Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Capstone/Keystone vs. Binutils #683

Closed
zachriggle opened this issue Aug 22, 2016 · 14 comments
Closed

Capstone/Keystone vs. Binutils #683

zachriggle opened this issue Aug 22, 2016 · 14 comments
Labels
feature
Milestone
Someday

Comments

@zachriggle
Copy link
Member

We should investigate using the Capstone disassembler and Keystone assembler, instead of shelling out to Binutils. This would streamline the installation process for foreign architectures and OSes.

This would probably be a major-version-bump type feature, since it likely breaks backward compatibility.

However, we will still have some dependencies on Binutils for generation of fully-functional ELF files -- unless we want to generate those ourselves. Since the ELFs that we emit are very minimal, this should not be particularly difficult.

The biggest thing that we lose is that there are no longer symbols to aid shellcode debugging when using make_elf_from_assembly. However, I expect that nobody knew that you could have debugging symbols except me, so that's probably moot point.
@zachriggle zachriggle added this to the Someday milestone Aug 22, 2016
@C0deH4cker
Copy link

It would be nice to not require cross binutils for doing something common like asm(shellcraft.sh()) on i386 or arm. Something like creating an ELF could definitely still require binutils if that's easiest (I've never even used that feature before).

@zachriggle
Copy link
Member Author

@C0deH4cker: It does not require cross-binutils for native architecture, currently. See here.

@C0deH4cker
Copy link

Unless you're using a Mac and don't have binutils installed by default ;)

On Oct 2, 2016, at 10:43 PM, Zach Riggle notifications@github.com wrote:

@C0deH4cker: It does not require cross-binutils for native architecture, currently. See here.


You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.

@zachriggle
Copy link
Member Author

Mac OS is not a supported configuration for pwntools. Anything that works
is a happy accident :)
On Sun, Oct 2, 2016 at 11:38 PM C0deH4cker notifications@github.com wrote:

Unless you're using a Mac and don't have binutils installed by default ;)

On Oct 2, 2016, at 10:43 PM, Zach Riggle notifications@github.com
wrote:

@C0deH4cker: It does not require cross-binutils for native architecture,
currently. See here.


You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.


You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
#683 (comment),
or mute the thread
https://github.com/notifications/unsubscribe-auth/AAG0GBG3GT0Q2hPyubJEA7-1sorYLsFAks5qwKLhgaJpZM4JqZb7
.

@C0deH4cker
Copy link

Interesting, I never realized that. Well I'm happy to say that pwntools works for me on macOS for everything I've tried so far (even cross binutils).

On Oct 3, 2016, at 1:38 PM, Zach Riggle notifications@github.com wrote:

Mac OS is not a supported configuration for pwntools. Anything that works
is a happy accident :)
On Sun, Oct 2, 2016 at 11:38 PM C0deH4cker notifications@github.com wrote:

Unless you're using a Mac and don't have binutils installed by default ;)

On Oct 2, 2016, at 10:43 PM, Zach Riggle notifications@github.com
wrote:

@C0deH4cker: It does not require cross-binutils for native architecture,
currently. See here.


You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.


You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
#683 (comment),
or mute the thread
https://github.com/notifications/unsubscribe-auth/AAG0GBG3GT0Q2hPyubJEA7-1sorYLsFAks5qwKLhgaJpZM4JqZb7
.


You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.

@firmianay
Copy link

firmianay commented Oct 17, 2017
edited
Loading

I would like to ask if there is a plan to use Capstone/Keystone to replace Binutils? It can be more convenient when using a Linux which can't install cross-binutils with apt, such as Archlinux. If so, I can try to contribute some code.

@zachriggle
Copy link
Member Author

zachriggle commented Oct 17, 2017 via email

@Inndy
Copy link
Contributor

Inndy commented Jun 21, 2018

Using keystone as a backend assembler for asm() will be much more faster than using binutils. I'm glad to see this happen!

@zachriggle
Copy link
Member Author

I'd be glad to support the changes, but don't have time to implement them currently. Contributions would be greatly appreciated!

@david942j
Copy link
Contributor

FYI, pwntools-ruby uses Keystone/Capstone for asm/disasm

@zachriggle
Copy link
Member Author

zachriggle commented Jun 22, 2018 via email

@Isaac0616 Isaac0616 mentioned this issue Sep 11, 2018
Closed
@zbeekman
Copy link

👋 Hi, Homebrew-core maintainer here. FYI, binutils is fairly broken on macOS due to upstream. Also, is pwntools for macOS still not officially supported?

Having binutils on the system path breaks compilation with GCC as of macOS 10.14 (Mojave) and/or XCode 10. Specifically GCC ends up trying to invoke gnm provided by binutils. As such, we are migrating binutils to be keg_only meaning we won't be symlinking it into the system search paths in /usr/local (or whatever you set your brew prefix to).

During this process I attempted to upgrade pwntools from 3.12.0 to 3.12.1 because the build was failing and, after checking the release notes, I thought after a completely cursory inspection of the build logs that #1191 and #1198 might be to blame for the failure. After a version bump to 3.12.1 the pwntools formula is still failing, however, with undefined symbols at link time.

If folks in your community enjoy having pwntools available through homebrew, a PR on Homebrew/homebrew-core with a version bump and resolution of the build failures would be much appreciated. For your reference, it seems that a number of people like installing pwntools this way:

==> install_on_request (30 days)

Index Name (with options) Count Percent
1 pwntools 198 100.00%

==> install_on_request (90 days)

Index Name (with options) Count Percent
1 pwntools 514 100.00%

==> install_on_request (365 days)

Index Name (with options) Count Percent
1 pwntools 1,682 100.00%

@zbeekman
Copy link

FYI, here is a link to the last 1MB worth of log for the build failure: https://jenkins.brew.sh/job/Homebrew%20Core%20Pull%20Requests/32547/version=mojave/testReport/brew-test-bot/mojave/install_pwntools/

@zbeekman zbeekman mentioned this issue Oct 28, 2018
Closed
4 tasks
@heapcrash
Copy link
Collaborator

Pretty sure we're gonna stick with binutils for the forseeable future. Modern Ubuntu distributions ship binutils for all Pwntools-supported architectures, without using a PPA.

Kyle-Kyle pushed a commit to Kyle-Kyle/pwntools that referenced this issue Apr 25, 2021
@korniltsev @disconnect3d
Allow hexdump by module name, like vmmap (Gallopsled#683)
57cc3c2 
Implements Gallopsled#678
@tesuji tesuji mentioned this issue Sep 15, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
Someday
Development

No branches or pull requests
7 participants
@zachriggle @zbeekman @C0deH4cker @Inndy @david942j @firmianay @heapcrash