TLS Callbacks (2012)

(legend.octopuslabs.io)

23 points | by pncnmnp4 days ago

3 comments

landr0id3 days ago
I recently wrote my own PE loader and found handling TLS data the most annoying aspect of the process: https://landaire.net/reflective-pe-loader-for-xbox/
skissane3 days ago
> Note: Very few targets will ever have a TLS section specified unless they are using it as an anti-debug mechanism as most program never use TLS.
Most programs don't use thread-local storage? Very many do, although it depends on what kinds of programs you are looking at.
- landr0id3 days ago
  Things have certainly changed since 2012. Every Rust program uses TLS -- at least on Windows. Not sure about other platforms.
billpg3 days ago
Anyone else getting this?
The connection for this site is not secure legend.octopuslabs.io uses an unsupported protocol. ERR_SSL_VERSION_OR_CIPHER_MISMATCH
- billpg3 days ago
  In case anyone needs it: https://web.archive.org/web/20240306134340/https://legend.oc... (The most recent snapshots look like a bad redirect.)
- evujumenuk3 days ago
  Ironic. A blog post on TLS has TLS issues.
  junon3 days ago
  Different kind of TLS.
  evujumenuk3 days ago
  Yeah… I gotta work on my comedic delivery.
  skissane3 days ago
  When I saw the title about "TLS Callbacks", I immediately knew what kind of TLS the article was talking about. But then when I saw the comment on ERR_SSL_VERSION_OR_CIPHER_MISMATCH – at the time there weren't many others – and I started to doubt myself – has TLS the network protocol added some new feature called "callbacks" that I'm unfamiliar with?
  junon1 day ago
  Some libraries use callbacks for e.g. host certificate verification so the consuming application can manage its own whitelists.
  junon1 day ago
  I figured but erred on the side of "maybe not a joke" :D