Ask HN: Please help me recall a certain programmer horror story

155 pointskuba-orlik7y ago40 comments

I remember having read a story about a programmer that encountered a weird error - his program was spitting out racial slurs in its output. The issue turned out to be a malicious version of the compiler, but somehow after removing it it got back to the system, and what should take only a few minutes turned into days and days of trying to find the culprit.

I've been searching long and hard but cannot seem to find it. I hope that what little I remember from it is enough and some kind soul will help me find the original article online... :)

40 comments

pliny7y ago

https://www.quora.com/What-is-a-coders-worst-nightmare/answe...

MrEldritch7y ago

Thank you! I saw Ken Thomson's classic Reflections on Trusting Trust linked on HN a couple weeks ago, and was looking forward to rereading this very same story when I was surprised to discover it wasn't and had never been part of that essay at all. I had no idea where to find the actual story I'd been looking for! (Indeed, I was no longer sure this story had actually existed, and wasn't just something my brain had made up from cobbling together fragmentary memories)

Thank you for solving this mystery. :)

pmichaud7y ago

Jesus, that is intense. I wonder if the guy was personally out to get the Doc, or if he was just a smart kid with too much time and not enough superego?

kazinator7y ago

He did make it super easy to find this by having the compiler modify source code. If you run "cc file.c" and file.c is overwritten, you should know that it's the "cc" doing it.

It would have been more evil to do it the original way, as described in Thompson's paper: recognize the program sources and emit altered object code only; no mucking with the source.

rexpop7y ago

Interesting that the first adjective you use was "smart" when, in any decent scope of consideration, he has actually wasted many hours of others' time, and caused only suffering. When I do that at my company, they do not call me "smart."

2 more replies

TheArcane7y ago

> Because the compiler was poisoned with other source code that we didn't have. And that source code, that now existed only in the executable compiler, put those changes back into the compiler source before it compiled it.

I don't quite understand this part. How would this work?

kazinator7y ago

They got clean source for the compiler from the AT&T person. However, they neglected to get a clean binary for the compiler.

They compiled the clean source using the existing, malicious compiler installation. That compiler had a counter-measure against being recompiled from clean sources; it recognized that situation and perpetrated itself.

(A clean compiler binary might not help; suppose the trick involves other binaries, like the C library. They didn't have the kernel source so it was fairly reasonable to regard the kernel as clean.)

1 more reply

antsar7y ago

If I read it correctly, they used the binary compiler which existed on the machine to compile a new copy of the compiler (from clean source). This existing binary compiler was "poisoned" (modified) such that it would not only poison the psychiatrist's program, but also poison any attempts to compile a new copy of the compiler. So when they recompiled the compiler, the new copy was already poisoned (because they used the old, poisoned compiler to do it).

ChristianBundy7y ago

You need a compiler to compile anything, including a compiler, so if your compiler was tampered with then anything you compile can be tampered with as well.

The only solution is be to download a binary compiler from someone you trust.

2 more replies

btschaegg7y ago

That is one hell of a quine.

stefs7y ago

ah yes i remember this. a practical implementation of the http://wiki.c2.com/?TheKenThompsonHack ?

kuba-orlikOP7y ago

Thank you, that's it!

tim3337y ago

Some HN discussion on that (224 comments) https://news.ycombinator.com/item?id=10606226

dzdt7y ago

This story strikes me as likely to be exaggerated or invented. It is exactly the scenario described in Ken Thomson's Reflections on Trusting Trust. But unlike Thomson, who was developing the compiper, there is no reason a random grad student would have access to recompile the compiler. And if the student gained root access to replace system binaries, why would they bother making the compiler reinfect itself on recompilation?

microtherion7y ago

The hardware mentioned was an AT&T 3B2, so this probably would have taken place in the early 1980s. Access policies for such things could be quite different, back then.

Even when I was a graduate student a decade later, in a lab with professional administrators, grad students routinely had pretty much all the permissions they would ask for, because we worked odd hours and performed exotic experiments. Policing was done after the fact.

To have a grad student in Psychology with that level of programming skill would be rather unusual, though.

TomVDB7y ago

In the eighties, all engineering students at my university had access to an IBM 3090 mainframe. There were some CS kids who were way better than the admins at exploiting the system. (I don't remember the details, but the student newspaper once wrote about an exploit that required a coordinated attack with the mainframe of a different university.)

The admins were smart enough to befriend those kids and let them help manage the system. Better to have them to your side than to have them as an adversary.

marcodave7y ago

Related to the question, another nice short story posted some time ago on HN about hacked compiler code https://www.teamten.com/lawrence/writings/coding-machines/

dwheeler7y ago

I mentioned this "malicious version of compiler" on my web page about my approach for countering the trusting trust attack. See: https://www.dwheeler.com/trusting-trust/

swarnie_7y ago

I didn't recognize the story from your description but after the first paragraph its unmistakable.

A good, fun read. Thank you!

jlebrech7y ago

that would be a pretty evil way to enforce payment, aka a DRM that turns racist if you don't pay up.

jackhack7y ago

It's an equally effective way to end a career (perhaps before it's even begun, as this is a graduate student's work we're talking of). Regardless, it's a stunningly bold lack of judgement. But then, bad decisions often make for interesting stories.

rexpop7y ago

Is it "bad judgement"? Aren't there, perhaps, better words for this phenomenon? Is all hate speech mere "bad judgement"? Is KKK membership, cross-burning, lynching, etc. all circumscribed by the label "bad judgement"?

1 more reply

j / k navigate · click thread line to collapse

40 comments

pliny7y ago

https://www.quora.com/What-is-a-coders-worst-nightmare/answe...

MrEldritch7y ago

Thank you for solving this mystery. :)

pmichaud7y ago

Jesus, that is intense. I wonder if the guy was personally out to get the Doc, or if he was just a smart kid with too much time and not enough superego?

kazinator7y ago

He did make it super easy to find this by having the compiler modify source code. If you run "cc file.c" and file.c is overwritten, you should know that it's the "cc" doing it.

It would have been more evil to do it the original way, as described in Thompson's paper: recognize the program sources and emit altered object code only; no mucking with the source.

rexpop7y ago

2 more replies

TheArcane7y ago

I don't quite understand this part. How would this work?

kazinator7y ago

They got clean source for the compiler from the AT&T person. However, they neglected to get a clean binary for the compiler.

(A clean compiler binary might not help; suppose the trick involves other binaries, like the C library. They didn't have the kernel source so it was fairly reasonable to regard the kernel as clean.)

1 more reply

antsar7y ago

ChristianBundy7y ago

You need a compiler to compile anything, including a compiler, so if your compiler was tampered with then anything you compile can be tampered with as well.

The only solution is be to download a binary compiler from someone you trust.

2 more replies

btschaegg7y ago

That is one hell of a quine.

stefs7y ago

ah yes i remember this. a practical implementation of the http://wiki.c2.com/?TheKenThompsonHack ?

kuba-orlikOP7y ago

Thank you, that's it!

tim3337y ago

Some HN discussion on that (224 comments) https://news.ycombinator.com/item?id=10606226

dzdt7y ago

microtherion7y ago

The hardware mentioned was an AT&T 3B2, so this probably would have taken place in the early 1980s. Access policies for such things could be quite different, back then.

To have a grad student in Psychology with that level of programming skill would be rather unusual, though.

TomVDB7y ago

The admins were smart enough to befriend those kids and let them help manage the system. Better to have them to your side than to have them as an adversary.

marcodave7y ago

Related to the question, another nice short story posted some time ago on HN about hacked compiler code https://www.teamten.com/lawrence/writings/coding-machines/

dwheeler7y ago

I mentioned this "malicious version of compiler" on my web page about my approach for countering the trusting trust attack. See: https://www.dwheeler.com/trusting-trust/

swarnie_7y ago

I didn't recognize the story from your description but after the first paragraph its unmistakable.

A good, fun read. Thank you!

jlebrech7y ago

that would be a pretty evil way to enforce payment, aka a DRM that turns racist if you don't pay up.

jackhack7y ago

rexpop7y ago

1 more reply

j / k navigate · click thread line to collapse