Creating test case using base program. Added a Socket Server to accept communication from untrusted source. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/openssl CFLAG="-O $CFLAGS" EX_LIBS="$LDFLAGS $LIBS" ./config --prefix="$SS_TC_ROOT/$SS_TC_INSTALL" shared make CC="$SS_CC" CCLD="$SS_LNK" EX_LIBS="$LDFLAGS $LIBS" make install_sw CC="$SS_CC" CCLD="$SS_LNK" EX_LIBS="$LDFLAGS $SS_LDFLAGS $LIBS" Generate an RSA private key Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 genpkey -out $SS_TC_ROOT/testOutput/good-01/key.pem -algorithm RSA GOOD-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT ../testOutput/good-01/key.pem -----END PRIVATE KEY----- DOES_NOT_RETURN CONTROLLED_EXIT Create a password hash using crypt, and salt of "xx" Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 passwd -crypt -salt xx password GOOD-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT xxj31ZMTZzkVA DOES_NOT_RETURN CONTROLLED_EXIT Encrypt a file with DES3 using salt and key of "stonesoup" Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 des3 -salt -in good-03/file.txt -out $SS_TC_ROOT/testOutput/good-03/file.des3 -k "stonesoup" GOOD-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT ../testOutput/good-03/file.des3 Salted__ DOES_NOT_RETURN CONTROLLED_EXIT parse ASN1 structure Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 asn1parse -genstr 'UTF8:Hello World' GOOD-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 0:d=0 hl=2 l= 11 prim: UTF8STRING :Hello World DOES_NOT_RETURN CONTROLLED_EXIT create Netscape certficiate from PEM Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 nseq -in good-05/cert.pem -toseq -out $SS_TC_ROOT/testOutput/good-05/nseq.pem GOOD-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT ../testOutput/good-05/nseq.pem -----END CERTIFICATE----- DOES_NOT_RETURN CONTROLLED_EXIT generate MIME content from text file, encrypting with x509 cert Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 smime -in good-06/secretemail.txt -encrypt good-06/x509.pem GOOD-06 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-06/output.txt DOES_NOT_RETURN CONTROLLED_EXIT check primality of number Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 prime 15648972863 GOOD-07 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 3A4C0603F is prime DOES_NOT_RETURN CONTROLLED_EXIT encrypt textfile with AES 256 and salt, base64 encoded result Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 enc -in good-08/secret.txt -aes256 -k password -S abacabb -base64 GOOD-08 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT U2FsdGVkX1+rrKuwAAAAACgoU5YHltmsjJifyZi0xJA= DOES_NOT_RETURN CONTROLLED_EXIT SHA1 with hmac of text file Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 dgst -sha1 -c -hmac "secret-key" good-09/message.txt GOOD-09 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT HMAC-SHA1(good-09/message.txt)= 3a:da:b3:ba:5a:59:a9:56:8d:76:3a:d4:20:f6:13:cd:aa:49:41:a6 DOES_NOT_RETURN CONTROLLED_EXIT Generate SSL certificate and private key Has a fixed heap buffer of size 64. (char [64]) NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 req -new -newkey rsa:2048 -days 365 -nodes -x509 -keyout good-10/server.key -out good-10/server.crt -subj "/C=SP/ST=The Moon/L=TheDarkSide/O=KSP/OU=Moon Department/CN=ksp.moon" GOOD-10-1 AND GOOD-10-2 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT ../testData/good-10/server.crt -----END CERTIFICATE----- ../testData/good-10/server.key -----END PRIVATE KEY----- DOES_NOT_RETURN CONTROLLED_EXIT Has a fixed heap buffer of size 64. (char [64]) DOS_UNCONTROLLED_EXIT READ_APPLICATION_DATA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 dgst -sha1 -c -hmac "secret-key" good-09/message.txt weakness_started_ICAMGP0Y41bTOVXDYoaq AND ((NOT PERFORMER AND (segfault_glibc_NX4sbA3jZ4 OR print_overflowed_buffer_FJ5awUQxKw OR (segfault_code_n7cvy7Mk8U OR segfault_code_CfXYjDkSFb OR segfault_code_EdERSr1sV2 OR segfault_code_FS9ysJ3G5Y OR segfault_code_eJ038hZsW8 OR segfault_msg_HLSXzqpVHI OR illegal_inst_msg_cCl6Bk82IB)) AND NOT timeout_EWmX1NwaY9) or (PERFORMER AND NOT ((segfault_glibc_NX4sbA3jZ4 OR print_overflowed_buffer_FJ5awUQxKw OR (segfault_code_n7cvy7Mk8U OR segfault_code_CfXYjDkSFb OR segfault_code_EdERSr1sV2 OR segfault_code_FS9ysJ3G5Y OR segfault_code_eJ038hZsW8 OR segfault_msg_HLSXzqpVHI OR illegal_inst_msg_cCl6Bk82IB)) OR timeout_EWmX1NwaY9 OR controlled_exit_UMDoKbksXS))) (NOT PERFORMER AND (segfault_glibc_NX4sbA3jZ4 OR print_overflowed_buffer_FJ5awUQxKw OR (segfault_code_n7cvy7Mk8U OR segfault_code_CfXYjDkSFb OR segfault_code_EdERSr1sV2 OR segfault_code_FS9ysJ3G5Y OR segfault_code_eJ038hZsW8 OR segfault_msg_HLSXzqpVHI OR illegal_inst_msg_cCl6Bk82IB)) AND NOT timeout_EWmX1NwaY9) or (PERFORMER AND NOT ((segfault_glibc_NX4sbA3jZ4 OR print_overflowed_buffer_FJ5awUQxKw OR (segfault_code_n7cvy7Mk8U OR segfault_code_CfXYjDkSFb OR segfault_code_EdERSr1sV2 OR segfault_code_FS9ysJ3G5Y OR segfault_code_eJ038hZsW8 OR segfault_msg_HLSXzqpVHI OR illegal_inst_msg_cCl6Bk82IB)) OR timeout_EWmX1NwaY9 OR controlled_exit_UMDoKbksXS)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None free(): invalid pointer logfile.txt [a-zA-Z0-9,. ']{64,} None stonesoup_trace:weakness_start Has a fixed heap buffer of size 64. (char [64]) DOS_UNCONTROLLED_EXIT READ_APPLICATION_DATA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 nseq -in good-05/cert.pem -toseq -out $SS_TC_ROOT/testOutput/good-05/nseq.pem weakness_started_5SS5Ua5QBzQylBVXicAH AND ((NOT PERFORMER AND (segfault_glibc_xvff2EZ5kS OR print_overflowed_buffer_f7NP0q29gf OR (segfault_code_6Sj0qdbYFs OR segfault_code_NfgN6tLdd8 OR segfault_code_UdN3vZ8U78 OR segfault_code_FuMF6Wr8oM OR segfault_code_Q7Iduq55EE OR segfault_msg_cXJ0kLFlVp OR illegal_inst_msg_MBdkSJAfOV)) AND NOT timeout_XGB8lJjs3z) or (PERFORMER AND NOT ((segfault_glibc_xvff2EZ5kS OR print_overflowed_buffer_f7NP0q29gf OR (segfault_code_6Sj0qdbYFs OR segfault_code_NfgN6tLdd8 OR segfault_code_UdN3vZ8U78 OR segfault_code_FuMF6Wr8oM OR segfault_code_Q7Iduq55EE OR segfault_msg_cXJ0kLFlVp OR illegal_inst_msg_MBdkSJAfOV)) OR timeout_XGB8lJjs3z OR controlled_exit_rZgnv0t0k1))) (NOT PERFORMER AND (segfault_glibc_xvff2EZ5kS OR print_overflowed_buffer_f7NP0q29gf OR (segfault_code_6Sj0qdbYFs OR segfault_code_NfgN6tLdd8 OR segfault_code_UdN3vZ8U78 OR segfault_code_FuMF6Wr8oM OR segfault_code_Q7Iduq55EE OR segfault_msg_cXJ0kLFlVp OR illegal_inst_msg_MBdkSJAfOV)) AND NOT timeout_XGB8lJjs3z) or (PERFORMER AND NOT ((segfault_glibc_xvff2EZ5kS OR print_overflowed_buffer_f7NP0q29gf OR (segfault_code_6Sj0qdbYFs OR segfault_code_NfgN6tLdd8 OR segfault_code_UdN3vZ8U78 OR segfault_code_FuMF6Wr8oM OR segfault_code_Q7Iduq55EE OR segfault_msg_cXJ0kLFlVp OR illegal_inst_msg_MBdkSJAfOV)) OR timeout_XGB8lJjs3z OR controlled_exit_rZgnv0t0k1)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None free(): invalid pointer logfile.txt [a-zA-Z0-9,. ']{64,} None stonesoup_trace:weakness_start