From a905af44f64eb39cc8f4839a69ecadd7efbffb12 Mon Sep 17 00:00:00 2001
From: Chris Duncan <chris@zoso.dev>
Date: Sun, 17 Aug 2025 02:42:28 -0700
Subject: [PATCH] Revert to biased carry.

---
 src/lib/crypto/nano-nacl.ts | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/lib/crypto/nano-nacl.ts b/src/lib/crypto/nano-nacl.ts
index 0649861..80f43d8 100644
--- a/src/lib/crypto/nano-nacl.ts
+++ b/src/lib/crypto/nano-nacl.ts
@@ -50,13 +50,13 @@ export class NanoNaCl {
 	static car25519 (out: Float64Array): void {
 		let v, c
 		const s = 1 << 16
-		c = 0
+		c = 1
 		for (let i = 0; i < 16; i++) {
-			v = out[i] + c + s
+			v = out[i] + c + s - 1
 			out[i] = v % s
-			c = (v / s - 1) | 0
+			c = (v / s) | 0
 		}
-		out[0] += 38 * c
+		out[0] += 38 * (c - 1)
 	}
 
 	static inv25519 (out: Float64Array, i: Float64Array): void {
-- 
2.47.3