Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Interesting, do you have any useful links related to this concept?


Here is the discussion of the original Trusting Trust attack: https://news.ycombinator.com/item?id=13569275


Thanks I was referring to precedence climbing parser part of GP reply.


https://eli.thegreenplace.net/2012/08/02/parsing-expressions...

Precedence climbing is also (intimately) related to Pratt parsing, and there's a useful series of articles about the two here: https://www.oilshell.org/blog/2017/03/31.html


https://www.engr.mun.ca/~theo/Misc/exp_parsing.htm#climbing


Thompson publicized an attack by Paul Karger during MULTICS. One of many. Defeating their totality took what's called high-assurance security. For compilers, you have to verify source despite potentially-malicious developers, verify its binary translation, and its distribution. Maybe the tools used to do that as well. I wrote more about what that takes here:

https://lobste.rs/s/nognrl/creating_language_using_only_asse...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: