trailofbits
diff --git a/‎.github/workflows/ci.yml
Lines changed: 247 additions & 0 deletions b/‎.github/workflows/ci.yml
Lines changed: 247 additions & 0 deletions
diff --git a/‎.travis.yml
Lines changed: 0 additions & 66 deletions b/‎.travis.yml
Lines changed: 0 additions & 66 deletions
diff --git a/‎CHANGELOG.md
Lines changed: 45 additions & 1 deletion b/‎CHANGELOG.md
Lines changed: 45 additions & 1 deletion
diff --git a/‎CONTRIBUTING.md
Lines changed: 14 additions & 4 deletions b/‎CONTRIBUTING.md
Lines changed: 14 additions & 4 deletions
@@ -0,0 +1,247 @@
+name: CI
+
+on:
+  push:
+    branches:
+      - master
+  pull_request:
+  schedule:
+    # run CI every day even if no PRs/merges occur
+    - cron:  '0 12 * * *'
+
+jobs:
+  # needs to run only on pull_request
+  lint:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v1
+    - name: Set up Python 3.6
+      uses: actions/setup-python@v1
+      with:
+        python-version: 3.6
+    - name: Lint
+      if: github.event_name == 'pull_request'
+      env:
+        BASE_SHA: ${{ github.event.pull_request.base.sha }}
+        HEAD_SHA: ${{ github.event.pull_request.head.sha }}
+      run: |
+        pip install -e .[lint]
+        black --version
+        git diff --name-only $BASE_SHA..$HEAD_SHA | python scripts/pyfile_exists.py | xargs black --diff --check
+        mypy --version
+        mypy
+  tests:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        type: ["examples", "ethereum", "ethereum_bench", "ethereum_vm", "native", "wasm", "other"]
+    steps:
+    - uses: actions/checkout@v1
+    - name: Set up Python 3.6
+      uses: actions/setup-python@v1
+      with:
+        python-version: 3.6
+    - name: Install dependencies
+      env:
+        TEST_TYPE: ${{ matrix.type }}
+      run: |
+        # Install solc unconditionally because it only takes a second or two
+        sudo wget -O /usr/bin/solc https://github.com/ethereum/solidity/releases/download/v0.4.24/solc-static-linux
+        sudo chmod +x /usr/bin/solc
+        EXTRAS="dev-noks"
+        if [[ "$TEST_TYPE" != "ethereum"* ]]; then
+          EXTRAS="dev"
+        fi
+        pip install -e .[$EXTRAS]
+    - name: Run Tests
+      env:
+        TEST_TYPE: ${{ matrix.type }}
+      run: |
+        # Launches all examples; this assumes PWD is examples/script
+        launch_examples() {
+            # concolic assumes presence of ../linux/simpleassert
+            echo "Running concolic.py..."
+            HW=../linux/helloworld
+            python ./concolic.py
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            echo "Running count_instructions.py..."
+            python ./count_instructions.py $HW |grep -q Executed
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            echo "Running introduce_symbolic_bytes.py..."
+            gcc -static -g src/state_explore.c -o state_explore
+            ADDRESS=0x$(objdump -S state_explore | grep -A 1 '((value & 0xff) != 0)' |
+                    tail -n 1 | sed 's|^\s*||g' | cut -f1 -d:)
+            python ./introduce_symbolic_bytes.py state_explore $ADDRESS
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            echo "Running run_simple.py..."
+            gcc -x c -static -o hello test_run_simple.c
+            python ./run_simple.py hello
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            echo "Running run_hook.py..."
+            MAIN_ADDR=$(nm $HW|grep 'T main' | awk '{print "0x"$1}')
+            python ./run_hook.py $HW $MAIN_ADDR
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            echo "Running state_control.py..."
+            # Straight from the header of state_control.py
+            gcc -static -g src/state_explore.c -o state_explore
+            SE_ADDR=0x$(objdump -S state_explore | grep -A 1 'value == 0x41' |
+                       tail -n 1 | sed 's|^\s*||g' | cut -f1 -d:)
+            python ./state_control.py state_explore $SE_ADDR
+            if [ $? -ne 0 ]; then
+                return 1
+            fi
+
+            return 0
+        }
+
+        make_vmtests(){
+            DIR=`pwd`
+            if  [ ! -f ethereum_vm/.done ]; then
+                echo "Automaking VMTests" `pwd`
+                cd ./tests/ && mkdir -p  ethereum_vm/VMTests_concrete && mkdir -p ethereum_vm/VMTests_symbolic
+                rm -Rf vmtests; git clone https://github.com/ethereum/tests --depth=1 vmtests
+                for i in ./vmtests/VMTests/*; do python ./auto_generators/make_VMTests.py $i; done
+                for i in ./vmtests/VMTests/*; do python ./auto_generators/make_VMTests.py $i --symbolic; done
+                rm -rf ./vmtests
+                touch ethereum_vm/.done
+            fi
+            cd $DIR
+        }
+
+        make_wasm_tests(){
+            DIR=`pwd`
+            if  [ ! -f .wasm_done ]; then
+                echo "Automaking WASM Tests" `pwd`
+                cd ./tests/wasm
+                ./generate_tests.sh
+                touch .wasm_done
+            fi
+            cd $DIR
+        }
+
+        install_truffle(){
+            curl -o- https://raw.githubusercontent.com/creationix/nvm/v0.34.0/install.sh | bash
+            source ~/.nvm/nvm.sh
+            nvm install --lts
+            nvm use --lts
+
+            npm install -g truffle
+        }
+
+        run_truffle_tests(){
+            mkdir truffle_tests
+            cd truffle_tests
+            truffle unbox metacoin
+            manticore . --contract MetaCoin --workspace output
+            ### The original comment says we should get 41 states, but after implementing the shift
+            ### insructions, we get 31. Was the original comment a typo?
+
+            # The correct answer should be 41
+            # but Manticore fails to explore the paths due to the lack of the 0x1f opcode support
+            # see https://github.com/trailofbits/manticore/issues/1166
+            # if [ "$(ls output/*tx -l | wc -l)" != "41" ]; then
+            if [ "$(ls output/*tx -l | wc -l)" != "13" ]; then
+                echo "Truffle test failed" `ls output/*tx -l | wc -l` "!= 13"
+                return 1
+            fi
+            echo "Truffle test succeded"
+            cd ..
+            return 0
+        }
+
+        run_tests_from_dir() {
+            DIR=$1
+            pytest --cov=manticore -n auto "tests/$DIR"
+            coverage xml
+        }
+
+        run_examples() {
+            pushd examples/linux
+            make
+            for example in $(make list); do
+                ./$example < /dev/zero > /dev/null
+            done
+            echo Built and ran Linux examples
+            popd
+
+            pushd examples/script
+            launch_examples
+            RESULT=$?
+            echo Ran example scripts
+            popd
+            return $RESULT
+        }
+
+        # Test type
+        case $TEST_TYPE in
+            ethereum_vm)
+                make_vmtests
+                echo "Running only the tests from 'tests/$TEST_TYPE' directory"
+                run_tests_from_dir $TEST_TYPE
+                RV=$?
+
+          echo "Running truffle test"
+                install_truffle
+                run_truffle_tests
+                RV=$(($RV + $?))
+                ;;
+            wasm)
+                make_wasm_tests     ;&  # Fallthrough
+            native)                 ;&  # Fallthrough
+            ethereum)               ;&  # Fallthrough
+            ethereum_bench)         ;&  # Fallthrough
+            other)
+                echo "Running only the tests from 'tests/$TEST_TYPE' directory"
+                run_tests_from_dir $TEST_TYPE
+                RV=$?
+                ;;
+
+            examples)
+                run_examples
+                ;;
+
+            all)
+                echo "Running all tests registered in travis_test.sh: examples, native, ethereum, ethereum_vm, other";
+
+                # Functions should return 0 on success and 1 on failure
+                RV=0
+                run_tests_from_dir native
+                RV=$(($RV + $?))
+                run_tests_from_dir ethereum
+                RV=$(($RV + $?))
+                make_vmtests; run_tests_from_dir ethereum_vm
+                RV=$(($RV + $?))
+                make_wasm_tests; run_tests_from_dir wasm
+                RV=$(($RV + $?))
+                run_tests_from_dir other
+                RV=$(($RV + $?))
+                run_examples
+                RV=$(($RV + $?))
+                ;;
+
+            *)
+                echo "Usage: $0 [examples|native|ethereum|ethereum_vm|other|all]"
+                exit 3;
+                ;;
+        esac
+    - name: Coverage Upload
+      uses: codecov/codecov-action@v1
+      with:
+        token: ${{ secrets.CODECOV_TOKEN }}
+        file: ./coverage.xml
+        yml: ./codecov.yml
@@ -1,6 +1,50 @@
 # Change Log
 
-## [Unreleased](https://github.com/trailofbits/manticore/compare/0.3.1...HEAD)
+## [Unreleased](https://github.com/trailofbits/manticore/compare/0.3.2...HEAD)
+
+## 0.3.2 - 2019-11-11
+
+Thanks to our external contributors!
+
+ - [Srinivas11789](https://github.com/trailofbits/manticore/commits?author=Srinivas11789)
+ - [catenacyber](https://github.com/trailofbits/manticore/commits?author=catenacyber)
+ - [Boyan-MILANOV](https://github.com/trailofbits/manticore/commits?author=Boyan-MILANOV)
+
+### Ethereum
+* **[added API]** Use higher-level test generation to symbolically execute SHA3 [#1526](https://github.com/trailofbits/manticore/pull/1526)
+* **[added API]** Added fast unsound SHA3 strategy [#1549](https://github.com/trailofbits/manticore/pull/1549)
+* **[added API]** Added plugin for discarding states without changes to storage [#1507](https://github.com/trailofbits/manticore/pull/1507)
+* **[fixed API]** Fix `ADDMOD` and `MULMOD` [#1531](https://github.com/trailofbits/manticore/pull/1531)
+* Warn on missing bytecode [#1534](https://github.com/trailofbits/manticore/pull/1534)
+* Simplifiy PC upon modification [#1523](https://github.com/trailofbits/manticore/pull/1523)
+
+
+### Native
+* Better memory tests ([#1506](https://github.com/trailofbits/manticore/pull/1506), [1524](https://github.com/trailofbits/manticore/pull/1524))
+* Memory IO performance improvements [#1509](https://github.com/trailofbits/manticore/pull/1509)
+* **[added API]**  Expose ELF dynamic load addresses [#1515](https://github.com/trailofbits/manticore/pull/1515)
+* Optimize instruction decoding ([#1522](https://github.com/trailofbits/manticore/pull/1522), [#1527](https://github.com/trailofbits/manticore/pull/1527))
+* Add partial support for `recvfrom` syscall [#1514](https://github.com/trailofbits/manticore/pull/1514)
+* **[fixed API]** Add `will_write_memory` event to `write_bytes` [#1535](https://github.com/trailofbits/manticore/pull/1535)
+* Update supported Unicorn version [#1536](https://github.com/trailofbits/manticore/pull/1536)
+* Fix file pointer leak in ELF interpreter [#1538](https://github.com/trailofbits/manticore/pull/1538)
+* Deduplicate socket symbol names [#1542](https://github.com/trailofbits/manticore/pull/1542)
+* Improve environment variable parsing [#1545](https://github.com/trailofbits/manticore/pull/1545)
+* **[fixed API]** Reduce chance of orphaned `did_execute_instruction` event [#1529](https://github.com/trailofbits/manticore/pull/1529)
+
+### WASM
+* **[added API]** Added initial support for webassembly [#1495](https://github.com/trailofbits/manticore/pull/1495)
+
+### Other
+* Incorporate type checking (mypy) into CI [#1544](https://github.com/trailofbits/manticore/pull/1544)
+* Fixes to smtlib ([#1512](https://github.com/trailofbits/manticore/pull/1512), [#1511](https://github.com/trailofbits/manticore/pull/1511))
+* Remove runtime type checking from smtlib to improve performance [#1543](https://github.com/trailofbits/manticore/pull/1543)
+* Logging improvements ([#1518](https://github.com/trailofbits/manticore/pull/1518), [#1520](https://github.com/trailofbits/manticore/pull/1520))
+* Simplify unsigned division constant folding [#1530](https://github.com/trailofbits/manticore/pull/1530)
+* Improve signed division logic [#1540](https://github.com/trailofbits/manticore/pull/1540)
+* **[changed API]** Move to manticore-specific exception types [#1537](https://github.com/trailofbits/manticore/pull/1537)
+* **[changed API]** Save profiling data in the workspace instead of the current directory [#1539](https://github.com/trailofbits/manticore/pull/1539)
+
 
 ## 0.3.1 - 2019-08-06
 
 
@@ -30,10 +30,20 @@ more documentation, look [here](https://guides.github.com/activities/forking/).
 
 Some pull request guidelines:
 
-- We use the [`black`](https://black.readthedocs.io/en/stable/index.html) auto-formatter
-  to enforce style conventions in Manticore. To ensure your code is properly 
-  formatted, run `black .` in the manticore directory before
-  committing.
+- We use the [`black`](https://black.readthedocs.io/en/stable/index.html)
+  auto-formatter to enforce style conventions in Manticore. To ensure your code
+  is properly formatted, run `black .` in the Manticore directory before
+  committing. Although unlikely, if you are still having trouble with getting
+  your code to pass formatting, check that you have the same version of `black`
+  installed as what is used in the CI.
+- We use the [`mypy`](https://github.com/python/mypy) static typing tool to
+  catch inconsistencies in the code base. At the time of this writing, we
+  only check the [manticore](./manticore) directory for inconsistencies and do
+  not yet enforce new contributions to include type hints. However, we greatly
+  appreciate if you do include/add them in any code that you touch in your PR!
+  Though, remember the next guideline if you are adding many type-hints, and
+  ask for input on how to organize the addition of a massive amount of type
+  hints. Check the CI configuration for the exact version of `mypy`.
 - Minimize irrelevant changes (formatting, whitespace, etc) to code that would
   otherwise not be touched by this patch. Save formatting or style corrections
   for a separate pull request that does not make any semantic changes.