Changes between Initial Version and Version 1 of Ticket #1654


Ignore:
Timestamp:
2012-01-09T06:54:32Z (14 years ago)
Author:
zooko
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #1654

    • Property Keywords integrity added
    • Property Priority changed from major to supercritical
    • Property Milestone changed from undecided to 1.9.1

  • Ticket #1654 – Description

    initial v1  
     1This is the ticket where we will track the details of a failure of assurance of integrity. For now, here is the announcement:
     2
     3-----BEGIN PGP SIGNED MESSAGE-----
     4Hash: SHA1
     5
     6Dear Tahoe-LAFS Users:
     7
     8Kevan Carstensen of the Tahoe-LAFS core team has discovered a security
     9vulnerability in Tahoe-LAFS v1.9.0 which would allow a sufficiently clever
     10attacker to corrupt the retrieval of mutable files or directories which are
     11retrieved with v1.9.0 or, in some cases, to corrupt the stored copy of
     12mutable files or directories which are updated with v1.9.0.
     13
     14The recommended defensive action for all users is to downgrade to v1.8.3, or
     15to refrain from using mutable files (either SDMF or MDMF) with 1.9.0.
     16
     17A FAQ about downgrading from 1.9.0 to 1.8.3, which was written before we
     18discovered this critical security vulnerability, is here:
     19
     20https://tahoe-lafs.org/pipermail/tahoe-dev/2011-December/006905.html
     21
     22The FAQ is no longer accurate about 1.9.0 being free of dangerous flaws, but
     23it is still accurate about 1.8.3 being free of compatibility problems.
     24
     25We'll be providing a patch soon. We are still writing tests for it and
     26searching for other similar bugs and so on. Of course, as soon as we release
     27the patch, this will inform any attackers of exactly what they could do to
     28users of 1.9.0. Therefore, if there are any users who are especially
     29security-sensitive, then they should downgrade to 1.8.3 before we release the
     30patch, or else they should suspend their use of mutable files and directories
     31until we released the patch and they've applied it.
     32
     33Once we are ready to publish the details of the issue we will post them to
     34this issue tracker ticket:
     35
     36https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1654
     37
     38Please feel free to contact me with any questions or concerns, using GPG
     39encryption. Please Cc: Brian Warner, David-Sarah Hopwood, and Kevan
     40Carstensen on all such email.
     41
     42Regards,
     43
     44Zooko Wilcox-O'Hearn, on behalf of the Tahoe-LAFS core team
     45
     46
     47GPG fingerprints:
     48
     49Brian Warner <warner-tahoe@lothar.com> 967E FE06 6998 7241 1A77  DF36 D43B 4C9C 7322 5AAF
     50David-Sarah Hopwood <david-sarah@jacaranda.org> 3D6A 08E9 1262 3E9A 00B2  1BDC 067F 4920 98CF 2762
     51Kevan Carstensen <kevan@isnotajoke.com> 7E1E 99DB 97B1 DD5F 8154  5973 8E6B 2106 2425 D7AE
     52Zooko Wilcox-O'Hearn <zooko@zooko.com> A60B 7EE1 7164 D0C5 F137  3868 5F22 F428 242B E85F
     53
     54- -----BEGIN PGP PUBLIC KEY BLOCK-----
     55Version: GnuPG v1.4.11 (GNU/Linux)
     56
     57mQGiBEMB9ZARBACsDthnNvgj8ZnP33ViSgxg1ruCiuCGGStk06nLLFCiqgpym2sW
     5810DCajYcIbWw3LtPKetp14xj+p+4wvtej5+LP+gsQ5N+O9zLhaBAbc9aC7jn3xHE
     592RsHPKbqvfCx/FNp3HvKRIhZdzRgKjFTRMp3O9DNcfD9/tgK8RPzVH75twCgzN3N
     609oVoxGbfxAaToY1QAJeaDGED/3lw92sABU9SiFs8u3dJHsqEtWjVVAU1Ung2AeVp
     61hF05OgRrPR3PpAaF2GsFOmf2dSiexk8uN+cleqX3sWgQ02hH+Ppv9hT1ycAOIMCE
     6231g6TTtLMpWTcAcyxecNBVU5XBYOfIsQzULS0v0WvUGAQfQ3GXxFwei3RMtUBLAR
     637Xn+BACW66N9+u2V7N9wPCI2DjN7wZGQs2mH0Ngr/lDk1t4GHD6n6qRP1UczT5cf
     64wLcn1T9DeBBCZ7G9qdkCl5/9zGEZ/oOs+qFxKQ/1r99HKDxl+v1Er88BSCaXJ0W8
     65iEu08agtTYVeSHa1yoRw/OYgeShyvAi6UiJNU80EtQOVxPR1WrQuWm9va28gTydX
     66aGllbGFjcm9ueCAoSGFja2VyKSA8em9va29Aem9va28uY29tPohgBBMRAgAgAhsD
     67Ah4BAheABQJJr8YEBgsJCAcDAgQVAggDBBYCAwEACgkQXyL0KCQr6F/ljACdH5YY
     68Idzah/onhltusit9C3ZhCoAAnjtP2BCp45dKLgVtVNVYGDro0cx3tC9ab29rbyBX
     69aWxjb3gtTydIZWFybiAoSGFja2VyKSA8em9va29Aem9va28uY29tPohgBBMRAgAg
     70BQJJr8aZAhsDBgsJCAcDAgQVAggDBBYCAwECHgECF4AACgkQXyL0KCQr6F/q/ACe
     71IT1ra2rEo9DTvkyuyopMB+gmLGkAnRT5HlTzgWR5IWXebupMIM4+uBvQuQENBEMB
     729ZEQBACEk0DKOZsds2a8+wgNzCnZwxJPtdJBXogwtTaB7XnvsqBrkTw12begWck/
     732k4PhNwHlrKszfz8tzhQGUuMiZqhrvDqhPozqIWWPSJtJgJSqS7OaFDJncNdFRDP
     743aggkER9J2YjVB23Ig88zIFxvzh6b57MJZhnhJyqYE74DklZawADBQP/WyQTF1JT
     75Iv4cbNDHNSihtp/Q+L0cNJvT23/4jAN/P1KCWui5M7QV4PBjjS6h/raXJ1gKh/G0
     76YXB8APbUvSNdVySVg3fBoNK/okcKspxUNTusK6it7gZ7PtMNvuOudiIbVrfjXQlQ
     77s0gqDxht8aH0Br41+VsaTc8oaSLTUK7VdWqISQQYEQIACQUCQwH1kQIbDAAKCRBf
     78IvQoJCvoX/rMAJ9QAMLP+zCP0Wmxw6MpQMjLqA4bRwCeO/TYWIA1onjBfV/qAYQ0
     79/U0x8sOZAaIESa2nNREEAKJ8GS7J2BpNkqVry+t0ZhB8+ziFyTflOID2kPFAej+4
     80ez/jMMzP4DU4zFmCFmwreZZMA+36WKLY4OsB77amm8PhY5D0DTEjYMFWJUi2j4Sn
     817URPNT74wia0QamPRd80wnn2li+KNVImeGHkjzj9HXl1VaJO2vqoOyOEyAkvdscr
     82AKCL/QCX7WPaHKar0VEabVISGMTt0QQAmLeZDCGaUhmAx2ymizhisqvO/v3wQCIw
     83lLctxcQG/YE/c+NFrn29UNwpzpLbRH5KDDopNXfHfDs+haQXJ+AQ9iO5xyDfrumy
     84cTpsN/K02kz2uiy9pfWQff7inUwhNGcigJEkW55+qbBmsmSf6cqDixIn9fuSQBQH
     85PthDdiiNUz4D/iTvdwIiqYSF4bOBEcEtNEnMc0a+AnCi3pn3ZNu/vkKVXATXpHwE
     86fIc4SwdTzkMERF5e6RF+PCtBS4BeSo5m9HgrG94RCu074EQG0YWlBowHfo76KwTD
     87DYwMeKoIHArWkmz18CmDDnNXxGfDbCY4HVveCrTIEUl/+wUo2u94omNDtChCcmlh
     88biBXYXJuZXIgKGVtYWlsKSA8d2FybmVyQGxvdGhhci5jb20+iGAEExECACAFAkmt
     89pzUCGwMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRDUO0yccyJar1lvAKCGzZ4T
     90VF7NbGc4wAmIKNuNjyn7zwCfYs6dcHujZY/C/846a87Ax7viCW25Ag0ESa2nNRAI
     91AI9UFWTfqk/0ZgiBfkq/A8hsCl06oOhxjECLKt5dUmPzYio7YwL02xKfWH2geYx4
     92v2/QSHBOjF1UX91Deb4MReepD7uMcybVv0368vAIbj9Mvb1MNXKDKy39wm3aGbuJ
     93WCLsEawOo/nDbrmGcIGAAgQenP08peGZzvCKkoSNxnxc4Z4KrygqgQBNKxNFM3ZR
     94/zOU9w8F9qV76WwcSHYpX290Vq5oL2WBdRy7lkI586Lubv0TbiIFN9ebuTGwcuYl
     95jT1QdJby8Ux8DdJOhb5TiliZ17R1C/M7290Gf7xZ4/CM01ty80oi25w8AoW0AjBL
     96FuPu0twR4UfSy5EYFlg6g0sAAwYH/3m3BQHWMHcXqgLBh38V8cn4qSuNZEAkw4Mp
     97HgDUJJJhWgV9HA4rU3TMBoR5IVcvSYn71tCJTgVzDq+Aid6PbOp5ovz9B8toKKmu
     981vDzdd8NXSH0ymI1oPOL2GZ3Cge7WRkq7yGMfsoRGA87ObS/Siji6vwTSPx9rOc9
     99IhObIpNns9cdYqijXWtGDrmHw/VrNfd5hsgjg1ElWgnWoU4TEwNBxlp/XBLnUExf
     100PmX2/up6/h3eAD7LfE47e2pmSfWeOSNfve42Fgevl7vf/7fHYaYP3hdnY8tO8Fvy
     1018XPwC1yuCQaOYRBTW9mXA98kttRPd4c+LUpIGILBxyDWUubXFiuISQQYEQIACQUC
     102Sa2nNQIbDAAKCRDUO0yccyJar7oqAJ9PWosueCwCt8dXD2TO0h5hNXwY8gCfTlMw
     103qfNtn6X8Gm0dRHQm2j1UhtCZAQ0ETX+nlwEIAL+XBjMjo1reeuHxUhFYNgBk1hlu
     104Jl39Co1oPsFLLKM4zUR5/m6ooqcltsiBxE5waOlX+ha1evKxd7ykY6AM8QFcjq4l
     105CGWbvSlO57493t5PlWBAyCBUc0WK15ZH6vcPPbvYPuW5tZDkiL3VrQcb9MsZ3CYE
     1060UWrFlpc22kYT+9QrgX1fGNtVgEp/ZTbWzfBoMAW7i6ZGstDB38zI7D+RMkenQDn
     107Mjvt8+jj1XaDfw/7OTPnBmwCGw9sE3JgXbfLW1jUsURBbCYz1tNwVA/DOrMiVsdw
     1081eoezHlFdqmujAeAsm4PEQaoSDD30H4qah6TIPYEU6d1bWLFEGhczsHaLzMAEQEA
     109AbQvRGF2aWQtU2FyYWggSG9wd29vZCA8ZGF2aWQtc2FyYWhAamFjYXJhbmRhLm9y
     110Zz6JAT4EEwECACgFAk1/p5cCGyMFCQlmAYAGCwkIBwMCBhUIAgkKCwQWAgMBAh4B
     111AheAAAoJEAZ/SSCYzydiSwMH+wW4St0+QHHplPLk1arm0osCSxxFnXTTllu7bhuN
     112M9GOjw+5d9Ns1NU2Za8G9oQ0p2Zk2htnS5f8vMk8p/UJDU84V0WntjSjcFToEW0r
     113EtTxNfcNDdN0ZMUM9GOIrq7rkFVMtsgL+cKmB84kU6K5oxAHdoRsLg5IQgcAAfVZ
     114/uZ+l6Huoxx7u/rDCG7CWlRqCXbfvCv9BREYHmDMC+MStwnklOT6xeRvPj34ryTO
     115fhnMuSZAQlTtqXJku9ewrlJWdJCFu2+IhjXwQN1Abhbzprgp6A4Hzn5aot1njrjd
     116/O2JKi/L8N2JSH/6xZzcbcDi2ub5au5T3/c0sso4+1+VXCe5AQ0ETX+nlwEIAKrt
     117IH+d59ZShS1mtLim8dz+Mh/uM8aU2AmJSULht4IKpf1DfcnWp5Nz6V4slvqKpBr5
     118TvJbKhPmI62hhzudUwNvsNTsCESolcgEoSmNMzEjwb1IK1h+GKNa5KEF/pPxCfg1
     119yhA8ercRgaj8ss1Py0h/5/Y7sWCqEPHPujb0QGiNzSik1caSIXK2cieNqdLaz3+Q
     1206cPLzyOip5ZLxAoD7ae2fWUIUAEa7qCbAkh9GWw5Lv4RT8c+Gm5SINnpywHyoDNC
     121e2cU4/3xWhPrGdgADMU8DWHFgN8FKOpWMrLqhVXbh45d8JvoGYyx1AfAVaFiQJsi
     122e4z3waQlyf2tqmXPfH8AEQEAAYkBJQQYAQIADwUCTX+nlwIbDAUJCWYBgAAKCRAG
     123f0kgmM8nYteMCACnD6PGPZnbspvQ2xAQAEK8b+Pq2jT6GQjrGoz8rthtcgj8PNCt
     124+9gsah2vOV+HCzZ2vWfqZ7uegtfA/AoJQUnLY5cAxet/8fLmLRsJrBj3bDDQiGlL
     125KL79JkcWyDZn6PZfrTdqg6rkjdLD4J56V50R5Yc7RWUnKcsdHldIEK2pB9lZjEQX
     126cFVcN5q6ra0tE+Yj4xTqBQV049UHj/Qzci+FfyT+FIVbRvMA0cE159dvd3QpKADD
     127WpONiXK3XNSmO6faiJ/dL2mLzJfg8CwmrosYowG4XzY3cAHNDWdc77WVpyAs2B5T
     128YUmeq28HKjmhVVptvfN4Ik+VV2XPo6PW1XaTmQSuBE4Ds6ARDADcHG/8jznjC275
     129/cuDLUSKpcZqOMNf+A+ASw8LK895xoLJaySvYMbPzFpY+OO+VY8clw/c7NVnNUOs
     130n2QprL02slTyN/+v1X9rnz0XsHI8G3dfZwTWYoxVdCosgEeaoinQLpn8OX2p+KVw
     131J6llzYKBbDKnlcMFMarlzKFeHfT4z8Zg9XMtHXkjxCCQTfOwHgZWxmQSvQcmK5EN
     132Dui7oRJQkPTdcTxMUe4gaCcuwQL7hHsaSfaDeX/mGoo7gNn9mPy/VrcHBNEZtWcQ
     133C2KSVJpdyOAGZ4i6qzExWyWL72+/PO1dGttYh2+2hHDyXDMdaF0E01yOkQ8zX6GR
     134zzLQIftnZvk7gj34ITouulTGwPGgF5X7JTpm+UVxPiZJdk4Q+XH3oUgzP8uiZbSY
     135oVO+tgSForlmFAUYkB+N5M1wPxA3/6mVVomb64roK7QO+Wy7tkpZAdJsQU1h/cec
     136sfu/y+UbIafJAUk6oBRdjxBRV3cKWvbG44ShUHo2jD8XSwNCdp8BAIAyGSN6qAW2
     137Ai9FSZ4CDhD6fhiuiubtn4wXbS3ZHtXtDACPel5qDFdh6UM1ayvIgrihIucAV3b7
     1382ruy+XR28Ep5KMIk/MTwynAkNZRXrH4C9HF2emYYOxBw1Q0XiR3qneI9/mV18P0x
     1397D/0NCeMzNPfavXFncEWVpVuUAsVp9aJU5FiCnMtozg/Xep3LD4hngSIg9P33q+I
     140nVaPnBSUPtIBdIkcNq5n3R9TDTbr5XaZzd3A+VJcQios3S4yh4Hdzy4OR24L7BE5
     141GqfEF/irKqKd9jZAS2wQMY1dW/yGOPKSoaALSV4cIpyugBhtO2Ub4fWQ5jGAhSHz
     142uj1M6IbsB/z/nMkM0uxqJH1EMbWWVJwaFcMbLhsvTnigwYwrHWzNVCpGRcedsBTz
     143fZMIzUFEdZyde9LlbYEP3KEBVo+I+Sdv+aPvo336T8L4RO9Aqr0ONU3/PV8MnLVu
     144fwbzwMFaQrLxQn7kBRsGLYWY3SDdugQ0P7HonMTFpASgnZtOUqvXavoJoyrgIKGD
     1451/8iRhBhmzNU4Hi28mKN5oDU4S7OfCW/OL8L/2P3uwmTpK9yKxAmgdQlm600wufO
     146S8HbIOK+hNz88SCYBniHR7jbDegQx+XNZuSRQisjyCoO7scv5p51/O35qzs6aBSd
     147gTIWH0AkUiDg3HJH1P1MXgYO38JikX+0zks3o50ESwF2U75FPw4Ys9kt0Xv9UuBN
     148+lx3MyF3CX9ZoPtClP7PCtKl6pL7W0iMndSnGxMst8pgqvXwHMA4b9rC1rO+8ByG
     149v5uYy65HIXIjHjf5RXFwXvdnz7Vt0iZqbMyyNGHkvQO/QMWRN7q+JTD9o+lxSkRT
     150haKVqhimdggqtF2TSytwsXn/gax5hTqHvL4bpIjvP+m+ZTPzAm9eON+PmRZtkod2
     151xCHx3r7HU9CcVvZZ7HrMG1hEg2BPZgxpNqUoydzTIVVqZABgRyIZt0S7o8PDpxU8
     1527sN15GwVaWee7Yp05GifbYCMRw7s3bXKTT/U3iDvoXZNQ8NyVg4Yw46sFlcpIGoD
     153VP76yeIWdcA2PhPLqfT8YgNhF2zH2UmpPD04dbQtS2V2YW4gQ2Fyc3RlbnNlbiA8
     154a2FjYXJzdGVuc2VuQGNzdXBvbW9uYS5lZHU+iIAEExEIACgFAk4Ds6ACGwMFCQHh
     155M4AGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEI5rIQYkJdeum7IA/j56gW+h
     156zpqkKkzsZAnvJw0GX1R8KI3Ppai6Yn3sfUtoAP46mY+UxDf89AOhgOIe2ABJtJWb
     157385WIv4A/nTnnQT6QrkDDQROA7OgEAwAw/mLuVT7T+ooC2DLbPy9kQKHlyxQeJNR
     158gBsVdh41QGOXOcsCUJ/6jtlpFJ+/PByTHLr6tL3z9cYyddp0mNpS3NV0+6eHpopV
     1591SAhHEBPlJuCtTFWj5BhXTqEHMkf12bGX8kBwJgpNcXJ4JOCItM8q7yVNUkr3988
     160xl2fUCVTT+vRw4N8KQUKy4rGpg3Vcp/QZwpNNrUyazo1VstcSfkIWImSVobeBuXT
     161lCBozL0wZgB/WEH/9cXzLIJJbUBTxNaWXJmPXDR8CW/QUy/baQWUXui9OGyldqLL
     162zJwWZp7Jw9i4XtgyXVMswNQJI9au+q9l8PCtZyZyM9CPznqBZ4Y371NMxle70e9q
     163HjhfAqUdr5k7jDmSSKwLIyZGGK0VqLTetgLCUH2eld1PnrUastP3NHbxJuh8oa7C
     164ZAt9y6HXi6hceUhV8/W1fPYxaE4Wj6E8Vlwzy7qqNzhygVZzE1B2A5uvNb+dVV+M
     165x8s6b6EnkOPtRCUqB+SDDHfDQF3Y3AmPAAQNC/9PZ9SSb5YkH0DGrN4eSixn6J99
     166H2QsmO/e/dZEVyouRKmPehBcxyibqL0u9wzloJx0t5obFDgY7h02aAN3VUIEQL2V
     167bf6Ol3n63TrKXX3INRfY9h2in42W1ba/p8BTj0vboZN+vRsadnODMiZZV1WF3uZw
     168rXAHvjuGBbLEeZZB92DyVqCtmZN18AFlxxhfgZfoeyKXBtjImX64lfx2SE3YBfTu
     169KyBgVJDhc8hljf5msnUEj3cQGu8f5K0e47Hwf5+IB6jhA0bzyPZVKQ63G05QWmnZ
     170fs+XvNUykVcAAxOsXiTIRQvPQR/aLrQKtapNDEDtgT8FsANlEtHUjPi0JvE0gS/p
     171+4+p3YOyK8VNgj7Yq2XI2BC7ZzHn2KACLkfhz7YbpnRDf6toCvaw14XVpBegY/l+
     172q4FHEW7rOjtwNSF8jj/qWoN01mfjHQtaOY33c1jeuMsrwq69aYAHsFszaGaappe+
     173q7A4NGrlmha7M7ssC5ArbpvTvJ6Djr3DuJ6DdgOIZwQYEQgADwUCTgOzoAIbDAUJ
     174AeEzgAAKCRCOayEGJCXXriR4AP9YVdXBtZZHCjfuT+6CU09nvPvLeOf1vWa+t2Rr
     175767UpAD/Sukn7pceESBqLMLOPDfgEoYLJ7/ZjPJDEmYRDnXG5JE=
     176=EbMb
     177- -----END PGP PUBLIC KEY BLOCK-----
     178-----BEGIN PGP SIGNATURE-----
     179Version: GnuPG v1.4.11 (GNU/Linux)
     180
     181iEYEARECAAYFAk8KjpAACgkQXyL0KCQr6F/PUACfb9EZeqIyehgB7wSoZqHvRgJn
     182vIIAoMwVD3cKaJfuwI6KEAURD0to+qAT
     183=XB1s
     184-----END PGP SIGNATURE-----