-
-
Notifications
You must be signed in to change notification settings - Fork 681
If the program has its own directory, check for the files README.md (original author's) and README.cosmo (Cosmo-specific changelog). If it's in third_party/, look for its help files online.
If that fails, check the source code for comments and documentation strings. If that's still not good enough, try reading the code -- understandable code is a priority for the developers.
All Cosmo binaries include two special flags: --strace which echoes system calls, and --ftrace which echoes function calls. This provides visibility into your program on a level that normally requires a debugger.
An example: the program runs fine when run straight from the command line, but usage from find -exec fails with the error ENOACCESS.
- Running the program under a shell invocation, such as
sh -c 'binary.com args...'may succeed. - Every Cosmopolitan binary can strip its own headers, to fit your native binary format with
binary.com --assimilate. This is non-reversible and means that the program will no longer work on systems with different executable formats (the groups being Windows, Linux/BSD, and Mac). However, it may dodge this issue. Be sure to back up your programs before running.
There are a few differences between cosmopolitan binaries and normal C binaries. Some of these are platform-dependent. They mostly stem from the fact that cosmopolitan binaries run as interpreter scripts on unices, and therefore are mostly resolvable via --assimilate. Some are documented here.
This is the normal behavior of execve on Linux with interpreter scripts. Even with the loader registered in binfmt_misc, cosmopolitan programs are still interpreter scripts; they are just immediately “interpreted” by /usr/bin/ape. To quote from the execve(2) manpage:
If the pathname argument of execve() specifies an interpreter script, then interpreter will be invoked with the following arguments: interpreter [optional-arg] pathname arg... where pathname is the pathname of the file specified as the first argu‐ ment of execve(), and arg... is the series of words pointed to by the argv argument of execve(), starting at argv[1]. Note that there is no way to get the argv[0] that was passed to the execve() call.
It used to be the case that the ape loader would clobber argv[0] on all platforms in most cases; if you are not using Linux and are using an old loader, that may be what is going on. For instance, OS X seems to preserve argv[0] across execve by default.
First of all, are you feeling okay? Second of all, it is usually the case (confirmed on Linux and OS X) that the setuid/setgid bits are ignored on interpreter scripts. The two reasons given are:
- There is a TOCTOU problem between the kernel opening and reading the file to find the interpreter, and the invoked interpreter opening the file to execute it.
- Generally it is very difficult to secure a setuid interpreter under all possible modifications to things like the
PATHandIFSvariables, etc.
Cosmopolitan is not (or ought not be) particularly subject to 2; it is, however, subject to 1. (We also have a TOCTOU between the loader finding the program and the program opening itself to read its zip archive.)
If you wanted to have a setuid cosmopolitan binary (e.g. to run doas on any system), you would need to either patch your kernel (presumably using a file named something like yolo.patch), or create a helper program to run your program in a secure way. The Perl security documentation may be of use here.
Cosmo executables are usually also ZIP files, e.g. redbean.com, Lua.com, QuickJS, etc. You should be able to easily view their contents with any ZIP program, e.g. unzip -vl redbean.com. So support for reading files is universal. The issue is with modifying. Cosmo binaries are essentially what used to be called "self-extracting archives". Many modern ZIP tools don't understand this and will destroy the executable content when they rearrange files within the archive. It's particularly true of GUI programs on Windows. The best tool to use for changing your zip files is InfoZIP, which is available on nearly every Mac and UNIX install as the standard zip and unzip commands. Those tools work great and won't corrupt your executable. If you want a GUI, then the one that's known to work is PKZIP for Windows which costs $30. The Cosmopolitan mono-repo also has a third_party/zip/zip.com program that you can use, which is a port of InfoZIP.
cosmocc always outputs APE binaries. Another option:
apecopy foo.elf foo.ape