Creating test case using base program.
Added an environment variable read to the function definition.
Completed injection.
UNSPECIFIED
UNSPECIFIED
$SS_TC_ROOT/$SS_TC_INSTALL/bin/tree
make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS"
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
NONE
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q input/good-01
STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 10 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
NONE
Hello World! If this statement isn't more than 64 characters, it will go badly
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -L 2 input/good-02
STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 4 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
NONE
Short is good for buffer overflows, unless you make a mistake and get it wrong
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -J input/good-03
STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
{"type":"report","directories":7,"files":367}
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
NONE
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaAAAAAAAAAAAAAAAA
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -P "test*" -F input/good-03
STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
7 directories, 62 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
NONE
Hello World! If this statement isn't more than 64 characters, it will go badly
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -H "" input/good-01
STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
5 directories, 10 files
SIMILAR
DOES_NOT_RETURN
CONTROLLED_EXIT
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
DOS_UNCONTROLLED_EXIT
Short is now bad
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -L 2 input/good-02
weakness_started_MwZR5f8JEzPSYg4yLpjE AND ((NOT PERFORMER AND (segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) AND NOT timeout_Arag8Gnvz6) or (PERFORMER AND NOT ((segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) OR timeout_Arag8Gnvz6)))
(NOT PERFORMER AND (segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) AND NOT timeout_Arag8Gnvz6) or (PERFORMER AND NOT ((segfault_code_RlGZvW8kzu OR segfault_code_BzCnPqnQig OR segfault_code_XkIR9VLl78 OR segfault_code_bk7jPFEcGB OR segfault_code_8SQKeL1Scm OR segfault_msg_pP24mE3z4u OR illegal_inst_msg_xmr2epDrKn) OR timeout_Arag8Gnvz6))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
None
stonesoup_trace:weakness_start
Has a buffer declared on the stack. char[64] If input is shorter than 64 it will overflow,due to using improper sizeof and strlen checking
DOS_UNCONTROLLED_EXIT
AAAAAAAAAAAA
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
--charset ASCII --sort=name -n -q -J input/good-03
weakness_started_Knmox2XjyamU8UMgUbSh AND ((NOT PERFORMER AND (segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) AND NOT timeout_F09k0OYsqg) or (PERFORMER AND NOT ((segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) OR timeout_F09k0OYsqg)))
(NOT PERFORMER AND (segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) AND NOT timeout_F09k0OYsqg) or (PERFORMER AND NOT ((segfault_code_cRFjRRklzr OR segfault_code_TEVWu3hoEA OR segfault_code_NkEMLdFekn OR segfault_code_ANUyyLbnRz OR segfault_code_YY8g4akbWn OR segfault_msg_r5yx0Nalde OR illegal_inst_msg_su7oVjTcbn) OR timeout_F09k0OYsqg))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
None
stonesoup_trace:weakness_start