Tavis Ormandy (), mai binciken tsaro a Google wanda ke haɓaka aikin , da nufin jigilar DLLs da aka harhada don Windows don amfani a aikace-aikacen Linux. Aikin yana samar da ɗakin karatu na Layer wanda za ku iya loda fayil ɗin DLL a cikin tsarin PE/COFF kuma ku kira ayyukan da aka ayyana a ciki. PE/COFF bootloader ya dogara da lamba . Lambar aikin mai lasisi a ƙarƙashin GPLv2.
LoadLibrary yana kula da loda ɗakin karatu zuwa ƙwaƙwalwar ajiya da shigo da alamun da ke akwai, yana ba da aikace-aikacen Linux tare da API ɗin dlopen. Ana iya cire lambar toshe-shiga ta amfani da gdb, ASAN da Valgrind. Yana yiwuwa a daidaita lambar da za a iya aiwatarwa yayin aiwatarwa ta hanyar haɗa ƙugiya da yin amfani da faci (facin lokacin gudu). Yana goyan bayan keɓanta kulawa da kwancewa don C++.
Makasudin aikin shine a tsara gwaji mai sauƙi da inganci na ɗakunan karatu na DLL a cikin mahalli na tushen Linux. A kan Windows, ɓacin rai da gwajin ɗaukar hoto ba su da inganci sosai kuma galibi yana buƙatar gudanar da keɓantaccen misali na Windows, musamman lokacin ƙoƙarin nazarin samfuran hadaddun kamar software na riga-kafi waɗanda ke faɗin kernel da sarari mai amfani. Ta amfani da LoadLibrary, masu binciken Google suna neman lahani a cikin codecs na bidiyo, na'urar daukar hotan takardu, dakunan karatu na lalata bayanai, na'urar tantance hotuna, da sauransu.
Misali, tare da taimakon LoadLibrary mun sami damar shigar da injin riga-kafi na Windows Defender don aiki akan Linux. Binciken mpengine.dll, wanda ya zama tushen Windows Defender, ya ba da damar yin nazarin ɗimbin ƙwararrun na'urori masu sarrafawa don tsari daban-daban, tsarin tsarin fayil da masu fassarar harshe waɗanda ke da yuwuwar samar da vectors .
An kuma yi amfani da LoadLibrary don ganowa a cikin kunshin riga-kafi na Avast. Lokacin nazarin DLL daga wannan riga-kafi, an bayyana cewa maɓalli na gata tsarin dubawa ya haɗa da cikakken fassarar JavaScript da aka yi amfani da shi don yin koyi da aiwatar da lambar JavaScript na ɓangare na uku. Wannan tsari ba ya keɓanta a cikin mahallin akwatin yashi, baya sake saita gata, kuma yana nazarin bayanan waje mara tabbaci daga tsarin fayil da zirga-zirgar hanyar sadarwa da aka katse. Tunda duk wani rauni a cikin wannan hadaddun tsari da tsari mara kariya na iya haifar da rashin daidaituwa ga tsarin gaba ɗaya, an ƙirƙiri harsashi na musamman dangane da LoadLibrary. don yin nazarin lahani a cikin na'urar daukar hotan takardu ta riga-kafi ta Avast a cikin mahalli na tushen Linux.
source: budenet.ru