ʻO Cruise, kahi hui kūikawā i nā ʻenehana hoʻokele automated, nā code kumu papahana , e hāʻawi ana i nā mea hana no ka nānā ʻana i nā kiʻi firmware e pili ana i ka Linux a me ka ʻike ʻana i nā mea nāwaliwali a me nā ʻikepili i loko o lākou. Ua kākau ʻia ke code ma ka ʻōlelo Go a laikini ma lalo o Apache 2.0.
Kākoʻo i ka nānā ʻana i nā kiʻi me ka ext2/3/4, FAT/VFat, SquashFS a me nā ʻōnaehana faila UBIFS. No ka wehe ʻana i ke kiʻi, hoʻohana ʻia nā pono hana maʻamau, e like me e2tools, mtools, squashfs-tools a me ubi_reader. Wehe ʻo FwAnalyzer i ka lāʻau papa kuhikuhi mai ke kiʻi a loiloi i ka ʻike ma muli o ke ʻano o nā lula. Hiki ke hoʻopaʻa ʻia nā lula i ka metadata ʻōnaehana waihona, ke ʻano faila, a me ka ʻike. ʻO ka hopena he hōʻike ma JSON format, e hōʻuluʻulu i ka ʻike i lawe ʻia mai ka firmware a hōʻike i nā ʻōlelo aʻo a me kahi papa inoa o nā faila i hoʻokō ʻole i nā lula i hana ʻia.
Kākoʻo ia i ka nānā ʻana i nā kuleana komo i nā faila a me nā papa kuhikuhi (no ka laʻana, ʻike ia i ke komo kākau no nā mea āpau a hoʻonohonoho i ka UID/GID hewa ʻole), hoʻoholo i ka hele ʻana o nā faila hiki ke hoʻokō me ka hae suid a me ka hoʻohana ʻana i nā hōʻailona SELinux, ʻike i nā kī hoʻopunipuni poina a hiki paha. faila weliweli. Hōʻike ka ʻike i nā ʻōlelo huna ʻenekinia i haʻalele ʻia a me ka ʻikepili debugging, hōʻike i ka ʻike o ka mana, ʻike/hōʻoia i ka lako me ka hoʻohana ʻana i nā hashes SHA-256, a me ka huli ʻana me ka hoʻohana ʻana i nā masks static a me nā ʻōlelo maʻamau. Hiki ke hoʻopili i nā palapala hōʻoia waho i kekahi mau ʻano faila. No ka polokalamu paʻa paʻa Android, wehewehe ʻia nā ʻāpana kūkulu (no ka laʻana, me ka hoʻohana ʻana i ro.secure=1 mode, ro.build.type state a me SELinux activation).
Hiki ke hoʻohana ʻia ʻo FwAnalyzer e hoʻomaʻamaʻa i ka nānā ʻana i nā pilikia palekana i ka firmware ʻaoʻao ʻekolu, akā ʻo kāna kumu nui ka nānā ʻana i ka maikaʻi o ka firmware i loaʻa a hāʻawi ʻia e nā mea kūʻai ʻaelike ʻekolu. ʻAe nā lula FwAnalyzer iā ʻoe e hana i kahi kikoʻī pololei o ka mokuʻāina firmware a ʻike i nā ʻae ʻole ʻia, e like me ka hāʻawi ʻana i nā kuleana komo hewa a i ʻole ka waiho ʻana i nā kī pilikino a me ka code debugging (no ka laʻana, ʻo ka nānā ʻana e ʻae iā ʻoe e pale i nā kūlana e like me hoʻohana ʻia i ka wā e hoʻāʻo ai i ka server ssh, ʻōlelo huna ʻenehana, e heluhelu /etc/config/shadow or hoʻokumu ʻana i kahi pūlima kikohoʻe).
Source: opennet.ru