Reproducibly building artifacts that contain embedded signatures - TIB AV-Portal

Reproducibly building artifacts that contain embedded signatures

00:00

0

Schwaighofer, Martin

Formal Metadata

Title

Reproducibly building artifacts that contain embedded signatures

Title of Series

Number of Parts

28

Author

Schwaighofer, Martin

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/61034 (DOI)

Publisher

Release Date

Language

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Signatures are annoying when you are trying to build software reproducibly, especially when deeply embedded in the output artifact. Let's look at how we can tackle this problem elegantly with Nix. Reproducibility means that someone else can independently recreate exactly the same binary artifact. This is very useful for confidently knowing what source code a binary artifact was built from. People are analyzing artifacts with tools like diffoscope to exactly locate differences between two artifacts built using the same build instructions. For complex projects even when looking at an exact difference in the output that way, it is not always easy to find the cause of that difference. In general using Nix to split the build instructions into smaller steps can help us make this process easier, because we can notice differences at the end of the intermediary step that introduced them, as long as we are nix build --rebuilding the right build steps. Even then signatures are still a problem, because we can never really reproduce a signed artifact without access to the signing key and even with access to the key not all popular signing schemes produce signatures deterministically. We either have to substitute in the expected signatures or keep track of those expected differences. There is a nice pattern that we can use for always substituting the correct signatures with Nix, which makes it easy to verify embedded signatures as part of such an independent recreation process even for a large and complicated artifact. The same pattern also takes advantage of Nix's binary caches to automatically obtain all the required signatures, which are ideally the only thing we cannot reproduce.

NixCon 20225 / 28

1

06:03

Running the Nix daemon (nearly) rootless

2

05:28

Revolutionizing my daily development with Nix

3

07:27

Rethinking basic primitives for store based systems Q&A

4

21:15

Rethinking basic primitives for store based systems

5

06:11

Reproducibly building artifacts that contain embedded signatures

6

09:36

Write the Nix package of a Rust project in 2022: an opinionated comparison

7

22:25

Why we've built yet another Nix deployment tool

8

04:30

We should manage secrets the systemd way!

9

06:16

Talking about Nix with friends

10

31:31

11

14:50

Squeezing efficient and small Nix containers into Nomad

12

26:21

Scaling Up Flakes

13

05:15

Packaging Wayland applications on macOS

14

30:37

NixOS can live anywhere: why, how, and where?

15

20:51

Nix2container: faster container image rebuilds

16

30:13

Nix in a scientific environment bringing together Nix's reproducibility with computational chemistry

17

31:49

Nix for particle accelerators, and the adventure in cross-compilation

18

06:18

Nix error traces improvements #6204

19

05:20

Nix and legacy enterprise software development: an unlikely match made in heaven

20

16:27

Nix: a space odyssey

21

04:09

Lightning Talks Q&A

22

26:32

Learning the Nix Store layer

23

03:52

jupyterWith: Making Jupyter Reproducible

24

06:41

25

38:54

Improving Nix documentation

26

21:38

27

19:18

28

26:19

Debugging closure sizes graphically

Automatic playback

Speech

Text

Image

00:00

Electronic signatureComputer virusComputer animation

00:15

Exception handlingVisualization (computer graphics)Computer animation

00:28

Graph (mathematics)Sign (mathematics)Graph (mathematics)Arrow of timeCuboidFunction (mathematics)Set (mathematics)Computer animation

00:59

Sign (mathematics)Electronic signatureComputer animation

01:30

Graph (mathematics)Numbering schemeElectronic signatureDeterminismFingerprintDerivation (linguistics)Formal verificationoutputElectronic visual displayDefault (computer science)Computer-generated imageryNetwork topologyDemo (music)CodeComputer virusCollaborationismSign (mathematics)Derivation (linguistics)Electronic signatureKey (cryptography)FingerprintFormal verificationProcess (computing)MereologyNumbering schemeHeegaard splittingFunction (mathematics)Substitute goodSimilarity (geometry)CodeBitMetadataExpected valueVariable (mathematics)State of matterPoint (geometry)InformationComputer animation

Transcript: English(auto-generated)

00:02

All right, hello. I think everybody can hear me. I hope so. My name is Martin Schweighofer. I'm going to talk to you about reproducibly building artifacts with embedded signatures. And the first thing we're gonna look at is a dependency graph, except I'm just kidding.

00:21

That's kind of some visualization of dark matter, so it's not a huge dependency graph, but it could be, right? This is a nicer dependency graph, but we heard a lot about dependency graphs already. It's just kind of where I'm also starting from, so we have some outputs here,

00:40

and then a set of arrows that go into one of those, like the boxes are the outputs, and a set of arrows that goes into one such box is kind of a build step that produces that output, and that's conceptually where we're starting from. And we might have a signing step anywhere in our dependency graph, right? No matter if it's a huge one or a small one,

01:02

there might be a signing step in there, and that's what I'm talking about. So the first thing that doesn't really have to do with signatures is, but it's important, is that we have this nixbuild rebuild command, which lets us rerun individual build steps,

01:21

but it's individual steps, right? So we're not producing the graph again. We're just rerunning the last, the bottom load, right? And there's also, there's a few issues with signatures specifically.

01:40

They might be anywhere in our output artifact embedded somewhere, right? They might be produced by any build steps. Actually, nix is quite nice for reproducibility because we can kind of split up our build into different steps and then deal with reproducibility on an individual step level, which makes things easier.

02:04

But with signatures, our signing step might not be deterministic. That's an issue with some signing schemes. But mostly it's, we probably don't have access to the key, right? So the reason why we're wanting to reproduce an artifact

02:22

is because we don't want to trust the person that's producing it. So we want to be able to do it on our own. And with signatures, that's kind of incompatible, right? And still, if we can't avoid having a signature somewhere, we can still manage that problem

02:40

and that's an improvement. And we can manage that problem by verifying the signatures. And this is something that we can model in nix. So the rough idea is this. We have some unsigned thing that we want to sign and we have a signing step that then produces some unverified artifact. And then we have an explicit verification step

03:02

and then that produces a verified artifact. And the key goes into the signing step but it doesn't go into the verification step. So one derivation for signing and one derivation for verification. And yeah, this means that if we can reproduce the verification step, we don't have to trust

03:21

the signing step any longer. And now let's look at what that can specifically look like in nix, right? So I have some nix code here and it's pretty unsurprising. It just takes the unsigned thing and then runs a command to sign it. This is probably gonna be impure in practice.

03:44

And then outputs the signed artifact. But this is not the full story because here we have a first kind of weird thing which is a load-bearing comment. So this comment is required to make substitution work

04:01

correctly with what I'm constructing here. We're putting the key fingerprint into the derivation here so that substitution will actually only substitute things that have a signature with the correct key fingerprint. And actually, if we were to want to properly do this,

04:21

we would want to verify the signature here as well so that we can't upload something that's signed with the wrong key by mistake. And then the second step, the verification looks kind of similar. It just takes the input, verifies the signature, verifies that it's signed with the correct key that we're expecting.

04:43

And yeah, and if that's the case, then it just passes the output along. But here again, there's a caveat. We would also have to verify that the unsigned thing matches what we expect to really not have to trust the signing derivation anymore.

05:02

And there's a last thing that I did in here which is this environment variable that says Verifies. That's kind of a bit of a magical thing. So it's metadata actually, and it makes the verifying derivation point to the signing derivation. And we can use that information in tools

05:24

so that they can manage this additional information and let us know, oh, hey, this one derivation might not be reproducible, but there's some other derivation that exists that is reproducible, and it verifies what the other one was doing.

05:42

So it's kind of a better state because we can track and manage that part of our build process that is not reproducible. And that's everything that I have. Thanks, everyone. If you have questions, please ask them later on.

06:02

Please say hello. I'd be happy. I'm looking for collaborators on this and other things related to reproducibility. Thanks, everyone.