From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from foss.arm.com (foss.arm.com [217.140.110.172]) by sourceware.org (Postfix) with ESMTP id 030FA3858439; Fri, 14 Apr 2023 15:07:46 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 030FA3858439 Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=foss.arm.com Authentication-Results: sourceware.org; spf=none smtp.mailfrom=foss.arm.com Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 490B72F4; Fri, 14 Apr 2023 08:08:31 -0700 (PDT) Received: from [10.2.78.76] (unknown [10.2.78.76]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 1A17C3F6C4; Fri, 14 Apr 2023 08:07:45 -0700 (PDT) Message-ID: Date: Fri, 14 Apr 2023 16:07:44 +0100 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.9.0 Subject: Re: Threat model for GNU Binutils Content-Language: en-GB To: Siddhesh Poyarekar , Binutils Mailing List , gdb@sourceware.org Cc: Nick Clifton References: <032c1307-c143-3f2c-0502-683d966f0257@foss.arm.com> <78f3e6a6-dec2-3aa2-d1b6-935d842add1e@gotplt.org> From: Richard Earnshaw In-Reply-To: <78f3e6a6-dec2-3aa2-d1b6-935d842add1e@gotplt.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-3490.5 required=5.0 tests=BAYES_00,KAM_DMARC_STATUS,KAM_LAZY_DOMAIN_SECURITY,NICE_REPLY_A,SPF_HELO_NONE,SPF_NONE,TXREP,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: On 14/04/2023 15:08, Siddhesh Poyarekar wrote: > There's also a (rare) possibility of an infrequently used instruction > having incorrect opcode mapping, resulting in a bug being masked when > dumped with objdump or resulting code having undefined behaviour. The best way to deal with this risk is to run test binaries generated by the tools through an independently developed toolchain; something I mentioned in the mitigation section. The chances of a common-mode failure leading to the same bug in both sets of tools is very low. R.