infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Land #7735, make assigning payloads fast again!

bug/bundler_fix
William Vu 2016-12-21 00:16:52 -06:00
parent cc293f06fe f95136ce67
commit 0221d2d904
No known key found for this signature in database
GPG Key ID: 68BD00CE25866743
1 changed files with 26 additions and 32 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

58
lib/msf/core/exploit.rb
View File

@ -698,6 +698,12 @@ class Exploit < Msf::Module
(target and target.arch) ? target.arch : (arch == []) ? nil : arch (target and target.arch) ? target.arch : (arch == []) ? nil : arch
end end
def normalize_platform_arch
c_platform = (target && target.platform) ? target.platform : platform
c_arch = (target && target.arch) ? target.arch : (arch == []) ? nil : arch
c_arch ||= [ ARCH_X86 ]
return c_platform, c_arch
end
# #
# Returns whether the requested payload is compatible with the module. # Returns whether the requested payload is compatible with the module.
@ -706,10 +712,23 @@ class Exploit < Msf::Module
# @return [TrueClass] Payload is compatible. # @return [TrueClass] Payload is compatible.
# @return [FalseClass] Payload is not compatible. # @return [FalseClass] Payload is not compatible.
# #
def is_payload_compatible?(payload_name) def is_payload_compatible?(name)
payload_names = compatible_payloads.collect { |entry| entry[0] } p = framework.payloads[name]
payload_names.include?(payload_name) # Skip over payloads that are too big
return false if payload_space && p.cached_size && p.cached_size > payload_space
pi = p.new
# Are we compatible in terms of conventions and connections and
# what not?
return false if !compatible?(pi)
# If the payload is privileged but the exploit does not give
# privileged access, then fail it.
return false if !self.privileged && pi.privileged
return true
end end
# #
@ -719,34 +738,11 @@ class Exploit < Msf::Module
def compatible_payloads def compatible_payloads
payloads = [] payloads = []
c_platform, c_arch = normalize_platform_arch
c_platform = (target and target.platform) ? target.platform : platform
c_arch = (target and target.arch) ? target.arch : (arch == []) ? nil : arch
c_arch ||= [ ARCH_X86 ]
framework.payloads.each_module( framework.payloads.each_module(
'Platform' => c_platform, 'Arch' => c_arch, 'Platform' => c_platform) { |name, mod|
'Arch' => c_arch ) { |name, mod| payloads << [ name, mod ] if is_payload_compatible?(name)
# Skip over payloads that are too big
if ((payload_space) and
(framework.payloads.sizes[name]) and
(framework.payloads.sizes[name] > payload_space))
dlog("#{refname}: Skipping payload #{name} for being too large", 'core',
LEV_1)
next
end
# Are we compatible in terms of conventions and connections and
# what not?
next if (compatible?(framework.payloads.instance(name)) == false)
# If the payload is privileged but the exploit does not give
# privileged access, then fail it.
next if (self.privileged == false and framework.payloads.instance(name).privileged == true)
# This one be compatible!
payloads << [ name, mod ]
} }
return payloads; return payloads;
@ -758,12 +754,10 @@ class Exploit < Msf::Module
def compatible_encoders def compatible_encoders
encoders = [] encoders = []
c_platform = (target and target.platform) ? target.platform : platform c_platform, c_arch = normalize_platform_arch
c_arch = (target and target.arch) ? target.arch : (arch == []) ? nil : arch
framework.encoders.each_module_ranked( framework.encoders.each_module_ranked(
'Arch' => c_arch, 'Platform' => c_platform) { |name, mod| 'Arch' => c_arch, 'Platform' => c_platform) { |name, mod|
encoders << [ name, mod ] encoders << [ name, mod ]
} }