makefiles/suit: drop use of SUIT_SEC_PASSWORD #20862

benpicco · 2024-09-13T09:07:53Z

Contribution description

Specifying the password of the SUIT private key on the command line and thereby committing it to shell history is a security issue.

Instead ask for the password interactively when an encrypted private key is used.

Testing procedure

if you don't have an encrypted SUIT key, create one first

$ make -C examples/suit_update SUIT_KEY=supersecret 
make: Entering directory '/home/benpicco/dev/RIOT/examples/suit_update'
Building application "suit_update" for "samr21-xpro" with CPU "samd21".

suit: generating key in /home/benpicco/.local/share/RIOT/keys
0) none
1) aes-256-cbc
Choose encryption for key file /home/benpicco/.local/share/RIOT/keys/supersecret.pem: 1
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:

sign a manifest with the new key

$ make -C examples/suit_update SUIT_KEY=supersecret suit/publish
make: Entering directory '/home/benpicco/dev/RIOT/examples/suit_update'
compiling /home/benpicco/dev/RIOT/dist/tools/riotboot_gen_hdr/bin/genhdr...
…
creating /home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/riotboot_files/slot0.1726218363.bin...
creating /home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/riotboot_files/slot1.1726218363.bin...

Enter encryption for key file /home/benpicco/.local/share/RIOT/keys/supersecret.pem: testtest

published "/home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/suit_files/riot.suit.1726218363.bin"
       as "coap://localhost/fw/suit_update/samr21-xpro/riot.suit.1726218363.bin"
published "/home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/suit_files/riot.suit.latest.bin"
       as "coap://localhost/fw/suit_update/samr21-xpro/riot.suit.latest.bin"
published "/home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/riotboot_files/slot0.1726218363.bin"
       as "coap://localhost/fw/suit_update/samr21-xpro/slot0.1726218363.bin"
published "/home/benpicco/dev/RIOT/examples/suit_update/bin/samr21-xpro/riotboot_files/slot1.1726218363.bin"
       as "coap://localhost/fw/suit_update/samr21-xpro/slot1.1726218363

Issues/PRs references

Specifying the password of the SUIT private key on the command line and thereby committing it to shell history is a security issue. Instead ask for the password interactively when an encrypted private key is used.

riot-ci · 2024-09-13T09:27:17Z

Murdock results

✔️ PASSED

1517949 makefiles/suit: drop use of SUIT_SEC_PASSWORD

Success	Failures	Total	Runtime
10197	0	10197	18m:46s

Artifacts

Documentation preview

makefiles/suit: drop use of SUIT_SEC_PASSWORD

1517949

Specifying the password of the SUIT private key on the command line and thereby committing it to shell history is a security issue. Instead ask for the password interactively when an encrypted private key is used.

github-actions bot added the Area: build system Area: Build system label Sep 13, 2024

benpicco added the CI: ready for build If set, CI server will compile all applications for all available boards for the labeled PR label Sep 13, 2024

benpicco requested review from bergzand, Teufelchen1 and fabian18 September 13, 2024 09:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

makefiles/suit: drop use of SUIT_SEC_PASSWORD #20862

makefiles/suit: drop use of SUIT_SEC_PASSWORD #20862

benpicco commented Sep 13, 2024 •

edited

Loading

riot-ci commented Sep 13, 2024

makefiles/suit: drop use of SUIT_SEC_PASSWORD #20862

Are you sure you want to change the base?

makefiles/suit: drop use of SUIT_SEC_PASSWORD #20862

Conversation

benpicco commented Sep 13, 2024 • edited Loading

Contribution description

Testing procedure

if you don't have an encrypted SUIT key, create one first

sign a manifest with the new key

Issues/PRs references

riot-ci commented Sep 13, 2024

Murdock results

Artifacts

benpicco commented Sep 13, 2024 •

edited

Loading