From owner-freebsd-arch@freebsd.org Tue Jul 3 23:24:12 2018 Return-Path: Delivered-To: freebsd-arch@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0ADB810342AC for ; Tue, 3 Jul 2018 23:24:12 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 5474577264 for ; Tue, 3 Jul 2018 23:24:11 +0000 (UTC) (envelope-from sjg@juniper.net) Received: by mailman.ysv.freebsd.org (Postfix) id 0BA6C103429D; Tue, 3 Jul 2018 23:24:11 +0000 (UTC) Delivered-To: arch@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C3525103429C for ; Tue, 3 Jul 2018 23:24:10 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "*.pphosted.com", Issuer "thawte SHA256 SSL CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1CBF07725F; Tue, 3 Jul 2018 23:24:09 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w63NO2Pb022281; Tue, 3 Jul 2018 16:24:02 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=to : cc : subject : in-reply-to : references : from : mime-version : content-type : content-id : date : message-id; s=PPS1017; bh=JyR81Vj71M+CLs0HhqTgIPS3F/2Mce6STM2gG7mjU64=; b=VeAwJkxmA88tyjTpiG5X9Z9zxEh8A82SZ+bxtmduWmUOP2I9QYxz+/E2aqy6XstBsoIJ C2bShzveTD3b7+rtN42ik0vm3wBkK+v5mov/o2AZGAfCaHlMBcnL9FfLOajBO94Zyx/c SCLY7461lLsZQJRyQOjM1IeW6ncSLHi69jg8rR8LxXO1Luw1OQYa2dYqzKJl5kw45GLt Ry5vDv2EghBwD793NBR0cS/ujmklPjKzGrGzyPMwMY81YenggyuuIGUgulCkqhZp09Pk cF8g5xPa4H9/0vL7RUYJehDECdxBXPMk0klOs3h7SNsHYmDQa8jMNLUHniKrnCPD5Jpl rw== Received: from nam01-sn1-obe.outbound.protection.outlook.com (mail-sn1nam01lp0116.outbound.protection.outlook.com [207.46.163.116]) by mx0a-00273201.pphosted.com with ESMTP id 2k0dp0rn8q-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Tue, 03 Jul 2018 16:24:02 -0700 Received: from DM5PR05CA0008.namprd05.prod.outlook.com (2603:10b6:3:d4::18) by MWHPR05MB3117.namprd05.prod.outlook.com (2603:10b6:300:b2::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.930.13; Tue, 3 Jul 2018 23:24:00 +0000 Received: from BY2NAM05FT032.eop-nam05.prod.protection.outlook.com (2a01:111:f400:7e52::207) by DM5PR05CA0008.outlook.office365.com (2603:10b6:3:d4::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.930.10 via Frontend Transport; Tue, 3 Jul 2018 23:24:00 +0000 Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.15 as permitted sender) Received: from P-EMFE01C-SAC.jnpr.net (66.129.239.15) by BY2NAM05FT032.mail.protection.outlook.com (10.152.100.169) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.20.930.2 via Frontend Transport; Tue, 3 Jul 2018 23:23:59 +0000 Received: from p-mailhub01.juniper.net (10.47.226.20) by P-EMFE01C-SAC.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Tue, 3 Jul 2018 16:22:45 -0700 Received: from kaos.jnpr.net (kaos.jnpr.net [172.21.30.60]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id w63NMjRN009772; Tue, 3 Jul 2018 16:22:45 -0700 (envelope-from sjg@juniper.net) Received: from kaos.jnpr.net (localhost [127.0.0.1]) by kaos.jnpr.net (Postfix) with ESMTP id 070B8632C3; Tue, 3 Jul 2018 16:22:45 -0700 (PDT) To: CC: "freebsd-arch@freebsd.org" , "Stephen J. Kiernan" , Subject: Re: Veriexec In-Reply-To: References: Comments: In-reply-to: Conrad Meyer message dated "Tue, 03 Jul 2018 16:09:40 -0700." From: "Simon J. Gerraty" X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 25.3.1 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <86838.1530660164.1@kaos.jnpr.net> Date: Tue, 3 Jul 2018 16:22:45 -0700 Message-ID: <88827.1530660165@kaos.jnpr.net> X-EOPAttributedMessage: 0 X-MS-Office365-Filtering-HT: Tenant X-Forefront-Antispam-Report: CIP:66.129.239.15; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(376002)(396003)(346002)(39860400002)(136003)(2980300002)(189003)(199004)(81156014)(107886003)(7116003)(14444005)(305945005)(8936002)(53936002)(2810700001)(6916009)(68736007)(356003)(69596002)(6266002)(2351001)(5660300001)(6246003)(486006)(2906002)(126002)(450100002)(47776003)(11346002)(7126003)(86362001)(221733001)(23726003)(50466002)(478600001)(446003)(476003)(46406003)(229853002)(97736004)(55016002)(53416004)(26005)(76176011)(7696005)(186003)(316002)(336012)(97756001)(76506005)(54906003)(9686003)(106466001)(8676002)(117636001)(4326008)(81166006)(105596002)(50226002)(77096007)(97876018)(16586007)(3480700004)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR05MB3117; H:P-EMFE01C-SAC.jnpr.net; FPR:; SPF:SoftFail; LANG:en; PTR:InfoDomainNonexistent; MX:1; A:1; X-Microsoft-Exchange-Diagnostics: 1; BY2NAM05FT032; 1:KcawlgIWbEEY2jDR62z/mA98bhXN+ROAyJjTVZvd1UgLy6Yu88RYnR0srppoyiyAhNf0PJ+czwuL1aDcc02jn7mozGGoJxXUka/fVMgVMV6ZTrFWj17bKFLxaYiPp1t4 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 301a1cf0-ec33-4dfd-c90f-08d5e13c0e9a X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(5600053)(711020)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(2017052603328)(7153060); SRVR:MWHPR05MB3117; X-Microsoft-Exchange-Diagnostics: 1; MWHPR05MB3117; 3:iMTjOYCOf945Y9zPxtZuHQoPbxHXwVVmQZbJhx9WpUv/C6o1eMyex1Kxjux5XNq4AMtnBoFkv9mE/uTGAfc/AEHqwVTtn7VL7K9O5gEp8bfpqUohw2lMGEFaELsVwj8ILic0lgpf9py+WD79nnuxVTTEKPsd9Ocb+f8K/3BdmqmVt1MgD6FBzsMFI0PkV7iQ34NOsqkfdJA1jmU56CWEbjF/WIe2iUxpR3H2jdAHoASTpSsm8pvKGBIABU8JJLgklkVncmgzMu5eVCKNLS4jOFfzArNpglcMrR5EDqjX4sj+7Yf3TSPrGDSC3mq45hxlwOlXwEnE8T6IgcNZC23K4CE564stGdmoZHjU6awY8sU=; 25:N2Qek9CiO28422DJiD0j90MFLnCun6k1LooYJyMLwSUqoa4C9EFB6pO18Pr1iiHP8TAa00VSMZi7+1MbO54oB0CmVKeNAYXfiCCGKeCf8t7Yyl8EjjMhwDYkZiD9Yxg9dwC1rgEuYQ+lkCLgPtJ23gJiLzF156154ZRjucpK1TxbQBXhoC1iSo6aGS+WTLRVSL4qXfIfE0ZWQgJlU6wkP/oOmubHqprjGaJ6YBJ4FesAoubyLruYouxwyLHTuPIH86UZpT3PWYef7/4Q0STvyOnxscLFX+BjezxkQofLxAxNC72JgNC5n1hF0scuawOBlTVS04bxQkRXekbekC+i/g== X-MS-TrafficTypeDiagnostic: MWHPR05MB3117: X-Microsoft-Exchange-Diagnostics: 1; MWHPR05MB3117; 31:eFHj8glh/pL5kUPG3v+e5Xp6nnJoDPQ7Zbqmq7eSD2SRJ6FAZzM/x2rS7ZelYasdPzmquQrINiMDUkknBuQy6DHR6WmSnn2Xoen7mbS0X5XXNx72/okQQqfIBJmjziKtKe/oKWF6o1LAwDQMI1+z5vI/HVE8rbnpZV/FGCqpwQmweBgBViOymkxdS/C7r9KtrcWdVtm6NTc5x7iCDX6cF3zVzrz+T+W9J3jGEQYp1OQ=; 20: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 X-Microsoft-Antispam-PRVS: X-Exchange-Antispam-Report-Test: UriScan:; X-MS-Exchange-SenderADCheck: 1 X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3231254)(944501410)(52105095)(93006095)(93001095)(10201501046)(3002001)(6055026)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123560045)(20161123558120)(20161123564045)(6072148)(201708071742011)(7699016); SRVR:MWHPR05MB3117; BCL:0; PCL:0; RULEID:; SRVR:MWHPR05MB3117; X-Microsoft-Exchange-Diagnostics: 1; MWHPR05MB3117; 4:CJVcyf+s0LcFQEcMuMBm8Gaj7DQogtCjZ4TgAON+Jwfv2mpthdDivKxBH8zK55EL0wY9qAkre4JCC4fjQVOsoa8E/aoeYCTRhSJlQzOMKBQrU7P9Ft8VDOgyBZpC5QGKvmms4ojY0s04GPCLYBavGi638I1Y05NXJJQrflyRhjcFOBlUrLOSyT0OdjYNSBGCZ6D7OL4kRnu3efL6i5A1u4Q/va6xSgjMj6V0Yd7RTiur20LvyOH5MVt1VuOxFO3r/zB1LpV+G41ryumC71Cy1Q== X-Forefront-PRVS: 0722981D2A X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; MWHPR05MB3117; 23:b5hL9s8XuoxIBGomRE0I+VMkKH7hKPgKNv+s8ykdS?= =?us-ascii?Q?ipWYzbuepGwsDGtHqvK1dTb0FihI4VbHmK7TO0nd++NxnxR5WTn3fh02UqNo?= =?us-ascii?Q?KZiehSnUs8Zv+mVeb6J4q1qySfs7/j2TH0p4LH+5Yh648wWXOnYGMpQnj1jF?= =?us-ascii?Q?YBmFhe4kotor3EQtFOzYgAcpFXONMcj43+dsic+FN7ArZYq9z/AaAHhqTnd+?= =?us-ascii?Q?mdYjvg9MqGHCuOiTCWheQ+NK0dXYaY3XBSadKnwsjOLiIGlxXvNADKr1czFh?= =?us-ascii?Q?npOTzNPMN4c3U3bDCKF7wySNH7yIJqINi+B9DImkyoWnm6xNCRPpRrrn/JGz?= =?us-ascii?Q?uzGnSnxDwAIzZEnmd5Z5o/KVDyASol8PooJ9dJeALKUkQpI4ywOSSGmwq0BN?= =?us-ascii?Q?O7MmKym6l7HGaFSDMAtvpi8ja8UArcwvsdyu+diq0s/XQzllelJ8fT+ulaj2?= =?us-ascii?Q?L1rZfkO7kAyUAfi+cMy2l6rTLgocTiZQ6dDlrUKgIM1L2iwQVBFfqa7EFIb+?= =?us-ascii?Q?3tN4rGhcYmTwxHR2YIpKh4wSV+dHAA8AP9YmClDjHff7h+uGQp8SMs0n4BHp?= =?us-ascii?Q?gd0kvh2TutRRXQPLEkFfwpY7g4Mb7GBJM/IV8wgaRaMadRynUf/ZFQPYyHm5?= =?us-ascii?Q?TCUS6LM5mplyyZApZmH0ZjL9TeeTMHTHBV1gCq+lAdOvbOd+jY1pHUj4UDaO?= =?us-ascii?Q?YzGxdOVXixp9fFQeFrfZqM8dP8iK+VS6QE7kDdpg36CGRNyLoEmE4b68qk8x?= =?us-ascii?Q?z3qKR2VI47Xx5sS0qba5RTHUu9kondtPrAZsAlgyPLK1F/zm4D+A27P95TdJ?= =?us-ascii?Q?4z5wsbqw377JgAn0v+4cp2Oye+Eets5r/PGmQTbntAkynvKP7DgPlXsciYzB?= =?us-ascii?Q?Rf2iFTGiUPn2FMymRmTFnHqzsT+ekIwVWn6FNj/zR6aiYWks2DkiQN82B5BU?= =?us-ascii?Q?eHLP2wSJpypLvOLutbwm0oBt6E3GQut+H1OlR1fUBt6ipFk8ElIdFUCCSnkA?= =?us-ascii?Q?Cq9YVW3R10cRlKO3bZ00GVvDF6Is25agOnidHbiXAYYH69KdmnC7y74+HOvI?= =?us-ascii?Q?3mfXDtKOzTDThDMpJiOuqk7es7K7FMS5dTEtKgooMBu1i5HrGa8OdZ7TwYmL?= =?us-ascii?Q?QaVsdlCbpWYW8fI1Fph9zjicSFk3f7JHw+cQTcs83rlZwjSCcu3GECkyZJF7?= =?us-ascii?Q?j4fSZXwo27G00kpazlmA9SJ+CsKUzxSdNXDOPO0OUMaheNsVnvo4Qg1lIuAA?= =?us-ascii?Q?ufX3YQkgVuK6lHmSUPZBsYDgNu/xWkDPZBFx8izhBtKEQChG5fTJNHUaGYDX?= =?us-ascii?Q?3zU+py0qGtsKku5tyFyZdqFCiKaV/eT9jknWclcNOHZBF0NovNEIK/9p4DaT?= =?us-ascii?Q?q4A7r/uXKC0V9PEsIQLeyPaAnmZGWLu4e28TNfORm8c0pesRRiPZHfw6NjPt?= =?us-ascii?Q?PhOfds/HAByvXjXHV0IuRpLmRl+eK0=3D?= X-Microsoft-Antispam-Message-Info: 6skaS4rWh0B6OkK07XOj0jyTHNMn+Mvk9iRebEJCO6fy/yJl3whHVr/Soi1w4GSf0bAzi3dm8bR9YfHI46oa7IWJS7vG8tCobnDCYkTOAnvPEUJiyrUj0mgJsGdDjGdwCUVSacNpekp5yvCCm7M0ORxwohP/Rer96vpBSJ/XehvhWLUtnnPj7mwmfGI1v+arH8dffSOYUJS98CBPSbyHt3564J8RdghN+7JW5QCH5cT4m6gp34z6iLfsQgr0e8bWKksTQ/l8sbDzUgF9j2fUetqRcutv8PretmsTHpelVpDqHaqTvMUjE4yRXhSKA54Up4LqwCvUXDCHlwILc9OIK/J/2TFonPNPM1GXdWIEUY0= X-Microsoft-Exchange-Diagnostics: 1; MWHPR05MB3117; 6:ISa2Oxm65eorXYW7oLOIjlbOXpEq5j6N/38PEh/Ohd5dnr/wltZbX5o2lIsRC+Es7wQQASgfPEKmB6qpgaY1lnJzW5oYkk22RpsR4YMxCTMhR1sGrUm1/nDknHrkN7rYwSBepjNFHx0adBMANElOPvkOQbnxr7jOxmxzGVxfrw+Eq2ulRTEyRsUK+xo2b7j/I4CbSp40WEuiXLnF4ZgZIAbTUJaY0G1Xti1/GV9PqHu64OiQbieOSXsdyHvsB/ebOHLoWKM7zw2jAde4/g9HnDqqs7O6mwCih6zfDdgB5j8E9dcyaZARGYc20nFuQvdNRZdNmb2yQai5noLUkkdS/LBV6VVTim/49jvu+whcWZBkkCf2LXguLETC9GozQX1h7slojUK8lQWecBQAI8Qx3XilESjwqwgZwKMN//7AWid+cxQmUyPYxdcaQwhvJk5/1Cb/bIURhyLwWnMV4LNtcQ==; 5:OKCxBLJkfH+/YcobO+mKNkVVUNQwq39+lGaAECWabJEZgFMzDrbkV1KGXA4ubRJid6R12ydav9EvX5N4xQwfjls4YT9Xc8bNahrAiUsX5b5J8EK3o4bpX0yKqvN7ip1WCUfILVYSYUhhcgaCL+91x5dhjhlanTKIxvpOsoIcGoU=; 24:ehTm7e0UKmU/o2fjVHeaZUBmuBqwt82ve9nw2lHUpdQXCbAow9Mdo5kjLxI6WQRpUqSg0zVcGhV8UKXOZgVvkWwCq5kvLHQh2Ry07x2hraU= SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1; MWHPR05MB3117; 7:DIwHDSBPHS240CgtEv/CQF7x05xeSQ0TGVOoF9S90GHX51Js3WguSG1Iboty0aZ0PLZ5vdY7VqQuny19apAfVuRTt4UFpKzuBMJIukY3xt5R5JzHz3UuqgwvgOZo3+GAfTUtG5rMJ0H8Al4ZiZk3Ekv7tcbowSY+vD79BTlWRpqBf2adAKhZOpXsXcu6kh9TjShd6it801815xybu3zaovlMytfSS2MrtteJJUMR/LB17cF9m3UwX+uYtoK9/sJx X-OriginatorOrg: juniper.net X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Jul 2018 23:23:59.9918 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: 301a1cf0-ec33-4dfd-c90f-08d5e13c0e9a X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4 X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.15]; Helo=[P-EMFE01C-SAC.jnpr.net] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR05MB3117 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-07-03_10:, , signatures=0 X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=1 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=897 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1806210000 definitions=main-1807030260 X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jul 2018 23:24:12 -0000 > It's been two weeks since this went in broken. What's the status? > Has any progress been made on fixing the glaring issues? The userland tool has been removed - so only the kernel bits remain, no chance of anyone hurting themselves with it. I've been working on tweaks to libve to make it suitable for use for a new loader that can verify the manifest signatures. Almost ready to start fitting all that into the new stand/ environment as discussed with Warner a while back. Work get's in the way sometimes.