From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from omr2.cc.vt.edu (omr2.cc.ipv6.vt.edu [IPv6:2607:b400:92:8400:0:33:fb76:806e]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id 329CE3B2A4 for ; Sat, 7 Oct 2017 16:42:09 -0400 (EDT) Received: from mr3.cc.vt.edu (mr3.cc.ipv6.vt.edu [IPv6:2607:b400:92:8500:0:7f:b804:6b0a]) by omr2.cc.vt.edu (8.14.4/8.14.4) with ESMTP id v97Kg8AH019796 for ; Sat, 7 Oct 2017 16:42:08 -0400 Received: from mail-ua0-f197.google.com (mail-ua0-f197.google.com [209.85.217.197]) by mr3.cc.vt.edu (8.14.7/8.14.7) with ESMTP id v97Kg382006976 for ; Sat, 7 Oct 2017 16:42:08 -0400 Received: by mail-ua0-f197.google.com with SMTP id l40so13502524uah.1 for ; Sat, 07 Oct 2017 13:42:08 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:sender:from:to:cc:subject:in-reply-to:references :mime-version:content-transfer-encoding:date:message-id; bh=aSQTeGichEXEEqMI+JeF7lrOtCUC2oxamXIrIkgjJec=; b=t2eE17/84Q6VKy7XqQHlFH1gsHkqOHTZCWpJUs1Ev4DSVpVV93UeJl8Nv4lmEntKA6 iQNvFypAzyR6hIg8DU54e77iRnnISi4Oi21B+Q0tV3vRKtAutvQSBCAjj0FQGJo625gZ tTVi9TXvjLYaMHuE/c6tNuaHgIMJRXPzq3t6YU5CoDha1JnwRCj8fgWdc4qUI+0ccBuN J3fpldMCZTjZ1voDjhPv3jvYxYCJfDcs4/CvTVTpfB5bNVSMlgamqWWtU4mS1XfezEg6 VH0VA8/dakUPd7U1FMfRy3qUeO1iLqbX2Gg5ugBuvxLVBVEQLVwAJ8R/xLwLJCE6M/rF ZBkA== X-Gm-Message-State: AMCzsaW6/DZnRepdQhjXpLOrXGy7PZx26+cLzC3S22EGMXOmnQJsSr87 dyXa6Ul/r4iZG9hYaZNP/Afd5xivw5KFxLXxjh2DDQLz5JD3xo15TTm4im/QK83NURJb3SLgw5k KMnTVHHp/6i5nuF62I3nCECfhHZDtcae8Ze43+VF05mU7 X-Received: by 10.200.39.13 with SMTP id g13mr8828519qtg.234.1507408923598; Sat, 07 Oct 2017 13:42:03 -0700 (PDT) X-Google-Smtp-Source: AOwi7QBrPh7R3tTPAyaLAIlVjYB88Z5SGylUIxU5sZcatBVgUg66P9N3jw3qEHQg2U4z45cdO8vdsg== X-Received: by 10.200.39.13 with SMTP id g13mr8828501qtg.234.1507408923363; Sat, 07 Oct 2017 13:42:03 -0700 (PDT) Received: from turing-police.cc.vt.edu ([2601:5c0:c001:4342:559f:f26e:88db:448c]) by smtp.gmail.com with ESMTPSA id u123sm2707019qkh.32.2017.10.07.13.42.01 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Sat, 07 Oct 2017 13:42:01 -0700 (PDT) Sender: Valdis Kletnieks From: valdis.kletnieks@vt.edu X-Google-Original-From: Valdis.Kletnieks@vt.edu X-Mailer: exmh version 2.8.0 04/21/2017 with nmh-1.7+dev To: dpreed Cc: Dave Taht , Rich Brown , "cerowrt-devel@lists.bufferbloat.net" In-Reply-To: <59d8d7b6.06c3370a.2a6e1.858eSMTPIN_ADDED_BROKEN@mx.google.com> References: <82be7dac-c30b-449d-a392-305c31b83519@reed.com> <59d8d7b6.06c3370a.2a6e1.858eSMTPIN_ADDED_BROKEN@mx.google.com> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1507408920_3005P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Sat, 07 Oct 2017 16:42:00 -0400 Message-ID: <82956.1507408920@turing-police.cc.vt.edu> Subject: Re: [Cerowrt-devel] dnsmasq CVEs X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Oct 2017 20:42:09 -0000 --==_Exmh_1507408920_3005P Content-Type: text/plain; charset=us-ascii On Sat, 07 Oct 2017 09:33:34 -0400, dpreed said: > They are not. The hardware designers at the chip and board level know little > or nothing about security techniques. They don't work with systems people who > build with their hardware to limit undefined or covert behaviors. It's worse than that. The hardware people are now intentionally building the chipsets with covert behavior baked right into the chip. Know how x86 people complain that SSM mode introduces jitter? That's just the tip of the iceberg. Believe it or not, there's an entire IPv4/IPv6 stack *and a webserver* hiding in there... https://schd.ws/hosted_files/ossna2017/91/Linuxcon%202017%20NERF.pdf Gaak. Have some strong adult beverage handy, you'll be needing it.... --==_Exmh_1507408920_3005P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Comment: Exmh version 2.8.0 04/21/2017 iQEVAwUBWdk8GI0DS38y7CIcAQJuBQf/ctRYqug3tVAG/j2wF6KjBCCz5eGR8h3a TNhzHwRj6nnDVcbmmQBjlSLUW+H3Y6E8gJHAhsPL755HsNSRjnGWtxldsfP3q1SR iJLosatQmnPSEQVfcjRZCZstCZPvT53KuPFM8fWI7WqtxP3Fgr1HdwEfRd8qK++M 7NVuKSZrCXSULjKRavyTX07Bg993KGIwW6LujFFASkAcY9RcrU31ImjU/OBiqffc xiIHNNZ8LLMe8A/Cut/WCyJG4px68bTCO65mZKNBc90KpuR+Xu5Lkf0/srCdqx6D Se/hVpz70DZ/OXug8+zz4Wh+EX/k6TZm96N9gwr8uu8+X0pTHNVSqA== =oFu8 -----END PGP SIGNATURE----- --==_Exmh_1507408920_3005P--