Skip to content
Snippets Groups Projects
Commit 92819ad1 authored by an7s's avatar an7s
Browse files

Robustify script

parent 9e2476a7
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 85 additions and 21 deletions
SMP-analyze.sh
+ 85
21
View file @ 92819ad1
#!/bin/bash -x #!/bin/bash
# assumption for CGC: only 1 file to be analyzed
if [ -z "$IDA_PRO_SERVER_HOST" ]; then echo Failed to set IDA_PRO_SERVER_HOST; exit 2; fi if [ -z "$IDA_PRO_SERVER_HOST" ]; then echo Failed to set IDA_PRO_SERVER_HOST; exit 2; fi
if [ -z "$IDA_PRO_SERVER_USER" ]; then if [ -z "$IDA_PRO_SERVER_USER" ]; then
...@@ -8,14 +10,38 @@ if [ -z "$IDA_PRO_SERVER_PORT" ]; then ...@@ -8,14 +10,38 @@ if [ -z "$IDA_PRO_SERVER_PORT" ]; then
IDA_PRO_SERVER_PORT=22 IDA_PRO_SERVER_PORT=22
fi fi
if [ -z "$MAX_IDA_PROCESSES" ]; then
MAX_IDA_PROCESSES=25
echo "Max analysis processes not specified, set to $MAX_IDA_PROCESSES"
fi
if [ -z "$1" ]; then
echo Failed to specify binary to be analyzed
exit 3
fi
file=$1 file=$1
md5name=$(md5sum $file | awk '{print $1}') md5name=$(md5sum $file | awk '{print $1}')
directory=/tmp/remote-analyze/${md5name} if [ -z "$md5name" ]; then
echo Failed to obtain md5 hash for file to be analyzed
exit 4
fi
DIRECTORY=/tmp/remote-analyze/${md5name}
# in seconds
COPY_TIMEOUT=75
SIMPLE_TIMEOUT=10
ANALYZE_TIMEOUT=7200
verify_host_live() verify_host_live()
{ {
remotehost=$1 remotehost=$1
ping -c 5 -w 5 $remotehost
echo "Verify host $remotehost is live"
ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost ls /tmp >/dev/null
if [ ! $? -eq 0 ]; then if [ ! $? -eq 0 ]; then
return 1 return 1
fi fi
...@@ -26,16 +52,22 @@ verify_host_live() ...@@ -26,16 +52,22 @@ verify_host_live()
copy_STARS_info() copy_STARS_info()
{ {
remotehost=$1 remotehost=$1
echo "Retrieve STARS info from host $remotehost"
# Copy the answer back # Copy the answer back
scp -o ConnectTimeout=75 -o BatchMode=yes -P $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost:${directory}/a.ncexe.* . scp -o ConnectTimeout=$COPY_TIMEOUT -o BatchMode=yes -P $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost:${DIRECTORY}/a.ncexe.* .
return $? return $?
} }
server_has_cached_info() server_has_cached_info()
{ {
remotehost=$1 remotehost=$1
echo "Check whether STARS results already present from host $remotehost"
# Copy the answer back # Copy the answer back
ssh -o ConnectTimeout=10 -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost ls -l ${directory}/a.ncexe.infoannot > tmp.$$ ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost ls -l ${DIRECTORY}/a.ncexe.infoannot > tmp.$$
if [ -f tmp.$$ ]; then if [ -f tmp.$$ ]; then
grep a.ncexe.infoannot tmp.$$ grep a.ncexe.infoannot tmp.$$
if [ ! $? -eq 0 ]; then if [ ! $? -eq 0 ]; then
...@@ -53,6 +85,7 @@ copy_and_verify_result() ...@@ -53,6 +85,7 @@ copy_and_verify_result()
remotehost=$1 remotehost=$1
annotfile=$2 annotfile=$2
echo "Copy and sanity check STARS results from host $remotehost"
copy_STARS_info $remotehost copy_STARS_info $remotehost
lines=`cat $annotfile | wc -l` lines=`cat $annotfile | wc -l`
...@@ -64,42 +97,62 @@ copy_and_verify_result() ...@@ -64,42 +97,62 @@ copy_and_verify_result()
return 0 return 0
} }
cleanup_remote_host()
{
remotehost=$1
echo "Cleanup host $remotehost"
ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $remotehost rm -f ${DIRECTORY}/a.i64
}
run_remote_command() run_remote_command()
{ {
remotehost=$1 remotehost=$1
shift shift
echo "Remote analyze on host $remotehost" echo "Remote analyze on host $remotehost"
ssh -o ConnectTimeout=10 -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost mkdir -p ${directory}
# Create remote DIRECTORY
ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost mkdir -p ${DIRECTORY}
# Check to see if the Ida Pro Server is too busy now and wait if necc. # Check to see if the Ida Pro Server is too busy now and wait if necc.
if [ -n "$MAX_IDA_PROCESSES" ]; then if [ -n "$MAX_IDA_PROCESSES" ]; then
while [ `ssh -o ConnectTimeout=10 -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost pgrep idal|wc -l` -ge "$MAX_IDA_PROCESSES" ]; do if [ `ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost pgrep idal64|wc -l` -ge "$MAX_IDA_PROCESSES" ]; then
random=`od -An -N2 -tu2 /dev/urandom` echo "Remote server $remotehost too busy (max allowed: $MAX_IDA_PROCESSES) -- skip it"
# Wait 10-30 seconds return 1
seconds=`expr $random % 20 + 10` fi
echo Waiting $seconds seconds for an IDA process to exit... # while [ `ssh -o ConnectTimeout=$SIMPLE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost pgrep idal64|wc -l` -ge "$MAX_IDA_PROCESSES" ]; do
sleep $seconds # random=`od -An -N2 -tu2 /dev/urandom`
done # # Wait 10-30 seconds
# seconds=`expr $random % 20 + 10`
# echo Waiting $seconds seconds for an IDA process to exit...
# sleep $seconds
# done
fi fi
scp -o ConnectTimeout=75 -o BatchMode=yes -P $IDA_PRO_SERVER_PORT -q $@ $IDA_PRO_SERVER_USER@$remotehost:$directory # Copy files to be processed to remote DIRECTORY
scp -o ConnectTimeout=$COPY_TIMEOUT -o BatchMode=yes -P $IDA_PRO_SERVER_PORT -q $@ $IDA_PRO_SERVER_USER@$remotehost:$DIRECTORY
if [ ! $? -eq 0 ]; then if [ ! $? -eq 0 ]; then
return 1 return 1
fi fi
ssh -o ConnectTimeout=7200 -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost "cd ~/techx_umbrella/peasoup; source set_env_vars; export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:.; cd $directory; screen -D -L -ln -m -a -T xterm sh -x "'$SMPSA_HOME'"/SMP-analyze.sh $@" 2>&1 # Give it max 2 hours for analysis
ssh -o ConnectTimeout=$ANALYZE_TIMEOUT -o BatchMode=yes -p $IDA_PRO_SERVER_PORT $IDA_PRO_SERVER_USER@$remotehost "cd ~/techx_umbrella/peasoup; source set_env_vars; export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:.; cd $DIRECTORY; screen -D -L -ln -m -a -T xterm sh -x "'$SMPSA_HOME'"/SMP-analyze.sh $@" 2>&1
if [ ! $? -eq 0 ]; then if [ ! $? -eq 0 ]; then
return 1 return 1
fi fi
copy_and_verify_result $remotehost $file.annot copy_and_verify_result $remotehost $file.annot
return $? rc=$?
# cleanup_remote_host remote directory (a.i64)
cleanup_remote_host $remotehost
return $rc
} }
# FIXME: need to handle multiple files to be analyzed? # FIXME: need to handle multiple files to be analyzed?
exit_code=1 exit_code=1
# try host 1
verify_host_live $IDA_PRO_SERVER_HOST verify_host_live $IDA_PRO_SERVER_HOST
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
server_has_cached_info $IDA_PRO_SERVER_HOST server_has_cached_info $IDA_PRO_SERVER_HOST
...@@ -107,7 +160,9 @@ if [ $? -eq 0 ]; then ...@@ -107,7 +160,9 @@ if [ $? -eq 0 ]; then
echo SERVER HAS ALREADY ANALYZED $md5name, retrieving cached info echo SERVER HAS ALREADY ANALYZED $md5name, retrieving cached info
copy_and_verify_result $remotehost $file.annot copy_and_verify_result $remotehost $file.annot
exit_code=$? exit_code=$?
else fi
if [ ! $exit_code -eq 0 ]; then
run_remote_command $IDA_PRO_SERVER_HOST $@ run_remote_command $IDA_PRO_SERVER_HOST $@
exit_code=$? exit_code=$?
fi fi
...@@ -115,17 +170,26 @@ else ...@@ -115,17 +170,26 @@ else
echo "Host $IDA_PRO_SERVER_HOST is not responding" echo "Host $IDA_PRO_SERVER_HOST is not responding"
fi fi
# if needed, try host 2
if [ ! $exit_code -eq 0 ]; then if [ ! $exit_code -eq 0 ]; then
echo "Error detected on primary $IDA_PRO_SERVER_HOST, failing over to $IDA_PRO_SERVER_HOST2" echo "Error detected on primary $IDA_PRO_SERVER_HOST, failing over to $IDA_PRO_SERVER_HOST2"
verify_host_live $IDA_PRO_SERVER_HOST2 verify_host_live $IDA_PRO_SERVER_HOST2
if [ ! $? -eq 0 ]; then if [ ! $? -eq 0 ]; then
echo "Backup host $IDA_PRO_SERVER_HOST2 is not responding" echo "Backup host $IDA_PRO_SERVER_HOST2 is not responding"
exit 1 exit 1
fi fi
run_remote_command $IDA_PRO_SERVER_HOST2 $@ server_has_cached_info $IDA_PRO_SERVER_HOST2
exit_code=$? if [ $? -eq 0 ]; then
echo SERVER HAS ALREADY ANALYZED $md5name, retrieving cached info
copy_and_verify_result $IDA_PRO_SERVER_HOST2 $file.annot
exit_code=$?
fi
if [ ! $exit_code -eq 0 ]; then
run_remote_command $IDA_PRO_SERVER_HOST2 $@
exit_code=$?
fi
fi fi
exit $exit_code exit $exit_code
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment