The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 156 | 156 |
1 :
['buf_put_dss_pub_key'] |
331 | 429 | buf_put_pub_key | call site: 00259 | /src/dropbear/src/signkey.c:427 |
| 156 | 156 |
1 :
['buf_put_rsa_pub_key'] |
175 | 273 | buf_put_pub_key | call site: 00260 | /src/dropbear/src/signkey.c:432 |
| 69 | 87 |
4 :
['buf_setpos', 'buf_new', 'buf_readfile', 'stat'] |
144 | 184 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:375 |
| 21 | 21 |
1 :
['parse_recv_window'] |
73 | 87 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:407 |
| 20 | 29 |
2 :
['m_mp_free_multi', 'm_free_direct'] |
20 | 29 | dss_key_free | call site: 00000 | /src/dropbear/src/dss.c:125 |
| 20 | 29 |
2 :
['m_mp_free_multi', 'm_free_direct'] |
20 | 29 | rsa_key_free | call site: 00000 | /src/dropbear/src/rsa.c:146 |
| 20 | 20 |
1 :
['m_mp_free_multi'] |
20 | 20 | buf_get_dss_priv_key | call site: 00000 | /src/dropbear/src/dss.c:113 |
| 20 | 20 |
1 :
['m_mp_free_multi'] |
20 | 20 | buf_get_rsa_priv_key | call site: 00000 | /src/dropbear/src/rsa.c:133 |
| 19 | 19 |
1 :
['buf_put_ed25519_pub_key'] |
19 | 49 | buf_put_pub_key | call site: 00293 | /src/dropbear/src/signkey.c:445 |
| 15 | 27 |
5 :
['m_malloc', 'fuzz_getpwuid', 'getuid', 'strlen', 'getenv'] |
15 | 43 | expand_homedir_path | call site: 00000 | /src/dropbear/src/dbutil.c:640 |
| 13 | 13 |
1 :
['m_str_to_uint'] |
13 | 19 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:441 |
| 2 | 2 |
1 :
['getgrnam'] |
75 | 91 | svr_getopts | call site: 00000 | /src/dropbear/src/svr-runopts.c:396 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
fuzz_set_input
[function]
[call site]
00001
wrapfd_setup
[function]
[call site]
00002
wrapfd_remove
[function]
[call site]
00003
__assert_fail
[call site]
00004
__assert_fail
[call site]
00005
__assert_fail
[call site]
00006
close
[call site]
00007
wrapfd_setseed
[function]
[call site]
00008
nrand48
[call site]
00009
fuzz_seed
[function]
[call site]
00010
sha256_init
[function]
[call site]
00011
crypt_argchk
[function]
[call site]
00012
fprintf
[call site]
00013
abort
[call site]
00014
sha256_process
[function]
[call site]
00015
crypt_argchk
[function]
[call site]
00016
sha256_compress
[function]
[call site]
00017
sha256_process
[function]
[call site]
00018
sha256_done
[function]
[call site]
00019
crypt_argchk
[function]
[call site]
00020
crypt_argchk
[function]
[call site]
00021
sha256_compress
[function]
[call site]
00022
sha256_compress
[function]
[call site]
00023
m_malloc_set_epoch
[function]
[call site]
00024
_setjmp
[call site]
00025
buf_getbyte
[function]
[call site]
00026
dropbear_exit
[function]
[call site]
00027
buf_getint
[function]
[call site]
00028
buf_getptr
[function]
[call site]
00029
dropbear_exit
[function]
[call site]
00030
buf_incrpos
[function]
[call site]
00031
dropbear_exit
[function]
[call site]
00032
buf_getstringbuf
[function]
[call site]
00033
buf_getstringbuf_int
[function]
[call site]
00034
buf_getint
[function]
[call site]
00035
dropbear_exit
[function]
[call site]
00036
buf_new
[function]
[call site]
00037
dropbear_exit
[function]
[call site]
00038
m_malloc
[function]
[call site]
00039
dropbear_exit
[function]
[call site]
00040
calloc
[call site]
00041
dropbear_exit
[function]
[call site]
00042
put_alloc
[function]
[call site]
00043
__assert_fail
[call site]
00044
__assert_fail
[call site]
00045
buf_putint
[function]
[call site]
00046
buf_getwriteptr
[function]
[call site]
00047
dropbear_exit
[function]
[call site]
00048
buf_incrwritepos
[function]
[call site]
00049
dropbear_exit
[function]
[call site]
00050
buf_getwriteptr
[function]
[call site]
00051
buf_incrpos
[function]
[call site]
00052
buf_incrlen
[function]
[call site]
00053
dropbear_exit
[function]
[call site]
00054
buf_setpos
[function]
[call site]
00055
dropbear_exit
[function]
[call site]
00056
buf_new
[function]
[call site]
00057
kexecdh_comb_key
[function]
[call site]
00058
buf_get_ecc_raw_pubkey
[function]
[call site]
00059
buf_setpos
[function]
[call site]
00060
buf_getbyte
[function]
[call site]
00061
dropbear_log
[function]
[call site]
00062
new_ecc_key
[function]
[call site]
00063
m_malloc
[function]
[call site]
00064
m_mp_alloc_init_multi
[function]
[call site]
00065
m_malloc
[function]
[call site]
00066
mp_init
[function]
[call site]
00067
m_calloc
[function]
[call site]
00068
dropbear_exit
[function]
[call site]
00069
m_malloc
[function]
[call site]
00070
dropbear_exit
[function]
[call site]
00071
buf_getptr
[function]
[call site]
00072
mp_from_ubin
[function]
[call site]
00073
mp_grow
[function]
[call site]
00074
m_realloc_ltm
[function]
[call site]
00075
m_realloc
[function]
[call site]
00076
dropbear_exit
[function]
[call site]
00077
get_header
[function]
[call site]
00078
remove_alloc
[function]
[call site]
00079
realloc
[call site]
00080
dropbear_exit
[function]
[call site]
00081
put_alloc
[function]
[call site]
00082
mp_zero
[function]
[call site]
00083
mp_mul_2d
[function]
[call site]
00084
mp_copy
[function]
[call site]
00085
mp_grow
[function]
[call site]
00086
mp_lshd
[function]
[call site]
00087
mp_grow
[function]
[call site]
00088
mp_clamp
[function]
[call site]
00089
mp_clamp
[function]
[call site]
00090
buf_incrpos
[function]
[call site]
00091
buf_getptr
[function]
[call site]
00092
mp_from_ubin
[function]
[call site]
00093
buf_incrpos
[function]
[call site]
00094
mp_set
[function]
[call site]
00095
ecc_is_point
[function]
[call site]
00096
m_mp_alloc_init_multi
[function]
[call site]
00097
mp_read_radix
[function]
[call site]
00098
mp_zero
[function]
[call site]
00099
mp_zero
[function]
[call site]
00100
mp_mul_d
[function]
[call site]
00101
mp_grow
[function]
[call site]
00102
mp_clamp
[function]
[call site]
00103
mp_add_d
[function]
[call site]
00104
mp_grow
[function]
[call site]
00105
mp_sub_d
[function]
[call site]
00106
mp_add_d
[function]
[call site]
00107
mp_clamp
[function]
[call site]
00108
mp_clamp
[function]
[call site]
00109
mp_clamp
[function]
[call site]
00110
mp_clamp
[function]
[call site]
00111
mp_zero
[function]
[call site]
00112
mp_read_radix
[function]
[call site]
00113
mp_sqr
[function]
[call site]
00114
s_mp_sqr_fast
[function]
[call site]
00115
mp_grow
[function]
[call site]
00116
mp_clamp
[function]
[call site]
00117
s_mp_sqr
[function]
[call site]
00118
mp_init_size
[function]
[call site]
00119
m_calloc
[function]
[call site]
00120
mp_clamp
[function]
[call site]
00121
mp_exch
[function]
[call site]
00122
mp_clear
[function]
[call site]
00123
mp_sqr
[function]
[call site]
00124
mp_mod
[function]
[call site]
00125
mp_init_size
[function]
[call site]
00126
mp_div
[function]
[call site]
00127
mp_cmp_mag
[function]
[call site]
00128
mp_copy
[function]
[call site]
00129
mp_zero
[function]
[call site]
00130
mp_init_size
[function]
[call site]
00131
mp_init
[function]
[call site]
00132
mp_init
[function]
[call site]
00133
mp_init_copy
[function]
[call site]
00134
mp_init_size
[function]
[call site]
00135
mp_copy
[function]
[call site]
00136
mp_clear
[function]
[call site]
00137
mp_init_copy
[function]
[call site]
00138
mp_count_bits
[function]
[call site]
00139
mp_mul_2d
[function]
[call site]
00140
mp_mul_2d
[function]
[call site]
00141
mp_lshd
[function]
[call site]
00142
mp_cmp
[function]
[call site]
00143
mp_cmp_mag
[function]
[call site]
00144
mp_cmp_mag
[function]
[call site]
00145
mp_sub
[function]
[call site]
00146
s_mp_add
[function]
[call site]
00147
mp_grow
[function]
[call site]
00148
mp_clamp
[function]
[call site]
00149
mp_cmp_mag
[function]
[call site]
00150
s_mp_sub
[function]
[call site]
00151
mp_grow
[function]
[call site]
00152
mp_clamp
[function]
[call site]
00153
s_mp_sub
[function]
[call site]
00154
mp_rshd
[function]
[call site]
00155
mp_zero
[function]
[call site]
00156
mp_mul_d
[function]
[call site]
00157
mp_cmp_mag
[function]
[call site]
00158
mp_mul_d
[function]
[call site]
00159
mp_lshd
[function]
[call site]
00160
mp_sub
[function]
[call site]
00161
mp_copy
[function]
[call site]
00162
mp_lshd
[function]
[call site]
00163
mp_add
[function]
[call site]
00164
s_mp_add
[function]
[call site]
00165
mp_cmp_mag
[function]
[call site]
00166
s_mp_sub
[function]
[call site]
00167
s_mp_sub
[function]
[call site]
00168
mp_clamp
[function]
[call site]
00169
mp_exch
[function]
[call site]
00170
mp_div_2d
[function]
[call site]
00171
mp_zero
[function]
[call site]
00172
mp_copy
[function]
[call site]
00173
mp_mod_2d
[function]
[call site]
00174
mp_zero
[function]
[call site]
00175
mp_copy
[function]
[call site]
00176
mp_copy
[function]
[call site]
00177
mp_clamp
[function]
[call site]
00178
mp_rshd
[function]
[call site]
00179
mp_clamp
[function]
[call site]
00180
mp_exch
[function]
[call site]
00181
mp_clear
[function]
[call site]
00182
mp_clear
[function]
[call site]
00183
mp_clear
[function]
[call site]
00184
mp_clear
[function]
[call site]
00185
mp_clear
[function]
[call site]
00186
mp_exch
[function]
[call site]
00187
mp_add
[function]
[call site]
00188
mp_clear
[function]
[call site]
00189
mp_mul
[function]
[call site]
00190
s_mp_balance_mul
[function]
[call site]
00191
mp_init_size
[function]
[call site]
00192
mp_init_multi
[function]
[call site]
00193
mp_init
[function]
[call site]
00194
mp_clear
[function]
[call site]
00195
mp_clear
[function]
[call site]
00196
mp_lshd
[function]
[call site]
00197
mp_add
[function]
[call site]
00198
mp_clamp
[function]
[call site]
00199
mp_mul
[function]
[call site]
00200
s_mp_mul_digs_fast
[function]
[call site]
00201
mp_grow
[function]
[call site]
00202
mp_clamp
[function]
[call site]
00203
s_mp_mul_digs
[function]
[call site]
00204
s_mp_mul_digs_fast
[function]
[call site]
00205
mp_init_size
[function]
[call site]
00206
mp_exch
[function]
[call site]
00207
mp_clear
[function]
[call site]
00208
mp_mul
[function]
[call site]
00209
mp_lshd
[function]
[call site]
00210
mp_add
[function]
[call site]
00211
mp_exch
[function]
[call site]
00212
mp_clear_multi
[function]
[call site]
00213
mp_clear
[function]
[call site]
00214
mp_sub
[function]
[call site]
00215
mp_add
[function]
[call site]
00216
mp_add
[function]
[call site]
00217
mp_add
[function]
[call site]
00218
mp_mod
[function]
[call site]
00219
mp_cmp_d
[function]
[call site]
00220
mp_add
[function]
[call site]
00221
mp_cmp
[function]
[call site]
00222
mp_sub
[function]
[call site]
00223
mp_cmp
[function]
[call site]
00224
mp_clear_multi
[function]
[call site]
00225
m_free_direct
[function]
[call site]
00226
get_header
[function]
[call site]
00227
remove_alloc
[function]
[call site]
00228
m_free_direct
[function]
[call site]
00229
m_free_direct
[function]
[call site]
00230
m_free_direct
[function]
[call site]
00231
mp_cmp_d
[function]
[call site]
00232
mp_cmp_d
[function]
[call site]
00233
ecc_free
[function]
[call site]
00234
crypt_argchk
[function]
[call site]
00235
ltc_deinit_multi
[function]
[call site]
00236
m_free_direct
[function]
[call site]
00237
dropbear_exit
[function]
[call site]
00238
dropbear_ecc_shared_secret
[function]
[call site]
00239
ltc_ecc_new_point
[function]
[call site]
00240
m_calloc
[function]
[call site]
00241
ltc_init_multi
[function]
[call site]
00242
m_free_direct
[function]
[call site]
00243
m_malloc
[function]
[call site]
00244
m_mp_init
[function]
[call site]
00245
mp_init
[function]
[call site]
00246
dropbear_exit
[function]
[call site]
00247
mp_read_radix
[function]
[call site]
00248
m_malloc
[function]
[call site]
00249
m_mp_init
[function]
[call site]
00250
mp_copy
[function]
[call site]
00251
mp_clear
[function]
[call site]
00252
m_free_direct
[function]
[call site]
00253
ltc_ecc_del_point
[function]
[call site]
00254
ltc_deinit_multi
[function]
[call site]
00255
m_free_direct
[function]
[call site]
00256
dropbear_exit
[function]
[call site]
00257
buf_put_pub_key
[function]
[call site]
00258
buf_new
[function]
[call site]
00259
buf_put_dss_pub_key
[function]
[call site]
00260
fail_assert
[function]
[call site]
00261
dropbear_exit
[function]
[call site]
00262
buf_putstring
[function]
[call site]
00263
buf_putint
[function]
[call site]
00264
buf_putbytes
[function]
[call site]
00265
buf_getwriteptr
[function]
[call site]
00266
buf_incrwritepos
[function]
[call site]
00267
buf_putmpint
[function]
[call site]
00268
fail_assert
[function]
[call site]
00269
dropbear_exit
[function]
[call site]
00270
mp_count_bits
[function]
[call site]
00271
buf_putint
[function]
[call site]
00272
buf_putbyte
[function]
[call site]
00273
buf_incrlen
[function]
[call site]
00274
buf_getwriteptr
[function]
[call site]
00275
mp_to_ubin
[function]
[call site]
00276
mp_ubin_size
[function]
[call site]
00277
mp_count_bits
[function]
[call site]
00278
mp_init_copy
[function]
[call site]
00279
mp_div_2d
[function]
[call site]
00280
mp_clear
[function]
[call site]
00281
dropbear_exit
[function]
[call site]
00282
buf_incrwritepos
[function]
[call site]
00283
buf_putmpint
[function]
[call site]
00284
buf_putmpint
[function]
[call site]
00285
buf_putmpint
[function]
[call site]
00286
buf_put_rsa_pub_key
[function]
[call site]
00287
buf_putstring
[function]
[call site]
00288
buf_putmpint
[function]
[call site]
00289
buf_putmpint
[function]
[call site]
00290
signkey_is_ecdsa
[function]
[call site]
00291
signkey_key_ptr
[function]
[call site]
00292
buf_put_ecdsa_pub_key
[function]
[call site]
00293
curve_for_dp
[function]
[call site]
00294
__assert_fail
[call site]
00295
snprintf
[call site]
00296
strlen
[call site]
00297
buf_putstring
[function]
[call site]
00298
strlen
[call site]
00299
buf_putstring
[function]
[call site]
00300
buf_put_ecc_raw_pubkey_string
[function]
[call site]
00301
buf_putint
[function]
[call site]
00302
buf_getwriteptr
[function]
[call site]
00303
ecc_ansi_x963_export
[function]
[call site]
00304
crypt_argchk
[function]
[call site]
00305
crypt_argchk
[function]
[call site]
00306
ltc_ecc_is_valid_idx
[function]
[call site]
00307
crypt_argchk
[function]
[call site]
00308
zeromem
[function]
[call site]
00309
m_burn
[function]
[call site]
00310
explicit_bzero
[call site]
00311
zeromem
[function]
[call site]
00312
dropbear_exit
[function]
[call site]
00313
buf_incrwritepos
[function]
[call site]
00314
buf_put_ed25519_pub_key
[function]
[call site]
00315
fail_assert
[function]
[call site]
00316
buf_putstring
[function]
[call site]
00317
buf_putstring
[function]
[call site]
00318
dropbear_exit
[function]
[call site]
00319
buf_putbufstring
[function]
[call site]
00320
buf_putstring
[function]
[call site]
00321
buf_free
[function]
[call site]
00322
m_free_direct
[function]
[call site]
00323
buf_put_ecc_raw_pubkey_string
[function]
[call site]
00324
buf_put_ecc_raw_pubkey_string
[function]
[call site]
00325
buf_putmpint
[function]
[call site]
00326
ecc_free
[function]
[call site]
00327
m_free_direct
[function]
[call site]
00328
finish_kexhashbuf
[function]
[call site]
00329
buf_setpos
[function]
[call site]
00330
buf_getptr
[function]
[call site]
00331
buf_new
[function]
[call site]
00332
buf_getwriteptr
[function]
[call site]
00333
buf_setlen
[function]
[call site]
00334
dropbear_exit
[function]
[call site]
00335
buf_burn_free
[function]
[call site]
00336
m_burn
[function]
[call site]
00337
m_free_direct
[function]
[call site]
00338
m_burn
[function]
[call site]
00339
buf_newcopy
[function]
[call site]
00340
buf_new
[function]
[call site]
00341
m_free_direct
[function]
[call site]
00342
buf_free
[function]
[call site]
00343
buf_free
[function]
[call site]
00344
buf_free
[function]
[call site]
00345
m_malloc_free_epoch
[function]
[call site]
00346
put_alloc
[function]
[call site]
00347