Re: [Suit] Parameters and Commands

Koen Zandberg <koen.zandberg@inria.fr> Wed, 11 March 2020 12:58 UTC

Return-Path: <koen.zandberg@inria.fr>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A41AF3A187C for <suit@ietfa.amsl.com>; Wed, 11 Mar 2020 05:58:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.899
X-Spam-Level:
X-Spam-Status: No, score=-6.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0TzOtiH84Cwz for <suit@ietfa.amsl.com>; Wed, 11 Mar 2020 05:58:37 -0700 (PDT)
Received: from mail2-relais-roc.national.inria.fr (mail2-relais-roc.national.inria.fr [192.134.164.83]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD8023A18BA for <suit@ietf.org>; Wed, 11 Mar 2020 05:58:35 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.70,540,1574118000"; d="asc'?scan'208,217";a="439836944"
Received: from nat-eduroam-138-gw-01-sif.saclay.inria.fr (HELO [10.200.20.236]) ([195.83.213.138]) by mail2-relais-roc.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-SHA; 11 Mar 2020 13:58:34 +0100
From: Koen Zandberg <koen.zandberg@inria.fr>
To: "suit@ietf.org" <suit@ietf.org>
References: <27913A6B-F42C-4AA9-8A7A-64B1D546C13C@arm.com> <cd1d3e93-b094-e274-c07c-c400b9475b16@inria.fr> <70A85240-AF15-4F8C-AC18-F10AECCAC989@arm.com>
Autocrypt: addr=koen.zandberg@inria.fr; keydata= mQINBFfiUE0BEAC2GQfspM4LKuFBsuBVG5f8iKIg3SQIeyK5tG+fHrLYIt+qXIrya1rxX4MQ iGtJmG0F+iVOAZZXLvT3nd1L7jIvT83fUULRKsxGeq8swHhHRdtyiSNDCdpY3Z0PmF6nyoEV kevB5FHQPLWZIMdvX324ihJ1qN34yIBBy+Q2rk2FP8Dn0PDHcCwiY9PCzurpNDcEjQ2EdsO2 pFAUy8m04A0H9pH3Up/o6xhsQsbt4Q9U1YuGJiUpMXXBq+6hufafRtRjPIypr4LCYAVaKsds R5GxLcFrNXiMxDf3tVTrF2PebXhepamDbG7ujpiYZ5x8fKEFvrUJSM2Qz+agf0JqsueXowy7 nwNrcn9ygShydizAZ34OSphGCxnmJ6j6aTp/bo77GXJnvT3hACYHX7vmTg6ODII9pLQCYda4 ML2rL6u06oLnvyoC2Q7RQKgfMSDgA3Vx+yeWI4IoxmtNXjnFvrfGCIY347rhjBrQL4Za1xuL uw0YggCCIH1Qp6z+MNXcIuHEeS5HJJsUQlN6OfBwCWI2hfToilo+/7xv4sIc6+aknLhmE3H2 FuDYFh3Z7TUoLL3K/Jcx3ndmsajh3UNsnYPxiOLkFIKJgDfQg+Xi7eqVSaBslSPNjsw78lNc qkCSOZXuDfd7h4cuvn6m+VdFz2yRLoOhZPxc2jBd9QxSsXBIqwARAQABtC5Lb2VuIFphbmRi ZXJnIChJbnJpYSkgPGtvZW4uemFuZGJlcmdAaW5yaWEuZnI+iQJUBBMBCAA+AhsDBQsJCAcC BhUICQoLAgQWAgMBAh4BAheAFiEEgyTxs8+Xzr7AO00MaVaPK/gRSicFAl47HK4FCQg5/+AA CgkQaVaPK/gRSidZlQ//c5+ODGQ5+6fv0raabnIbIEchk3KHZobBRgPAlZ56XD8nZuUupdDz 7yo+S7V4SUwuXxJfL6UOmLcEfluWr7DQCxWMXWAjFPkH7OsGtm3WjTvINDfCMdrvER14uVQ+ 6FdGBIVzASkamteZxhgfJqQQkjIOS1IXJ4bq08Fn4nmPUELClk7aPHVMDEWPccECgMHtafSB 4a8aB8ECVBUedLpWlmYqzVN8Ev9sKZxo7o7lJbI72xw0+SuubhCegMt+2E2TDg6r3qTOL2gx G24xKGgty9N0R80I3Ek2S8A1JoOO2qc7ZNVEdm6s8CVDCt4fDsm+Sp77LY1Y/wEtpkA+YyxP RHphNbEMgTWeVeBQoDifI6gVH204MEGbfOrWFSBZUKTrOKNcGpi2DzTIbeHPj+4tCq7/NbqW GaTDqJ23hwEJbPagjFl9R0FkApX2AXhcDI84Wm9qQq/q9sD6sTByco6wHn/CKgCPRZsTWuu6 zwVHz/pgUVthKNZ8hNV8tDadC1NeTeMmk5zLiQxbpEzT245yYqhXZgpcPfs0DwJsFmRpDUFj 8tSZ9y0zfOw/a2tn0vnGZ/MkaJG813WkB07py8ka5ZW6Hx91mqPj5HL6JQXOayutSeFIsswI ZOFnT2/dCM3peZcHxuF+U2I1Xk68I9KNAsZ9jqYAcY6SEw9UGSuf5hO5Ag0EV+JQTQEQAK0M NhuCK0k78+WcrGp7iZbMeXkUkcEzsmXu1mctHoqpxONsibgNeBFL+xCuhiPkpEeBARvaj3py chH8Ckp+hv1XFYONEsSPEhPAl1Qn+d3zXwqfjjOV2J5siIJhmZdtzi7ovJn4r03Z7KEOXF3q xNYHreXjjzwUV57ukHBZAYZ2ExGTOtt3wd0fLEJ8JChCD6+FSVpbZrxgjfYC/QeGNGLbNa0B sbZe5e9x/u1A1WyfN3/yqM3BJtdg6EWkkXTbMLJZhCkR5Nt2tbFw8MBrFR4qt7ShAy9r5QD2 1bga1m7zu+jjti3HJ8Yc3LyaU87cGlbbZmQPLwPgea6AxtBCnkTqfJZVFApbXHmCsDK+26E9 258rlVsYRx326ZpLJ5erRZqnPZT/9GF1OWS6vcYk5eVIsC3MGN6KvFVxIxwFnW7zXKS96q3G e9CRg/pNO/ibSrQVqrpJyA0NEyB5Z/dngLKKKlfgLLW5ga+cZ0puQKE2jCCKdiq9ZGdyEXb3 ME2JDxHo0b6RzrHsYVdeAXaifOqDMlPUn7faeSTJgjkTuZhKQ27P6QIx4xQs/KOTeNE8/uZ3 nXieCdpPdnrzSk55HipVvaWdHpcO/eWeakb6B7MnKjQM2Bg7adi73G8hUMutg0CN/IFsn/Pk ws9jE/n84O5ieBOmvaQbs2MeWG0+E3TPABEBAAGJAjwEGAEIACYCGwwWIQSDJPGzz5fOvsA7 TQxpVo8r+BFKJwUCXjsc0QUJCDoABAAKCRBpVo8r+BFKJz/dEACP8cJNCVY3kTw/oOtTqzJz 5bAIHQHdeB+XfEHWrPT+sQCrg/Kn1fnmtewhwGQOf8n4icRef3dJ2xGQu1XMJlkNNTWIWnKO yma87zF0jv3SSroykx/dvrPHIC9oVTC4EvB4E5N07Zg4u1y5de8YHrWfFtCtBaSsKLxnhKgS PSkdvXBNaQhqXDXxt7/ZszTo7AQOcnX8kNW2cACOta/Z/xrwSV9prbi7Jbpso+WLxir/XV5V Z12EQ9ou/FVWfOAH7axWUBGFUbsBiRGC2yjvj6EMSR2GmZW91Ocbz86hN8/b95y878bafb3H Q1KDYA4gcljmtMNLcVl51QYhEuputJDTffJ1zuWh4oAmwt13tR2dZT259MKnYctbNzyt0do2 aXZYZS+cBFwnDglNvZH9C+jHkwUSqH6/L2Hbn9n3hEG3utlmktNVsDL2GoEVYigjjxOvCGH+ RGykhGzfBex//Awc6UGeFkxq0ZtAdzZADDfp8khL6jM5UQxFboTrH255i6qs3D6N42HzQKBv d7EI9agpUVZiFS3vHLlTpbopeko8ckurN7LXbO6sr6LDOEoMrzzNzKXiKToZ2/Kd/WCe0RUv khk1FTVl02BzH+T235K8u063EvqAViJX5+OvG/SZeeDObCQrfl2H+9LJOvcVITt9Q+8vpYnW 2jl2SixgvMFjDbkCDQRX4no0ARAA8ZZNM8ku1dJqLAr7rll1xMsHWXPfMVJyTnz+hbIRTajT cZe57keVBXWkayL6gsQ7XztBG0jftDx2sHdlybZisjrskV2VuEs8m9cBshu7L5YMqZrhuGpi qPPTJ/+9aXtC4i6qNHVNGSunFpYmKGdPgvWB2Ueg9LJwG9+m6XSGrA+s8ilFvCE6aClxEdP6 9B+OAO/9BX2t0XpCNsKmAJY/ZqeeWTzFCSzwDxEggkroGmcKQ80KrhuzifEdNwWmlObcirZO RcnMIj9caouzQUhyY0lEjAz2WhX+e45XCg73a4X13n7JxIukJ+KRVLN06eVDUGFIltF/2cEZ dr4tnANCFqsA4ZawAUDBYLvVT+X5atq4Y0oATKV/CS995dEzTlQwEh4A0X5epUw1261YgokZ AjYUfIkJ9VruSB5UKwMloLUCNCBIZTMKYLDDbfJHxQiqvHTXf267IbTRh3gaa4D0QY9wtOgv eRlycRYwf6ljj4KVCPPCEKVyyeejYJVt432aRYKIWIRh6e98WuoDgriVQuL5y1VugUSFX0Qb dh51Bo4W9HKThKo00J/m+sCml0KdQomiJJM7v7VcM6mjgpbwHZzleofISEf7nvjpBAGu0guG G0CdbbSW0/URfwdvmZKkIYna7+JZkC8fdnc2zR+1+Wvki7vL0Q5Q2zrTyFSmq/cAEQEAAYkE WwQYAQgAJgIbAhYhBIMk8bPPl86+wDtNDGlWjyv4EUonBQJdoHe9BQkHnzEJAinBXSAEGQEI AAYFAlfiejQACgkQDmNBH4/KgkcywBAA2oNFVLoX9T4bHYO7Vrq7zEnx944uiS9CO5mZ8T99 i2zfQeFDAOwvIHAZdJegH3zJkuahCyDFvX2zhaXiBMiSzvONpOI/lv9Vc7E6+fFPKYJaRklT Tlh7tOljAPE/WEVOoqMU00tn7l93VSOokhfeQb+CoFobqsdB/wBj41Ag0Ln8Jb/UDYj+6sld uoQWKkxKePUdmILWTV/qhbE8yYZPVKVlB+WxwqXzfgZZVNVArK23OWMJwybDlgnZIDIexGPD wQ0mcCkaiw59cih/AlE2UrQsW0oM+pQht/8tlyJPxpD2MQ9m1eYUpvK5AxmYFu7VkHak1nlC 9PJo0kEcZLbOmNv+H8BsH0nfT8ORME0K7ljKUFYEn7OTF9jdqX43DgPGXDrOZykvr6qlFSMC QF80QCkPH0XQI8c3jteWKyrqP5stkr1EmVc2r9Jdv/l06lHOJr6/WPumq9hQyxHpX1lhrAsl sUz2QkEspiJc5+i7Mte7bUWdYJkIVd/9HTplVoZyJUHPCQGORSySMvyRihPbo7HcHsv8o7if ghRaX9Sf88tiU7TIvG1AaEZ6AWj45EnqCdesS9eDGtgcFNBC3gAdF9o0uppXNKAsCfUxYr28 O7c3+9WSa5WiN8cFAURGMlhhdBaz0SNEW7RG9WjSqSuvMQ5mqP1HQtAEE05TRnaj7UAJEGlW jyv4EUonmDkP/2nwxCnfklFn7kaNVsQZELkly+HnmBNbov2GW4rLmrdjKTnQcJ7mJTeS3yiD KjVflgntDJFBH6zbUNREbmCPCuF+xcHUGPkrS1686nHf+GmzrJw3xbJD2u0KuHe3cxxFFc+v wtZfSA3LCqZceuGNRAd3gEUcl/STxo9LfnpF3kESGkHoRpmZ19KptZGXlu9aXcAwH9JVYqwM F4o6o39aGs0UfLJqOr/MxpoYldO6IV9WFZLQruMfQRw9wyonkcxxkSoLBVJ8w+CMUvGjirio ONuiIRFSlr84FereqO3+LHmLr+ey5q3oQbkXb2cWdM6UsatcYFHC9WZ1XgULft7diBhnpl0B F7lOKWuibVN8JCbCBjDGo64Zsco9zlJAyYWwZo0WIs18kFH79Ekt8g9+tcrBVRaUhYbegBy2 LijwErmuz1yLQBrMOKEGedkiIgXrQerYSVkD2Gvg4AxUssAMT+BxP5aazDdBlChcpPA5XgXT IHvlRTfWLXtZzizPL3dB7mq+2/SOWTB4A4xoRzaJ9+NJqJ0STBQ4L8YM99GLQUMoN1xyhPTb xlmxUPPMTqpXcEHPkG5aHsRgDqL3xV4puZ/03Q74/x/IUE+kz4ZhHxH9D4eo9kHtEzbfMn8i W/O5Y7GnTFKtBs1qX/1ikJKtAQutx+PT6dpcFhdSyOfsrbOW
Message-ID: <6107fef1-fd1a-e989-394e-164f758d8709@inria.fr>
Date: Wed, 11 Mar 2020 13:58:28 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <70A85240-AF15-4F8C-AC18-F10AECCAC989@arm.com>
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="QZZdfIGB8Zl8Jo1y5MSmnBPvhpiSqtRhf"
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/qKRhn46__KNqgoHSKtCW9LAjbDk>
Subject: Re: [Suit] Parameters and Commands
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Mar 2020 12:58:41 -0000

Hi Brendan,

On 02/03/2020 16.40, Brendan Moran wrote:
> Hi Koen,
>
> I haven’t heard any complaints about harmonising condition handling to
> parameter-only, so I will take that as a consensus.
No complaints from my side. V4 has this from what I've read in the
changelog.
> <snip>
> This seems quite opaque, so I think using integers would be a better
> choice. This has the advantage that we could cover more policies that
> we haven’t thought of yet without change to the encoding.
I agree with you on this. Using integers here should come for free and
it gives users the option to use (also here) negative numbers for their
custom policies, whatever they might be.
>
> I see what you mean about trading one inconsistency for another. I’m
> not sure if it’s a blocker for this approach or not. If we decide to
> separate reporting policy from SUIT, then there are a few approaches
> we could use to prune the NULLs, but then I’m not sure how to tie RATS
> and SUIT together.

I don't have a better solution at the moment than what you propose here.
Is the full per command granularity required from the RATS side? It is
not sufficient to set a global policy per manifest? And I guess it is
too much overhead to set the policy as a SUIT parameter every time the
policy requires modification during a manifest sequence.

As I mentioned before, I don't consider this a strong concern from my
side and definitely something that can be solved with sufficient
clarification in the spec. From an implementation point of view,
ignoring the nill vs ignoring the integer is trivial.

>
> Effectively my idea is to enable reporting of any measurements that
> are done (conditions). That’s almost enough, however there’s one point
> that is missing from this: Run should be measurable since an argument
> could be passed to Run—c.f. Linux kernel command line, or argc/argv to
> main(). I’ve already floated the idea of making Run imply an image
> condition. This would justify the reporting of a measurement for Run.
> I could see an argument for making the same requirement for Fetch and
> Copy, since they should probably be followed immediately by an image
> condition anyway. All parameters are either invariant or set based on
> conditions, so with a copy of the manifest, you can determine what
> they were.
Looking at the current spec (ietf-v4), I think it is also possible to
move the argument for the fetch and the run directive to a separate
parameter. This way the measurement policy can be included as the
'argument' to the directive. Does this make sense assuming this is the
way measurement settings are included via arguments.
> What would you think of:
>
>  1. All conditions take a measurement policy argument.
>  2. Run implies an image pre-condition before the activation
>  3. Fetch implies an image post-condition
>  4. Copy implies an image post-condition
>  5. Run, Fetch, Copy take a measurement policy argument.
>
Is it the case that we're describing the same idea here? Is this image
pre-condition and post-condition a solution to include a 'measurement'
in these directives?

Cheers,

Koen