From 844daf0eabdd80f8d0b4de6e099c9423c1509c04 Mon Sep 17 00:00:00 2001
From: Daniel Collins <daniel.e.collins@intel.com>
Date: Thu, 15 Oct 2015 10:41:31 -0700
Subject: Updated SHA3 padding to NIST final FIPS 202 spec

---
 sha3.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'sha3.cpp')

diff --git a/sha3.cpp b/sha3.cpp
index 7db82c19..a96887e9 100644
--- a/sha3.cpp
+++ b/sha3.cpp
@@ -274,7 +274,7 @@ void SHA3::Restart()
 void SHA3::TruncatedFinal(byte *hash, size_t size)
 {
 	ThrowIfInvalidTruncatedSize(size);
-	m_state.BytePtr()[m_counter] ^= 1;
+	m_state.BytePtr()[m_counter] ^= 0x06;
 	m_state.BytePtr()[r()-1] ^= 0x80;
 	KeccakF1600(m_state);
 	memcpy(hash, m_state, size);
-- 
cgit v1.2.1