Fuzz introspector: jplist_fuzzer
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The following nodes represent call sites where fuzz blockers occur.

Amount of callsites blocked Calltree index Parent function Callsite Largest blocked function
4 54 plist_new_int call site: 00054 plist_new_uint
3 36 node_attach call site: 00036 node_destroy
3 97 plist_new_array call site: 00097 plist_free
3 125 plist_new_dict call site: 00125 plist_free
3 138 plist_get_node_type call site: 00138 fprintf
3 158 plist_dict_set_item call site: 00158 fprintf
2 199 plist_new_key call site: 00199 plist_free_data
2 204 plist_dict_set_item call site: 00204 plist_free_node
1 3 plist_from_json call site: 00003 fprintf
1 12 jsmn_parse_primitive call site: 00012 fprintf
1 15 plist_from_json call site: 00015 fprintf
1 17 plist_from_json call site: 00017 fprintf

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 plist_from_json [function] [call site] 00001
2 jsmn_init [function] [call site] 00002
2 realloc [call site] 00003
2 fprintf [call site] 00004
2 jsmn_parse [function] [call site] 00005
3 jsmn_alloc_token [function] [call site] 00006
3 jsmn_parse_string [function] [call site] 00007
4 jsmn_alloc_token [function] [call site] 00008
4 jsmn_fill_token [function] [call site] 00009
3 jsmn_parse_primitive [function] [call site] 00010
4 jsmn_alloc_token [function] [call site] 00011
4 jsmn_fill_token [function] [call site] 00012
2 fprintf [call site] 00013
2 fprintf [call site] 00014
2 fprintf [call site] 00015
2 fprintf [call site] 00016
2 parse_primitive [function] [call site] 00017
3 fprintf [call site] 00018
3 strncmp [call site] 00019
3 plist_new_bool [function] [call site] 00020
4 plist_new_plist_data [function] [call site] 00021
5 calloc [call site] 00022
4 fprintf [call site] 00023
4 plist_new_node [function] [call site] 00024
5 node_create [function] [call site] 00025
6 calloc [call site] 00026
6 node_attach [function] [call site] 00027
7 would_create_cycle [function] [call site] 00028
7 node_depth_from_root [function] [call site] 00029
7 node_subtree_max_depth [function] [call site] 00030
8 node_first_child [function] [call site] 00031
8 realloc [call site] 00032
8 node_next_sibling [function] [call site] 00033
7 node_list_create [function] [call site] 00034
8 calloc [call site] 00035
7 node_list_add [function] [call site] 00036
6 node_destroy [function] [call site] 00037
7 node_list_remove [function] [call site] 00038
7 node_destroy [function] [call site] 00039
8 node_list_destroy [function] [call site] 00040
3 strncmp [call site] 00041
3 plist_new_bool [function] [call site] 00042
3 strncmp [call site] 00043
3 plist_new_plist_data [function] [call site] 00044
3 fprintf [call site] 00045
3 plist_new_node [function] [call site] 00046
3 __ctype_b_loc [call site] 00047
3 parse_decimal [function] [call site] 00048
4 __ctype_b_loc [call site] 00049
4 __ctype_b_loc [call site] 00050
3 plist_new_int [function] [call site] 00051
4 plist_new_plist_data [function] [call site] 00052
4 fprintf [call site] 00053
4 plist_new_node [function] [call site] 00054
3 plist_new_uint [function] [call site] 00055
4 plist_new_plist_data [function] [call site] 00056
4 fprintf [call site] 00057
4 plist_new_node [function] [call site] 00058
3 __ctype_b_loc [call site] 00059
3 __ctype_b_loc [call site] 00060
3 __ctype_b_loc [call site] 00061
3 parse_decimal [function] [call site] 00062
3 pow [call site] 00063
3 fprintf [call site] 00064
3 fprintf [call site] 00065
3 plist_new_real [function] [call site] 00066
4 plist_new_plist_data [function] [call site] 00067
4 fprintf [call site] 00068
4 plist_new_node [function] [call site] 00069
3 fprintf [call site] 00070
3 fprintf [call site] 00071
3 fprintf [call site] 00072
2 parse_string [function] [call site] 00073
3 fprintf [call site] 00074
3 unescape_string [function] [call site] 00075
4 strndup [call site] 00076
4 fprintf [call site] 00077
4 __ctype_b_loc [call site] 00078
4 __isoc99_sscanf [call site] 00079
4 fprintf [call site] 00080
4 fprintf [call site] 00081
3 plist_new_plist_data [function] [call site] 00082
3 fprintf [call site] 00083
3 plist_new_node [function] [call site] 00084
3 plist_free_data [function] [call site] 00085
4 _plist_free_data [function] [call site] 00086
5 ptr_array_free [function] [call site] 00087
5 __assert_fail [call site] 00088
5 hash_table_destroy [function] [call site] 00089
3 fprintf [call site] 00090
2 parse_array [function] [call site] 00091
3 fprintf [call site] 00092
3 fprintf [call site] 00093
3 plist_new_array [function] [call site] 00094
4 plist_new_plist_data [function] [call site] 00095
4 fprintf [call site] 00096
4 plist_new_node [function] [call site] 00097
3 fprintf [call site] 00098
3 fprintf [call site] 00099
3 plist_free [function] [call site] 00100
4 plist_free_node [function] [call site] 00101
5 node_detach [function] [call site] 00102
6 node_list_remove [function] [call site] 00103
5 plist_free_children [function] [call site] 00104
6 node_first_child [function] [call site] 00105
6 node_first_child [function] [call site] 00106
6 node_detach [function] [call site] 00107
6 realloc [call site] 00108
6 node_first_child [function] [call site] 00109
6 node_detach [function] [call site] 00110
6 realloc [call site] 00111
6 plist_get_data [function] [call site] 00112
6 plist_free_data [function] [call site] 00113
6 node_destroy [function] [call site] 00114
5 plist_get_data [function] [call site] 00115
5 plist_free_data [function] [call site] 00116
5 node_destroy [function] [call site] 00117
3 parse_object [function] [call site] 00118
4 fprintf [call site] 00119
4 fprintf [call site] 00120
4 fprintf [call site] 00121
4 plist_new_dict [function] [call site] 00122
5 plist_new_plist_data [function] [call site] 00123
5 fprintf [call site] 00124
5 plist_new_node [function] [call site] 00125
4 fprintf [call site] 00126
4 fprintf [call site] 00127
4 plist_free [function] [call site] 00128
4 unescape_string [function] [call site] 00129
4 plist_free [function] [call site] 00130
4 parse_object [function] [call site] 00131
5 parse_array [function] [call site] 00132
6 parse_array [function] [call site] 00133
7 parse_string [function] [call site] 00134
7 parse_primitive [function] [call site] 00135
7 plist_array_append_item [function] [call site] 00136
8 plist_get_node_type [function] [call site] 00137
9 plist_get_data [function] [call site] 00138
8 fprintf [call site] 00139
8 __assert_fail [call site] 00140
8 fprintf [call site] 00141
8 node_attach [function] [call site] 00142
8 fprintf [call site] 00143
8 _plist_array_post_insert [function] [call site] 00144
9 ptr_array_insert [function] [call site] 00145
10 realloc [call site] 00146
9 ptr_array_new [function] [call site] 00147
9 node_first_child [function] [call site] 00148
9 ptr_array_add [function] [call site] 00149
10 ptr_array_insert [function] [call site] 00150
9 node_next_sibling [function] [call site] 00151
7 plist_free [function] [call site] 00152
7 plist_free [function] [call site] 00153
7 plist_free [function] [call site] 00154
5 parse_string [function] [call site] 00155
5 parse_primitive [function] [call site] 00156
5 plist_dict_set_item [function] [call site] 00157
6 plist_get_node_type [function] [call site] 00158
6 fprintf [call site] 00159
6 __assert_fail [call site] 00160
6 fprintf [call site] 00161
6 plist_dict_get_item [function] [call site] 00162
7 plist_get_node_type [function] [call site] 00163
7 fprintf [call site] 00164
7 plist_get_data [function] [call site] 00165
7 fprintf [call site] 00166
7 strlen [call site] 00167
7 hash_table_lookup [function] [call site] 00168
7 node_first_child [function] [call site] 00169
7 node_next_sibling [function] [call site] 00170
7 plist_get_data [function] [call site] 00171
7 plist_get_node_type [function] [call site] 00172
7 __assert_fail [call site] 00173
7 plist_get_node_type [function] [call site] 00174
7 fprintf [call site] 00175
7 memcmp [call site] 00176
7 node_next_sibling [function] [call site] 00177
6 node_prev_sibling [function] [call site] 00178
6 fprintf [call site] 00179
6 plist_get_node_type [function] [call site] 00180
6 fprintf [call site] 00181
6 node_detach [function] [call site] 00182
6 fprintf [call site] 00183
6 node_insert [function] [call site] 00184
7 would_create_cycle [function] [call site] 00185
7 node_depth_from_root [function] [call site] 00186
7 node_subtree_max_depth [function] [call site] 00187
7 node_list_create [function] [call site] 00188
7 node_list_insert [function] [call site] 00189
8 node_list_add [function] [call site] 00190
6 node_insert [function] [call site] 00191
6 hash_table_insert [function] [call site] 00192
6 fprintf [call site] 00193
6 hash_table_insert [function] [call site] 00194
6 plist_free_node [function] [call site] 00195
6 plist_new_key [function] [call site] 00196
7 plist_new_plist_data [function] [call site] 00197
7 fprintf [call site] 00198
7 strdup [call site] 00199
7 plist_free_data [function] [call site] 00200
7 fprintf [call site] 00201
7 strlen [call site] 00202
7 plist_new_node [function] [call site] 00203
6 node_attach [function] [call site] 00204
6 plist_free_node [function] [call site] 00205
6 fprintf [call site] 00206
6 node_attach [function] [call site] 00207
6 node_detach [function] [call site] 00208
6 plist_free_node [function] [call site] 00209
6 fprintf [call site] 00210
6 hash_table_insert [function] [call site] 00211
6 hash_table_new [function] [call site] 00212
6 dict_key_hash [function] [call site] 00213
6 dict_key_compare [function] [call site] 00214
7 strcmp [call site] 00215
6 node_first_child [function] [call site] 00216
6 node_next_sibling [function] [call site] 00217
6 hash_table_insert [function] [call site] 00218
6 node_next_sibling [function] [call site] 00219
5 plist_free [function] [call site] 00220
5 plist_free [function] [call site] 00221
5 plist_free [function] [call site] 00222
5 fprintf [call site] 00223
5 plist_free [function] [call site] 00224
2 parse_object [function] [call site] 00225
1 plist_free [function] [call site] 00226