Fuzz introspector: jplist_fuzzer
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The following nodes represent call sites where fuzz blockers occur.

Amount of callsites blocked Calltree index Parent function Callsite Largest blocked function
3 36 node_attach call site: 00036 node_destroy
3 54 plist_new_int call site: 00054 plist_new_uint
3 96 plist_new_array call site: 00096 plist_free
3 124 plist_new_dict call site: 00124 plist_free
3 137 plist_get_node_type call site: 00137 fprintf
3 157 plist_dict_set_item call site: 00157 fprintf
2 198 plist_new_key call site: 00198 plist_free_data
2 203 plist_dict_set_item call site: 00203 plist_free_node
1 3 plist_from_json call site: 00003 fprintf
1 12 jsmn_parse_primitive call site: 00012 fprintf
1 15 plist_from_json call site: 00015 fprintf
1 17 plist_from_json call site: 00017 fprintf

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 plist_from_json [function] [call site] 00001
2 jsmn_init [function] [call site] 00002
2 realloc [call site] 00003
2 fprintf [call site] 00004
2 jsmn_parse [function] [call site] 00005
3 jsmn_alloc_token [function] [call site] 00006
3 jsmn_parse_string [function] [call site] 00007
4 jsmn_alloc_token [function] [call site] 00008
4 jsmn_fill_token [function] [call site] 00009
3 jsmn_parse_primitive [function] [call site] 00010
4 jsmn_alloc_token [function] [call site] 00011
4 jsmn_fill_token [function] [call site] 00012
2 fprintf [call site] 00013
2 fprintf [call site] 00014
2 fprintf [call site] 00015
2 fprintf [call site] 00016
2 parse_primitive [function] [call site] 00017
3 fprintf [call site] 00018
3 strncmp [call site] 00019
3 plist_new_bool [function] [call site] 00020
4 plist_new_plist_data [function] [call site] 00021
5 calloc [call site] 00022
4 fprintf [call site] 00023
4 plist_new_node [function] [call site] 00024
5 node_create [function] [call site] 00025
6 calloc [call site] 00026
6 node_attach [function] [call site] 00027
7 would_create_cycle [function] [call site] 00028
7 node_depth_from_root [function] [call site] 00029
7 node_subtree_max_depth [function] [call site] 00030
8 node_first_child [function] [call site] 00031
8 realloc [call site] 00032
8 node_next_sibling [function] [call site] 00033
7 node_list_create [function] [call site] 00034
8 calloc [call site] 00035
7 node_list_add [function] [call site] 00036
6 node_destroy [function] [call site] 00037
7 node_list_remove [function] [call site] 00038
7 node_destroy [function] [call site] 00039
8 node_list_destroy [function] [call site] 00040
3 strncmp [call site] 00041
3 plist_new_bool [function] [call site] 00042
3 strncmp [call site] 00043
3 plist_new_plist_data [function] [call site] 00044
3 fprintf [call site] 00045
3 plist_new_node [function] [call site] 00046
3 __ctype_b_loc [call site] 00047
3 parse_decimal [function] [call site] 00048
4 __ctype_b_loc [call site] 00049
4 __ctype_b_loc [call site] 00050
3 plist_new_int [function] [call site] 00051
4 plist_new_plist_data [function] [call site] 00052
4 fprintf [call site] 00053
4 plist_new_node [function] [call site] 00054
3 plist_new_uint [function] [call site] 00055
4 plist_new_plist_data [function] [call site] 00056
4 plist_new_node [function] [call site] 00057
3 __ctype_b_loc [call site] 00058
3 __ctype_b_loc [call site] 00059
3 __ctype_b_loc [call site] 00060
3 parse_decimal [function] [call site] 00061
3 pow [call site] 00062
3 fprintf [call site] 00063
3 fprintf [call site] 00064
3 plist_new_real [function] [call site] 00065
4 plist_new_plist_data [function] [call site] 00066
4 fprintf [call site] 00067
4 plist_new_node [function] [call site] 00068
3 fprintf [call site] 00069
3 fprintf [call site] 00070
3 fprintf [call site] 00071
2 parse_string [function] [call site] 00072
3 fprintf [call site] 00073
3 unescape_string [function] [call site] 00074
4 strndup [call site] 00075
4 fprintf [call site] 00076
4 __ctype_b_loc [call site] 00077
4 __isoc99_sscanf [call site] 00078
4 fprintf [call site] 00079
4 fprintf [call site] 00080
3 plist_new_plist_data [function] [call site] 00081
3 fprintf [call site] 00082
3 plist_new_node [function] [call site] 00083
3 plist_free_data [function] [call site] 00084
4 _plist_free_data [function] [call site] 00085
5 ptr_array_free [function] [call site] 00086
5 __assert_fail [call site] 00087
5 hash_table_destroy [function] [call site] 00088
3 fprintf [call site] 00089
2 parse_array [function] [call site] 00090
3 fprintf [call site] 00091
3 fprintf [call site] 00092
3 plist_new_array [function] [call site] 00093
4 plist_new_plist_data [function] [call site] 00094
4 fprintf [call site] 00095
4 plist_new_node [function] [call site] 00096
3 fprintf [call site] 00097
3 fprintf [call site] 00098
3 plist_free [function] [call site] 00099
4 plist_free_node [function] [call site] 00100
5 node_detach [function] [call site] 00101
6 node_list_remove [function] [call site] 00102
5 plist_free_children [function] [call site] 00103
6 node_first_child [function] [call site] 00104
6 node_first_child [function] [call site] 00105
6 node_detach [function] [call site] 00106
6 realloc [call site] 00107
6 node_first_child [function] [call site] 00108
6 node_detach [function] [call site] 00109
6 realloc [call site] 00110
6 plist_get_data [function] [call site] 00111
6 plist_free_data [function] [call site] 00112
6 node_destroy [function] [call site] 00113
5 plist_get_data [function] [call site] 00114
5 plist_free_data [function] [call site] 00115
5 node_destroy [function] [call site] 00116
3 parse_object [function] [call site] 00117
4 fprintf [call site] 00118
4 fprintf [call site] 00119
4 fprintf [call site] 00120
4 plist_new_dict [function] [call site] 00121
5 plist_new_plist_data [function] [call site] 00122
5 fprintf [call site] 00123
5 plist_new_node [function] [call site] 00124
4 fprintf [call site] 00125
4 fprintf [call site] 00126
4 plist_free [function] [call site] 00127
4 unescape_string [function] [call site] 00128
4 plist_free [function] [call site] 00129
4 parse_object [function] [call site] 00130
5 parse_array [function] [call site] 00131
6 parse_array [function] [call site] 00132
7 parse_string [function] [call site] 00133
7 parse_primitive [function] [call site] 00134
7 plist_array_append_item [function] [call site] 00135
8 plist_get_node_type [function] [call site] 00136
9 plist_get_data [function] [call site] 00137
8 fprintf [call site] 00138
8 __assert_fail [call site] 00139
8 fprintf [call site] 00140
8 node_attach [function] [call site] 00141
8 fprintf [call site] 00142
8 _plist_array_post_insert [function] [call site] 00143
9 ptr_array_insert [function] [call site] 00144
10 realloc [call site] 00145
9 ptr_array_new [function] [call site] 00146
9 node_first_child [function] [call site] 00147
9 ptr_array_add [function] [call site] 00148
10 ptr_array_insert [function] [call site] 00149
9 node_next_sibling [function] [call site] 00150
7 plist_free [function] [call site] 00151
7 plist_free [function] [call site] 00152
7 plist_free [function] [call site] 00153
5 parse_string [function] [call site] 00154
5 parse_primitive [function] [call site] 00155
5 plist_dict_set_item [function] [call site] 00156
6 plist_get_node_type [function] [call site] 00157
6 fprintf [call site] 00158
6 __assert_fail [call site] 00159
6 fprintf [call site] 00160
6 plist_dict_get_item [function] [call site] 00161
7 plist_get_node_type [function] [call site] 00162
7 fprintf [call site] 00163
7 plist_get_data [function] [call site] 00164
7 fprintf [call site] 00165
7 strlen [call site] 00166
7 hash_table_lookup [function] [call site] 00167
7 node_first_child [function] [call site] 00168
7 node_next_sibling [function] [call site] 00169
7 plist_get_data [function] [call site] 00170
7 plist_get_node_type [function] [call site] 00171
7 __assert_fail [call site] 00172
7 plist_get_node_type [function] [call site] 00173
7 fprintf [call site] 00174
7 memcmp [call site] 00175
7 node_next_sibling [function] [call site] 00176
6 node_prev_sibling [function] [call site] 00177
6 fprintf [call site] 00178
6 plist_get_node_type [function] [call site] 00179
6 fprintf [call site] 00180
6 node_detach [function] [call site] 00181
6 fprintf [call site] 00182
6 node_insert [function] [call site] 00183
7 would_create_cycle [function] [call site] 00184
7 node_depth_from_root [function] [call site] 00185
7 node_subtree_max_depth [function] [call site] 00186
7 node_list_create [function] [call site] 00187
7 node_list_insert [function] [call site] 00188
8 node_list_add [function] [call site] 00189
6 node_insert [function] [call site] 00190
6 hash_table_insert [function] [call site] 00191
6 fprintf [call site] 00192
6 hash_table_insert [function] [call site] 00193
6 plist_free_node [function] [call site] 00194
6 plist_new_key [function] [call site] 00195
7 plist_new_plist_data [function] [call site] 00196
7 fprintf [call site] 00197
7 strdup [call site] 00198
7 plist_free_data [function] [call site] 00199
7 fprintf [call site] 00200
7 strlen [call site] 00201
7 plist_new_node [function] [call site] 00202
6 node_attach [function] [call site] 00203
6 plist_free_node [function] [call site] 00204
6 fprintf [call site] 00205
6 node_attach [function] [call site] 00206
6 node_detach [function] [call site] 00207
6 plist_free_node [function] [call site] 00208
6 fprintf [call site] 00209
6 hash_table_insert [function] [call site] 00210
6 hash_table_new [function] [call site] 00211
6 dict_key_hash [function] [call site] 00212
6 dict_key_compare [function] [call site] 00213
7 strcmp [call site] 00214
6 node_first_child [function] [call site] 00215
6 node_next_sibling [function] [call site] 00216
6 hash_table_insert [function] [call site] 00217
6 node_next_sibling [function] [call site] 00218
5 plist_free [function] [call site] 00219
5 plist_free [function] [call site] 00220
5 plist_free [function] [call site] 00221
5 fprintf [call site] 00222
5 plist_free [function] [call site] 00223
2 parse_object [function] [call site] 00224
1 plist_free [function] [call site] 00225