radare2/man/rarun2.1

161 lines
4.4 KiB
Groff
Raw Normal View History

.Dd Feb 3, 2017
2014-09-30 11:01:45 +02:00
.Dt RARUN2 1
2014-09-30 11:37:26 +02:00
.Sh NAME
.Nm rarun2
.Nd radare2 utility to run programs in exotic environments
.Sh SYNOPSIS
.Nm rarun2
2016-05-17 10:36:33 +02:00
.Op [directives]
.Op [script.rr2]
.Op [--] [program] [args]
.Sh DESCRIPTION
This program is used as a launcher for running programs with different environment, arguments, permissions, directories and overridden default filedescriptors.
.Pp
rarun2 -t will show the terminal name and wait for a connection from another process. try rarun2 stdio=<ttypath> program=/bin/sh
.Pp
The program just accepts a single argument which is the filename of the configuration file to run the program.
.Pp
It is useful when you have to run a program using long arguments or pass long data to stdin or things like that usually required for exploiting crackmes :)
.Sh DIRECTIVES
.Pp
The rr2 (rarun2) configuration file accepts the following directives, described as key=value entries and comments defined as lines starting with '#'.
.Bl -tag -width Fl
2015-04-27 22:08:58 +02:00
.It Ar arg[0-3]
set value for argument N passed to the program
.It Ar aslr
enable or disable ASLR
.It Ar bits
set 32 or 64 bit (if the architecture supports it)
.It Ar chdir
change directory before executing the program
.It Ar chroot
run the program in chroot. requires some previous setup
.It Ar clearenv
unset the whole environment
2015-04-27 22:08:58 +02:00
.It Ar core
set no limit the core file size
2015-04-27 22:08:58 +02:00
.It Ar connect
connect stdin/stdout/stderr to a socket
.It Ar pty
use a pty for connection over socket (with connect/listen)
2015-04-27 22:08:58 +02:00
.It Ar envfile
set a file with lines like `var=value` to be used as env
2015-09-12 19:36:15 +02:00
.It Ar fork
used with the listen option, allow to spawn a different process for each connection. Ignored when debugging.
2015-04-27 22:08:58 +02:00
.It Ar input
set string to be passed to the program via stdin
.It Ar libpath
override path where the dynamic loader will look for shared libraries
2015-04-27 22:08:58 +02:00
.It Ar listen
bound stdin/stdout/stderr to a listening socket
.It Ar maxstack
set the maximum size for the stack
.It Ar maxproc
set the maximum number of processes
.It Ar maxfd
set the maximum number of file descriptors
.It Ar nice
set the niceness level of the process
.It Ar preload
preload a library (not supported on Windows, only linux,osx,bsd)
.It Ar program
path to program to be executed
2016-03-27 14:17:39 +02:00
.It Ar execve
use execve instead of posix_spawn (osx tricks)
2015-04-27 22:08:58 +02:00
.It Ar r2preload
2015-06-02 04:05:32 +02:00
preload with libr2, kill -USR1 to get an r2 shell or -USR2 to spawn a webserver in a thread
.It Ar r2preweb
run the webserver in a thread just at starting the r2preload
2015-04-27 22:08:58 +02:00
.It Ar setenv
set value for given environment variable
.It Ar setegid
set effective process group id
.It Ar seteuid
set effective process uid
.It Ar setgid
set process group id
2015-04-27 22:08:58 +02:00
.It Ar setuid
set process uid
.It Ar sleep
sleep for the given amount of seconds
.It Ar stdin
select file to read data from stdin
.It Ar stdout
select file to replace stdout file descriptor
.It Ar system
execute the given command
.It Ar timeout
set a timeout
.It Ar timeoutsig
signal to use when killing the child because the timeout happens
2015-04-27 22:08:58 +02:00
.It Ar unsetenv
unset one environment variable
.El
2016-03-27 14:13:26 +02:00
.Sh VALUE PREFIXES
Every value in this configuration file can contain a special
.Pp
.Bl -tag -width Fl
.It Ar @filename
Slurp contents of file and put them inside the key
.It Ar "text"
Escape characters useful for hex chars
.It Ar 'string'
Escape characters useful for hex chars
.It Ar !cmd
Run command to store the output in the variable
.It Ar :102030
Parse hexpair string and store it in the variable
.It Ar :!102030
Parse hexpair string from output of command and store it in the variable
.El
.Sh EXAMPLES
Sample rarun2 script
.Pp
$ cat foo.rr2
#!/usr/bin/rarun2
program=./pp400
arg0=10
stdin=foo.txt
chdir=/tmp
clearenv=true
setenv=EGG=eggsy
setenv=NOFUN=nogames
unsetenv=NOFUN
# EGG will be the only env variable
#chroot=.
./foo.rr2
.Pp
Connecting a program to a socket
.Pp
$ nc \-l 9999
$ rarun2 program=/bin/ls connect=localhost:9999
.Pp
Debugging a program redirecting io to another terminal
.Pp
## open a new terminal and type 'tty' to get
$ tty ; clear ; sleep 999999
/dev/ttyS010
## in another terminal run r2
2016-05-10 17:04:53 +02:00
$ r2 \-e dbg.profile=foo.rr2 -d ls
2016-05-10 18:14:00 +03:00
## or you can use -R option
$ r2 \-R foo.rr2 -d ls
$ cat foo.rr2
#!/usr/bin/rarun2
stdio=/dev/ttys010
2016-05-17 10:36:33 +02:00
.Pp
You can also use the -- flag to specify program and arguments in a more natural way:
.Pp
$ rarun2 timeout=2 -- sleep 4
.Sh SEE ALSO
.Pp
.Xr radare2(1) ,
.Xr rahash2(1) ,
.Xr rafind2(1) ,
.Xr rabin2(1) ,
.Xr radiff2(1) ,
.Xr ragg2(1) ,
.Xr rasm2(1) ,
.Sh AUTHORS
.Pp
Written by pancake <pancake@nopcode.org>