The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 198 | 1109 |
14 :
['push_change_cipher_spec', 'derive_exporter_secret', 'send_finished', 'send_certificate_verify', 'derive_secret', 'free', 'commission_handshake_secret', 'ptls_buffer__do_pushv', 'send_certificate', 'ptls_buffer__adjust_quic_blocksize', 'key_schedule_extract', 'ptls_iovec_init', 'ptls__key_schedule_update_hash', 'setup_traffic_protection'] |
198 | 1109 | client_handle_finished | call site: 00000 | /src/picotls/lib/picotls.c:3357 |
| 168 | 168 |
1 :
['commission_handshake_secret'] |
168 | 351 | server_finish_handshake | call site: 00000 | /src/picotls/lib/picotls.c:4741 |
| 151 | 443 |
5 :
['check_client_hello_constraints', 'ptls_aead_decrypt', 'ptls_aead_free', 'decode_client_hello', 'rebuild_ch_inner'] |
1460 | 6009 | server_handle_hello | call site: 00000 | /src/picotls/lib/picotls.c:4271 |
| 142 | 142 |
2 :
['free', 'client_ech_select_hello'] |
142 | 1013 | client_handle_hello | call site: 00000 | /src/picotls/lib/picotls.c:2738 |
| 142 | 142 |
1 :
['client_ech_select_hello'] |
142 | 650 | client_handle_hello | call site: 00000 | /src/picotls/lib/picotls.c:2758 |
| 102 | 102 |
1 :
['decode_stored_session_ticket'] |
190 | 1826 | send_client_hello | call site: 00000 | /src/picotls/lib/picotls.c:2325 |
| 90 | 270 |
4 :
['ptls__key_schedule_update_hash', 'push_signature_algorithms', 'ptls_buffer__adjust_quic_blocksize', 'ptls_buffer__do_pushv'] |
90 | 622 | server_handle_hello | call site: 00000 | /src/picotls/lib/picotls.c:4663 |
| 80 | 160 |
2 :
['calc_verify_data', 'derive_secret_with_empty_digest'] |
88 | 1257 | send_client_hello | call site: 00000 | /src/picotls/lib/picotls.c:2386 |
| 62 | 62 |
3 :
['buffer_push_encrypted_records', 'malloc', 'free'] |
62 | 62 | buffer_encrypt_record | call site: 00000 | /src/picotls/lib/picotls.c:804 |
| 60 | 160 |
5 :
['ptls_iovec_init', 'build_certificate_verify_signdata', 'ptls__key_schedule_update_hash', 'ptls_buffer__do_pushv', 'ptls_buffer__adjust_quic_blocksize'] |
60 | 160 | send_certificate_verify | call site: 00000 | /src/picotls/lib/picotls.c:3094 |
| 8 | 736 |
8 :
['ptls_aead_encrypt', 'outer_ech_header_size', 'ptls_buffer_reserve', 'strlen', 'ptls_iovec_init', 'malloc', 'ptls__key_schedule_update_hash', 'encode_client_hello'] |
8 | 1089 | send_client_hello | call site: 00000 | /src/picotls/lib/picotls.c:2398 |
| 7 | 107 |
7 :
['ptls_decode16', 'ptls_decode_quicint', 'ptls_decode24', 'ptls_iovec_init', 'malloc', 'ptls__key_schedule_update_hash', 'client_do_handle_certificate'] |
7 | 107 | client_handle_compressed_certificate | call site: 00000 | /src/picotls/lib/picotls.c:3234 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
count_printf
[function]
[call site]
00001
feeder_init
[function]
[call site]
00002
feeder_next_byte
[function]
[call site]
00003
feeder_next_byte
[function]
[call site]
00004
feeder_next_byte
[function]
[call site]
00005
ptls_asn1_validation
[function]
[call site]
00006
ptls_asn1_validation_recursive
[function]
[call site]
00007
ptls_asn1_read_type
[function]
[call site]
00008
ptls_asn1_error_message
[function]
[call site]
00009
ptls_asn1_print_indent
[function]
[call site]
00010
ptls_asn1_print_type
[function]
[call site]
00011
ptls_asn1_print_indent
[function]
[call site]
00012
ptls_asn1_read_length
[function]
[call site]
00013
ptls_asn1_error_message
[function]
[call site]
00014
ptls_asn1_error_message
[function]
[call site]
00015
ptls_asn1_error_message
[function]
[call site]
00016
ptls_asn1_print_indent
[function]
[call site]
00017
ptls_asn1_validation_recursive
[function]
[call site]
00018
ptls_asn1_print_indent
[function]
[call site]
00019
ptls_asn1_dump_content
[function]
[call site]
00020
feeder_next_byte
[function]
[call site]
00021
feeder_next_byte
[function]
[call site]
00022
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00023
ptls_asn1_error_message
[function]
[call site]
00024
ptls_asn1_read_length
[function]
[call site]
00025
ptls_asn1_error_message
[function]
[call site]
00026
mkstemp
[call site]
00027
write
[call site]
00028
ptls_minicrypto_random_bytes
[function]
[call site]
00029
cf_hash_drbg_sha256_needs_reseed
[function]
[call site]
00030
read_entropy
[function]
[call site]
00031
open
[call site]
00032
open
[call site]
00033
perror
[call site]
00034
abort
[call site]
00035
read
[call site]
00036
perror
[call site]
00037
abort
[call site]
00038
close
[call site]
00039
cf_hash_drbg_sha256_init
[function]
[call site]
00040
mem_clean
[function]
[call site]
00041
hash_df
[function]
[call site]
00042
write32_be
[function]
[call site]
00043
hash_df
[function]
[call site]
00044
cf_hash_drbg_sha256_gen
[function]
[call site]
00045
cf_hash_drbg_sha256_gen_additional
[function]
[call site]
00046
hash_gen_request
[function]
[call site]
00047
cf_hash_drbg_sha256_needs_reseed
[function]
[call site]
00048
abort
[call site]
00049
hash_process_addnl
[function]
[call site]
00050
add
[function]
[call site]
00051
hash_generate
[function]
[call site]
00052
add
[function]
[call site]
00053
hash_step
[function]
[call site]
00054
write32_be
[function]
[call site]
00055
add
[function]
[call site]
00056
add
[function]
[call site]
00057
add
[function]
[call site]
00058
ptls_load_certificates
[function]
[call site]
00059
ptls_load_pem_objects
[function]
[call site]
00060
fopen
[call site]
00061
ptls_buffer_init
[function]
[call site]
00062
__assert_fail
[call site]
00063
ptls_get_pem_object
[function]
[call site]
00064
fgets
[call site]
00065
ptls_compare_separator_line
[function]
[call site]
00066
strncmp
[call site]
00067
strlen
[call site]
00068
strncmp
[call site]
00069
strlen
[call site]
00070
strncmp
[call site]
00071
strncmp
[call site]
00072
ptls_base64_decode_init
[function]
[call site]
00073
fgets
[call site]
00074
ptls_compare_separator_line
[function]
[call site]
00075
ptls_base64_decode
[function]
[call site]
00076
ptls_buffer__do_pushv
[function]
[call site]
00077
ptls_buffer_reserve
[function]
[call site]
00078
ptls_buffer_reserve_aligned
[function]
[call site]
00079
posix_memalign
[call site]
00080
ptls_buffer__release_memory
[function]
[call site]
00081
ptls_buffer_dispose
[function]
[call site]
00082
ptls_buffer__release_memory
[function]
[call site]
00083
ptls_buffer_dispose
[function]
[call site]
00084
fclose
[call site]
00085
ptls_minicrypto_load_private_key
[function]
[call site]
00086
ptls_pem_parse_private_key
[function]
[call site]
00087
ptls_load_pem_objects
[function]
[call site]
00088
ptls_minicrypto_asn1_decode_private_key
[function]
[call site]
00089
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00090
ptls_asn1_error_message
[function]
[call site]
00091
ptls_asn1_error_message
[function]
[call site]
00092
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00093
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00094
ptls_asn1_dump_content
[function]
[call site]
00095
ptls_asn1_error_message
[function]
[call site]
00096
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00097
ptls_asn1_validation_recursive
[function]
[call site]
00098
ptls_asn1_error_message
[function]
[call site]
00099
memcmp
[call site]
00100
ptls_set_ecdsa_private_key
[function]
[call site]
00101
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00102
ptls_asn1_error_message
[function]
[call site]
00103
ptls_asn1_dump_content
[function]
[call site]
00104
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00105
ptls_asn1_error_message
[function]
[call site]
00106
ptls_asn1_error_message
[function]
[call site]
00107
ptls_asn1_error_message
[function]
[call site]
00108
ptls_asn1_get_expected_type_and_length
[function]
[call site]
00109
memcmp
[call site]
00110
ptls_iovec_init
[function]
[call site]
00111
ptls_minicrypto_init_secp256r1sha256_sign_certificate
[function]
[call site]
00112
secp256r1sha256_sign
[function]
[call site]
00113
cf_sha256_init
[function]
[call site]
00114
cf_sha256_update
[function]
[call site]
00115
cf_blockwise_accumulate
[function]
[call site]
00116
cf_blockwise_accumulate_final
[function]
[call site]
00117
abort
[call site]
00118
abort
[call site]
00119
abort
[call site]
00120
abort
[call site]
00121
abort
[call site]
00122
sha256_update_block
[function]
[call site]
00123
read32_be
[function]
[call site]
00124
rotr32
[function]
[call site]
00125
rotr32
[function]
[call site]
00126
rotr32
[function]
[call site]
00127
rotr32
[function]
[call site]
00128
cf_sha256_digest_final
[function]
[call site]
00129
cf_blockwise_acc_pad
[function]
[call site]
00130
cf_blockwise_accumulate
[function]
[call site]
00131
cf_blockwise_accumulate
[function]
[call site]
00132
cf_blockwise_accumulate
[function]
[call site]
00133
cf_blockwise_accumulate
[function]
[call site]
00134
cf_blockwise_acc_byte
[function]
[call site]
00135
cf_blockwise_accumulate
[function]
[call site]
00136
cf_blockwise_acc_byte
[function]
[call site]
00137
sha256_update_block
[function]
[call site]
00138
write64_be
[function]
[call site]
00139
cf_sha256_update
[function]
[call site]
00140
abort
[call site]
00141
write32_be
[function]
[call site]
00142
write32_be
[function]
[call site]
00143
write32_be
[function]
[call site]
00144
write32_be
[function]
[call site]
00145
write32_be
[function]
[call site]
00146
write32_be
[function]
[call site]
00147
write32_be
[function]
[call site]
00148
write32_be
[function]
[call site]
00149
uECC_secp256r1
[function]
[call site]
00150
uECC_sign
[function]
[call site]
00151
uECC_generate_random_int
[function]
[call site]
00152
uECC_vli_numBits
[function]
[call site]
00153
vli_numDigits
[function]
[call site]
00154
uECC_vli_isZero
[function]
[call site]
00155
uECC_vli_cmp
[function]
[call site]
00156
uECC_vli_sub
[function]
[call site]
00157
uECC_vli_isZero
[function]
[call site]
00158
uECC_sign_with_k_internal
[function]
[call site]
00159
uECC_vli_isZero
[function]
[call site]
00160
regularize_k
[function]
[call site]
00161
uECC_vli_add
[function]
[call site]
00162
uECC_vli_testBit
[function]
[call site]
00163
uECC_vli_add
[function]
[call site]
00164
uECC_generate_random_int
[function]
[call site]
00165
EccPoint_mult
[function]
[call site]
00166
uECC_vli_set
[function]
[call site]
00167
uECC_vli_set
[function]
[call site]
00168
XYcZ_initial_double
[function]
[call site]
00169
uECC_vli_set
[function]
[call site]
00170
uECC_vli_clear
[function]
[call site]
00171
uECC_vli_set
[function]
[call site]
00172
uECC_vli_set
[function]
[call site]
00173
apply_z
[function]
[call site]
00174
uECC_vli_modSquare_fast
[function]
[call site]
00175
uECC_vli_modMult_fast
[function]
[call site]
00176
uECC_vli_mult
[function]
[call site]
00177
muladd
[function]
[call site]
00178
muladd
[function]
[call site]
00179
uECC_vli_modMult_fast
[function]
[call site]
00180
uECC_vli_modMult_fast
[function]
[call site]
00181
uECC_vli_modMult_fast
[function]
[call site]
00182
apply_z
[function]
[call site]
00183
uECC_vli_testBit
[function]
[call site]
00184
XYcZ_addC
[function]
[call site]
00185
uECC_vli_modSub
[function]
[call site]
00186
uECC_vli_sub
[function]
[call site]
00187
uECC_vli_add
[function]
[call site]
00188
uECC_vli_modSquare_fast
[function]
[call site]
00189
uECC_vli_modMult_fast
[function]
[call site]
00190
uECC_vli_modMult_fast
[function]
[call site]
00191
uECC_vli_modAdd
[function]
[call site]
00192
uECC_vli_add
[function]
[call site]
00193
uECC_vli_cmp_unsafe
[function]
[call site]
00194
uECC_vli_sub
[function]
[call site]
00195
uECC_vli_modSub
[function]
[call site]
00196
uECC_vli_modSub
[function]
[call site]
00197
uECC_vli_modMult_fast
[function]
[call site]
00198
uECC_vli_modAdd
[function]
[call site]
00199
uECC_vli_modSquare_fast
[function]
[call site]
00200
uECC_vli_modSub
[function]
[call site]
00201
uECC_vli_modSub
[function]
[call site]
00202
uECC_vli_modMult_fast
[function]
[call site]
00203
uECC_vli_modSub
[function]
[call site]
00204
uECC_vli_modSquare_fast
[function]
[call site]
00205
uECC_vli_modSub
[function]
[call site]
00206
uECC_vli_modSub
[function]
[call site]
00207
uECC_vli_modMult_fast
[function]
[call site]
00208
uECC_vli_modSub
[function]
[call site]
00209
uECC_vli_set
[function]
[call site]
00210
XYcZ_add
[function]
[call site]
00211
uECC_vli_modSub
[function]
[call site]
00212
uECC_vli_modSquare_fast
[function]
[call site]
00213
uECC_vli_modMult_fast
[function]
[call site]
00214
uECC_vli_modMult_fast
[function]
[call site]
00215
uECC_vli_modSub
[function]
[call site]
00216
uECC_vli_modSquare_fast
[function]
[call site]
00217
uECC_vli_modSub
[function]
[call site]
00218
uECC_vli_modSub
[function]
[call site]
00219
uECC_vli_modSub
[function]
[call site]
00220
uECC_vli_modMult_fast
[function]
[call site]
00221
uECC_vli_modSub
[function]
[call site]
00222
uECC_vli_modMult_fast
[function]
[call site]
00223
uECC_vli_modSub
[function]
[call site]
00224
uECC_vli_set
[function]
[call site]
00225
uECC_vli_testBit
[function]
[call site]
00226
XYcZ_addC
[function]
[call site]
00227
uECC_vli_modSub
[function]
[call site]
00228
uECC_vli_modMult_fast
[function]
[call site]
00229
uECC_vli_modMult_fast
[function]
[call site]
00230
uECC_vli_modInv
[function]
[call site]
00231
uECC_vli_isZero
[function]
[call site]
00232
uECC_vli_clear
[function]
[call site]
00233
uECC_vli_set
[function]
[call site]
00234
uECC_vli_set
[function]
[call site]
00235
uECC_vli_clear
[function]
[call site]
00236
uECC_vli_clear
[function]
[call site]
00237
uECC_vli_cmp_unsafe
[function]
[call site]
00238
uECC_vli_rshift1
[function]
[call site]
00239
vli_modInv_update
[function]
[call site]
00240
uECC_vli_add
[function]
[call site]
00241
uECC_vli_rshift1
[function]
[call site]
00242
uECC_vli_rshift1
[function]
[call site]
00243
vli_modInv_update
[function]
[call site]
00244
uECC_vli_sub
[function]
[call site]
00245
uECC_vli_rshift1
[function]
[call site]
00246
uECC_vli_cmp_unsafe
[function]
[call site]
00247
uECC_vli_add
[function]
[call site]
00248
uECC_vli_sub
[function]
[call site]
00249
vli_modInv_update
[function]
[call site]
00250
uECC_vli_sub
[function]
[call site]
00251
uECC_vli_rshift1
[function]
[call site]
00252
uECC_vli_cmp_unsafe
[function]
[call site]
00253
uECC_vli_add
[function]
[call site]
00254
uECC_vli_sub
[function]
[call site]
00255
vli_modInv_update
[function]
[call site]
00256
uECC_vli_set
[function]
[call site]
00257
uECC_vli_modMult_fast
[function]
[call site]
00258
uECC_vli_modMult_fast
[function]
[call site]
00259
XYcZ_add
[function]
[call site]
00260
apply_z
[function]
[call site]
00261
uECC_vli_set
[function]
[call site]
00262
uECC_vli_set
[function]
[call site]
00263
uECC_vli_isZero
[function]
[call site]
00264
uECC_vli_clear
[function]
[call site]
00265
uECC_generate_random_int
[function]
[call site]
00266
uECC_vli_modMult
[function]
[call site]
00267
uECC_vli_mult
[function]
[call site]
00268
uECC_vli_mmod
[function]
[call site]
00269
uECC_vli_numBits
[function]
[call site]
00270
uECC_vli_clear
[function]
[call site]
00271
uECC_vli_set
[function]
[call site]
00272
uECC_vli_rshift1
[function]
[call site]
00273
uECC_vli_rshift1
[function]
[call site]
00274
uECC_vli_set
[function]
[call site]
00275
uECC_vli_modInv
[function]
[call site]
00276
uECC_vli_modMult
[function]
[call site]
00277
uECC_vli_nativeToBytes
[function]
[call site]
00278
uECC_vli_bytesToNative
[function]
[call site]
00279
uECC_vli_clear
[function]
[call site]
00280
uECC_vli_set
[function]
[call site]
00281
uECC_vli_modMult
[function]
[call site]
00282
bits2int
[function]
[call site]
00283
uECC_vli_clear
[function]
[call site]
00284
uECC_vli_bytesToNative
[function]
[call site]
00285
uECC_vli_cmp_unsafe
[function]
[call site]
00286
uECC_vli_sub
[function]
[call site]
00287
uECC_vli_modAdd
[function]
[call site]
00288
uECC_vli_modMult
[function]
[call site]
00289
uECC_vli_numBits
[function]
[call site]
00290
uECC_vli_nativeToBytes
[function]
[call site]
00291
ptls_buffer__do_pushv
[function]
[call site]
00292
unlink
[call site]
00293