added warning about last bit being ignored on scalars

2013-02-04 18:12:19 +01:00 · 2013-02-04 18:12:19 +01:00 · c0e8d63943
commit c0e8d63943
parent 75216d602b
1 changed files with 3 additions and 1 deletions
--- a/readme.md
+++ b/readme.md
@ -92,6 +92,8 @@ generated with `ed25519_create_seed`), generating a new key pair. You can
 calculate the public key sum without knowing the private key and vice versa by
 passing in NULL for the key you don't know. This is useful for enforcing
 randomness on a key pair while only knowing the public key, among other things.
+Warning: the last bit of the scalar is ignored - if comparing scalars make sure
+to clear it with `scalar[31] &= 127`.

 Example
 -------