Fuzz introspector: inspector/light/source_filesgzio_fuzzer.c
For issues and ideas: https://github.com/ossf/fuzz-introspector/issues

Fuzz blockers

The followings are the branches where fuzzer fails to bypass.

Unique non-covered Complexity Unique Reachable Complexities Unique Reachable Functions All non-covered Complexity All Reachable Complexity Function Name Function Callsite Blocked Branch
14 14 2 :

['crc_word_big', 'byte_swap']

14 14 crc32_z call site: 00028 /src/zlib/crc32.c:731
8 8 2 :

['malloc', 'strlen']

8 8 gz_error call site: 00011 /src/zlib/gzlib.c:546
4 17 3 :

['__errno_location', 'strerror', 'gz_error']

4 17 gz_load call site: 00170 /src/zlib/gzread.c:27
2 2 1 :

['perror']

2 2 file_compress call site: 00000 /src/minigzip_fuzzer.c:385
2 2 1 :

['perror']

2 2 file_uncompress call site: 00000 /src/minigzip_fuzzer.c:434
0 510 1 :

['gz_zero']

2 1048 gzclose_w call site: 00264 /src/zlib/gzwrite.c:609
0 510 1 :

['gz_zero']

0 2016 gz_write call site: 00141 /src/zlib/gzwrite.c:185
0 502 1 :

['gz_comp']

0 502 gzvprintf call site: 00241 /src/zlib/gzwrite.c:418
0 423 1 :

['gz_skip']

0 1230 gz_read call site: 00155 /src/zlib/gzread.c:277
0 70 1 :

['deflateReset']

6 505 gz_comp call site: 00051 /src/zlib/gzwrite.c:90
0 59 3 :

['_tr_stored_block', 'read_buf', 'flush_pending']

0 59 deflate_stored call site: 00086 /src/zlib/deflate.c:1757
0 25 1 :

['gzrewind']

0 25 gzseek64 call site: 00211 /src/zlib/gzlib.c:387

Fuzzer calltree

0 LLVMFuzzerTestOneInput [function] [call site] 00000
1 mkstemp [call site] 00001
1 close [call site] 00002
1 gzopen [function] [call site] 00003
2 gz_open [function] [call site] 00004
3 strlen [call site] 00005
3 snprintf [call site] 00006
3 open [call site] 00007
3 lseek64 [call site] 00008
3 lseek64 [call site] 00009
3 gz_reset [function] [call site] 00010
4 gz_error [function] [call site] 00011
5 strlen [call site] 00012
5 strlen [call site] 00013
5 snprintf [call site] 00014
1 gzputc [function] [call site] 00015
2 gz_zero [function] [call site] 00016
3 gz_comp [function] [call site] 00017
4 gz_init [function] [call site] 00018
5 gz_error [function] [call site] 00019
5 gz_error [function] [call site] 00020
5 deflateInit2_ [function] [call site] 00021
6 deflateEnd [function] [call site] 00022
7 deflateStateCheck [function] [call site] 00023
6 deflateReset [function] [call site] 00024
7 deflateResetKeep [function] [call site] 00025
8 deflateStateCheck [function] [call site] 00026
8 crc32 [function] [call site] 00027
9 crc32_z [function] [call site] 00028
10 crc_word [function] [call site] 00029
10 crc_word [function] [call site] 00030
10 crc_word [function] [call site] 00031
10 crc_word [function] [call site] 00032
10 crc_word [function] [call site] 00033
10 byte_swap [function] [call site] 00034
10 crc_word_big [function] [call site] 00035
10 crc_word_big [function] [call site] 00036
10 crc_word_big [function] [call site] 00037
10 crc_word_big [function] [call site] 00038
10 crc_word_big [function] [call site] 00039
10 byte_swap [function] [call site] 00040
8 adler32 [function] [call site] 00041
9 adler32_z [function] [call site] 00042
8 _tr_init [function] [call site] 00043
9 tr_static_init [function] [call site] 00044
9 init_block [function] [call site] 00045
7 lm_init [function] [call site] 00046
5 gz_error [function] [call site] 00047
4 write [call site] 00048
4 __errno_location [call site] 00049
4 strerror [call site] 00050
4 gz_error [function] [call site] 00051
4 deflateReset [function] [call site] 00052
4 write [call site] 00053
4 __errno_location [call site] 00054
4 strerror [call site] 00055
4 gz_error [function] [call site] 00056
4 deflate [function] [call site] 00057
5 deflateStateCheck [function] [call site] 00058
5 flush_pending [function] [call site] 00059
6 _tr_flush_bits [function] [call site] 00060
7 bi_flush [function] [call site] 00061
5 putShortMSB [function] [call site] 00062
5 putShortMSB [function] [call site] 00063
5 putShortMSB [function] [call site] 00064
5 adler32 [function] [call site] 00065
5 flush_pending [function] [call site] 00066
5 crc32 [function] [call site] 00067
5 flush_pending [function] [call site] 00068
5 crc32 [function] [call site] 00069
5 crc32 [function] [call site] 00070
5 flush_pending [function] [call site] 00071
5 crc32 [function] [call site] 00072
5 crc32 [function] [call site] 00073
5 flush_pending [function] [call site] 00074
5 crc32 [function] [call site] 00075
5 crc32 [function] [call site] 00076
5 flush_pending [function] [call site] 00077
5 crc32 [function] [call site] 00078
5 flush_pending [function] [call site] 00079
5 crc32 [function] [call site] 00080
5 flush_pending [function] [call site] 00081
5 deflate_stored [function] [call site] 00082
6 _tr_stored_block [function] [call site] 00083
7 bi_windup [function] [call site] 00084
6 flush_pending [function] [call site] 00085
6 read_buf [function] [call site] 00086
7 adler32 [function] [call site] 00087
7 crc32 [function] [call site] 00088
6 read_buf [function] [call site] 00089
6 _tr_stored_block [function] [call site] 00090
6 flush_pending [function] [call site] 00091
5 deflate_huff [function] [call site] 00092
6 fill_window [function] [call site] 00093
7 slide_hash [function] [call site] 00094
7 read_buf [function] [call site] 00095
6 _tr_flush_block [function] [call site] 00096
7 detect_data_type [function] [call site] 00097
7 build_tree [function] [call site] 00098
8 pqdownheap [function] [call site] 00099
8 pqdownheap [function] [call site] 00100
8 pqdownheap [function] [call site] 00101
8 gen_bitlen [function] [call site] 00102
8 gen_codes [function] [call site] 00103
9 bi_reverse [function] [call site] 00104
7 build_tree [function] [call site] 00105
7 build_bl_tree [function] [call site] 00106
8 scan_tree [function] [call site] 00107
8 scan_tree [function] [call site] 00108
8 build_tree [function] [call site] 00109
7 _tr_stored_block [function] [call site] 00110
7 compress_block [function] [call site] 00111
7 send_all_trees [function] [call site] 00112
8 send_tree [function] [call site] 00113
8 send_tree [function] [call site] 00114
7 compress_block [function] [call site] 00115
7 init_block [function] [call site] 00116
7 bi_windup [function] [call site] 00117
6 flush_pending [function] [call site] 00118
6 _tr_flush_block [function] [call site] 00119
6 flush_pending [function] [call site] 00120
6 _tr_flush_block [function] [call site] 00121
6 flush_pending [function] [call site] 00122
5 deflate_rle [function] [call site] 00123
6 fill_window [function] [call site] 00124
6 _tr_flush_block [function] [call site] 00125
6 flush_pending [function] [call site] 00126
6 _tr_flush_block [function] [call site] 00127
6 flush_pending [function] [call site] 00128
6 _tr_flush_block [function] [call site] 00129
6 flush_pending [function] [call site] 00130
5 _tr_align [function] [call site] 00131
6 bi_flush [function] [call site] 00132
5 _tr_stored_block [function] [call site] 00133
5 flush_pending [function] [call site] 00134
5 putShortMSB [function] [call site] 00135
5 putShortMSB [function] [call site] 00136
5 flush_pending [function] [call site] 00137
4 gz_error [function] [call site] 00138
3 gz_comp [function] [call site] 00139
2 gz_write [function] [call site] 00140
3 gz_init [function] [call site] 00141
3 gz_zero [function] [call site] 00142
3 gz_comp [function] [call site] 00143
3 gz_comp [function] [call site] 00144
3 gz_comp [function] [call site] 00145
1 gzputs [function] [call site] 00146
2 strlen [call site] 00147
2 gz_error [function] [call site] 00148
2 gz_write [function] [call site] 00149
1 gzfwrite [function] [call site] 00150
2 gz_error [function] [call site] 00151
2 gz_write [function] [call site] 00152
1 gzread [function] [call site] 00153
2 gz_error [function] [call site] 00154
2 gz_read [function] [call site] 00155
3 gz_skip [function] [call site] 00156
4 gz_fetch [function] [call site] 00157
5 gz_look [function] [call site] 00158
6 gz_error [function] [call site] 00159
6 inflateInit2_ [function] [call site] 00160
7 inflateReset2 [function] [call site] 00161
8 inflateStateCheck [function] [call site] 00162
8 inflateReset [function] [call site] 00163
9 inflateStateCheck [function] [call site] 00164
9 inflateResetKeep [function] [call site] 00165
10 inflateStateCheck [function] [call site] 00166
6 gz_error [function] [call site] 00167
6 gz_avail [function] [call site] 00168
7 gz_load [function] [call site] 00169
8 read [call site] 00170
8 __errno_location [call site] 00171
8 strerror [call site] 00172
6 inflateReset [function] [call site] 00173
5 gz_load [function] [call site] 00174
5 gz_decomp [function] [call site] 00175
6 gz_avail [function] [call site] 00176
6 gz_error [function] [call site] 00177
6 inflate [function] [call site] 00178
7 inflateStateCheck [function] [call site] 00179
7 crc32 [function] [call site] 00180
7 crc32 [function] [call site] 00181
7 adler32 [function] [call site] 00182
7 crc32 [function] [call site] 00183
7 crc32 [function] [call site] 00184
7 crc32 [function] [call site] 00185
7 crc32 [function] [call site] 00186
7 crc32 [function] [call site] 00187
7 crc32 [function] [call site] 00188
7 crc32 [function] [call site] 00189
7 crc32 [function] [call site] 00190
7 adler32 [function] [call site] 00191
7 fixedtables [function] [call site] 00192
7 inflate_table [function] [call site] 00193
7 inflate_table [function] [call site] 00194
7 inflate_table [function] [call site] 00195
7 inflate_fast [function] [call site] 00196
7 crc32 [function] [call site] 00197
7 adler32 [function] [call site] 00198
7 updatewindow [function] [call site] 00199
7 crc32 [function] [call site] 00200
7 adler32 [function] [call site] 00201
6 gz_error [function] [call site] 00202
6 gz_error [function] [call site] 00203
6 gz_error [function] [call site] 00204
3 gz_fetch [function] [call site] 00205
3 gz_load [function] [call site] 00206
3 gz_decomp [function] [call site] 00207
1 gzseek [function] [call site] 00208
2 gzseek64 [function] [call site] 00209
3 lseek64 [call site] 00210
3 gz_error [function] [call site] 00211
3 gzrewind [function] [call site] 00212
4 lseek64 [call site] 00213
4 gz_reset [function] [call site] 00214
1 gztell [function] [call site] 00215
2 gztell64 [function] [call site] 00216
1 gzgetc [function] [call site] 00217
2 gz_read [function] [call site] 00218
1 gzungetc [function] [call site] 00219
2 gz_look [function] [call site] 00220
2 gz_skip [function] [call site] 00221
2 gz_error [function] [call site] 00222
1 gzgets [function] [call site] 00223
2 gz_skip [function] [call site] 00224
2 gz_fetch [function] [call site] 00225
2 memchr [call site] 00226
1 gzsetparams [function] [call site] 00227
2 gz_zero [function] [call site] 00228
2 gz_comp [function] [call site] 00229
2 deflateParams [function] [call site] 00230
3 deflateStateCheck [function] [call site] 00231
3 deflate [function] [call site] 00232
3 slide_hash [function] [call site] 00233
1 gzflush [function] [call site] 00234
2 gz_zero [function] [call site] 00235
2 gz_comp [function] [call site] 00236
1 gzprintf [function] [call site] 00237
2 gzvprintf [function] [call site] 00238
3 gz_init [function] [call site] 00239
3 gz_zero [function] [call site] 00240
3 vsnprintf [call site] 00241
3 gz_comp [function] [call site] 00242
1 gzprintf [function] [call site] 00243
1 gzprintf [function] [call site] 00244
1 gzprintf [function] [call site] 00245
1 gzprintf [function] [call site] 00246
1 gzoffset [function] [call site] 00247
2 gzoffset64 [function] [call site] 00248
3 lseek64 [call site] 00249
1 gzrewind [function] [call site] 00250
1 gzeof [function] [call site] 00251
1 gzdirect [function] [call site] 00252
2 gz_look [function] [call site] 00253
1 gzbuffer [function] [call site] 00254
1 gzerror [function] [call site] 00255
1 gzclearerr [function] [call site] 00256
2 gz_error [function] [call site] 00257
1 gzclose [function] [call site] 00258
2 gzclose_r [function] [call site] 00259
3 inflateEnd [function] [call site] 00260
4 inflateStateCheck [function] [call site] 00261
3 gz_error [function] [call site] 00262
3 close [call site] 00263
2 gzclose_w [function] [call site] 00264
3 gz_zero [function] [call site] 00265
3 gz_comp [function] [call site] 00266
3 deflateEnd [function] [call site] 00267
3 gz_error [function] [call site] 00268
3 close [call site] 00269
1 remove [call site] 00270
1 gzclose [function] [call site] 00271
1 remove [call site] 00272