binfarce
Extremely minimal parser for ELF/PE/Mach-o/ar.
This crate is used mostly for sharing code between cargo-bloat
and auditable-extract
crates. It implements just enough features for those tools to work. If you're looking for a fully-featured parser, see goblin
.
Goals:
- 100% safe code all the way down. This includes all dependencies.
- Simple code that's easy to audit. No fancy tricks such as proc macros.
Non-goals:
- Highest possible performance. Parsing these things is stupidly cheap as it is.
- Full format support.
Feature status
Header parsing and section extraction are used by both tools. They are zero-allocation and hardened against untrusted inputs.
#[forbid(unsafe_code)]
ensures absence of code execution vulnerabilities. Absence of heap allocations ensures that it can't exhaust RAM. Static analysis via opt-in Clippy lints and fuzzing are used to ensure absence of panics.
Symbol extraction is used by cargo-bloat
only. It allocates unbounded amounts of memory on the heap and may panic given an untrusted input.
PRs with functionality required for your own tool are welcome as long as they adhere to the above goals and keep existing tools working. However, you should consider using the full-featured goblin
crate instead.
This project was briefly known as "kuduk".