Creating test case using base program. Added a Socket Server to accept communication from untrusted source. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data READ_APPLICATION_DATA DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_renBO7Nct5gr5b7IUPDW AND ((NOT PERFORMER AND (segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) AND NOT timeout_qPYkOXuZci) or (PERFORMER AND NOT ((segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) OR timeout_qPYkOXuZci OR controlled_exit_O3zb5gZfag))) (NOT PERFORMER AND (segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) AND NOT timeout_qPYkOXuZci) or (PERFORMER AND NOT ((segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) OR timeout_qPYkOXuZci OR controlled_exit_O3zb5gZfag)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction logfile.txt ([0-9a-fA-F]{2}){60,} None stonesoup_trace:weakness_start Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data READ_APPLICATION_DATA DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 weakness_started_khWVztvuRze0rNh6mgj3 AND ((NOT PERFORMER AND (segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) AND NOT timeout_3BpIuTScME) or (PERFORMER AND NOT ((segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) OR timeout_3BpIuTScME OR controlled_exit_mK30109esA))) (NOT PERFORMER AND (segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) AND NOT timeout_3BpIuTScME) or (PERFORMER AND NOT ((segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) OR timeout_3BpIuTScME OR controlled_exit_mK30109esA)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction logfile.txt ([0-9a-fA-F]{2}){60,} None stonesoup_trace:weakness_start