Writing fuzzers by hand is cumbersome. Each crate has a public API. What if we could put both of these facts together, and automatically generate a fuzzer that explores the whole crate’s API?

Bucket list of objects

In order to make statefuz fuzzers, it is usual to keep each stateful object in a bucket and run functions on these objects.

With this in mind, it would be possible to use a type map to have one bucket per type of object our application is dealing with.