Improve fuzz coverage
This is a tracking issue for improving fuzz coverage.
Fuzzing with virtual machines
To fuzz the countless API entry points, the idea is to implement simple virtual machines which execute fuzz data as programs, mostly mapping opcodes to function calls. A set of registers is provided for each argument and return type. This makes it possible to simulate all kinds of API usage patterns.
Core node operations
Includes most API functions in
Needing improvements
Completely uncovered APIs
- c14n.h
- catalog.h
- encoding.h
- pattern.h
- xmlsave.h
Unimportant modules
- relaxng.h
- schematron.h
- xmlwriter.h
Edited by Nick Wellnhofer