Creating test case using base program. Added an environment variable read to the function definition. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE Hello World! If this statement isn't more than 64 characters, it will go badly $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE Short is good for buffer overflows, unless you make a mistake and get it wrong $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking NONE Hello World! If this statement isn't more than 64 characters, it will go badly $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT Short is now bad $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 weakness_started_MwZR5f8JEzPSYg4yLpjE AND ((NOT PERFORMER AND (segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) AND NOT timeout_Arag8Gnvz6) or (PERFORMER AND NOT ((segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) OR timeout_Arag8Gnvz6))) (NOT PERFORMER AND (segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) AND NOT timeout_Arag8Gnvz6) or (PERFORMER AND NOT ((segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) OR timeout_Arag8Gnvz6)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking DOS_UNCONTROLLED_EXIT AAAAAAAAAAAA $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_Knmox2XjyamU8UMgUbSh AND ((NOT PERFORMER AND (segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) AND NOT timeout_F09k0OYsqg) or (PERFORMER AND NOT ((segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) OR timeout_F09k0OYsqg))) (NOT PERFORMER AND (segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) AND NOT timeout_F09k0OYsqg) or (PERFORMER AND NOT ((segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) OR timeout_F09k0OYsqg)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction None stonesoup_trace:weakness_start