ML-KEM/Kyber: fix out of bouds read

Decompose 5-bit values: Don't read 15 bytes when only have 10 bytes available.
2026-01-26 12:32:19 +01:00 · 2025-08-27 10:14:39 +10:00
parent 02cba85856
commit 4ff6f5f10c
2 changed files with 5 additions and 1 deletions
--- a/.wolfssl_known_macro_extras
+++ b/.wolfssl_known_macro_extras
@@ -206,6 +206,7 @@ ENABLE_SECURE_SOCKETS_LOGS
 ESP32
 ESP8266
 ESP_ENABLE_WOLFSSH
+ESP_IDF_VERSION
 ESP_IDF_VERSION_MAJOR
 ESP_IDF_VERSION_MINOR
 ESP_PLATFORM
--- a/wolfcrypt/src/wc_mlkem_asm.S
+++ b/wolfcrypt/src/wc_mlkem_asm.S
@@ -15779,7 +15779,10 @@ _mlkem_decompress_5_avx2:
        vpmullw	%ymm4, %ymm0, %ymm0
        vpmulhrsw	%ymm1, %ymm0, %ymm0
        vmovdqu	%ymm0, 448(%rdi)
-        vbroadcasti128	150(%rsi), %ymm0
+        vmovq	150(%rsi), %xmm0
+        movzxw	158(%rsi), %rdx
+        vpinsrq	$0x01, %rdx, %xmm0, %xmm0
+        vinserti128	$0x01, %xmm0, %ymm0, %ymm0
        vpshufb	%ymm2, %ymm0, %ymm0
        vpand	%ymm3, %ymm0, %ymm0
        vpmullw	%ymm4, %ymm0, %ymm0