The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 14 | 14 |
2 :
['mhd_panic', 'pthread_mutex_unlock'] |
14 | 14 | MHD_response_add_header | call site: 00031 | /src/mhd2/src/mhd2/response_add_header.c:150 |
| 12 | 12 |
1 :
['mhd_panic'] |
55 | 93 | MHD_response_destroy | call site: 00141 | /src/mhd2/src/mhd2/response_destroy.c:109 |
| 2 | 2 |
1 :
['pthread_mutex_lock'] |
16 | 35 | MHD_response_add_header | call site: 00029 | /src/mhd2/src/mhd2/response_add_header.c:136 |
| 0 | 5 |
1 :
['mhd_response_remove_auth_digest_headers'] |
0 | 5 | response_add_auth_digest_challenge_int | call site: 00120 | /src/mhd2/src/mhd2/response_auth_digest.c:471 |
| 0 | 0 | None | 43 | 43 | MHD_response_destroy | call site: 00142 | /src/mhd2/src/mhd2/response_destroy.c:112 |
| 0 | 0 | None | 28 | 36 | MHD_response_set_options | call site: 00057 | /src/mhd2/src/mhd2/response_set_options.c:38 |
| 0 | 0 | None | 14 | 78 | MHD_response_add_auth_digest_challenge | call site: 00103 | /src/mhd2/src/mhd2/response_auth_digest.c:511 |
| 0 | 0 | None | 14 | 41 | MHD_response_add_auth_basic_challenge | call site: 00090 | /src/mhd2/src/mhd2/response_auth_basic.c:161 |
| 0 | 0 | None | 14 | 22 | MHD_response_set_options | call site: 00059 | /src/mhd2/src/mhd2/response_set_options.c:59 |
| 0 | 0 | None | 14 | 14 | MHD_response_add_auth_basic_challenge | call site: 00090 | /src/mhd2/src/mhd2/response_auth_basic.c:168 |
| 0 | 0 | None | 14 | 14 | MHD_response_add_auth_basic_challenge | call site: 00090 | /src/mhd2/src/mhd2/response_auth_basic.c:170 |
| 0 | 0 | None | 14 | 14 | MHD_response_add_auth_digest_challenge | call site: 00103 | /src/mhd2/src/mhd2/response_auth_digest.c:518 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
pick_status_code(FuzzedDataProvider&)
[function]
[call site]
00001
create_response(FuzzedDataProvider&, MHD_HTTP_StatusCode)
[function]
[call site]
00002
MHD_response_from_buffer
[function]
[call site]
00003
response_create_basic
[function]
[call site]
00004
calloc
[call site]
00005
calloc
[call site]
00006
MHD_response_from_buffer
[function]
[call site]
00007
MHD_response_from_buffer_copy
[function]
[call site]
00008
response_create_basic
[function]
[call site]
00009
response_cntn_free_buf
[function]
[call site]
00010
response_create_basic
[function]
[call site]
00011
MHD_response_from_iovec
[function]
[call site]
00012
response_create_basic
[function]
[call site]
00013
calloc
[call site]
00014
response_create_basic
[function]
[call site]
00015
mkstemp
[call site]
00016
unlink
[call site]
00017
write
[call site]
00018
MHD_response_from_fd
[function]
[call site]
00019
response_create_basic
[function]
[call site]
00020
close
[call site]
00021
pipe
[call site]
00022
write
[call site]
00023
close
[call site]
00024
MHD_response_from_pipe
[function]
[call site]
00025
response_create_basic
[function]
[call site]
00026
close
[call site]
00027
add_headers(FuzzedDataProvider&, MHD_Response*)
[function]
[call site]
00028
MHD_response_add_header
[function]
[call site]
00029
pthread_mutex_lock
[call site]
00030
response_add_header_int
[function]
[call site]
00031
strlen
[call site]
00032
strlen
[call site]
00033
memchr
[call site]
00034
memchr
[call site]
00035
memchr
[call site]
00036
memchr
[call site]
00037
memchr
[call site]
00038
memchr
[call site]
00039
memchr
[call site]
00040
response_add_header_no_check
[function]
[call site]
00041
pthread_mutex_unlock
[call site]
00042
mhd_panic
[function]
[call site]
00043
fprintf
[call site]
00044
fprintf
[call site]
00045
fprintf
[call site]
00046
abort
[call site]
00047
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00048
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00049
MHD_response_add_header
[function]
[call site]
00050
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00051
MHD_response_add_predef_header
[function]
[call site]
00052
randomise_response_options(FuzzedDataProvider&, MHD_Response*)
[function]
[call site]
00053
ToMhdBool(bool)
[function]
[call site]
00054
MHD_R_OPTION_REUSABLE(MHD_Bool)
[function]
[call site]
00055
MHD_response_set_options
[function]
[call site]
00056
pthread_mutex_lock
[call site]
00057
pthread_mutex_unlock
[call site]
00058
mhd_panic
[function]
[call site]
00059
response_make_reusable
[function]
[call site]
00060
pthread_mutex_init
[call site]
00061
pthread_mutex_destroy
[call site]
00062
pthread_mutex_unlock
[call site]
00063
mhd_panic
[function]
[call site]
00064
ToMhdBool(bool)
[function]
[call site]
00065
MHD_R_OPTION_HEAD_ONLY_RESPONSE(MHD_Bool)
[function]
[call site]
00066
MHD_response_set_options
[function]
[call site]
00067
ToMhdBool(bool)
[function]
[call site]
00068
MHD_R_OPTION_CHUNKED_ENC(MHD_Bool)
[function]
[call site]
00069
MHD_response_set_options
[function]
[call site]
00070
ToMhdBool(bool)
[function]
[call site]
00071
MHD_R_OPTION_CONN_CLOSE(MHD_Bool)
[function]
[call site]
00072
MHD_response_set_options
[function]
[call site]
00073
ToMhdBool(bool)
[function]
[call site]
00074
MHD_R_OPTION_HTTP_1_0_SERVER(MHD_Bool)
[function]
[call site]
00075
MHD_response_set_options
[function]
[call site]
00076
ToMhdBool(bool)
[function]
[call site]
00077
MHD_R_OPTION_HTTP_1_0_COMPATIBLE_STRICT(MHD_Bool)
[function]
[call site]
00078
MHD_response_set_options
[function]
[call site]
00079
ToMhdBool(bool)
[function]
[call site]
00080
MHD_R_OPTION_INSANITY_HEADER_CONTENT_LENGTH(MHD_Bool)
[function]
[call site]
00081
MHD_response_set_options
[function]
[call site]
00082
MHD_R_OPTION_TERMINATION_CALLBACK(void (*)(void*, MHD_RequestEndedData const*, void*), void*)
[function]
[call site]
00083
request_ended_cb(void*, MHD_RequestEndedData const*, void*)
[function]
[call site]
00084
MHD_response_set_options
[function]
[call site]
00085
add_auth(FuzzedDataProvider&, MHD_Response*, MHD_HTTP_StatusCode)
[function]
[call site]
00086
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00087
ToMhdBool(bool)
[function]
[call site]
00088
MHD_response_add_auth_basic_challenge
[function]
[call site]
00089
pthread_mutex_lock
[call site]
00090
response_add_auth_basic_challenge_int
[function]
[call site]
00091
strlen
[call site]
00092
memchr
[call site]
00093
memchr
[call site]
00094
mhd_str_quote
[function]
[call site]
00095
realloc
[call site]
00096
pthread_mutex_unlock
[call site]
00097
mhd_panic
[function]
[call site]
00098
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00099
ToMhdBool(bool)
[function]
[call site]
00100
ToMhdBool(bool)
[function]
[call site]
00101
MHD_response_add_auth_digest_challenge
[function]
[call site]
00102
pthread_mutex_lock
[call site]
00103
response_add_auth_digest_challenge_int
[function]
[call site]
00104
strlen
[call site]
00105
strlen
[call site]
00106
strlen
[call site]
00107
memchr
[call site]
00108
memchr
[call site]
00109
memchr
[call site]
00110
memchr
[call site]
00111
memchr
[call site]
00112
memchr
[call site]
00113
memchr
[call site]
00114
response_add_auth_digest_challenge_alg
[function]
[call site]
00115
mhd_str_quote
[function]
[call site]
00116
mhd_str_quote
[function]
[call site]
00117
realloc
[call site]
00118
response_add_auth_digest_challenge_alg
[function]
[call site]
00119
response_add_auth_digest_challenge_alg
[function]
[call site]
00120
mhd_response_remove_auth_digest_headers
[function]
[call site]
00121
pthread_mutex_unlock
[call site]
00122
mhd_panic
[function]
[call site]
00123
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00124
ToMhdBool(bool)
[function]
[call site]
00125
ToMhdBool(bool)
[function]
[call site]
00126
ToMhdBool(bool)
[function]
[call site]
00127
MHD_response_add_auth_digest_challenge
[function]
[call site]
00128
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00129
ToMhdBool(bool)
[function]
[call site]
00130
MHD_response_add_auth_basic_challenge
[function]
[call site]
00131
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00132
ToMhdBool(bool)
[function]
[call site]
00133
MHD_response_add_auth_basic_challenge
[function]
[call site]
00134
safe_ascii(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, bool)
[function]
[call site]
00135
ToMhdBool(bool)
[function]
[call site]
00136
ToMhdBool(bool)
[function]
[call site]
00137
MHD_response_add_auth_digest_challenge
[function]
[call site]
00138
MHD_HTTP_status_code_to_string
[function]
[call site]
00139
MHD_status_code_to_string
[call site]
00140
MHD_response_destroy
[function]
[call site]
00141
mhd_panic
[function]
[call site]
00142
response_full_deinit
[function]
[call site]
00143
mhd_response_remove_auth_digest_headers
[function]
[call site]
00144
mhd_response_remove_all_headers
[function]
[call site]
00145
mhd_response_deinit_reusable
[function]
[call site]
00146
pthread_mutex_destroy
[call site]
00147
mhd_panic
[function]
[call site]
00148
mhd_response_deinit_content_data
[function]
[call site]
00149
close
[call site]
00150
mhd_response_dec_use_count
[function]
[call site]
00151
mhd_panic
[function]
[call site]
00152
response_full_deinit
[function]
[call site]
00153