headless模式运行结果与GUI模式不同

yijiyouyu commented 2 years ago

我测试使用headless模式和GUI模式对同一个应用进行测试，但是测试结果不一样，GUI模式显示发现14个warn；headless模式有100多条这样的数据：{"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f193 [ ]"}。请问这是什么原因

MatthewShao commented 2 years ago

请先确认一下两次运行参数是否一致
如果确认运行参数完全一致，请提供一下运行命令以及输出日志帮助定位问题

yijiyouyu commented 2 years ago

执行命令如下： wjl@wjl-PC:/data/home/wjl/ghidra_10.1.2_PUBLIC$ support/analyzeHeadless /home/wjl/Desktop/headless_test/ filemanager -import /home/wjl/Desktop/headless_test/dde-file-manager -postScript BinAbsInspector "@@-K 50 -callStringK 3 -Z3Timeout 1000 -timeout -1 -json -all" | tee result.txt 日志如下： INFO Using log config file: jar:file:/data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Framework/Generic/lib/Generic.jar!/generic.log4j.xml (LoggingInitialization)
INFO Using log file: /home/wjl/.ghidra/.ghidra_10.1.2_PUBLIC/application.log (LoggingInitialization)
INFO Loading user preferences: /home/wjl/.ghidra/.ghidra_10.1.2_PUBLIC/preferences (Preferences)
INFO Loading previous preferences: /home/wjl/.ghidra/.ghidra_10.1.3_PUBLIC/preferences (Preferences)
INFO Class search complete (750 ms) (ClassSearcher)
INFO Initializing SSL Context (SSLContextInitializer)
INFO Initializing Random Number Generator... (SecureRandomFactory)
INFO Random Number Generator initialization complete: NativePRNGNonBlocking (SecureRandomFactory)
INFO Trust manager disabled, cacerts have not been set (ApplicationTrustManagerFactory)
INFO HEADLESS Script Paths: /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/Base/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Processors/PIC/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/Decompiler/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/VersionTracking/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/FunctionID/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Debug/Debugger/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/GnuDemangler/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/BytePatterns/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/MicrosoftCodeAnalyzer/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/Python/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Debug/Debugger-agent-dbgmodel-traceloader/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Processors/DATA/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Features/FileFormats/ghidra_scripts /data/home/wjl/ghidra_10.1.2_PUBLIC/Ghidra/Processors/8051/ghidra_scripts /home/wjl/.ghidra/.ghidra_10.1.2_PUBLIC/Extensions/BinAbsInspector/ghidra_scripts (HeadlessAnalyzer)
INFO HEADLESS: execution starts (HeadlessAnalyzer)
INFO Creating project: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO Creating project: /home/wjl/Desktop/headless_test/dde-file-manager (DefaultProject)
INFO REPORT: Processing input files: (HeadlessAnalyzer)
INFO project: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO IMPORTING: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO REPORT: Import succeeded with language "x86:LE:64:default" and cspec "gcc" for file: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO ANALYZING all memory and code: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO DWARF external debug information found: ExternalDebugInfo [filename=2df49af04c0024df592ad01fa099249a98998c.debug, crc=25538e97, hash=0c2df49af04c0024df592ad01fa099249a98998c] (ExternalDebugFilesService)
INFO Unable to find DWARF information, skipping DWARF analysis (DWARFAnalyzer)
INFO hit non-returning function, restarting decompiler switch analyzer later (DecompilerSwitchAnalyzer)
INFO Packed database cache: /tmp/wjl-Ghidra/packed-db-cache (PackedDatabaseCache)
INFO ----------------------------------------------------- ASCII Strings 0.271 secs Apply Data Archives 0.163 secs Call Convention ID 0.173 secs Call-Fixup Installer 0.015 secs Create Address Tables 0.037 secs Create Address Tables - One Time 0.017 secs Create Function 0.060 secs DWARF 0.007 secs Data Reference 0.070 secs Decompiler Switch Analysis 0.107 secs Decompiler Switch Analysis - One Time 0.157 secs Demangler GNU 0.228 secs Disassemble Entry Points 0.130 secs ELF Scalar Operand References 0.179 secs Embedded Media 0.012 secs External Entry References 0.000 secs Function ID 1.309 secs Function Start Search 0.014 secs Function Start Search After Code 0.002 secs Function Start Search After Data 0.002 secs GCC Exception Handlers 1.073 secs Non-Returning Functions - Discovered 0.152 secs Non-Returning Functions - Known 0.009 secs Reference 0.145 secs Shared Return Calls 0.048 secs Stack 1.230 secs Subroutine References 0.046 secs Subroutine References - One Time 0.000 secs x86 Constant Reference Analyzer 1.242 secs

 Total Time   6 secs

(AutoAnalysisManager)
INFO REPORT: Analysis succeeded for file: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO SCRIPT: /home/wjl/.ghidra/.ghidra_10.1.2_PUBLIC/Extensions/BinAbsInspector/ghidra_scripts/BinAbsInspector.java (HeadlessAnalyzer)
Loaded config: Config{z3TimeOut=1000, isDebug=false, isOutputJson=true, K=50, callStringK=3, checkers=[CWE467, CWE426, CWE134, CWE190, CWE367, CWE676, CWE78], entryAddress='null', timeout=-1, isEnableZ3=true, z3Tactics=[], externalMapPath=null} {"timestamp":"2022-07-19T03:26:44","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 00110403 [ 0010f2de (main) ]"} {"timestamp":"2022-07-19T03:26:44","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 0011040f [ 0010f2de (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001171d6 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001171ec [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011721d [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117242 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001172d8 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011733f [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117354 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117386 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:02","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011739b [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:07","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011191a [ 00117a77 (FUN_00117140), 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:07","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011191a [ 00117b68 (FUN_00117140), 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:07","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011744d [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:11","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117472 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:17","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117508 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117701 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00117710 [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011771f [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011772e [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001107ff [ 00117565 (FUN_00117140), 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0011757f [ 0010f304 (main) ]"} {"timestamp":"2022-07-19T03:27:47","level":"WARN","logger":"CWE","message":"CWE119: Heap Out-of-Bound when Call to QLocale @ 0011157e [ 0010ed28 (main) ]"} {"timestamp":"2022-07-19T03:27:52","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00121807 [ 0010ed33 (main) ]"} {"timestamp":"2022-07-19T03:29:30","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 00122363 [ 0010ed33 (main) ]"} {"timestamp":"2022-07-19T03:29:34","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 00122373 [ 0010ed33 (main) ]"} {"timestamp":"2022-07-19T03:30:19","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 001220a7 [ 0010ed33 (main) ]"} {"timestamp":"2022-07-19T03:30:21","level":"WARN","logger":"CWE","message":"CWE476: Null pointer dereference Read @ 001220b7 [ 0010ed33 (main) ]"} {"timestamp":"2022-07-19T03:30:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed3b [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed43 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed4b [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed69 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed71 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed79 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed88 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed99 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ed9e [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f34e [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edb4 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edbc [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edc4 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edd3 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edde [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ede9 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edf1 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010edf9 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee01 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee15 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee20 [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee2b [ ]"} {"timestamp":"2022-07-19T03:30:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee33 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee3b [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee59 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee64 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee6c [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee7b [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee87 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee91 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ee9b [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010eea0 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010eea5 [ ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00120a77 [ 0010eea5 (main) ]"} {"timestamp":"2022-07-19T03:30:34","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010eeaa [ ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124e1a [ 00124f1f (FUN_00124ee0), 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124e22 [ 00124f1f (FUN_00124ee0), 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124e2e [ 00124f1f (FUN_00124ee0), 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124e36 [ 00124f1f (FUN_00124ee0), 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124eb0 [ 00124f1f (FUN_00124ee0), 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124f2b [ 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:39","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00124f45 [ 0010eeaa (main) ]"} {"timestamp":"2022-07-19T03:30:59","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ef6e [ ]"} {"timestamp":"2022-07-19T03:30:59","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ef79 [ ]"} {"timestamp":"2022-07-19T03:30:59","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ef83 [ ]"} {"timestamp":"2022-07-19T03:30:59","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010ef8d [ ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efa7 [ ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001103e8 [ 0010efa7 (main) ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"BinAbsInspector","message":"K is too small to hold old stack frames, please consider increase K value: Context(QString::QString[0, 0, 10efa7])"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"BinAbsInspector","message":"K is too small to hold old stack frames, please consider increase K value: Context(QString::QString[0, 0, 10efa7])"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efb5 [ ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"BinAbsInspector","message":"K is too small to hold old stack frames, please consider increase K value: Context(FUN_001233c0[0, 0, 10efb5])"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efbd [ ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efc5 [ ]"} {"timestamp":"2022-07-19T03:31:25","level":"WARN","logger":"BinAbsInspector","message":"K is too small to hold old stack frames, please consider increase K value: Context(QString::~QString[0, 0, 10efc5])"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efe4 [ ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010efef [ ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010eff9 [ ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f007 [ ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f02e [ ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 001103e8 [ 0010f02e (main) ]"} {"timestamp":"2022-07-19T03:32:32","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f04c [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f054 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f067 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f06f [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f079 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f08c [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f099 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0a1 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0a9 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0b1 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0b9 [ ]"} {"timestamp":"2022-07-19T03:32:33","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0cc [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0e4 [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0f3 [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f0fb [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f103 [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f115 [ ]"} {"timestamp":"2022-07-19T03:32:45","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f11d [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f125 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f137 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f13f [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f147 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f159 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f161 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f169 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f17b [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f183 [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f18b [ ]"} {"timestamp":"2022-07-19T03:33:00","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f193 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1a2 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1b2 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1ba [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1c2 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1cc [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f1d7 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f225 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f22f [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f247 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f24f [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f257 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f25f [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f267 [ ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 00120ebd [ 0010f267 (main) ]"} {"timestamp":"2022-07-19T03:33:01","level":"WARN","logger":"CWE","message":"CWE787: Stack Out-of-Bound Write @ 0010f9e6 [ ]"} INFO ANALYZING changes made by post scripts: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO REPORT: Post-analysis succeeded for file: /home/wjl/Desktop/headless_test/dde-file-manager (HeadlessAnalyzer)
INFO REPORT: Save succeeded for file: /dde-file-manager (HeadlessAnalyzer)

MatthewShao commented 2 years ago

CWE787这个误报问题已在：https://github.com/KeenSecurityLab/BinAbsInspector/commit/baa8b7a7d8951675c077b8916f777d31c065a33d 修复，但release中编译好的版本并未包含，如果急需的话可以自行编译最新代码
提供的日志看不出为何GUI和headless版本不一致，建议开启“-debug”选项比对两者分析过程

now4yreal commented 2 years ago

Hi:

Could you please tell your jdk version?

yijiyouyu commented 2 years ago

openjdk-11

cuanduo commented 1 year ago

CWE787这个误报问题已在：baa8b7a 修复，但release中编译好的版本并未包含，如果急需的话可以自行编译最新代码

提供的日志看不出为何GUI和headless版本不一致，建议开启“-debug”选项比对两者分析过程

在使用过程中发现，相比于命令行模式，GUI模式额外调用program.getSymbolTable().getLabelHistory()函数来获取符号表，定义外部函数，然而该函数仍为程序内部实现，导致部分函数命令行模式分析而GUI模式不分析。

KeenSecurityLab / BinAbsInspector

headless模式运行结果与GUI模式不同 #49