Skip to content

tainted-lua v1
Compare
Choose a tag to compare
@github-actions github-actions released this 17 Jul 21:45
· 377 commits to main since this release
v1
23a4983
This commit was signed with the committer’s verified signature. The key has expired.
Meorawr Daniel Yates
GPG key ID: 4A41CC454A49E128
Expired
Learn about vigilant mode.

tainted-lua v1

Added

  • Added basic taint propagation system.
  • Added the following security extensions to the base library:
    • forceinsecure()
    • geterrorhandler()
    • hooksecurefunc([table,] "name", func)
    • issecure()
    • issecurevariable([table,] "variable")
    • scrub(...)
    • seterrorhandler(errfunc)
  • Added the following security extensions to the debug library:
    • debug.forcesecure()
  • Added a new hook mask ("s") which is invoked whenever the VM transitions between security states. This occurs after processing of the current instruction.
  • Added a debug trap system that allows configuring errors under certain runtime conditions.
    • This can be controlled through the debug.settrapmask("mask") and debug.gettrapmask() functions.
    • The "s" mask enables integer overflow errors in string.format falls for signed format specifiers.
    • The "u" mask enables integer overflow errors in string.format calls for unsigned format specifiers.
    • The "z" mask enables divide-by-zero errors for division and modulo operations.
    • The default trap mask matches that of a live retail client environment and is set to "s".
  • Added all string library extensions present in the in-game environment as well as their global aliases.
  • Added all table library extensions present in the in-game environment as well as their global aliases.
  • Added all math library extensions present in the in-game environment as well as their global aliases.
  • Added all global aliases to the OS libary functions as present in the in-game environment.
Assets 8
Loading