Launchpad itself

IntegrityError: duplicate key value violates unique constraint "ticketmessage_message_ticket_uniq

Bug #659184 reported by Curtis Hovey on 2010-10-12

This bug report is a duplicate of: Bug #595166: IntegrityError raised filing a bug using the email interface. Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Launchpad itself	Triaged	Critical	Unassigned

Bug Description

OOPS-1745CEMAIL15 shows a problem when processing an incoming email. I have never seen an issue like this.

Tags:

Revision history for this message

Curtis Hovey (sinzui) wrote on 2010-10-19:

The message is spam. It was sent from a compromised email account:
https://answers.launchpad.net/launchpad-registry/+question/130282

The violation is question.id and message.id. The rfc822msgid was reused in the spam attack.

The AnswerTrackerHandler.process() method, uses messageset.fromEmail() to create a message object, but fromEmail() is also a lookup method. Since the rfc822msgid was reused, the first attack message was retrieved instead of creating a new one. Question.addComment() failed because the message associated with rfc822msgid already exists. fromEmail() is used by both the answers and the bug handlers and both assume the message was created.

Both answers and bugs mail processes could trying looking up the message by rfc822msgid first or verify the message is not already linked. I suppose the latter is preferable since this kind of attack is rare.

Revision history for this message

Curtis Hovey (sinzui) wrote on 2010-10-19:

This is also bug 595166

tags:

added: email

Robert Collins (lifeless) on 2011-01-12

Changed in launchpad:
importance:	High → Critical

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #595166 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.