rend-spec-v3: document trailing zero byte in BLIND_STRING (A.2.)

The implementation uses sizeof instead of strlen, so the C string NUL byte is hashed.
author: Filippo Valsorda <hi@filippo.io> 2017-11-17 15:18:57 -0500
committer: Filippo Valsorda <hi@filippo.io> 2017-11-17 15:18:57 -0500
commit: 73f26437470e4b4b360a484daaa1ce94efad317f (patch)
tree: dd5910ff3a46c4aa03ea475eda3a5611eed2dc0f /rend-spec-v3.txt
parent: 53b7dee30b1044ae401338a9ce4b6c76e1c431e1 (diff)
download: torspec-73f26437470e4b4b360a484daaa1ce94efad317f.tar.gz
torspec-73f26437470e4b4b360a484daaa1ce94efad317f.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/rend-spec-v3.txt b/rend-spec-v3.txt
index ef5f940..d595268 100644
--- a/rend-spec-v3.txt
+++ b/rend-spec-v3.txt
@@ -2160,7 +2160,7 @@ A.2. Tor's key derivation scheme
   blinding factor like this:
 
            h = H(BLIND_STRING | A | s | B | N)
-           BLIND_STRING = "Derive temporary signing key"
+           BLIND_STRING = "Derive temporary signing key" | INT_1(0)
            N = "key-blind" | INT_8(period-number) | INT_8(period_length)
 
   then clamp the blinding factor 'h' according to the ed25519 spec:
author	Filippo Valsorda <hi@filippo.io>	2017-11-17 15:18:57 -0500
committer	Filippo Valsorda <hi@filippo.io>	2017-11-17 15:18:57 -0500
commit	73f26437470e4b4b360a484daaa1ce94efad317f (patch)
tree	dd5910ff3a46c4aa03ea475eda3a5611eed2dc0f /rend-spec-v3.txt
parent	53b7dee30b1044ae401338a9ce4b6c76e1c431e1 (diff)
download	torspec-73f26437470e4b4b360a484daaa1ce94efad317f.tar.gz torspec-73f26437470e4b4b360a484daaa1ce94efad317f.zip