problem with creating trace files
35 views
Skip to first unread message
민재원
Apr 7, 2012, 5:29:26 AM4/7/12
to BitBlaze User Discussion group
hi
I followed the example tracing steps posted in the bitblaze homepage
However, number of traced instructions is 0 and of course, filesize of
the tracefile is also 0.
How can I get tracefiles with actual traces??
Thanks in advance
I followed the example tracing steps posted in the bitblaze homepage
However, number of traced instructions is 0 and of course, filesize of
the tracefile is also 0.
How can I get tracefiles with actual traces??
Thanks in advance
Alex Bazhanyuk
Apr 7, 2012, 4:14:18 PM4/7/12
to bitblaz...@googlegroups.com
could you write command lines which i using?
could you check mail.ini:
tracing_tainted_only = no
could you check which taint_data was been?
Thanks,
Alex
could you check mail.ini:
tracing_tainted_only = no
could you check which taint_data was been?
Thanks,
Alex
민재원
Apr 9, 2012, 1:16:06 AM4/9/12
to BitBlaze User Discussion group
First of all, I checked the main.ini file and it was
"tracing_tainted_only = no"
Program I traced is:
---------------------------------------
#include <stdio.h>
int main(int argc, char **argv)
{
int x;
scanf("%d", &x);
if (x != 5)
printf("Hello\n");
return 0;
}
--------------------------------------------------
Following is the input I gave to the qemu terminal
--------------------------------------------------
(qemu) trace 4595 foo.trace
PID: 4595 CR3: 0x07bc7000
(qemu) taint_sendkey a 1001
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1002
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1003
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1004
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1005
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1006
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1007
(qemu) Tainting keystroke: 9 00000001
taint_sendkey ret 1008
(qemu) Tainting keystroke: 9 00000001
trace_stop
Stop tracing process 4595
Number of instructions decoded: 0
Number of operands decoded: 0
Number of instructions written to trace: 0
Number of tainted instructions written to trace: 0
Processing time: 6.22039 U: 1.76411 S: 4.45628
Generating file: foo.trace.functions
(qemu)
--------------------------------------------------------
"tracing_tainted_only = no"
Program I traced is:
---------------------------------------
#include <stdio.h>
int main(int argc, char **argv)
{
int x;
scanf("%d", &x);
if (x != 5)
printf("Hello\n");
return 0;
}
--------------------------------------------------
Following is the input I gave to the qemu terminal
--------------------------------------------------
(qemu) trace 4595 foo.trace
PID: 4595 CR3: 0x07bc7000
(qemu) taint_sendkey a 1001
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1002
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1003
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1004
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1005
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1006
(qemu) Tainting keystroke: 9 00000001
taint_sendkey a 1007
(qemu) Tainting keystroke: 9 00000001
taint_sendkey ret 1008
(qemu) Tainting keystroke: 9 00000001
trace_stop
Stop tracing process 4595
Number of instructions decoded: 0
Number of operands decoded: 0
Number of instructions written to trace: 0
Number of tainted instructions written to trace: 0
Processing time: 6.22039 U: 1.76411 S: 4.45628
Generating file: foo.trace.functions
(qemu)
--------------------------------------------------------
Aravind Prakash
Apr 9, 2012, 9:15:04 AM4/9/12
to bitblaz...@googlegroups.com
You have not 'enable_emulation' after 'trace 4595 foo.trace'. You need that to start getting callbacks.
Aravind
민재원
Apr 9, 2012, 10:02:40 PM4/9/12
to BitBlaze User Discussion group
Wow,, I didn't know I forgot that
Thanks alot
On Apr 9, 10:15 pm, Aravind Prakash <prakar...@gmail.com> wrote:
> You have not 'enable_emulation' after 'trace 4595 foo.trace'. You need that to start getting callbacks.
>
> Aravind
>
Thanks alot
On Apr 9, 10:15 pm, Aravind Prakash <prakar...@gmail.com> wrote:
> You have not 'enable_emulation' after 'trace 4595 foo.trace'. You need that to start getting callbacks.
>
> Aravind
>
Reply all
Reply to author
Forward
0 new messages