Skip to content

NodeHodor/Hodor

BranchesTags

Repository files navigation

[TOC]

Hodor

Hodor for node.js

Callgraph analysis

Run

optional arguments:
  -h, --help            show this help message and exit
  -f FILETYPE, --fileType FILETYPE
                        file type, including file or package
  -p PATH, --path PATH  file path
  -i INIT, --init-name INIT
                        init file name

python3 hodor.py -f package -p {Application packages} -i {init}

Hodor Compilation

Prerequisites

nodejs

download node source code git clone https://github.com/nodejs/node.git

musl libc

  1. download musl gcc curl -LO https://musl.cc/x86_64-linux-musl-native.tgz
  2. extract musl gcc tar zxvf x86_64-linux-musl-native.tgz
  3. link musl gcc's libc.so to system path sudo ln -s $YOUR_PATH/x86_64-linux-musl-native/lib/libc.so /lib/ld-musl-x86_64.so.1

libseccomp

download libseccomp source code https://github.com/seccomp/libseccomp.git

compilation

pre compilation

  1. put seccomp.h and seccomp-syscalls.h to node/deps/uv/include
  2. enter libseccomp dir
    • CC=$YOUR_PATH/x86_64-linux-musl-native/bin/gcc CXX=$YOUR_PATH/x86_64-linux-musl-native/bin/g++ ./autogen.sh
    • CC=$YOUR_PATH/x86_64-linux-musl-native/bin/gcc CXX=$YOUR_PATH/x86_64-linux-musl-native/bin/g++ ./configure
    • make -j64
  3. enter libseccomp/src/.lib,copy libseccomp.a to musl's lib dir.
  4. modify node's configure.py,add '-lseccomp' to libraries

compilation

  1. run configure in node dir,CC=$YOUR_PATH/x86_64-linux-musl-native/bin/gcc CXX=$YOUR_PATH/x86_64-linux-musl-native/bin/g++ ./configure --without-inspector --without-intl
  2. make -j64

running

need LD_PRELOAD to specify dynamic libraries's loading path, two methods:

  1. in terminal: export LD_LIBRARY_PATH=$YOUR_PATH/x86_64-linux-musl-native/lib
  2. add to .zshrc: export LD_LIBRARY_PATH=$YOUR_PATH/x86_64-linux-musl-native/lib

run node's out/node

compile node-seccomp

CC=$YOUR_PATH/x86_64-linux-musl-native/bin/gcc CXX=$YOUR_PATH/x86_64-linux-musl-native/bin/g++ npm install --nodedir=$YOUR_PATH/node_musl_sec/node ./seccomp_demo NOTICE: nodedir is a directory,which contains node.js's source code.

Evaluation

Complete evaluation results are shown in the following items:

  1. Table 5 HODOR granularity of packages at system call level and thread level (RQ1).pdf
  2. Table 6 Exploit execution for packages with arbitrary command execution attacks.pdf
  3. Table 7 Exploit execution for packages with arbitrary code execution attacks.pdf
  4. Table 8 Vulnerability payloads.pdf
  5. Table 9 Engine-required system calls.pdf
  6. Figure 9 The relationships between line coverage and syscall numbe.pdf

About

Hodor for node.js

Resources

Readme
Activity

Stars

13 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages