Hardened implementation(fix some seg faults, out-of-bound access) found by fuzzer.

2018-05-31 15:49:56 +09:00
parent 5113cd65cf
commit 0c8db8ee23
83 changed files with 512 additions and 5 deletions
--- a/tests/afl/README.txt
+++ b/tests/afl/README.txt
@@ -0,0 +1,17 @@
+Command line used to find this crash:
+
+afl-fuzz -i in -o out ./test_loader @@
+
+If you can't reproduce a bug outside of afl-fuzz, be sure to set the same
+memory limit. The limit used for this fuzzing session was 50.0 MB.
+
+Need a tool to minimize test cases before investigating the crashes or sending
+them to a vendor? Check out the afl-tmin that comes with the fuzzer!
+
+Found any cool bugs in open-source tools using afl-fuzz? If yes, please drop
+me a mail at <lcamtuf@coredump.cx> once the issues are fixed - I'd love to
+add your finds to the gallery at:
+
+  http://lcamtuf.coredump.cx/afl/
+
+Thanks :-)
--- a/tests/afl/id:000000,sig:11,src:000000,op:havoc,rep:128
+++ b/tests/afl/id:000000,sig:11,src:000000,op:havoc,rep:128
--- a/tests/afl/id:000001,sig:11,src:000000,op:havoc,rep:64
+++ b/tests/afl/id:000001,sig:11,src:000000,op:havoc,rep:64
--- a/tests/afl/id:000002,sig:11,src:000000,op:havoc,rep:4
+++ b/tests/afl/id:000002,sig:11,src:000000,op:havoc,rep:4
@@ -0,0 +1,33 @@
+# cube.obj
+#
+ 
+} cube
+ 
+v  d.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1/6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+f  1//4  5//4 55555555555555 6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000003,sig:11,src:000000,op:havoc,rep:4
+++ b/tests/afl/id:000003,sig:11,src:000000,op:havoc,rep:4
@@ -0,0 +1,35 @@
+# cube.obj
+#
+ 4 
+f  1//4  6//4  2//4 
+f  
+g cube
+ 
+v  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+n  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  //5 
+f  5//5  8//5  6//5 
+f  1//4  5//4  6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000004,sig:11,src:000000,op:havoc,rep:2
+++ b/tests/afl/id:000004,sig:11,src:000000,op:havoc,rep:2
@@ -0,0 +1,34 @@
+# cube.ob7//3 
+f  3//3  4//3  8//3j
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1˙0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+f  1//4  5//4  6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000005,sig:11,src:000000,op:havoc,rep:4
+++ b/tests/afl/id:000005,sig:11,src:000000,op:havoc,rep:4
--- a/tests/afl/id:000006,sig:11,src:000000,op:havoc,rep:128
+++ b/tests/afl/id:000006,sig:11,src:000000,op:havoc,rep:128
--- a/tests/afl/id:000007,sig:11,src:000000,op:havoc,rep:32
+++ b/tests/afl/id:000007,sig:11,src:000000,op:havoc,rep:32
--- a/tests/afl/id:000008,sig:11,src:000000,op:havoc,rep:8
+++ b/tests/afl/id:000008,sig:11,src:000000,op:havoc,rep:8
--- a/tests/afl/id:000009,sig:11,src:000000,op:havoc,rep:128
+++ b/tests/afl/id:000009,sig:11,src:000000,op:havoc,rep:128
--- a/tests/afl/id:000010,sig:11,src:000000,op:havoc,rep:16
+++ b/tests/afl/id:000010,sig:11,src:000000,op:havoc,rep:16
@@ -0,0 +1,29 @@
+# cube.obj
+#
+ 
+g  
+v  0.0  0.0  0.0
+v  0.0  0.0  1,0
+T  0.0  1.0  0.0
+v  4.0  1c0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0 /////////////////////////////.0  0.0 -1.0
+vn  0.0  1.0  0.0
+v˙  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8K/31
+f/6  4//6  3//6 
+f  1//6  2  5//5  7//5  8//5 
+f  5//5  8//5  6//5"
+f  1//4  5//4  2222222222224f  1//2 7//2  5  6//4  2//4 
+f 3//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000011,sig:11,src:000000,op:havoc,rep:8
+++ b/tests/afl/id:000011,sig:11,src:000000,op:havoc,rep:8
@@ -0,0 +1,33 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0<>0  0.0 -1.0
+vn  0.0  1.0  00
+vn  0.0 -Ę.0  0.0
+vn  1.  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  40000000000000000vvvvvvvvvvvvvvvv00000080000000//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+f  1//4  56//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000012,sig:06,src:000000,op:havoc,rep:32
+++ b/tests/afl/id:000012,sig:06,src:000000,op:havoc,rep:32
--- a/tests/afl/id:000013,sig:11,src:000093,op:havoc,rep:4
+++ b/tests/afl/id:000013,sig:11,src:000093,op:havoc,rep:4
@@ -0,0 +1,32 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0 0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3 08//3 
+f  5//5  7//5  8//5!Šf  5//5  8//5  6//5 
+f  1//4  5//4  65555//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000014,sig:11,src:000093,op:havoc,rep:64
+++ b/tests/afl/id:000014,sig:11,src:000093,op:havoc,rep:64
--- a/tests/afl/id:000015,sig:11,src:000093,op:havoc,rep:2
+++ b/tests/afl/id:000015,sig:11,src:000093,op:havoc,rep:2
@@ -0,0 +1,33 @@
+# cube.7//3 
+f  3//3  4//3  8//3 
+obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v .0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5!Šf  5//5  8//5  6//5 
+f  1//4  5//4  6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000016,sig:11,src:000093,op:havoc,rep:8
+++ b/tests/afl/id:000016,sig:11,src:000093,op:havoc,rep:8
--- a/tests/afl/id:000017,sig:11,src:000093,op:havoc,rep:4
+++ b/tests/afl/id:000017,sig:11,src:000093,op:havoc,rep:4
@@ -0,0 +1,30 @@
+# cube.obj
+#
+ 
+g cuvP 0.0  0.0  .0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5!Šf  5//5  8//5  6//5 
+f  1//4  5//4  6//4 
+f  1//4  6666666666666666//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000018,sig:06,src:000141,op:flip1,pos:449
+++ b/tests/afl/id:000018,sig:06,src:000141,op:flip1,pos:449
@@ -0,0 +1,33 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+t  1//4  5/-4  6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000019,sig:06,src:000141,op:arith8,pos:446,val:+13
+++ b/tests/afl/id:000019,sig:06,src:000141,op:arith8,pos:446,val:+13
@@ -0,0 +1,33 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0 -1.0  0.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+t  1//4 -5//4  6//4 
+f  1//4  6//4  2//4 
+f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000020,sig:06,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000020,sig:06,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000021,sig:06,src:000141,op:havoc,rep:4
+++ b/tests/afl/id:000021,sig:06,src:000141,op:havoc,rep:4
@@ -0,0 +1,35 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v  1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  !.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0  0.0
+vn  0.0   8//5  6//5 
+t  1//4  -1.0  0.0
+vn  1.0  0.0  0.0
+f  3//3  8//3  7//3 
+f  3//3  
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  8//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+t  1//4  5//4  6//4 
+f  1//4  6//4  2//4 f  2//1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000022,sig:11,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000022,sig:11,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000023,sig:11,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000023,sig:11,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000024,sig:11,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000024,sig:11,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000025,sig:11,src:000141,op:havoc,rep:4
+++ b/tests/afl/id:000025,sig:11,src:000141,op:havoc,rep:4
@@ -0,0 +1,32 @@
+# cube.obj
+#
+ 
+g cube
+ 
+v  0.0  0.0  0.0
+v  0.0  0.0  1.0
+v  0.0  1.0  0.0
+v  0.0  1.0  1.0
+v Ď1.0  0.0  0.0
+v  1.0  0.0  1.0
+v  1.0  1.0  0.0
+v  1.0  1.0  1.0
+
+vn  0.0  0.0  1.0
+vn  0.0  0.0 -1.0
+vn  0.0  1.0
+vn  1.0  0.0  0.0
+vn -1.0  0.0  0.0
+ 
+f  1//2  7//2  5//2
+f  1//2  3//2  7//2 
+f  1//6  4//6  3//6 
+f  1//6  2//6  4//6 
+f  3//3  8//3  7//3 
+f  3//3  4//3  811111//3 
+f  5//5  7//5  8//5 
+f  5//5  8//5  6//5 
+t  1//4  5//4  6//4 
+f  1//4  6//4  2//4 
+f  2B/1  6//1  8//1 
+f  2//1  8//1  4//1 
--- a/tests/afl/id:000026,sig:11,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000026,sig:11,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000027,sig:11,src:000141,op:havoc,rep:128
+++ b/tests/afl/id:000027,sig:11,src:000141,op:havoc,rep:128
--- a/tests/afl/id:000028,sig:06,src:000253,op:havoc,rep:32
+++ b/tests/afl/id:000028,sig:06,src:000253,op:havoc,rep:32
--- a/tests/afl/id:000029,sig:11,src:000263,op:havoc,rep:64
+++ b/tests/afl/id:000029,sig:11,src:000263,op:havoc,rep:64
--- a/tests/afl/id:000030,sig:11,src:000263,op:havoc,rep:64
+++ b/tests/afl/id:000030,sig:11,src:000263,op:havoc,rep:64
--- a/tests/afl/id:000031,sig:11,src:000263,op:havoc,rep:32
+++ b/tests/afl/id:000031,sig:11,src:000263,op:havoc,rep:32
--- a/tests/afl/id:000032,sig:11,src:000263,op:havoc,rep:32
+++ b/tests/afl/id:000032,sig:11,src:000263,op:havoc,rep:32
--- a/tests/afl/id:000033,sig:06,src:000266,op:havoc,rep:32
+++ b/tests/afl/id:000033,sig:06,src:000266,op:havoc,rep:32
--- a/tests/afl/id:000034,sig:06,src:000266,op:havoc,rep:32
+++ b/tests/afl/id:000034,sig:06,src:000266,op:havoc,rep:32
--- a/tests/afl/id:000035,sig:11,src:000271,op:havoc,rep:16
+++ b/tests/afl/id:000035,sig:11,src:000271,op:havoc,rep:16
--- a/tests/afl/id:000036,sig:11,src:000271,op:havoc,rep:32
+++ b/tests/afl/id:000036,sig:11,src:000271,op:havoc,rep:32
--- a/tests/afl/id:000037,sig:11,src:000271,op:havoc,rep:8
+++ b/tests/afl/id:000037,sig:11,src:000271,op:havoc,rep:8
--- a/tests/afl/id:000038,sig:11,src:000271,op:havoc,rep:32
+++ b/tests/afl/id:000038,sig:11,src:000271,op:havoc,rep:32
--- a/tests/afl/id:000039,sig:11,src:000271,op:havoc,rep:8
+++ b/tests/afl/id:000039,sig:11,src:000271,op:havoc,rep:8
--- a/tests/afl/id:000040,sig:11,src:000271,op:havoc,rep:64
+++ b/tests/afl/id:000040,sig:11,src:000271,op:havoc,rep:64
--- a/tests/afl/id:000041,sig:11,src:000271,op:havoc,rep:32
+++ b/tests/afl/id:000041,sig:11,src:000271,op:havoc,rep:32
--- a/tests/afl/id:000042,sig:11,src:000271,op:havoc,rep:16
+++ b/tests/afl/id:000042,sig:11,src:000271,op:havoc,rep:16
--- a/tests/afl/id:000043,sig:11,src:000308,op:havoc,rep:32
+++ b/tests/afl/id:000043,sig:11,src:000308,op:havoc,rep:32
--- a/tests/afl/id:000044,sig:11,src:000308,op:havoc,rep:16
+++ b/tests/afl/id:000044,sig:11,src:000308,op:havoc,rep:16
--- a/tests/afl/id:000045,sig:06,src:000352,op:flip1,pos:334
+++ b/tests/afl/id:000045,sig:06,src:000352,op:flip1,pos:334
--- a/tests/afl/id:000046,sig:11,src:000352,op:flip2,pos:299
+++ b/tests/afl/id:000046,sig:11,src:000352,op:flip2,pos:299
--- a/tests/afl/id:000047,sig:06,src:000352,op:havoc,rep:16
+++ b/tests/afl/id:000047,sig:06,src:000352,op:havoc,rep:16
--- a/tests/afl/id:000048,sig:11,src:000352,op:havoc,rep:4
+++ b/tests/afl/id:000048,sig:11,src:000352,op:havoc,rep:4
--- a/tests/afl/id:000049,sig:11,src:000352,op:havoc,rep:16
+++ b/tests/afl/id:000049,sig:11,src:000352,op:havoc,rep:16
--- a/tests/afl/id:000050,sig:11,src:000352,op:havoc,rep:8
+++ b/tests/afl/id:000050,sig:11,src:000352,op:havoc,rep:8
--- a/tests/afl/id:000051,sig:11,src:000352,op:havoc,rep:64
+++ b/tests/afl/id:000051,sig:11,src:000352,op:havoc,rep:64
--- a/tests/afl/id:000052,sig:11,src:000352,op:havoc,rep:16
+++ b/tests/afl/id:000052,sig:11,src:000352,op:havoc,rep:16
--- a/tests/afl/id:000053,sig:11,src:000352,op:havoc,rep:16
+++ b/tests/afl/id:000053,sig:11,src:000352,op:havoc,rep:16
--- a/tests/afl/id:000054,sig:06,src:000352,op:havoc,rep:64
+++ b/tests/afl/id:000054,sig:06,src:000352,op:havoc,rep:64
--- a/tests/afl/id:000055,sig:11,src:000352,op:havoc,rep:32
+++ b/tests/afl/id:000055,sig:11,src:000352,op:havoc,rep:32
--- a/tests/afl/id:000056,sig:06,src:000352,op:havoc,rep:64
+++ b/tests/afl/id:000056,sig:06,src:000352,op:havoc,rep:64
--- a/tests/afl/id:000057,sig:11,src:000382,op:havoc,rep:32
+++ b/tests/afl/id:000057,sig:11,src:000382,op:havoc,rep:32
--- a/tests/afl/id:000058,sig:11,src:000382,op:havoc,rep:32
+++ b/tests/afl/id:000058,sig:11,src:000382,op:havoc,rep:32
--- a/tests/afl/id:000059,sig:06,src:000406,op:havoc,rep:8
+++ b/tests/afl/id:000059,sig:06,src:000406,op:havoc,rep:8
--- a/tests/afl/id:000060,sig:11,src:000408,op:havoc,rep:32
+++ b/tests/afl/id:000060,sig:11,src:000408,op:havoc,rep:32
--- a/tests/afl/id:000061,sig:11,src:000449,op:havoc,rep:64
+++ b/tests/afl/id:000061,sig:11,src:000449,op:havoc,rep:64
--- a/tests/afl/id:000062,sig:06,src:000465,op:havoc,rep:16
+++ b/tests/afl/id:000062,sig:06,src:000465,op:havoc,rep:16
--- a/tests/afl/id:000063,sig:06,src:000465,op:havoc,rep:64
+++ b/tests/afl/id:000063,sig:06,src:000465,op:havoc,rep:64
--- a/tests/afl/id:000064,sig:06,src:000478,op:havoc,rep:64
+++ b/tests/afl/id:000064,sig:06,src:000478,op:havoc,rep:64
--- a/tests/afl/id:000065,sig:06,src:000478,op:havoc,rep:32
+++ b/tests/afl/id:000065,sig:06,src:000478,op:havoc,rep:32
--- a/tests/afl/id:000066,sig:11,src:000515,op:havoc,rep:4
+++ b/tests/afl/id:000066,sig:11,src:000515,op:havoc,rep:4
--- a/tests/afl/id:000067,sig:11,src:000518,op:havoc,rep:8
+++ b/tests/afl/id:000067,sig:11,src:000518,op:havoc,rep:8
--- a/tests/afl/id:000068,sig:06,src:000532,op:havoc,rep:8
+++ b/tests/afl/id:000068,sig:06,src:000532,op:havoc,rep:8
--- a/tests/afl/id:000069,sig:06,src:000532,op:havoc,rep:64
+++ b/tests/afl/id:000069,sig:06,src:000532,op:havoc,rep:64
--- a/tests/afl/id:000070,sig:06,src:000557,op:havoc,rep:16
+++ b/tests/afl/id:000070,sig:06,src:000557,op:havoc,rep:16
--- a/tests/afl/id:000071,sig:11,src:000570,op:havoc,rep:32
+++ b/tests/afl/id:000071,sig:11,src:000570,op:havoc,rep:32
--- a/tests/afl/id:000072,sig:06,src:000584,op:havoc,rep:16
+++ b/tests/afl/id:000072,sig:06,src:000584,op:havoc,rep:16
--- a/tests/afl/id:000073,sig:06,src:000584,op:havoc,rep:32
+++ b/tests/afl/id:000073,sig:06,src:000584,op:havoc,rep:32
--- a/tests/afl/id:000074,sig:06,src:000584,op:havoc,rep:32
+++ b/tests/afl/id:000074,sig:06,src:000584,op:havoc,rep:32
--- a/tests/afl/id:000075,sig:06,src:000584,op:havoc,rep:2
+++ b/tests/afl/id:000075,sig:06,src:000584,op:havoc,rep:2
--- a/tests/afl/id:000076,sig:06,src:000602,op:ext_AO,pos:117
+++ b/tests/afl/id:000076,sig:06,src:000602,op:ext_AO,pos:117
--- a/tests/afl/id:000077,sig:06,src:000602,op:havoc,rep:64
+++ b/tests/afl/id:000077,sig:06,src:000602,op:havoc,rep:64
--- a/tests/afl/id:000078,sig:06,src:000602,op:havoc,rep:16
+++ b/tests/afl/id:000078,sig:06,src:000602,op:havoc,rep:16
--- a/tests/tester.cc
+++ b/tests/tester.cc
@@ -751,6 +751,31 @@ TEST_CASE("smoothing-group", "[Issue162]") {

 }

+// Fuzzer test.
+// Just check if it does not crash.
+
+TEST_CASE("afl000000", "[AFL]") {
+  tinyobj::attrib_t attrib;
+  std::vector<tinyobj::shape_t> shapes;
+  std::vector<tinyobj::material_t> materials;
+
+  std::string err;
+  bool ret = tinyobj::LoadObj(&attrib, &shapes, &materials, &err, "./afl/id:000000,sig:11,src:000000,op:havoc,rep:128", gMtlBasePath);
+
+  REQUIRE(true == ret);
+}
+
+TEST_CASE("afl000001", "[AFL]") {
+  tinyobj::attrib_t attrib;
+  std::vector<tinyobj::shape_t> shapes;
+  std::vector<tinyobj::material_t> materials;
+
+  std::string err;
+  bool ret = tinyobj::LoadObj(&attrib, &shapes, &materials, &err, "./afl/id:000001,sig:11,src:000000,op:havoc,rep:64", gMtlBasePath);
+
+  REQUIRE(true == ret);
+}
+
 #if 0
 int
 main(