[panda-users] Question for file_taint

Duo Zhang duozhang at iastate.edu
Mon Jul 19 12:38:04 EDT 2021 

Hi Andrew,

Through ldd, I see the lib you mentioned. I think I need to open an issue
on github. BTW, which PANDA version do you use right now? Could I try your
current version?

Thanks,
Duo

On Mon, Jul 19, 2021 at 11:18 AM Andrew Fasano <fasano at mit.edu> wrote:

> Have you tried apt install libz3-dev? Perhaps the install_ubuntu.sh script
> missed that one for some reason.
>
> If you run `ldd
> /home/duo/qemu/panda/build/x86_64-softmmu/panda/plugins/panda_taint2.so`
> you'll see all the libraries that shared object is trying to load, on my
> system I have libz3.so.4 => /lib/x86_64-linux-gnu/libz3.so.4 which
> provides the symbol you're missing. That's the library you'll need to
> install.
>
> If that doesn't help, please open an issue
> <https://github.com/panda-re/panda/issues/new/choose> on our Github and
> provide some additional details about what os/version you're running and
> how you installed panda.
> Or you can just use our docker container which has PANDA set up and ready
> to use: https://hub.docker.com/r/pandare/panda.
>
> Andrew
>
> On Mon, Jul 19, 2021 at 11:56 AM Duo Zhang <duozhang at iastate.edu> wrote:
>
>> Hi Andrew,
>>
>> Thanks for your replay. I tried install_ubuntu.sh script to install
>> panda, and also success. However, the error still persists when I use the
>> file_taint. My experiment is based on this one:
>> https://github.com/panda-re/panda/issues/607
>>
>> Thanks,
>> Duo
>>
>> On Mon, Jul 19, 2021 at 8:52 AM Andrew Fasano <fasano at mit.edu> wrote:
>>
>>> Hi Duo,
>>>
>>> It looks like you're missing a library for the Z3 SAT solver used by the
>>> taint plugin. I suspect the missing package is libz3-dev - can you try
>>> installing that from apt if you don't have it already?
>>>
>>> If you're using Ubuntu, did you set up PANDA with our install_ubuntu.sh
>>> script? If so, that should have automatically set up all the dependencies
>>> for you (by installing the packages listed in the panda/dependencies/[os
>>> name:version]_*.txt files). If you used the install script and still ran
>>> into this issue we might have a bug in that script that we should fix.
>>>
>>> Cheers,
>>> Andrew
>>>
>>> On Thu, Jul 15, 2021 at 4:06 PM Duo Zhang <duozhang at iastate.edu> wrote:
>>>
>>>> Hello developers,
>>>>
>>>> I tried the latest version of PANDA with the file_taint plugin but it
>>>> failed with the image you provided online. I list the error information
>>>> below:
>>>>
>>>> ./x86_64-softmmu/panda-system-x86_64 -m 4G
>>>> /home/duo/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2 -replay foo1
>>>> -os linux-64-ubuntu:my_info -panda file_taint:filename=test.sh
>>>> PANDA[core]:os_familyno=2 bits=64 os_details=ubuntu:my_info
>>>> PANDA[file_taint]:adding argument filename=test.sh.
>>>> PANDA[core]:initializing file_taint
>>>> PANDA[core]:loading required plugin syscalls2
>>>> PANDA[core]:initializing syscalls2
>>>> PANDA[syscalls2]:using profile for linux x64 64-bit
>>>> PANDA[core]:loading required plugin hooks
>>>> PANDA[core]:initializing hooks
>>>> PANDA[core]:loading required plugin osi
>>>> PANDA[core]:initializing osi
>>>> PANDA[core]:loading required plugin osi_linux
>>>> PANDA[core]:initializing osi_linux
>>>> PANDA[osi_linux]:W> failed to read task.start_time_offset
>>>> PANDA[osi_linux]:W> failed to read task.switch_task_hook_addr
>>>> PANDA[osi_linux]:W> kernelinfo bytes [20-23] not read
>>>> PANDA[core]:loading required plugin syscalls2
>>>> PANDA[core]:/home/duo/qemu/panda/build/x86_64-softmmu/panda/plugins/panda_syscalls2.so
>>>> already loaded
>>>> PANDA[core]:loading required plugin taint2
>>>> Failed to load
>>>> /home/duo/qemu/panda/build/x86_64-softmmu/panda/plugins/panda_taint2.so:
>>>> /home/duo/qemu/panda/build/x86_64-softmmu/panda/plugins/panda_taint2.so:
>>>> undefined symbol: Z3_mk_seq_concat
>>>> PANDA[core]:FAILED to load required plugin taint2 from
>>>> /home/duo/qemu/panda/build/x86_64-softmmu/panda/plugins/panda_taint2.so
>>>> Aborted (core dumped)
>>>>
>>>> Can anyone help me solve the problem?
>>>>
>>>> Thanks,
>>>> Duo
>>>> _______________________________________________
>>>> panda-users mailing list
>>>> panda-users at mit.edu
>>>> http://mailman.mit.edu/mailman/listinfo/panda-users
>>>>
>>>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/panda-users/attachments/20210719/692ed998/attachment-0001.html

More information about the panda-users mailing list