Include PDB Checksum in Debug Directory #24711
Conversation
tmat
changed the title
tmat
changed the title
tmat
changed the title
|
@dotnet/compiler-api Please review. |
|
Can you please elaborate on the "Risk" identified? How many (and what) tools are likely to be affected? |
| runtimeMetadataVersion, | ||
| tolerateErrors, | ||
| includePrivateMembers, | ||
| instrumentationKinds: ImmutableArray<InstrumentationKind>.Empty, |
There was a problem hiding this comment.
instrumentationKinds [](start = 18, length = 20)
I think the value of this parameter should not be Empty, but rather the value of the incoming parameter.
There was a problem hiding this comment.
You are right. Apparently we are missing code coverage here.
| { | ||
| IncrementalHash.CreateHash(HashAlgorithm).Dispose(); | ||
| } | ||
| catch |
There was a problem hiding this comment.
catch [](start = 12, length = 5)
A catch-all like this is a bit scary.
There was a problem hiding this comment.
We are calling to external library (BCL). Any exception that happens means the hash algorithm is bad or there is a bug in BCL. Either way we report a diagnostic. Sure, we can hit OOM, or stack overflow, but such exceptions will be rethrown anyways even if we catch them here.
There was a problem hiding this comment.
|
@gafter @MattGertz @jinujoseph I hear some compat and perf concerns with switching to SHA256 by default. I think I can leave the default source hash be SHA1 and create another PR that switches it to SHA256, so to not block the PDB Checksum feature on this decision. I thought the SHA256 switch is a prereq but on second thought it doesn't need to be. |
tmat
changed the title
|
@gafter Yes, I'll address the EmitOptions bug. |
|
I think splitting the PDB checksum feature from the change in default algorithm (i.e. have two PRs) is a good idea. |
|
@tmat That seems like a good beginning and we can debate the defaults later on if/as needed. |
|
@jac009 only as FYI since he was curious about the direction here. |
tmat
changed the title
| public string AlgorithmName { get; } | ||
|
|
||
| /// <summary> | ||
| /// GUID (Globally Unique Identifier) of the associated PDB. |
There was a problem hiding this comment.
GUID (Globally Unique Identifier) of the associated PDB. [](start = 12, length = 56)
Maybe improve the comment. I think it is a checksum and we could expect it to be unique but it maybe uncommon to refer it as GUID.
tmat
changed the title
|
@dotnet/compiler-api Updated the PR to only add PDB Checksum and leave usage of SHA1 as is (except for hashing PDBs). |
|
Test failure: #24758 |
|
test windows_release_unit64_prtest please |
|
@dotnet/roslyn-compiler Can I have a second review please? |
|
The change to SHA256 is now in a separate PR: #24820 |
| using Xunit; | ||
|
|
||
| namespace Roslyn.Utilities.UnitTests.InternalUtilities | ||
| { | ||
| using System.Linq; |
There was a problem hiding this comment.
Please move the using outside the namespace.
There was a problem hiding this comment.
Will fix. Somehow the "Add using" added it here :(
There was a problem hiding this comment.
Actually, this using is required inside the namespace. Both Roslyn.Utilities and System.Linq namespaces have EnumerableExtensions. We want to test the latter here.
| @@ -1309,7 +1310,9 @@ public new CSharpCommandLineArguments Parse(IEnumerable<string> args, string bas | |||
| fileAlignment: fileAlignment, | |||
| subsystemVersion: subsystemVersion, | |||
| runtimeMetadataVersion: runtimeMetadataVersion, | |||
| instrumentationKinds: instrumentationKinds.ToImmutableAndFree() | |||
| instrumentationKinds: instrumentationKinds.ToImmutableAndFree(), | |||
| // TODO: set from /checksumalgorithm (see https://github.com/dotnet/roslyn/issues/24735) | |||
There was a problem hiding this comment.
Why are we holding off on this part, seems important here?
There was a problem hiding this comment.
It is not that important. The algorithm used for PDB checksum in this PR is hardcoded to SHA256, which is good enough. Allowing to set the value to SHA384 or SHA512 will be important in future, but it can wait a bit.
The reason to hold off is the default value of this switch. Right now it's SHA1, which is not acceptable for PDB checksum. The default has to be at least SHA256. If we want to use the same switch for both source checksums and PDB checksums then we need to set the default for source checksums to SHA256 first.
* features/compiler: (118 commits) Fix up test failures Post merge cleanup SubstituteNoPiaLocalType - use comparison of SpecialTypes to match bases across distinct core libraries. (dotnet#24965) Respond to PR feedback PR feedback PR Feedback Fix tests Standardized on the doc mcomments Unified most helpers now Standardize the IL helpers Unify the WinRT overloads Unify the CompileAndVerify Unify overloads Fix a name Implement improved overload candidates, aka "Bestest Betterness". (dotnet#24756) Include PDB Checksum in Debug Directory (dotnet#24711) Disable multicore jitting More renames Fixed up the unit tests Fix a compilation issue ...
Changes
Generate Portable PDB ID deterministically based on the hash of the content, rather than from a timestamp, regardless of whether
/deterministicis set or not.Store the full secure hash of the PDB content in a new Debug Directory entry. This entry is emitted by default unless emitting a script.
Details
The CodeView debug directory entry in PE/COFF file associates the PE file with one or more PDBs. The CodeView entry and the PDB both store the same PDB ID (for Portable PDB it's 20B for Windows PDB it's 16B of data). Debuggers, symbol servers and other tools use the PDB ID to match the PE file with the PDB.
Although the PDB ID is good enough for finding the right PDB for the PE file it is not good enough for validating that the PDB has not been maliciously modified. PDB Checksum is a new debug directory record that can be used for such validation.
PDB Checksum comprises of crypto hash algorithm name and the hash of the PDB content. See
Specification for details.
The implementation uses a bit of reflection as a workaround for APIs not yet implemented in System.Reflection.Metadata: https://github.com/dotnet/corefx/issues/26935. This workaround will be removed once we move to the latest SRM. Tracked by #24712.
Public API additions
Adds
EmitOptions.PdbChecksumAlgorithm,EmitOptions.WithPdbChecksumAlgorithmand newEmitOptionsconstructor taking a hash algorithm.Bugs this fixes
Workarounds, if any
None.
Risk
Small.
Performance impact
Small.
Is this a regression from a previous update?
Root cause analysis
How was the bug found?
Test documentation updated?