2.1 KiB
2.1 KiB
Binary Intelligence Graph / Binary Identity Indexing
Module
BinaryIndex
Status
IMPLEMENTED
Description
Complete BinaryIndex module with binary identity indexing, ELF feature extraction, vulnerability fingerprint matching, and reachability status tracking. Advisory marked as SUPERSEDED by this implementation.
Implementation Details
- Modules:
src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Core/,src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Persistence/,src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Analysis/ - Key Classes:
BinaryIdentityService(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Core/Services/BinaryIdentityService.cs) - binary identity managementElfFeatureExtractor(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Core/Services/ElfFeatureExtractor.cs) - ELF feature extractionBinaryVulnerabilityService(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Persistence/Services/BinaryVulnerabilityService.cs) - vulnerability matching with Build-ID catalog lookupsSignatureMatcher(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Analysis/SignatureMatcher.cs) - signature-based vulnerability fingerprint matchingReachGraphBinaryReachabilityService(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Analysis/ReachGraphBinaryReachabilityService.cs) - reachability status tracking
- Models:
BinaryIdentity,FixModels(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Core/Models/) - Persistence:
IBinaryVulnAssertionRepository,IBinaryVulnerabilityService(src/BinaryIndex/__Libraries/StellaOps.BinaryIndex.Core/Services/)
E2E Test Plan
- Verify end-to-end flow: submit binary, extract identity, index in the graph, and query by Build-ID
- Verify vulnerability fingerprint matching via
SignatureMatcherreturns correct match scores - Verify reachability status tracking integrates with ReachGraph
- Verify
BinaryVulnerabilityServicecorrectly maps match methods (buildid_catalog, delta_signature, etc.) - Verify binary identity indexing supports multi-tenant contexts via
ITenantContext