The followings are the branches where fuzzer fails to bypass.
| Unique non-covered Complexity | Unique Reachable Complexities | Unique Reachable Functions | All non-covered Complexity | All Reachable Complexity | Function Name | Function Callsite | Blocked Branch |
|---|---|---|---|---|---|---|---|
| 35 | 35 |
6 :
['float const& std::__1::min
|
35 | 51 | jpegli::N_SSE4::WriteToOutput(jpeg_decompress_struct*,float*restrict*,unsignedlong,unsignedlong,unsignedlong,unsignedchar*) | call site: 00000 | /src/libjxl/lib/jpegli/render.cc:203 |
| 35 | 35 |
6 :
['float const& std::__1::min
|
35 | 51 | jpegli::N_SSE2::WriteToOutput(jpeg_decompress_struct*,float*restrict*,unsignedlong,unsignedlong,unsignedlong,unsignedchar*) | call site: 00000 | /src/libjxl/lib/jpegli/render.cc:203 |
| 35 | 35 |
6 :
['float const& std::__1::min
|
35 | 48 | jpegli::N_AVX2::WriteToOutput(jpeg_decompress_struct*,float*restrict*,unsignedlong,unsignedlong,unsignedlong,unsignedchar*) | call site: 00000 | /src/libjxl/lib/jpegli/render.cc:203 |
| 0 | 4 |
1 :
['jpegli::FormatString(char*, char const*, ...)'] |
0 | 12 | jpegli::(anonymousnamespace)::FreePool(jpeg_common_struct*,int) | call site: 00000 | /src/libjxl/lib/jpegli/memory_manager.cc:138 |
| 0 | 4 |
1 :
['jpegli::FormatString(char*, char const*, ...)'] |
0 | 9 | jpegli::PrepareForScan(jpeg_decompress_struct*) | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:266 |
| 0 | 4 |
1 :
['jpegli::FormatString(char*, char const*, ...)'] |
0 | 4 | jpegli_consume_input | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:612 |
| 0 | 0 | None | 783 | 1436 | jpegli_start_decompress | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:759 |
| 0 | 0 | None | 6 | 504 | jpegli::ConsumeInput(jpeg_decompress_struct*) | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:342 |
| 0 | 0 | None | 6 | 504 | jpegli::ConsumeInput(jpeg_decompress_struct*) | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:366 |
| 0 | 0 | None | 5 | 7 | hwy::(anonymousnamespace)::x86::DetectTargets() | call site: 00000 | /src/libjxl/third_party/highway/hwy/targets.cc:269 |
| 0 | 0 | None | 5 | 7 | hwy::(anonymousnamespace)::x86::DetectTargets() | call site: 00000 | /src/libjxl/third_party/highway/hwy/targets.cc:272 |
| 0 | 0 | None | 0 | 628 | jpegli_read_scanlines | call site: 00000 | /src/libjxl/lib/jpegli/decode.cc:852 |
LLVMFuzzerTestOneInput
[function]
[call site]
00000
jpegxl::tools::TestOneInput(unsigned char const*, unsigned long)
[function]
[call site]
00001
jxl::ParseDescription(std::__1::basic_string
, std::__1::allocator
> const&, JxlColorEncoding*)
[function]
[call site]
00002
jxl::(anonymous namespace)::Tokenizer::Tokenizer(std::__1::basic_string
, std::__1::allocator
> const*, char)
[function]
[call site]
00003
jxl::(anonymous namespace)::ParseColorSpace(jxl::(anonymous namespace)::Tokenizer*, JxlColorEncoding*)
[function]
[call site]
00004
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00005
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00006
jxl::Status::Status(bool)
[function]
[call site]
00007
jxl::Status::operator bool() const
[function]
[call site]
00008
jxl::Status jxl::(anonymous namespace)::ParseEnum
(std::__1::basic_string
, std::__1::allocator
> const&, jxl::(anonymous namespace)::EnumName
const*, unsigned long, JxlColorSpace*)
[function]
[call site]
00009
jxl::Status::Status(bool)
[function]
[call site]
00010
jxl::Status::operator bool() const
[function]
[call site]
00011
jxl::Status::Status(bool)
[function]
[call site]
00012
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00013
jxl::Status::operator bool() const
[function]
[call site]
00014
jxl::(anonymous namespace)::ParseWhitePoint(jxl::(anonymous namespace)::Tokenizer*, JxlColorEncoding*)
[function]
[call site]
00015
jxl::Status::Status(bool)
[function]
[call site]
00016
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00017
jxl::Status::operator bool() const
[function]
[call site]
00018
jxl::Status jxl::(anonymous namespace)::ParseEnum
(std::__1::basic_string
, std::__1::allocator
> const&, jxl::(anonymous namespace)::EnumName
const*, unsigned long, JxlWhitePoint*)
[function]
[call site]
00019
jxl::Status::operator bool() const
[function]
[call site]
00020
jxl::(anonymous namespace)::Tokenizer::Tokenizer(std::__1::basic_string
, std::__1::allocator
> const*, char)
[function]
[call site]
00021
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00022
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00023
jxl::Status::operator bool() const
[function]
[call site]
00024
jxl::(anonymous namespace)::ParseDouble(std::__1::basic_string
, std::__1::allocator
> const&, double*)
[function]
[call site]
00025
__errno_location
[call site]
00026
strtod
[call site]
00027
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00028
_Z5isnanUa9enable_ifILb1EEd
[function]
[call site]
00029
bool __libcpp_isnan
(double)
[function]
[call site]
00030
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00031
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00032
jxl::Status::Status(bool)
[function]
[call site]
00033
jxl::Status::operator bool() const
[function]
[call site]
00034
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00035
jxl::Status::operator bool() const
[function]
[call site]
00036
jxl::Status::Status(bool)
[function]
[call site]
00037
jxl::Status::operator bool() const
[function]
[call site]
00038
jxl::(anonymous namespace)::ParsePrimaries(jxl::(anonymous namespace)::Tokenizer*, JxlColorEncoding*)
[function]
[call site]
00039
jxl::Status::Status(bool)
[function]
[call site]
00040
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00041
jxl::Status::operator bool() const
[function]
[call site]
00042
jxl::Status jxl::(anonymous namespace)::ParseEnum
(std::__1::basic_string
, std::__1::allocator
> const&, jxl::(anonymous namespace)::EnumName
const*, unsigned long, JxlPrimaries*)
[function]
[call site]
00043
jxl::Status::operator bool() const
[function]
[call site]
00044
jxl::(anonymous namespace)::Tokenizer::Tokenizer(std::__1::basic_string
, std::__1::allocator
> const*, char)
[function]
[call site]
00045
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00046
jxl::Status::operator bool() const
[function]
[call site]
00047
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00048
jxl::Status::operator bool() const
[function]
[call site]
00049
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00050
jxl::Status::operator bool() const
[function]
[call site]
00051
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00052
jxl::Status::operator bool() const
[function]
[call site]
00053
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00054
jxl::Status::operator bool() const
[function]
[call site]
00055
jxl::(anonymous namespace)::ParseDouble(jxl::(anonymous namespace)::Tokenizer*, double*)
[function]
[call site]
00056
jxl::Status::operator bool() const
[function]
[call site]
00057
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00058
jxl::Status::operator bool() const
[function]
[call site]
00059
jxl::(anonymous namespace)::ParseRenderingIntent(jxl::(anonymous namespace)::Tokenizer*, JxlColorEncoding*)
[function]
[call site]
00060
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00061
jxl::Status::operator bool() const
[function]
[call site]
00062
jxl::Status jxl::(anonymous namespace)::ParseEnum
(std::__1::basic_string
, std::__1::allocator
> const&, jxl::(anonymous namespace)::EnumName
const*, unsigned long, JxlRenderingIntent*)
[function]
[call site]
00063
jxl::Status::operator bool() const
[function]
[call site]
00064
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00065
jxl::Status::operator bool() const
[function]
[call site]
00066
jxl::(anonymous namespace)::ParseTransferFunction(jxl::(anonymous namespace)::Tokenizer*, JxlColorEncoding*)
[function]
[call site]
00067
jxl::Status::Status(bool)
[function]
[call site]
00068
jxl::(anonymous namespace)::Tokenizer::Next(std::__1::basic_string
, std::__1::allocator
>*)
[function]
[call site]
00069
jxl::Status::operator bool() const
[function]
[call site]
00070
jxl::Status jxl::(anonymous namespace)::ParseEnum
(std::__1::basic_string
, std::__1::allocator
> const&, jxl::(anonymous namespace)::EnumName
const*, unsigned long, JxlTransferFunction*)
[function]
[call site]
00071
jxl::Status::operator bool() const
[function]
[call site]
00072
jxl::Status::Status(bool)
[function]
[call site]
00073
jxl::(anonymous namespace)::ParseDouble(std::__1::basic_string
, std::__1::allocator
> const&, double*)
[function]
[call site]
00074
jxl::Status::operator bool() const
[function]
[call site]
00075
jxl::Status::Status(bool)
[function]
[call site]
00076
jxl::Status::Status(jxl::StatusCode)
[function]
[call site]
00077
jxl::Status::operator bool() const
[function]
[call site]
00078
jxl::Status::Status(bool)
[function]
[call site]
00079