search

NSSL-SJTU / SaTC

A prototype of Shared-keywords aware Taint Checking, a novel static analysis approach that tracks the data flow of the user input between front-end and back-end to precisely detect security vulnerabilities.
274 stars 48 forks source link

error in use_sim_procedures #4

Open harden614 opened 3 years ago

harden614 commented 3 years ago

用smile的docker对dir-878使用bof脚本进行复现的过程中,报assert错误,提示使用angr 的use_sim_procedures,具体怎么用呀。 image

smile0304 commented 3 years ago

提供一下具体的Docker镜像版本

harden614 commented 3 years ago

就是你给的呀v1.0

smile0304 commented 3 years ago

用latest版本试试。docker pull smile0304/satc

harden614 commented 3 years ago

还是报一样的错啊 源码都没有改 怎么能不报错呢 use_sim_procedures那里

smile0304 commented 3 years ago

提供下运行命令

harden614 commented 3 years ago

python satc.py -d /home/satc/dlink_878 -o /home/satc/res --ghidra_script=ref2sink_cmdi --ghidra_script=ref2sink_bof --taint_check

smile0304 commented 3 years ago

提供一下你的固件版本和固件。DIR-878的固件是加密的,需要手动解密后再运行SaTC

harden614 commented 3 years ago

官网下的1.30 加密的 解密完了试的

harden614 commented 2 years ago

use server to runNov 13, 20213:27 PM,Ry1ynn @.***> 写道:Encountered the same error, how to solve it?—You are receiving this because you authored the thread.Reply to this email directly, view it on GitHub, or unsubscribe.Triage notifications on the go with GitHub Mobile for iOS or Android.

harden614 commented 2 years ago

用服务器跑就可以了Nov 26, 202110:39 PM,0x13 @.***> 写道:我也出现了这个问题,我在 https://github.com/NSSL-SJTU/SaTC/blob/py2_env/src/taint_check/bug_finder/taint.py#L771 这个地方加了一个 use_sim_procedures = True 就没这个 assert 报错了—You are receiving this because you authored the thread.Reply to this email directly, view it on GitHub, or unsubscribe.Triage notifications on the go with GitHub Mobile for iOS or Android.

miko99jh commented 2 years ago

请问这个问题是怎么解决的呢,在 https://github.com/NSSL-SJTU/SaTC/blob/py2_env/src/taint_check/bug_finder/taint.py#L771加了use_sim_procedures = True 还是报一样的错,用的latest版本的镜像和作者提供的固件dir-878

wyxxl commented 1 year ago

请问这个问题是怎么解决的呢,在 https://github.com/NSSL-SJTU/SaTC/blob/py2_env/src/taint_check/bug_finder/taint.py#L771加了use_sim_procedures = True 还是报一样的错,用的latest版本的镜像和作者提供的固件dir-878

请问你解决了吗,我也遇到这个问题

re1wn commented 7 months ago

请问这个问题是怎么解决的呢,在 https://github.com/NSSL-SJTU/SaTC/blob/py2_env/src/taint_check/bug_finder/taint.py#L771加了use_sim_procedures = True 还是报一样的错,用的latest版本的镜像和作者提供的固件dir-878

请问你解决了吗,我也遇到这个问题

我也遇到了相同问题,请问您现在解决了吗?