Crypto and IPSec Merged into 2.5

Corbet writes "Linus has just merged the new crypto API and IPSec implementation into his 2.5 BitKeeper tree. This is the first time that serious cryptographic code has made an appearance in the mainline kernel, and it will hopefully lead to more secure communications for all Linux users in the future."

Excellent - no more FreeSWAN patches

[JKR]

This should make VPN-in-a-box simpler to set up, particularly for distros that use their own kernel packaging scripts.

Jon.

Re:Excellent - no more FreeSWAN patches

[LWolenczak]

somewhat, but from what I read bout a week and a half ago... the ipsec impmentation that they are putting in does not yet support ipv4 transport.... ie is useless unless you have hosts fully using ipv6 on both sides of the tunnel. Keep in mind, its not frees/wan, its from the linux ipv6 project.

With the atitude that the frees/wan project maintains, we will never see freeswan merged with mainstream kernel... hell... they still refuse to take patches from us citiziens and residents (that includes linus)

Re:Excellent - no more FreeSWAN patches

[4of12]

Simpler setups for important security features are great and definitely do depend on this infrastructure being in the default kernel distributions. (I kind of like the idea of cryptographic filesystems enabled by default on laptop computers that could stolen.)

But, as we all know, that's not enough.

That simple setup has to be exceedingly well-designed so that 2-minute Click-through VPN installations are not left vulnerable due to some trade-off for more convenience.

Everyone knows and has deservedly berated Microsoft for making poor choices in this matter; let's not have widely-deployed commercial Linux distributions make the same mistake.

"Everything should be made as simple as possible, but not simpler."

-- Albert Einstein

Re:Excellent - no more FreeSWAN patches

[velkro]

Why no fork yet?

Because it's a large project, it's really complex, and it's a bitch to keep up with things.

I should know - I'm the author of Super FreeS/WAN, a pseudo fork with includes alot of patches (NAT-T, X.509 Certs, AES/Blowfish/etc... ) @ http://www.freeswan.ca/code/super-freeswan

It takes a few hours a day to stay on top of things. One the major ones is user support. IPSec is not easy to configure currently, especially once you introduce X.509 certs & MS Windows clients using any number of clients. So there's hundred of questions about configs, how tos, etc...

If you want to fork it, please, go ahead. Just remember that a fork isn't just the code - you take users with you.

Re:Excellent - no more FreeSWAN patches

[shepd]

>With the atitude that the frees/wan project maintains, we will never see freeswan merged with mainstream kernel... hell... they still refuse to take patches from us citiziens and residents (that includes linus)

Not to mention they refuse to include support for the faster (but less secure) type of IPSec, thereby causing me to run Win2k on my router for a short while. I believe they even say it's fully valid to use IPSec in this manner (in fact it's part of the spec, so without it they shouldn't be calling it IPSec, IMHO), but they just don't want to support it in the faq, 100% due to attitude.

Developers may have a right to any attitude they desire, but they should understand their software is just going to be replaced (in the mainstream) by software from someone with less attitude. Let's hope that's what happens with freeswan. I think we don't need another OSS-style crippled set of kernel software. (Did they move to ALSA yet? I hope so!)

Just my 2 cents.

Re:Excellent - no more FreeSWAN patches

[Junta]

Not 100% due to the attitude more than anything else. They by default choose not to allow single DES to protect users/organizations from themselves. Tell me a legitimate reason why, with today's hardware, you need only single DES? It is really not that secure in this day and age? In any case, when I set up FreeS/WAN on a system, two sets of patches immediately go on, x509 cetificataes (ala http://www.strongsec.com), and cipher plugins (http://www.irrigacion.gov.ar/juanjo/ipsec/). I usually do AES when going to other patched FreeS/WAN, and use the enhanced 3DES from that suite when dealing with implementation lacking AES...

AES is truly the way to go. There are a number of aspects of FreeS/WAN where they felt things the standards required to be available were too weak to be secure. They are mostly compliant with the specs, but I agree with them that certain things really have no use in security except to make things easier on organizations like the NSA...

exportation issues?

[kochsr]

how does exportation work with this? i thought people weren't allowed to export code w/ serious type crypto in it.

Re:exportation issues?

[Angry+White+Guy]

I think that this would be the same as not letting Stephen Hawking leave the country because he knows too much

Re:exportation issues?

[JKR]

The requirements have been relaxed recently; see here for more details. In particular:

Also in 740.13, to, in part, take into account the "open source" approach to software development, unrestricted encryption source code not subject to an express agreement for the payment of a licensing fee or royalty for commercial production or sale of any product developed using the source code can, without review, be released from "EI" controls and exported and reexported under License Exception TSU.

Jon.

Re:exportation issues?

[leto]

If you had followed the entire debate, you know
that these "relaxations" are declarations (yes,
those like a King makes), and can be withdrawn by Bush at any time, without any democratic process.
That's why Gilmore and Daniel are taking the stance they are taking.

Crypto is your fundamental right, not a fluffy
allowance from your Emperor.

Re:exportation issues?

[Skirwan]

exportation

Is anyone else subtly annoyed that 'exportation' is a word?

It sounds like something completifically inventorated, but sure enough the dictionary verificates its existification. I am extremifically annoyarated to be denyified this oppurtunitization to drop a Bush joke.

--
Damn the Emperor!

Re:exportation issues?

[danish]

Is anyone else subtly annoyed that 'exportation' is a word?

"Exportation" is a perfectly cromulent word.

Re:exportation issues?

[sab39]

What would you prefer? Exportion?

Too bad it's not Freeswan

[leto]

Too bad that full ipsec, such as provided by
Freeswan is still not in the kernel. I find it a
bit sad that Dave Miller and John Gilmore can't
figure out a proper way to resolve their problem

(John wants no US hands on the code, Dave wants
no code he can't touch in the kernel)

But at least the beginning is there, and if the
USAGI ipsec gets in, it should learn to talk to the userland tools, such as Freeswan, because Freeswan has extra features that "stock ipsec" doesn't have, such as Opportunistic Encryption.

Re:Too bad it's not Freeswan

Uh, calling FreeSWAN a "full" implementation is very misleading. Its IKE does not support Aggressive Mode which is pretty much a requirement for virtually every Hardware IPSEC VPN out there.

FreeSWAN may be good for crypto, but bad for actually getting your work done. Regardless, the new IPSec code gets the hard part integrated, an ipv4 implementation should be trivial.

Re:Too bad it's not Freeswan

[The+Pim]

While I appreciate all the work that freeswan has done for us, I am much more confident for the long term in work done by the core Linux networking hackers. The freeswan guys seem much more concerned with making it work (in typical situations) than making it right, with the result that the implementation is horribly klugy.

Two examples are the need for a "nexthop" parameter, when the kernel already has this information in its routing tables; and the need to turn off route filtering. Both make it clear that freeswan is not properly integrated (and if you look at the freeswan docs, you'll see that this general problem been on the "to fix" list for a long time).

Re:Too bad it's not Freeswan

[Junta]

Ummm, not so, I have not ever specified nexthop in any of my configuration. Same with route filtering, I leave it on, without consequence....

I've seen these complaints about the non-integration of FreeS/WAN before, but usually because people fail to understand the system. They make recommendations so you know exactly what is going on and give the ability to override certain settings just in case, but most of the time the extremely verbose ways of dealing with the parameters as recommended in many howtos is overkill, and could be omitted...

Re:Too bad it's not Freeswan

[hardaker]

You'll be glad to know that the Cerberus/PlutoPlus implementations done by NIST are going to be more widely available in the near future. Specifically, I've been working on extending them to support large-scale configuration management of it. I ported the cerberus (read: ipsec) support to the 2.4 kernel, and am wrapping up the final details at the moment. The good news about it is that it's not done in the hacky way that freeswan did stuff. I'll be creating a sourceforge project for it within the week (I have a deadline to do it by next week), so look for it shortly.

I actually tried to approach the FreeSWAN folk to considering instrumenting their code with our policy-role-based configuration management support infrastructure, but they said "no US no way" and I didn't really have a choice if I wanted my patches rolled back into the project. The Cerberus and PlutoPlus developers, on the other hand, have been much more polite and helpful.

Kernel bloat ?

[MosesJones]

This is great that these things are comming as standard in the kernel, but so many things are "standard" now its getting pretty large for joe-schmo average user who will get a full kitchen sink kernel with their distro.

This is also great for creating products like VPN gateways et al, but is it time to consider a different structure for kernel builds, with modules being seperately managed with a smarter installation procedure.

Re:Kernel bloat ?

[Alioth]

With kernel modules you don't need to have the stuff loaded *in* the kernel all the time. All the distros I've used recently only have the stuff essential to run in the kernel image in /boot - the rest is all modules.

Re:Kernel bloat ?

[LordHunter317]

I can't believe everyone calles 32MB of source "bloat". 32 MB is small compared to soemthings on your system, like X, KDE, GNOME sources. And in a lot of way, the Kernel is a lot more featureful than any of those. X for example, has a lot of "bloat" due to its build system.

Joe-Schmo is goign to use the binary kernel supplied by his Distribution anyway, and probably never upgrade it, until he goes and downloads a whole new ISO image. The actual running kernel stays really small due to the use of such things as MODULES, allowing only what is needed to be running at any given moment to run.

Bitch Bitch Bitch. Stop bitchin' about stuff you really don't have any idea about. The kernel is for all intents and purposes, small, and is indcredibly featureful for its size. So deal.

Re:Kernel bloat ?

[GreyWolf3000]

This is great that these things are comming as standard in the kernel, but so many things are "standard" now its getting pretty large for joe-schmo average user who will get a full kitchen sink kernel with their distro.

This is also great for creating products like VPN gateways et al, but is it time to consider a different structure for kernel builds, with modules being seperately managed with a smarter installation procedure.

Due to kernel modules and the fact that you can "roll your own," the kernel can be as bloated as you want, the only downside is the size of the download. The current installation procedure works well enough for this, though the only feature it really lacks imho is querying dependencies satisfied by an entry.

Really though, kernels can and will always fit on teeny floppies, providing they're trimmed down enough. Regarding your comment about the end user getting the kitchen sink, have you ever looked at how distros handle this?

Most make a generic trimmed down kernel cross-compiled for the architecture and build all the modules. It may be the case that the distro copies hoards of modules, but that still isn't going to be as big a package as, say, glibc. If "joe-shmoe" doesn't have Bluetooth or scsi hardware, the corresponding modules won't get loaded, and as a result the bloatedness of the /lib/modules// directory won't bleed into the performance of the actual running kernel.

Re:Kernel bloat ?

[LordHunter317]

No, the whole kernel is about 32MB source. Binary is far smaller.

Don't compare a 43 MB binary download to a 32MB source download. That's apples to oranges.

Re:Kernel bloat ?

[rmadmin]

Just for clarification.. thats 36~ meg compressed!

[KungFu] rmadmin:~$ ls -sh linux-2.5.44.tar.gz
36M linux-2.5.44.tar.gz
[KungFu] rmadmin:~$ gunzip linux-2.5.44.tar.gz
[KungFu] rmadmin:~$ ls -sh linux-2.5.44.tar
160M linux-2.5.44.tar
[KungFu] rmadmin:~$

Wanna rephrase your statement?

Re:Kernel bloat ?

[GreyWolf3000]

If you roll your own, it is possible to get a working Linux system as small as you want, depending on the functionality. 5MB for a webserver--before compression!

Sources themselves are huge compared to the bins they create especially considering source trees for projects like the kernel and X, which have support for many architectures. Much of the source code doesn't even get into the binary in the end.

Re:Kernel bloat ?

[LordHunter317]

The bzip2 is 32MB. Get a real compression mechanism.

Unzipped only counts in terms of disc space. 160MB is small change for most machines. If its not, compile the kernel somewhere else and ship it over.
Still, it further proves my point, because that means we're goign from 160MB source to 10MB compiled code.

My whole point is people bitch about bloat when the kernel is anything but bloated. For all the stuff it contains (which is a lot), submitted by all those different people (which is a lot), its incredibly lean.

Re:Kernel bloat ?

[RAMMS+EIN]

``I can't believe everyone calles 32MB of source "bloat". 32 MB is small compared to soemthings on your system, like X, KDE, GNOME sources. And in a lot of way, the Kernel is a lot more featureful than any of those. X for example, has a lot of "bloat" due to its build system.''
I'm sorry. This really doesn't make sense. Just because the kernel is smaller than some other package doesn't mean it can't be bloated. When I download the kernel source, I get sources not only for my build platform but also for a myriad of other architectures that I don't have. This _is_ bloat. It's good that Linux runs on so many architectures, it's good that the kernel has so many featurs, but anyone saying that all this source code they get but never use is bloat is just correct.

In my opinion, GNOME, X, and KDE come with a lot of bloat that I don't want to cope with. I don't use GNOME or KDE, but I do use X, because I lack a better alternative. The Linux kernel is a fantastic piece of software, exactly because it offers so many features (that many don't need). The source download is pretty huge (and unnecessarily so), but once compiled it's greatly efficient. Any new features is a win, and if you don't want it, you can disable it at configure time.

Re:Kernel bloat ?

[jim3e8]

If you want to see bloat, take a look at the commercial UNIXes.
For example, on a random HP 11.0 box here:

-rwxr-xr-x 1 root sys 18946872 May 9 08:43 /stand/vmunix

That is a 19 megabyte binary kernel. It would be interesting to see how big the source is...

Re:Kernel bloat ?

[cjpez]

I don't think trimming off architectures alone would save that much. The 2.4.19 tbz2 is about 25MB. I untarred it, stripped out all arches !i386, retarred, and the resulting tarball was still about 21MB. Not that big of a difference; you're still downloading 21 megs. What's the extra four, really?

pez@arrakis:~/tmp/kernel$ ls -l
total 46628
drwxr-sr-x 2 pez pez 4096 Oct 30 11:40 ./
drwxr-sr-x 10 pez pez 4096 Oct 30 11:29 ../
-rw-r--r-- 1 pez pez 21630684 Oct 30 11:35 linux-2.4.19-i386.tar.bz2
-rw-r--r-- 1 pez pez 26042494 Oct 30 11:40 linux-2.4.19.tar.bz2

Looking for FreeSWAN? Try freeswan.ca

[caluml]

I only found this out recently, but the freeswan.org site lags behind the actual development of freeswan quite a lot. A nice friendly guy runs freeswan.ca, and keeps it chockablock with all the latest patches and stuff.

I've mirrored the downloads as they're so useful.

Re:Looking for FreeSWAN? Try freeswan.ca

[velkro]

You bastard... you've /.'d my server! =)

Oh well, so much for hiding in anonymity.

ken@freeswan.ca

IPSec lets us get Win2k from the flank

[GreatDave]

In my experience, Windows 2000's support for IPSec is one reason why it has snared a foothold in many businesses. Having IPSec in mainstream Linux distributions would let us cut Bill off at the pass.

I hope we're not far from seeing adoption of Linux in places like the financial services industry. If the distributors can make IPSec painless to configure, Linux will make inroads in such industries very quickly.

Re:IPSec lets us get Win2k from the flank

[LWolenczak]

In all honesty, Win2k's IPSec impmentation sucks. It dosen't seem to be able to keep track of time... and it forgets esp tunnels like crazy. Linux is already being used quite a bit for the hidden thins in business. The firewalls.. The proxy servers, the VPN Routers. Linux makes a very good box to sit in the corner w/o a monitor, and run a few hundred ipsec tunnels with lets say OSPF on top of it all.

Many of the non-us distribuions ship with ipsec, but the big problem is creating some very easy way that can allow elmer fud to create a host to host or a subnet to host or a subnet to subnet ipsec tunnel in under 10 minutes. Preferably 2 minutes.

What is going to start shifting many businesses to linux is seeing applications such as AutoCAD run on linux. Seeing APIs for controling PLCs on factory floors. If we are able to woo the design and engineering firms to linux.... we will have a powerful foothold on the market.

Re:IPSec lets us get Win2k from the flank

[phorm]

Forget the "linux Vs windows" attitude for a moment, and lets just hope that the new linux kernel works nicely with the windows (bad or otherwise) implementation of IPSec for VPN, etc.

You'll probably snag a lot more users by showing cross-OS compatability as opposed to desktop replacement. As in most cases, it would likely be linux server, windows desktop, with VPN being a nice communication feature in both.I know that I would like my VPN's to work properly between OS's, without the half-baked configurations in FreeSwan.

Mergint trends

[VitrosChemistryAnaly]

Oh man...

First ICQ and AIM merge.

Then Crypto and IPSec merge.

Next you're gonna tell me that cats and dogs have merged.

What's the world coming to?

Re:Mergint trends

[anshil]

KDE and GNOME merge, finally a common desktop for all.

Redhat and SuSE merge, and bring yast to redhat.

BSD and LINUX will merge.

The vim and emacs teams join together and will bring out a new editor together in teamwork.

Linus agrees on using CVS.

The english world will make a big grammar reform, enabling a polyphonic script again.

Star Wars will meet Star Treck.

America decides to officaly use the metric system.

The brits drive on the right side of the road. ...

Export Ramifications?

[nurb432]

Does this create any export ramifications since Linus ( and i assume the code he reviews/packages )is now located here in the states?

Just curious.. i know how hard of a time everyone else ( like BSD ) has with this garbage.

Information should never be restricted on the basis of governmental boundries. Phfft.

Re:Keeping stuff away from terrorists?

[DuBois]

No. Nobody can. Crypto can be used for good or ill, just like any self-defense tool. Keeping it out of the hands of "enemies" also keeps it out of the hands of people rebelling against our "enemies."

Freedom of speech also implies freedom of anonymous, or even encrypted speech, a concept that politicians have destroyed completely with "campaign reform."

Re:If I want IPSec stuff

[Teancom]

Well, seeing as this isn't FreeSWAN, maybe you want to restate your objections? I mean, complaining about FreeSWAN when talking about putting ipsec in the kernel, doesn't make much sense if it isn't FreeSWAN that they are using...

But on the other hand, who wants to read the article when you can, instead, spout off and look like an idiot?

Re:If I want IPSec stuff

[isa-kuruption]

I agree! The linux kernel is at least 2 years behind in any IPsec implementation compared to OpenBSD or even FreeBSD. What's going on here? Does that make sense? Usually it's the Linux folks that are ahead of the game, but not this time.

I guess the Linux folks wanted to make EXTRA SURE they didn't leave any BSD code in the kernel without a copyright before they added it to CVS.

Go ahead... troll me! I dare you!

Three kinds of bloat

[DickBreath]

One man's bloat is another man's features.

Hypothetical: I can't believe OpenOffice is so bloated compared to EDLIN from MS-DOS!

Maybe it's "feature loaded" instead of bloated? While it is true that you can use OpenOffice to duplicate tasks that you might have done in EDLIN, it is capable of so much more.

There is another kind of bloat which is not caused by features. This kind of bloat does not appear to be present in Linux. The kind of bloat I'm talking about is caused by "optimization". I don't mean optimizing for fast code or small code, but optimizing for "release date". Hey Mr. Customer, would take that new spreadsheet upgrade six months sooner if it required 25% more computing resources to run? All consumers I know would answer Yes. So this is a type of optimization. Optimizing for development time instead of optimizing for computer resources. Given the current low and decreasing cost of computer resources, there is some balance of this that makes sense. Just as once upon a time the "bloat" and value of high level programming languages was hugely debated. Now everyone uses high level languages to optimize for development time. The fact that I could spend six extra months doing it smaller and faster in assembler doesn't matter. Well, today it's the same thing. I don't mean that bad code is written on purpose, just that development time is valued above comptuer resources and machine optimizations, profiling, etc. Again, Linux does not appear to "suffer" from this type of "optimization".

Another type of bloat is just from plain bad programming. It was not a purposeful decision to optimize development time, it was just the the program is badly written. Linux does not appear to suffer from this kind of bloat either.

Watching kernel dev out-of-band

[dcowart]

Linus has yet to post a message to linux-kernel since his return, but he continues to merge patches at a high rate.

What's cool about this is that people are watching kernel development without having to read the lkml or being on irc or whatever. People can now just watch the patches flow into the bk system. I think that's kind of cool. It's like a Kernel News Network.

Crypto Export Regulations

[man_ls]

Wouldn't this run afoul of many of the U.S. Cryptography export regulations? U.S. DoD prohibits exporting of any product containing mathematically "strong" cryptography (usually, 128-bit) to a lot of places.

That, and the DMCA which prohibits reversing of any of the encryption that would be found in the new kernel, would create a risk for many of the users downloading the software if they were from anywhere outside the US (and, for US users downloading the software, because it couldn't be explained to them.)

I'm sure the U.S. government is going to have a lot of fun with this...

Re:Aggressive Mode is "Optional", not "Required".

[shepd]

>The only reason I can think of why you want this, is when you have a dynamic IP address and you want to use a Preshared key.

So I see. Basically any home user using an ISP shouldn't expect to ever have any kind of crypto at all because it is slightly weak.

Next up: Master quits making front door locks. States that most homes have windows and therefore their locks are ineffective, so they will quit selling them altogether.

A lack of Agressive Mode (among other things) is the _only_ reason my previous ISP didn't support Linux. In fact, they wanted to support Linux, and eventually switched over to a non-encrypted system and released a Linux client for it.

So, who really wins in the end? Nobody. Ho hum.

we love crypto

[shren]

...it will hopefully lead to more secure communications for all Linux users in the future.

Or the banning of Linux in several countries. Whichever comes first, you know.

bloat

[budalite]

My un-favorite types of Bloat:
- In Apps, Games, whatever, it would be a lot nicer to be able to add features, rather than have the whole bloated thing copied/downloaded/installed onto your drive. (Cygwin has a nice setup.exe program that actually lets the user *pick* what he wants *before* the download. Very nice.)
- Programs that say "Standby while we figure out what system you are running" and then copy every bloated driver for every type system, and its various peripherals, that ever existed onto your hard drive, anyway. Maybe this is not a problem anymore with the huge disks that exists these days, but it does signify sloppy development work that is usually mirrored in the app. :{)||

Re:Keeping stuff away from terrorists?

[DuBois]

If we managed to contain the warsaw pact...

What evidence is there that crypto restrictions helped bring down the Warsaw pact? I've heard of none. The Warsaw pact folks "fell" because they had a rotten economic system that treated their people like dirt. People in the Warsaw pact (take, for example, the East Germans) only had to look across a border at their like-culture, like-language brethren, and know with a certainty that the only reason they were in deep doo-doo was their tyrannical economic system.

Western crypto restrictions had nothing to do with breaching the Berlin Wall, for example.

More Pervasive Insecurities?

[brandido]

I am not very knowledgeable about security issues, but I am curious if the inclusion of security modules in the kernel will provide for a single point of failure. In other words, as more programs become dependent on the kernel module for security, if an exploit becomes available, will all these dependent programs become exploitable?

I ask this specifically because of the problem the IE ran into, where it depended on security APIs from Windows, the Windows API had an exploitable bug, and ta-da, IE had an exploitable bug.