[PATCH] D66426: [lld] Enable a watermark of loadable sections to be generated and placed in a note section
Chris Jackson via llvm-commits
llvm-commits at lists.llvm.org
Tue Dec 3 08:45:47 PST 2019
The watermark is intended to detect changes in the loadable image of the
binary, not all of the ELF file e.g. ignore debug data. As you've stated,
it is there to detect post-link modifications to the loadable segments.
On Tue, Dec 3, 2019 at 8:46 AM Jon Chesterfield via Phabricator <
reviews at reviews.llvm.org> wrote:
> JonChesterfield added a comment.
>
> In D66426#1761836 <https://reviews.llvm.org/D66426#1761836>,
> @chrisjackson wrote:
>
> > A post-link modification could recalculate and update the hash, but this
> would only occur in a deliberate attempt to subvert the watermark mechanism
>
>
> I think it follows that this patch only detects accidental modifications
> to the binary that occur after linking. That seems to put is in the realm
> of network transmission errors, disk bit rot, optical media errors and so
> forth.
>
> In which case, why only guard a subset of the binary, instead of computing
> a sha256 of all the compiled artifacts and checking that at install/network
> copy time? Then there is again no linker patch required.
>
> Unless this is intended to catch people who deliberately change the
> binary, but lack the skills to then update the hash, which is surely
> vanishingly few people. Fewer when provided with convenient tools to
> recalculate the hash.
>
>
> CHANGES SINCE LAST ACTION
> https://reviews.llvm.org/D66426/new/
>
> https://reviews.llvm.org/D66426
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-commits/attachments/20191203/201ec7c0/attachment.html>
More information about the llvm-commits
mailing list