[oh_sigh]

Isn't the whole point of fuzzing that you don't really need to understand the code to find flaws in it?

[dsacco]

No. A fuzzer abstracts away some of the need for intricate, function by function analysis, but you really want to know what the source code is doing to be successful.

Fuzzing "blind" will work...but you will miss a lot without more instrumentation than that.