Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1756763AbbEUWcJ (ORCPT <rfc822;w@1wt.eu>);
	Thu, 21 May 2015 18:32:09 -0400
Received: from mail-ig0-f173.google.com ([209.85.213.173]:37538 "EHLO
	mail-ig0-f173.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1756519AbbEUWcG (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Thu, 21 May 2015 18:32:06 -0400
MIME-Version: 1.0
In-Reply-To: <CALCETrXe2kdP73LhND9svDsuSwhok+661-B775Xk_=kOtoZfYQ@mail.gmail.com>
References: <20150515123513.16723.96340.stgit@warthog.procyon.org.uk>
 <555BD715.40202@kernel.org> <31772.1432128969@warthog.procyon.org.uk>
 <CALCETrUt+OO8sk=7j+rBToHujV7ONDzQ1Z6UMJ9HHUB44Jmtpw@mail.gmail.com>
 <20150520162059.GC10473@localhost> <20150521213829.GH23057@wotan.suse.de>
 <CALCETrUvf==bxwx80PT=F4bmZ4-BZVA47H_oh2t9mhgM4z8wmg@mail.gmail.com>
 <CAB=NE6UurGCp6QF992nTPW-QPQcpF9_O7LDxKsWToFTeWApy_w@mail.gmail.com>
 <CALCETrUC5DAz4vths-zxOb6py-M1bfWVF21_145K89wFiuM60g@mail.gmail.com>
 <CAB=NE6VZ56JAq+6+DbfedP7uz5Uy=SkKnXe1QGhFG1dBy684fw@mail.gmail.com> <CALCETrXe2kdP73LhND9svDsuSwhok+661-B775Xk_=kOtoZfYQ@mail.gmail.com>
From: "Luis R. Rodriguez" <mcgrof@suse.com>
Date: Thu, 21 May 2015 15:31:44 -0700
X-Google-Sender-Auth: hjzwFqY9n_gT1oOK2dX33rfKvCk
Message-ID: <CAB=NE6XTKOJoug94NaOGscjn8pVLXZrmLUFAkoUWzs0Sjt2dMg@mail.gmail.com>
Subject: Re: [PATCH 0/8] MODSIGN: Use PKCS#7 for module signatures [ver #4]
To: Andy Lutomirski <luto@amacapital.net>
Cc: David Howells <dhowells@redhat.com>, Andy Lutomirski <luto@kernel.org>,
        Rusty Russell <rusty@rustcorp.com.au>, Michal Marek <mmarek@suse.cz>,
        Matthew Garrett <mjg59@srcf.ucam.org>, keyrings@linux-nfs.org,
        Dmitry Kasatkin <dmitry.kasatkin@gmail.com>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        Seth Forshee <seth.forshee@canonical.com>,
        LSM List <linux-security-module@vger.kernel.org>,
        David Woodhouse <dwmw2@infradead.org>
Content-Type: text/plain; charset=UTF-8
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 1678
Lines: 38

On Thu, May 21, 2015 at 3:24 PM, Andy Lutomirski <luto@amacapital.net> wrote:
> On Thu, May 21, 2015 at 3:16 PM, Luis R. Rodriguez <mcgrof@suse.com> wrote:
>> On Thu, May 21, 2015 at 3:06 PM, Andy Lutomirski <luto@amacapital.net> wrote:
>>> Given that, I would say that merely shoving firmware files through the
>>> module verifier as-is would not be okay.
>>
>> Replacing one dog and pony show for another is what is going on, what
>> you describe and suggest seems best, and I welcome patches, it seems
>> you know what you are talking about :)
>>
>
> Don't hold your breath.  My plate is over-full.  I'm probably a decent
> reviewer of crypto, though.

Well as good as you are in 10 years we'll have better ones. So when
module signature went into the kernel the real expectation should have
been:

This code looks good now but is going to be complete shit and
breakable a few years from now.

Hence my first implicit and now explicit claims on dog and pony shows.
Best thing we can do IMHO is to just allow us to replace stupid human
code with better human code later, and eventually hopefully better AI
code, and so on. Since you don't have time for a real replacement
maybe what we can do is at least document / target / agree for what
pipe dream we want and shoot for it with time. Hopefully folks will
find time to implement it.

In the meantime should that block current dog and pony show trading? I
don't think so.

  Luis
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/