XMSS: Fix index copy for signing.

SparkiDev · SparkiDev · commit 9590255cebf7 · 2026-03-16T21:24:08.000+10:00
The index is already big-endian encoded but it needs to be front padded
with zeros instead of back end padded.
diff --git a/wolfcrypt/src/wc_xmss_impl.c b/wolfcrypt/src/wc_xmss_impl.c
@@ -413,8 +413,7 @@ static void wc_idx_update(unsigned char* a, word8 l)
 
 /* Copy index from source buffer to destination buffer.
  *
- * Index is put into the front of the destination buffer with the length of the
- * source.
+ * Index is put in the back of the destination buffer.
  *
  * @param [in]      s   Source buffer.
  * @param [in]      sl  Length of index in source.
@@ -424,8 +423,8 @@ static void wc_idx_update(unsigned char* a, word8 l)
 static void wc_idx_copy(const unsigned char* s, word8 sl, unsigned char* d,
     word8 dl)
 {
-    XMEMCPY(d, s, sl);
-    XMEMSET(d + sl, 0, dl - sl);
+    XMEMSET(d, 0, dl - sl);
+    XMEMCPY(d + dl - sl, s, sl);
 }
 #endif
 

Original file line number	Diff line number	Diff line change
`@@ -413,8 +413,7 @@ static void wc_idx_update(unsigned char* a, word8 l)`
`413`	`413`
`414`	`414`	`/* Copy index from source buffer to destination buffer.`
`415`	`415`	`*`
`416`		`- * Index is put into the front of the destination buffer with the length of the`
`417`		`- * source.`
	`416`	`+ * Index is put in the back of the destination buffer.`
`418`	`417`	`*`
`419`	`418`	`* @param [in] s Source buffer.`
`420`	`419`	`* @param [in] sl Length of index in source.`
`@@ -424,8 +423,8 @@ static void wc_idx_update(unsigned char* a, word8 l)`
`424`	`423`	`static void wc_idx_copy(const unsigned char* s, word8 sl, unsigned char* d,`
`425`	`424`	`word8 dl)`
`426`	`425`	`{`
`427`		`- XMEMCPY(d, s, sl);`
`428`		`- XMEMSET(d + sl, 0, dl - sl);`
	`426`	`+ XMEMSET(d, 0, dl - sl);`
	`427`	`+ XMEMCPY(d + dl - sl, s, sl);`
`429`	`428`	`}`
`430`	`429`	`#endif`
`431`	`430`