Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity	Unique Reachable Complexities	Unique Reachable Functions	All non-covered Complexity	All Reachable Complexity	Function Name	Function Callsite	Blocked Branch
8	8	10 : View List ['std::__1::vector , std::__1::allocator >, std::__1::allocator , std::__1::allocator > > >::end[abi:ne180100]()', 'std::__1::basic_string , std::__1::allocator >::c_str[abi:ne180100]() const', 'std::__1::basic_string , std::__1::allocator > std::__1::operator+ , std::__1::allocator >(char const, std::__1::basic_string , std::__1::allocator > const&)', 'std::__1::basic_string , std::__1::allocator >::append[abi:ne180100](std::__1::basic_string , std::__1::allocator > const&)', 'bool std::__1::operator!=[abi:ne180100] , std::__1::allocator >>(std::__1::__wrap_iter , std::__1::allocator >> const&, std::__1::__wrap_iter , std::__1::allocator >> const&)', 'std::__1::basic_string , std::__1::allocator >::basic_string[abi:ne180100]()', 'std::__1::basic_string , std::__1::allocator > std::__1::operator+[abi:ne180100] , std::__1::allocator >(std::__1::basic_string , std::__1::allocator > const&, char const)', 'std::__1::__wrap_iter , std::__1::allocator >>::operator++[abi:ne180100]()', 'std::__1::__wrap_iter , std::__1::allocator >>::operator[abi:ne180100]() const', 'Fatal(char const*, ...)']	8	8	EdgeEnv::LookupVariable(std::__1::basic_string ,std::__1::allocator >const&)	call site: 00000	/src/ninja/src/graph.cc:457
8	8	1 : View List ['Fatal(char const*, ...)']	8	8	CheckNinjaVersion(std::__1::basic_string ,std::__1::allocator >const&)	call site: 00000	/src/ninja/src/version.cc:42
2	849	38 : View List ['Node::set_dyndep_pending(bool)', 'StringPiece::StringPiece(std::__1::basic_string , std::__1::allocator > const&)', 'State::AddIn(Edge, StringPiece, unsigned long)', 'State::AddValidation(Edge, StringPiece, unsigned long)', 'std::__1::vector >::empty[abi:ne180100]() const', 'std::__1::__wrap_iter ::operator++[abi:ne180100]()', 'std::__1::basic_string , std::__1::allocator >::c_str[abi:ne180100]() const', 'Edge::maybe_phonycycle_diagnostic() const', 'EvalString::Evaluate(Env) const', 'Edge::~Edge()', 'std::__1::vector >::size[abi:ne180100]() const', 'std::__1::vector >::begin[abi:ne180100]()', 'bool std::__1::operator!=[abi:ne180100] (std::__1::__wrap_iter const&, std::__1::__wrap_iter const&)', 'std::__1::vector >::end[abi:ne180100]()', 'std::__1::vector >::operator[][abi:ne180100](unsigned long)', 'Node::generated_by_dep_loader() const', 'std::__1::basic_string , std::__1::allocator >::empty[abi:ne180100]() const', 'std::__1::__wrap_iter ::operator->[abi:ne180100]() const', 'std::__1::vector >::end[abi:ne180100]()', 'bool std::__1::operator==[abi:ne180100] (std::__1::__wrap_iter const&, std::__1::__wrap_iter const&)', 'std::__1::vector >::begin[abi:ne180100]()', 'operator delete(void)', '_ZNSt3__112basic_stringIcNS_11char_traitsIcEENS_9allocatorIcEEEC2B8ne180100ILi0EEEPKc', 'bool std::__1::operator!=[abi:ne180100] (std::__1::__wrap_iter const&, std::__1::__wrap_iter const&)', 'std::__1::__wrap_iter std::__1::remove[abi:ne180100] , Node>(std::__1::__wrap_iter , std::__1::__wrap_iter , Node const&)', 'State::GetNode(StringPiece, unsigned long)', 'std::__1::basic_string , std::__1::allocator >::basic_string(std::__1::basic_string , std::__1::allocator > const&)', 'std::__1::__wrap_iter std::__1::find[abi:ne180100] , Node>(std::__1::__wrap_iter , std::__1::__wrap_iter , Node const&)', 'Node::path() const', 'std::__1::vector >::operator[][abi:ne180100](unsigned long)', 'std::__1::vector >::erase(std::__1::__wrap_iter , std::__1::__wrap_iter )', 'CanonicalizePath(std::__1::basic_string , std::__1::allocator >, unsigned long)', 'Warning(char const, ...)', 'State::AddOut(Edge, StringPiece, unsigned long, std::__1::basic_string , std::__1::allocator >*)', 'std::__1::vector >::reserve(unsigned long)', 'std::__1::vector >::pop_back()', 'Edge::GetUnescapedDyndep() const', '_ZNSt3__111__wrap_iterIPKP4NodeEC2B8ne180100IPS2_TnNS_9enable_ifIXsr14is_convertibleIT_S4_EE5valueEiE4typeELi0EEERKNS0_IS9_EE']	2	909	ManifestParser::ParseEdge(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:330
2	2	3 : View List ['std::__1::vector >::pop_back()', 'Edge::~Edge()', 'operator delete(void*)']	2	2	ManifestParser::ParseEdge(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:348
0	12	2 : View List ['Lexer::Error(std::__1::basic_string , std::__1::allocator > const&, std::__1::basic_string , std::__1::allocator >*)', '_ZNSt3__112basic_stringIcNS_11char_traitsIcEENS_9allocatorIcEEEC2B8ne180100ILi0EEEPKc']	0	12	ManifestParser::ParsePool(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:128
0	12	2 : View List ['Lexer::Error(std::__1::basic_string , std::__1::allocator > const&, std::__1::basic_string , std::__1::allocator >*)', '_ZNSt3__112basic_stringIcNS_11char_traitsIcEENS_9allocatorIcEEEC2B8ne180100ILi0EEEPKc']	0	12	ManifestParser::ParseRule(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:170
0	4	1 : View List ['BindingEnv::LookupRule(std::__1::basic_string , std::__1::allocator > const&)']	0	4	BindingEnv::LookupRule(std::__1::basic_string ,std::__1::allocator >const&)	call site: 00000	/src/ninja/src/eval_env.cc:50
0	0	1 : View List ['std::__1::vector >::data[abi:ne180100]() const']	47	47	EdgeEnv::LookupVariable(std::__1::basic_string ,std::__1::allocator >const&)	call site: 00000	/src/ninja/src/graph.cc:410
0	0	None	42	2624	ManifestParser::ParseEdge(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:219
0	0	None	38	2446	ManifestParser::ParseEdge(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:235
0	0	None	32	2187	ManifestParser::ParseEdge(std::__1::basic_string ,std::__1::allocator >*)	call site: 00000	/src/ninja/src/manifest_parser.cc:251
0	0	None	28	28	ReadFile(std::__1::basic_string ,std::__1::allocator >const&,std::__1::basic_string ,std::__1::allocator >,std::__1::basic_string ,std::__1::allocator >)	call site: 00000	/src/ninja/src/util.cc:444

Fuzzer calltree


         LLVMFuzzerTestOneInput

[function] [call site] 00000


           sprintf

[call site] 00001


           fopen

[call site] 00002


           fwrite

[call site] 00003


           fclose

[call site] 00004


           RealDiskInterface::RealDiskInterface()

[function] [call site] 00005


             DiskInterface::DiskInterface()

[function] [call site] 00006


               FileReader::FileReader()

[function] [call site] 00007


           State::State()

[function] [call site] 00008


             emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::HashMap(unsigned int, float)

[function] [call site] 00009


               emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::init(unsigned int, float)

[function] [call site] 00010


                 emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::max_load_factor(float)

[function] [call site] 00011


                   emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::rehash(unsigned long)

[function] [call site] 00012


                     emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::max_size() const

[function] [call site] 00013


                     __assert_fail

[call site] 00014


                     emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::rebuild(unsigned int)

[function] [call site] 00015


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::max_load_factor() const

[function] [call site] 00016


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::alloc_bucket(unsigned int)

[function] [call site] 00017


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::alloc_index(unsigned int)

[function] [call site] 00018


                       __clang_call_terminate

[call site] 00019


                         __cxa_begin_catch

[call site] 00020


                     _ZNK7emhash87HashMapI11StringPieceP4NodeNSt3__14hashIS1_EENS4_8equal_toIS1_EENS4_9allocatorINS4_4pairIS1_S3_EEEENS_13DefaultPolicyEE8hash_keyIS1_TnNS4_9enable_ifIXaantsr3std11is_integralIT_EE5valuentsr3std7is_sameISH_NS4_12basic_stringIcNS4_11char_traitsIcEENS9_IcEEEEEE5valueEjE4typeELj0EEEmRKSH_

[function] [call site] 00021


                     emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::find_unique_bucket(unsigned long)

[function] [call site] 00022


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::hash_main(unsigned int) const

[function] [call site] 00023


                         _ZNK7emhash87HashMapI11StringPieceP4NodeNSt3__14hashIS1_EENS4_8equal_toIS1_EENS4_9allocatorINS4_4pairIS1_S3_EEEENS_13DefaultPolicyEE8hash_keyIS1_TnNS4_9enable_ifIXaantsr3std11is_integralIT_EE5valuentsr3std7is_sameISH_NS4_12basic_stringIcNS4_11char_traitsIcEENS9_IcEEEEEE5valueEjE4typeELj0EEEmRKSH_

[function] [call site] 00024


                         __clang_call_terminate

[call site] 00025


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::kickout_bucket(unsigned int, unsigned int)

[function] [call site] 00026


                         emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::find_empty_bucket(unsigned int, unsigned int)

[function] [call site] 00027


                         emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::find_prev_bucket(unsigned int, unsigned int) const

[function] [call site] 00028


                         __clang_call_terminate

[call site] 00029


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::find_last_bucket(unsigned int) const

[function] [call site] 00030


                       emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::find_empty_bucket(unsigned int, unsigned int)

[function] [call site] 00031


                       __clang_call_terminate

[call site] 00032


                 emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::rehash(unsigned long)

[function] [call site] 00033


             BindingEnv::BindingEnv()

[function] [call site] 00034


               Env::Env()

[function] [call site] 00035


             Rule::Phony()

[function] [call site] 00036


               Rule::Rule(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&)

[function] [call site] 00037


             BindingEnv::AddRule(std::__1::unique_ptr<Rule const, std::__1::default_delete<Rule const> >)

[function] [call site] 00038


               Rule::name() const

[function] [call site] 00039


               BindingEnv::LookupRuleCurrentScope(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&)

[function] [call site] 00040


               __assert_fail

[call site] 00041


               Rule::name() const

[function] [call site] 00042


             State::AddPool(Pool*)

[function] [call site] 00043


               Pool::name() const

[function] [call site] 00044


               State::LookupPool(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&)

[function] [call site] 00045


               __assert_fail

[call site] 00046


               Pool::name() const

[function] [call site] 00047


             State::AddPool(Pool*)

[function] [call site] 00048


             BindingEnv::~BindingEnv()

[function] [call site] 00049


               Env::~Env()

[function] [call site] 00050


             emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::~HashMap()

[function] [call site] 00051


               emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::clearkv()

[function] [call site] 00052


               __clang_call_terminate

[call site] 00053


           ManifestParserOptions::ManifestParserOptions()

[function] [call site] 00054


           ManifestParser::ManifestParser(State*, FileReader*, ManifestParserOptions)

[function] [call site] 00055


             Parser::Parser(State*, FileReader*)

[function] [call site] 00056


               Lexer::Lexer()

[function] [call site] 00057


                 StringPiece::StringPiece()

[function] [call site] 00058


           Parser::Load(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >*, Lexer*)

[function] [call site] 00059


             __cxa_guard_acquire

[call site] 00060


             Metrics::NewMetric(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&)

[function] [call site] 00061


               Metric::Metric()

[function] [call site] 00062


             __cxa_guard_release

[call site] 00063


             ScopedMetric::ScopedMetric(Metric*)

[function] [call site] 00064


               (anonymous namespace)::HighResTimer()

[function] [call site] 00065


             Lexer::Error(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >*)

[function] [call site] 00066


               StringPiece::AsString() const

[function] [call site] 00067


               snprintf

[call site] 00068


             __cxa_guard_abort

[call site] 00069


             ScopedMetric::~ScopedMetric()

[function] [call site] 00070


               (anonymous namespace)::HighResTimer()

[function] [call site] 00071


               __clang_call_terminate

[call site] 00072


           ManifestParser::~ManifestParser()

[function] [call site] 00073


             Parser::~Parser()

[function] [call site] 00074


           State::~State()

[function] [call site] 00075


             BindingEnv::~BindingEnv()

[function] [call site] 00076


             emhash8::HashMap<StringPiece, Node*, std::__1::hash<StringPiece>, std::__1::equal_to<StringPiece>, std::__1::allocator<std::__1::pair<StringPiece, Node*> >, emhash8::DefaultPolicy>::~HashMap()

[function] [call site] 00077


           RealDiskInterface::~RealDiskInterface()

[function] [call site] 00078


             DiskInterface::~DiskInterface()

[function] [call site] 00079


               FileReader::~FileReader()

[function] [call site] 00080