Uploaded image for project: 'Mender'
  1. Mender
  2. MEN-1412

Artifact checksums is not verified for headers, only payload

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 1.2.0
    • Fix Version/s: 1.2.1, 1.1.2
    • Labels:

      Description

      To reproduce:

      1. Extract an update using regular tar xf update.mender.
      2. Open the manifest file and change any of the checksums for the headers, but not the payload (data).
      3. Try to apply the update with mender -rootfs.

      Mender accepts the update even though it shouldn't. This is a serious issue because it allows an attacker to make arbitrary changes to state scripts of a signed update.

      Acceptance criteria:

      • Mender should not accept wrong checksum on any headers.
      • This must be tested in acceptance tests
        • The test_signed_updates test might be a good place to add it. It already deals with corrupting checksums and trying to update using those.
      • Must update vendored dependency in all repositories that vendor mender-artifact, including the servers.

        Attachments

          Activity

            People

            • Assignee:
              a10040 Kristian Amlie
              Reporter:
              a10040 Kristian Amlie
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Summary Panel