| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aC9ZSujcZkZ5KvEy@x1>
Date: Thu, 22 May 2025 14:05:14 -0300
From: Arnaldo Carvalho de Melo <acme@...nel.org>
To: Yuzhuo Jing <yuzhuo@...gle.com>
Cc: Peter Zijlstra <peterz@...radead.org>, Ingo Molnar <mingo@...hat.com>,
Namhyung Kim <namhyung@...nel.org>,
Mark Rutland <mark.rutland@....com>,
Alexander Shishkin <alexander.shishkin@...ux.intel.com>,
Jiri Olsa <jolsa@...nel.org>, Ian Rogers <irogers@...gle.com>,
Adrian Hunter <adrian.hunter@...el.com>,
Liang Kan <kan.liang@...ux.intel.com>,
Nathan Chancellor <nathan@...nel.org>,
Nick Desaulniers <nick.desaulniers+lkml@...il.com>,
Bill Wendling <morbo@...gle.com>,
Justin Stitt <justinstitt@...gle.com>,
"Steven Rostedt (Google)" <rostedt@...dmis.org>,
James Clark <james.clark@...aro.org>,
Tomas Glozar <tglozar@...hat.com>, Leo Yan <leo.yan@....com>,
Guilherme Amadio <amadio@...too.org>,
Yang Jihong <yangjihong@...edance.com>,
"Masami Hiramatsu (Google)" <mhiramat@...nel.org>,
Adhemerval Zanella <adhemerval.zanella@...aro.org>,
Wei Yang <richard.weiyang@...il.com>,
Ard Biesheuvel <ardb@...nel.org>,
"Mike Rapoport (Microsoft)" <rppt@...nel.org>,
Athira Rajeev <atrajeev@...ux.vnet.ibm.com>,
Kajol Jain <kjain@...ux.ibm.com>,
Aditya Gupta <adityag@...ux.ibm.com>,
Charlie Jenkins <charlie@...osinc.com>,
"Steinar H. Gunderson" <sesse@...gle.com>,
"Dr. David Alan Gilbert" <linux@...blig.org>,
Herbert Xu <herbert@...dor.apana.org.au>,
Jeff Johnson <jeff.johnson@....qualcomm.com>,
Al Viro <viro@...iv.linux.org.uk>, linux-kernel@...r.kernel.org,
linux-perf-users@...r.kernel.org, llvm@...ts.linux.dev
Subject: Re: [PATCH v1 3/4] perf genelf: Remove libcrypto dependency and use
sha1 utils
On Wed, May 21, 2025 at 03:53:06PM -0700, Yuzhuo Jing wrote:
> genelf is the only file in perf that depends on libcrypto (or openssl)
> which only calculates a Build ID (SHA1, MD5, or URANDOM). SHA1 was
> expected to be the default option, but MD5 was used by default due to
> previous issues when linking against Java. This commit switches genelf
> to use in-house SHA1 utils, and also removes MD5 and URANDOM options
> since we have a reliable SHA1 implementation to rely on. It passes the
> tools/perf/tests/shell/test_java_symbol.sh test.
Cool, I was going to ask if there was some 'perf test' this could be
tested with, there is, good.
- Arnaldo
> Signed-off-by: Yuzhuo Jing <yuzhuo@...gle.com>
> ---
> tools/perf/util/genelf.c | 72 ++++------------------------------------
> 1 file changed, 6 insertions(+), 66 deletions(-)
>
> diff --git a/tools/perf/util/genelf.c b/tools/perf/util/genelf.c
> index cdce7f173d00..cfedb29260ef 100644
> --- a/tools/perf/util/genelf.c
> +++ b/tools/perf/util/genelf.c
> @@ -28,24 +28,7 @@
> #define NT_GNU_BUILD_ID 3
> #endif
>
> -#define BUILD_ID_URANDOM /* different uuid for each run */
> -
> -#ifdef HAVE_LIBCRYPTO_SUPPORT
> -
> -#define BUILD_ID_MD5
> -#undef BUILD_ID_SHA /* does not seem to work well when linked with Java */
> -#undef BUILD_ID_URANDOM /* different uuid for each run */
> -
> -#ifdef BUILD_ID_SHA
> -#include <openssl/sha.h>
> -#endif
> -
> -#ifdef BUILD_ID_MD5
> -#include <openssl/evp.h>
> -#include <openssl/md5.h>
> -#endif
> -#endif
> -
> +#include "sha1_base.h"
>
> typedef struct {
> unsigned int namesz; /* Size of entry's owner string */
> @@ -92,64 +75,21 @@ static Elf_Sym symtab[]={
> }
> };
>
> -#ifdef BUILD_ID_URANDOM
> -static void
> -gen_build_id(struct buildid_note *note,
> - unsigned long load_addr __maybe_unused,
> - const void *code __maybe_unused,
> - size_t csize __maybe_unused)
> -{
> - int fd;
> - size_t sz = sizeof(note->build_id);
> - ssize_t sret;
> -
> - fd = open("/dev/urandom", O_RDONLY);
> - if (fd == -1)
> - err(1, "cannot access /dev/urandom for buildid");
> -
> - sret = read(fd, note->build_id, sz);
> -
> - close(fd);
> -
> - if (sret != (ssize_t)sz)
> - memset(note->build_id, 0, sz);
> -}
> -#endif
> -
> -#ifdef BUILD_ID_SHA
> static void
> gen_build_id(struct buildid_note *note,
> unsigned long load_addr __maybe_unused,
> const void *code,
> size_t csize)
> {
> - if (sizeof(note->build_id) < SHA_DIGEST_LENGTH)
> - errx(1, "build_id too small for SHA1");
> -
> - SHA1(code, csize, (unsigned char *)note->build_id);
> -}
> -#endif
> -
> -#ifdef BUILD_ID_MD5
> -static void
> -gen_build_id(struct buildid_note *note, unsigned long load_addr, const void *code, size_t csize)
> -{
> - EVP_MD_CTX *mdctx;
> + struct sha1_state sctx;
>
> - if (sizeof(note->build_id) < 16)
> - errx(1, "build_id too small for MD5");
> + if (sizeof(note->build_id) < SHA1_DIGEST_SIZE)
> + errx(1, "build_id too small for SHA1");
>
> - mdctx = EVP_MD_CTX_new();
> - if (!mdctx)
> - errx(2, "failed to create EVP_MD_CTX");
> + sha1_base_init(&sctx);
>
> - EVP_DigestInit_ex(mdctx, EVP_md5(), NULL);
> - EVP_DigestUpdate(mdctx, &load_addr, sizeof(load_addr));
> - EVP_DigestUpdate(mdctx, code, csize);
> - EVP_DigestFinal_ex(mdctx, (unsigned char *)note->build_id, NULL);
> - EVP_MD_CTX_free(mdctx);
> + crypto_sha1_finup(&sctx, code, csize, (unsigned char *)note->build_id);
> }
> -#endif
>
> static int
> jit_add_eh_frame_info(Elf *e, void* unwinding, uint64_t unwinding_header_size,
> --
> 2.49.0.1164.gab81da1b16-goog
Powered by blists - more mailing lists