[Dev] Tizen 3.0 proposal for applications launch

Leibowitz, Michael michael.leibowitz at intel.com
Wed Oct 16 05:42:35 GMT 2013


On Tue, Oct 15, 2013 at 8:42 PM, Carsten Haitzler
<c.haitzler at samsung.com> wrote:
> i'm not so sure on prelinking. it does have perf upsides, but comes with
> downsides. namely ANY change of a shared lib (eg upgrade, security fix etc.)
> requires re-running prelink on all binaries and other shred libs that depend
> on it. this is costly and requires a lot of tracking. it also negates the
> ability to keep md5/sha1 hashes of all files in a "secure place" and compare
> against it to detect intrusion and hacking... :( prelink is a bit of a
> faustian bargain... :)

I want to echo Carsten's point here.  prelink as done in distros is
incompatible with integrity protection!

Cheers


-- 
Michael Leibowitz


More information about the Dev mailing list