polytracker
polytracker copied to clipboard
trailofbits
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
We have a specific case where taint tracking gets lost. ```C #include #include static unsigned char tab[256][8]; void fail(unsigned char *dp, unsigned char *sp) { memcpy(dp, tab[*sp++], 8); } int...
`root@4a76e0836a28:/workdir# cat main.c #include #include #include #include #include #include #include int main(int argc, char**argv) { char bug[128]; int fd = open(argv[1], O_CREAT); int bla = 0; read(fd, &bla, sizeof(bla)); void*...
Previously, we've seen some issues related to which api's are instrumented, and how they are instrumented. By just a brief look at the dfsan_abilist.txt I see `bcopy` being uninstrumented. I...
We currently have a lot of utility scripts scattered around the repo and people are using several workflows during developments and use. We should consolidate all the current workflows and...
```c int foo() { FILE* input = fopen("foo", "rb"); int taintedOffset = getc(input); fseek(input, taintedOffset, SEEK_SET); return getc(input); } ``` Currently, I believe the return value of `foo()` will only...
Create a tiny program ```C int main() { return 0; } ``` If instrumented with polytracker it still takes a long time to run (15 secs?) If I run ```shell...
Problem is: __repr__ for FunctionEntry call self.function, which raises a new exception which calls __repr__ which calls... You get a stack trace like this: File "/usr/local/lib/python3.8/dist-packages/polytracker/tracing.py", line 677, in function...
We currently have support on the database side for having multiple inputs. However, we need to: - [x] ~Add an additional database table to track multiple runs of the program....
When I hit `enter` in polytracker I see output:  It's annoying, please remove that stacktrace. Just handle it as empty command. **Python version**: 3.7 **Polytracker version**: 3.0.1
Add an option to treat `__environ` as a taint source
Metadata
Owner
Metadata
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.