fix R verification

babylonlabs-io · Jan 15, 2025 · c9ae343 · c9ae343
1 parent 43cb649
commit c9ae343
Showing 1 changed file with 2 additions and 4 deletions.
diff --git a/crypto/schnorr-adaptor-signature/sign_utils.go b/crypto/schnorr-adaptor-signature/sign_utils.go
@@ -126,11 +126,9 @@ func encVerify(
 
 	expRHat.ToAffine()
 
-	// fail if expected R'.y is odd
-	if expRHat.Y.IsOdd() {
-		return fmt.Errorf("expected R'.y is odd")
+	if R.Y.IsOdd() {
+		return fmt.Errorf("expected R.y is odd")
 	}
-
 	// ensure R' is same as the expected R' = s'*G - e*P
 	if !expRHat.X.Equals(&RHat.X) {
 		return fmt.Errorf("expected R' = s'*G - e*P is different from the actual R'")