<div dir="ltr"><div>Given the opportunity, a small update on my work on turning taint analysis on/off.</div><div><br></div><div>Plan A was to switch between LLVM/TCG when taint analysis is on/off. There are some waning comments in PANDA code that this should not work because of a bug in the LLVM pass registration code. But before reaching that point, I believe I've hit a different bug. The bug seems to be allocation-related and I haven't been able to resolve it for some time now.<br></div><br><div>So I'll probably switch to plan B, which is to stay in LLVM mode after taint analysis has been enabled and only switch off taint propagation when it is not needed.</div><div><br></div><div>I'll try to send a PR with what I've done in the following days. In the meantime, my working branch is here: <a href="https://github.com/m000/panda/tree/taint2-wip">https://github.com/m000/panda/tree/taint2-wip</a><br></div><div><br></div><div>M.<br></div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr">Στις Τετ, 20 Ιουν 2018 στις 5:03 μ.μ., ο/η Brendan Dolan-Gavitt <<a href="mailto:brendandg@nyu.edu">brendandg@nyu.edu</a>> έγραψε:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">There is no way to record just a single process. However, if the<br>
recording is too large you can use the "scissors" plugin to chop it<br>
down to just the part you care about. Also, I think Manolis<br>
Stamatogiannakis has done some work on selectively enabling and<br>
disabling the taint system so that it's only active when the process<br>
you want is running, but I don't know if that work is publicly<br>
available yet.<br>
<br>
-Brendan<br>
<br>
On Wed, Jun 20, 2018 at 3:39 AM, shuai xi <<a href="mailto:ahahanamea@gmail.com" target="_blank">ahahanamea@gmail.com</a>> wrote:<br>
> hello developer, i want to use panda2 plugins like 'taint2' to analysis a<br>
> program. But the 'record' function records whole system. i want to just<br>
> focus on this program's process and use the process's virtual address to<br>
> taint a buffer of memory. Dose panda2 provide this functionality?<br>
><br>
> _______________________________________________<br>
> panda-users mailing list<br>
> <a href="mailto:panda-users@mit.edu" target="_blank">panda-users@mit.edu</a><br>
> <a href="http://mailman.mit.edu/mailman/listinfo/panda-users" rel="noreferrer" target="_blank">http://mailman.mit.edu/mailman/listinfo/panda-users</a><br>
><br>
<br>
<br>
<br>
-- <br>
Brendan Dolan-Gavitt<br>
Assistant Professor, Department of Computer Science and Engineering<br>
NYU Tandon School of Engineering<br>
_______________________________________________<br>
panda-users mailing list<br>
<a href="mailto:panda-users@mit.edu" target="_blank">panda-users@mit.edu</a><br>
<a href="http://mailman.mit.edu/mailman/listinfo/panda-users" rel="noreferrer" target="_blank">http://mailman.mit.edu/mailman/listinfo/panda-users</a><br>
</blockquote></div>