* Export UID, which is stripped by env -i; used by checks if user is root.
* Run tests with bash. Various scripts use bash features.
* Replace unportable grep expression.
ok landry@
clang-based platform like amd64. This commit makes Ghidra build with clang by:
* Adding a clang toolChains block in nativeBuildProperties.gradle
* Adding COMPILER="base-clang ports-clang"
* Updating WANTLIB by replacing libstdc++ with ${COMPILER_LIBCXX}
In addition, honor CXX by setting tools.cppCompiler.executable and
tools.linker.executable in nativeBuildProperties.gradle to ${CXX}. Also print
those variables so that we can confirm that they are set properly.
Lastly, add --stacktrace to the gradle command to facilitate future debugging.
Thanks to daniel@ for bringing this to my attention, naddy@ for his detailed
report of the g++ and CXX issues, and sthen@ for suggesting a possible fix.
ok naddy@ sthen@
ghc and the hs-packages now simply include the necessary (haskell)
package description files in lib/ghc/package.conf.d and update the
package.cache by running ghc-pkg recache at the end. register and
unregister scripts are no longer needed.
- out of bounds write in NSIS bzip2 library
- improvements to the zip bomb mitigations added in 0.101.3, there is now
a maximum scan time limit, defaulting to 2 minutes
* Support for UNIX domain socket connections. A backend endpoint can now
be specified as a UNIX domain socket, via backend = "/path/to/socket".
* New configuration file settings pem-dir and pem-dir-glob. pem-dir can
be used to specify a directory for loading certificates, without
specifying each file individually.
* Support for TLS 1.3. Thanks to Lasse Karstensen.
* Fixed a bug that would cause a crash on reload if ocsp-dir was changed.
* Add log-level. This supersedes the previous quiet setting,
which is now deprecated.
* Add proxy-tlv. This enables extra reporting of cipher and protocol as
part of the PROXYv2 protocol.
* Drop TLSv1.1 from the default TLS protocols list.
Use Python 3 during build and make tests depend on the current version while
here.
py-Rijndael is python2-only, has no consumers, and hasn't been
updated since 2009
py-crack is python2-only, has no consumers, and hasn't been updated
since 2009
py-cryptkit is python2-only, has no consumers, and hasn't been updated
since it was imported in 2002
OK sthen@
on i386; link with -Wl,-z,notext for now (this knocks out a large chunk
of the ports tree). ok aja@
ld: error: can't create dynamic relocation R_386_32 against symbol: _gnutls_x86_cpuid_s in readonly segment; recompile object files with -fPIC or pass '-Wl,-z,notext' to allow text relocations in the output
angrop is a tool to automatically generate ROP chains.
It is built on top of angr's symbolic execution engine, and uses constraint
solving for generating chains and understanding the effects of gadgets.
angrop should support all the architectures supported by angr, although more
testing needs to be done.
Typically, it can generate rop chains (especially long chains) faster than
humans.
It includes functions to generate chains which are commonly used in exploitation
and CTF's, such as setting registers, and calling functions.
join work with and ok kn@
