Linux cryptographic layer development
 help / color / mirror / Atom feed
From: Scott Guo <scott_gzh@163.com>
To: herbert@gondor.apana.org.au, davem@davemloft.net
Cc: linux-crypto@vger.kernel.org, Scott GUO <scottzhguo@tencent.com>
Subject: Re: [PATCH 0/2] authencesn: Refactor in-place decryption
Date: Fri, 15 May 2026 19:01:43 +0800	[thread overview]
Message-ID: <8aaa00f3-d8e0-4de0-918b-1f025b632eb9@163.com> (raw)
In-Reply-To: <4e9aee15-62e6-4d71-a836-250c5376a8fd@163.com>

Another thought: even with this fix, Fragnesia should still funciton. It 
just block current PoCs which pass in the page cache in the position for 
auth data.

Avoid changing the auth part would not be enough because attacker would 
still be able to link a page cache page within the cryptlen part and 
override it with the 4 bytes from sequence number.

在 2026/5/15 18:41, Scott Guo 写道:
> BTW, this should fix the Fragnesia vulnerability.
> 
> 在 2026/5/15 16:36, scott_gzh@163.com 写道:
>> From: Scott GUO <scottzhguo@tencent.com>
>>
>> This patch set introduced the sglist_shift_{left,right} helper
>> and refactor the sequence number handling for authencesn
>> decryption. Avoiding write to the auth part of the sg list.
>>
>> Scott GUO (2):
>>    scatterlist: Introduce sglist_shift_{left,right} helpers
>>    authencesn: Refactor inplace-decryption with sglist shift helper
>>
>>   crypto/authencesn.c          | 38 ++++++-----------
>>   crypto/scatterwalk.c         | 79 ++++++++++++++++++++++++++++++++++++
>>   include/crypto/scatterwalk.h |  6 +++
>>   3 files changed, 97 insertions(+), 26 deletions(-)
>>


  reply	other threads:[~2026-05-15 11:02 UTC|newest]

Thread overview: 10+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2026-05-15  8:36 [PATCH 0/2] authencesn: Refactor in-place decryption scott_gzh
2026-05-15  8:36 ` [PATCH 1/2] scatterlist: Introduce sglist_shift_{left,right} helpers scott_gzh
2026-05-15  8:36 ` [PATCH 2/2] authencesn: Refactor inplace-decryption with sglist shift helper scott_gzh
2026-05-15 10:41 ` [PATCH 0/2] authencesn: Refactor in-place decryption Scott Guo
2026-05-15 11:01   ` Scott Guo [this message]
2026-05-18  2:33     ` Herbert Xu
2026-05-18  2:55       ` Scott Guo
2026-05-18  3:17         ` Herbert Xu
2026-05-18  6:48           ` Scott Guo
2026-05-18  8:21             ` Herbert Xu

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=8aaa00f3-d8e0-4de0-918b-1f025b632eb9@163.com \
    --to=scott_gzh@163.com \
    --cc=davem@davemloft.net \
    --cc=herbert@gondor.apana.org.au \
    --cc=linux-crypto@vger.kernel.org \
    --cc=scottzhguo@tencent.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox