IETF Logo Mail Archive

Re: [Suit] WG: WGLC on draft-ietf-suit-firmware-encryption-14 due on September 11, 2023

David Brown <david.brown@linaro.org> Thu, 14 September 2023 19:25 UTC

Return-Path: <david.brown@linaro.org>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 27EE3C14CE52 for <suit@ietfa.amsl.com>; Thu, 14 Sep 2023 12:25:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=linaro.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Og0C7T0LYYxX for <suit@ietfa.amsl.com>; Thu, 14 Sep 2023 12:25:42 -0700 (PDT)
Received: from mail-il1-x133.google.com (mail-il1-x133.google.com [IPv6:2607:f8b0:4864:20::133]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5CD7BC14F748 for <suit@ietf.org>; Thu, 14 Sep 2023 12:25:42 -0700 (PDT)
Received: by mail-il1-x133.google.com with SMTP id e9e14a558f8ab-34f62d318a3so4550305ab.2 for <suit@ietf.org>; Thu, 14 Sep 2023 12:25:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1694719541; x=1695324341; darn=ietf.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=IzgER9iExj+7UskmQfQfxiYyLYdYpoz1HlUebK0qLeY=; b=GZHx4xWp+4v0pHyo7KP5gSL+ZKgWuZSObBt8Lo0dCbPDjbgzjCQtf3PBPHRvFF3xSC D+pyUU0o9zqikn/z+cs2G0ZVfyB9wEYCqSiNT1EKTgKbzS04HEhw2ikegbm2d6Ab+9UU z+EGmOaxVmh+OvlIMAH04UU0czaVp2/EJGI8uttLiq+2HRQCbQ26lGujuaBvVAD9u+AM OvT2dWeism+MPJPuuM8aGD/aYBBN9ZSPcGwJkYlXakowDN3J/4qf/9oROdNmLelqysAL H1qtkFMMGd3QSJxhHQduETiJZ9Q9zQLLaRdqH2+nd52SKpIuQcSTfyf5VEL4132XrO29 MhtA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1694719541; x=1695324341; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=IzgER9iExj+7UskmQfQfxiYyLYdYpoz1HlUebK0qLeY=; b=tamhn6fe9Zv6Ryesj4tQrrAgdjgWnffmsML9Ey8k7KluLpDIgIUpX7KDp+jnDGd3aE mwJv7SLmdcWawhzHg+aVyCfxyTv19wW3LNG2f9SU1ezbqymXeNHa9zQb0OZTIzMe0PUV PRHjJKVRlM5tmR4nbkWZnJ+4pom4D9aTOsOOZXFQYSOOo5GmN5EzZDs5EbnS/HZx4KfZ N0ozDzdQvHk9AwofLyrABP7Ha/MrzXaZ9eqSG7MZFfGUEhKPpHZreaGq9qN/7oOIIDM1 5peaOIbmLXPfC0DOP+vFhegdrya7RMrw96iPVcp254vao0yhtsrlgiEw1HGWXrxd6qpR Qj1w==
X-Gm-Message-State: AOJu0YyJcWgaGp9FQ3C84/8YwC6XABz8dIml0TqTrkq+YL1csUmkyh4v Lr6b/G+GqlJMevm5nswUeJvZ6b7plPjkcx1yB8TP9g==
X-Google-Smtp-Source: AGHT+IE8gbGNOsGilcRPvjxLuUHaTME9s3rSuW03UhA7anOIlMQwy560d0v4l4Wqx1SRM1BLezGY+w==
X-Received: by 2002:a05:6e02:1204:b0:34c:dd54:10c5 with SMTP id a4-20020a056e02120400b0034cdd5410c5mr6843572ilq.10.1694719541339; Thu, 14 Sep 2023 12:25:41 -0700 (PDT)
Received: from davidb.org (dynamic-204-57-18-207.edirectlink.com. [204.57.18.207]) by smtp.gmail.com with ESMTPSA id b4-20020a920b04000000b003459023deaasm635044ilf.30.2023.09.14.12.25.40 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 14 Sep 2023 12:25:40 -0700 (PDT)
Date: Thu, 14 Sep 2023 13:25:38 -0600
From: David Brown <david.brown@linaro.org>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: Hannes Tschofenig <hannes.tschofenig@gmx.net>, suit@ietf.org
Message-ID: <ZQNeMg7HzGtjUce0@davidb.org>
References: <MW4PR09MB988694F9A88981948F4290B4F0E0A@MW4PR09MB9886.namprd09.prod.outlook.com> <GV2PR10MB7438B53F9EA845B2B78BB17BEEE6A@GV2PR10MB7438.EURPRD10.PROD.OUTLOOK.COM> <23882.1694384458@localhost> <6ecb8ce2-95ff-4e49-497f-f21bfaf41306@gmx.net> <8856.1694459646@localhost>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="FmB5dDvJUGz8oSto"
Content-Disposition: inline
In-Reply-To: <8856.1694459646@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/s6KbgBznO_MkK6Ievs05pWcSrBw>
Subject: Re: [Suit] WG: WGLC on draft-ietf-suit-firmware-encryption-14 due on September 11, 2023
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Sep 2023 19:25:46 -0000

On Mon, Sep 11, 2023 at 03:14:06PM -0400, Michael Richardson wrote:

> 6. Per-device-type ES. Singly Encrypted firmware.
> 
>     >> Ditto comment about PIC becoming more and more common, and anyway, compile to
>     >> two different slots.
> 
>     > Where is PIC becoming more popular? Which RTOS supports PIC?
> 
> My impression is that it is often default for RIOS-OS, and/or RISC-V.
> My impression is that the problem has usually been compiler support.

At least on Arm Cortex-M, PIC is pretty much the only way that the compiler will
generate code. However, this is very distant from a particular application
itself being position independent. That works for the code, but all pointers and
such need to be made PIC as well, which usually involves code specifically to
handle offset. For example, in Zephyr, we'd have to handle the vector tables,
all function pointers, etc.

David

v2.23.0 | Report a Bug | By Email