Fuzz introspector: ml-dsa
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
6320 6320 2 :

['EVP_DigestSignInit', 'EVP_DigestVerifyInit']

6320 6586 evp_md_init_internal call site: 00000 /src/openssl/crypto/evp/digest.c:165
2719 2738 2 :

['CONF_modules_load', 'OSSL_LIB_CTX_get_conf_diagnostics']

2719 2762 CONF_modules_load_file_ex call site: 00000 /src/openssl/crypto/conf/conf_mod.c:217
2246 2246 1 :

['EVP_PKEY_CTX_new']

22020 40164 do_sigver_init call site: 00000 /src/openssl/crypto/evp/m_sigver.c:58
2058 2058 2 :

['CRYPTO_free', 'ossl_cipher_tlsunpadblock']

2058 3654 ossl_cipher_generic_block_update call site: 00000 /src/openssl/providers/implementations/ciphers/ciphercommon.c:435
1904 2298 5 :

['EVP_PKEY_CTX_ctrl', 'ENGINE_init', 'ENGINE_get_digest', 'CRYPTO_zalloc', 'ENGINE_finish']

1904 3544 evp_md_init_internal call site: 00000 /src/openssl/crypto/evp/digest.c:225
1767 4461 8 :

['evp_signature_fetch_from_prov', 'ossl_assert_int.7785', 'EVP_SIGNATURE_fetch', 'ERR_pop_to_mark', 'EVP_SIGNATURE_free', 'ERR_set_mark', 'ERR_clear_last_mark', 'EVP_KEYMGMT_get0_provider']

1767 16791 evp_pkey_signature_init call site: 00000 /src/openssl/crypto/evp/signature.c:592
1759 2346 14 :

['CRYPTO_THREAD_unlock', 'CRYPTO_free', 'DSO_ctrl', 'DSO_load', 'DSO_free', 'DSO_bind_func', 'CRYPTO_THREAD_read_lock', 'ossl_safe_getenv', 'DSO_merge', 'CRYPTO_strdup', 'DSO_new', 'get_provider_store', 'DSO_convert_filename', 'ossl_get_modulesdir']

1767 3162 provider_init call site: 00000 /src/openssl/crypto/provider_core.c:959
1745 2062 2 :

['EVP_CIPHER_fetch', 'OBJ_nid2sn']

2340 7490 evp_cipher_init_internal call site: 00000 /src/openssl/crypto/evp/evp_enc.c:186
1745 1759 2 :

['EVP_CIPHER_fetch', 'ERR_pop_to_mark']

1745 5385 drbg_ctr_set_ctx_params_locked call site: 00000 /src/openssl/providers/implementations/rands/drbg_ctr.c:783
1247 1247 2 :

['def_load_bio', 'BIO_free']

1247 1247 def_load call site: 00000 /src/openssl/crypto/conf/conf_def.c:177
1149 1149 1 :

['EVP_PKEY_CTX_is_a']

1149 6793 evp_pkey_signature_init call site: 00000 /src/openssl/crypto/evp/signature.c:634
1140 1457 6 :

['evp_pkey_meth_find_added_by_application', 'EVP_PKEY_meth_find', 'ENGINE_init', 'ENGINE_get_pkey_meth_engine', 'OBJ_nid2sn', 'ENGINE_get_pkey_meth']

1140 8074 int_ctx_new call site: 00000 /src/openssl/crypto/evp/pmeth_lib.c:188

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 FuzzerTestOneInput [function] [call site] 00001
2 consume_uint8_t [function] [call site] 00002