Fuzz introspector: fuzz_table
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
0 0 None 2 150 amqp_decode_table_internal call site: 00006 /src/librabbitmq/librabbitmq/amqp_table.c:124
0 0 None 0 0 amqp_pool_alloc call site: 00037 /src/librabbitmq/librabbitmq/amqp_mem.c:90
0 0 None 0 0 amqp_pool_alloc call site: 00038 /src/librabbitmq/librabbitmq/amqp_mem.c:93
0 0 None 0 0 amqp_pool_alloc call site: 00040 /src/librabbitmq/librabbitmq/amqp_mem.c:110
0 0 None 0 0 amqp_pool_alloc call site: 00041 /src/librabbitmq/librabbitmq/amqp_mem.c:112
0 0 None 0 0 amqp_pool_alloc call site: 00042 /src/librabbitmq/librabbitmq/amqp_mem.c:115
0 0 None 0 0 record_pool_block call site: 00038 /src/librabbitmq/librabbitmq/amqp_mem.c:65
0 0 None 0 0 record_pool_block call site: 00039 /src/librabbitmq/librabbitmq/amqp_mem.c:70
0 0 None 0 0 amqp_decode_table_internal call site: 00004 /src/librabbitmq/librabbitmq/amqp_table.c:115
0 0 None 0 0 amqp_decode_table_internal call site: 00008 /src/librabbitmq/librabbitmq/amqp_table.c:134
0 0 None 0 0 amqp_decode_table_internal call site: 00011 /src/librabbitmq/librabbitmq/amqp_table.c:161
0 0 None 0 0 amqp_decode_array call site: 00031 /src/librabbitmq/librabbitmq/amqp_table.c:47

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 init_amqp_pool [function] [call site] 00001
1 amqp_decode_table [function] [call site] 00002
2 amqp_decode_table_internal [function] [call site] 00003
3 amqp_decode_32 [function] [call site] 00004
4 amqp_offset [function] [call site] 00005
3 amqp_decode_8 [function] [call site] 00006
4 amqp_offset [function] [call site] 00007
3 realloc [call site] 00008
3 amqp_decode_bytes [function] [call site] 00009
4 amqp_offset [function] [call site] 00010
3 amqp_decode_field_value [function] [call site] 00011
4 amqp_decode_8 [function] [call site] 00012
4 amqp_decode_8 [function] [call site] 00013
4 amqp_decode_8 [function] [call site] 00014
4 amqp_decode_8 [function] [call site] 00015
4 amqp_decode_16 [function] [call site] 00016
5 amqp_offset [function] [call site] 00017
4 amqp_decode_16 [function] [call site] 00018
4 amqp_decode_32 [function] [call site] 00019
4 amqp_decode_32 [function] [call site] 00020
4 amqp_decode_64 [function] [call site] 00021
5 amqp_offset [function] [call site] 00022
4 amqp_decode_64 [function] [call site] 00023
4 amqp_decode_32 [function] [call site] 00024
4 amqp_decode_64 [function] [call site] 00025
4 amqp_decode_8 [function] [call site] 00026
4 amqp_decode_32 [function] [call site] 00027
4 amqp_decode_32 [function] [call site] 00028
4 amqp_decode_bytes [function] [call site] 00029
4 amqp_decode_array [function] [call site] 00030
5 amqp_decode_32 [function] [call site] 00031
5 realloc [call site] 00032
5 amqp_decode_field_value [function] [call site] 00033
6 amqp_decode_64 [function] [call site] 00034
6 amqp_decode_table_internal [function] [call site] 00035
7 amqp_pool_alloc [function] [call site] 00036
8 calloc [call site] 00037
8 record_pool_block [function] [call site] 00038
9 realloc [call site] 00039
8 __assert_fail [call site] 00040
8 calloc [call site] 00041
8 record_pool_block [function] [call site] 00042
5 amqp_pool_alloc [function] [call site] 00043
1 empty_amqp_pool [function] [call site] 00044
2 recycle_amqp_pool [function] [call site] 00045
3 empty_blocklist [function] [call site] 00046
2 empty_blocklist [function] [call site] 00047