cryptonote_basic
parent	bulletproofs: match aggregated verification to sarang's latest prototype (diff)
download	monero-044dff5a30deb05f5236f36ebae5e671d15ddb4e.tar.xz