IETF Logo Mail Archive

Re: [Suit] WG: WGLC on draft-ietf-suit-firmware-encryption-14 due on September 11, 2023

David Brown <david.brown@linaro.org> Fri, 15 September 2023 12:52 UTC

Return-Path: <david.brown@linaro.org>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E5A0FC151552 for <suit@ietfa.amsl.com>; Fri, 15 Sep 2023 05:52:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=linaro.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZaF-ko2rB6Dj for <suit@ietfa.amsl.com>; Fri, 15 Sep 2023 05:52:47 -0700 (PDT)
Received: from mail-yw1-x1129.google.com (mail-yw1-x1129.google.com [IPv6:2607:f8b0:4864:20::1129]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 69791C14CE4B for <suit@ietf.org>; Fri, 15 Sep 2023 05:52:47 -0700 (PDT)
Received: by mail-yw1-x1129.google.com with SMTP id 00721157ae682-59bbed7353aso29622027b3.0 for <suit@ietf.org>; Fri, 15 Sep 2023 05:52:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1694782366; x=1695387166; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=zxBNfAOkRuSViIBAFbH6qhfiB+QaCe0UKJUe+rW+Q04=; b=KfvbBYPix/2NHPZvq5bFB2NNMYOfNYxtKqEjpYK6+Hitlb2FRxPKZl3KUAndP3ZNUz AHS0QbCqq3Dkji/7gXqSVYw/1ZV1KeYEacmuWDQiTQvdqBQBoS3m/JHtK945MH2xSgJe u2BroAIZwQc210L0DiK3b2XBJVVN3jqjNRu1t9tx7BC54pZ90SPruMEdwgIXmNXK5uh5 UHo5o6ul7woTUnxjzVU3oTVukCEj9Gr7XXIk0TEibcI58r12kdfbC1B+ezzm0d/CdOpe zc75x6mcPRUhg2Rt0D29Qy1jftW/Mhdz/hKtWwX95CU0fkOdC57ttP9LjURgUOKMsPUg Nhaw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1694782366; x=1695387166; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=zxBNfAOkRuSViIBAFbH6qhfiB+QaCe0UKJUe+rW+Q04=; b=RaIcWoAeL4wfKu9L4cbloc9Mh5h2IljAnBHr1DZb2HM9d0jqlzkmEiXTI+zTPZJtgc PCmbTcSwiUIz+rPNMAwF3Vu8x48ZkHQNt3JEMkFMqrHHSPeb7C/njqiBJDnyNHe0XV22 0vi76DjGBbzPSH7fB3rStw+CsKILpWYA9S3urhi+FHdxBpdaCg6I78tmGKnil832C3aB iRwpP/tlGWcqBWv4l+BAfHKms+FQMky3L7jMeyKKfJ9gSTRXni3DltMxVDVpn81n3DHm nNqgS4fb2WlObMFGjyUA2aoF2jt4WDyfRkSg/SknlhzOvQy+uMzWy+MNfebrMJQc5cCf iCGg==
X-Gm-Message-State: AOJu0Yw2zF8tu+u7nqvoLti63EWvlt6+ddBDaNaGuaWeLsdrfLreEgb6 uy6o5BXBMhKnixbYvbIv6PfXIyZ0vAVjGHALZWrvNqysTIfTy7EEs78=
X-Google-Smtp-Source: AGHT+IFgYXUX6pSiSg1QfNjkQC3k+zH4PxGAN4pGec0aUJoR8vl04HYMLYuDgEShU5uO+7blXNPZ4QzGN9Ueu8MLHwg=
X-Received: by 2002:a81:a18b:0:b0:583:9db5:7e89 with SMTP id y133-20020a81a18b000000b005839db57e89mr1711983ywg.24.1694782366147; Fri, 15 Sep 2023 05:52:46 -0700 (PDT)
MIME-Version: 1.0
References: <MW4PR09MB988694F9A88981948F4290B4F0E0A@MW4PR09MB9886.namprd09.prod.outlook.com> <GV2PR10MB7438B53F9EA845B2B78BB17BEEE6A@GV2PR10MB7438.EURPRD10.PROD.OUTLOOK.COM> <23882.1694384458@localhost> <6ecb8ce2-95ff-4e49-497f-f21bfaf41306@gmx.net> <8856.1694459646@localhost> <ZQNeMg7HzGtjUce0@davidb.org> <AS8PR10MB7427060AC05861DF0DAD3E05EEF6A@AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM>
In-Reply-To: <AS8PR10MB7427060AC05861DF0DAD3E05EEF6A@AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM>
From: David Brown <david.brown@linaro.org>
Date: Fri, 15 Sep 2023 06:52:10 -0600
Message-ID: <CACTP9ns-FNwcRn9hLgv3hpnMGT4pvBC8RWRcQhVgLjb1aebELg@mail.gmail.com>
To: "Tschofenig, Hannes" <hannes.tschofenig@siemens.com>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, Hannes Tschofenig <hannes.tschofenig@gmx.net>, "suit@ietf.org" <suit@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e8001106056544e6"
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/KI37stYHarH108ANaqYkM4w-HPY>
Subject: Re: [Suit] WG: WGLC on draft-ietf-suit-firmware-encryption-14 due on September 11, 2023
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Sep 2023 12:52:52 -0000

Perhaps. The simple explanation is that although PIC may allow some users
to have images that run in either slot, there are going to continue to be
applications where this won't work, and image swapping will need to be
explicitly support by SUIT.

David

On Fri, Sep 15, 2023 at 2:35 AM Tschofenig, Hannes <
hannes.tschofenig@siemens.com> wrote:

> David,
>
> I believe what you are saying is that regardless of PIC or not, we need to
> deal with image swap operations by the bootloader today.
>
> I am wondering whether I should expand the text to make this more clear.
>
> Ciao
> Hannes
>
> -----Ursprüngliche Nachricht-----
> Von: Suit <suit-bounces@ietf.org> Im Auftrag von David Brown
> Gesendet: Donnerstag, 14. September 2023 21:26
> An: Michael Richardson <mcr+ietf@sandelman.ca>
> Cc: Hannes Tschofenig <hannes.tschofenig@gmx.net>; suit@ietf.org
> Betreff: Re: [Suit] WG: WGLC on draft-ietf-suit-firmware-encryption-14 due
> on September 11, 2023
>
> On Mon, Sep 11, 2023 at 03:14:06PM -0400, Michael Richardson wrote:
>
> > 6. Per-device-type ES. Singly Encrypted firmware.
> >
> >     >> Ditto comment about PIC becoming more and more common, and
> anyway, compile to
> >     >> two different slots.
> >
> >     > Where is PIC becoming more popular? Which RTOS supports PIC?
> >
> > My impression is that it is often default for RIOS-OS, and/or RISC-V.
> > My impression is that the problem has usually been compiler support.
>
> At least on Arm Cortex-M, PIC is pretty much the only way that the
> compiler will generate code. However, this is very distant from a
> particular application itself being position independent. That works for
> the code, but all pointers and such need to be made PIC as well, which
> usually involves code specifically to handle offset. For example, in
> Zephyr, we'd have to handle the vector tables, all function pointers, etc.
>
> David
>

v2.23.0 | Report a Bug | By Email