Creating test case using base program. Added a Socket Server to accept communication from untrusted source. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_T5xOPKCZiV5mOen4QeoA AND ((NOT PERFORMER AND (segfault_code_VXwdN2uvt8 OR segfault_code_I4ZrMga04Z OR segfault_code_o5h26iOmfO OR segfault_code_fDBj4GvFAF OR segfault_code_KTaLwxoGGW OR segfault_msg_Da6dTIK1Fp OR illegal_inst_msg_9fUJF51D9D OR segfault_glibc_HOCGP1vsN8) AND NOT timeout_W4byDV6wqn) or (PERFORMER AND NOT ((segfault_code_VXwdN2uvt8 OR segfault_code_I4ZrMga04Z OR segfault_code_o5h26iOmfO OR segfault_code_fDBj4GvFAF OR segfault_code_KTaLwxoGGW OR segfault_msg_Da6dTIK1Fp OR illegal_inst_msg_9fUJF51D9D OR segfault_glibc_HOCGP1vsN8) OR timeout_W4byDV6wqn OR controlled_exit_KTs5xnUphK))) (NOT PERFORMER AND (segfault_code_VXwdN2uvt8 OR segfault_code_I4ZrMga04Z OR segfault_code_o5h26iOmfO OR segfault_code_fDBj4GvFAF OR segfault_code_KTaLwxoGGW OR segfault_msg_Da6dTIK1Fp OR illegal_inst_msg_9fUJF51D9D OR segfault_glibc_HOCGP1vsN8) AND NOT timeout_W4byDV6wqn) or (PERFORMER AND NOT ((segfault_code_VXwdN2uvt8 OR segfault_code_I4ZrMga04Z OR segfault_code_o5h26iOmfO OR segfault_code_fDBj4GvFAF OR segfault_code_KTaLwxoGGW OR segfault_msg_Da6dTIK1Fp OR illegal_inst_msg_9fUJF51D9D OR segfault_glibc_HOCGP1vsN8) OR timeout_W4byDV6wqn OR controlled_exit_KTs5xnUphK)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None glibc detected None stonesoup_trace:weakness_start Has a buffer declared on the heap. malloc(64*sizeOf(char)) If input is shorter than 64 it will overflowdue to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 weakness_started_LhFaWebVMYbfJrhVJoyn AND ((NOT PERFORMER AND (segfault_code_rgQBVs6xZp OR segfault_code_AYQ8XoxKSE OR segfault_code_1Na1rOBRVa OR segfault_code_TFMPrzHpeY OR segfault_code_l1FPQP9DAb OR segfault_msg_RqqXNyy6BV OR illegal_inst_msg_MQ1aHi3IX9 OR segfault_glibc_ihoNHJNYTQ) AND NOT timeout_40ZX0hOWp1) or (PERFORMER AND NOT ((segfault_code_rgQBVs6xZp OR segfault_code_AYQ8XoxKSE OR segfault_code_1Na1rOBRVa OR segfault_code_TFMPrzHpeY OR segfault_code_l1FPQP9DAb OR segfault_msg_RqqXNyy6BV OR illegal_inst_msg_MQ1aHi3IX9 OR segfault_glibc_ihoNHJNYTQ) OR timeout_40ZX0hOWp1 OR controlled_exit_dNJkTdeC2B))) (NOT PERFORMER AND (segfault_code_rgQBVs6xZp OR segfault_code_AYQ8XoxKSE OR segfault_code_1Na1rOBRVa OR segfault_code_TFMPrzHpeY OR segfault_code_l1FPQP9DAb OR segfault_msg_RqqXNyy6BV OR illegal_inst_msg_MQ1aHi3IX9 OR segfault_glibc_ihoNHJNYTQ) AND NOT timeout_40ZX0hOWp1) or (PERFORMER AND NOT ((segfault_code_rgQBVs6xZp OR segfault_code_AYQ8XoxKSE OR segfault_code_1Na1rOBRVa OR segfault_code_TFMPrzHpeY OR segfault_code_l1FPQP9DAb OR segfault_msg_RqqXNyy6BV OR illegal_inst_msg_MQ1aHi3IX9 OR segfault_glibc_ihoNHJNYTQ) OR timeout_40ZX0hOWp1 OR controlled_exit_dNJkTdeC2B)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None glibc detected None stonesoup_trace:weakness_start