Ubuntu
cryptsetup package

/lib/cryptsetup/scripts/decrypt_derived reveals encryption keys to non-root processes

Bug #2065510 reported by Hadmut Danisch
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
cryptsetup (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Hi,

the shell script

/lib/cryptsetup/scripts/decrypt_derived

has several commands using a secret encryption key as a command line argument, such as

count="$(printf '%s' "$keys" | wc -l)"
        printf '%s' "$keys"

Never ever put confidential data on command line, since command line arguments can be seen from all processes with ps

ProblemType: Bug
DistroRelease: Ubuntu 23.10
Package: cryptsetup 2:2.6.1-4ubuntu3
ProcVersionSignature: Ubuntu 6.5.0-26.26-generic 6.5.13
Uname: Linux 6.5.0-26-generic x86_64
NonfreeKernelModules: zfs
ApportVersion: 2.27.0-0ubuntu5
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: LXQt
Date: Sun May 12 00:34:41 2024
InstallationDate: Installed on 2023-11-23 (170 days ago)
InstallationMedia: Lubuntu 23.10 "Mantic Minotaur" - Release amd64 (20231010)
SourcePackage: cryptsetup
UpgradeStatus: No upgrade log present (probably fresh install)
cmdline: BOOT_IMAGE=/boot/vmlinuz-6.5.0-26-generic root=UUID=2492f316-63b1-4d54-91c1-93977da2b542 ro quiet cryptdevice=UUID=7e853824-e105-467f-b0a2-58b3b2334318:luks-7e853824-e105-467f-b0a2-58b3b2334318 root=/dev/mapper/luks-7e853824-e105-467f-b0a2-58b3b2334318 splash vt.handoff=7

Revision history for this message
Hadmut Danisch (hadmut) wrote :
Revision history for this message
Hadmut Danisch (hadmut) wrote :

BTW.,

_some_ shells do treat printf as an internal command, but you never really know, because the script hash-bangs /bin/sh, which could be any shell. Even internal commands can appear on the process list.

Revision history for this message
Seth Arnold (seth-arnold) wrote :

Nice find, Hadmut, thanks.

information type: Private Security → Public Security
Revision history for this message
Seth Arnold (seth-arnold) wrote :

I've poked around a little bit and think this might not justify much time to fix:

- it's suggested to be used in the initramfs, presumably before untrusted users are executing
- it's apparently not going to work with luks2 format, only luks1, and I believe we've switched the default to luks2

In an ideal world this would be written in a better language, but if it hasn't already happened then it probably won't happen.

Thanks

Changed in cryptsetup (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.