polytracker icon indicating copy to clipboard operation
polytracker copied to clipboard

Published 20 hours ago verified publisher icon trailofbits

`printf` is not considered a taint sink

Open hbrodin opened this issue 2 years ago • 0 comments

printf writes to stdout are not captured as taint sinks when running PolyTracker with POLYTRACKER_STDOUT_SINK=1. It would be convenient to be able to capture:

printf("Tainted value: %x", tainted_value);

as a taint sink write.

hbrodin avatar Dec 13 '22 08:12 hbrodin