Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tools: make code cache and snapshot deterministic #29142

Closed
wants to merge 3 commits into from
Closed

tools: make code cache and snapshot deterministic #29142

wants to merge 3 commits into from

Conversation

bnoordhuis
Copy link
Member

Use a fixed random seed to ensure that the generated sources are
identical across runs.

The final node binary still reseeds itself on start-up so there should
be no security implications caused by predictable random numbers (e.g.,
Math.random(), ASLR, the hash seed, etc.)

Fixes: #29108

@bnoordhuis
tools: make code cache and snapshot deterministic
6c2ba8d 
Use a fixed random seed to ensure that the generated sources are
identical across runs.

The final node binary still reseeds itself on start-up so there should
be no security implications caused by predictable random numbers (e.g.,
`Math.random()`, ASLR, the hash seed, etc.)

Fixes: nodejs#29108
@bnoordhuis
fixup! add Math.random() regression test
4d9611c
@nodejs-github-bot nodejs-github-bot added the tools Issues and PRs related to the tools directory. label Aug 15, 2019
@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/24993/

devsnek
devsnek approved these changes Aug 15, 2019
View reviewed changes
tools/code_cache/mkcodecache.cc
@@ -26,6 +26,8 @@ int wmain(int argc, wchar_t* argv[]) {
int main(int argc, char* argv[]) {
#endif // _WIN32

v8::V8::SetFlagsFromString("--random_seed=42");
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

IEEE 1149.5 specifies 4 as the random number.

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/24994/

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/24995/

@bnoordhuis
Copy link
Member Author

Hrm, looks like retrieval from the cache fails unless node is also started with --random_seed=42. The hash of the command line flags is part of the code cache's checksum.

I can work around that by resetting --random_seed=0 just before creating the code cache. Not super elegant but it does the trick. It's interesting that snapshot creation is unaffected.

@devsnek
Copy link
Member

devsnek commented Aug 15, 2019

also @nodejs/v8

@ChALkeR
Copy link
Member

ChALkeR commented Aug 15, 2019
edited
Loading

Also /cc @nodejs/security @indutny just in case.

Thought I don't see how the seed for static (i.e. shared across runs and public) cache generation should affect security (for the reasons stated in #29108).

@joyeecheung
Copy link
Member

pummel/test-hash-seed: https://ci.nodejs.org/job/node-test-commit-custom-suites-freestyle/8546/

@Trott
Copy link
Member

Trott commented Aug 19, 2019

Hrm, looks like retrieval from the cache fails unless node is also started with --random_seed=42. The hash of the command line flags is part of the code cache's checksum.

I can work around that by resetting --random_seed=0 just before creating the code cache. Not super elegant but it does the trick. It's interesting that snapshot creation is unaffected.

@bnoordhuis Would I be correct to conclude from the above comments that this shouldn't land yet?

@bnoordhuis
Copy link
Member Author

@Trott I incorporated the necessary fixes. bnoordhuis/io.js@ed2c673 is the fix but the timestamp may be throwing off GH because it shows up before my comment.

@Trott
Copy link
Member

Trott commented Aug 20, 2019

Landed in 5116a6a

@Trott Trott closed this Aug 20, 2019
Trott pushed a commit that referenced this pull request Aug 20, 2019
@bnoordhuis @Trott
tools: make code cache and snapshot deterministic
5116a6a 
Use a fixed random seed to ensure that the generated sources are
identical across runs.

The final node binary still reseeds itself on start-up so there should
be no security implications caused by predictable random numbers (e.g.,
`Math.random()`, ASLR, the hash seed, etc.)

Fixes: #29108

PR-URL: #29142
Reviewed-By: Gus Caplan <me@gus.host>
Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
Reviewed-By: Anna Henningsen <anna@addaleax.net>
targos pushed a commit that referenced this pull request Aug 20, 2019
@bnoordhuis @targos
tools: make code cache and snapshot deterministic
c4f6077 
Use a fixed random seed to ensure that the generated sources are
identical across runs.

The final node binary still reseeds itself on start-up so there should
be no security implications caused by predictable random numbers (e.g.,
`Math.random()`, ASLR, the hash seed, etc.)

Fixes: #29108

PR-URL: #29142
Reviewed-By: Gus Caplan <me@gus.host>
Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
Reviewed-By: Anna Henningsen <anna@addaleax.net>
@targos targos mentioned this pull request Aug 20, 2019
Merged
@bnoordhuis bnoordhuis deleted the fix29108 branch August 20, 2019 10:43
@ChALkeR
Copy link
Member

ChALkeR commented Aug 20, 2019

@bnoordhuis Yes, I can confirm that this fixes the issue. Thanks!
Unzipping the same archive and building on Linux in the same path now produces identical results (zero differences between the dirs produced on two consecutive runs).

This was referenced Aug 20, 2019
Closed
Closed
Closed
Closed
Closed
Closed
@sxa sxa mentioned this pull request Apr 12, 2023
Open
@joyeecheung joyeecheung mentioned this pull request Jul 12, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@devsnek devsnek devsnek approved these changes

@cjihrig cjihrig cjihrig approved these changes

@addaleax addaleax addaleax approved these changes

Assignees
No one assigned
Labels
tools Issues and PRs related to the tools directory.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

node_code_cache.cc and node_snapshot.cc generation is unreproducible
8 participants
@bnoordhuis @nodejs-github-bot @devsnek @ChALkeR @joyeecheung @Trott @addaleax @cjihrig