add description for commented lines in checkers #1349
Comments
|
Hey, |
|
Go ahead! If you have any problems regarding this, feel free to ask it here or on our communication channel. |
|
@peb-peb, is https://github.com/intel/cve-bin-tool/tree/main/cve_bin_tool/checkers#helper-script the expected link to helper script docs? I couldn't found it's copy on https://cve-bin-tool.readthedocs.io. |
|
@snosratiershad yup! that is the link for the docs. |
|
@peb-peb, I tried to find contains patterns with helper script on radare2, gimp, expat, ... but almost everytime it returns blank list. should I install or compile codebase of this packages and finally find patterns with analyzing strings in binary files? (for example using |
|
If the helper-script is failing in finding any appropriate patterns, then Yes, you would have to do it manually by extracting and searching for possible patterns. I'll also check for these (i.e. |
|
@peb-peb, I just noticed that |
|
It looks like this is pretty much done and safe to close. @anthonyharrison says we might have missed openLDAP so I'll open a separate issue for that. |
|
Hm, openLDAP looks ok to me (no commented lines) so I'm just gonna leave it as is. |
In #1189, we dicussed to add
# Alternate optional contains patterns, see <link to helper script docs> for more detailsin checkers where we have commented out strings inCONTAINS_PATTERNS, but it was not merged with #1189. So, the task for anyone who wants to work on this would be:# Alternate optional contains patterns, see <link to helper script docs> for more detailsin checkers which have strings commented out in them.Also, not every checker which do not have strings in
CONTAINS_PATTERNSwas searched and looked into in #1189. So, just putting the list down here to search in for those checkers:The text was updated successfully, but these errors were encountered: