The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 0 | 76 |
1 :
['validate_message'] |
0 | 140 | do_stream_decode | call site: 00012 | /src/nanopb/tests/build/fuzztest/fuzztest.c:124 |
| 0 | 5 |
1 :
['free_with_check'] |
0 | 5 | realloc_with_check | call site: 00071 | /src/nanopb/tests/build/common/malloc_wrappers.c:108 |
| 0 | 0 | None | 0 | 1012 | pb_decode_inner | call site: 00016 | /src/nanopb/pb_decode.c:1010 |
| 0 | 0 | None | 0 | 1012 | decode_field | call site: 00029 | /src/nanopb/pb_decode.c:804 |
| 0 | 0 | None | 0 | 955 | pb_message_set_to_defaults | call site: 00019 | /src/nanopb/pb_decode.c:960 |
| 0 | 0 | None | 0 | 955 | pb_message_set_to_defaults | call site: 00023 | /src/nanopb/pb_decode.c:966 |
| 0 | 0 | None | 0 | 955 | pb_message_set_to_defaults | call site: 00023 | /src/nanopb/pb_decode.c:972 |
| 0 | 0 | None | 0 | 955 | pb_message_set_to_defaults | call site: 00023 | /src/nanopb/pb_decode.c:974 |
| 0 | 0 | None | 0 | 598 | do_decode | call site: 00182 | /src/nanopb/tests/build/fuzztest/fuzztest.c:81 |
| 0 | 0 | None | 0 | 469 | pb_field_set_to_default | call site: 00027 | /src/nanopb/pb_decode.c:882 |
| 0 | 0 | None | 0 | 465 | decode_static_field | call site: 00142 | /src/nanopb/pb_decode.c:542 |
| 0 | 0 | None | 0 | 449 | decode_extension | call site: 00095 | /src/nanopb/pb_decode.c:853 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
do_roundtrips
[function]
[call site]
00001
get_alloc_count
[function]
[call site]
00002
get_max_alloc_bytes
[function]
[call site]
00003
get_alloc_bytes
[function]
[call site]
00004
do_stream_decode
[function]
[call site]
00005
get_alloc_count
[function]
[call site]
00006
malloc_with_check
[function]
[call site]
00007
round_blocksize
[function]
[call site]
00008
__assert_fail
[call site]
00009
flakystream_init
[function]
[call site]
00010
flakystream_callback
[function]
[call site]
00011
pb_decode
[function]
[call site]
00012
pb_decode_inner
[function]
[call site]
00013
pb_field_iter_begin
[function]
[call site]
00014
load_descriptor_values
[function]
[call site]
00015
pb_message_set_to_defaults
[function]
[call site]
00016
pb_istream_from_buffer
[function]
[call site]
00017
buf_read
[function]
[call site]
00018
pb_decode_tag
[function]
[call site]
00019
pb_decode_varint32_eof
[function]
[call site]
00020
pb_readbyte
[function]
[call site]
00021
pb_readbyte
[function]
[call site]
00022
pb_field_set_to_default
[function]
[call site]
00023
pb_field_iter_begin_extension
[function]
[call site]
00024
pb_field_iter_begin
[function]
[call site]
00025
pb_field_iter_begin
[function]
[call site]
00026
pb_message_set_to_defaults
[function]
[call site]
00027
decode_field
[function]
[call site]
00028
pb_release_union_field
[function]
[call site]
00029
pb_field_iter_find
[function]
[call site]
00030
advance_iterator
[function]
[call site]
00031
load_descriptor_values
[function]
[call site]
00032
load_descriptor_values
[function]
[call site]
00033
pb_release_single_field
[function]
[call site]
00034
pb_field_iter_begin_extension
[function]
[call site]
00035
pb_release_single_field
[function]
[call site]
00036
pb_release
[function]
[call site]
00037
pb_field_iter_begin
[function]
[call site]
00038
pb_release_single_field
[function]
[call site]
00039
free_with_check
[function]
[call site]
00040
__assert_fail
[call site]
00041
__assert_fail
[call site]
00042
__assert_fail
[call site]
00043
__assert_fail
[call site]
00044
free_with_check
[function]
[call site]
00045
pb_field_iter_next
[function]
[call site]
00046
advance_iterator
[function]
[call site]
00047
load_descriptor_values
[function]
[call site]
00048
decode_static_field
[function]
[call site]
00049
decode_basic_field
[function]
[call site]
00050
pb_dec_bool
[function]
[call site]
00051
pb_decode_bool
[function]
[call site]
00052
pb_decode_varint32
[function]
[call site]
00053
pb_decode_varint32_eof
[function]
[call site]
00054
pb_dec_varint
[function]
[call site]
00055
pb_decode_varint
[function]
[call site]
00056
pb_readbyte
[function]
[call site]
00057
pb_decode_svarint
[function]
[call site]
00058
pb_decode_varint
[function]
[call site]
00059
pb_decode_varint
[function]
[call site]
00060
pb_decode_fixed32
[function]
[call site]
00061
pb_read
[function]
[call site]
00062
pb_read
[function]
[call site]
00063
pb_read
[function]
[call site]
00064
pb_decode_fixed64
[function]
[call site]
00065
pb_read
[function]
[call site]
00066
pb_dec_bytes
[function]
[call site]
00067
pb_decode_varint32
[function]
[call site]
00068
allocate_field
[function]
[call site]
00069
realloc_with_check
[function]
[call site]
00070
malloc_with_check
[function]
[call site]
00071
__assert_fail
[call site]
00072
__assert_fail
[call site]
00073
__assert_fail
[call site]
00074
__assert_fail
[call site]
00075
round_blocksize
[function]
[call site]
00076
round_blocksize
[function]
[call site]
00077
realloc
[call site]
00078
free_with_check
[function]
[call site]
00079
pb_read
[function]
[call site]
00080
pb_dec_string
[function]
[call site]
00081
pb_decode_varint32
[function]
[call site]
00082
allocate_field
[function]
[call site]
00083
pb_read
[function]
[call site]
00084
pb_dec_submessage
[function]
[call site]
00085
pb_make_string_substream
[function]
[call site]
00086
pb_decode_varint32
[function]
[call site]
00087
pb_decode_inner
[function]
[call site]
00088
pb_decode_tag
[function]
[call site]
00089
pb_field_iter_find
[function]
[call site]
00090
pb_field_iter_find_extension
[function]
[call site]
00091
advance_iterator
[function]
[call site]
00092
load_descriptor_values
[function]
[call site]
00093
load_descriptor_values
[function]
[call site]
00094
decode_extension
[function]
[call site]
00095
default_extension_decoder
[function]
[call site]
00096
pb_field_iter_begin_extension
[function]
[call site]
00097
decode_field
[function]
[call site]
00098
decode_pointer_field
[function]
[call site]
00099
pb_release_single_field
[function]
[call site]
00100
decode_basic_field
[function]
[call site]
00101
pb_dec_fixed_length_bytes
[function]
[call site]
00102
pb_decode_varint32
[function]
[call site]
00103
pb_read
[function]
[call site]
00104
allocate_field
[function]
[call site]
00105
initialize_pointer_field
[function]
[call site]
00106
decode_basic_field
[function]
[call site]
00107
pb_make_string_substream
[function]
[call site]
00108
allocate_field
[function]
[call site]
00109
initialize_pointer_field
[function]
[call site]
00110
decode_basic_field
[function]
[call site]
00111
pb_close_string_substream
[function]
[call site]
00112
pb_read
[function]
[call site]
00113
allocate_field
[function]
[call site]
00114
initialize_pointer_field
[function]
[call site]
00115
decode_basic_field
[function]
[call site]
00116
decode_callback_field
[function]
[call site]
00117
pb_skip_field
[function]
[call site]
00118
pb_skip_varint
[function]
[call site]
00119
pb_read
[function]
[call site]
00120
pb_read
[function]
[call site]
00121
pb_skip_string
[function]
[call site]
00122
pb_decode_varint32
[function]
[call site]
00123
pb_read
[function]
[call site]
00124
pb_read
[function]
[call site]
00125
pb_make_string_substream
[function]
[call site]
00126
pb_close_string_substream
[function]
[call site]
00127
read_raw_value
[function]
[call site]
00128
pb_read
[function]
[call site]
00129
pb_read
[function]
[call site]
00130
pb_read
[function]
[call site]
00131
pb_istream_from_buffer
[function]
[call site]
00132
pb_skip_field
[function]
[call site]
00133
decode_field
[function]
[call site]
00134
pb_close_string_substream
[function]
[call site]
00135
decode_basic_field
[function]
[call site]
00136
pb_make_string_substream
[function]
[call site]
00137
decode_basic_field
[function]
[call site]
00138
pb_close_string_substream
[function]
[call site]
00139
decode_basic_field
[function]
[call site]
00140
pb_field_iter_begin
[function]
[call site]
00141
pb_message_set_to_defaults
[function]
[call site]
00142
pb_decode_tag
[function]
[call site]
00143
pb_field_iter_next
[function]
[call site]
00144
decode_basic_field
[function]
[call site]
00145
pb_field_iter_begin
[function]
[call site]
00146
pb_message_set_to_defaults
[function]
[call site]
00147
pb_release
[function]
[call site]
00148
validate_message
[function]
[call site]
00149
pb_field_iter_begin_const
[function]
[call site]
00150
pb_const_cast
[function]
[call site]
00151
validate_static
[function]
[call site]
00152
__assert_fail
[call site]
00153
memcmp
[call site]
00154
strlen
[call site]
00155
__assert_fail
[call site]
00156
memcmp
[call site]
00157
validate_message
[function]
[call site]
00158
validate_pointer
[function]
[call site]
00159
__assert_fail
[call site]
00160
get_allocation_size
[function]
[call site]
00161
__assert_fail
[call site]
00162
get_allocation_size
[function]
[call site]
00163
__assert_fail
[call site]
00164
get_allocation_size
[function]
[call site]
00165
__assert_fail
[call site]
00166
memcmp
[call site]
00167
validate_message
[function]
[call site]
00168
pb_field_iter_next
[function]
[call site]
00169
fprintf
[call site]
00170
__assert_fail
[call site]
00171
pb_release
[function]
[call site]
00172
free_with_check
[function]
[call site]
00173
get_alloc_count
[function]
[call site]
00174
__assert_fail
[call site]
00175
do_stream_decode
[function]
[call site]
00176
set_max_alloc_bytes
[function]
[call site]
00177
do_decode
[function]
[call site]
00178
get_alloc_count
[function]
[call site]
00179
malloc_with_check
[function]
[call site]
00180
malloc_with_check
[function]
[call site]
00181
__assert_fail
[call site]
00182
pb_istream_from_buffer
[function]
[call site]
00183
pb_decode_ex
[function]
[call site]
00184
pb_decode_inner
[function]
[call site]
00185
pb_make_string_substream
[function]
[call site]
00186
pb_decode_inner
[function]
[call site]
00187
pb_close_string_substream
[function]
[call site]
00188
pb_release
[function]
[call site]
00189
validate_message
[function]
[call site]
00190
fprintf
[call site]
00191
__assert_fail
[call site]
00192
pb_release
[function]
[call site]
00193
free_with_check
[function]
[call site]
00194
get_alloc_count
[function]
[call site]
00195
__assert_fail
[call site]
00196
do_decode
[function]
[call site]
00197
do_callback_decode
[function]
[call site]
00198
get_alloc_count
[function]
[call site]
00199
malloc_with_check
[function]
[call site]
00200
__assert_fail
[call site]
00201
pb_istream_from_buffer
[function]
[call site]
00202
field_callback
[function]
[call site]
00203
__assert_fail
[call site]
00204
__assert_fail
[call site]
00205
__assert_fail
[call site]
00206
pb_read
[function]
[call site]
00207
field_callback
[function]
[call site]
00208
field_callback
[function]
[call site]
00209
field_callback
[function]
[call site]
00210
submsg_callback
[function]
[call site]
00211
__assert_fail
[call site]
00212
__assert_fail
[call site]
00213
__assert_fail
[call site]
00214
pb_decode
[function]
[call site]
00215
fprintf
[call site]
00216
__assert_fail
[call site]
00217
pb_release
[function]
[call site]
00218
free_with_check
[function]
[call site]
00219
get_alloc_count
[function]
[call site]
00220
__assert_fail
[call site]
00221
get_alloc_count
[function]
[call site]
00222
__assert_fail
[call site]
00223