The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 3678 | 3707 |
4 :
['chip::app::reporting::Engine::ScheduleBufferPressureEventDelivery(unsigned int)', 'chip::Logging::IsCategoryEnabled(unsigned char)', 'chip::Logging::Log(unsigned char, unsigned char, char const*, ...)', 'chip::Loop chip::HeapObjectPool
|
3678 | 3709 | chip::app::reporting::Engine::ScheduleEventDelivery(chip::app::ConcreteEventPath&,unsignedint) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/app/reporting/Engine.cpp:1137 |
| 1979 | 1979 |
5 :
['unsigned char* std::__1::copy[abi:nn180100]
|
2035 | 5561 | chip::CASESession::HandleSigma1(chip::System::PacketBufferHandle&&) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/protocols/secure_channel/CASESession.cpp:1003 |
| 1951 | 1985 |
11 :
['chip::CASESession::GetState()', 'chip::ChipError::Format() const', 'chip::PairingSession::GetRemoteMRPConfig() const', 'bool std::__1::chrono::operator<[abi:nn180100]
|
1951 | 2202 | chip::CASEServer::OnMessageReceived(chip::Messaging::ExchangeContext*,chip::PayloadHeaderconst&,chip::System::PacketBufferHandle&&) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/protocols/secure_channel/CASEServer.cpp:86 |
| 1718 | 1718 |
2 :
['chip::Messaging::ExchangeContext::SetResponseExpected(bool)', 'chip::Messaging::ExchangeContext::CancelResponseTimer()'] |
1800 | 1952 |
chip::Messaging::ExchangeContext::SendMessage(chip::Protocols::Id,unsignedchar,chip::System::PacketBufferHandle&&,chip::BitFlags
|
call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/messaging/ExchangeContext.cpp:182 |
| 1718 | 1718 |
2 :
['chip::Messaging::ExchangeContext::SetResponseExpected(bool)', 'chip::Messaging::ExchangeContext::CancelResponseTimer()'] |
1760 | 3543 |
chip::Messaging::ExchangeContext::HandleMessage(unsignedint,chip::PayloadHeaderconst&,chip::BitFlags
|
call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/messaging/ExchangeContext.cpp:605 |
| 1706 | 1708 |
2 :
['chip::Messaging::ExchangeManager::GetReliableMessageMgr()', 'chip::Messaging::ReliableMessageMgr::ClearRetransTable(chip::Messaging::ReliableMessageContext*)'] |
3413 | 3419 | chip::Messaging::ExchangeContext::DoClose(bool) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/messaging/ExchangeContext.cpp:241 |
| 1428 | 1451 |
4 :
['chip::FabricTable::ReadFabricInfo(chip::TLV::ContiguousBufferTLVReader&)', 'chip::TLV::ContiguousBufferTLVReader::Init(unsigned char const*, unsigned long)', 'chip::TLV::ContiguousBufferTLVReader::ContiguousBufferTLVReader()', 'chip::ChipError::IsSuccess(chip::ChipError)'] |
2047 | 2485 | chip::FabricTable::Init(chip::FabricTable::InitParamsconst&) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/credentials/FabricTable.cpp:1103 |
| 619 | 619 |
1 :
['chip::FabricTable::Delete(unsigned char)'] |
619 | 650 | chip::FabricTable::Init(chip::FabricTable::InitParamsconst&) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/credentials/FabricTable.cpp:1126 |
| 559 | 559 |
1 :
['chip::app::Clusters::TimeSynchronization::TimeSynchronizationServer::AttemptToGetTimeFromTrustedNode()'] |
4381 | 4385 | chip::app::Clusters::TimeSynchronization::TimeSynchronizationServer::AttemptToGetTime() | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/app/clusters/time-synchronization-server/time-synchronization-server.cpp:431 |
| 405 | 641 |
7 :
['chip::app::DataModel::Nullable
|
405 | 643 | OnOffServer::initOnOffServer(unsignedshort) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/app/clusters/on-off-server/on-off-server.cpp:531 |
| 402 | 402 |
1 :
['chip::app::Clusters::LevelControl::Attributes::CurrentLevel::SetNull(unsigned short, chip::app::MarkAttributeDirty)'] |
402 | 402 |
chip::app::Clusters::LevelControl::Attributes::CurrentLevel::Set(unsignedshort,chip::app::DataModel::Nullable
|
call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../zzz_generated/app-common/app-common/zap-generated/attributes/Accessors.cpp:824 |
| 318 | 318 |
1 :
['chip::Transport::SecureSessionTable::EvictAndAllocate(unsigned short, chip::Transport::SecureSession::Type, chip::ScopedNodeId const&)'] |
318 | 490 | chip::Transport::SecureSessionTable::CreateNewSecureSession(chip::Transport::SecureSession::Type,chip::ScopedNodeId) | call site: 00000 | /src/connectedhomeip/out/fuzz_targets/../../src/transport/SecureSessionTable.cpp:74 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
chip::base38Decode(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >, std::__1::vector<unsigned char, std::__1::allocator<unsigned char> >&)
[function]
[call site]
00001
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00002
(anonymous namespace)::decodeChar(char, unsigned char&)
[function]
[call site]
00003
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00004
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00005
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00006
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00007
chip::ChipError::operator!=(chip::ChipError const&) const
[function]
[call site]
00008
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00009
chip::ChipError::ChipError(unsigned int, char const*, unsigned int)
[function]
[call site]
00010