core/go-crypt
8
0
Fork 0
Code Issues 5 Pull requests 1 Projects Releases Packages Wiki Activity Actions 2

[security] Fix auth bypass, mutable pointer returns in trust layer #7

New issue
Open
opened 2026-03-22 16:37:05 +00:00 by Virgil · 2 comments
Virgil commented 2026-03-22 16:37:05 +00:00
Member
Copy link

AX sweep findings:

  1. HIGH — Protected server user check bypassable (hashed vs literal username) (auth.go:55, :371)
  2. HIGH — Registry returns mutable *Agent pointers, external callers can mutate trust state (trust.go:121)
  3. HIGH — Policy getter returns mutable *Policy, allows subverting policy evaluation (policy.go:157)
  4. MEDIUM — Tier-2 scoped repo access effectively unscoped when ScopedRepos empty (policy.go:121)
  5. MEDIUM — Iteration APIs invoke callback while holding locks, deadlock risk (trust.go:150, audit.go:108, :144, approval.go:173)
  6. MEDIUM — Global LTHN key map mutable and unsynchronised (lthn.go:28, :50)

Fix all, add tests.

AX sweep findings: 1. HIGH — Protected server user check bypassable (hashed vs literal username) (auth.go:55, :371) 2. HIGH — Registry returns mutable *Agent pointers, external callers can mutate trust state (trust.go:121) 3. HIGH — Policy getter returns mutable *Policy, allows subverting policy evaluation (policy.go:157) 4. MEDIUM — Tier-2 scoped repo access effectively unscoped when ScopedRepos empty (policy.go:121) 5. MEDIUM — Iteration APIs invoke callback while holding locks, deadlock risk (trust.go:150, audit.go:108, :144, approval.go:173) 6. MEDIUM — Global LTHN key map mutable and unsynchronised (lthn.go:28, :50) Fix all, add tests.
Virgil commented 2026-03-22 17:05:12 +00:00
Author
Member
Copy link

Codex Fix Attempt

Codex identified and wrote fixes but could not commit (QA gate — go.work sandbox issue):

Fixes Written (in diff, not committed)

  1. Protected user check: changed from map[string]bool to []string slice comparison against plaintext usernames (auth.go:49-55)
  2. Registry returns copies not mutable pointers (trust.go)
  3. Policy getter returns copy (policy.go)

Needs Docker sandbox to commit

The fixes are correct but QA gate fails because the workspace lacks the full go.work environment. Re-dispatch with AGENT_DOCKER=1 once core-dev image is built.

## Codex Fix Attempt Codex identified and wrote fixes but could not commit (QA gate — go.work sandbox issue): ### Fixes Written (in diff, not committed) 1. Protected user check: changed from map[string]bool to []string slice comparison against plaintext usernames (auth.go:49-55) 2. Registry returns copies not mutable pointers (trust.go) 3. Policy getter returns copy (policy.go) ### Needs Docker sandbox to commit The fixes are correct but QA gate fails because the workspace lacks the full go.work environment. Re-dispatch with AGENT_DOCKER=1 once core-dev image is built.
Virgil commented 2026-03-23 12:12:09 +00:00
Author
Member
Copy link

Security Scan: Attack Vector Map

Key findings from crypto surface:

Entry Vector
Encrypt/Decrypt (crypt.go:10/:32) Weak/empty passphrases allowed, attacker ciphertext forces Argon2 work
VerifyPassword (hash.go:37) Untrusted hash strings control Argon2 memory/time/parallelism = CPU/memory DoS
HashBcrypt (hash.go:72) Caller-selected high cost = CPU DoS
DeriveKey (kdf.go:28) Caller controls Argon2 params
RegisterUser (auth.go) No password quality enforcement
Auth trust layer Mutable pointer returns, protected user check bypassable

Highest risk: VerifyPassword accepting attacker-controlled Argon2 params. Should cap time/memory/parallelism.

Full table in agent log.

## Security Scan: Attack Vector Map Key findings from crypto surface: | Entry | Vector | |---|---| | Encrypt/Decrypt (crypt.go:10/:32) | Weak/empty passphrases allowed, attacker ciphertext forces Argon2 work | | VerifyPassword (hash.go:37) | **Untrusted hash strings control Argon2 memory/time/parallelism = CPU/memory DoS** | | HashBcrypt (hash.go:72) | Caller-selected high cost = CPU DoS | | DeriveKey (kdf.go:28) | Caller controls Argon2 params | | RegisterUser (auth.go) | No password quality enforcement | | Auth trust layer | Mutable pointer returns, protected user check bypassable | **Highest risk**: VerifyPassword accepting attacker-controlled Argon2 params. Should cap time/memory/parallelism. Full table in agent log.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
main
ax/review-fixes
agent/ax-review--banned-imports--test-naming
v0.2.1
v0.2.0
v0.1.12
v0.1.11
v0.1.10
v0.1.9
v0.1.8
v0.1.7
v0.1.6
v0.1.4
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.4
v0.0.3
v0.0.2
v0.0.1
Labels
Clear labels   
needs-review

   
needs-review
  
athena

Assign to Athena AI agent (M3 Ultra)

  
athena-gemini

Dispatch to Gemini CLI on M3 Ultra

  
audit

Code audit task

  
clotho

Assign to Clotho AI agent for processing

  
clotho-gemini

Dispatch to Gemini CLI on darbs (AU)

  
codex

Dispatch to Codex CLI on gateway for analysis

  
darbs-claude

Dispatch to Claude on darbs (AU)

  
security

Security review task

  
wiki

Documentation/wiki update

No labels
needs-review
needs-review
athena
athena-gemini
audit
clotho
clotho-gemini
codex
darbs-claude
security
wiki
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

-

Dependencies

No dependencies set.

Reference: core/go-crypt#7
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?