Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1599899 - (CVE-2017-15139) CVE-2017-15139 openstack-cinder: Data retained after deletion of a ScaleIO volume
CVE-2017-15139 openstack-cinder: Data retained after deletion of a ScaleIO vo...
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
impact=moderate,public=20180710,repor...
: Security
Depends On: 1610143 1610144 1610145 1610146 1610147 1610148
Blocks: 1599900
  Show dependency treegraph
 
Reported: 2018-07-10 17:27 EDT by Pedro Sampaio
Modified: 2018-10-24 13:58 EDT (History)
31 users (show)

See Also:
Fixed In Version: cinder 10.0.8, cinder 13.0.0.0rc2, cinder 12.04
Doc Type: If docs needed, set a value
Doc Text:
An information-leak flaw was found in openstack-cinder deployments using the third-party EMC ScaleIO backend. It was possible for new volumes to contain previous data if they were created from storage pools which had disabled zero-padding. An attacker could exploit this flaw to obtain sensitive information.
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Launchpad 1699573 None None None 2018-10-02 22:02 EDT
Launchpad 1784871 None None None 2018-10-02 22:01 EDT
OpenStack gerrit 592001 None master: MERGED cinder: ScaleIO: Disable volume creation without padding (Ibaf6e9b67d252a5aae1b0f64ec632ec26789c389) 2018-10-02 21:59 EDT
OpenStack gerrit 593694 None master: MERGED cinder: ScaleIO: Deprecate sio_allow_non_padded_thick_volumes (Iaf7173cbcd9fc0929dabe3b1cb2db4b47c8bf0bd) 2018-10-02 21:59 EDT
OpenStack gerrit 596658 None master: MERGED cinder: Fixed invalid number of arguments bug in ScaleIO driver (I6946f531e2bed4b3f7e4491ca26876dd68fd0fc8) 2018-10-02 21:59 EDT

  None (edit)
Description Pedro Sampaio 2018-07-10 17:27:57 EDT 
Summary
Certain storage volume configurations allow newly created volumes to contain previous data. This could lead to leakage of sensitive information between tenants.

Affected Services / Software
Cinder releases up to and including Queens with ScaleIO volumes using thin volumes and zero padding.

External references:

https://wiki.openstack.org/wiki/OSSN/OSSN-0084

Upstream bug:

https://bugs.launchpad.net/ossn/+bug/1699573
Comment 3 Summer Long 2018-07-30 20:20:49 EDT 
The 2018 upstream fix prevents the creation of thick volumes with disabled zero padding by default (although can be overridden with config option, sio_allow_non_padded_thick_volumes).  
https://git.openstack.org/cgit/openstack/cinder/commit/?id=7feb62197d371ab7253dc86a34af6ff8b484b4df 
Note: fix is in 13 dev milestone, to be released with Rocky.
Comment 6 Summer Long 2018-07-31 00:14:17 EDT 
Created openstack-cinder tracking bugs for this issue:

Affects: openstack-rdo [bug 1610143]
Comment 18 Summer Long 2018-08-19 20:22:20 EDT 
Upstream bug for thin volumes: https://bugs.launchpad.net/cinder/+bug/1784871
Upstream patch (scaleIO):https://review.openstack.org/#/c/592001/ 
Upstream rocky (not merged yet): https://review.openstack.org/593188
Comment 22 Summer Long 2018-08-21 19:35:15 EDT 
Next patch: https://review.openstack.org/#/c/593694/
Comment 23 Summer Long 2018-08-27 20:33:07 EDT 
Upstream queens: https://review.openstack.org/596879
Comment 24 Summer Long 2018-09-11 19:04:24 EDT 
Upstream pike: https://review.openstack.org/601681
Comment 25 Summer Long 2018-09-20 20:35:49 EDT 
Upstream ocata: https://review.openstack.org/#/c/604105/
Comment 26 Summer Long 2018-10-01 21:30:07 EDT 
Upstream newton: https://review.openstack.org/#/c/606130/
Comment 28 Summer Long 2018-10-09 22:18:15 EDT 
Mitigation:

This flaw only affects Red Hat OpenStack Platform deployments which use the third-party EMC ScaleIO driver plugin. To mitigate this flaw, ensure all volumes use zero-padding by updating the ScaleIO storage-pool policy. 
Note: Only an empty pool's policy can be changed.

~~~
scli --modify_zero_padding_policy
   (((--protection_domain_id <ID> |
   --protection_domain_name <NAME>)
   --storage_pool_name <NAME>) | --storage_pool_id <ID>)
   (--enable_zero_padding | --disable_zero_padding)

Example:
scli --modify_zero_padding_policy
--protection_domain_name pd10 --storage_pool_name scale1
--enable_zero_padding
~~~
Comment 30 Summer Long 2018-10-15 21:52:08 EDT 
Statement:

With this update, disabled zero-padding is no longer the default for new volumes. Users can override this behavior by setting the new configuration item, "sio_allow_non_padded_volumes=True". However, the default should not be overridden if multiple tenants will be using volumes from a shared Storage Pool.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.