bulletproofs: scale points by 8 to ensure subgroup validity

author: moneromooo-monero <moneromooo-monero@users.noreply.github.com> 2018-08-06 11:05:20 +0000
committer: moneromooo-monero <moneromooo-monero@users.noreply.github.com> 2018-09-11 13:38:31 +0000
commit: 044dff5a30deb05f5236f36ebae5e671d15ddb4e (patch)
tree: c0cf4c056ae4933d71f10f70dccc9556ba463541 /src/ringct/rctSigs.cpp
parent: bulletproofs: match aggregated verification to sarang's latest prototype (diff)
download: monero-044dff5a30deb05f5236f36ebae5e671d15ddb4e.tar.xz
1 files changed, 2 insertions, 2 deletions
diff --git a/src/ringct/rctSigs.cpp b/src/ringct/rctSigs.cpp
index e98e62903..29743c790 100644
--- a/src/ringct/rctSigs.cpp
+++ b/src/ringct/rctSigs.cpp
@@ -768,7 +768,7 @@ namespace rct {
                 #endif
                 for (i = 0; i < outamounts.size(); ++i)
                 {
-                    rv.outPk[i].mask = C[i];
+                    rv.outPk[i].mask = rct::scalarmultKey(C[i], EIGHT);
                     outSk[i].mask = masks[i];
                 }
             }
@@ -788,7 +788,7 @@ namespace rct {
             #endif
                 for (i = 0; i < batch_size; ++i)
                 {
-                  rv.outPk[i + amounts_proved].mask = C[i];
+                  rv.outPk[i + amounts_proved].mask = rct::scalarmultKey(C[i], EIGHT);
                   outSk[i + amounts_proved].mask = masks[i];
                 }
                 amounts_proved += batch_size;
author	moneromooo-monero <moneromooo-monero@users.noreply.github.com>	2018-08-06 11:05:20 +0000
committer	moneromooo-monero <moneromooo-monero@users.noreply.github.com>	2018-09-11 13:38:31 +0000
commit	044dff5a30deb05f5236f36ebae5e671d15ddb4e (patch)
tree	c0cf4c056ae4933d71f10f70dccc9556ba463541 /src/ringct/rctSigs.cpp
parent	bulletproofs: match aggregated verification to sarang's latest prototype (diff)
download	monero-044dff5a30deb05f5236f36ebae5e671d15ddb4e.tar.xz