The following nodes represent call sites where fuzz blockers occur.
Amount of callsites blocked | Calltree index | Parent function | Callsite | Largest blocked function |
---|---|---|---|---|
74 | 128 | sigstore._internal.sct._pack_signed_entry | call site: 00128 | sigstore.verify.verifier._validate_dsse_v002_entry_body |
39 | 63 | model_signing._signing.signing.Verifier.verify | call site: 00063 | sigstore.verify.verifier.Verifier.verify_dsse |
29 | 308 | model_signing.hashing.Config.hash | call site: 00308 | model_signing.hashing.Config._build_sharded_file_hasher_factory._factory |
22 | 29 | ...model-transparency.tests.fuzzing.fuzz_sign_then_mutate_verify_with_valid_key.TestOneInput | call site: 00029 | sigstore.models.Bundle.__init__ |
15 | 241 | model_signing.verifying.Config._guess_hashing_config | call site: 00241 | model_signing.hashing.Config.use_shard_serialization |
11 | 103 | sigstore._internal.sct._get_signed_certificate_timestamp | call site: 00103 | sigstore._internal.sct._cert_is_ca |
6 | 116 | sigstore._utils.key_id | call site: 00116 | sigstore._internal.sct._pack_digitally_signed |
4 | 207 | model_signing.manifest.SerializationType.from_args | call site: 00207 | bytes.fromhex |
4 | 232 | model_signing.hashing.Config._build_stream_hasher | call site: 00232 | model_signing._hashing.memory.BLAKE2.__init__ |
4 | 302 | model_signing._serialization.file.Serializer.serialize | call site: 00302 |
|
3 | 271 | model_signing.hashing.Config.hash | call site: 00271 | model_signing.hashing.Config._build_sharded_file_hasher_factory._factory |
3 | 343 | model_signing.verifying.Config._get_manifest_diff | call site: 00343 | expected_hashes.keys |
...model-transparency.tests.fuzzing.fuzz_sign_then_mutate_verify_with_valid_key.TestOneInput
[function]
[call site]
00000
atheris.FuzzedDataProvider
[function]
[call site]
00001
tempfile.TemporaryDirectory
[function]
[call site]
00002
tempfile.TemporaryDirectory
[function]
[call site]
00003
pathlib.Path
[function]
[call site]
00004
utils.create_fuzz_files
[function]
[call site]
00005
utils.any_files
[function]
[call site]
00006
<builtin>.str
[function]
[call site]
00007
os.path.join
[function]
[call site]
00008
...model-transparency.tests.fuzzing.fuzz_sign_then_mutate_verify_with_valid_key._pick_key_spec
[function]
[call site]
00009
<builtin>.len
[function]
[call site]
00010
fdp.ConsumeIntInRange
[function]
[call site]
00011
scfg.use_elliptic_key_signer
[function]
[call site]
00012
signer.sign
[function]
[call site]
00013
pathlib.Path.rglob
[function]
[call site]
00014
p.is_file
[function]
[call site]
00015
<builtin>.len
[function]
[call site]
00016
fdp.ConsumeIntInRange
[function]
[call site]
00017
target.read_bytes
[function]
[call site]
00018
fdp.ConsumeIntInRange
[function]
[call site]
00019
fdp.ConsumeBytes
[function]
[call site]
00020
target.relative_to
[function]
[call site]
00021
utils.safe_write
[function]
[call site]
00022
model_signing.verifying.Config.__init__
[function]
[call site]
00023
model_signing.verifying.Config.use_elliptic_key_verifier
[function]
[call site]
00024
pathlib.Path
[function]
[call site]
00025
model_signing._signing.sign_ec_key.Verifier.__init__
[function]
[call site]
00026
public_key_path.read_bytes
[function]
[call site]
00027
model_signing._signing.sign_ec_key._check_supported_ec_key
[function]
[call site]
00028
model_signing.verifying.Config.verify
[function]
[call site]
00029
pathlib.Path
[function]
[call site]
00030
model_signing._signing.sign_sigstore.Signature.read
[function]
[call site]
00031
path.read_text
[function]
[call site]
00032
sigstore.models.Bundle.from_json
[function]
[call site]
00033
sigstore_models.bundle.v1.Bundle.from_json
[function]
[call site]
00034
sigstore.models.Bundle.__init__
[function]
[call site]
00035
sigstore.models.Bundle._verify
[function]
[call site]
00036
enum.Enum.__init__
[function]
[call site]
00037
cryptography.hazmat.bindings._rust.x509.load_der_x509_certificate
[function]
[call site]
00038
cryptography.hazmat.bindings._rust.x509.load_der_x509_certificate
[function]
[call site]
00039
sigstore._utils.cert_is_leaf
[function]
[call site]
00040
sigstore._utils.cert_is_ca
[function]
[call site]
00041
cert.extensions.get_extension_for_oid
[function]
[call site]
00042
cert.extensions.get_extension_for_oid
[function]
[call site]
00043
cert.extensions.get_extension_for_oid
[function]
[call site]
00044
cert.extensions.get_extension_for_oid
[function]
[call site]
00045
sigstore._utils.cert_is_root_ca
[function]
[call site]
00046
sigstore._utils.cert_is_ca
[function]
[call site]
00047
cert.verify_directly_issued_by
[function]
[call site]
00048
_logger.warning
[function]
[call site]
00049
<builtin>.len
[function]
[call site]
00050
sigstore.models.TransparencyLogEntry.__init__
[function]
[call site]
00051
sigstore.models.TransparencyLogEntry._validate
[function]
[call site]
00052
_logger.debug
[function]
[call site]
00053
model_signing._signing.sign_sigstore.Signature.__init__
[function]
[call site]
00054
pathlib.Path
[function]
[call site]
00055
model_signing._signing.sign_sigstore_pb.Signature.read
[function]
[call site]
00056
path.read_text
[function]
[call site]
00057
json.loads
[function]
[call site]
00058
sigstore_models.bundle.v1.Bundle.from_dict
[function]
[call site]
00059
model_signing._signing.sign_sigstore_pb.Signature.__init__
[function]
[call site]
00060
model_signing._signing.signing.Verifier.verify
[function]
[call site]
00061
model_signing._signing.signing.Verifier._verify_signed_content
[function]
[call site]
00062
model_signing._signing.sign_sigstore.Verifier._verify_signed_content
[function]
[call site]
00063
typing.cast
[function]
[call site]
00064
sigstore.verify.verifier.Verifier.verify_dsse
[function]
[call site]
00065
sigstore.verify.verifier.Verifier._verify_common_signing_cert
[function]
[call site]
00066
OpenSSL.crypto.X509Store
[function]
[call site]
00067
OpenSSL.crypto.X509Store.set_flags
[function]
[call site]
00068
OpenSSL.crypto.X509Store.add_cert
[function]
[call site]
00069
sigstore.verify.verifier.Verifier._establish_time
[function]
[call site]
00070
sigstore.verify.verifier.Verifier._verify_timestamp_authority
[function]
[call site]
00071
<builtin>.len
[function]
[call site]
00072
<builtin>.len
[function]
[call site]
00073
<builtin>.set
[function]
[call site]
00074
<builtin>.len
[function]
[call site]
00075
<builtin>.len
[function]
[call site]
00076
sigstore.verify.verifier.Verifier._verify_signed_timestamp
[function]
[call site]
00077
certificate_authority.certificates
[function]
[call site]
00078
<builtin>.len
[function]
[call site]
00079
_logger.debug
[function]
[call site]
00080
rfc3161_client.VerifierBuilder
[function]
[call site]
00081
rfc3161_client.VerifierBuilder.tsa_certificate
[function]
[call site]
00082
builder.add_intermediate_certificate
[function]
[call site]
00083
builder.build
[function]
[call site]
00084
verifier.verify_message
[function]
[call site]
00085
_logger.debug
[function]
[call site]
00086
_logger.debug
[function]
[call site]
00087
verified_timestamps.extend
[function]
[call site]
00088
verified_timestamps.append
[function]
[call site]
00089
datetime.datetime.fromtimestamp
[function]
[call site]
00090
<builtin>.len
[function]
[call site]
00091
OpenSSL.crypto.X509.from_cryptography
[function]
[call site]
00092
sigstore.verify.verifier.Verifier._verify_chain_at_time
[function]
[call site]
00093
OpenSSL.crypto.X509Store
[function]
[call site]
00094
OpenSSL.crypto.X509Store.set_flags
[function]
[call site]
00095
OpenSSL.crypto.X509Store.add_cert
[function]
[call site]
00096
OpenSSL.crypto.X509Store.set_time
[function]
[call site]
00097
OpenSSL.crypto.X509StoreContext
[function]
[call site]
00098
OpenSSL.crypto.X509StoreContext.get_verified_chain
[function]
[call site]
00099
sigstore._internal.sct.verify_sct
[function]
[call site]
00100
sigstore._internal.sct._get_signed_certificate_timestamp
[function]
[call site]
00101
typing.cast.bundle.signing_certificate.extensions.get_extension_for_class
[function]
[call site]
00102
<builtin>.len
[function]
[call site]
00103
sigstore._internal.sct._get_issuer_cert
[function]
[call site]
00104
sigstore._internal.sct._is_preissuer
[function]
[call site]
00105
issuer.extensions.get_extension_for_class
[function]
[call site]
00106
issuer_cert.public_key
[function]
[call site]
00107
sigstore._internal.sct._cert_is_ca
[function]
[call site]
00108
_logger.debug
[function]
[call site]
00109
sigstore._utils.cert_is_ca
[function]
[call site]
00110
_logger.debug
[function]
[call site]
00111
<builtin>.isinstance
[function]
[call site]
00112
sigstore._utils.key_id
[function]
[call site]
00113
key.public_bytes
[function]
[call site]
00114
hashlib.sha256
[function]
[call site]
00115
typing.NewType
[function]
[call site]
00116
sigstore._internal.sct._pack_digitally_signed
[function]
[call site]
00117
<builtin>.len
[function]
[call site]
00118
sigstore._internal.sct._pack_signed_entry
[function]
[call site]
00119
typing.cast.bundle.signing_certificate.public_bytes
[function]
[call site]
00120
<builtin>.len
[function]
[call site]
00121
fields.append
[function]
[call site]
00122
struct.unpack
[function]
[call site]
00123
<builtin>.len
[function]
[call site]
00124
struct.pack
[function]
[call site]
00125
<builtin>.len
[function]
[call site]
00126
pack_format.format
[function]
[call site]
00127
fields.extend
[function]
[call site]
00128
struct.pack
[function]
[call site]
00129
<builtin>.len
[function]
[call site]
00130
sct.timestamp.replace
[function]
[call site]
00131
struct.pack
[function]
[call site]
00132
timestamp.timestamp
[function]
[call site]
00133
<builtin>.int
[function]
[call site]
00134
<builtin>.len
[function]
[call site]
00135
<builtin>.isinstance
[function]
[call site]
00136
sct.log_id.hex
[function]
[call site]
00137
_logger.debug
[function]
[call site]
00138
ct_keyring.verify
[function]
[call site]
00139
typing.NewType
[function]
[call site]
00140
parent_cert.to_cryptography
[function]
[call site]
00141
typing.cast.bundle.signing_certificate.extensions.get_extension_for_class
[function]
[call site]
00142
typing.cast.bundle.signing_certificate.extensions.get_extension_for_class
[function]
[call site]
00143
sigstore.verify.policy.Identity.verify
[function]
[call site]
00144
sigstore.verify.policy._SingleX509ExtPolicy.verify
[function]
[call site]
00145
typing.cast.bundle.signing_certificate.extensions.get_extension_for_oid
[function]
[call site]
00146
ext.value.decode
[function]
[call site]
00147
typing.cast.bundle.signing_certificate.extensions.get_extension_for_class
[function]
[call site]
00148
san_ext.get_values_for_type
[function]
[call site]
00149
<builtin>.set
[function]
[call site]
00150
san_ext.get_values_for_type
[function]
[call site]
00151
all_sans.update
[function]
[call site]
00152
all_sans.update
[function]
[call site]
00153
on.value.decode
[function]
[call site]
00154
san_ext.get_values_for_type
[function]
[call site]
00155
_logger.debug
[function]
[call site]
00156
typing.cast.bundle.log_entry._verify
[function]
[call site]
00157
typing.cast.bundle.signing_certificate.public_key
[function]
[call site]
00158
typing.cast
[function]
[call site]
00159
sigstore.dsse._verify
[function]
[call site]
00160
sigstore.dsse._pae
[function]
[call site]
00161
<builtin>.len
[function]
[call site]
00162
<builtin>.len
[function]
[call site]
00163
cryptography.hazmat.primitives.asymmetric.ec.ECDSA.__init__
[function]
[call site]
00164
cryptography.hazmat.backends.openssl.backend.Backend.ecdsa_deterministic_supported
[function]
[call site]
00165
typing.cast.verify
[function]
[call site]
00166
sigstore.verify.verifier._validate_dsse_v002_entry_body
[function]
[call site]
00167
sigstore_models.rekor.v2.entry.Entry.from_json
[function]
[call site]
00168
sigstore._utils.sha256_digest
[function]
[call site]
00169
<builtin>.isinstance
[function]
[call site]
00170
<builtin>.isinstance
[function]
[call site]
00171
hashlib.sha256
[function]
[call site]
00172
sigstore._utils._sha256_streaming
[function]
[call site]
00173
hashlib.sha256
[function]
[call site]
00174
<builtin>.bytearray
[function]
[call site]
00175
<builtin>.memoryview
[function]
[call site]
00176
io.readinto
[function]
[call site]
00177
sha256.update
[function]
[call site]
00178
io.readinto
[function]
[call site]
00179
sha256.digest
[function]
[call site]
00180
sigstore_models.rekor.v2.verifier.Signature
[function]
[call site]
00181
base64.b64encode
[function]
[call site]
00182
sigstore.verify.verifier._v2_verifier_from_certificate
[function]
[call site]
00183
typing.cast.bundle.signing_certificate.public_key
[function]
[call site]
00184
<builtin>.isinstance
[function]
[call site]
00185
<builtin>.isinstance
[function]
[call site]
00186
<builtin>.isinstance
[function]
[call site]
00187
<builtin>.isinstance
[function]
[call site]
00188
sigstore_models.rekor.v2.verifier.Verifier
[function]
[call site]
00189
sigstore_models.common.v1.X509Certificate
[function]
[call site]
00190
base64.b64encode
[function]
[call site]
00191
typing.cast.bundle.signing_certificate.public_bytes
[function]
[call site]
00192
sigstore.verify.verifier._validate_dsse_v001_entry_body
[function]
[call site]
00193
rekor_types.Dsse.model_validate_json
[function]
[call site]
00194
sigstore._utils.sha256_digest
[function]
[call site]
00195
typing.cast.bundle._dsse_envelope._inner.payload.digest.hex
[function]
[call site]
00196
rekor_types.dsse.Signature
[function]
[call site]
00197
base64.b64encode
[function]
[call site]
00198
sigstore._utils.base64_encode_pem_cert
[function]
[call site]
00199
typing.NewType
[function]
[call site]
00200
typing.cast.bundle.signing_certificate.public_bytes
[function]
[call site]
00201
base64.b64encode
[function]
[call site]
00202
json.loads
[function]
[call site]
00203
model_signing._signing.signing.dsse_payload_to_manifest
[function]
[call site]
00204
model_signing._signing.signing.dsse_payload_to_manifest_compat
[function]
[call site]
00205
model_signing.manifest.SerializationType.from_args
[function]
[call site]
00206
subclass._from_args
[function]
[call site]
00207
bytes.fromhex
[function]
[call site]
00208
serialization.new_item
[function]
[call site]
00209
items.append
[function]
[call site]
00210
model_signing.manifest.Manifest.__init__
[function]
[call site]
00211
<builtin>.len
[function]
[call site]
00212
model_signing.manifest.SerializationType.from_args
[function]
[call site]
00213
model_signing._hashing.memory.SHA256.__init__
[function]
[call site]
00214
hashlib.sha256
[function]
[call site]
00215
bytes.fromhex
[function]
[call site]
00216
model_signing._hashing.memory.SHA256.update
[function]
[call site]
00217
serialization.new_item
[function]
[call site]
00218
items.append
[function]
[call site]
00219
model_signing._hashing.memory.SHA256.compute
[function]
[call site]
00220
model_signing.manifest.Manifest.__init__
[function]
[call site]
00221
model_signing.verifying.Config._guess_hashing_config
[function]
[call site]
00222
model_signing.hashing.Config.__init__
[function]
[call site]
00223
<builtin>.frozenset
[function]
[call site]
00224
model_signing.hashing.Config.use_file_serialization
[function]
[call site]
00225
model_signing._serialization.file.Serializer.__init__
[function]
[call site]
00226
pathlib.Path
[function]
[call site]
00227
model_signing.hashing.Config._build_file_hasher_factory._factory
[function]
[call site]
00228
model_signing._hashing.io.Blake3FileHasher.__init__
[function]
[call site]
00229
blake3.blake3
[function]
[call site]
00230
model_signing.hashing.Config._build_stream_hasher
[function]
[call site]
00231
model_signing._hashing.memory.SHA256.__init__
[function]
[call site]
00232
model_signing._hashing.memory.BLAKE2.__init__
[function]
[call site]
00233
hashlib.blake2b
[function]
[call site]
00234
model_signing._hashing.memory.BLAKE3.__init__
[function]
[call site]
00235
blake3.blake3
[function]
[call site]
00236
model_signing._hashing.io.SimpleFileHasher.__init__
[function]
[call site]
00237
model_signing.manifest._FileSerialization.__init__
[function]
[call site]
00238
<builtin>.str
[function]
[call site]
00239
model_signing.hashing.Config._build_file_hasher_factory
[function]
[call site]
00240
model_signing.hashing.Config.use_file_serialization
[function]
[call site]
00241
<builtin>.frozenset
[function]
[call site]
00242
model_signing.hashing.Config.__init__
[function]
[call site]
00243
model_signing.hashing.Config.use_shard_serialization
[function]
[call site]
00244
model_signing.hashing.Config.use_file_serialization
[function]
[call site]
00245
model_signing._serialization.file_shard.Serializer.__init__
[function]
[call site]
00246
pathlib.Path
[function]
[call site]
00247
model_signing.hashing.Config._build_sharded_file_hasher_factory._factory
[function]
[call site]
00248
model_signing.hashing.Config._build_stream_hasher
[function]
[call site]
00249
model_signing._hashing.io.ShardedFileHasher.__init__
[function]
[call site]
00250
<builtin>.super
[function]
[call site]
00251
model_signing._hashing.io.ShardedFileHasher.set_shard
[function]
[call site]
00252
model_signing.manifest._ShardSerialization.__init__
[function]
[call site]
00253
<builtin>.str
[function]
[call site]
00254
model_signing.hashing.Config._build_sharded_file_hasher_factory
[function]
[call site]
00255
<builtin>.frozenset
[function]
[call site]
00256
model_signing.hashing.Config.add_ignored_paths
[function]
[call site]
00257
<builtin>.set
[function]
[call site]
00258
pathlib.Path
[function]
[call site]
00259
pathlib.Path
[function]
[call site]
00260
full.relative_to
[function]
[call site]
00261
newset.add
[function]
[call site]
00262
model_signing.manifest.Manifest.resource_descriptors
[function]
[call site]
00263
<builtin>.sorted
[function]
[call site]
00264
<builtin>.str
[function]
[call site]
00265
model_signing.hashing.Config.hash
[function]
[call site]
00266
pathlib.Path
[function]
[call site]
00267
full.relative_to
[function]
[call site]
00268
ignored_paths.append
[function]
[call site]
00269
ignored_paths.extend
[function]
[call site]
00270
model_signing._serialization.file_shard.Serializer.set_allow_symlinks
[function]
[call site]
00271
pathlib.Path
[function]
[call site]
00272
model_signing.hashing.Config._build_sharded_file_hasher_factory._factory
[function]
[call site]
00273
model_signing.manifest._ShardSerialization.__init__
[function]
[call site]
00274
model_signing._serialization.file.Serializer.set_allow_symlinks
[function]
[call site]
00275
pathlib.Path
[function]
[call site]
00276
model_signing.hashing.Config._build_file_hasher_factory._factory
[function]
[call site]
00277
model_signing.manifest._FileSerialization.__init__
[function]
[call site]
00278
model_signing._serialization.file.Serializer.serialize
[function]
[call site]
00279
itertools.chain
[function]
[call site]
00280
model_path.glob
[function]
[call site]
00281
model_signing._serialization.serialization.check_file_or_directory
[function]
[call site]
00282
path.is_symlink
[function]
[call site]
00283
path.is_file
[function]
[call site]
00284
path.is_dir
[function]
[call site]
00285
path.is_file
[function]
[call site]
00286
model_signing._serialization.serialization.should_ignore
[function]
[call site]
00287
path.is_relative_to
[function]
[call site]
00288
<builtin>.any
[function]
[call site]
00289
paths.append
[function]
[call site]
00290
concurrent.futures.ThreadPoolExecutor
[function]
[call site]
00291
tpe.submit
[function]
[call site]
00292
concurrent.futures.as_completed
[function]
[call site]
00293
future.result
[function]
[call site]
00294
manifest_items.append
[function]
[call site]
00295
os.path.relpath
[function]
[call site]
00296
rp.startswith
[function]
[call site]
00297
pathlib.Path
[function]
[call site]
00298
rel_ignore_paths.append
[function]
[call site]
00299
pathlib.Path
[function]
[call site]
00300
model_signing.hashing.Config._build_file_hasher_factory._factory
[function]
[call site]
00301
model_signing.manifest._FileSerialization.__init__
[function]
[call site]
00302
<builtin>.list
[function]
[call site]
00303
<builtin>.frozenset
[function]
[call site]
00304
model_path.resolve
[function]
[call site]
00305
os.path.basename
[function]
[call site]
00306
model_signing.manifest.Manifest.__init__
[function]
[call site]
00307
model_signing._serialization.file_shard.Serializer.serialize
[function]
[call site]
00308
itertools.chain
[function]
[call site]
00309
model_path.glob
[function]
[call site]
00310
model_signing._serialization.serialization.check_file_or_directory
[function]
[call site]
00311
path.is_file
[function]
[call site]
00312
model_signing._serialization.serialization.should_ignore
[function]
[call site]
00313
model_signing._serialization.file_shard.Serializer._get_shards
[function]
[call site]
00314
path.stat
[function]
[call site]
00315
model_signing._serialization.file_shard._endpoints
[function]
[call site]
00316
<builtin>.range
[function]
[call site]
00317
shards.append
[function]
[call site]
00318
shards.extend
[function]
[call site]
00319
concurrent.futures.ThreadPoolExecutor
[function]
[call site]
00320
tpe.submit
[function]
[call site]
00321
concurrent.futures.as_completed
[function]
[call site]
00322
future.result
[function]
[call site]
00323
manifest_items.append
[function]
[call site]
00324
os.path.relpath
[function]
[call site]
00325
rp.startswith
[function]
[call site]
00326
pathlib.Path
[function]
[call site]
00327
rel_ignore_paths.append
[function]
[call site]
00328
pathlib.Path
[function]
[call site]
00329
model_signing.hashing.Config._build_sharded_file_hasher_factory._factory
[function]
[call site]
00330
model_signing.manifest._ShardSerialization.__init__
[function]
[call site]
00331
<builtin>.list
[function]
[call site]
00332
<builtin>.frozenset
[function]
[call site]
00333
model_path.resolve
[function]
[call site]
00334
os.path.basename
[function]
[call site]
00335
model_signing.manifest.Manifest.__init__
[function]
[call site]
00336
pathlib.Path
[function]
[call site]
00337
model_signing.verifying.Config._get_manifest_diff
[function]
[call site]
00338
model_signing.manifest.Manifest.resource_descriptors
[function]
[call site]
00339
model_signing.manifest.Manifest.resource_descriptors
[function]
[call site]
00340
actual_hashes.keys
[function]
[call site]
00341
<builtin>.set
[function]
[call site]
00342
<builtin>.set
[function]
[call site]
00343
expected_hashes.keys
[function]
[call site]
00344
diffs.append
[function]
[call site]
00345
<builtin>.sorted
[function]
[call site]
00346
expected_hashes.keys
[function]
[call site]
00347
<builtin>.set
[function]
[call site]
00348
<builtin>.set
[function]
[call site]
00349
actual_hashes.keys
[function]
[call site]
00350
diffs.append
[function]
[call site]
00351
<builtin>.sorted
[function]
[call site]
00352
actual_hashes.keys
[function]
[call site]
00353
<builtin>.set
[function]
[call site]
00354
expected_hashes.keys
[function]
[call site]
00355
<builtin>.set
[function]
[call site]
00356
<builtin>.sorted
[function]
[call site]
00357
diffs.append
[function]
[call site]
00358