IRC logs for #automotive for Tuesday, 2015-08-04

« Monday, 2015-08-03 Index Wednesday, 2015-08-05 »
*** aeiche has quit IRC00:50
*** riazantsev has quit IRC01:14
*** bharmon_ has joined #automotive01:28
*** bharmon has quit IRC01:32
*** gvancuts has quit IRC01:34
*** gvancuts has joined #automotive01:35
*** gvancuts has quit IRC01:41
*** Spider has joined #automotive02:31
*** Spider has left #automotive02:35
*** riazantsev has joined #automotive02:42
*** luyu__ has quit IRC03:48
*** luyu__ has joined #automotive03:48
westongood morning04:02
*** jlrmagnus has joined #automotive04:07
*** jlrmagnus has quit IRC05:01
westonpaulsherwood: hello06:11
*** jacobo has joined #automotive07:18
*** KlausUhl has joined #automotive07:44
*** apinheiro has joined #automotive07:54
*** apinheiro has quit IRC08:04
*** apinheiro has joined #automotive08:07
*** klausbirken1 has joined #automotive08:17
*** jonathanmaw has joined #automotive08:17
*** klausbirken1 has left #automotive08:18
*** klausbirken has joined #automotive08:20
*** klausbirken has quit IRC08:26
*** klausbirken has joined #automotive08:26
*** CTtpollard has quit IRC08:35
*** alex_h has quit IRC08:35
*** ctgriffiths has quit IRC08:35
*** CTtpollard has joined #automotive08:37
*** ctgriffiths has joined #automotive08:37
*** alex_h has joined #automotive08:37
*** wschaller has joined #automotive09:00
*** klausbirken has quit IRC10:54
*** kratz00_work has quit IRC11:20
*** kratz00_work has joined #automotive11:22
*** klausbirken has joined #automotive11:25
*** wschaller has quit IRC11:45
*** riazantsev has quit IRC12:24
*** waltminer has joined #automotive12:35
waltminergood morning. It is 7:30 and I have a big pot of coffee ready if anybody wants some12:36
* rjek has just finished brewing coffee too, and has congratulating himself for getting precisely the right about of water into the reservoir such that the coffee is precisely on the "12 cup" line on the carafe.12:37
mdunfordrjek: It /says/ 12, but it really means 512:39
waltminerheh12:39
rjekI do have a rather large mug.12:40
*** wschaller has joined #automotive12:55
paulsherwoodweston: hi :)13:02
*** mdunford has quit IRC13:07
*** wschaller has quit IRC13:15
*** apinheiro has quit IRC13:15
*** apinheiro has joined #automotive13:28
*** luyu__ has quit IRC13:28
*** luyu__ has joined #automotive13:30
*** riazantsev has joined #automotive13:42
*** Tanikawa has joined #automotive13:49
*** gvancuts has joined #automotive13:59
*** yoshi_ito has joined #automotive14:03
paulsherwood== AGL Layer Design Meeting starts ==14:04
paulsherwoodpre-discussion about the timing continuation of this meeting14:05
paulsherwood(currently this is the last scheduled)14:05
paulsherwoodps raises again question of whether this could be done in text, rather than phonecall14:07
paulsherwoodwm points out this project is less mature, state is changing - maybe irc is better for a mature situation14:07
paulsherwoodwm worries that text-only may be too slow14:08
paulsherwoodas pk pointed out, irc compromise is speed of typing, vs voice being use of language14:08
paulsherwoodwm asks Tanikawa-san how it is going14:10
paulsherwoodTanikawa-san is able to boot to weston on porter board14:10
paulsherwoodhas not needed to modify any recipes in meta-renesas14:10
waltminerTanikawa-san added two temporary files14:12
paulsherwoodthere is discussion about who is to push meta-renesas (incuding some template files)14:12
westonpaulsherwood: sorry to jump in..and diswturbin...ohh renesas platform..which is the processor?14:14
paulsherwoodps asks if there are other people besides tanikawa-san has access to gerrit for modifying repos and merging etc14:14
paulsherwoodweston: RCAR214:14
westonR-Car H2?14:14
paulsherwoodi believe so14:14
yoshi_itoR-Car M2 with PORTER BORAD14:14
westonpaulsherwood: ok thanks...some story I have for R-Car series :(14:15
westonyoshi_ito: is not Koelsch?14:15
yoshi_itoNot a Koelsch, Cheaper Board and Distributed software by eLinux.org14:15
westonyoshi_ito: any links?14:16
yoshi_itoIt described in http://www.elinux.org/R-Car/Boards/Porter14:16
paulsherwoodhttps://gerrit.automotivelinux.org/gerrit/login/q/status:open14:17
paulsherwoodps + wm to discuss the gerrit login/password process after this meeting14:18
paulsherwoodno call next week, wm and others are on vacation14:19
waltminerpaul try logging into gerrit now14:21
* paulsherwood will try14:21
paulsherwoodTanikawa-san will push the mirror, and create branch with temporary files and readme14:22
paulsherwoodps will organise instructions for pushing patches into gerrit for review14:24
paulsherwoodwm will create an agl/test repo for people to play/experiment on gerrit workflow14:25
paulsherwoodps asks if there is any reason that the base system layers for AGL distro need to be different from GENIVI Demo Platform system layers14:29
paulsherwoodIto-san says that Munakata-san highlighted that AGL needs to be product grade, whereas GDP is focused on demo14:33
paulsherwoodwe need to ensure packages are selected to meet automotive grade requirements14:35
paulsherwoodps suggested that this could still justify starting from GDP and improving its components/choices to be automotive grade14:36
paulsherwoodwm says that Ned had expressed a different view14:36
paulsherwoodps asked if Ned was speaking as GENIVI or as WR14:37
paulsherwoodps states that he expects that GENIVI would be happy to see re-use and improvement of any/all GENIVI components/recipes etc to meet automotive grade product requirements14:39
paulsherwoodwm says let's get Tanikawa-san's work into gerrit and then establish how best to re-use GDP if possible14:42
paulsherwoodTanikawa says maybe better to start from GENIVI baseline, but package groups do not fit AGL purpose (would need to re-group them)14:44
*** jlrmagnus has joined #automotive14:44
paulsherwoodneed to find a migration path between meta-ivi and meta-agl, but Tanikawa does not have a solution yet14:44
jlrmagnusMorning14:45
*** mdunford has joined #automotive14:45
paulsherwoodwm asks that jonathanmaw work with Tanikawa-san's work once it is in gerrit14:46
jonathanmawacknowledged.14:47
paulsherwoodhttp://lists.genivi.org/pipermail/genivi-projects/2015-August/000607.html14:48
paulsherwoodps asks Tanikawa-san if he would consider trying this meeting on irc in future14:50
paulsherwoodTanikawa-san said irc is better than telephone :)14:50
paulsherwoodIto-san also confirms that irc would be better14:51
paulsherwoodso let's try that in two weeks' time :-)14:51
paulsherwood== meeting ends ==14:51
waltminerty paulsherwood14:52
waltmineras far as I remember this a new high water mark for participation 45 people on the channel14:53
*** wschaller has joined #automotive14:54
paulsherwood:-)14:59
*** Tanikawa has quit IRC15:01
*** yoshi_ito has left #automotive15:12
*** KlausUhl has quit IRC15:26
*** Joel_Replogle has joined #automotive15:30
*** Joel_Replogle has quit IRC15:45
*** bbranch has joined #automotive15:50
*** scrumb has joined #automotive16:02
*** aeiche has joined #automotive16:05
jlrmagnusrvi-test1 is going down for cloning.16:13
jlrmagnusShould be up in a few hours.16:13
*** aeiche has quit IRC16:13
*** scrumb has left #automotive16:14
*** bbranch has quit IRC16:17
*** klausbirken has quit IRC16:19
*** scrumb has joined #automotive16:24
*** scrumb has left #automotive16:28
*** waltminer has quit IRC16:28
*** wschaller has quit IRC16:39
*** jonathanmaw has quit IRC16:45
*** jacobo has quit IRC16:45
*** waltminer has joined #automotive16:46
*** emaj has joined #automotive16:52
*** bbranch has joined #automotive17:23
*** RzR has quit IRC17:30
*** RzR has joined #automotive17:30
*** waltminer has quit IRC17:36
jlrmagnusCool new project just got approved.17:37
jlrmagnusHardware based CAN firewall with programmable rulesets.17:39
jlrmagnusWe have the core design down, and I'll put together documentation on this during the next couple of days.17:39
FelixHif it's programmable it's hackable17:40
jlrmagnusThe rulesets are all signed by the OEM private key.17:40
jlrmagnusPublic key is permanently flashed (read only) into the device.17:40
jlrmagnusFelixH, you are correct in your statement, but it will be really, really hard to crack that.17:40
jlrmagnusIt's an extremely simple system with very few states.17:41
FelixHmhh theoricaly the full telemetry box software is signed with a key burned in chip17:41
jlrmagnusYes. But the TCU (telematics control unit) usually sits in the IVI, which today is easily compromised.17:41
jlrmagnusWe are trying to mitigate the effects of a hacked IVI.17:42
jlrmagnusHence the firewall.17:42
jlrmagnusJLR will produce the hardware and give away samples for free to interesting projects.17:42
jlrmagnusRVI will be used to push rules OTA from a backend server, to a Tizen box, and on to the CANFW.17:42
FelixHI agree for the firewall but I think it should not be possible to update it OTA, only by wire17:43
jlrmagnusThere will be a switch on the board that will have to be flipped in order for the FW to accept new rules.17:44
jlrmagnusIf you trust your OTA chain enough, you leave that switch flipped all the time.17:45
FelixH(if you want something you can tell the user you are 100% no OTA hack is possible)17:45
jlrmagnusElse you flip it in the shop before you program it through a tool.17:45
FelixHmhh good point for the switch17:45
FelixHyou always trust your OTA chain until it's hacked x)17:45
jlrmagnusWe should have this out in a few weeks. I'll slap together a power pointer and mail it out.17:49
*** aeiche has joined #automotive17:57
FelixHI'll look at it17:58
FelixHHave you looked for already existing solutions?17:58
jlrmagnusIn a meeting.18:06
jlrmagnusExample of such solutions:18:07
jlrmagnus?18:07
FelixHI saw a company called Arilou claims to have done a can firewall but I don't know much more.18:10
FelixHdon't know why I assumed it was something more common...18:11
*** apinheiro has quit IRC18:30
jlrmagnusVery little info on Arilou18:33
FelixHindeed18:43
aeichejlrmagnus, Did you go to the towersec talk at the Germany GENIVI AMM?18:44
breto/ from jaguar/lanrdrover pdx's office :)18:54
aeicheHi Bret18:55
brethey!18:56
*** aeiche has quit IRC19:12
rjekjlrmagnus: btw, have you considered making RVI simply a routing system, and then running RabbitMQ over it?19:37
*** aeiche has joined #automotive19:45
*** waltminer has joined #automotive19:50
waltminerpaulsherwood yoo-hoo19:53
* rjek blasts recent purchases out of hi fi19:55
* rjek browses eBay for replacement power amplifiers20:03
* waltminer has an amp that goes to 1120:08
rjekHow spinal :)20:09
* rjek always smiles when he notices that the BBC's websites' video players have volume controls that go up to 11.20:09
waltminer:)20:10
jlrmagnusBack20:10
jlrmagnusrjek: We can do that fairly easily.20:10
jlrmagnusWe can, for example, route rabbitMQ over SMS. Not efficient, but it works.20:10
* rjek currently has a Meridian Audio 596 -> 501 -> Cambridge Audio P500, but is looking to replace the P500 with a Meridian 556.20:11
rjekjlrmagnus: I see what RVI is trying to do, but it strikes me that it's trying to be routing, authentication, and messaging pattern all in one.20:11
* rjek always likes reusing other people's things, in general :)20:11
jlrmagnusYes. Although it does those three things at a very basic level.20:12
rjekrouting and authentication is tricky to seperate when you have no single addressing scheme, but it strikes me that if RVI simply provided a routing system for streams, then you could just run TLS and RMQ over it.20:12
jlrmagnusThe core mission of RVI is secure and robust data transmission between two nodes, regardless of data link.20:12
rjekYes, the routing seems to be the important thing20:12
jlrmagnusIt is, but I can't see how we can break out security from it.20:13
jlrmagnusIf we only route simple messages (which is what we do today), but with no security, how do we stop spoofed RVI nodes from injecting traffic?20:13
rjekYes, it's tricky.  But if it simply provided stream connections, then you could perhaps run TLS over it and leave authentication and secrecy to that20:13
FelixHjlrmagnus: point to point security?20:14
jlrmagnusWell. It is not streams only. SMS, being a typical case.20:14
rjekP2P security doesn't exist unless you have a central authority or out-of-band confirmation of identify20:14
FelixHif each node secure its messages a spoofed node can't talk20:14
jlrmagnusFelixH, Even with end point validation, you can still DOS the intermediate routing points.20:14
FelixHrjek: yes20:14
FelixHDOS yes but not spoof it20:15
jlrmagnusCorrect. And that out-of-band authentication is rooted in the private key that signs the certificates.20:15
rjekie: see SSL/TLS certification authorities and PGP key signing20:15
jlrmagnusrjek: That is what we are running a stripped version of, although using JWT instead of X.509.20:15
* rjek likes to distance himself from JSON in general :)20:16
FelixHIn internal we did something very similar to RVI...20:16
jlrmagnusIt makes portability and interop easier.20:16
rjekBut only because I like writing data structures myself, and JSON hates humans20:16
jlrmagnusWe ran our initial protocol as BERT-RPC, which is much, much more efficient, but ran into all kinds of interop issues.20:16
FelixHfor the security every telematic box get a key in factory that the CPU transform in blackblob and our keyvault server keep the pair for communication20:16
rjekHmm, is SMS useful at all without running your own packetised protocol over it due to message length restrictions?20:17
jlrmagnusFelixH: That is a prerequisite.20:17
jlrmagnusWe also need to rotate those keys as time goes on.20:17
rjekDepends on their strength.  DNSSEC requires routine rotation because the keys are so small (so they're not computationally expensive)20:17
rjeks/not/so/20:18
jlrmagnusrjek: We have an initial run on the security implementation, mostly to learn and evaluate.20:18
jlrmagnusHigh-level doc at: https://github.com/magnusfeuer/rvi_core/blob/master/doc/rvi_security.md20:18
jlrmagnusI20:18
rjekjlrmagnus: Hmm; in general I prefer to avoid creating new security systems because it's so easy to build something you can't break yourself.  ie, I prefer using something already used, tested, and reviewed.20:18
rjekNot that it's a panacea.20:18
jlrmagnus am prepared to start over on the security implementation, but this is as far as we have come now.20:19
* rjek nods20:19
jlrmagnusPlease note that we are using bog standard crypto stuff for this.20:19
rjekSure20:19
jlrmagnusAnd it's just authentication and authorization, no encryption (yet).20:19
rjekBut while the CA PKI has its flaws, at least they're well understood and explored.20:19
jlrmagnusWe may end up using TLS after all, but the SMS issue remains.20:19
jlrmagnusAgree.20:19
rjekHow show-stopping is the SMS issue, and could perhaps a different scheme be adopted for that?20:20
jlrmagnusrjek, Have a look at the doc. The self-provisioning bit is totally broken, but the rest held up ok in a review by people who were not totally incompetent.20:20
FelixHWe only use SMS for emergency (like crashes) or if we have nothing else working20:20
jlrmagnusIt is a show stopper. SMS in 2G, 3G, and LTE has better coverage than a full-blown data link.20:21
rjekSounds like an HMACed message would do for that20:21
jlrmagnusClose to what we are doing already.20:21
rjekSending a message saying "Help!" is much less security sensitive than "please unlock"20:21
jlrmagnusok?20:21
* rjek 's face burns from kimchi20:22
rjekjlrmagnus: I'll read that tomorrow.  It's a bit late here now.20:22
jlrmagnusnp.20:22
FelixHfor lock/unlock we only do electric cars that are connected to a station when we have to give access to a new user20:22
FelixHbut obviously it will not work for everyone20:23
jlrmagnusThe more input we get on this, the better. We are talking to security outfits about the design, but would like to present them with something fairly mature.20:23
jlrmagnusFelixH:  Who are "we"? If you can tell.20:23
FelixHBlueSolutions20:24
jlrmagnusok20:24
rjekRight, good night fellow automotivites.20:24
jlrmagnusGood night. Looking forward to continue the discussion.20:24
jlrmagnusI20:26
FelixHgood night20:26
*** aeiche has quit IRC20:35
*** waltminer has quit IRC20:57
*** aeiche has joined #automotive21:01
*** waltminer has joined #automotive21:05
*** emaj has quit IRC21:55
*** aeiche has quit IRC22:54
*** waltminer has quit IRC23:31
*** aeiche has joined #automotive23:31
*** jlrmagnus has quit IRC23:38
« Monday, 2015-08-03 Index Wednesday, 2015-08-05 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!