This is an archive of the discontinued LLVM Phabricator instance.

Differential D113991

Support using sha256 as --build-id kind
AbandonedPublic

Authored by serge-sans-paille on Nov 16 2021, 5:48 AM.

Details

Reviewers
MaskRay
Summary

Both sha1 and md5 are considered deprecated, it would be great to support a more recent/secure hashing algorithm to compute build id

Diff Detail

Event Timeline

serge-sans-paille created this revision.Nov 16 2021, 5:48 AM
Herald added subscribers: arichardson, emaste. · View Herald TranscriptNov 16 2021, 5:48 AM
serge-sans-paille requested review of this revision.Nov 16 2021, 5:48 AM
Herald added a project: Restricted Project. · View Herald TranscriptNov 16 2021, 5:48 AM
Herald added a subscriber: llvm-commits. · View Herald Transcript
serge-sans-paille added a comment.Nov 16 2021, 5:49 AM

No test case yet, I'll add them if the commit makes sense.

Harbormaster completed remote builds in B134497: Diff 387590.Nov 16 2021, 5:55 AM
MaskRay added a comment.Nov 16 2021, 10:11 AM

The SHA-1 deprecation, AFIAK, is for digital signature.
ld.lld's --build-id feature, as I know, has no validation tool. It is used for "approximation of true uniqueness across all binaries that might be used by overlapping sets of people" (https://fedoraproject.org/w/index.php?title=RolandMcGrath/BuildID&oldid=16098), not for security purposes.
So I think the description

Both sha1 and md5 are considered deprecated,

does not apply.

That said, adding the option is straightforward/simply. If useful, we can add it, but the justification needs to be higher than "Transport Layer Security has phased out SHA-1, so we follow suit"
Will GNU ld add this option?

joerg added a subscriber: joerg.Nov 16 2021, 1:26 PM

Exactly. This patch only provides a way to tick a checkbox on a stupid compliance list. SHA2 provides no security benefit here for the price of slower linking. If we want to use a more modern cryptographic hash function, the primary criterion should be performance, IMO.

serge-sans-paille added a comment.Nov 17 2021, 1:23 PM
In D113991#3135869, @joerg wrote:

Exactly. This patch only provides a way to tick a checkbox on a stupid compliance list. SHA2 provides no security benefit here for the price of slower linking. If we want to use a more modern cryptographic hash function, the primary criterion should be performance, IMO.

I second that opinion :-) Then blake2 (see https://en.wikipedia.org/wiki/BLAKE_(hash_function)) would be a good match. The reference implementation is covered by the Apache Public License 2.0 so that would be fine license wise, and it claims to be "faster than MD5, SHA-1, SHA-2, and SHA-3, on 64-bit x86-64 and ARM architectures"

MaskRay added a comment.EditedNov 17 2021, 6:49 PM

In 2020-01 I did notice that build-id may be a performance bottleneck. The need to import external code made me unsure whether it is justified.

If you are motivated, you may check the benchmark and check this issue for SHF_STRINGS|SHF_MERGE https://bugs.llvm.org/show_bug.cgi?id=37029

Also note that our SHA1 impl is inefficient. There is room for improvement, e.g. D69295

MaskRay requested changes to this revision.Dec 29 2021, 6:45 PM
This revision now requires changes to proceed.Dec 29 2021, 6:45 PM
MaskRay added a comment.Mar 12 2022, 12:01 PM

I created D121531 to use BLAKE3.

Herald added a project: Restricted Project. · View Herald TranscriptMar 12 2022, 12:01 PM
serge-sans-paille abandoned this revision.Jun 13 2022, 12:28 AM

Blake3 adopted instead

Herald added a subscriber: StephenFan. · View Herald TranscriptJun 13 2022, 12:28 AM

Revision Contents

PathSize
lld/
ELF/
2 lines
2 lines
2 lines
6 lines

Diff 387590

lld/ELF/Config.h

Show All 37 Linesenum ELFKind {
ELF64BEKind ELF64BEKind
}; };
// For -Bno-symbolic, -Bsymbolic-non-weak-functions, -Bsymbolic-functions, // For -Bno-symbolic, -Bsymbolic-non-weak-functions, -Bsymbolic-functions,
// -Bsymbolic. // -Bsymbolic.
enum class BsymbolicKind { None, NonWeakFunctions, Functions, All }; enum class BsymbolicKind { None, NonWeakFunctions, Functions, All };
// For --build-id. // For --build-id.
enum class BuildIdKind { None, Fast, Md5, Sha1, Hexstring, Uuid }; enum class BuildIdKind { None, Fast, Md5, Sha1, Sha256, Hexstring, Uuid };
// For --discard-{all,locals,none}. // For --discard-{all,locals,none}.
enum class DiscardPolicy { Default, All, Locals, None }; enum class DiscardPolicy { Default, All, Locals, None };
// For --icf={none,safe,all}. // For --icf={none,safe,all}.
enum class ICFLevel { None, Safe, All }; enum class ICFLevel { None, Safe, All };
// For --strip-{all,debug}. // For --strip-{all,debug}.
▲ Show 20 LinesShow All 322 LinesShow Last 20 Lines

lld/ELF/Driver.cpp

Show First 20 LinesShow All 777 Lines▼ Show 20 LinesgetBuildId(opt::InputArgList &args) {
StringRef s = arg->getValue(); StringRef s = arg->getValue();
if (s == "fast") if (s == "fast")
return {BuildIdKind::Fast, {}}; return {BuildIdKind::Fast, {}};
if (s == "md5") if (s == "md5")
return {BuildIdKind::Md5, {}}; return {BuildIdKind::Md5, {}};
if (s == "sha1" || s == "tree") if (s == "sha1" || s == "tree")
return {BuildIdKind::Sha1, {}}; return {BuildIdKind::Sha1, {}};
if (s == "sha256")
return {BuildIdKind::Sha256, {}};
if (s == "uuid") if (s == "uuid")
return {BuildIdKind::Uuid, {}}; return {BuildIdKind::Uuid, {}};
if (s.startswith("0x")) if (s.startswith("0x"))
return {BuildIdKind::Hexstring, parseHex(s.substr(2))}; return {BuildIdKind::Hexstring, parseHex(s.substr(2))};
if (s != "none") if (s != "none")
error("unknown --build-id style: " + s); error("unknown --build-id style: " + s);
return {BuildIdKind::None, {}}; return {BuildIdKind::None, {}};
▲ Show 20 LinesShow All 1,711 LinesShow Last 20 Lines

lld/ELF/SyntheticSections.cpp

Show First 20 LinesShow All 274 Lines▼ Show 20 Linesstatic size_t getHashSize() {
switch (config->buildId) { switch (config->buildId) {
case BuildIdKind::Fast: case BuildIdKind::Fast:
return 8; return 8;
case BuildIdKind::Md5: case BuildIdKind::Md5:
case BuildIdKind::Uuid: case BuildIdKind::Uuid:
return 16; return 16;
case BuildIdKind::Sha1: case BuildIdKind::Sha1:
return 20; return 20;
case BuildIdKind::Sha256:
return 32;
case BuildIdKind::Hexstring: case BuildIdKind::Hexstring:
return config->buildIdVector.size(); return config->buildIdVector.size();
default: default:
llvm_unreachable("unknown BuildIdKind"); llvm_unreachable("unknown BuildIdKind");
} }
} }
// This class represents a linker-synthesized .note.gnu.property section. // This class represents a linker-synthesized .note.gnu.property section.
▲ Show 20 LinesShow All 3,651 LinesShow Last 20 Lines

lld/ELF/Writer.cpp

Show All 22 Lines
#include "lld/Common/Filesystem.h" #include "lld/Common/Filesystem.h"
#include "lld/Common/Memory.h" #include "lld/Common/Memory.h"
#include "lld/Common/Strings.h" #include "lld/Common/Strings.h"
#include "llvm/ADT/StringMap.h" #include "llvm/ADT/StringMap.h"
#include "llvm/ADT/StringSwitch.h" #include "llvm/ADT/StringSwitch.h"
#include "llvm/Support/Parallel.h" #include "llvm/Support/Parallel.h"
#include "llvm/Support/RandomNumberGenerator.h" #include "llvm/Support/RandomNumberGenerator.h"
#include "llvm/Support/SHA1.h" #include "llvm/Support/SHA1.h"
#include "llvm/Support/SHA256.h"
#include "llvm/Support/TimeProfiler.h" #include "llvm/Support/TimeProfiler.h"
#include "llvm/Support/xxhash.h" #include "llvm/Support/xxhash.h"
#include <climits> #include <climits>
#define DEBUG_TYPE "lld" #define DEBUG_TYPE "lld"
using namespace llvm; using namespace llvm;
using namespace llvm::ELF; using namespace llvm::ELF;
▲ Show 20 LinesShow All 2,992 Lines▼ Show 20 Lines computeHash(buildId, buf, [&](uint8_t *dest, ArrayRef<uint8_t> arr) {
memcpy(dest, MD5::hash(arr).data(), hashSize); memcpy(dest, MD5::hash(arr).data(), hashSize);
}); });
break; break;
case BuildIdKind::Sha1: case BuildIdKind::Sha1:
computeHash(buildId, buf, [&](uint8_t *dest, ArrayRef<uint8_t> arr) { computeHash(buildId, buf, [&](uint8_t *dest, ArrayRef<uint8_t> arr) {
memcpy(dest, SHA1::hash(arr).data(), hashSize); memcpy(dest, SHA1::hash(arr).data(), hashSize);
}); });
break; break;
case BuildIdKind::Sha256:
computeHash(buildId, buf, [&](uint8_t *dest, ArrayRef<uint8_t> arr) {
memcpy(dest, SHA256::hash(arr).data(), hashSize);
});
break;
case BuildIdKind::Uuid: case BuildIdKind::Uuid:
if (auto ec = llvm::getRandomBytes(buildId.data(), hashSize)) if (auto ec = llvm::getRandomBytes(buildId.data(), hashSize))
error("entropy source failure: " + ec.message()); error("entropy source failure: " + ec.message());
break; break;
default: default:
llvm_unreachable("unknown BuildIdKind"); llvm_unreachable("unknown BuildIdKind");
} }
for (Partition &part : partitions) for (Partition &part : partitions)
Show All 12 Lines