Multiple function definitions for __sigsetjmp at EXTERNAL:00000011 found. No function signature applied. (ApplyFunctionDataTypesCmd)

NSSL-SJTU / SaTC

A prototype of Shared-keywords aware Taint Checking, a novel static analysis approach that tracks the data flow of the user input between front-end and back-end to precisely detect security vulnerabilities.

274 stars 48 forks source link

Multiple function definitions for __sigsetjmp at EXTERNAL:00000011 found. No function signature applied. (ApplyFunctionDataTypesCmd) #6

Closed mz21g closed 2 years ago

mz21g commented 2 years ago

执行到这一步会卡住是怎么回事呀？使用的是docker hub的镜像

docker pull smile0304/satc

具体命令为：

python satc.py -d /home/squashfs-root/ -o /home/satc/res  --ghidra_script=ref2sink_cmdi --ghidra_script=ref2sink_bof --taint_check

固件是解密后的文件

smile0304 commented 2 years ago

方便的话提供一下固件吧。根据这个日志看应该是正常运行的，可能是分析文件太大导致程序假死

mz21g commented 2 years ago

老哥，固件发你谷歌邮箱了，抽时间麻烦看一下

smile0304 commented 2 years ago

我初步看了下您提供的固件，这个固件应该是个升级包，并不是一个完整的固件，所以在定位边界服务时已经出问题了，并且，静态资源文件也并不完整。你可以尝试从设备中将整个文件系统打包出来再做分析。

mz21g commented 2 years ago

明白了，那等我把整个文件系统提出来再试一下，谢谢啦