this post was submitted on 16 Jan 2026
25 points (87.9% liked)

Technology

1356 readers
50 users here now

A tech news sub for communists

founded 3 years ago
MODERATORS
muad_dibber@lemmygrad.ml
burlemarx@lemmygrad.ml
25
Is Germany Looking to Put a Backdoor into Arch Linux? (www.youtube.com)
submitted 1 week ago by yogthos@lemmygrad.ml to c/technology@lemmygrad.ml
46 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] chloroken@lemmy.ml 4 points 1 week ago (1 children)

Thanks for the explanation. I don't like this. Lmao.

[–] yogthos@lemmygrad.ml 1 points 1 week ago (1 children)

Haha yeah it's not great. Now that I thought about it some more, I wonder if you could use decompiling to verify that the compiler is doing what it says it does. If you compile a minimal program, and then decompile the assembly, you could see if there are any instructions that shouldn't be there. It wouldn't be trivial, but seems like it is a possible way to check that the compiler isn't injecting something weird.

[–] Collatz_problem@hexbear.net 2 points 1 week ago (1 children)

The compiler can introduce vulnerabilities only on some specific instructions, although it makes it difficult to propagate it further to new compilers.

[–] yogthos@lemmygrad.ml 2 points 1 week ago

Good point, verifying a disassembled binary wouldn't exhaustively prove the compiler is safe.