ed25519: fix fd_r43x6_ge_decode2 produces non-canonical results #fuzz

firedancer-io · Mar 15, 2024 · 4d26e5b · 4d26e5b
1 parent 3401bfc
commit 4d26e5b
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 0 deletions.
diff --git a/..._sigverify/clusterfuzz-testcase-minimized-fuzz_ed25519_sigverify-highend-5677237600780288 b/..._sigverify/clusterfuzz-testcase-minimized-fuzz_ed25519_sigverify-highend-5677237600780288
diff --git a/src/ballet/ed25519/avx512/fd_r43x6_ge.c b/src/ballet/ed25519/avx512/fd_r43x6_ge.c
@@ -150,6 +150,7 @@ fd_r43x6_ge_decode( wwl_t * _P03, wwl_t * _P14, wwl_t * _P25,
     y,                      /* Reduced */
     one,                    /* Reduced */
     fd_r43x6_mul( x, y ) ); /* in u44 */
+  FD_R43X6_QUAD_FOLD_UNSIGNED( *_P, *_P );
   return 0;
 
 fail:
@@ -234,6 +235,7 @@ fd_r43x6_ge_decode2( wwl_t * _Pa03, wwl_t * _Pa14, wwl_t * _Pa25,
   fd_r43x6_t xya,  xyb;  FD_R43X6_MUL2_INL      ( xya,  xa,ya,     xyb,  xb,yb    );
 
   FD_R43X6_QUAD_PACK( *_Pa, xa,ya,one,xya );                       FD_R43X6_QUAD_PACK( *_Pb, xb,yb,one,xyb );
+  FD_R43X6_QUAD_FOLD_UNSIGNED( *_Pa, *_Pa );                       FD_R43X6_QUAD_FOLD_UNSIGNED( *_Pb, *_Pb );
   return 0;
 
 faila: