Creating test case using base program.
Added a Socket Server to accept communication from untrusted source.
Completed injection.
UNSPECIFIED
UNSPECIFIED
$SS_TC_ROOT/$SS_TC_INSTALL/bin/tree
make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS"
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q input/good-01
STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 10 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -L 2 input/good-02
STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 4 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -J input/good-03
STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
{"type":"report","directories":7,"files":367}
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -P "test*" -F input/good-03
STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
7 directories, 62 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -H "" input/good-01
STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 10 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
READ_APPLICATION_DATA
DOS_UNCONTROLLED_EXIT
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -J input/good-03
weakness_started_renBO7Nct5gr5b7IUPDW AND ((NOT PERFORMER AND (segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) AND NOT timeout_qPYkOXuZci) or (PERFORMER AND NOT ((segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) OR timeout_qPYkOXuZci OR controlled_exit_O3zb5gZfag)))
(NOT PERFORMER AND (segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) AND NOT timeout_qPYkOXuZci) or (PERFORMER AND NOT ((segfault_code_OjgiWQF2k6 OR segfault_code_RB6qGfnmrn OR segfault_code_D42SinDPAd OR segfault_code_VJVUHZNHeR OR segfault_code_4IIycR93bS OR segfault_msg_GHwjxFNlCD OR illegal_inst_msg_tZPyGYmnL3 OR stack_overread_hvWdxt1Ior) OR timeout_qPYkOXuZci OR controlled_exit_O3zb5gZfag))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
logfile.txt
([0-9a-fA-F]{2}){60,}
None
stonesoup_trace:weakness_start
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
READ_APPLICATION_DATA
DOS_UNCONTROLLED_EXIT
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -L 2 input/good-02
weakness_started_khWVztvuRze0rNh6mgj3 AND ((NOT PERFORMER AND (segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) AND NOT timeout_3BpIuTScME) or (PERFORMER AND NOT ((segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) OR timeout_3BpIuTScME OR controlled_exit_mK30109esA)))
(NOT PERFORMER AND (segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) AND NOT timeout_3BpIuTScME) or (PERFORMER AND NOT ((segfault_code_s8SNOXsl1e OR segfault_code_GtukzyoH7J OR segfault_code_IQv5TWTvkH OR segfault_code_Q3fSeX1INZ OR segfault_code_5wuVBiX1p7 OR segfault_msg_eYC8iPHrJi OR illegal_inst_msg_Xgk7YzJrSh OR stack_overread_81PGRXEJuu) OR timeout_3BpIuTScME OR controlled_exit_mK30109esA))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
logfile.txt
([0-9a-fA-F]{2}){60,}
None
stonesoup_trace:weakness_start