From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-1.1 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, RCVD_IN_ZEN_BLOCKED_OPENDNS,URIBL_DBL_BLOCKED_OPENDNS, URIBL_ZEN_BLOCKED_OPENDNS autolearn=ham autolearn_force=no version=3.4.4 Received: from txout-a3-smtp.messagingengine.com (txout-a3-smtp.messagingengine.com [103.168.172.226]) by inbox.vuxu.org (Postfix) with ESMTP id 8239A228E7 for ; Mon, 29 Dec 2025 16:22:34 +0100 (CET) Received: from localhost.localdomain (phl-topicbox-02.internal [10.202.2.220]) by mailtxout.phl.internal (Postfix) with ESMTP id 328F11C01AD for ; Mon, 29 Dec 2025 10:22:34 -0500 (EST) ARC-Authentication-Results: i=2; topicbox.com; arc=pass; dkim=pass (2048-bit rsa key sha256) header.d=sirjofri.de header.i=@sirjofri.de header.b=H2vrQXkM header.a=rsa-sha256 header.s=dkimone x-bits=2048; dmarc=pass policy.published-domain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=sirjofri.de; spf=pass smtp.mailfrom=sirjofri+ml-9fans@sirjofri.de smtp.helo=sirjofri.de; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=date:to:message-id:in-reply-to:references :subject:mime-version:content-type:content-transfer-encoding :list-help:list-id:list-post:list-subscribe:reply-to:from :list-unsubscribe; s=sysmsg-1; t=1767021754; bh=YX0gAfmsenymtsTE edxG0+3O48dFVrf2QAyiSQjG5TY=; b=fcPy5o1aLpPOl7ZBTq8UKF3pdQvwZAFF 80KiCjjo6OlQNo+hupqWtpYZVoshChdY5hnenyiGxyi9KquMyXGScM8Tjn8UNHKp 6GBCWRX6ZoaFIve9znnwtsvG2i2i2BFZlco2MhFVTa71K+xlBUUfllbohffsHGsJ K1JSseBKDVM= ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1767021754; b=A4FTySssWvl1aVSwm1tQaGbD1KPhL6n/Mq8XWdw2vsrLKxeLVm 08znwpV5Ag2TRrEBoGWeM5kvnCncuU+m+v+UBXv24s6gCByrOQ+2O8Pqy6zTJ6Ep LUEodd8K8or6Mu6WY4Kw0r2s9pQRQ4/bXpWGG8Mjzy7vjEmX0tQjoxO5I= Authentication-Results: topicbox.com; arc=pass; dkim=pass (2048-bit rsa key sha256) header.d=sirjofri.de header.i=@sirjofri.de header.b=H2vrQXkM header.a=rsa-sha256 header.s=dkimone x-bits=2048; dmarc=pass policy.published-domain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=sirjofri.de; spf=pass smtp.mailfrom=sirjofri+ml-9fans@sirjofri.de smtp.helo=sirjofri.de; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: authmilter.topicbox.com; arc=none (no signatures found); bimi=none (No BIMI records found); dkim=pass (2048-bit rsa key sha256) header.d=sirjofri.de header.i=@sirjofri.de header.b=H2vrQXkM header.a=rsa-sha256 header.s=dkimone x-bits=2048; dmarc=pass policy.published-domain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=sirjofri.de; iprev=pass smtp.remote-ip=5.45.105.127 (sirjofri.de); spf=pass smtp.mailfrom=sirjofri+ml-9fans@sirjofri.de smtp.helo=sirjofri.de; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=sirjofri.de policy.ptr=sirjofri.de; x-return-mx=pass header.domain=sirjofri.de policy.is_org=yes (MX Records found: sirjofri.de); x-return-mx=pass smtp.domain=sirjofri.de policy.is_org=yes (MX Records found: sirjofri.de); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-CHACHA20-POLY1305 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h=date:to :message-id:in-reply-to:references:subject:mime-version :content-type:content-transfer-encoding:list-help:list-id :list-post:list-subscribe:reply-to:from:list-unsubscribe; s= dkim-1; t=1767021754; x=1767108154; bh=YX0gAfmsenymtsTEedxG0+3O4 8dFVrf2QAyiSQjG5TY=; b=YY/Zs5kwZnSf3kkpHYtsOGKUMvpo2PyX8LJZiP0qj TxKp5c7PLKGdEQgVT4xzsPw4o8xkV+46LpQStMz+HNVZNfwlFzX+u4qU/iXCL/Sx gCJWmHBnpGSJlDm5LQGqGyjniMt234qWAepDvJn1+b0zYmD9XQMJ2xmYbQZS3wtt BI= Received: from authmilter.topicbox.com (unknown [172.17.0.1]) by mx.topicbox.com (Postfix) with ESMTP id 7B6994D80027 for <9fans@9fans.net>; Mon, 29 Dec 2025 09:40:44 -0500 (EST) Received: from mx.topicbox.com (172.17.0.1 [172.17.0.1]) by authmilter.topicbox.com (Authentication Milter) with ESMTP id EC4A464F4B8; Mon, 29 Dec 2025 09:40:44 -0500 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1767019244; b=cg4Hy8t73HNvijkh8vWXJ2Xqh2WjQbFxMM2NynmQrfURVXoEU/ oo9CswBqJ1FevwrGERDC+M1WCEd/dirubz7uIivwc7fXx5lmrxMmQ7Fq7mD4Q5Ju 2WuxQ8Jw2pyzD8b5RquPv5uD4CCu0neXZ29vRw5ot+ASc3uO3KHxze4YDIXDs6ip i1Hp9qC6+DuMTlmT35ytV1ySIULU/IWxe3y9GmzgTkZtiWikMqj60mVZ4tZ/3OEX QdQK2XL32b+ADIcl6Pqj7aTSu7Oj0vVkucv1DD66h8S1g4cCX1fLl+Glo7ssAcso a2qO58dreobqIQIF4Uoh/d1bkMbiuupBUKhg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=date:from:to:message-id:in-reply-to:references :subject:mime-version:content-type:content-transfer-encoding; s= arcseal; t=1767019244; bh=GEMdpolefDtI/G/7WaefSMrCXw98NXPb3ozZ+7 g9JkY=; b=nDJg7Uyh0D0S0YufEmpCLfkqswas2G39MKSgS9TprC3lFURvpDdDo1 5E/GcozIUJg6ybrfZmq3SwGNKzaK0eeXHzy10Zp7+W4+McQ+t62QpRb1IXAA/dlG 9yR/So6IPCL8v7W6u4VnwWmDTK7N0oQ8wsoMXI5dp/UwZOe/TeA3Hm027Ke+p7dv 2pb5rPXREkTETvfHMKmtjFdu0wjMQqbLBBDi/rbDPdY03OlJ3zzofVO4aUUp25kM n7q0OGZ7TZ6AzLvYWUzD22Qi9C5Dfpr88K3cbSDqaA9TG9dY+iNEw5k9u9ZFYkJi 406wPQhnTyV8anVV7/B8eL9TS9/CX7ZQ== ARC-Authentication-Results: i=1; authmilter.topicbox.com; arc=none (no signatures found); bimi=none (No BIMI records found); dkim=pass (2048-bit rsa key sha256) header.d=sirjofri.de header.i=@sirjofri.de header.b=H2vrQXkM header.a=rsa-sha256 header.s=dkimone x-bits=2048; dmarc=pass policy.published-domain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=sirjofri.de; iprev=pass smtp.remote-ip=5.45.105.127 (sirjofri.de); spf=pass smtp.mailfrom=sirjofri+ml-9fans@sirjofri.de smtp.helo=sirjofri.de; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=sirjofri.de policy.ptr=sirjofri.de; x-return-mx=pass header.domain=sirjofri.de policy.is_org=yes (MX Records found: sirjofri.de); x-return-mx=pass smtp.domain=sirjofri.de policy.is_org=yes (MX Records found: sirjofri.de); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-CHACHA20-POLY1305 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgeefgedrtddtgdejjeegudcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpggftfghnshhusghstghrihgsvgdp uffrtefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtnecunecujfgurhepfffhvf fkjghfufggtgfgsehtqhertddttdejnecuhfhrohhmpehsihhrjhhofhhrihcuoehsihhr jhhofhhrihdomhhlqdelfhgrnhhssehsihhrjhhofhhrihdruggvqeenucggtffrrghtth gvrhhnpeejvddtgeeuledvgfelteelfedvteeijeduveelgfehteejueehvdfhteekudev teenucfkphephedrgeehrddutdehrdduvdejpdekgedrudeihedrudduledrudejvdenuc evlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepihhnvghtpeehrdeghedruddthedr uddvjedphhgvlhhopehsihhrjhhofhhrihdruggvpdhmrghilhhfrhhomhepoehsihhrjh hofhhrihdomhhlqdelfhgrnhhssehsihhrjhhofhhrihdruggvqedpnhgspghrtghpthht ohepuddprhgtphhtthhopeeolehfrghnsheslehfrghnshdrnhgvtheq X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (sirjofri.de: 5.45.105.127 is authorized to use 'sirjofri+ml-9fans@sirjofri.de' in 'mfrom' identity (mechanism 'mx' matched)) receiver=authmilter.topicbox.com; identity=mailfrom; envelope-from="sirjofri+ml-9fans@sirjofri.de"; helo=sirjofri.de; client-ip=5.45.105.127 Received: from sirjofri.de (sirjofri.de [5.45.105.127]) (using TLSv1.2 with cipher ECDHE-RSA-CHACHA20-POLY1305 (256/256 bits)) (No client certificate requested) by mx.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Mon, 29 Dec 2025 09:40:43 -0500 (EST) Received: from dummy.faircode.eu ([84.165.119.172]) by sirjofri.de; Mon Dec 29 15:40:39 +0100 2025 Date: Mon, 29 Dec 2025 15:40:38 +0100 To: 9fans <9fans@9fans.net> Message-ID: In-Reply-To: <760adea1-7ed3-4c91-a320-8e54267cb01c@app.fastmail.com> References: <760adea1-7ed3-4c91-a320-8e54267cb01c@app.fastmail.com> Subject: Re: [9fans] Solo factotum (was: Enterable namespaces: /proc/pid/$ns/srv) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Correlation-ID: Topicbox-Policy-Reasoning: moderate: sender is a member; group holds all messages Topicbox-Message-UUID: 5bcd94ba-e4c4-11f0-8bb7-1de96bc11ef0 Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UOTY5YzM4MWRjZDljNzYwZC1NMGQyZmY1YTU0M2MxYzA4MzkxNzc4?= =?UTF-8?B?MTVmPg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> From: "sirjofri via 9fans" <9fans@9fans.net> List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:M0d2ff5a543c1c0839177815f:1:CA32GEpapD0tZRHtSnV5rFkPxNqrWoBPlfLsUJBpwaE 29.12.2025 14:03:55 David Arroyo : > On Sun, Dec 14, 2025, at 07:43, sirjofri wrote: >> More ideally, but also offtopic, I's like to have a factotum usb drive, >> where the secrets never leave the usb device. It would talk 9p directly >> over the serial bus. > > I think this is a great idea; an HSM-like device with an interface that > doesn't suck. After some discussion about this idea on IRC, I want to > try and implement it. That sounds cool and I can't wait for the results. > It has a capacitive button > which would work nice with the `confirm` attribute of factotum to require > human presence before using a key. Somehow funny that factotum has this feature that's described in the fido s= tandard years later. > I'm trying to figure out how to serve 9P over USB, which I know very > little about.=C2=A0 My initial plan is to make the device a USB serial > device that expects 9P, then try to mount the /dev/eiaUN device. > However, nusb(4) states that the nusb/serial driver only works for two > chips, so I'd have to add support for this one.=C2=A0 That's not a proble= m, > but am I going in the right direction? I don't know much about USB, though maybe the nusb/serial restriction only = applies for real rxtx serial converters or something? I mean, USB is serial= by its nature so any communication is serial, I guess... But I also don't = know. However, being able to mount 9p from a USB serial line would be inter= esting for many use cases. For the factotum key, another complex issue could be that factotum needs ac= cess to the network interface for auth stuff. I was thinking about this, an= d plan 9 makes it possible to solve this. One could for example put the /ne= t of the host into a /srv of the factotum key, or something like that. In a= ny case, this is a challenge to find a good and clean solution. sirjofri. ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/T969c381dcd9c760d-M0d2ff= 5a543c1c0839177815f Delivery options: https://9fans.topicbox.com/groups/9fans/subscription