The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 466 | 1193 |
5 :
['mp_invmod', 'mp_exptmod', 'mp_clear_multi', 'mp_init_multi', 'mp_abs'] |
466 | 1193 | mp_exptmod | call site: 00097 | /src/dropbear/libtommath/bn_mp_exptmod.c:21 |
| 156 | 156 |
1 :
['buf_put_dss_pub_key'] |
331 | 429 | buf_put_pub_key | call site: 00344 | /src/dropbear/src/signkey.c:427 |
| 156 | 156 |
1 :
['buf_put_rsa_pub_key'] |
175 | 273 | buf_put_pub_key | call site: 00345 | /src/dropbear/src/signkey.c:432 |
| 69 | 87 |
4 :
['buf_setpos', 'buf_new', 'buf_readfile', 'stat'] |
144 | 184 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:375 |
| 21 | 21 |
1 :
['parse_recv_window'] |
73 | 87 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:407 |
| 20 | 29 |
2 :
['m_mp_free_multi', 'm_free_direct'] |
20 | 29 | dss_key_free | call site: 00000 | /src/dropbear/src/dss.c:125 |
| 20 | 29 |
2 :
['m_mp_free_multi', 'm_free_direct'] |
20 | 29 | rsa_key_free | call site: 00000 | /src/dropbear/src/rsa.c:146 |
| 20 | 20 |
1 :
['m_mp_free_multi'] |
20 | 20 | buf_get_dss_priv_key | call site: 00000 | /src/dropbear/src/dss.c:113 |
| 20 | 20 |
1 :
['m_mp_free_multi'] |
20 | 20 | buf_get_rsa_priv_key | call site: 00000 | /src/dropbear/src/rsa.c:133 |
| 19 | 19 |
1 :
['buf_put_ed25519_pub_key'] |
19 | 49 | buf_put_pub_key | call site: 00383 | /src/dropbear/src/signkey.c:445 |
| 15 | 27 |
5 :
['m_malloc', 'fuzz_getpwuid', 'getuid', 'strlen', 'getenv'] |
15 | 43 | expand_homedir_path | call site: 00000 | /src/dropbear/src/dbutil.c:640 |
| 13 | 13 |
1 :
['m_str_to_uint'] |
13 | 19 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:441 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
fuzz_set_input
[function]
[call site]
00001
wrapfd_setup
[function]
[call site]
00002
wrapfd_remove
[function]
[call site]
00003
__assert_fail
[call site]
00004
__assert_fail
[call site]
00005
__assert_fail
[call site]
00006
close
[call site]
00007
wrapfd_setseed
[function]
[call site]
00008
nrand48
[call site]
00009
fuzz_seed
[function]
[call site]
00010
sha256_init
[function]
[call site]
00011
crypt_argchk
[function]
[call site]
00012
fprintf
[call site]
00013
abort
[call site]
00014
sha256_process
[function]
[call site]
00015
crypt_argchk
[function]
[call site]
00016
sha256_compress
[function]
[call site]
00017
sha256_process
[function]
[call site]
00018
sha256_done
[function]
[call site]
00019
crypt_argchk
[function]
[call site]
00020
crypt_argchk
[function]
[call site]
00021
sha256_compress
[function]
[call site]
00022
sha256_compress
[function]
[call site]
00023
m_malloc_set_epoch
[function]
[call site]
00024
_setjmp
[call site]
00025
buf_getint
[function]
[call site]
00026
buf_getptr
[function]
[call site]
00027
dropbear_exit
[function]
[call site]
00028
buf_incrpos
[function]
[call site]
00029
dropbear_exit
[function]
[call site]
00030
m_mp_init
[function]
[call site]
00031
mp_init
[function]
[call site]
00032
m_calloc
[function]
[call site]
00033
dropbear_exit
[function]
[call site]
00034
m_malloc
[function]
[call site]
00035
dropbear_exit
[function]
[call site]
00036
calloc
[call site]
00037
dropbear_exit
[function]
[call site]
00038
put_alloc
[function]
[call site]
00039
__assert_fail
[call site]
00040
__assert_fail
[call site]
00041
dropbear_exit
[function]
[call site]
00042
buf_getmpint
[function]
[call site]
00043
buf_getint
[function]
[call site]
00044
mp_zero
[function]
[call site]
00045
buf_getptr
[function]
[call site]
00046
buf_getptr
[function]
[call site]
00047
mp_from_ubin
[function]
[call site]
00048
mp_grow
[function]
[call site]
00049
m_realloc_ltm
[function]
[call site]
00050
m_realloc
[function]
[call site]
00051
dropbear_exit
[function]
[call site]
00052
get_header
[function]
[call site]
00053
remove_alloc
[function]
[call site]
00054
realloc
[call site]
00055
dropbear_exit
[function]
[call site]
00056
put_alloc
[function]
[call site]
00057
mp_zero
[function]
[call site]
00058
mp_mul_2d
[function]
[call site]
00059
mp_copy
[function]
[call site]
00060
mp_grow
[function]
[call site]
00061
mp_lshd
[function]
[call site]
00062
mp_grow
[function]
[call site]
00063
mp_clamp
[function]
[call site]
00064
mp_clamp
[function]
[call site]
00065
buf_incrpos
[function]
[call site]
00066
dropbear_exit
[function]
[call site]
00067
buf_new
[function]
[call site]
00068
dropbear_exit
[function]
[call site]
00069
m_malloc
[function]
[call site]
00070
kexdh_comb_key
[function]
[call site]
00071
m_mp_init_multi
[function]
[call site]
00072
mp_init
[function]
[call site]
00073
dropbear_exit
[function]
[call site]
00074
load_dh_p
[function]
[call site]
00075
bytes_to_mp
[function]
[call site]
00076
mp_from_ubin
[function]
[call site]
00077
dropbear_exit
[function]
[call site]
00078
mp_sub_d
[function]
[call site]
00079
mp_grow
[function]
[call site]
00080
mp_add_d
[function]
[call site]
00081
mp_sub_d
[function]
[call site]
00082
mp_clamp
[function]
[call site]
00083
mp_clamp
[function]
[call site]
00084
mp_clamp
[function]
[call site]
00085
mp_clamp
[function]
[call site]
00086
dropbear_exit
[function]
[call site]
00087
mp_cmp
[function]
[call site]
00088
mp_cmp_mag
[function]
[call site]
00089
mp_cmp_mag
[function]
[call site]
00090
mp_cmp_d
[function]
[call site]
00091
dropbear_exit
[function]
[call site]
00092
m_mp_alloc_init_multi
[function]
[call site]
00093
m_malloc
[function]
[call site]
00094
mp_init
[function]
[call site]
00095
dropbear_exit
[function]
[call site]
00096
mp_exptmod
[function]
[call site]
00097
mp_init_multi
[function]
[call site]
00098
mp_init
[function]
[call site]
00099
mp_clear
[function]
[call site]
00100
m_free_ltm
[function]
[call site]
00101
m_free_direct
[function]
[call site]
00102
get_header
[function]
[call site]
00103
remove_alloc
[function]
[call site]
00104
mp_invmod
[function]
[call site]
00105
mp_cmp_d
[function]
[call site]
00106
s_mp_invmod_fast
[function]
[call site]
00107
mp_init_multi
[function]
[call site]
00108
mp_copy
[function]
[call site]
00109
mp_mod
[function]
[call site]
00110
mp_init_size
[function]
[call site]
00111
mp_div
[function]
[call site]
00112
mp_cmp_mag
[function]
[call site]
00113
mp_copy
[function]
[call site]
00114
mp_zero
[function]
[call site]
00115
mp_init_size
[function]
[call site]
00116
mp_init
[function]
[call site]
00117
mp_init
[function]
[call site]
00118
mp_init_copy
[function]
[call site]
00119
mp_init_size
[function]
[call site]
00120
mp_copy
[function]
[call site]
00121
mp_clear
[function]
[call site]
00122
mp_init_copy
[function]
[call site]
00123
mp_count_bits
[function]
[call site]
00124
mp_mul_2d
[function]
[call site]
00125
mp_mul_2d
[function]
[call site]
00126
mp_lshd
[function]
[call site]
00127
mp_cmp
[function]
[call site]
00128
mp_sub
[function]
[call site]
00129
s_mp_add
[function]
[call site]
00130
mp_grow
[function]
[call site]
00131
mp_clamp
[function]
[call site]
00132
mp_cmp_mag
[function]
[call site]
00133
s_mp_sub
[function]
[call site]
00134
mp_grow
[function]
[call site]
00135
mp_clamp
[function]
[call site]
00136
s_mp_sub
[function]
[call site]
00137
mp_rshd
[function]
[call site]
00138
mp_zero
[function]
[call site]
00139
mp_mul_d
[function]
[call site]
00140
mp_grow
[function]
[call site]
00141
mp_clamp
[function]
[call site]
00142
mp_cmp_mag
[function]
[call site]
00143
mp_mul_d
[function]
[call site]
00144
mp_lshd
[function]
[call site]
00145
mp_sub
[function]
[call site]
00146
mp_copy
[function]
[call site]
00147
mp_lshd
[function]
[call site]
00148
mp_add
[function]
[call site]
00149
s_mp_add
[function]
[call site]
00150
mp_cmp_mag
[function]
[call site]
00151
s_mp_sub
[function]
[call site]
00152
s_mp_sub
[function]
[call site]
00153
mp_clamp
[function]
[call site]
00154
mp_exch
[function]
[call site]
00155
mp_div_2d
[function]
[call site]
00156
mp_zero
[function]
[call site]
00157
mp_copy
[function]
[call site]
00158
mp_mod_2d
[function]
[call site]
00159
mp_zero
[function]
[call site]
00160
mp_copy
[function]
[call site]
00161
mp_copy
[function]
[call site]
00162
mp_clamp
[function]
[call site]
00163
mp_rshd
[function]
[call site]
00164
mp_clamp
[function]
[call site]
00165
mp_exch
[function]
[call site]
00166
mp_clear
[function]
[call site]
00167
mp_clear
[function]
[call site]
00168
mp_clear
[function]
[call site]
00169
mp_clear
[function]
[call site]
00170
mp_clear
[function]
[call site]
00171
mp_exch
[function]
[call site]
00172
mp_add
[function]
[call site]
00173
mp_clear
[function]
[call site]
00174
mp_copy
[function]
[call site]
00175
mp_copy
[function]
[call site]
00176
mp_set
[function]
[call site]
00177
mp_div_2
[function]
[call site]
00178
mp_clamp
[function]
[call site]
00179
mp_sub
[function]
[call site]
00180
mp_div_2
[function]
[call site]
00181
mp_div_2
[function]
[call site]
00182
mp_sub
[function]
[call site]
00183
mp_div_2
[function]
[call site]
00184
mp_cmp
[function]
[call site]
00185
mp_sub
[function]
[call site]
00186
mp_sub
[function]
[call site]
00187
mp_sub
[function]
[call site]
00188
mp_sub
[function]
[call site]
00189
mp_cmp_d
[function]
[call site]
00190
mp_add
[function]
[call site]
00191
mp_cmp_mag
[function]
[call site]
00192
mp_sub
[function]
[call site]
00193
mp_exch
[function]
[call site]
00194
mp_clear_multi
[function]
[call site]
00195
mp_clear
[function]
[call site]
00196
s_mp_invmod_slow
[function]
[call site]
00197
mp_init_multi
[function]
[call site]
00198
mp_mod
[function]
[call site]
00199
mp_copy
[function]
[call site]
00200
mp_copy
[function]
[call site]
00201
mp_copy
[function]
[call site]
00202
mp_set
[function]
[call site]
00203
mp_set
[function]
[call site]
00204
mp_div_2
[function]
[call site]
00205
mp_add
[function]
[call site]
00206
mp_sub
[function]
[call site]
00207
mp_div_2
[function]
[call site]
00208
mp_div_2
[function]
[call site]
00209
mp_div_2
[function]
[call site]
00210
mp_add
[function]
[call site]
00211
mp_sub
[function]
[call site]
00212
mp_div_2
[function]
[call site]
00213
mp_div_2
[function]
[call site]
00214
mp_cmp
[function]
[call site]
00215
mp_sub
[function]
[call site]
00216
mp_sub
[function]
[call site]
00217
mp_sub
[function]
[call site]
00218
mp_sub
[function]
[call site]
00219
mp_sub
[function]
[call site]
00220
mp_sub
[function]
[call site]
00221
mp_cmp_d
[function]
[call site]
00222
mp_cmp_d
[function]
[call site]
00223
mp_add
[function]
[call site]
00224
mp_cmp_mag
[function]
[call site]
00225
mp_sub
[function]
[call site]
00226
mp_exch
[function]
[call site]
00227
mp_clear_multi
[function]
[call site]
00228
mp_abs
[function]
[call site]
00229
mp_copy
[function]
[call site]
00230
mp_exptmod
[function]
[call site]
00231
mp_clear_multi
[function]
[call site]
00232
mp_reduce_is_2k_l
[function]
[call site]
00233
s_mp_exptmod
[function]
[call site]
00234
mp_count_bits
[function]
[call site]
00235
mp_init
[function]
[call site]
00236
mp_init
[function]
[call site]
00237
mp_clear
[function]
[call site]
00238
mp_clear
[function]
[call site]
00239
mp_init
[function]
[call site]
00240
mp_reduce_setup
[function]
[call site]
00241
mp_2expt
[function]
[call site]
00242
mp_zero
[function]
[call site]
00243
mp_grow
[function]
[call site]
00244
mp_div
[function]
[call site]
00245
mp_reduce_2k_setup_l
[function]
[call site]
00246
mp_init
[function]
[call site]
00247
mp_count_bits
[function]
[call site]
00248
mp_2expt
[function]
[call site]
00249
s_mp_sub
[function]
[call site]
00250
mp_clear
[function]
[call site]
00251
mp_mod
[function]
[call site]
00252
mp_copy
[function]
[call site]
00253
mp_sqr
[function]
[call site]
00254
s_mp_sqr_fast
[function]
[call site]
00255
mp_grow
[function]
[call site]
00256
mp_clamp
[function]
[call site]
00257
s_mp_sqr
[function]
[call site]
00258
mp_init_size
[function]
[call site]
00259
mp_clamp
[function]
[call site]
00260
mp_exch
[function]
[call site]
00261
mp_clear
[function]
[call site]
00262
mp_mul
[function]
[call site]
00263
s_mp_balance_mul
[function]
[call site]
00264
mp_init_size
[function]
[call site]
00265
mp_init_multi
[function]
[call site]
00266
mp_clear
[function]
[call site]
00267
mp_lshd
[function]
[call site]
00268
mp_add
[function]
[call site]
00269
mp_clamp
[function]
[call site]
00270
mp_mul
[function]
[call site]
00271
s_mp_mul_digs_fast
[function]
[call site]
00272
mp_grow
[function]
[call site]
00273
mp_clamp
[function]
[call site]
00274
s_mp_mul_digs
[function]
[call site]
00275
s_mp_mul_digs_fast
[function]
[call site]
00276
mp_init_size
[function]
[call site]
00277
mp_exch
[function]
[call site]
00278
mp_clear
[function]
[call site]
00279
mp_mul
[function]
[call site]
00280
mp_lshd
[function]
[call site]
00281
mp_add
[function]
[call site]
00282
mp_exch
[function]
[call site]
00283
mp_clear_multi
[function]
[call site]
00284
mp_init
[function]
[call site]
00285
mp_set
[function]
[call site]
00286
mp_sqr
[function]
[call site]
00287
mp_sqr
[function]
[call site]
00288
mp_mul
[function]
[call site]
00289
mp_sqr
[function]
[call site]
00290
mp_mul
[function]
[call site]
00291
mp_exch
[function]
[call site]
00292
mp_clear
[function]
[call site]
00293
mp_clear
[function]
[call site]
00294
mp_clear
[function]
[call site]
00295
mp_clear
[function]
[call site]
00296
mp_dr_is_modulus
[function]
[call site]
00297
mp_reduce_is_2k
[function]
[call site]
00298
mp_count_bits
[function]
[call site]
00299
s_mp_exptmod_fast
[function]
[call site]
00300
mp_count_bits
[function]
[call site]
00301
mp_init_size
[function]
[call site]
00302
mp_init_size
[function]
[call site]
00303
mp_clear
[function]
[call site]
00304
mp_clear
[function]
[call site]
00305
mp_montgomery_setup
[function]
[call site]
00306
mp_dr_setup
[function]
[call site]
00307
mp_reduce_2k_setup
[function]
[call site]
00308
mp_init
[function]
[call site]
00309
mp_2expt
[function]
[call site]
00310
s_mp_sub
[function]
[call site]
00311
mp_clear
[function]
[call site]
00312
mp_init_size
[function]
[call site]
00313
mp_montgomery_calc_normalization
[function]
[call site]
00314
mp_count_bits
[function]
[call site]
00315
mp_2expt
[function]
[call site]
00316
mp_set
[function]
[call site]
00317
mp_mul_2
[function]
[call site]
00318
mp_grow
[function]
[call site]
00319
mp_cmp_mag
[function]
[call site]
00320
s_mp_sub
[function]
[call site]
00321
mp_mulmod
[function]
[call site]
00322
mp_mul
[function]
[call site]
00323
mp_mod
[function]
[call site]
00324
mp_clear
[function]
[call site]
00325
mp_set
[function]
[call site]
00326
mp_mod
[function]
[call site]
00327
mp_copy
[function]
[call site]
00328
mp_sqr
[function]
[call site]
00329
mp_mul
[function]
[call site]
00330
mp_sqr
[function]
[call site]
00331
mp_sqr
[function]
[call site]
00332
mp_mul
[function]
[call site]
00333
mp_sqr
[function]
[call site]
00334
mp_mul
[function]
[call site]
00335
mp_exch
[function]
[call site]
00336
mp_clear
[function]
[call site]
00337
mp_clear
[function]
[call site]
00338
mp_clear
[function]
[call site]
00339
s_mp_exptmod
[function]
[call site]
00340
dropbear_exit
[function]
[call site]
00341
mp_clear_multi
[function]
[call site]
00342
buf_put_pub_key
[function]
[call site]
00343
buf_new
[function]
[call site]
00344
buf_put_dss_pub_key
[function]
[call site]
00345
fail_assert
[function]
[call site]
00346
dropbear_exit
[function]
[call site]
00347
buf_putstring
[function]
[call site]
00348
buf_putint
[function]
[call site]
00349
buf_getwriteptr
[function]
[call site]
00350
dropbear_exit
[function]
[call site]
00351
buf_incrwritepos
[function]
[call site]
00352
dropbear_exit
[function]
[call site]
00353
buf_putbytes
[function]
[call site]
00354
buf_getwriteptr
[function]
[call site]
00355
buf_incrwritepos
[function]
[call site]
00356
buf_putmpint
[function]
[call site]
00357
fail_assert
[function]
[call site]
00358
dropbear_exit
[function]
[call site]
00359
mp_count_bits
[function]
[call site]
00360
buf_putint
[function]
[call site]
00361
buf_putbyte
[function]
[call site]
00362
buf_incrlen
[function]
[call site]
00363
dropbear_exit
[function]
[call site]
00364
buf_getwriteptr
[function]
[call site]
00365
mp_to_ubin
[function]
[call site]
00366
mp_ubin_size
[function]
[call site]
00367
mp_count_bits
[function]
[call site]
00368
mp_init_copy
[function]
[call site]
00369
mp_div_2d
[function]
[call site]
00370
mp_clear
[function]
[call site]
00371
dropbear_exit
[function]
[call site]
00372
buf_incrwritepos
[function]
[call site]
00373
buf_putmpint
[function]
[call site]
00374
buf_putmpint
[function]
[call site]
00375
buf_putmpint
[function]
[call site]
00376
buf_put_rsa_pub_key
[function]
[call site]
00377
buf_putstring
[function]
[call site]
00378
buf_putmpint
[function]
[call site]
00379
buf_putmpint
[function]
[call site]
00380
signkey_is_ecdsa
[function]
[call site]
00381
signkey_key_ptr
[function]
[call site]
00382
buf_put_ecdsa_pub_key
[function]
[call site]
00383
curve_for_dp
[function]
[call site]
00384
__assert_fail
[call site]
00385
snprintf
[call site]
00386
strlen
[call site]
00387
buf_putstring
[function]
[call site]
00388
strlen
[call site]
00389
buf_putstring
[function]
[call site]
00390
buf_put_ecc_raw_pubkey_string
[function]
[call site]
00391
buf_putint
[function]
[call site]
00392
buf_getwriteptr
[function]
[call site]
00393
ecc_ansi_x963_export
[function]
[call site]
00394
crypt_argchk
[function]
[call site]
00395
crypt_argchk
[function]
[call site]
00396
ltc_ecc_is_valid_idx
[function]
[call site]
00397
crypt_argchk
[function]
[call site]
00398
zeromem
[function]
[call site]
00399
m_burn
[function]
[call site]
00400
explicit_bzero
[call site]
00401
zeromem
[function]
[call site]
00402
dropbear_exit
[function]
[call site]
00403
buf_incrwritepos
[function]
[call site]
00404
buf_put_ed25519_pub_key
[function]
[call site]
00405
fail_assert
[function]
[call site]
00406
buf_putstring
[function]
[call site]
00407
buf_putstring
[function]
[call site]
00408
dropbear_exit
[function]
[call site]
00409
buf_putbufstring
[function]
[call site]
00410
buf_putstring
[function]
[call site]
00411
buf_free
[function]
[call site]
00412
m_free_direct
[function]
[call site]
00413
buf_putmpint
[function]
[call site]
00414
buf_putmpint
[function]
[call site]
00415
buf_putmpint
[function]
[call site]
00416
finish_kexhashbuf
[function]
[call site]
00417
buf_setpos
[function]
[call site]
00418
dropbear_exit
[function]
[call site]
00419
buf_getptr
[function]
[call site]
00420
buf_new
[function]
[call site]
00421
buf_getwriteptr
[function]
[call site]
00422
buf_setlen
[function]
[call site]
00423
dropbear_exit
[function]
[call site]
00424
buf_burn_free
[function]
[call site]
00425
m_burn
[function]
[call site]
00426
m_free_direct
[function]
[call site]
00427
m_burn
[function]
[call site]
00428
buf_newcopy
[function]
[call site]
00429
buf_new
[function]
[call site]
00430
mp_clear
[function]
[call site]
00431
m_free_direct
[function]
[call site]
00432
mp_clear
[function]
[call site]
00433
buf_free
[function]
[call site]
00434
buf_free
[function]
[call site]
00435
m_malloc_free_epoch
[function]
[call site]
00436
put_alloc
[function]
[call site]
00437
m_malloc_free_epoch
[function]
[call site]
00438