Fuzz introspector: minigzip_fuzzer
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
510 510 1 :

['gz_zero']

512 1048 gzclose_w call site: 00168 /src/zlib/gzwrite.c:609
510 510 1 :

['gz_zero']

510 2016 gz_write call site: 00033 /src/zlib/gzwrite.c:185
423 423 1 :

['gz_skip']

423 1230 gz_read call site: 00189 /src/zlib/gzread.c:277
15 15 1 :

['adler32']

139 869 deflate call site: 00075 /src/zlib/deflate.c:1004
15 15 1 :

['adler32']

15 15 read_buf call site: 00102 /src/zlib/deflate.c:227
14 14 2 :

['byte_swap', 'crc_word_big']

14 14 crc32_z call site: 00043 /src/zlib/crc32.c:731
8 8 2 :

['malloc', 'strlen']

8 8 gz_error call site: 00022 /src/zlib/gzlib.c:546
7 14 2 :

['_tr_stored_block', '_tr_align']

11 38 deflate call site: 00139 /src/zlib/deflate.c:1211
4 17 3 :

['__errno_location', 'gz_error', 'strerror']

4 17 gz_load call site: 00204 /src/zlib/gzread.c:27
4 4 1 :

['putShortMSB']

4 14 deflate call site: 00150 /src/zlib/deflate.c:1241
2 2 1 :

['perror']

2 2 file_compress call site: 00012 /src/minigzip_fuzzer.c:385
2 2 1 :

['perror']

2 2 file_uncompress call site: 00184 /src/minigzip_fuzzer.c:434

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 fopen [call site] 00001
1 fwrite [call site] 00002
1 error [function] [call site] 00003
2 fprintf [call site] 00004
1 fclose [call site] 00005
1 error [function] [call site] 00006
1 snprintf [call site] 00007
1 file_compress [function] [call site] 00008
2 strlen [call site] 00009
2 fprintf [call site] 00010
2 snprintf [call site] 00011
2 fopen [call site] 00012
2 perror [call site] 00013
2 gzopen [function] [call site] 00014
3 gz_open [function] [call site] 00015
4 strlen [call site] 00016
4 snprintf [call site] 00017
4 open [call site] 00018
4 lseek64 [call site] 00019
4 lseek64 [call site] 00020
4 gz_reset [function] [call site] 00021
5 gz_error [function] [call site] 00022
6 strlen [call site] 00023
6 strlen [call site] 00024
2 fprintf [call site] 00025
2 gz_compress [function] [call site] 00026
3 fread [call site] 00027
3 ferror [call site] 00028
3 perror [call site] 00029
3 gzwrite [function] [call site] 00030
4 gz_error [function] [call site] 00031
4 gz_write [function] [call site] 00032
5 gz_init [function] [call site] 00033
6 gz_error [function] [call site] 00034
6 gz_error [function] [call site] 00035
6 deflateInit2_ [function] [call site] 00036
7 deflateEnd [function] [call site] 00037
8 deflateStateCheck [function] [call site] 00038
7 deflateReset [function] [call site] 00039
8 deflateResetKeep [function] [call site] 00040
9 deflateStateCheck [function] [call site] 00041
9 crc32 [function] [call site] 00042
10 crc32_z [function] [call site] 00043
11 crc_word [function] [call site] 00044
11 crc_word [function] [call site] 00045
11 crc_word [function] [call site] 00046
11 crc_word [function] [call site] 00047
11 crc_word [function] [call site] 00048
11 byte_swap [function] [call site] 00049
11 crc_word_big [function] [call site] 00050
11 crc_word_big [function] [call site] 00051
11 crc_word_big [function] [call site] 00052
11 crc_word_big [function] [call site] 00053
11 crc_word_big [function] [call site] 00054
11 byte_swap [function] [call site] 00055
9 adler32 [function] [call site] 00056
10 adler32_z [function] [call site] 00057
9 _tr_init [function] [call site] 00058
10 tr_static_init [function] [call site] 00059
10 init_block [function] [call site] 00060
8 lm_init [function] [call site] 00061
6 gz_error [function] [call site] 00062
5 gz_zero [function] [call site] 00063
6 gz_comp [function] [call site] 00064
7 gz_init [function] [call site] 00065
7 write [call site] 00066
7 __errno_location [call site] 00067
7 gz_error [function] [call site] 00068
7 deflateReset [function] [call site] 00069
7 write [call site] 00070
7 __errno_location [call site] 00071
7 gz_error [function] [call site] 00072
7 deflate [function] [call site] 00073
8 deflateStateCheck [function] [call site] 00074
8 flush_pending [function] [call site] 00075
9 _tr_flush_bits [function] [call site] 00076
10 bi_flush [function] [call site] 00077
8 putShortMSB [function] [call site] 00078
8 putShortMSB [function] [call site] 00079
8 putShortMSB [function] [call site] 00080
8 adler32 [function] [call site] 00081
8 flush_pending [function] [call site] 00082
8 crc32 [function] [call site] 00083
8 flush_pending [function] [call site] 00084
8 crc32 [function] [call site] 00085
8 crc32 [function] [call site] 00086
8 flush_pending [function] [call site] 00087
8 crc32 [function] [call site] 00088
8 crc32 [function] [call site] 00089
8 flush_pending [function] [call site] 00090
8 crc32 [function] [call site] 00091
8 crc32 [function] [call site] 00092
8 flush_pending [function] [call site] 00093
8 crc32 [function] [call site] 00094
8 flush_pending [function] [call site] 00095
8 crc32 [function] [call site] 00096
8 flush_pending [function] [call site] 00097
8 deflate_stored [function] [call site] 00098
9 _tr_stored_block [function] [call site] 00099
10 bi_windup [function] [call site] 00100
9 flush_pending [function] [call site] 00101
9 read_buf [function] [call site] 00102
10 adler32 [function] [call site] 00103
10 crc32 [function] [call site] 00104
9 read_buf [function] [call site] 00105
9 _tr_stored_block [function] [call site] 00106
9 flush_pending [function] [call site] 00107
8 deflate_huff [function] [call site] 00108
9 fill_window [function] [call site] 00109
10 slide_hash [function] [call site] 00110
10 read_buf [function] [call site] 00111
9 _tr_flush_block [function] [call site] 00112
10 detect_data_type [function] [call site] 00113
10 build_tree [function] [call site] 00114
11 pqdownheap [function] [call site] 00115
11 pqdownheap [function] [call site] 00116
11 pqdownheap [function] [call site] 00117
11 gen_bitlen [function] [call site] 00118
11 gen_codes [function] [call site] 00119
12 bi_reverse [function] [call site] 00120
10 build_tree [function] [call site] 00121
10 build_bl_tree [function] [call site] 00122
11 scan_tree [function] [call site] 00123
11 scan_tree [function] [call site] 00124
11 build_tree [function] [call site] 00125
10 _tr_stored_block [function] [call site] 00126
10 compress_block [function] [call site] 00127
10 send_all_trees [function] [call site] 00128
11 send_tree [function] [call site] 00129
11 send_tree [function] [call site] 00130
10 compress_block [function] [call site] 00131
10 init_block [function] [call site] 00132
10 bi_windup [function] [call site] 00133
9 flush_pending [function] [call site] 00134
9 _tr_flush_block [function] [call site] 00135
9 flush_pending [function] [call site] 00136
9 _tr_flush_block [function] [call site] 00137
9 flush_pending [function] [call site] 00138
8 deflate_rle [function] [call site] 00139
9 fill_window [function] [call site] 00140
9 _tr_flush_block [function] [call site] 00141
9 flush_pending [function] [call site] 00142
9 _tr_flush_block [function] [call site] 00143
9 flush_pending [function] [call site] 00144
9 _tr_flush_block [function] [call site] 00145
9 flush_pending [function] [call site] 00146
8 _tr_align [function] [call site] 00147
9 bi_flush [function] [call site] 00148
8 _tr_stored_block [function] [call site] 00149
8 flush_pending [function] [call site] 00150
8 putShortMSB [function] [call site] 00151
8 putShortMSB [function] [call site] 00152
8 flush_pending [function] [call site] 00153
7 gz_error [function] [call site] 00154
6 gz_comp [function] [call site] 00155
5 gz_comp [function] [call site] 00156
5 gz_comp [function] [call site] 00157
5 gz_comp [function] [call site] 00158
3 gzerror [function] [call site] 00159
3 error [function] [call site] 00160
3 fclose [call site] 00161
3 gzclose [function] [call site] 00162
4 gzclose_r [function] [call site] 00163
5 inflateEnd [function] [call site] 00164
6 inflateStateCheck [function] [call site] 00165
5 gz_error [function] [call site] 00166
5 close [call site] 00167
4 gzclose_w [function] [call site] 00168
5 gz_zero [function] [call site] 00169
5 gz_comp [function] [call site] 00170
5 deflateEnd [function] [call site] 00171
5 gz_error [function] [call site] 00172
5 close [call site] 00173
3 error [function] [call site] 00174
2 unlink [call site] 00175
1 file_uncompress [function] [call site] 00176
2 strlen [call site] 00177
2 fprintf [call site] 00178
2 snprintf [call site] 00179
2 strcmp [call site] 00180
2 snprintf [call site] 00181
2 gzopen [function] [call site] 00182
2 fprintf [call site] 00183
2 fopen [call site] 00184
2 perror [call site] 00185
2 gz_uncompress [function] [call site] 00186
3 gzread [function] [call site] 00187
4 gz_error [function] [call site] 00188
4 gz_read [function] [call site] 00189
5 gz_skip [function] [call site] 00190
6 gz_fetch [function] [call site] 00191
7 gz_look [function] [call site] 00192
8 gz_error [function] [call site] 00193
8 inflateInit2_ [function] [call site] 00194
9 inflateReset2 [function] [call site] 00195
10 inflateStateCheck [function] [call site] 00196
10 inflateReset [function] [call site] 00197
11 inflateStateCheck [function] [call site] 00198
11 inflateResetKeep [function] [call site] 00199
12 inflateStateCheck [function] [call site] 00200
8 gz_error [function] [call site] 00201
8 gz_avail [function] [call site] 00202
9 gz_load [function] [call site] 00203
10 read [call site] 00204
10 __errno_location [call site] 00205
8 inflateReset [function] [call site] 00206
7 gz_load [function] [call site] 00207
7 gz_decomp [function] [call site] 00208
8 gz_avail [function] [call site] 00209
8 gz_error [function] [call site] 00210
8 inflate [function] [call site] 00211
9 inflateStateCheck [function] [call site] 00212
9 crc32 [function] [call site] 00213
9 crc32 [function] [call site] 00214
9 adler32 [function] [call site] 00215
9 crc32 [function] [call site] 00216
9 crc32 [function] [call site] 00217
9 crc32 [function] [call site] 00218
9 crc32 [function] [call site] 00219
9 crc32 [function] [call site] 00220
9 crc32 [function] [call site] 00221
9 crc32 [function] [call site] 00222
9 crc32 [function] [call site] 00223
9 adler32 [function] [call site] 00224
9 fixedtables [function] [call site] 00225
9 inflate_table [function] [call site] 00226
9 inflate_table [function] [call site] 00227
9 inflate_table [function] [call site] 00228
9 inflate_fast [function] [call site] 00229
9 crc32 [function] [call site] 00230
9 adler32 [function] [call site] 00231
9 updatewindow [function] [call site] 00232
9 crc32 [function] [call site] 00233
9 adler32 [function] [call site] 00234
8 gz_error [function] [call site] 00235
8 gz_error [function] [call site] 00236
8 gz_error [function] [call site] 00237
5 gz_fetch [function] [call site] 00238
5 gz_load [function] [call site] 00239
5 gz_decomp [function] [call site] 00240
3 gzerror [function] [call site] 00241
3 error [function] [call site] 00242
3 fwrite [call site] 00243
3 error [function] [call site] 00244
3 fclose [call site] 00245
3 error [function] [call site] 00246
3 gzclose [function] [call site] 00247
3 error [function] [call site] 00248
2 unlink [call site] 00249
1 fopen [call site] 00250
1 perror [call site] 00251
1 fread [call site] 00252
1 ferror [call site] 00253
1 perror [call site] 00254
1 memcmp [call site] 00255
1 fclose [call site] 00256
1 error [function] [call site] 00257