CMUChimpsLab
diff --git a/‎DbManager.py
+86 b/‎DbManager.py
+86
diff --git a/‎DirStructHandler.py
+37 b/‎DirStructHandler.py
+37
diff --git a/‎PackageRules.py
+50 b/‎PackageRules.py
+50
diff --git a/‎README.md
+2 b/‎README.md
+2
diff --git a/‎SearchIntents.py
+143 b/‎SearchIntents.py
+143
diff --git a/‎job.sh
+18 b/‎job.sh
+18
diff --git a/‎job_LargeVM.sh
+19 b/‎job_LargeVM.sh
+19
@@ -0,0 +1,86 @@
+'''
+Created on Dec 8, 2012
+
+@author: psachdev
+'''
+import MySQLdb as db
+from MySQLdb.constants import FIELD_TYPE
+
+class DBManagerClass:
+    '''
+    classdocs
+    '''
+
+
+    def __init__(self):
+        self.username = 'root'
+        self.password = 'root'
+        self.host = '127.0.0.1'
+        self.dbname = 'staticanalysisresults'
+        self.dbport = 3306
+        self.table_externalPackage = '3rd_party_packages'
+        self.custom_conv = { FIELD_TYPE.BIT: int }
+        self.connectToDb()
+        self.createTables()
+    
+    def connectToDb (self):
+        self.dbconn = db.Connect(self.host, self.username, self.password, self.dbname, self.dbport, conv=self.custom_conv)
+        
+    def createTables (self):
+        cur = self.dbconn.cursor ()
+        cur.execute("CREATE TABLE IF NOT EXISTS \
+        Test_3rd_party_packages (Id INT PRIMARY KEY AUTO_INCREMENT, packagename VARCHAR(255), filename VARCHAR(255), category VARCHAR(255), 3rd_party_package VARCHAR(255))")
+        cur.execute("CREATE TABLE IF NOT EXISTS \
+        Test_permissionlist (Id INT PRIMARY KEY AUTO_INCREMENT, packagename VARCHAR(255), appfilename VARCHAR(255), permission VARCHAR(255), is_external INT, dest VARCHAR(255), 3rd_party_package VARCHAR(255), src VARCHAR(255))")
+        cur.execute("CREATE TABLE IF NOT EXISTS \
+        Test_linkurl (Id INT PRIMARY KEY AUTO_INCREMENT, packagename VARCHAR(255), appfilename VARCHAR(255), link_url VARCHAR(255), is_external INT, triggered_by_code VARCHAR(255), 3rd_party_package VARCHAR(255))")
+        
+    def insert3rdPartyPackageInfo (self, packagename, filename, externalpackagename, category):
+        cur = self.dbconn.cursor()
+        escape_packagename = str (self.dbconn.escape_string(packagename))
+        escape_filename = str (self.dbconn.escape_string(filename))
+        escape_externalpackagename = str (self.dbconn.escape_string(externalpackagename))
+        escape_category = str (self.dbconn.escape_string(category))
+        rows_affected = cur.execute("INSERT INTO Test_3rd_party_packages (packagename, filename, category, 3rd_party_package) VALUES('%s', '%s', '%s', '%s')" % (escape_packagename, escape_filename, escape_category, escape_externalpackagename))
+        self.dbconn.commit()
+        #print "Rows affected after inserting 3rdpartypackage - " + str (rows_affected)
+        
+         
+    def insertPermissionInfo (self, packagename, filename, permission, is_external, dest, externalpackagename, src):
+        cur = self.dbconn.cursor()
+        escape_packagename = str (self.dbconn.escape_string(packagename))
+        escape_filename = str (self.dbconn.escape_string(filename))
+        escape_externalpackagename = str (self.dbconn.escape_string(externalpackagename))
+        escape_permission = str (self.dbconn.escape_string(permission))
+        escape_dest = str (self.dbconn.escape_string(dest))
+        escape_src = str (self.dbconn.escape_string(src))
+        
+        rows_affected = cur.execute("INSERT INTO Test_permissionlist (packagename, appfilename, permission, is_external, dest, 3rd_party_package, src) VALUES('%s', '%s', '%s', '%i', '%s', '%s', '%s')" % (escape_packagename, escape_filename, escape_permission, is_external, escape_dest, escape_externalpackagename, escape_src))
+        self.dbconn.commit()
+        #print "Rows affected after inserting permission - " + str (rows_affected)
+        
+    def insertLinkInfo (self, packagename, filename, link_url, is_external, triggered_by_code, externalpackagename):
+        cur = self.dbconn.cursor()
+        escape_packagename = str (self.dbconn.escape_string(packagename))
+        escape_filename = str (self.dbconn.escape_string(filename))
+        escape_triggered_by_code = str (self.dbconn.escape_string( triggered_by_code))
+        escape_externalpackagename = str (self.dbconn.escape_string(externalpackagename))
+        escape_url = str (self.dbconn.escape_string(link_url))
+        rows_affected = cur.execute("INSERT INTO Test_linkurl (packagename, appfilename, link_url, is_external, triggered_by_code, 3rd_party_package) VALUES('%s', '%s', '%s', '%d', '%s', '%s')" % (escape_packagename, escape_filename, escape_url, is_external, escape_triggered_by_code, escape_externalpackagename))
+        self.dbconn.commit()
+        #print "Rows affected after inserting permission - " + str (rows_affected)
+        
+    def deleteEntry (self, apkname):
+       cur = self.dbconn.cursor()
+       escape_apkname = str (self.dbconn.escape_string(apkname))
+       rows_affected = cur.execute("DELETE FROM Test_linkurl WHERE packagename='%s'" % (escape_apkname))
+       print "Rows affected after deletion - " + str (rows_affected)
+       rows_affected = cur.execute("DELETE FROM Test_permissionlist WHERE packagename='%s'" % (escape_apkname))
+       print "Rows affected after deletion - " + str (rows_affected)
+       rows_affected = cur.execute("DELETE FROM Test_3rd_party_packages WHERE packagename='%s'" % (escape_apkname))
+       print "Rows affected after deletion - " + str (rows_affected)
+       self.dbconn.commit()
+       
+        
+        
+        
@@ -0,0 +1,37 @@
+'''
+Created on Oct 7, 2012
+
+@author: psachdev
+'''
+
+class DirEntry:
+    '''
+    This structure is used to hold references to subdirectories
+    The tree formed in namespackeanalyzer used this structure to hold
+    node information
+    '''
+        
+    def __init__(self):
+        '''
+        Constructor
+        '''
+        self.DirName = ""
+        self.ChildRef = []
+        
+    def AddDirName (self, name):
+        self.DirName = name
+    
+    def AddChildRef (self, ref):
+        self.ChildRef.append(ref)
+    
+    def IsRefPresent (self, refName):
+        for name in self.ChildRef:
+            if name.DirName == refName:
+                return True
+            else:
+                return False
+    def IsEqual (self, ref):
+        if ref.DirName == self.DirName:
+            return True
+        else :
+            return False
@@ -0,0 +1,50 @@
+'''
+Created on Oct 7, 2012
+
+@author: psachdev
+'''
+import DirStructHandler
+
+class Rules:
+    '''
+    This class is used to create static rules. Following are rules
+    All the directories starting with org or com are assigned number 2 means to be read recursively
+    All the directories starting with google are assigned -1 means they shouldn't be printed
+    All the directories with name length < 4 are treated as noise and are assigned number -2 (number based on analysis)
+    Remaining are assigned number 1
+    '''
+            
+    def __init__(self, rootEntry, main_package_name):
+        '''
+        Constructor
+        '''
+        self.rootName = rootEntry.DirName
+        self.main_package_name = main_package_name
+        self.packageLevel = 0
+        self.FormRule ()
+    
+    def GetTokens (self, string):
+           
+        tokens = []
+        for name in string.split ('.'):
+            tokens.append(name)
+                        
+        return tokens
+    
+    def FormRule (self):
+        if self.rootName == "org" or self.rootName == "Lorg":
+            self.packageLevel = 2 #org.apache.*
+            return
+        elif self.rootName == "com" or self.rootName == "Lcom":
+            tokens = self.GetTokens(self.main_package_name)
+            if tokens [1] == "google":
+                self.packageLevel = -1 #indicating its google_apk
+            else:
+                self.packageLevel = 2 #com.bayview.*or com.googlex.*
+        else:
+            if self.rootName == "ti" or self.rootName == "Lti":
+                self.packageLevel = 3
+            elif self.rootName.find(';')!=-1 or self.rootName.find('$')!=-1 or (len(self.rootName) <= 3) or ('w3c' in self.rootName) or ('apache' in self.rootName) or ('xml' in self.rootName) or ('junit' in self.rootName) or ('sun' in self.rootName) or ('android' in self.rootName) or ('dalvik' in self.rootName) or ('json' in self.rootName) :
+                self.packageLevel = -2 #noise
+            else:
+                self.packageLevel = 1
@@ -0,0 +1,2 @@
+Project Name - python project to statically analyze the androidApps
+Author - Prateek Sachdeva
@@ -0,0 +1,143 @@
+'''
+Created on Oct 24, 2012
+
+@author: psachdev
+'''
+from androguard.core.bytecodes import apk
+from androguard.core.bytecodes import dvm
+from androguard.core.analysis.analysis import *
+
+class Intents:
+    '''
+    1. Create a regular expression to filter out http links
+    2. Get the list of the tainted strings used in apk using dalvik analysis
+    3. Apply the filter to every entry read if it matched the regular expression then print it in file
+    4. Using the package array containing list of all packages found in apk print the corresponding package in which link is formed
+       This is using Path Variable analysis
+       When you read the tainted string you also the address at which its present 
+       Use that address to get the class name
+       and then see under which package that class name belongs
+    '''
+
+    def findandprint (self, packages, dst_class_name):
+        for package in packages:
+            if package in dst_class_name:
+                ###self.outHandle.write ("\n    PackageName - ")
+                ###self.outHandle.write (package)
+                return package
+        return "NA"
+                
+    def __init__(self, infile, outfile, packages, dbMgr, noprefixfilename, a, d, dx):
+        '''
+        Constructor
+        '''
+        ###a = apk.APK(infile)
+        ###d = dvm.DalvikVMFormat (a.get_dex())
+        ###dx = uVMAnalysis (d)
+        
+        self.outHandle = open (outfile, 'a+')
+        
+        ex1 = re.compile ("http://")
+        mpn = a.get_package()
+        '''
+        Keeping main package name within range of mysql datatype
+        '''
+        if len(mpn) > 250 :
+            self.main_package_name  = (mpn[:200] + '..')
+        else:
+            self.main_package_name = mpn
+                                        
+        
+        ###self.outHandle.write ("\n")
+        ###self.outHandle.write ("---Package Name---\n")
+        #print self.main_package_name
+        
+        
+        '''
+        Keeping main package name within range of mysql datatype
+        '''
+        if len(noprefixfilename) > 250 :
+            self.fileName  = (noprefixfilename[:200] + '..')
+        else:
+            self.fileName = noprefixfilename
+        
+        ###self.outHandle.write(infile)
+        print self.main_package_name
+        ex3 = re.compile (self.main_package_name)
+        
+        self.dbMgr = dbMgr
+        #print 'URL - '
+        x = dx.get_tainted_variables().get_strings()
+        analysis = dx.get_vm()
+        #cm = analysis.get_class_manager()
+        ###self.outHandle.write ('\n')
+        
+        for full in x:
+            s,_ = full
+            string = repr(s.get_info())
+            if ex1.search (string) != None:
+                paths = s.get_paths()
+               
+                for path in paths:
+                    m_idx = path[1]
+                    method = analysis.get_cm_method( m_idx )
+                    ###self.outHandle.write ("   %s->%s %s" % (method[0], method[1], method[2][0] + method[2][1]))
+                    
+                    '''
+                    Keeping external package within range of mysql datatype
+                    '''
+                    xpackage = self.findandprint (packages, method[0])
+                    if len(xpackage) > 250 :
+                            xpck = (xpackage[:200] + '..')
+                    else:
+                            xpck = xpackage
+                        
+    
+                    '''
+                    Keeping destination class within range of mysql datatype
+   		    '''                 
+                    if len(method[0]) > 250 :
+                            dst = (method[0][:200] + '..')
+                    elif method[0].find('$')!=-1 :
+                            dst = "NA"
+                    else:
+                            dst = method[0]
+                    
+                                    
+                    #print method
+                    if ex3.search(method[0]) != None:
+                        _,link = full
+                        #print " APP - ", link
+                        if ('.png' in link)  or ('127.0.0.1' in link) or ('www.w3.org' in link):
+                            continue
+                        ###self.outHandle.write ("   APP - ")
+                        ###self.outHandle.write (link)
+                        ###self.outHandle.write ('\n')
+                        if len(link) > 250 :
+                            strlink = (link[:200] + '..')
+                        else:
+                            strlink = link
+                            
+                                               
+                        self.dbMgr.insertLinkInfo(self.main_package_name, self.fileName, strlink, False, dst, xpck)
+                        
+                    else:
+                        _,link = full
+                        #print "EXTERNAL - ", link
+                        if ('.png' in link)  or ('127.0.0.1' in link) or ('www.w3.org' in link):
+                            continue
+                        ###self.outHandle.write ("   EXTERNAL - ")
+                        ###self.outHandle.write (link)
+                        ###self.outHandle.write ('\n')
+                        if len(link) > 250 :
+                            strlink = (link[:200] + '..')
+                        else:
+                            strlink = link      
+                            
+                                               
+                        self.dbMgr.insertLinkInfo(self.main_package_name, self.fileName, strlink, True, dst, xpck)
+                        
+                    #access, idx = path[0]    
+                    ###self.outHandle.write ('\n\n')
+        self.outHandle.close()
+        
@@ -0,0 +1,18 @@
+#!/bin/sh
+
+numapks=`find $1 -name "*.apk" | wc -l`
+apksdone=`awk '{x++}END{ print x}' /home/ubuntu/out/filelist.txt`
+while test $numapks!=$apksdone:
+do
+	returnvalue=$(python /home/ubuntu/code/staticAnalyzer/src/staticanalyzer/main.py $1)
+	#echo "---------------------------------" >> jobout.txt
+	#echo "number of apks listed :" >> jobout.txt
+	#echo $numapks >> jobout.txt
+	#echo "apks tested so far :" >> jobout.txt
+	#echo $apksdone >> jobout.txt
+	#echo "Return value of python script"  >> jobout.txt
+	#echo $? >> jobout.txt
+	#echo "---------------------------------" >> jobout.txt
+	`tail -n 1 /home/ubuntu/out/filelist.txt >> /home/ubuntu/out/problemfiles.txt`
+	apksdone=`awk '{x++}END{ print x}' /home/ubuntu/out/filelist.txt`
+done
@@ -0,0 +1,19 @@
+#!/bin/sh
+
+numapks=`cat /home/ubuntu/out/problemfiles_forLargeVM.txt | wc -l`
+apksdone=`awk '{x++}END{ print x}' /home/ubuntu/out/filelist_forLargeVM.txt`
+#while test $numapks!=$apksdone:
+#do
+	returnvalue=$(python /home/ubuntu/code/staticAnalyzer/src/staticanalyzer/main_LargeVM.py $1)
+	#echo "---------------------------------" >> jobout.txt
+	#echo "number of apks listed :" >> jobout.txt
+	echo $numapks
+	#echo "apks tested so far :" >> jobout.txt
+	echo $apksdone
+	#echo "Return value of python script"  >> jobout.txt
+	#echo $? >> jobout.txt
+	#echo "---------------------------------" >> jobout.txt
+	`tail -n 1 /home/ubuntu/out/filelist_forLargeVM.txt >> /home/ubuntu/out/problemfiles.txt`
+	#x=0
+	apksdone=`awk '{x++}END{ print x}' /home/ubuntu/out/filelist_forLargeVM.txt`
+#done
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+Project Name - python project to statically analyze the androidApps`
	`2`	`+Author - Prateek Sachdeva`