[panda-users] taint2_enable_taint

[Manolis Stamatogiannakis]

Awesome, thanks!

I'll try to fill some details in the manual.

Btw, I noticed that there is also a PANDA_CB_BEFORE_REPLAY_LOADVM listed.
This seems to be complementary to PANDA_CB_AFTER_MACHINE_INIT. If this is
the case, maybe their names should be "harmonized"?

Or maybe PANDA_CB_BEFORE_REPLAY_LOADVM should be removed since it only
occurs in header and markdown files? (There may be another pending commit
somewhere for it.)

M.



On Jan 31, 2018 6:50 PM, "Brendan Dolan-Gavitt" <brendandg at nyu.edu> wrote:

> Ok, it's in master now. Still needs docs though.
>
> On Wed, Jan 31, 2018 at 10:50 AM, Brendan Dolan-Gavitt <brendandg at nyu.edu>
> wrote:
>
>> Yes, unfortunately. I believe this is because init_plugin is called
>> before the QEMU machine has been set up, so the taint system can't create
>> things like the shadow memory (since there's no RAM yet). I have a patch
>> that adds a callback for after_machine_init, at which point it's safe to
>> enable taint – I will try to get this upstreamed shortly...
>>
>> On Wed, Jan 31, 2018 at 10:44 AM, Manolis Stamatogiannakis <
>> mstamat at gmail.com> wrote:
>>
>>> I've found that taint2_enable_taint() segfaults if called from within
>>> init_plugin().
>>> Is this the expected behaviour?
>>>
>>> M.
>>>
>>> _______________________________________________
>>> panda-users mailing list
>>> panda-users at mit.edu
>>> http://mailman.mit.edu/mailman/listinfo/panda-users
>>>
>>>
>>
>>
>> --
>> Brendan Dolan-Gavitt
>> Assistant Professor, Department of Computer Science and Engineering
>> NYU Tandon School of Engineering
>>
>
>
>
> --
> Brendan Dolan-Gavitt
> Assistant Professor, Department of Computer Science and Engineering
> NYU Tandon School of Engineering
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/panda-users/attachments/20180201/9a48a2ae/attachment.html