std.Build: add build-id option #22516
Conversation
Jan200101
force-pushed
the
PR/build_id_option
branch
3 times, most recently
from
1ed8703 to
ff42fd6
Compare
|
I have mixed feelings about this. On the one hand, this is clearly useful and solves a real problem. On the other hand, it feels iffy that a project's Maybe this is an unwarranted concern, though. |
Forcing the build-id across a whole project would reintroduce issues with MicroZig. the rp2 bootrom is compiled into an elf file and is expected to be 256 bytes, adding a build-id would expand that to ~276 bytes and cause some errors in the code as is. Most people don't know what a build-id is let alone specify one themselves |
|
Ok, fair enough. For the few projects that do define a |
|
maybe? |
|
actually I just realized that zig also has a build-id option within its build.zig which should be removed with this PR |
Jan200101
force-pushed
the
PR/build_id_option
branch
from
a9f4fd5 to
e57673e
Compare
|
rebased on master, would be neat if this could be added to a milestone again since quite a few distros rely on build-id |
|
CI failure is unrelated to the change in the PR
I'll kick off another build and pray it works |
Jan200101
force-pushed
the
PR/build_id_option
branch
from
e57673e to
013a228
Compare
| @@ -202,6 +202,15 @@ pub fn main() !void { | |||
| next_arg, @errorName(err), | |||
| }); | |||
| }; | |||
| } else if (mem.eql(u8, arg, "--build-id")) { | |||
| builder.build_id = .fast; | |||
There was a problem hiding this comment.
Just out of curiosity, why this default in particular? Is there precedent in other build systems / toolchains?
There was a problem hiding this comment.
I copied the handling directly from main.zig to keep it the same across build and build-exe
Lines 1681 to 1682 in b350049
gcc and clang use sha1 as the default as it was the first build-id to be implemented, I know that the initial zig implementation had it as a boolean option, either on or off, but I am not sure why fast was chosen specifically.
There was a problem hiding this comment.
Do you happen to know what distros tend to use here?
There was a problem hiding this comment.
Fedora (and I assume anything in the same family) explicitly uses sha1
Arch builds gcc with --enable-linker-build-id which automatically passes --build-id to the linker, implying sha1
it might be best to just remove the default here and to demand that the type is explicit
There was a problem hiding this comment.
Some context: #15459 (comment)
At least according to man ld, that comment is wrong.
I think it would be good to verify what ld and ld.lld do here (hopefully they agree), and then change Zig's default, both here and in src/main.zig, to be the same.
There was a problem hiding this comment.
Some context: #15459 (comment)
At least according to
man ld, that comment is wrong.
I think I found the reason for this:
LD defaults to sha1 for ELF and md5 for PE
LDD defaults to sha1 for ELF, forced GUID for the msvc compatible linker and fast for wasm
so as a whole there doesn't appear to be one right default for all platforms
There was a problem hiding this comment.
That's fun. So in summary, defaults look as follows:
- Mach-O doesn't seem to have a build ID mechanism.
ld,lld, andmoldall seem to agree onsha1for ELF.lldusesfastfor WASM (UUID v5 based on xxHash).ldusesmd5for COFF,llduses a variation onfast(both written as a "GUID").
ELF and WASM can in theory support any style. But the current scheme that linkers use for COFF only allows up to 16 bytes, which means that COFF "can't" support sha1 (20 bytes). That's quite unfortunate.
There was a problem hiding this comment.
Okay, I've argued myself into thinking that fast is a good default because it's consistent (ish) across binary formats.
The only missing piece here is that src/link/Coff.zig needs to pass --build-id to LLD when the style is fast. (LLD does not appear to support other styles for COFF at the moment, even though all the non-sha1 styles could be made to work.) Would you mind making that change?
| \\ --build-id[=style] At a minor link-time expense, coordinates stripped binaries | ||
| \\ fast, uuid, sha1, md5 with debug symbols via a '.note.gnu.build-id' section | ||
| \\ 0x[hexstring] Maximum 32 bytes | ||
| \\ none (default) Disable build-id |
There was a problem hiding this comment.
| \\ --build-id[=style] At a minor link-time expense, coordinates stripped binaries | |
| \\ fast, uuid, sha1, md5 with debug symbols via a '.note.gnu.build-id' section | |
| \\ 0x[hexstring] Maximum 32 bytes | |
| \\ none (default) Disable build-id | |
| \\ --build-id[=style] At a minor link-time expense, embeds a build ID in binaries | |
| \\ fast 8-byte non-cryptographic hash (COFF, ELF, WASM) | |
| \\ sha1, tree 20-byte cryptographic hash (ELF, WASM) | |
| \\ md5 16-byte cryptographic hash (ELF) | |
| \\ uuid 16-byte random UUID (ELF, WASM) | |
| \\ 0x[hexstring] Constant ID, maximum 32 bytes (ELF, WASM) | |
| \\ none (default) No build ID |
And likewise in src/main.zig?
adds a
build-idoption to the build runner and abuild_idproperty tostd.Build.the value of
std.Build.build_idis used whenstd.Build.Step.Compile.build_idhas not been explicitly specified.This is useful for distro packagers and anyone who wants to specify a build-id for a whole project unless explicitly specified in the build logic itself.