Ryan Kurtz
Ryan Kurtz
We've included a CycloneDX SBOM in our latest release. It is [generated as part of our build processes](https://github.com/NationalSecurityAgency/ghidra/blob/master/gradle/support/sbom.gradle). I've found it very useful in conjunction with Dependency-Track (for the jar's...
@pombredanne i opened a new issue to discuss PURL related things (#4197) so this issue can remain focused on supporting SPDX.
Typically the file is that big because they all share the same large `___LINKEDIT` segment, which we fully export for each dylib. If you look at the resulting dylib's `segment_command`...
Thanks, that's very helpful. I didn't know about `size`. I'll try to improve it.
Yea, the size discrepancy is definitely from how we are handing the `__LINKEDIT` segment. I am going to try packing ours down so it only includes the relevant `linkedit_data_command`s and...
Note that the commit referenced above doesn't address the large exports, but it fixed some issues that caused the `size` command to fail.
Looks like @arandomdev has had some success in [packing the shared `__LINKEDIT` segment](https://github.com/arandomdev/DyldExtractor/blob/master/src/DyldExtractor/converter/linkedit_optimizer.py).
Can you provide the binary?
Can you provide the binary?
Thanks. Is this the same exact binary you referenced in your original post (do the section file offsets in the output still apply)?