Fuzz introspector: cms_dict_fuzzer
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
54 54 1 :

['DupPluginIntentsList']

54 54 _cmsAllocIntentsPluginChunk call site: 00122 /src/lcms/src/cmscnvrt.c:137
54 54 1 :

['DupPluginCurvesList']

54 54 _cmsAllocCurvesPluginChunk call site: 00096 /src/lcms/src/cmsgamma.c:111
54 54 1 :

['DupPluginOptimizationList']

54 54 _cmsAllocOptimizationPluginChunk call site: 00127 /src/lcms/src/cmsopt.c:1860
54 54 1 :

['DupFormatterFactoryList']

54 54 _cmsAllocFormattersPluginChunk call site: 00103 /src/lcms/src/cmspack.c:3945
54 54 1 :

['DupTagTypeList']

54 54 _cmsAllocTagTypePluginChunk call site: 00109 /src/lcms/src/cmstypes.c:5969
54 54 1 :

['DupTagTypeList']

54 54 _cmsAllocMPETypePluginChunk call site: 00114 /src/lcms/src/cmstypes.c:5983
54 54 1 :

['DupTagList']

54 54 _cmsAllocTagPluginChunk call site: 00117 /src/lcms/src/cmstypes.c:6173
54 54 1 :

['DupPluginTransformList']

54 54 _cmsAllocTransformPluginChunk call site: 00134 /src/lcms/src/cmsxform.c:667
33 33 1 :

['GrowMLUtable']

33 72 AddMLUBlock call site: 00174 /src/lcms/src/cmsnamed.c:150
26 26 1 :

['cmsSignalError']

26 26 _cmsContextGetClientChunk call site: 00006 /src/lcms/src/cmsplugin.c:752
0 48 1 :

['_cmsSubAllocDup']

0 48 _cmsAllocMemPluginChunk call site: 00089 /src/lcms/src/cmserr.c:192
0 38 1 :

['_cmsCreateSubAllocChunk']

0 38 _cmsSubAlloc call site: 00044 /src/lcms/src/cmserr.c:391

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 cmsCreateContext [function] [call site] 00001
2 InitContextMutex [function] [call site] 00002
2 _cmsFindMemoryPlugin [function] [call site] 00003
2 _cmsInstallAllocFunctions [function] [call site] 00004
2 _cmsMalloc [function] [call site] 00005
3 _cmsContextGetClientChunk [function] [call site] 00006
4 cmsSignalError [function] [call site] 00007
5 vsnprintf [call site] 00008
5 _cmsContextGetClientChunk [function] [call site] 00009
6 __assert_fail [call site] 00010
6 _cmsGetContext [function] [call site] 00011
7 InitContextMutex [function] [call site] 00012
7 _cmsEnterCriticalSectionPrimitive [function] [call site] 00013
8 pthread_mutex_lock [call site] 00014
7 _cmsLeaveCriticalSectionPrimitive [function] [call site] 00015
8 pthread_mutex_unlock [call site] 00016
7 _cmsLeaveCriticalSectionPrimitive [function] [call site] 00017
2 _cmsEnterCriticalSectionPrimitive [function] [call site] 00018
2 _cmsLeaveCriticalSectionPrimitive [function] [call site] 00019
2 _cmsCreateSubAlloc [function] [call site] 00020
3 _cmsMallocZero [function] [call site] 00021
4 _cmsContextGetClientChunk [function] [call site] 00022
3 _cmsCreateSubAllocChunk [function] [call site] 00023
4 _cmsMallocZero [function] [call site] 00024
4 _cmsMalloc [function] [call site] 00025
4 _cmsFree [function] [call site] 00026
5 _cmsContextGetClientChunk [function] [call site] 00027
3 _cmsFree [function] [call site] 00028
2 cmsDeleteContext [function] [call site] 00029
3 cmsUnregisterPlugins [function] [call site] 00030
4 cmsUnregisterPluginsTHR [function] [call site] 00031
5 _cmsRegisterMemHandlerPlugin [function] [call site] 00032
6 _cmsContextGetClientChunk [function] [call site] 00033
6 _cmsInstallAllocFunctions [function] [call site] 00034
5 _cmsRegisterInterpPlugin [function] [call site] 00035
6 _cmsContextGetClientChunk [function] [call site] 00036
5 _cmsRegisterTagTypePlugin [function] [call site] 00037
6 RegisterTypesPlugin [function] [call site] 00038
7 _cmsContextGetClientChunk [function] [call site] 00039
7 _cmsPluginMalloc [function] [call site] 00040
8 _cmsGetContext [function] [call site] 00041
8 _cmsCreateSubAlloc [function] [call site] 00042
8 cmsSignalError [function] [call site] 00043
8 _cmsSubAlloc [function] [call site] 00044
9 _cmsCreateSubAllocChunk [function] [call site] 00045
5 _cmsRegisterTagPlugin [function] [call site] 00046
6 _cmsContextGetClientChunk [function] [call site] 00047
6 _cmsPluginMalloc [function] [call site] 00048
5 _cmsRegisterFormattersPlugin [function] [call site] 00049
6 _cmsContextGetClientChunk [function] [call site] 00050
6 _cmsPluginMalloc [function] [call site] 00051
5 _cmsRegisterRenderingIntentPlugin [function] [call site] 00052
6 _cmsContextGetClientChunk [function] [call site] 00053
6 _cmsPluginMalloc [function] [call site] 00054
6 strncpy [call site] 00055
5 _cmsRegisterParametricCurvesPlugin [function] [call site] 00056
6 _cmsContextGetClientChunk [function] [call site] 00057
6 _cmsPluginMalloc [function] [call site] 00058
5 _cmsRegisterMultiProcessElementPlugin [function] [call site] 00059
6 RegisterTypesPlugin [function] [call site] 00060
5 _cmsRegisterOptimizationPlugin [function] [call site] 00061
6 _cmsContextGetClientChunk [function] [call site] 00062
6 _cmsPluginMalloc [function] [call site] 00063
5 _cmsRegisterTransformPlugin [function] [call site] 00064
6 _cmsContextGetClientChunk [function] [call site] 00065
6 _cmsPluginMalloc [function] [call site] 00066
5 _cmsRegisterMutexPlugin [function] [call site] 00067
6 _cmsContextGetClientChunk [function] [call site] 00068
5 _cmsRegisterParallelizationPlugin [function] [call site] 00069
6 _cmsContextGetClientChunk [function] [call site] 00070
3 _cmsSubAllocDestroy [function] [call site] 00071
4 _cmsFree [function] [call site] 00072
4 _cmsFree [function] [call site] 00073
4 _cmsFree [function] [call site] 00074
3 InitContextMutex [function] [call site] 00075
3 cmsUnregisterPluginsTHR [function] [call site] 00076
3 _cmsSubAllocDestroy [function] [call site] 00077
3 _cmsEnterCriticalSectionPrimitive [function] [call site] 00078
3 _cmsLeaveCriticalSectionPrimitive [function] [call site] 00079
3 _cmsFree [function] [call site] 00080
2 _cmsAllocLogErrorChunk [function] [call site] 00081
3 _cmsSubAllocDup [function] [call site] 00082
4 _cmsSubAlloc [function] [call site] 00083
2 _cmsAllocAlarmCodesChunk [function] [call site] 00084
3 _cmsSubAllocDup [function] [call site] 00085
2 _cmsAllocAdaptationStateChunk [function] [call site] 00086
3 _cmsSubAllocDup [function] [call site] 00087
2 _cmsAllocMemPluginChunk [function] [call site] 00088
3 __assert_fail [call site] 00089
3 _cmsSubAllocDup [function] [call site] 00090
2 _cmsAllocInterpPluginChunk [function] [call site] 00091
3 __assert_fail [call site] 00092
3 __assert_fail [call site] 00093
3 _cmsSubAllocDup [function] [call site] 00094
2 _cmsAllocCurvesPluginChunk [function] [call site] 00095
3 __assert_fail [call site] 00096
3 DupPluginCurvesList [function] [call site] 00097
4 __assert_fail [call site] 00098
4 _cmsSubAllocDup [function] [call site] 00099
4 _cmsSubAllocDup [function] [call site] 00100
3 _cmsSubAllocDup [function] [call site] 00101
2 _cmsAllocFormattersPluginChunk [function] [call site] 00102
3 __assert_fail [call site] 00103
3 DupFormatterFactoryList [function] [call site] 00104
4 __assert_fail [call site] 00105
4 _cmsSubAllocDup [function] [call site] 00106
4 _cmsSubAllocDup [function] [call site] 00107
3 _cmsSubAllocDup [function] [call site] 00108
2 _cmsAllocTagTypePluginChunk [function] [call site] 00109
3 DupTagTypeList [function] [call site] 00110
4 _cmsSubAllocDup [function] [call site] 00111
4 _cmsSubAllocDup [function] [call site] 00112
3 _cmsSubAllocDup [function] [call site] 00113
2 _cmsAllocMPETypePluginChunk [function] [call site] 00114
3 DupTagTypeList [function] [call site] 00115
3 _cmsSubAllocDup [function] [call site] 00116
2 _cmsAllocTagPluginChunk [function] [call site] 00117
3 DupTagList [function] [call site] 00118
4 _cmsSubAllocDup [function] [call site] 00119
4 _cmsSubAllocDup [function] [call site] 00120
3 _cmsSubAllocDup [function] [call site] 00121
2 _cmsAllocIntentsPluginChunk [function] [call site] 00122
3 DupPluginIntentsList [function] [call site] 00123
4 _cmsSubAllocDup [function] [call site] 00124
4 _cmsSubAllocDup [function] [call site] 00125
3 _cmsSubAllocDup [function] [call site] 00126
2 _cmsAllocOptimizationPluginChunk [function] [call site] 00127
3 DupPluginOptimizationList [function] [call site] 00128
4 __assert_fail [call site] 00129
4 __assert_fail [call site] 00130
4 _cmsSubAllocDup [function] [call site] 00131
4 _cmsSubAllocDup [function] [call site] 00132
3 _cmsSubAllocDup [function] [call site] 00133
2 _cmsAllocTransformPluginChunk [function] [call site] 00134
3 DupPluginTransformList [function] [call site] 00135
4 _cmsSubAllocDup [function] [call site] 00136
4 _cmsSubAllocDup [function] [call site] 00137
3 _cmsSubAllocDup [function] [call site] 00138
2 _cmsAllocMutexPluginChunk [function] [call site] 00139
3 _cmsSubAllocDup [function] [call site] 00140
2 _cmsAllocParallelizationPluginChunk [function] [call site] 00141
3 _cmsSubAllocDup [function] [call site] 00142
2 cmsPluginTHR [function] [call site] 00143
3 cmsSignalError [function] [call site] 00144
3 cmsSignalError [function] [call site] 00145
3 _cmsRegisterMemHandlerPlugin [function] [call site] 00146
3 _cmsRegisterInterpPlugin [function] [call site] 00147
3 _cmsRegisterTagTypePlugin [function] [call site] 00148
3 _cmsRegisterTagPlugin [function] [call site] 00149
3 _cmsRegisterFormattersPlugin [function] [call site] 00150
3 _cmsRegisterRenderingIntentPlugin [function] [call site] 00151
3 _cmsRegisterParametricCurvesPlugin [function] [call site] 00152
3 _cmsRegisterMultiProcessElementPlugin [function] [call site] 00153
3 _cmsRegisterOptimizationPlugin [function] [call site] 00154
3 _cmsRegisterTransformPlugin [function] [call site] 00155
3 _cmsRegisterMutexPlugin [function] [call site] 00156
3 _cmsRegisterParallelizationPlugin [function] [call site] 00157
3 cmsSignalError [function] [call site] 00158
2 cmsDeleteContext [function] [call site] 00159
1 cmsDictAlloc [function] [call site] 00160
2 _cmsMallocZero [function] [call site] 00161
1 cmsMLUalloc [function] [call site] 00162
2 _cmsMallocZero [function] [call site] 00163
2 _cmsCalloc [function] [call site] 00164
3 _cmsContextGetClientChunk [function] [call site] 00165
2 _cmsFree [function] [call site] 00166
1 generateWideString [function] [call site] 00167
2 mbstowcs [call site] 00168
2 mbstowcs [call site] 00169
1 cmsMLUsetWide [function] [call site] 00170
2 strTo16 [function] [call site] 00171
2 strTo16 [function] [call site] 00172
2 mywcslen [function] [call site] 00173
2 AddMLUBlock [function] [call site] 00174
3 GrowMLUtable [function] [call site] 00175
4 _cmsRealloc [function] [call site] 00176
5 _cmsContextGetClientChunk [function] [call site] 00177
3 SearchMLUEntry [function] [call site] 00178
3 GrowMLUpool [function] [call site] 00179
4 _cmsRealloc [function] [call site] 00180
1 cmsMLUgetTranslation [function] [call site] 00181
2 strTo16 [function] [call site] 00182
2 strTo16 [function] [call site] 00183
2 _cmsMLUgetWide [function] [call site] 00184
2 strFrom16 [function] [call site] 00185
2 strFrom16 [function] [call site] 00186
1 cmsMLUtranslationsCount [function] [call site] 00187
1 cmsMLUtranslationsCodes [function] [call site] 00188
2 strFrom16 [function] [call site] 00189
2 strFrom16 [function] [call site] 00190
1 generateWideString [function] [call site] 00191
1 generateWideString [function] [call site] 00192
1 cmsDictAddEntry [function] [call site] 00193
2 __assert_fail [call site] 00194
2 __assert_fail [call site] 00195
2 _cmsMallocZero [function] [call site] 00196
2 cmsMLUdup [function] [call site] 00197
3 cmsMLUalloc [function] [call site] 00198
3 _cmsMalloc [function] [call site] 00199
3 cmsMLUfree [function] [call site] 00200
4 _cmsFree [function] [call site] 00201
4 _cmsFree [function] [call site] 00202
4 _cmsFree [function] [call site] 00203
2 cmsMLUdup [function] [call site] 00204
2 DupWcs [function] [call site] 00205
3 mywcslen [function] [call site] 00206
3 _cmsDupMem [function] [call site] 00207
4 _cmsContextGetClientChunk [function] [call site] 00208
2 DupWcs [function] [call site] 00209
1 cmsDictDup [function] [call site] 00210
2 __assert_fail [call site] 00211
2 cmsDictAlloc [function] [call site] 00212
2 cmsDictAddEntry [function] [call site] 00213
2 cmsDictFree [function] [call site] 00214
3 __assert_fail [call site] 00215
3 cmsMLUfree [function] [call site] 00216
3 cmsMLUfree [function] [call site] 00217
3 _cmsFree [function] [call site] 00218
3 _cmsFree [function] [call site] 00219
3 _cmsFree [function] [call site] 00220
3 _cmsFree [function] [call site] 00221
1 cmsDictFree [function] [call site] 00222
1 cmsDictGetEntryList [function] [call site] 00223
1 cmsDictNextEntry [function] [call site] 00224
1 cmsMLUfree [function] [call site] 00225
1 cmsDictFree [function] [call site] 00226