From owner-svn-src-head@freebsd.org Wed Jun 20 21:23:11 2018 Return-Path: Delivered-To: svn-src-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7CC20100D346; Wed, 20 Jun 2018 21:23:11 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "*.pphosted.com", Issuer "thawte SHA256 SSL CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id C4E4875B19; Wed, 20 Jun 2018 21:23:10 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from pps.filterd (m0108159.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w5KLIvNK014405; Wed, 20 Jun 2018 14:23:09 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=to : cc : subject : in-reply-to : references : from : mime-version : content-type : content-transfer-encoding : date : message-id; s=PPS1017; bh=P64gD9F7/mtuvrpG6M6oCKm570DiloYkjBy59amYiEs=; b=u4yeSz0cc4l4lENz9YKVopiEke4314gOHSOz5T0GIBKwc9ooXpFEuyzTJhTtPI+fi8BH jTfVnJnZ5hQLEvEwGaluymrKFjjFhbYw2fJBxd4hL3c/5U5xIetaA+H2IwsuIsmEVnht 68bCOLSBRwo4O02g96Ppl+MiJBbx8hfat26+FlioxeORjRtbTco2bTlpOMlyysZeYmvm TuWLHK/0a/IR4FTAmtg6bfq4EJJoxOFQ6ceJAzowQCo0flzcmuC0NjWvyp3PNIb2tOXX axxBWjaMOPe65NivDbIjJqwLqhWndxCIc8h1m1zn7oL4EON6Dl5t+fgZ4xMD7D4/yl5j vA== Received: from nam05-dm3-obe.outbound.protection.outlook.com (mail-dm3nam05lp0112.outbound.protection.outlook.com [216.32.181.112]) by mx0a-00273201.pphosted.com with ESMTP id 2jqwfbr3x0-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 20 Jun 2018 14:23:09 -0700 Received: from CO2PR05CA0104.namprd05.prod.outlook.com (2603:10b6:104:1::30) by DM5PR05MB3113.namprd05.prod.outlook.com (2603:10b6:3:c6::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.884.14; Wed, 20 Jun 2018 21:23:07 +0000 Received: from BY2NAM05FT030.eop-nam05.prod.protection.outlook.com (2a01:111:f400:7e52::202) by CO2PR05CA0104.outlook.office365.com (2603:10b6:104:1::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.884.16 via Frontend Transport; Wed, 20 Jun 2018 21:23:07 +0000 Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.15 as permitted sender) Received: from P-EMFE01C-SAC.jnpr.net (66.129.239.15) by BY2NAM05FT030.mail.protection.outlook.com (10.152.100.167) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256) id 15.20.906.10 via Frontend Transport; Wed, 20 Jun 2018 21:23:06 +0000 Received: from p-mailhub01.juniper.net (10.47.226.20) by P-EMFE01C-SAC.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Wed, 20 Jun 2018 14:23:00 -0700 Received: from kaos.jnpr.net (kaos.jnpr.net [172.21.30.60]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id w5KLMxVK009203; Wed, 20 Jun 2018 14:22:59 -0700 (envelope-from sjg@juniper.net) Received: from kaos.jnpr.net (localhost [127.0.0.1]) by kaos.jnpr.net (Postfix) with ESMTP id C6DB964638; Wed, 20 Jun 2018 14:22:49 -0700 (PDT) To: CC: src-committers , , , Subject: Re: svn commit: r335402 - head/sbin/veriexecctl In-Reply-To: References: <201806200108.w5K18sIR050132@repo.freebsd.org> <96021.1529475664@kaos.jnpr.net> Comments: In-reply-to: Conrad Meyer message dated "Wed, 20 Jun 2018 08:43:29 -0700." From: "Simon J. Gerraty" X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 25.3.1 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Date: Wed, 20 Jun 2018 14:22:49 -0700 Message-ID: <32898.1529529769@kaos.jnpr.net> X-EOPAttributedMessage: 0 X-MS-Office365-Filtering-HT: Tenant X-Forefront-Antispam-Report: CIP:66.129.239.15; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(39380400002)(376002)(39860400002)(346002)(396003)(2980300002)(189003)(199004)(81166006)(97876018)(478600001)(5660300001)(81156014)(8746002)(47776003)(50226002)(8936002)(305945005)(356003)(106466001)(8676002)(2810700001)(76506005)(53416004)(105596002)(97736004)(68736007)(2906002)(476003)(23676004)(2486003)(50466002)(11346002)(229853002)(446003)(26005)(6916009)(117636001)(486006)(77096007)(126002)(69596002)(316002)(6246003)(450100002)(107886003)(59450400001)(6266002)(86362001)(7126003)(9686003)(55016002)(7696005)(53936002)(2351001)(4326008)(76176011)(186003)(54906003)(336012)(93886005)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3113; H:P-EMFE01C-SAC.jnpr.net; FPR:; SPF:SoftFail; LANG:en; PTR:InfoDomainNonexistent; MX:1; A:1; X-Microsoft-Exchange-Diagnostics: 1; BY2NAM05FT030; 1:9ekfsTbL4bj2U5Qntn0tmDQI6SJCJCuyiUz/snlP4rQ6iPCXIPj5TqpixJqemwaHCvZEQGjX9zx0c1xN5qKzJXDcIU/UW1aYM2/o4xklayb/FSxBsJxDjxAr5YqtKmJ9 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 8598f6ee-d1ef-4ef9-7385-08d5d6f40411 X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(4534165)(4627221)(201703031133081)(201702281549075)(5600026)(711020)(2017052603328)(7153060); SRVR:DM5PR05MB3113; X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3113; 3:kjfiXrRcTpuN94q3sjGwmp/CUop5ROBL+2iiMHmjy01hnTitVImUhSASTQz1Ypp15sTgZwyQByfSWBwY3XWhmE2kxFyOsXQLJWBzwxTRVv50fnKJAc+IL4k17kptybC9K5e3Z+5AXJu5PqvikQ6xJAeErvn7mRbgcb8PwnccaTmEwsGjx2izdZ4OCPRIKHc070zftKYOYE0sJViTIpyme59ltFhzFnOrbfE8Vv1sR6Lnv4GmQ/7sGbHKccvrk7z1ZpWbncwolkFnMAwbAoPRS6bA1IQF37xfP8x+C5+6GYLRz4l9Ua/443pXUofNbafDofkzf3+lEJDSRurIra7mANj6Kd00oLN4QdxDDI5dltE=; 25:3+nXMfnHqiwOeyY6+VxHDXpcpKyeBh2T6CkqrAWzYJdRVXfI6KW58eucQj9aL13aQZwMhwB+AvsS5JwV1pQFSUAXFVXJfFc9ed6zgX3L+i1h24ALl1YYoCR0mgdip3kYQRjLH0tfIPnu8iCV7tRqtKjiMo2s5HMkbzTvvxnL71+fkNqZwqpG7eDZ1mb491R9KY/Xixv4cTIopzFbr3lMfSHXKjSGP+oVdyekrzqKM5sHtNWvLEYRUhpjRqLbAL2IC2zAPpjMkva2g5haBffgXSEGGImkgt9TGvAzt7PKZzHutkyFXXTbG3v7N7oLLkz80MhNOwbQtHjS+XlmUGN+dw== X-MS-TrafficTypeDiagnostic: DM5PR05MB3113: X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3113; 31:1xr2NPPZlduYFya75diaDiAbTeabozaoFG6olpuyQcFA83rvdSeheaQp39xPibVs2LABZBPfvbkgDvuOEbkN1MraEjwvoXec8+RGDb/sGG5/mJUmYJL7uV9Si5FhLD8l/B+qLcnJzeZKaDSHDzxjlqi55V47Zb16Nyp1wmu38AkVR4xta3XCK1yVb0Krosz2YI9jkGOK2ry5J3Ef1liD0ctXBGiY/qY+Kv3UasZ7iSo=; 20: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 X-Microsoft-Antispam-PRVS: X-Exchange-Antispam-Report-Test: UriScan:(192374486261705); X-MS-Exchange-SenderADCheck: 1 X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(93006095)(93001095)(10201501046)(3002001)(3231254)(944501410)(52105095)(6055026)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(20161123560045)(20161123558120)(20161123562045)(6072148)(201708071742011)(7699016); SRVR:DM5PR05MB3113; BCL:0; PCL:0; RULEID:; SRVR:DM5PR05MB3113; X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3113; 4:Nr2MlFGNrQ/bO+U5fUDn/dIB9uxTqkJjb07XCDfldhRXs382Jsn/4iCKq1xNeBwhtDax8h6c2jAQn0z+xAnQrsmv1dmmbky9XGEbvI21XUovlUpKqy8QYROvWumbPBx/v2P+xiZTegKgq3qdtHK/caSwr/HjUJlyyVrNWNyvxknn79ga85bVfb9TOpxydXGSJNnf0NTVjqvuC95HLuNR/fm4mzyv2y0lEGfa0LVAxoqWbEcbtjq2fR9Sq7Fuqdu7i/1l99Wyk22yi+aNwl/PZlhdv1p68OoKqckUY7DgwQC8f3Iqw+hK2kpCgMaHYexE X-Forefront-PRVS: 070912876F X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtETTVQUjA1TUIzMTEzOzIzOjE3V3ZmSzJyK3pDTzZHUndGWnB4a3k3ZXhp?= =?utf-8?B?QTE0NFk0UjErUmtseW9CN3JnN3phS3FFVk1vcjYxcVVTWDFMaGxFcUhYcjF3?= =?utf-8?B?ZDBhTVJQaWFwaExwWEJxVjdCWGh5bmtuaVJDd09lQ0d0MDdzYW5NV29RYTNh?= =?utf-8?B?YkQwcHVYZXZGbHlHVTlIQjhSMmhqeC9URm9KNkJkL2YxL1ZIbUcxOFcwQm91?= =?utf-8?B?VnR0WXlQTzN0UGxaMkplNXhyNEk5dGFHM09ZS0c1VWMyM2xGNVJKWlVjYTFB?= =?utf-8?B?K1krQUJVMjhuOStxbFc4WWljQlNuZUl3ZzRwUTErMXNoZmJ0bmM3Z3Q0elhB?= =?utf-8?B?RG5oNVhoOUlCNW1Pa3NxbnBtRWlVaWU5QWpJL3pLZnpXWXZmeFFnaDdsYzhx?= =?utf-8?B?QTJ6MnJPNGZtR1d0UEZYU3FUKzNNOG1vVnBuUnl2YVk4eVBqR2pDNzNPTE01?= =?utf-8?B?T3dURTFadVFqcU5BWWJrLzVGUjU4SlJpY1ZBSVNkeUFjMXRRalI3REVuOW42?= =?utf-8?B?Q1R6ekJ0SFRNUGI1R2VIWER6MXFKMllZZ0xpZ2ZHczJJbnpZOTM3TTAxSzVy?= =?utf-8?B?d3doSms4N0Q4T3c1YUUzWTVsVEFDUWh5L1IzTG5PK0tweUltRk1yV1dXUUhw?= =?utf-8?B?MTc3U3BiYUFxai8xQnhoMCthaHZRQlNnZi8yU3NuV0tqaHlYYXhUVGJMZkxW?= =?utf-8?B?S0JTc3hDem1UZ3U0MjgwQ2ZSSnNORk91Y005dGJmSUJqbjhrWndpNE1ja0pH?= =?utf-8?B?WHRmYytuTTQ0SUFOMUxmamxlNTVoNnE0WkRQaUU2a0xaT3lHREN6YW9VTzNi?= =?utf-8?B?SUxiMDZhNHRSNEs1aUFWSHFaSTFOSzlMR3hlZDJLdHBENDVST0N0c3E3UUcy?= =?utf-8?B?NXVMV09TdEtpQ1Q4aFF6UVpyelJVOEE4TURxNlhOd2JZSEh3VlBaajBwcWpz?= =?utf-8?B?eEtWcm83dVZXZGJPUUFLQlhwcDBLenhTZkRzWHQybytrNk9Ga1lvbWIyaDhD?= =?utf-8?B?YlpzY2JZOTBpY3dKL3JHSS9xWFFZdHBmZGdjeEl3dGlkRzZTd0JFYTFFbnc1?= =?utf-8?B?cVAyS3Z6NjQxY3RPMFZpSEdzYldXVVNLY25DM2ZHUFRJZEY4cVBvRGpxWWZL?= =?utf-8?B?UEZIaG41aGZTbDUxNUZsVFFvdEcrVkxRNGl2eXdwMEt0Z1FyOVE0a3hKb3NK?= =?utf-8?B?UVZhaWRvS1BsU2pUWWtSL01sWGpFa05sTzlGNVBrRlFpYUI4b2lzU3pqOW5Y?= =?utf-8?B?dlpPOU01MDNIb2hSelYyK2RHRDd3VkxHbEd5V2ZlVmFya2g1YnpnVUZRSGJC?= =?utf-8?B?djcwTDJIaW1oRm9GSzBOS2RIa1hxY2h2c2FSTU80S2FJdjdtRit0bW9FWC9J?= =?utf-8?B?WFZqQVBsUmwxc1NUTGNpRDE3bmtNbHAyalRzbndJMU1iVUZ3dnNFK0F5UGJG?= =?utf-8?B?bU4wZTJDRGJ1dXc1Q3NQa3JNc0EyakYwdDBLTTU0QURoVnJkTG8xc1J2Y2Nu?= =?utf-8?B?T3dYcHp5RllSWlVBajV0aEc0czlGKytWUHBQSU5iMUR2cGN2c3J1TU9aelRC?= =?utf-8?B?U3hKNmxGNERSSFFEeG56UXNQMnBqSnBwaFRLZUZGZlRWTmxtbDBoWDA4Wnc4?= =?utf-8?B?YTEwaFFudnJrVG5idUtOc3NJOVVNTjNleStldE1nU0ZEcVE4Y05HSHE5VEFx?= =?utf-8?B?QkFUb084Z2Mxa2lrRHNtN3pWYlE4U1FyMDU3cjV4ZEJuT29qTTRuRDdYOHdn?= =?utf-8?B?MDBlMk56Y0t0S1BYWEorU3RZeGFqbWE3QkpZeWIyT0VDTWRKdEVTZjdpK3F5?= =?utf-8?B?eUNLQVVwR05majVYcm52SUNSa1l1emNGVXpkKzhTdkdGZHJZS0NickgzVlRG?= =?utf-8?Q?/lRSAC8Q/of99nKhrAiXCyb86vEuRrSW?= X-Microsoft-Antispam-Message-Info: +2v/q1Yq4KlJ/Bwjh6i5hdD43iTkVNF4iBEd/RCI4L4bgArA9LgodutVG/1cC7uffu9umlvmZENen88g8jHogThrG2D2fDqaEwtRbztlv8V20zlELzhej3mvi/AqYwV2H0vnEKN7D/Y+VUZao+UUwGsdfr3xW8e1JETuiuaYwRzr3vYPCF9j4p78tkse0yyVFSPM4XCkKV9prISuwUX3EjDjA2hlS0OIqblgpehPDxn7449gv7d7cVO/vgzL+4gEE/2JSFm7Z5zFEKyrcZb12wkJvOMh4a2QnSEGv6SX6IWhyXZEVb+Mt07uc6Rz+MoP4ouUq4eAeAW2V8bc+E2lWQ== X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3113; 6:5DccIsxcd4RkVlsriZczfEzrh9ISH3cVvFnWgAvM3iRMRXgBmh6aynP2g+O2lLVbSWSa6Mg1Qf1BqRwQXxauQ1ZakO/m5JmyBtDKbf1k2WiLca3G0UjjSyhqrt3DjUeXVERgiEpWbD/9LqkPY+G244Vtq7A2Q8/2rg1h+GzuAce5KzN+BM3F4dirFSqps34jyaOFYwnODd7QdQReMsGCtmXDX4+TbO4CfEZ6r+AFu2Ew5VcnlZnHTGFBih5sJIAawxyuzLz9mIK4prnXKVAgHu6axaWZUD8cvS2On8ptp/PqA/Vz7LJK4+NhoGKucLqRLI/et4wAvREWXjQuWiFuhaFhtQrB4IOeG41Ujn+oMXXTvkdH0Fk4ItZu9bi2vJ/QbpKUkT+74b60XqsDyNVNHg7Ql1xw6gn40gkAIRJ96g7FHjN/IzDYQiTeVv6Rmg1sCypiTsTyIbl6k/LwoDtoBw==; 5:W0XljA0tz5Sa356ozKZgic9ltmjHpNFlWptt3DwRNN1icnExOblaUbegYIJw52Xq7G0RQPPZ6nmpKx3mrXvQLSx8WYFjKZShUWuNYaY9k3E3/JdKk803XAkL46Bbs4lxHQ6X2szN9GETVZcbIfLGj0AjIbpOGFotRA3qK/V+1rg=; 24:OUWyrjEXtzreNuUtb4uBOTPzt+7teBRtf9078gl2ThBN3+aKBwi+IFdKvbW3Q/aJjS6x6Oqvdnjd6lyiATmmDDTjhG+e1ZmFQnEm0P/HuIE= SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3113; 7:46yRqswvsvQEXoWcoHKeIfyO0A1PDpdLxSHGmo+ouhVAJOXBDN6DY6rXHsRHL7dYynwbN8npYRI5sDmJkYSCjtAd1EGYkuoVDuFokAcvezgzTpz6iLmvS207SXFo6cqJhM/jNklH0WmJojZCL2SYMdHDB5sEoOqTwBMQHI3Rn6lG5f3MnXRpoSeQD0T677GMmVUe84vRYvEMU4qnSsfvgn/1gI5FOjS0h4TMMyuFohUQmPpNgdPqt/1sfEAAAHTc X-OriginatorOrg: juniper.net X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Jun 2018 21:23:06.9222 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: 8598f6ee-d1ef-4ef9-7385-08d5d6f40411 X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4 X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.15]; Helo=[P-EMFE01C-SAC.jnpr.net] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3113 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-06-20_09:, , signatures=0 X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=1 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1805220000 definitions=main-1806200229 X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Jun 2018 21:23:11 -0000 Conrad Meyer wrote: > The signing of manifests does not exist in the patch series committed. Nor will it, the singing of manifests is a build thing. But as I mentioned earlier I think the loader verification code can be leveraged for a verifying userland veriexec tool similar to that in Junos. > (If NetBSD does something broken, that is not an excuse to copy it.) How about we backout the veriexecctl tool - which is the only bit your comments apply to - and which we do not use. All the signing etc discussion is orthogonal to the kernel part. > > A veriexec loader that leverages signed manifests requires some signing > > infra. That's a big topic all by itself. >=20 > It *may* require that. However, even without that, admins could > reasonably manage their own PKI in some fashion, independent of There still needs to be a tool that they can use. The work I've done on the loader should make this simple since it provides for OpenPGP signatures as well as X.509 based certs. > FreeBSD's infra. But it requires the support code to verify > signatures, as in the "verify" part of veriexec, which is wholly > absent. Yes. As above, reverting the veriexecctl tool would be fine, I'll commit a proper verifying tool along with the loader bits. I have to do some tweaking of one of my libs first. > Again =E2=80=94 this is a discussion for arch or phabricator, with the se= ries > reverted first. For code that's off by default why is reverting a requirement? > many other glaring performance problems. If you care about MAC > performance in a secure algorithm in 2018, perhaps look at any of > these great options: >=20 > * SHA-3 (Keccak) > * Blake2-b > * Poly1305-{AES,Salsa,ChaCha} The framework allows folk to add any hashes they like. For us, anything which is not NIST approved is of little interest. Obviously many people have the luxury of not haveing to bow to NIST, so again the framework provides. > FreeBSD has had this code for 0 years. It's a novel feature here. > There is no reason to introduce SHA-1 in novel security features in > 2018. As mentioned earlier (in this thread? hard to say), no reason it needs to be enabled by default. FreeBSD.org if they are going to sign the packages they ship, need to make a decision about the hashes they want to support. > And no, upstreaming the signature verification code is completely > orthogonal to implementing signing infrastructure. Not really since one dictates the other.