Fuzz introspector: fuzz_format_sas7bcat
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
0 7 1 :

['readstat_parser_free']

0 7 readstat_parser_init call site: 00005 /src/readstat/src/readstat_parser.c:9
0 0 None 0 6 readstat_parse_sas7bcat call site: 00051 /src/readstat/src/sas/readstat_sas7bcat_read.c:385
0 0 None 0 6 readstat_parse_sas7bcat call site: 00074 /src/readstat/src/sas/readstat_sas7bcat_read.c:439
0 0 None 0 6 readstat_parse_sas7bcat call site: 00079 /src/readstat/src/sas/readstat_sas7bcat_read.c:445
0 0 None 0 6 readstat_parse_sas7bcat call site: 00080 /src/readstat/src/sas/readstat_sas7bcat_read.c:459
0 0 None 0 6 readstat_parse_sas7bcat call site: 00093 /src/readstat/src/sas/readstat_sas7bcat_read.c:474
0 0 None 0 0 readstat_convert call site: 00074 /src/readstat/src/readstat_convert.c:13
0 0 None 0 0 readstat_convert call site: 00076 /src/readstat/src/readstat_convert.c:20
0 0 None 0 0 readstat_convert call site: 00078 /src/readstat/src/readstat_convert.c:29
0 0 None 0 0 unistd_io_init call site: 00007 /src/readstat/src/readstat_io_unistd.c:125
0 0 None 0 0 unistd_io_init call site: 00011 /src/readstat/src/readstat_io_unistd.c:128
0 0 None 0 0 unistd_io_init call site: 00014 /src/readstat/src/readstat_io_unistd.c:131

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 fuzzer_parser_init [function] [call site] 00001
2 readstat_parser_init [function] [call site] 00002
3 calloc [call site] 00003
3 calloc [call site] 00004
3 unistd_io_init [function] [call site] 00005
4 readstat_set_open_handler [function] [call site] 00006
4 unistd_open_handler [function] [call site] 00007
5 open_with_unicode [function] [call site] 00008
6 open [call site] 00009
4 readstat_set_close_handler [function] [call site] 00010
4 unistd_close_handler [function] [call site] 00011
5 close [call site] 00012
4 readstat_set_seek_handler [function] [call site] 00013
4 unistd_seek_handler [function] [call site] 00014
5 lseek [call site] 00015
4 readstat_set_read_handler [function] [call site] 00016
4 unistd_read_handler [function] [call site] 00017
5 read [call site] 00018
4 readstat_set_update_handler [function] [call site] 00019
4 unistd_update_handler [function] [call site] 00020
5 lseek [call site] 00021
4 calloc [call site] 00022
4 readstat_set_io_ctx [function] [call site] 00023
3 readstat_parser_free [function] [call site] 00024
4 readstat_set_io_ctx [function] [call site] 00025
2 readstat_set_open_handler [function] [call site] 00026
2 rt_open_handler [function] [call site] 00027
2 readstat_set_close_handler [function] [call site] 00028
2 rt_close_handler [function] [call site] 00029
2 readstat_set_seek_handler [function] [call site] 00030
2 rt_seek_handler [function] [call site] 00031
2 readstat_set_read_handler [function] [call site] 00032
2 rt_read_handler [function] [call site] 00033
2 readstat_set_update_handler [function] [call site] 00034
2 rt_update_handler [function] [call site] 00035
2 readstat_set_metadata_handler [function] [call site] 00036
2 handle_metadata [function] [call site] 00037
2 readstat_set_note_handler [function] [call site] 00038
2 handle_note [function] [call site] 00039
2 readstat_set_variable_handler [function] [call site] 00040
2 handle_variable [function] [call site] 00041
2 readstat_set_fweight_handler [function] [call site] 00042
2 handle_fweight [function] [call site] 00043
2 readstat_set_value_handler [function] [call site] 00044
2 handle_value [function] [call site] 00045
2 readstat_set_value_label_handler [function] [call site] 00046
2 handle_value_label [function] [call site] 00047
1 readstat_set_io_ctx [function] [call site] 00048
1 readstat_parse_sas7bcat [function] [call site] 00049
2 calloc [call site] 00050
2 calloc [call site] 00051
2 sas_read_header [function] [call site] 00052
3 sas_epoch [function] [call site] 00053
3 memcmp [call site] 00054
3 memcmp [call site] 00055
3 machine_is_little_endian [function] [call site] 00056
3 machine_is_little_endian [function] [call site] 00057
3 snprintf [call site] 00058
3 byteswap_double [function] [call site] 00059
4 byteswap8 [function] [call site] 00060
3 byteswap_double [function] [call site] 00061
3 sas_convert_time [function] [call site] 00062
3 sas_convert_time [function] [call site] 00063
3 byteswap4 [function] [call site] 00064
3 byteswap4 [function] [call site] 00065
3 byteswap8 [function] [call site] 00066
3 byteswap4 [function] [call site] 00067
3 snprintf [call site] 00068
3 __isoc99_sscanf [call site] 00069
3 snprintf [call site] 00070
2 machine_is_little_endian [function] [call site] 00071
2 strcmp [call site] 00072
2 iconv_open [call site] 00073
2 readstat_convert [function] [call site] 00074
3 iconv [call site] 00075
3 __errno_location [call site] 00076
3 __errno_location [call site] 00077
3 __errno_location [call site] 00078
2 readstat_malloc [function] [call site] 00079
2 sas7bcat_augment_index [function] [call site] 00080
3 memcmp [call site] 00081
3 memcmp [call site] 00082
3 sas_read8 [function] [call site] 00083
4 byteswap8 [function] [call site] 00084
3 sas_read2 [function] [call site] 00085
4 byteswap2 [function] [call site] 00086
3 sas_read4 [function] [call site] 00087
4 byteswap4 [function] [call site] 00088
3 sas_read2 [function] [call site] 00089
3 readstat_realloc [function] [call site] 00090
4 realloc [call site] 00091
2 memcmp [call site] 00092
2 sas7bcat_augment_index [function] [call site] 00093
2 sas7bcat_sort_index [function] [call site] 00094
3 qsort [call site] 00095
3 compare_block_pointers [function] [call site] 00096
2 sas7bcat_uniq_index [function] [call site] 00097
2 sas7bcat_block_size [function] [call site] 00098
3 sas_read4 [function] [call site] 00099
3 sas_read2 [function] [call site] 00100
3 sas_read2 [function] [call site] 00101
3 sas_read4 [function] [call site] 00102
3 sas_read2 [function] [call site] 00103
3 sas_read2 [function] [call site] 00104
2 readstat_realloc [function] [call site] 00105
2 sas7bcat_read_block [function] [call site] 00106
3 sas_read4 [function] [call site] 00107
3 sas_read2 [function] [call site] 00108
3 sas_read2 [function] [call site] 00109
3 sas_read4 [function] [call site] 00110
3 sas_read2 [function] [call site] 00111
3 sas_read2 [function] [call site] 00112
2 sas7bcat_parse_block [function] [call site] 00113
3 sas_read2 [function] [call site] 00114
3 sas_read8 [function] [call site] 00115
3 sas_read8 [function] [call site] 00116
3 sas_read4 [function] [call site] 00117
3 sas_read4 [function] [call site] 00118
3 readstat_convert [function] [call site] 00119
3 readstat_convert [function] [call site] 00120
3 sas7bcat_parse_value_labels [function] [call site] 00121
4 readstat_calloc [function] [call site] 00122
4 machine_is_little_endian [function] [call site] 00123
4 sas_read2 [function] [call site] 00124
4 sas_read4 [function] [call site] 00125
4 sas_read2 [function] [call site] 00126
4 sas_read2 [function] [call site] 00127
4 readstat_convert [function] [call site] 00128
4 sas_read8 [function] [call site] 00129
4 sas_assign_tag [function] [call site] 00130
5 sas_validate_tag [function] [call site] 00131
4 sas_read2 [function] [call site] 00132
4 realloc [call site] 00133
4 readstat_convert [function] [call site] 00134
2 sas7bcat_ctx_free [function] [call site] 00135
3 iconv_close [call site] 00136
1 readstat_parser_free [function] [call site] 00137