Creating test case using base program. Added an environment variable read to the function definition. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow NONE /etc/passwd $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow NONE /etc/ssh/ssh_config $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow NONE /usr/bin/gcc $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow NONE /etc/passwd $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow NONE /etc/ssh/ssh_config $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow DOS_UNCONTROLLED_EXIT ../testData $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_tm5DgnPCSa4PYyz83sIc AND ((NOT PERFORMER AND (segfault_code_bIzv79GPR0 OR segfault_code_Jo9NlMqpWf OR segfault_code_18qzw04nth OR segfault_code_CdVEMQWtpk OR segfault_code_YtM4YR1XnR OR segfault_msg_DqkVTN4Yrz OR illegal_inst_msg_ZKMdc5psjK) AND NOT timeout_Z1bY2b265x) or (PERFORMER AND NOT ((segfault_code_bIzv79GPR0 OR segfault_code_Jo9NlMqpWf OR segfault_code_18qzw04nth OR segfault_code_CdVEMQWtpk OR segfault_code_YtM4YR1XnR OR segfault_msg_DqkVTN4Yrz OR illegal_inst_msg_ZKMdc5psjK) OR timeout_Z1bY2b265x))) (NOT PERFORMER AND (segfault_code_bIzv79GPR0 OR segfault_code_Jo9NlMqpWf OR segfault_code_18qzw04nth OR segfault_code_CdVEMQWtpk OR segfault_code_YtM4YR1XnR OR segfault_msg_DqkVTN4Yrz OR illegal_inst_msg_ZKMdc5psjK) AND NOT timeout_Z1bY2b265x) or (PERFORMER AND NOT ((segfault_code_bIzv79GPR0 OR segfault_code_Jo9NlMqpWf OR segfault_code_18qzw04nth OR segfault_code_CdVEMQWtpk OR segfault_code_YtM4YR1XnR OR segfault_msg_DqkVTN4Yrz OR illegal_inst_msg_ZKMdc5psjK) OR timeout_Z1bY2b265x)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start Has a buffer declared on the stack. char[20] If input is resolved to a value larger than 20 it will overflow DOS_UNCONTROLLED_EXIT ../testOutput $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 weakness_started_msgwV63BmQB7p1F9Yo1X AND ((NOT PERFORMER AND (segfault_code_tioY4h2cCC OR segfault_code_KjnB8n4w90 OR segfault_code_I4DjVnYo1P OR segfault_code_yKaUQGixbI OR segfault_code_bfLFkiYYrB OR segfault_msg_FHTQRCJCHX OR illegal_inst_msg_VjMt0B6LyO) AND NOT timeout_iNdmauAsZh) or (PERFORMER AND NOT ((segfault_code_tioY4h2cCC OR segfault_code_KjnB8n4w90 OR segfault_code_I4DjVnYo1P OR segfault_code_yKaUQGixbI OR segfault_code_bfLFkiYYrB OR segfault_msg_FHTQRCJCHX OR illegal_inst_msg_VjMt0B6LyO) OR timeout_iNdmauAsZh))) (NOT PERFORMER AND (segfault_code_tioY4h2cCC OR segfault_code_KjnB8n4w90 OR segfault_code_I4DjVnYo1P OR segfault_code_yKaUQGixbI OR segfault_code_bfLFkiYYrB OR segfault_msg_FHTQRCJCHX OR illegal_inst_msg_VjMt0B6LyO) AND NOT timeout_iNdmauAsZh) or (PERFORMER AND NOT ((segfault_code_tioY4h2cCC OR segfault_code_KjnB8n4w90 OR segfault_code_I4DjVnYo1P OR segfault_code_yKaUQGixbI OR segfault_code_bfLFkiYYrB OR segfault_msg_FHTQRCJCHX OR illegal_inst_msg_VjMt0B6LyO) OR timeout_iNdmauAsZh)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start