Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Resolving #178 #193

Merged
merged 3 commits into from
Nov 17, 2019
Merged

Resolving #178 #193

merged 3 commits into from
Nov 17, 2019

Conversation

sritejakv
Copy link
Collaborator

  • Added a boomerang query to find the points to information of the call site parameters. For each of the array parameters, its constants are found by traversing through the jimple method body.
  • Added a headless test for SSLParameters.

@sritejakv
Resolving #178
d57e745 
 - Added a boomerang query to find the points to information of the call site parameters. For each of the array parameters, its constants are found by traversing through the jimple method body.
 - Added a headless test for SSLParameters.
kruegers
kruegers requested changes Nov 5, 2019
View reviewed changes
CryptoAnalysis/src/main/java/crypto/constraints/ConstraintSolver.java Outdated
super(c);
this.icfg = icfg;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please do not drag icfg, Bommerang and all that into the constraint solver. The field parsAndVals (defined in line 78) contains the values of all objects. The extraction happens someplace else. Rather move the triggering of Boomerang to retrieve the array values.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removed boomerang and icfg and changed the implementation using parsAndVals.

CryptoAnalysis/src/main/java/crypto/constraints/ConstraintSolver.java Outdated
*/
private BackwardBoomerangResults<NoWeight> getBoomerangResults(Value sootValue, CallSiteWithParamIndex callSite,
ExtractedValue allocSite, ObservableICFG<Unit, SootMethod> dynICFG){
Boomerang boomerang = new Boomerang(new CogniCryptIntAndStringBoomerangOptions()) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Attempt to minimize the number of Boomerang instance over the whole analysis. By moving this code to where the extraction takes place as suggested above, you should be able to get rid of this instance.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removed the boomerang call as it is not required.

@sritejakv
Removing icfg.
28ee5b1 
- Removed the usage of boomerang and icfg.
- Array values are fetched using parsAndVals variable.
@sritejakv
Update ConstraintSolver.java
b4594f6 
- Added java doc
@kruegers kruegers merged commit 1c4b5da into develop Nov 17, 2019
@smeyer198 smeyer198 deleted the fix_178 branch November 25, 2023 14:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kruegers kruegers kruegers approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@sritejakv @kruegers