Fuzz introspector: xzdec_fuzzer
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
21 21 1 :

['Lzma2Dec_AllocateProbs']

21 21 Lzma2State_SetProps call site: 00000 /src/lzma-fuzz/sdk/C/XzDec.c:364
8 8 1 :

['Delta_Encode']

8 8 BraState_Filter call site: 00000 /src/lzma-fuzz/sdk/C/XzDec.c:155
0 269 1 :

['Lzma2Dec_DecodeToDic']

0 269 Lzma2State_Code2 call site: 00000 /src/lzma-fuzz/sdk/C/XzDec.c:392
0 2 1 :

['LzmaDec_FreeProbs']

0 2 Lzma2State_Free call site: 00000 /src/lzma-fuzz/sdk/C/XzDec.c:351
0 0 None 0 298 XzDecMt_Decode call site: 00020 /src/lzma-fuzz/sdk/C/XzDec.c:2545
0 0 None 0 253 XzDecMt_Decode_ST call site: 00022 /src/lzma-fuzz/sdk/C/XzDec.c:2326
0 0 None 0 253 XzDecMt_Decode_ST call site: 00022 /src/lzma-fuzz/sdk/C/XzDec.c:2336
0 0 None 0 251 XzDecMt_Decode_ST call site: 00023 /src/lzma-fuzz/sdk/C/XzDec.c:2397
0 0 None 0 251 XzDecMt_Decode_ST call site: 00024 /src/lzma-fuzz/sdk/C/XzDec.c:2439
0 0 None 0 10 XzDecMt_Create call site: 00011 /src/lzma-fuzz/sdk/C/XzDec.c:1514
0 0 None 0 5 CPU_Is_InOrder call site: 00003 /src/lzma-fuzz/sdk/C/CpuArch.c:152
0 0 None 0 4 LzmaDec_Allocate call site: 00000 /src/lzma-fuzz/sdk/C/LzmaDec.c:1143

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 CrcGenerateTable [function] [call site] 00001
2 CPU_Is_InOrder [function] [call site] 00002
3 x86cpuid_CheckAndRead [function] [call site] 00003
4 MyCPUID [function] [call site] 00004
4 MyCPUID [function] [call site] 00005
3 x86cpuid_GetFirm [function] [call site] 00006
1 Crc64GenerateTable [function] [call site] 00007
1 XzDecMtProps_Init [function] [call site] 00008
1 OutputBuffer::OutputBuffer() [function] [call site] 00009
1 InputBuffer::InputBuffer(unsigned char const*, unsigned long) [function] [call site] 00010
1 XzDecMt_Create [function] [call site] 00011
2 AlignOffsetAlloc_CreateVTable [function] [call site] 00012
2 XzUnpacker_Construct [function] [call site] 00013
3 MixCoder_Construct [function] [call site] 00014
3 XzUnpacker_Init [function] [call site] 00015
2 XzDecMtProps_Init [function] [call site] 00016
1 OutputBuffer::stream() [function] [call site] 00017
1 InputBuffer::stream() [function] [call site] 00018
1 XzDecMt_Decode [function] [call site] 00019
2 XzStatInfo_Clear [function] [call site] 00020
2 XzUnpacker_Init [function] [call site] 00021
2 XzDecMt_Decode_ST [function] [call site] 00022
3 XzUnpacker_SetOutBuf [function] [call site] 00023
3 XzUnpacker_Code [function] [call site] 00024
4 MixCoder_Code [function] [call site] 00025
4 XzCheck_Update [function] [call site] 00026
5 CrcUpdate [function] [call site] 00027
5 Crc64Update [function] [call site] 00028
5 Sha256_Update [function] [call site] 00029
6 Sha256_WriteByteBlock [function] [call site] 00030
4 XzFlags_GetCheckSize [function] [call site] 00031
4 XzUnpacker_UpdateIndex [function] [call site] 00032
5 Xz_WriteVarInt [function] [call site] 00033
5 Xz_WriteVarInt [function] [call site] 00034
5 Sha256_Update [function] [call site] 00035
4 Xz_ParseHeader [function] [call site] 00036
5 CrcCalc [function] [call site] 00037
4 Sha256_Init [function] [call site] 00038
4 Xz_WriteVarInt [function] [call site] 00039
4 Sha256_Final [function] [call site] 00040
5 Sha256_WriteByteBlock [function] [call site] 00041
5 Sha256_WriteByteBlock [function] [call site] 00042
5 Sha256_Init [function] [call site] 00043
4 Sha256_Init [function] [call site] 00044
4 CrcUpdate [function] [call site] 00045
4 XzBlock_Parse [function] [call site] 00046
5 CrcCalc [function] [call site] 00047
5 Xz_ReadVarInt [function] [call site] 00048
5 Xz_ReadVarInt [function] [call site] 00049
5 Xz_ReadVarInt [function] [call site] 00050
5 Xz_ReadVarInt [function] [call site] 00051
4 XzBlock_AreSupportedFilters [function] [call site] 00052
4 XzCheck_Init [function] [call site] 00053
5 Sha256_Init [function] [call site] 00054
4 XzDecMix_Init [function] [call site] 00055
5 MixCoder_Free [function] [call site] 00056
5 MixCoder_SetFromMethod [function] [call site] 00057
6 Lzma2State_SetFromMethod [function] [call site] 00058
6 BraState_SetFromMethod [function] [call site] 00059
5 MixCoder_ResetFromMethod [function] [call site] 00060
6 Lzma2State_ResetOutBuf [function] [call site] 00061
5 MixCoder_Init [function] [call site] 00062
4 XzFlags_GetCheckSize [function] [call site] 00063
4 XzCheck_Final [function] [call site] 00064
5 Sha256_Final [function] [call site] 00065
4 memcmp [call site] 00066
4 CrcUpdate [function] [call site] 00067
4 Sha256_Update [function] [call site] 00068
4 Sha256_Final [function] [call site] 00069
4 memcmp [call site] 00070
4 Xz_CheckFooter [function] [call site] 00071
5 CrcCalc [function] [call site] 00072
2 XzStatInfo_SetStat [function] [call site] 00073
3 XzUnpacker_GetExtraSize [function] [call site] 00074
3 XzUnpacker_IsStreamWasFinished [function] [call site] 00075
1 XzDecMt_Destroy [function] [call site] 00076
2 XzDecMt_FreeSt [function] [call site] 00077
3 XzUnpacker_Free [function] [call site] 00078
4 MixCoder_Free [function] [call site] 00079
1 OutputBuffer::~OutputBuffer() [function] [call site] 00080