Enforce first four bits are zero for all spending keys and phi.

2016-05-16 09:50:31 -06:00
parent 4ac1841614
commit defe37a6d4
15 changed files with 123 additions and 42 deletions
--- a/src/zcash/circuit/note.tcc
+++ b/src/zcash/circuit/note.tcc
@@ -131,7 +131,7 @@ public:
        // Witness a_sk for the input
        a_sk->bits.fill_with_bits(
            this->pb,
-            trailing252(uint256_to_bool_vector(key))
+            uint252_to_bool_vector(key)
        );

        // Witness a_pk for a_sk with PRF_addr