Creating test case using base program. Added an environment variable read to get a filename to read in the file contents using an fread operation within the function Completed injection. TRUE UNSPECIFIED UNSPECIFIED ./configure -v --prefix="$SS_TC_ROOT/$SS_TC_INSTALL" --with-apr="$SS_TC_DEPS/bin/apr-1-config" --with-apr-util="$SS_TC_DEPS/bin/apu-1-config" --with-serf --with-sqlite="$SS_TC_DEPS" --with-sasl --with-libmagic --with-zlib --without-kwallet --without-gnome-keyring --disable-keychain --without-trang --without-doxygen --without-swig --without-jikes --without-ctypesgen --without-junit --without-jdk --without-apxs --with-editor="/usr/bin/vi" --disable-shared --with-pic=yes make VERBOSE=1 CC="$SS_CC" CCLD="$SS_LNK" make install CC="$SS_CC" CCLD="$SS_LNK" create a repository Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svnserve -d --foreground -r $SS_TC_ROOT/testData/svnrepos --pid-file=$SS_TC_ROOT/$SS_TC_INSTALL/svnserve.pid STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT Checked out revision 0. DOES_NOT_RETURN CONTROLLED_EXIT commit a file Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt This is probably not going to overflow a buffer of some sort. Let's run it anyway and see what happens. AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svnserve -d --foreground -r $SS_TC_ROOT/testData/svnrepos --pid-file=$SS_TC_ROOT/$SS_TC_INSTALL/svnserve.pid CHECKOUT AND ADD AND COMMIT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT Checked out revision 0. A file.txt good-02/output.txt DOES_NOT_RETURN CONTROLLED_EXIT diff two files using svn diff Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt As long as this statement has more than 128 characters, then nothing bad should happen AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn diff css/main.css css/main2.css STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-03/output.txt DOES_NOT_RETURN CONTROLLED_EXIT use svn mkdir to create a directory and add it to the svn repo Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn mkdir newdir STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT A newdir DOES_NOT_RETURN CONTROLLED_EXIT use svn to move a file and its position in the repo Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt This is probably not going to overflow a buffer of some sort. Let's run it anyway and see what happens. AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn move 404.html js/ STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-05/output.txt DOES_NOT_RETURN CONTROLLED_EXIT run blame on 404.html Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt As long as this statement has more than 128 characters, then nothing bad should happen AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn blame 404.html STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-06/output.txt DOES_NOT_RETURN CONTROLLED_EXIT apply a patch Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn patch good-07.diff STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT U 404.html DOES_NOT_RETURN CONTROLLED_EXIT add a property Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt This is probably not going to overflow a buffer of some sort. Let's run it anyway and see what happens. AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn propset rating "awesome" 404.html STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT property 'rating' set on '404.html' DOES_NOT_RETURN CONTROLLED_EXIT get a property Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt As long as this statement has more than 128 characters, then nothing bad should happen AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn propget rating 404.html STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT awesome DOES_NOT_RETURN CONTROLLED_EXIT delete a property Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read NONE /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn propdel rating 404.html STDOUT AND NOT TIMEOUT AND NOT CONTROLLED_EXIT property 'rating' deleted from '404.html'. DOES_NOT_RETURN CONTROLLED_EXIT Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read READ_APPLICATION_DATA /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUGugIE= AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svnserve -d --foreground -r $SS_TC_ROOT/testData/svnrepos --pid-file=$SS_TC_ROOT/$SS_TC_INSTALL/svnserve.pid weakness_started_KwWmMyqQh8VBGgYOWLIF AND ((NOT PERFORMER AND (output_excess_non_null_yB3o0QeEVw) AND NOT timeout_STYlxbngwj) or (PERFORMER AND NOT ((output_excess_non_null_yB3o0QeEVw) OR timeout_STYlxbngwj OR controlled_exit_HGvFtjfoc5))) (NOT PERFORMER AND (output_excess_non_null_yB3o0QeEVw) AND NOT timeout_STYlxbngwj) or (PERFORMER AND NOT ((output_excess_non_null_yB3o0QeEVw) OR timeout_STYlxbngwj OR controlled_exit_HGvFtjfoc5)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION if (( $(/bin/grep -P "value [\x80-\xFF] appears: 5555 times" "../logfile.txt" | wc -l) > 0)); then true; else false; fi; None stonesoup_trace:weakness_start Has a stack buffer of size 128 within a struct. reads in an ascii string from an environmentvariable and increments the corresponding values in the stack buffer. Then reads in an input and prints out the count of the characters from the stack buff of those in the input. If input contains extended ascii characters, they will be wrapped around to negative values and the buffer will be under read READ_APPLICATION_DATA /opt/stonesoup/workspace/testData/jger_luminodynamist/lanolines_ungushing.txt SGVsbKUgV6lybGSI AAAABVVCUYEOAISDHGUEHGU:WOJOQIUFGUYGBJdjsafihuegakdlfm9238946665232kmemiucyds78fy2 $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 $SS_TC_ROOT/$SS_TC_INSTALL/bin/svn mkdir newdir weakness_started_tAYcGu19hwFp18s96lJF AND ((NOT PERFORMER AND (output_excess_non_null_QfRRa766zH) AND NOT timeout_GwZ7fUM9NO) or (PERFORMER AND NOT ((output_excess_non_null_QfRRa766zH) OR timeout_GwZ7fUM9NO))) (NOT PERFORMER AND (output_excess_non_null_QfRRa766zH) AND NOT timeout_GwZ7fUM9NO) or (PERFORMER AND NOT ((output_excess_non_null_QfRRa766zH) OR timeout_GwZ7fUM9NO)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION if (( $(/bin/grep -P "value [\x80-\xFF] appears: 5555 times" "../logfile.txt" | wc -l) > 0)); then true; else false; fi; None stonesoup_trace:weakness_start