Presentation is loading. Please wait.

Presentation is loading. Please wait.

EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks PSNC – status presentation Rafał Lichwała,

Published byChristian Douglas Modified over 9 years ago

Similar presentations

Presentation on theme: "EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks PSNC – status presentation Rafał Lichwała,"— Presentation transcript:

1 EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks PSNC – status presentation Rafał Lichwała, Gerard Frankowski SA3 All Hands Meeting – UCY, Cyprus, 7-8.05.09

2 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 2 Security Porting Rafał Lichwała, PSNC Supercomputing Department

3 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 3 What has been done gLite packages porting to x86_64 Debian platform is our main task Porting gLite WN packages on Debian 4 x84_64 platform - done! –torquemaui - Success rate: 100% (3/3)‏ –VDT - Success rate: 100% (14/14)‏ –deps - Success rate: 100% (19/19)‏ –Basic - Success rate: 100% (12/12)‏ –VOMS - Success rate: 100% (13/13)‏ –DM - Success rate: 100% (19/19)‏ –gfal - Success rate: 100% (25/25)‏ –WN-3.2.0 - Success rate: 100% (59/59) Detailed reports available on: http://grid.ie/autobuild/http://grid.ie/autobuild/

4 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 4 Current work and future plans Currently we are focusing on porting UI packages for Debian 4 (current success rate: 93% [114/122]) We also plan to prepare porting WN for Debian 5 – first steps already done: –a proper virtual machine with Debian 5 has been prepared and ETICS installed –package external dependencies for deb5 x86_64 have been prepared –a new platform debian5 x86_64 has been registered in ETICS –building first packages on Debian 5  some issues still in progress... .deb packages temporary disabled (.tar only) - VDT bulit in 100%

5 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 5 Daily porting issues building lcmaps –problem with two flex libraries: libfl.a and libfl_pic.a –problem fixed by changing symbolic link to the library with -fpic flag building amga-serwer –cannot convert 'SQLINTEGER*' to 'SQLLEN*' –problem fixed - details reported in savannah building WN-lastest-VDT (VDT1.10.1-3)‏ –"globus.location" problem in configuration –fixed - details reported in savannah –missing libregexp-java installed building org.glite.lb.client –problem with missing libexpat.la –fixed by preparing new expat with missing libraries

6 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 6 Savannah and GGUS reporting Savannah bug items: –https://savannah.cern.ch/bugs/?func=detailitem&item_id=42319https://savannah.cern.ch/bugs/?func=detailitem&item_id=42319 –https://savannah.cern.ch/bugs/?func=detailitem&item_id=44502https://savannah.cern.ch/bugs/?func=detailitem&item_id=44502 –https://savannah.cern.ch/bugs/?func=detailitem&item_id=46462https://savannah.cern.ch/bugs/?func=detailitem&item_id=46462 –https://savannah.cern.ch/bugs/?48512https://savannah.cern.ch/bugs/?48512 GGUS problems raised: –https://gus.fzk.de/ws/ticket_info.php?ticket=47891https://gus.fzk.de/ws/ticket_info.php?ticket=47891

7 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 7 Security (Hydra and SCAS source code analysis) Gerard Frankowski, PSNC Security Team

8 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 8 Hydra – introduction Hydra –encrypted file storage solution –encryption file key is split and distributed in Hydra Keystores –the key may be reconstructed from a subset of key pieces The structure and the versions investigated –the server  written in Java  version 1.3.4.1 from the CVS  manual source code review supported with findbugs and pmd –the client  written in C  version 3.1.2.1 from the CVS  manual source code review supported with cppcheck and RATS

9 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 9 Hydra – the service General –Quite a good work, but SQL Injections possible –Java protects from buffer overflows etc. –Some minor resource leaks –A number of non-security related remarks Report written Todo –penetration tests with access to the service  will additionally verify several issues pointed in the report  a „fresh” person takes care of the pentests

10 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 10 Hydra – the service SQL Injection –The methods (e.g. MySQLSchemaHelper.java class) do not check the values of parameters passed to the prepareStatement method of a connection object –Even if the external environment assures that the values are ok, (which will be checked during the pentests), this class may be reused... Not good // Initiate the table creation sql string String sqlNewTable = "CREATE TABLE " + schemaName + " (entry_id INT NOT NULL PRIMARY KEY AUTO_INCREMENT, "; Better String sqlNewTable = "CREATE TABLE " + validateSQL(schemaName) + " (entry_id INT NOT NULL PRIMARY KEY AUTO_INCREMENT, ";

11 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 11 Hydra – the service Selected recommendations –Please filter internally every parameter that builds an SQL query –Please remember to treat every single external source of data as potentially malicious, including e.g. the local database output –Remove any excess functionality and not used variables –Every output path from a method should assure that each allocated resource is released before the control is returned to the calling method –Please review the way of using exceptions. Avoid the situations where a method unnecessarily catches RuntimeExceptions

12 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 12 Hydra – the client General –The analyzed code does not contain direct big security holes... –...but uses some practices that may easily cause them!  using of unrecommended C functions like strcpy()  sizes of local buffers defined locally as numbers (but reasonably) –Too little data filtering of the input parameters of cmd line tools  library calls could not be checked –A single case of not verifying malloc() return value –Race conditions Report written Todo –Take a look at the security of the key pieces in memory

13 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 13 Hydra – the client An example of potentially insufficient data filtlering –eds.decrypt.c, function main() 87: id = argv[optind++]; Where does id go then? –glite_eds_decrypt_init(id, &error) [eds-simple.c: 731] –glite_eds_init(id, &key, &iv, &type, error); [eds-simple.c: 552] –glite_eds_get_metadata(id, &hex_key, &hex_iv, &cipher_name, &keyinfo, error) [eds-simple.c: 448] –glite_eds_get_metadata_single(endpoints[i], id, &data, &err) [definition: eds-simple.c: 238] –glite_metadata_getAttributes(ctx, id, attrs_count, attrs, &result_cnt) [metadata-simple-api.c:711] –soap_strdup(ctx->soap, item) [?], or –soap_call_metadata__getAttributes(ctx->soap, ctx->endpoint, NULL, sitem, &req, &resp) [?]

14 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 14 Hydra – the client An example of a potential race condition –metadata-simple-api.c, function is_ctx_ok() 205: if (getenv(GLITE_METADATA_SD_ENV)) 206: ret = _glite_catalog_init_endpoint(ctx, metadata_namespaces, 207: getenv(GLITE_METADATA_SD_ENV)); Issues –What happens if between the getenv() calls the processor is switched to another task and before it is returned, someone changes or deletes the GLITE_METADATA_SD_ENV variable? –There is no filtering of all, environment variables are potentially malicious –Is it optimal to call getenv() twice? Will the compiler optimize the source? Always?

15 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 15 Hydra – the client Selected recommendations –Please implement filtering the input parameters, addressing literally every parameter that is not a pure option (e.g. filenames) – please check its size and verify also the format –Please consider migrating from C functions considered as dangerous (like strcpy or sprintf to their “n” versions) –Please consider applying defensive programming rules, e.g.:  Verify if every pointer passed to every function is not NULL (unless it is acceptable)  Verify the values of all parameters that the users have control over (i.e. environment variables and contents of the files)  Do not use numeric values for the definition of local buffers sizes, but rather defined constants like MAX_BUF_LEN or MAX_ERROR_LEN, that are consistently applied throughout the code.

16 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 16 SCAS – introduction SCAS –Site Central Authorization Service –a Web Service that allows client programs to query for an authorization decision based upon user credentials The structure and the packages investigated –the service  written in C  org.glite.security.scas from the CVS  manual source code review supported with cppcheck, RATS and flawfinder –the client & plugins  written in C  org.glite.security.lcmaps-plugins-scas-client from the CVS  manual source code review supported with cppcheck and RATS

17 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 17 SCAS – test methodology A test plan –2 persons –person A investigates the service thoroughly (manual code review and scanners) while the person B analyzes the client & plugins in the same manner –then they switch to the other module and make only a short review Two approaches to tests with tools: –scan-first:  scan the code, look at the potential issues and eliminate false positives  read the rest of the code –read-first:  read the whole code and select potential threats  scan the whole code and look if you were able to notice all threats

18 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 18 SCAS – current status Source code tests –client and plugins: identified scanner output, the code is being reviewed if they are not false positives –service: the code is being read –a brief analysis on security of XACML was prepared Report: in the background, currently a sketch Necessary effort: ca. 80 hours In June we can start another module –June (very busy): learning the module –July: tests

19 Enabling Grids for E-sciencE EGEE-III INFSO-RI-222667 SA3 All Hands Meeting - UCY, Cyprus, 7-8.05.09 19 Questions? Thank you! Rafał Lichwała syriusz@man.poznan.pl Gerard Frankowski gerard@man.poznan.pl

Download ppt "EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks PSNC – status presentation Rafał Lichwała,"

Similar presentations

Examining the Code [Reading assignment: Chapter 6, pp. 91-104]

Examining the Code [Reading assignment: Chapter 6, pp ]
MSF Testing Introduction Functional Testing Performance Testing.

MSF Testing Introduction Functional Testing Performance Testing.
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Regional Operations Dashboard Workplan Cyril.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Regional Operations Dashboard Workplan Cyril.
CVSQL 2 The Design. System Overview System Components CVSQL Server –Three network interfaces –Modular data source provider framework –Decoupled SQL parsing.

CVSQL 2 The Design. System Overview System Components CVSQL Server –Three network interfaces –Modular data source provider framework –Decoupled SQL parsing.
Unit Testing & Defensive Programming. F-22 Raptor Fighter.

Unit Testing & Defensive Programming. F-22 Raptor Fighter.
PHP Security.

PHP Security.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks gLite Release Process Maria Alandes Pradillo.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks gLite Release Process Maria Alandes Pradillo.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org www.glite.org PSNC work status Gerard Frankowski, Rafał Lichwała Poznań Supercomputing.

EGEE-II INFSO-RI Enabling Grids for E-sciencE PSNC work status Gerard Frankowski, Rafał Lichwała Poznań Supercomputing.
Programming. What is a Program ? Sets of instructions that get the computer to do something Instructions are translated, eventually, to machine language.

Programming. What is a Program ? Sets of instructions that get the computer to do something Instructions are translated, eventually, to machine language.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
EMI INFSO-RI-261611 SA2 - Quality Assurance Alberto Aimar (CERN) SA2 Leader EMI First EC Review 22 June 2011, Brussels.

EMI INFSO-RI SA2 - Quality Assurance Alberto Aimar (CERN) SA2 Leader EMI First EC Review 22 June 2011, Brussels.
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks What GGUS can do for you JRA1 All hands.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks What GGUS can do for you JRA1 All hands.
EGEE is a project funded by the European Union under contract IST-2003-508833 Testing processes Leanne Guy Testing activity manager JRA1 All hands meeting,

EGEE is a project funded by the European Union under contract IST Testing processes Leanne Guy Testing activity manager JRA1 All hands meeting,
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Spyros Kopsidas Center for Research and.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Spyros Kopsidas Center for Research and.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks gLite IPv6 compliance project tests Further.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks gLite IPv6 compliance project tests Further.
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks perfSONAR deployment over Spanish LHC Tier.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks perfSONAR deployment over Spanish LHC Tier.
A DΙgital Library Infrastructure on Grid EΝabled Technology Release Beta Deployment Testing Plans Pedro Andrade

A DΙgital Library Infrastructure on Grid EΝabled Technology Release Beta Deployment Testing Plans Pedro Andrade
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Voms & Voms-admin report Vincenzo Ciaschini.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Voms & Voms-admin report Vincenzo Ciaschini.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Extensions to the ETICS Build System Client.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Extensions to the ETICS Build System Client.
EGEE-III INFSO-RI-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Middleware Deployment and Support in EGEE.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Middleware Deployment and Support in EGEE.

Similar presentations

Ads by Google