Creating test case using base program. Added an environment variable read to get a filename to read in the file contents using an fread operation within the function Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt Hello World! If this statement isn't more than 64 characters, it will go badly $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt Short is good for buffer overflows, unless you make a mistake and get it wrong $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt Hello World! If this statement isn't more than 64 characters, it will go badly $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt Short is now bad $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_dw5jbT9YedBgD6c3rUWh AND ((NOT PERFORMER AND (segfault_code_L2ob4QbREV OR segfault_code_RmbxVxdOSR OR segfault_code_7GZ9dimZFw OR segfault_code_Hc2cYn1CiM OR segfault_code_10fuZv61jk OR segfault_msg_UZPGrG2vUK OR illegal_inst_msg_vX3p4g43fj) AND NOT timeout_X1TS9WcFAN) or (PERFORMER AND NOT ((segfault_code_L2ob4QbREV OR segfault_code_RmbxVxdOSR OR segfault_code_7GZ9dimZFw OR segfault_code_Hc2cYn1CiM OR segfault_code_10fuZv61jk OR segfault_msg_UZPGrG2vUK OR illegal_inst_msg_vX3p4g43fj) OR timeout_X1TS9WcFAN))) (NOT PERFORMER AND (segfault_code_L2ob4QbREV OR segfault_code_RmbxVxdOSR OR segfault_code_7GZ9dimZFw OR segfault_code_Hc2cYn1CiM OR segfault_code_10fuZv61jk OR segfault_msg_UZPGrG2vUK OR illegal_inst_msg_vX3p4g43fj) AND NOT timeout_X1TS9WcFAN) or (PERFORMER AND NOT ((segfault_code_L2ob4QbREV OR segfault_code_RmbxVxdOSR OR segfault_code_7GZ9dimZFw OR segfault_code_Hc2cYn1CiM OR segfault_code_10fuZv61jk OR segfault_msg_UZPGrG2vUK OR illegal_inst_msg_vX3p4g43fj) OR timeout_X1TS9WcFAN)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT /opt/stonesoup/workspace/testData/mainframe_urning/yokel_agrobiological.txt AAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 weakness_started_lR3Y4dROSJPgrwD2ZHdu AND ((NOT PERFORMER AND (segfault_code_NBgDZ7X6dV OR segfault_code_ckzU0mZw3f OR segfault_code_Od6KbOej6b OR segfault_code_rT0opoD2rq OR segfault_code_zEfrumDfNp OR segfault_msg_SRFmkZokSS OR illegal_inst_msg_cOnqFEXE0V) AND NOT timeout_Msn0LbviF6) or (PERFORMER AND NOT ((segfault_code_NBgDZ7X6dV OR segfault_code_ckzU0mZw3f OR segfault_code_Od6KbOej6b OR segfault_code_rT0opoD2rq OR segfault_code_zEfrumDfNp OR segfault_msg_SRFmkZokSS OR illegal_inst_msg_cOnqFEXE0V) OR timeout_Msn0LbviF6))) (NOT PERFORMER AND (segfault_code_NBgDZ7X6dV OR segfault_code_ckzU0mZw3f OR segfault_code_Od6KbOej6b OR segfault_code_rT0opoD2rq OR segfault_code_zEfrumDfNp OR segfault_msg_SRFmkZokSS OR illegal_inst_msg_cOnqFEXE0V) AND NOT timeout_Msn0LbviF6) or (PERFORMER AND NOT ((segfault_code_NBgDZ7X6dV OR segfault_code_ckzU0mZw3f OR segfault_code_Od6KbOej6b OR segfault_code_rT0opoD2rq OR segfault_code_zEfrumDfNp OR segfault_msg_SRFmkZokSS OR illegal_inst_msg_cOnqFEXE0V) OR timeout_Msn0LbviF6)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start