From fb688ba01d68da5d0265f71dab79843e4fb8f241 Mon Sep 17 00:00:00 2001
From: "John M. Schanck" <jschanck@uwaterloo.ca>
Date: Mon, 1 Feb 2021 10:48:34 -0500
Subject: [PATCH] Consistent use of hash_to_point_ct between Falcon-512 and
 1024

---
 crypto_sign/falcon-1024/META.yml        | 4 ++--
 crypto_sign/falcon-1024/avx2/pqclean.c  | 2 +-
 crypto_sign/falcon-1024/clean/pqclean.c | 2 +-
 crypto_sign/falcon-512/META.yml         | 4 ++--
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/crypto_sign/falcon-1024/META.yml b/crypto_sign/falcon-1024/META.yml
index fb088b45..2f82a749 100644
--- a/crypto_sign/falcon-1024/META.yml
+++ b/crypto_sign/falcon-1024/META.yml
@@ -20,9 +20,9 @@ auxiliary-submitters:
   - Zhenfei Zhang
 implementations:
     - name: clean
-      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/78831f03/falcon
+      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/cea1fa5a/falcon
     - name: avx2
-      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/78831f03/falcon
+      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/cea1fa5a/falcon
       supported_platforms:
           - architecture: x86_64
             operating_systems:
diff --git a/crypto_sign/falcon-1024/avx2/pqclean.c b/crypto_sign/falcon-1024/avx2/pqclean.c
index 1b254cfc..95259250 100644
--- a/crypto_sign/falcon-1024/avx2/pqclean.c
+++ b/crypto_sign/falcon-1024/avx2/pqclean.c
@@ -187,7 +187,7 @@ do_sign(uint8_t *nonce, uint8_t *sigbuf, size_t *sigbuflen,
     inner_shake256_inject(&sc, nonce, NONCELEN);
     inner_shake256_inject(&sc, m, mlen);
     inner_shake256_flip(&sc);
-    PQCLEAN_FALCON1024_AVX2_hash_to_point_vartime(&sc, r.hm, 10);
+    PQCLEAN_FALCON1024_AVX2_hash_to_point_ct(&sc, r.hm, 10, tmp.b);
     inner_shake256_ctx_release(&sc);
 
     /*
diff --git a/crypto_sign/falcon-1024/clean/pqclean.c b/crypto_sign/falcon-1024/clean/pqclean.c
index 487efd52..292357a8 100644
--- a/crypto_sign/falcon-1024/clean/pqclean.c
+++ b/crypto_sign/falcon-1024/clean/pqclean.c
@@ -187,7 +187,7 @@ do_sign(uint8_t *nonce, uint8_t *sigbuf, size_t *sigbuflen,
     inner_shake256_inject(&sc, nonce, NONCELEN);
     inner_shake256_inject(&sc, m, mlen);
     inner_shake256_flip(&sc);
-    PQCLEAN_FALCON1024_CLEAN_hash_to_point_vartime(&sc, r.hm, 10);
+    PQCLEAN_FALCON1024_CLEAN_hash_to_point_ct(&sc, r.hm, 10, tmp.b);
     inner_shake256_ctx_release(&sc);
 
     /*
diff --git a/crypto_sign/falcon-512/META.yml b/crypto_sign/falcon-512/META.yml
index eee16206..7e3fd7fe 100644
--- a/crypto_sign/falcon-512/META.yml
+++ b/crypto_sign/falcon-512/META.yml
@@ -20,9 +20,9 @@ auxiliary-submitters:
   - Zhenfei Zhang
 implementations:
     - name: clean
-      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/78831f03/falcon
+      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/cea1fa5a/falcon
     - name: avx2
-      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/78831f03/falcon
+      version: supercop-20201018 via https://github.com/jschanck/package-pqclean/tree/cea1fa5a/falcon
       supported_platforms:
           - architecture: x86_64
             operating_systems: