starting build "bf9862cf-c968-4dd5-bb74-6748260203ad" FETCHSOURCE BUILD Starting Step #0 Step #0: Already have image (with digest): gcr.io/cloud-builders/git Step #0: Cloning into 'oss-fuzz'... Finished Step #0 Starting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0" Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Already have image (with digest): gcr.io/cloud-builders/docker Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Sending build context to Docker daemon 5.12kB Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step 1/5 : FROM gcr.io/oss-fuzz-base/base-builder Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": latest: Pulling from oss-fuzz-base/base-builder Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": b549f31133a9: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 008b78875541: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 928200867a41: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 27b7a26b85d4: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a5e1771809e3: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 70f394e24d88: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 97282320daea: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 084e0bb7df2e: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 5c5100cceda4: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 821b83b191f6: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 97282320daea: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 084e0bb7df2e: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 5c5100cceda4: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 821b83b191f6: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d81097e72e7d: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 803044b7ee78: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d81097e72e7d: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 691ebee164a5: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 60571253bd26: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 691ebee164a5: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 803044b7ee78: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f00f7198f32e: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 60571253bd26: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 7053b8449387: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": aafc0234d757: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f00f7198f32e: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": cec7ed9d0583: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 7053b8449387: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6eefca9e564c: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c928f0812557: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": aafc0234d757: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": cec7ed9d0583: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518b6ac13880: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6eefca9e564c: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518cb7ba5e44: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 285afb20e2bf: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518cb7ba5e44: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a757778216ab: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518b6ac13880: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 285afb20e2bf: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6391c2b1d795: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 842cf51c9a6b: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 2fe8e3b03c01: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 49d5be5f779c: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a757778216ab: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6391c2b1d795: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 842cf51c9a6b: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": fb0270479a6d: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c1e518b6d49d: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d6363374623a: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c54e66c7917f: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 17a7c59b458e: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 8d71bc11c21d: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ef81f2346731: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 49d5be5f779c: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d6363374623a: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c1e518b6d49d: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": fb0270479a6d: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f6feba9aabba: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 35e8dab17623: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 17a7c59b458e: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c54e66c7917f: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d91eb602c335: Pulling fs layer Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d91eb602c335: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 35e8dab17623: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f6feba9aabba: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ef81f2346731: Waiting Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a5e1771809e3: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a5e1771809e3: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 928200867a41: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 97282320daea: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 97282320daea: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 084e0bb7df2e: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 084e0bb7df2e: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": b549f31133a9: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": b549f31133a9: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 27b7a26b85d4: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 27b7a26b85d4: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d81097e72e7d: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d81097e72e7d: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 803044b7ee78: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 803044b7ee78: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 60571253bd26: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 691ebee164a5: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 691ebee164a5: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 7053b8449387: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f00f7198f32e: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f00f7198f32e: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 008b78875541: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 008b78875541: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 821b83b191f6: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 821b83b191f6: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": cec7ed9d0583: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": cec7ed9d0583: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6eefca9e564c: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6eefca9e564c: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c928f0812557: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c928f0812557: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": aafc0234d757: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": aafc0234d757: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518b6ac13880: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518b6ac13880: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a757778216ab: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a757778216ab: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518cb7ba5e44: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 285afb20e2bf: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 285afb20e2bf: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6391c2b1d795: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6391c2b1d795: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 842cf51c9a6b: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 2fe8e3b03c01: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 49d5be5f779c: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 49d5be5f779c: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": b549f31133a9: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d6363374623a: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d6363374623a: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": fb0270479a6d: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": fb0270479a6d: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c54e66c7917f: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c54e66c7917f: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c1e518b6d49d: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c1e518b6d49d: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 8d71bc11c21d: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 8d71bc11c21d: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 17a7c59b458e: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ef81f2346731: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ef81f2346731: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f6feba9aabba: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f6feba9aabba: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 5c5100cceda4: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 5c5100cceda4: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 35e8dab17623: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 35e8dab17623: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d91eb602c335: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d91eb602c335: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 70f394e24d88: Verifying Checksum Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 70f394e24d88: Download complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 008b78875541: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 928200867a41: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 27b7a26b85d4: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a5e1771809e3: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 70f394e24d88: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 97282320daea: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 084e0bb7df2e: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 5c5100cceda4: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 821b83b191f6: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d81097e72e7d: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 803044b7ee78: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 691ebee164a5: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 60571253bd26: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f00f7198f32e: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 7053b8449387: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": aafc0234d757: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": cec7ed9d0583: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6eefca9e564c: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c928f0812557: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518b6ac13880: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 518cb7ba5e44: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 285afb20e2bf: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": a757778216ab: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 6391c2b1d795: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 842cf51c9a6b: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 2fe8e3b03c01: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 49d5be5f779c: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": fb0270479a6d: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c1e518b6d49d: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d6363374623a: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": c54e66c7917f: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 17a7c59b458e: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 8d71bc11c21d: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ef81f2346731: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": f6feba9aabba: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": 35e8dab17623: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": d91eb602c335: Pull complete Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Digest: sha256:86a0102fd71cec2bc5bb42657faa089c6ab8303342d14a22ef002ead16863b53 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Status: Downloaded newer image for gcr.io/oss-fuzz-base/base-builder:latest Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> 4ab177ba7db0 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step 2/5 : RUN pip3 install meson ninja Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> Running in bc67e3418038 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Collecting meson Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Downloading meson-1.10.0-py3-none-any.whl.metadata (1.8 kB) Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Collecting ninja Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Downloading ninja-1.13.0-py3-none-manylinux2014_x86_64.manylinux_2_17_x86_64.whl.metadata (5.1 kB) Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Downloading meson-1.10.0-py3-none-any.whl (1.1 MB) Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 1.1/1.1 MB 23.9 MB/s 0:00:00 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Downloading ninja-1.13.0-py3-none-manylinux2014_x86_64.manylinux_2_17_x86_64.whl (180 kB) Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Installing collected packages: ninja, meson Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Successfully installed meson-1.10.0 ninja-1.13.0 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": WARNING: Running pip as the 'root' user can result in broken permissions and conflicting behaviour with the system package manager, possibly rendering your system unusable. It is recommended to use a virtual environment instead: https://pip.pypa.io/warnings/venv. Use the --root-user-action option if you know what you are doing and want to suppress this warning. Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Removing intermediate container bc67e3418038 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> edceaa2e687e Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step 3/5 : RUN git clone --depth 1 https://github.com/syoyo/tinygltf.git Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> Running in 201063476ba7 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Cloning into 'tinygltf'... Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Removing intermediate container 201063476ba7 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> 8b76d9d3342d Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step 4/5 : WORKDIR $SRC/tinygltf Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> Running in d0b1c3c3d368 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Removing intermediate container d0b1c3c3d368 Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> a77a1b3d33fc Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Step 5/5 : COPY build.sh $SRC/ Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": ---> 55c30cc897fc Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Successfully built 55c30cc897fc Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Successfully tagged gcr.io/oss-fuzz/tinygltf:latest Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0": Successfully tagged us-central1-docker.pkg.dev/oss-fuzz/unsafe/tinygltf:latest Finished Step #1 - "build-2ef495db-97b5-435d-89b7-74b38723e1e0" Starting Step #2 - "srcmap" Step #2 - "srcmap": Already have image: gcr.io/oss-fuzz/tinygltf Step #2 - "srcmap": ++ tempfile Step #2 - "srcmap": + SRCMAP=/tmp/fileDrNdUO Step #2 - "srcmap": + echo '{}' Step #2 - "srcmap": + PATHS_TO_SCAN=/src Step #2 - "srcmap": + [[ c++ == \g\o ]] Step #2 - "srcmap": ++ find /src -name .git -type d Step #2 - "srcmap": + for DOT_GIT_DIR in $(find $PATHS_TO_SCAN -name ".git" -type d) Step #2 - "srcmap": ++ dirname /src/tinygltf/.git Step #2 - "srcmap": + GIT_DIR=/src/tinygltf Step #2 - "srcmap": + cd /src/tinygltf Step #2 - "srcmap": ++ git config --get remote.origin.url Step #2 - "srcmap": + GIT_URL=https://github.com/syoyo/tinygltf.git Step #2 - "srcmap": ++ git rev-parse HEAD Step #2 - "srcmap": + GIT_REV=81bd50c1062fdb956e878efa2a9234b2b9ec91ec Step #2 - "srcmap": + jq_inplace /tmp/fileDrNdUO '."/src/tinygltf" = { type: "git", url: "https://github.com/syoyo/tinygltf.git", rev: "81bd50c1062fdb956e878efa2a9234b2b9ec91ec" }' Step #2 - "srcmap": ++ tempfile Step #2 - "srcmap": + F=/tmp/fileGySUza Step #2 - "srcmap": + cat /tmp/fileDrNdUO Step #2 - "srcmap": + jq '."/src/tinygltf" = { type: "git", url: "https://github.com/syoyo/tinygltf.git", rev: "81bd50c1062fdb956e878efa2a9234b2b9ec91ec" }' Step #2 - "srcmap": + mv /tmp/fileGySUza /tmp/fileDrNdUO Step #2 - "srcmap": ++ find /src -name .svn -type d Step #2 - "srcmap": ++ find /src -name .hg -type d Step #2 - "srcmap": + '[' '' '!=' '' ']' Step #2 - "srcmap": + cat /tmp/fileDrNdUO Step #2 - "srcmap": + rm /tmp/fileDrNdUO Step #2 - "srcmap": { Step #2 - "srcmap": "/src/tinygltf": { Step #2 - "srcmap": "type": "git", Step #2 - "srcmap": "url": "https://github.com/syoyo/tinygltf.git", Step #2 - "srcmap": "rev": "81bd50c1062fdb956e878efa2a9234b2b9ec91ec" Step #2 - "srcmap": } Step #2 - "srcmap": } Finished Step #2 - "srcmap" Starting Step #3 - "compile-libfuzzer-coverage-x86_64" Step #3 - "compile-libfuzzer-coverage-x86_64": Already have image (with digest): gcr.io/cloud-builders/docker Step #3 - "compile-libfuzzer-coverage-x86_64": --------------------------------------------------------------- Step #3 - "compile-libfuzzer-coverage-x86_64": vm.mmap_rnd_bits = 28 Step #3 - "compile-libfuzzer-coverage-x86_64": Compiling libFuzzer to /usr/lib/libFuzzingEngine.a... done. Step #3 - "compile-libfuzzer-coverage-x86_64": --------------------------------------------------------------- Step #3 - "compile-libfuzzer-coverage-x86_64": CC=clang Step #3 - "compile-libfuzzer-coverage-x86_64": CXX=clang++ Step #3 - "compile-libfuzzer-coverage-x86_64": CFLAGS=-O1 -fno-omit-frame-pointer -gline-tables-only -Wno-error=incompatible-function-pointer-types -Wno-error=int-conversion -Wno-error=deprecated-declarations -Wno-error=implicit-function-declaration -Wno-error=implicit-int -Wno-error=unknown-warning-option -Wno-error=vla-cxx-extension -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -fprofile-instr-generate -fcoverage-mapping -pthread -Wl,--no-as-needed -Wl,-ldl -Wl,-lm -Wno-unused-command-line-argument Step #3 - "compile-libfuzzer-coverage-x86_64": CXXFLAGS=-O1 -fno-omit-frame-pointer -gline-tables-only -Wno-error=incompatible-function-pointer-types -Wno-error=int-conversion -Wno-error=deprecated-declarations -Wno-error=implicit-function-declaration -Wno-error=implicit-int -Wno-error=unknown-warning-option -Wno-error=vla-cxx-extension -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -fprofile-instr-generate -fcoverage-mapping -pthread -Wl,--no-as-needed -Wl,-ldl -Wl,-lm -Wno-unused-command-line-argument -stdlib=libc++ Step #3 - "compile-libfuzzer-coverage-x86_64": RUSTFLAGS=--cfg fuzzing -Cdebuginfo=1 -Cforce-frame-pointers -Cinstrument-coverage -C link-arg=-lc++ Step #3 - "compile-libfuzzer-coverage-x86_64": --------------------------------------------------------------- Step #3 - "compile-libfuzzer-coverage-x86_64": + cd tests/fuzzer/ Step #3 - "compile-libfuzzer-coverage-x86_64": + meson build Step #3 - "compile-libfuzzer-coverage-x86_64": The Meson build system Step #3 - "compile-libfuzzer-coverage-x86_64": Version: 1.10.0 Step #3 - "compile-libfuzzer-coverage-x86_64": Source dir: /src/tinygltf/tests/fuzzer Step #3 - "compile-libfuzzer-coverage-x86_64": Build dir: /src/tinygltf/tests/fuzzer/build Step #3 - "compile-libfuzzer-coverage-x86_64": Build type: native build Step #3 - "compile-libfuzzer-coverage-x86_64": Project name: fuzz_tinygltf Step #3 - "compile-libfuzzer-coverage-x86_64": Project version: undefined Step #3 - "compile-libfuzzer-coverage-x86_64": C++ compiler for the host machine: clang++ (clang 22.0.0 "clang version 22.0.0git (https://github.com/llvm/llvm-project.git cb2f0d0a5f14c183e7182aba0f0e54a518de9e3f)") Step #3 - "compile-libfuzzer-coverage-x86_64": C++ linker for the host machine: clang++ ld.bfd 2.34 Step #3 - "compile-libfuzzer-coverage-x86_64": Host machine cpu family: x86_64 Step #3 - "compile-libfuzzer-coverage-x86_64": Host machine cpu: x86_64 Step #3 - "compile-libfuzzer-coverage-x86_64": Build targets in project: 1 Step #3 - "compile-libfuzzer-coverage-x86_64": Step #3 - "compile-libfuzzer-coverage-x86_64": Found ninja-1.13.0.git.kitware.jobserver-pipe-1 at /usr/local/bin/ninja Step #3 - "compile-libfuzzer-coverage-x86_64": WARNING: Running the setup command as `meson [options]` instead of `meson setup [options]` is ambiguous and deprecated. Step #3 - "compile-libfuzzer-coverage-x86_64": + cd build Step #3 - "compile-libfuzzer-coverage-x86_64": ++ nproc Step #3 - "compile-libfuzzer-coverage-x86_64": + ninja -j32 Step #3 - "compile-libfuzzer-coverage-x86_64": [0/2] Compiling C++ object fuzz_gltf.p/fuzz_gltf.cc.o [1/2] Compiling C++ object fuzz_gltf.p/fuzz_gltf.cc.o Step #3 - "compile-libfuzzer-coverage-x86_64": In file included from ../fuzz_gltf.cc:10: Step #3 - "compile-libfuzzer-coverage-x86_64": In file included from ../../../tiny_gltf.h:1715: Step #3 - "compile-libfuzzer-coverage-x86_64": ../../../json.hpp:26551:35: warning: identifier '_json' preceded by whitespace in a literal operator declaration is deprecated [-Wdeprecated-literal-operator] Step #3 - "compile-libfuzzer-coverage-x86_64": 26551 | inline nlohmann::json operator "" _json(const char* s, std::size_t n) Step #3 - "compile-libfuzzer-coverage-x86_64": |  ~~~~~~~~~~~~^~~~~ Step #3 - "compile-libfuzzer-coverage-x86_64":  |  operator""_json Step #3 - "compile-libfuzzer-coverage-x86_64": ../../../json.hpp:26570:49: warning: identifier '_json_pointer' preceded by whitespace in a literal operator declaration is deprecated [-Wdeprecated-literal-operator] Step #3 - "compile-libfuzzer-coverage-x86_64": 26570 | inline nlohmann::json::json_pointer operator "" _json_pointer(const char* s, std::size_t n) Step #3 - "compile-libfuzzer-coverage-x86_64": |  ~~~~~~~~~~~~^~~~~~~~~~~~~ Step #3 - "compile-libfuzzer-coverage-x86_64":  |  operator""_json_pointer Step #3 - "compile-libfuzzer-coverage-x86_64": 2 warnings generated. Step #3 - "compile-libfuzzer-coverage-x86_64": [1/2] Linking target fuzz_gltf [2/2] Linking target fuzz_gltf Step #3 - "compile-libfuzzer-coverage-x86_64": + cp fuzz_gltf /workspace/out/libfuzzer-coverage-x86_64/ Finished Step #3 - "compile-libfuzzer-coverage-x86_64" Starting Step #4 Step #4: Pulling image: gcr.io/oss-fuzz-base/base-runner Step #4: Using default tag: latest Step #4: latest: Pulling from oss-fuzz-base/base-runner Step #4: b549f31133a9: Already exists Step #4: 008b78875541: Already exists Step #4: 928200867a41: Already exists Step #4: e7cd04c0c651: Pulling fs layer Step #4: 2e730abeb9a2: Pulling fs layer Step #4: 7cb36f62a147: Pulling fs layer Step #4: 5fc815f8f116: Pulling fs layer Step #4: 66351cb039d1: Pulling fs layer Step #4: ee161dad15dd: Pulling fs layer Step #4: df4ad2b82919: Pulling fs layer Step #4: e6f50db343a4: Pulling fs layer Step #4: 1633885ce418: Pulling fs layer Step #4: 8838d43ac745: Pulling fs layer Step #4: 4b8a05eb7225: Pulling fs layer Step #4: 1b081b11f788: Pulling fs layer Step #4: 69d5a41678e3: Pulling fs layer Step #4: c03a704cb7e7: Pulling fs layer Step #4: 0445055a93fc: Pulling fs layer Step #4: b344c7fa3b43: Pulling fs layer Step #4: 107622352030: Pulling fs layer Step #4: 77a39b7d8a1b: Pulling fs layer Step #4: f92d6f2459f0: Pulling fs layer Step #4: b5bafa58a602: Pulling fs layer Step #4: 5ca1715a5de7: Pulling fs layer Step #4: df4ad2b82919: Waiting Step #4: 7b998ee89cc2: Pulling fs layer Step #4: 32c73a5c2cdc: Pulling fs layer Step #4: afe53b633b2b: Pulling fs layer Step #4: e6f50db343a4: Waiting Step #4: 107622352030: Waiting Step #4: 77a39b7d8a1b: Waiting Step #4: 7b998ee89cc2: Waiting Step #4: 32c73a5c2cdc: Waiting Step #4: f92d6f2459f0: Waiting Step #4: b5bafa58a602: Waiting Step #4: afe53b633b2b: Waiting Step #4: 1633885ce418: Waiting Step #4: 5ca1715a5de7: Waiting Step #4: 1b081b11f788: Waiting Step #4: 8838d43ac745: Waiting Step #4: 69d5a41678e3: Waiting Step #4: 0445055a93fc: Waiting Step #4: b344c7fa3b43: Waiting Step #4: c03a704cb7e7: Waiting Step #4: 66351cb039d1: Verifying Checksum Step #4: 66351cb039d1: Download complete Step #4: 7cb36f62a147: Verifying Checksum Step #4: 7cb36f62a147: Download complete Step #4: e7cd04c0c651: Verifying Checksum Step #4: e7cd04c0c651: Download complete Step #4: 2e730abeb9a2: Verifying Checksum Step #4: 2e730abeb9a2: Download complete Step #4: 5fc815f8f116: Verifying Checksum Step #4: 5fc815f8f116: Download complete Step #4: df4ad2b82919: Download complete Step #4: e6f50db343a4: Download complete Step #4: e7cd04c0c651: Pull complete Step #4: 1633885ce418: Download complete Step #4: 1b081b11f788: Verifying Checksum Step #4: 1b081b11f788: Download complete Step #4: 69d5a41678e3: Download complete Step #4: 4b8a05eb7225: Verifying Checksum Step #4: 4b8a05eb7225: Download complete Step #4: 0445055a93fc: Verifying Checksum Step #4: 0445055a93fc: Download complete Step #4: ee161dad15dd: Verifying Checksum Step #4: ee161dad15dd: Download complete Step #4: 2e730abeb9a2: Pull complete Step #4: 107622352030: Verifying Checksum Step #4: 107622352030: Download complete Step #4: 77a39b7d8a1b: Verifying Checksum Step #4: 77a39b7d8a1b: Download complete Step #4: 7cb36f62a147: Pull complete Step #4: 5ca1715a5de7: Download complete Step #4: 8838d43ac745: Download complete Step #4: 5fc815f8f116: Pull complete Step #4: 32c73a5c2cdc: Verifying Checksum Step #4: 32c73a5c2cdc: Download complete Step #4: afe53b633b2b: Verifying Checksum Step #4: afe53b633b2b: Download complete Step #4: 66351cb039d1: Pull complete Step #4: 7b998ee89cc2: Verifying Checksum Step #4: 7b998ee89cc2: Download complete Step #4: f92d6f2459f0: Verifying Checksum Step #4: f92d6f2459f0: Download complete Step #4: c03a704cb7e7: Verifying Checksum Step #4: c03a704cb7e7: Download complete Step #4: b344c7fa3b43: Verifying Checksum Step #4: b344c7fa3b43: Download complete Step #4: ee161dad15dd: Pull complete Step #4: df4ad2b82919: Pull complete Step #4: e6f50db343a4: Pull complete Step #4: 1633885ce418: Pull complete Step #4: 8838d43ac745: Pull complete Step #4: 4b8a05eb7225: Pull complete Step #4: 1b081b11f788: Pull complete Step #4: 69d5a41678e3: Pull complete Step #4: c03a704cb7e7: Pull complete Step #4: 0445055a93fc: Pull complete Step #4: b344c7fa3b43: Pull complete Step #4: 107622352030: Pull complete Step #4: 77a39b7d8a1b: Pull complete Step #4: f92d6f2459f0: Pull complete Step #4: b5bafa58a602: Pull complete Step #4: 5ca1715a5de7: Pull complete Step #4: 7b998ee89cc2: Pull complete Step #4: 32c73a5c2cdc: Pull complete Step #4: afe53b633b2b: Pull complete Step #4: Digest: sha256:a06a1dccaef5db5b29674ec3d533d88af07a0c874ca3bbb7efd1a37f18b38713 Step #4: Status: Downloaded newer image for gcr.io/oss-fuzz-base/base-runner:latest Step #4: gcr.io/oss-fuzz-base/base-runner:latest Finished Step #4 Starting Step #5 Step #5: Already have image (with digest): gcr.io/oss-fuzz-base/base-runner Step #5: Running fuzz_gltf Step #5: Error occured while running fuzz_gltf: Step #5: Cov returncode: 0, grep returncode: 0 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4124964565 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5611ae8ff6b0, 0x5611ae90424b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x5611ae904250,0x5611ae94fc00), Step #5: MERGE-OUTER: 12600 files, 0 in the initial corpus, 0 processed earlier Step #5: MERGE-OUTER: attempt 1 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4125031963 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5572349416b0, 0x55723494624b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x557234946250,0x557234991c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: 12600 total files; 0 processed earlier; will process 12600 files now Step #5: #1 pulse cov: 79 ft: 80 exec/s: 0 rss: 39Mb Step #5: #2 pulse cov: 79 ft: 80 exec/s: 0 rss: 39Mb Step #5: #4 pulse cov: 268 ft: 276 exec/s: 0 rss: 40Mb Step #5: #8 pulse cov: 278 ft: 297 exec/s: 0 rss: 40Mb Step #5: #16 pulse cov: 340 ft: 364 exec/s: 0 rss: 40Mb Step #5: #32 pulse cov: 378 ft: 415 exec/s: 0 rss: 41Mb Step #5: #64 pulse cov: 452 ft: 504 exec/s: 0 rss: 41Mb Step #5: #128 pulse cov: 625 ft: 846 exec/s: 0 rss: 43Mb Step #5: #256 pulse cov: 722 ft: 1018 exec/s: 0 rss: 45Mb Step #5: #512 pulse cov: 849 ft: 1333 exec/s: 0 rss: 49Mb Step #5: #1024 pulse cov: 994 ft: 2043 exec/s: 0 rss: 58Mb Step #5: #2048 pulse cov: 1273 ft: 3819 exec/s: 0 rss: 60Mb Step #5: #4096 pulse cov: 3587 ft: 10896 exec/s: 0 rss: 68Mb Step #5: ==42== ERROR: libFuzzer: out-of-memory (used: 2066Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 2197579199 bytes in 34687 chunks; quarantined: 7678330 bytes in 4222 chunks; 55243 other chunks; total chunks: 94152; showing top 95% (at most 8 unique contexts) Step #5: 964193832 byte(s) (43%) in 1 allocation(s) Step #5: #0 0x557234630ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5572347302dd in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x5572347302dd in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6813:35 Step #5: #3 0x5572346fdc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x5572346fdc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x557234675219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x55723469acec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x55723469acec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x557234782f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x557234782f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x557234782f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x557234782f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x5572347d9637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x5572347d9637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x5572346c5509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x5572346b0889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x5572346fc925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x5572346fc925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x5572346fc925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x55723451257d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x55723451bb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x557234503019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x55723452ecf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f85877d9082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: 964193832 byte(s) (43%) in 1 allocation(s) Step #5: #0 0x557234630ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5572347302aa in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x5572347302aa in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6812:28 Step #5: #3 0x5572346fdc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x5572346fdc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x557234675219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x55723469acec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x55723469acec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x557234782f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x557234782f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x557234782f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x557234782f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x5572347d9637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x5572347d9637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x5572346c5509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x5572346b0889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x5572346fc925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x5572346fc925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x5572346fc925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x55723451257d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x55723451bb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x557234503019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x55723452ecf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f85877d9082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: 241048458 byte(s) (10%) in 1 allocation(s) Step #5: #0 0x557234630ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x557234730315 in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x557234730315 in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6814:32 Step #5: #3 0x5572346fdc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x5572346fdc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x557234675219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x55723469acec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x55723469acec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x557234782f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x557234782f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x557234782f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x557234782f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x5572347d9637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x5572347d9637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x5572347d9637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x5572346c5509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x5572346b0889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x5572346fc925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x5572346fc925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x5572346fc925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x55723451257d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x55723451bb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x557234503019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x55723452ecf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f85877d9082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x52,0x30,0x6c,0x47,0x4f,0x44,0x64,0x68,0x30,0x79,0x41,0x4f,0x63,0x44,0x63,0x50,0x61,0x69,0x79,0x41,0x41,0x4d,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,R0lGODdh0yAOcDcPaiyAAM\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-ef53c8a5f5c14019ab77e61e5dd232e5e4251e92 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCxSMGxHT0RkaDB5QU9jRGNQYWl5QUFNIn1dLCJhc3NldCI6eyJ2ZXJzaW9uIjoiIn19 Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 2 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4129130833 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5586674746b0, 0x55866747924b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x558667479250,0x5586674c4c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/ef53c8a5f5c14019ab77e61e5dd232e5e4251e92' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 5443 processed earlier; will process 7157 files now Step #5: #1 pulse cov: 366 ft: 367 exec/s: 0 rss: 38Mb Step #5: #2 pulse cov: 853 ft: 997 exec/s: 0 rss: 39Mb Step #5: #4 pulse cov: 1126 ft: 1530 exec/s: 0 rss: 40Mb Step #5: #8 pulse cov: 1516 ft: 1999 exec/s: 0 rss: 2337Mb Step #5: #16 pulse cov: 1762 ft: 2574 exec/s: 0 rss: 2337Mb Step #5: #32 pulse cov: 2211 ft: 3360 exec/s: 0 rss: 2337Mb Step #5: ==46== ERROR: libFuzzer: out-of-memory (used: 2337Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 27609525 bytes in 21330 chunks; quarantined: 2350975 bytes in 7089 chunks; 32082 other chunks; total chunks: 60501; showing top 95% (at most 8 unique contexts) Step #5: 24383096 byte(s) (88%) in 11 allocation(s) Step #5: #64 pulse cov: 2471 ft: 4150 exec/s: 64 rss: 2337Mb Step #5: #0 0x558667163ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55866738d253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x558667061cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #3 0x7f3dfd2ad082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--main Step #5: 1048576 byte(s) (3%) in 1 allocation(s) Step #5: #0 0x558667163ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55866738d253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x558667035fdb in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:888:10 Step #5: #3 0x558667061cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #4 0x7f3dfd2ad082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) Step #5: 1008000 byte(s) (3%) in 1 allocation(s) Step #5: #0 0x558667163ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55866738d253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x55866704ca92 in fuzzer::Merger::Parse(std::__Fuzzer::basic_istream>&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:71:9 Step #5: #3 0x55866704e6f2 in ParseOrExit /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:32:8 Step #5: #4 0x55866704e6f2 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:209:5 Step #5: #5 0x558667036019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #6 0x558667061cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #7 0x7f3dfd2ad082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--fuzzer::Merger::Parse(std::__Fuzzer::basic_istream>&, bool) Step #5: 814280 byte(s) (2%) in 12601 allocation(s) Step #5: #0 0x558667163ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55866738d253 in operator new(unsigned long) cxa_noexception.cpp Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x52,0x30,0x6c,0x47,0x4f,0x44,0x64,0x68,0x63,0x61,0x6d,0x4f,0x44,0x79,0x79,0x79,0x79,0x79,0x47,0x35,0x30,0x38,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,R0lGODdhcamODyyyyyG508\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-20d40020c20793200bf1c8c5d100eea0f53f65a3 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCxSMGxHT0RkaGNhbU9EeXl5eXlHNTA4In1dLCJhc3NldCI6eyJ2ZXJzaW9uIjoiIn19 Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 3 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4130179547 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x563588eeb6b0, 0x563588ef024b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x563588ef0250,0x563588f3bc00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/20d40020c20793200bf1c8c5d100eea0f53f65a3' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 5511 processed earlier; will process 7089 files now Step #5: #1 pulse cov: 747 ft: 748 exec/s: 0 rss: 39Mb Step #5: #2 pulse cov: 785 ft: 799 exec/s: 0 rss: 39Mb Step #5: #4 pulse cov: 988 ft: 1177 exec/s: 0 rss: 40Mb Step #5: #8 pulse cov: 1123 ft: 1352 exec/s: 0 rss: 1381Mb Step #5: #16 pulse cov: 1308 ft: 1695 exec/s: 0 rss: 1523Mb Step #5: #32 pulse cov: 1674 ft: 2234 exec/s: 8 rss: 1523Mb Step #5: #64 pulse cov: 1782 ft: 2565 exec/s: 2 rss: 1863Mb Step #5: #128 pulse cov: 2402 ft: 3714 exec/s: 3 rss: 1863Mb Step #5: ==50== ERROR: libFuzzer: out-of-memory (used: 2104Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 179958730 bytes in 22317 chunks; quarantined: 10798775 bytes in 932 chunks; 33358 other chunks; total chunks: 56607; showing top 95% (at most 8 unique contexts) Step #5: 152239164 byte(s) (84%) in 1 allocation(s) Step #5: #0 0x563588bdaed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x563588cc65d6 in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x563588cc65d6 in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x563588cc65d6 in stbi__tga_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:5946:31 Step #5: #4 0x563588ca9aa1 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1182:14 Step #5: #5 0x563588c1f219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x563588c44cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x563588c44cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x563588d2cf20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x563588d2cf20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x563588d2cf20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x563588d2cf20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x563588d83637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x563588d83637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x563588d83637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x563588d83637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x563588c6f509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x563588c5a889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x563588ca6925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x563588ca6925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x563588ca6925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x563588abc57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x563588ac5b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x563588aad019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x563588ad8cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f08061e3082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: 24383096 byte(s) (13%) in 11 allocation(s) Step #5: #0 0x563588bdaed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x563588e04253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x563588ad8cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #3 0x7f08061e3082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--main Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x67,0x69,0x66,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x64,0x41,0x45,0x42,0x42,0x42,0x34,0x43,0x58,0x42,0x43,0x42,0x6b,0x44,0x33,0x42,0x31,0x46,0x66,0x52,0x43,0x42,0x42,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/gif;base64,dAEBBB4CXBCBkD3B1FfRCBB\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-c863f814a3b8d893a1e15d5ec31824edebbb29c6 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvZ2lmO2Jhc2U2NCxkQUVCQkI0Q1hCQ0JrRDNCMUZmUkNCQiJ9XSwiYXNzZXQiOnsidmVyc2lvbiI6IiJ9fQ== Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 4 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4187272145 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5639a17e06b0, 0x5639a17e524b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x5639a17e5250,0x5639a1830c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/c863f814a3b8d893a1e15d5ec31824edebbb29c6' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 5684 processed earlier; will process 6916 files now Step #5: #1 pulse cov: 795 ft: 796 exec/s: 0 rss: 41Mb Step #5: #2 pulse cov: 887 ft: 936 exec/s: 1 rss: 423Mb Step #5: #4 pulse cov: 1045 ft: 1248 exec/s: 1 rss: 423Mb Step #5: #8 pulse cov: 1212 ft: 1499 exec/s: 2 rss: 423Mb Step #5: #16 pulse cov: 1426 ft: 2007 exec/s: 4 rss: 423Mb Step #5: #32 pulse cov: 1781 ft: 2614 exec/s: 2 rss: 553Mb Step #5: #64 pulse cov: 2106 ft: 3460 exec/s: 3 rss: 1544Mb Step #5: #128 pulse cov: 2724 ft: 4876 exec/s: 5 rss: 1544Mb Step #5: #256 pulse cov: 3095 ft: 6798 exec/s: 6 rss: 1782Mb Step #5: ==54== ERROR: libFuzzer: out-of-memory (used: 2203Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 2342868476 bytes in 28669 chunks; quarantined: 245450 bytes in 175 chunks; 36375 other chunks; total chunks: 65219; showing top 95% (at most 8 unique contexts) Step #5: 1157482945 byte(s) (49%) in 1 allocation(s) Step #5: #0 0x5639a14cfed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5639a15b1f1e in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x5639a15b1f1e in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x5639a15b1f1e in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3920:28 Step #5: #4 0x5639a15b1f1e in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #5 0x5639a159d324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #6 0x5639a1514219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #7 0x5639a1539cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #8 0x5639a1539cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #9 0x5639a1621f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #10 0x5639a1621f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #11 0x5639a1621f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #12 0x5639a1621f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #13 0x5639a1678637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #14 0x5639a1678637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #15 0x5639a1678637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #16 0x5639a1678637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #17 0x5639a1564509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #18 0x5639a154f889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #19 0x5639a159b925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #20 0x5639a159b925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #21 0x5639a159b925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #22 0x5639a13b157d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #23 0x5639a13bab18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #24 0x5639a13a2019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #25 0x5639a13cdcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #26 0x7f50ab613082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: 1157482944 byte(s) (49%) in 1 allocation(s) Step #5: #0 0x5639a15128ad in operator new(unsigned long) /src/llvm-project/compiler-rt/lib/asan/asan_new_delete.cpp:109:35 Step #5: #1 0x5639a1622533 in __libcpp_allocate /usr/local/bin/../include/c++/v1/__new/allocate.h:43:28 Step #5: #2 0x5639a1622533 in allocate /usr/local/bin/../include/c++/v1/__memory/allocator.h:105:14 Step #5: #3 0x5639a1622533 in __allocate_at_least > /usr/local/bin/../include/c++/v1/__memory/allocate_at_least.h:41:19 Step #5: #4 0x5639a1622533 in __split_buffer /usr/local/bin/../include/c++/v1/__split_buffer:330:25 Step #5: #5 0x5639a1622533 in std::__1::vector>::__append(unsigned long) /usr/local/bin/../include/c++/v1/__vector/vector.h:966:49 Step #5: #6 0x5639a153a950 in resize /usr/local/bin/../include/c++/v1/__vector/vector.h:1370:11 Step #5: #7 0x5639a153a950 in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2732:18 Step #5: #8 0x5639a1621f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x5639a1621f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x5639a1621f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x5639a1621f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x5639a1678637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x5639a1678637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x5639a1678637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x5639a1678637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x5639a1564509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x5639a154f889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x5639a159b925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x5639a159b925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x5639a159b925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x5639a13b157d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x5639a13bab18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x5639a13a2019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x5639a13cdcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f50ab613082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: operator new(unsigned long)--__libcpp_allocate--allocate Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x2f,0x2f,0x2f,0x59,0x2f,0x2f,0x2f,0x43,0x41,0x42,0x45,0x49,0x51,0x47,0x35,0x45,0x69,0x41,0x4e,0x68,0x4d,0x51,0x45,0x4f,0x45,0x51,0x47,0x36,0x45,0x69,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,///Y///CABEIQG5EiANhMQEOEQG6Ei\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-462a5cad098c880482d2380d01fce03d0d13401a Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCwvLy9ZLy8vQ0FCRUlRRzVFaUFOaE1RRU9FUUc2RWkifV0sImFzc2V0Ijp7InZlcnNpb24iOiIifX0= Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 5 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4249373232 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x55a6c43c26b0, 0x55a6c43c724b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x55a6c43c7250,0x55a6c4412c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/462a5cad098c880482d2380d01fce03d0d13401a' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 6074 processed earlier; will process 6526 files now Step #5: #1 pulse cov: 313 ft: 314 exec/s: 0 rss: 41Mb Step #5: #2 pulse cov: 672 ft: 795 exec/s: 0 rss: 42Mb Step #5: #4 pulse cov: 1197 ft: 1534 exec/s: 4 rss: 1404Mb Step #5: #8 pulse cov: 1347 ft: 1778 exec/s: 8 rss: 1404Mb Step #5: #16 pulse cov: 1615 ft: 2270 exec/s: 8 rss: 1404Mb Step #5: #32 pulse cov: 1686 ft: 2524 exec/s: 6 rss: 1404Mb Step #5: #64 pulse cov: 2262 ft: 3491 exec/s: 5 rss: 2324Mb Step #5: ==58== ERROR: libFuzzer: out-of-memory (used: 2324Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 1476071355 bytes in 21351 chunks; quarantined: 8646759 bytes in 324 chunks; 34854 other chunks; total chunks: 56529; showing top 95% (at most 8 unique contexts) Step #5: 913690129 byte(s) (61%) in 1 allocation(s) Step #5: #0 0x55a6c40b1ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55a6c4193f1e in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x55a6c4193f1e in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x55a6c4193f1e in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3920:28 Step #5: #4 0x55a6c4193f1e in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #5 0x55a6c417f324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #6 0x55a6c40f6219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #7 0x55a6c411bcec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #8 0x55a6c411bcec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #9 0x55a6c4203f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #10 0x55a6c4203f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #11 0x55a6c4203f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #12 0x55a6c4203f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #13 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #14 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #15 0x55a6c425a637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #16 0x55a6c425a637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #17 0x55a6c4146509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #18 0x55a6c4131889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #19 0x55a6c417d925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #20 0x55a6c417d925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #21 0x55a6c417d925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #22 0x55a6c3f9357d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #23 0x55a6c3f9cb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #24 0x55a6c3f84019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #25 0x55a6c3fafcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #26 0x7f40691d3082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: 356486189 byte(s) (24%) in 3 allocation(s) Step #5: #0 0x55a6c40b1ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55a6c41c4707 in stbi__process_frame_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3344:37 Step #5: #2 0x55a6c41bba91 in stbi__decode_jpeg_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3383:9 Step #5: #3 0x55a6c418c06c in stbi__decode_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3418:9 Step #5: #4 0x55a6c418c06c in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3872:9 Step #5: #5 0x55a6c418c06c in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #6 0x55a6c417f324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #7 0x55a6c40f6219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #8 0x55a6c411bcec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #9 0x55a6c411bcec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #10 0x55a6c4203f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #11 0x55a6c4203f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #12 0x55a6c4203f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #13 0x55a6c4203f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #14 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #15 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #16 0x55a6c425a637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #17 0x55a6c425a637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #18 0x55a6c4146509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #19 0x55a6c4131889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #20 0x55a6c417d925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #21 0x55a6c417d925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #22 0x55a6c417d925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #23 0x55a6c3f9357d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #24 0x55a6c3f9cb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #25 0x55a6c3f84019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #26 0x55a6c3fafcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #27 0x7f40691d3082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__process_frame_header(stbi__jpeg*, int)--stbi__decode_jpeg_header(stbi__jpeg*, int) Step #5: 178243117 byte(s) (12%) in 3 allocation(s) Step #5: #0 0x55a6c40b1ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55a6c41c45ba in stbi__process_frame_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3335:33 Step #5: #2 0x55a6c41bba91 in stbi__decode_jpeg_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3383:9 Step #5: #3 0x55a6c418c06c in stbi__decode_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3418:9 Step #5: #4 0x55a6c418c06c in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3872:9 Step #5: #5 0x55a6c418c06c in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #6 0x55a6c417f324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #7 0x55a6c40f6219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #8 0x55a6c411bcec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #9 0x55a6c411bcec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #10 0x55a6c4203f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #11 0x55a6c4203f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #12 0x55a6c4203f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #13 0x55a6c4203f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #14 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #15 0x55a6c425a637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #16 0x55a6c425a637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #17 0x55a6c425a637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #18 0x55a6c4146509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #19 0x55a6c4131889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #20 0x55a6c417d925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #21 0x55a6c417d925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #22 0x55a6c417d925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #23 0x55a6c3f9357d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #24 0x55a6c3f9cb18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #25 0x55a6c3f84019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #26 0x55a6c3fafcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #27 0x7f40691d3082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__process_frame_header(stbi__jpeg*, int)--stbi__decode_jpeg_header(stbi__jpeg*, int) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x2f,0x2f,0x2f,0x59,0x2f,0x2f,0x2f,0x43,0x41,0x42,0x45,0x49,0x63,0x61,0x4d,0x65,0x72,0x41,0x4e,0x48,0x4d,0x51,0x45,0x4f,0x45,0x51,0x47,0x30,0x45,0x79,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,///Y///CABEIcaMerANHMQEOEQG0Ey\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-b15f1e361b59572000f8c91560db346bb2ec583f Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCwvLy9ZLy8vQ0FCRUljYU1lckFOSE1RRU9FUUcwRXkifV0sImFzc2V0Ijp7InZlcnNpb24iOiIifX0= Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 6 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4261461111 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x55bc9e9196b0, 0x55bc9e91e24b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x55bc9e91e250,0x55bc9e969c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/b15f1e361b59572000f8c91560db346bb2ec583f' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 6141 processed earlier; will process 6459 files now Step #5: #1 pulse cov: 681 ft: 682 exec/s: 0 rss: 41Mb Step #5: #2 pulse cov: 1017 ft: 1199 exec/s: 0 rss: 771Mb Step #5: #4 pulse cov: 1080 ft: 1362 exec/s: 0 rss: 771Mb Step #5: #8 pulse cov: 1238 ft: 1634 exec/s: 4 rss: 1691Mb Step #5: #16 pulse cov: 1267 ft: 1777 exec/s: 4 rss: 2331Mb Step #5: ==62== ERROR: libFuzzer: out-of-memory (used: 2331Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 1007473039 bytes in 18009 chunks; quarantined: 10324433 bytes in 445 chunks; 33950 other chunks; total chunks: 52404; showing top 95% (at most 8 unique contexts) Step #5: 504797345 byte(s) (50%) in 1 allocation(s) Step #5: #0 0x55bc9e608ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55bc9e6eaf1e in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x55bc9e6eaf1e in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x55bc9e6eaf1e in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3920:28 Step #5: #4 0x55bc9e6eaf1e in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #5 0x55bc9e6d6324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #6 0x55bc9e64d219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #7 0x55bc9e672cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #8 0x55bc9e672cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #9 0x55bc9e75af20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #10 0x55bc9e75af20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #11 0x55bc9e75af20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #12 0x55bc9e75af20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #13 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #14 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #15 0x55bc9e7b1637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #16 0x55bc9e7b1637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #17 0x55bc9e69d509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #18 0x55bc9e688889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #19 0x55bc9e6d4925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #20 0x55bc9e6d4925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #21 0x55bc9e6d4925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #22 0x55bc9e4ea57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #23 0x55bc9e4f3b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #24 0x55bc9e4db019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #25 0x55bc9e506cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #26 0x7f5d98c0c082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: 316782765 byte(s) (31%) in 3 allocation(s) Step #5: #0 0x55bc9e608ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55bc9e71b707 in stbi__process_frame_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3344:37 Step #5: #2 0x55bc9e712a91 in stbi__decode_jpeg_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3383:9 Step #5: #3 0x55bc9e6e306c in stbi__decode_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3418:9 Step #5: #4 0x55bc9e6e306c in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3872:9 Step #5: #5 0x55bc9e6e306c in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #6 0x55bc9e6d6324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #7 0x55bc9e64d219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #8 0x55bc9e672cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #9 0x55bc9e672cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #10 0x55bc9e75af20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #11 0x55bc9e75af20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #12 0x55bc9e75af20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #13 0x55bc9e75af20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #14 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #15 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #16 0x55bc9e7b1637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #17 0x55bc9e7b1637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #18 0x55bc9e69d509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #19 0x55bc9e688889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #20 0x55bc9e6d4925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #21 0x55bc9e6d4925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #22 0x55bc9e6d4925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #23 0x55bc9e4ea57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #24 0x55bc9e4f3b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #25 0x55bc9e4db019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #26 0x55bc9e506cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #27 0x7f5d98c0c082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__process_frame_header(stbi__jpeg*, int)--stbi__decode_jpeg_header(stbi__jpeg*, int) Step #5: 158391405 byte(s) (15%) in 3 allocation(s) Step #5: #0 0x55bc9e608ed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x55bc9e71b5ba in stbi__process_frame_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3335:33 Step #5: #2 0x55bc9e712a91 in stbi__decode_jpeg_header(stbi__jpeg*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3383:9 Step #5: #3 0x55bc9e6e306c in stbi__decode_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3418:9 Step #5: #4 0x55bc9e6e306c in load_jpeg_image /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:3872:9 Step #5: #5 0x55bc9e6e306c in stbi__jpeg_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:4035:13 Step #5: #6 0x55bc9e6d6324 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1166:35 Step #5: #7 0x55bc9e64d219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #8 0x55bc9e672cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #9 0x55bc9e672cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #10 0x55bc9e75af20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #11 0x55bc9e75af20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #12 0x55bc9e75af20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #13 0x55bc9e75af20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #14 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #15 0x55bc9e7b1637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #16 0x55bc9e7b1637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #17 0x55bc9e7b1637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #18 0x55bc9e69d509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #19 0x55bc9e688889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #20 0x55bc9e6d4925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #21 0x55bc9e6d4925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #22 0x55bc9e6d4925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #23 0x55bc9e4ea57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #24 0x55bc9e4f3b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #25 0x55bc9e4db019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #26 0x55bc9e506cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #27 0x7f5d98c0c082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__process_frame_header(stbi__jpeg*, int)--stbi__decode_jpeg_header(stbi__jpeg*, int) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x2f,0x2f,0x2f,0x59,0x2f,0x2f,0x2f,0x43,0x41,0x42,0x45,0x49,0x37,0x38,0x55,0x49,0x43,0x41,0x4e,0x68,0x49,0x51,0x45,0x4f,0x45,0x51,0x47,0x30,0x45,0x69,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,///Y///CABEI78UICANhIQEOEQG0Ei\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-3e4a2b253751cd13d13918101a9622fdddcf36b3 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCwvLy9ZLy8vQ0FCRUk3OFVJQ0FOaElRRU9FUUcwRWkifV0sImFzc2V0Ijp7InZlcnNpb24iOiIifX0= Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 7 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 4266548565 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x560fb73896b0, 0x560fb738e24b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x560fb738e250,0x560fb73d9c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/3e4a2b253751cd13d13918101a9622fdddcf36b3' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 6171 processed earlier; will process 6429 files now Step #5: #1 pulse cov: 726 ft: 727 exec/s: 0 rss: 40Mb Step #5: #2 pulse cov: 898 ft: 967 exec/s: 0 rss: 84Mb Step #5: #4 pulse cov: 1114 ft: 1391 exec/s: 0 rss: 99Mb Step #5: #8 pulse cov: 1127 ft: 1478 exec/s: 8 rss: 1416Mb Step #5: #16 pulse cov: 1573 ft: 2200 exec/s: 8 rss: 1416Mb Step #5: #32 pulse cov: 1807 ft: 2713 exec/s: 10 rss: 1416Mb Step #5: #64 pulse cov: 2470 ft: 3945 exec/s: 12 rss: 1416Mb Step #5: #128 pulse cov: 2937 ft: 5346 exec/s: 12 rss: 1416Mb Step #5: #256 pulse cov: 3376 ft: 7573 exec/s: 8 rss: 1820Mb Step #5: ==66== ERROR: libFuzzer: out-of-memory (used: 2099Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 1103418381 bytes in 27955 chunks; quarantined: 3527473 bytes in 454 chunks; 32341 other chunks; total chunks: 60750; showing top 95% (at most 8 unique contexts) Step #5: 1075544008 byte(s) (97%) in 1 allocation(s) Step #5: #0 0x560fb70bb8ad in operator new(unsigned long) /src/llvm-project/compiler-rt/lib/asan/asan_new_delete.cpp:109:35 Step #5: #1 0x560fb71cb533 in __libcpp_allocate /usr/local/bin/../include/c++/v1/__new/allocate.h:43:28 Step #5: #2 0x560fb71cb533 in allocate /usr/local/bin/../include/c++/v1/__memory/allocator.h:105:14 Step #5: #3 0x560fb71cb533 in __allocate_at_least > /usr/local/bin/../include/c++/v1/__memory/allocate_at_least.h:41:19 Step #5: #4 0x560fb71cb533 in __split_buffer /usr/local/bin/../include/c++/v1/__split_buffer:330:25 Step #5: #5 0x560fb71cb533 in std::__1::vector>::__append(unsigned long) /usr/local/bin/../include/c++/v1/__vector/vector.h:966:49 Step #5: #6 0x560fb70e3950 in resize /usr/local/bin/../include/c++/v1/__vector/vector.h:1370:11 Step #5: #7 0x560fb70e3950 in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2732:18 Step #5: #8 0x560fb71caf20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x560fb71caf20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x560fb71caf20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x560fb71caf20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x560fb7221637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x560fb7221637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x560fb7221637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x560fb7221637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x560fb710d509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x560fb70f8889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x560fb7144925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x560fb7144925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x560fb7144925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x560fb6f5a57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x560fb6f63b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x560fb6f4b019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x560fb6f76cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f3a1fcaf082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: operator new(unsigned long)--__libcpp_allocate--allocate Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x51,0x6b,0x33,0x35,0x45,0x76,0x39,0x68,0x41,0x72,0x41,0x41,0x41,0x75,0x41,0x42,0x41,0x41,0x41,0x4d,0x41,0x41,0x41,0x41,0x78,0x41,0x56,0x31,0x69,0x41,0x45,0x41,0x41,0x51,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,Qk35Ev9hArAAAuABAAAMAAAAxAV1iAEAAQ\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-2b10d334a37e9cab3344ce83f24455e0e91c3412 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCxRazM1RXY5aEFyQUFBdUFCQUFBTUFBQUF4QVYxaUFFQUFRIn1dLCJhc3NldCI6eyJ2ZXJzaW9uIjoiIn19 Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 8 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 25679023 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x56142ef106b0, 0x56142ef1524b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x56142ef15250,0x56142ef60c00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/2b10d334a37e9cab3344ce83f24455e0e91c3412' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 6562 processed earlier; will process 6038 files now Step #5: #1 pulse cov: 728 ft: 729 exec/s: 0 rss: 42Mb Step #5: #2 pulse cov: 729 ft: 732 exec/s: 0 rss: 42Mb Step #5: #4 pulse cov: 816 ft: 863 exec/s: 0 rss: 42Mb Step #5: #8 pulse cov: 1231 ft: 1663 exec/s: 8 rss: 816Mb Step #5: #16 pulse cov: 1541 ft: 2041 exec/s: 16 rss: 816Mb Step #5: #32 pulse cov: 1943 ft: 2833 exec/s: 10 rss: 1564Mb Step #5: #64 pulse cov: 2421 ft: 3713 exec/s: 10 rss: 1564Mb Step #5: #128 pulse cov: 2884 ft: 5267 exec/s: 12 rss: 1884Mb Step #5: #256 pulse cov: 3287 ft: 6789 exec/s: 12 rss: 1884Mb Step #5: #512 pulse cov: 3668 ft: 9159 exec/s: 5 rss: 1884Mb Step #5: ==70== ERROR: libFuzzer: out-of-memory (used: 2229Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 2302867932 bytes in 31928 chunks; quarantined: 8763693 bytes in 984 chunks; 32132 other chunks; total chunks: 65044; showing top 95% (at most 8 unique contexts) Step #5: 1011037800 byte(s) (43%) in 1 allocation(s) Step #5: #0 0x56142ebffed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x56142ecff2dd in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x56142ecff2dd in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6813:35 Step #5: #3 0x56142ecccc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x56142ecccc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x56142ec44219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x56142ec69cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x56142ec69cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x56142ed51f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x56142ed51f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x56142ed51f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x56142ed51f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x56142eda8637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x56142eda8637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x56142ec94509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x56142ec7f889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x56142eccb925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x56142eccb925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x56142eccb925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x56142eae157d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x56142eaeab18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x56142ead2019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x56142eafdcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7fb68c1bc082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: 1011037800 byte(s) (43%) in 1 allocation(s) Step #5: #0 0x56142ebffed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x56142ecff2aa in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x56142ecff2aa in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6812:28 Step #5: #3 0x56142ecccc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x56142ecccc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x56142ec44219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x56142ec69cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x56142ec69cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x56142ed51f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x56142ed51f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x56142ed51f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x56142ed51f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x56142eda8637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x56142eda8637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x56142ec94509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x56142ec7f889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x56142eccb925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x56142eccb925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x56142eccb925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x56142eae157d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x56142eaeab18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x56142ead2019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x56142eafdcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7fb68c1bc082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: 252759450 byte(s) (10%) in 1 allocation(s) Step #5: #0 0x56142ebffed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x56142ecff315 in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x56142ecff315 in stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:6814:32 Step #5: #3 0x56142ecccc53 in stbi__gif_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:7074:8 Step #5: #4 0x56142ecccc53 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1151:35 Step #5: #5 0x56142ec44219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x56142ec69cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x56142ec69cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x56142ed51f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x56142ed51f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x56142ed51f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x56142ed51f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x56142eda8637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x56142eda8637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x56142eda8637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x56142ec94509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x56142ec7f889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x56142eccb925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x56142eccb925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x56142eccb925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x56142eae157d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x56142eaeab18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x56142ead2019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x56142eafdcf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7fb68c1bc082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__gif_load_next(stbi__context*, stbi__gif*, int*, int, unsigned char*) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x70,0x6e,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x52,0x30,0x6c,0x47,0x4f,0x44,0x6c,0x68,0x74,0x66,0x6c,0x79,0x44,0x79,0x4f,0x79,0x79,0x79,0x79,0x79,0x41,0x41,0x41,0x41,0x41,0x6c,0x47,0x4f,0x44,0x64,0x68,0x63,0x61,0x6d,0x4f,0x44,0x79,0x41,0x41,0x41,0x2f,0x2f,0x2f,0x35,0x2f,0x2f,0x73,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/png;base64,R0lGODlhtflyDyOyyyyyAAAAAlGODdhcamODyAAA///5//s\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-774898c7d9d09d13211fd6e8a1a7d479545d3dd2 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCxSMGxHT0RsaHRmbHlEeU95eXl5eUFBQUFBbEdPRGRoY2FtT0R5QUFBLy8vNS8vcyJ9XSwiYXNzZXQiOnsidmVyc2lvbiI6IiJ9fQ== Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 9 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 202909448 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x557eccd5b6b0, 0x557eccd6024b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x557eccd60250,0x557eccdabc00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/774898c7d9d09d13211fd6e8a1a7d479545d3dd2' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 7387 processed earlier; will process 5213 files now Step #5: #1 pulse cov: 761 ft: 762 exec/s: 0 rss: 40Mb Step #5: #2 pulse cov: 1088 ft: 1293 exec/s: 0 rss: 41Mb Step #5: #4 pulse cov: 1334 ft: 1752 exec/s: 2 rss: 1524Mb Step #5: #8 pulse cov: 1464 ft: 1929 exec/s: 1 rss: 1785Mb Step #5: #16 pulse cov: 2050 ft: 3107 exec/s: 3 rss: 1785Mb Step #5: #32 pulse cov: 2447 ft: 4025 exec/s: 4 rss: 1785Mb Step #5: #64 pulse cov: 2938 ft: 5782 exec/s: 7 rss: 1785Mb Step #5: ==74== ERROR: libFuzzer: out-of-memory (used: 2101Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 963032953 bytes in 25520 chunks; quarantined: 6626977 bytes in 3494 chunks; 31718 other chunks; total chunks: 60732; showing top 95% (at most 8 unique contexts) Step #5: 935256060 byte(s) (97%) in 1 allocation(s) Step #5: #0 0x557ecca4aed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x557eccb365d6 in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x557eccb365d6 in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x557eccb365d6 in stbi__tga_load(stbi__context*, int*, int*, int*, int, stbi__result_info*) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:5946:31 Step #5: #4 0x557eccb19aa1 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1182:14 Step #5: #5 0x557ecca8f219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x557eccab4cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x557eccab4cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x557eccb9cf20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x557eccb9cf20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x557eccb9cf20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x557eccb9cf20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x557eccbf3637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x557eccbf3637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x557eccbf3637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x557eccbf3637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x557eccadf509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x557eccaca889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x557eccb16925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x557eccb16925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x557eccb16925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x557ecc92c57d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x557ecc935b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x557ecc91d019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x557ecc948cf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f1b53401082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x6a,0x70,0x65,0x67,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x62,0x41,0x41,0x43,0x36,0x61,0x56,0x77,0x77,0x77,0x77,0x77,0x42,0x77,0x30,0x2f,0x77,0x78,0x67,0x56,0x6b,0x43,0x42,0x42,0x22,0x7d,0x2c,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x61,0x65,0x36,0x34,0x2c,0x62,0x73,0x76,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/jpeg;base64,bAAC6aVwwwwwBw0/wxgVkCBB\"},{\"uri\":\"data:ae64,bsv\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-b165a4984845a48c74965453a6bd87ea78dac317 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvanBlZztiYXNlNjQsYkFBQzZhVnd3d3d3QncwL3d4Z1ZrQ0JCIn0seyJ1cmkiOiJkYXRhOmFlNjQsYnN2In1dLCJhc3NldCI6eyJ2ZXJzaW9uIjoiIn19 Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 10 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 219057105 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5633f74ef6b0, 0x5633f74f424b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x5633f74f4250,0x5633f753fc00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/b165a4984845a48c74965453a6bd87ea78dac317' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 7469 processed earlier; will process 5131 files now Step #5: #1 pulse cov: 733 ft: 734 exec/s: 0 rss: 41Mb Step #5: #2 pulse cov: 828 ft: 955 exec/s: 0 rss: 42Mb Step #5: #4 pulse cov: 1294 ft: 1707 exec/s: 0 rss: 43Mb Step #5: #8 pulse cov: 1761 ft: 2600 exec/s: 8 rss: 1141Mb Step #5: #16 pulse cov: 1983 ft: 3219 exec/s: 3 rss: 1148Mb Step #5: #32 pulse cov: 2378 ft: 4336 exec/s: 3 rss: 1915Mb Step #5: #64 pulse cov: 2918 ft: 5704 exec/s: 4 rss: 1915Mb Step #5: #128 pulse cov: 3317 ft: 7603 exec/s: 5 rss: 1915Mb Step #5: #256 pulse cov: 3710 ft: 9658 exec/s: 9 rss: 1915Mb Step #5: #512 pulse cov: 3929 ft: 11588 exec/s: 10 rss: 1915Mb Step #5: #1024 pulse cov: 4126 ft: 13831 exec/s: 7 rss: 1915Mb Step #5: ==78== ERROR: libFuzzer: out-of-memory (used: 2141Mb; limit: 2048Mb) Step #5: To change the out-of-memory limit use -rss_limit_mb= Step #5: Step #5: Live Heap Allocations: 81766112 bytes in 36809 chunks; quarantined: 6876391 bytes in 1200 chunks; 31243 other chunks; total chunks: 69252; showing top 95% (at most 8 unique contexts) Step #5: 53537800 byte(s) (65%) in 1 allocation(s) Step #5: #0 0x5633f71deed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5633f72aca27 in stbi__malloc /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:985:12 Step #5: #2 0x5633f72aca27 in stbi__malloc_mad3 /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1056:11 Step #5: #3 0x5633f72aca27 in stbi__bmp_load /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:5616:22 Step #5: #4 0x5633f72aca27 in stbi__load_main(stbi__context*, int*, int*, int*, int, stbi__result_info*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1148:35 Step #5: #5 0x5633f7223219 in stbi__load_and_postprocess_8bit(stbi__context*, int*, int*, int*, int) /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1261:19 Step #5: #6 0x5633f7248cec in stbi_load_from_memory /src/tinygltf/tests/fuzzer/build/../../../stb_image.h:1431:11 Step #5: #7 0x5633f7248cec in tinygltf::LoadImageData(tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:2665:14 Step #5: #8 0x5633f7330f20 in __invoke, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:87:27 Step #5: #9 0x5633f7330f20 in __call, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:336:12 Step #5: #10 0x5633f7330f20 in __invoke_r, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *), tinygltf::Image *, int, std::__1::basic_string, std::__1::allocator > *, std::__1::basic_string, std::__1::allocator > *, int, int, const unsigned char *, int, void *> /usr/local/bin/../include/c++/v1/__type_traits/invoke.h:350:10 Step #5: #11 0x5633f7330f20 in std::__1::__function::__func, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*), bool (tinygltf::Image*, int, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, int, int, unsigned char const*, int, void*)>::operator()(tinygltf::Image*&&, int&&, std::__1::basic_string, std::__1::allocator>*&&, std::__1::basic_string, std::__1::allocator>*&&, int&&, int&&, unsigned char const*&&, int&&, void*&&) /usr/local/bin/../include/c++/v1/__functional/function.h:174:12 Step #5: #12 0x5633f7387637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:274:12 Step #5: #13 0x5633f7387637 in operator() /usr/local/bin/../include/c++/v1/__functional/function.h:772:10 Step #5: #14 0x5633f7387637 in ParseImage /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:4435:10 Step #5: #15 0x5633f7387637 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10::operator()(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) const /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6415:12 Step #5: #16 0x5633f7273509 in bool tinygltf::detail::ForEachInArray, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10>(nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&, char const*, tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int)::$_10&&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:5971:12 Step #5: #17 0x5633f725e889 in tinygltf::TinyGLTF::LoadFromString(tinygltf::Model*, std::__1::basic_string, std::__1::allocator>*, std::__1::basic_string, std::__1::allocator>*, char const*, unsigned int, std::__1::basic_string, std::__1::allocator> const&, unsigned int) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6407:20 Step #5: #18 0x5633f72aa925 in LoadASCIIFromString /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:6698:10 Step #5: #19 0x5633f72aa925 in parse_intCoding4 /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:22:18 Step #5: #20 0x5633f72aa925 in LLVMFuzzerTestOneInput /src/tinygltf/tests/fuzzer/build/../fuzz_gltf.cc:30:5 Step #5: #21 0x5633f70c057d in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:619:13 Step #5: #22 0x5633f70c9b18 in fuzzer::Fuzzer::CrashResistantMergeInternalStep(std::__Fuzzer::basic_string, std::__Fuzzer::allocator> const&, bool) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMerge.cpp:239:5 Step #5: #23 0x5633f70b1019 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:890:8 Step #5: #24 0x5633f70dccf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #25 0x7f07cf1d2082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--stbi__malloc--stbi__malloc_mad3 Step #5: 24383096 byte(s) (29%) in 11 allocation(s) Step #5: #0 0x5633f71deed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5633f7408253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x5633f70dccf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #3 0x7f07cf1d2082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--main Step #5: 1048576 byte(s) (1%) in 1 allocation(s) Step #5: #0 0x5633f71deed4 in malloc /src/llvm-project/compiler-rt/lib/asan/asan_malloc_linux.cpp:67:3 Step #5: #1 0x5633f7408253 in operator new(unsigned long) cxa_noexception.cpp Step #5: #2 0x5633f70b0fdb in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:888:10 Step #5: #3 0x5633f70dccf2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 Step #5: #4 0x7f07cf1d2082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) (BuildId: 5792732f783158c66fb4f3756458ca24e46e827d) Step #5: Step #5: DEDUP_TOKEN: __interceptor_malloc--operator new(unsigned long)--fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: 0x7b,0x22,0x69,0x6d,0x61,0x67,0x65,0x73,0x22,0x3a,0x5b,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x67,0x69,0x66,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x51,0x6b,0x30,0x66,0x6a,0x73,0x6e,0x61,0x34,0x2f,0x2f,0x45,0x45,0x42,0x30,0x45,0x41,0x41,0x42,0x38,0x41,0x41,0x41,0x41,0x7a,0x51,0x41,0x41,0x41,0x41,0x72,0x2f,0x41,0x41,0x41,0x42,0x41,0x42,0x41,0x40,0x41,0x22,0x7d,0x2c,0x7b,0x22,0x75,0x72,0x69,0x22,0x3a,0x22,0x64,0x61,0x74,0x61,0x3a,0x69,0x6d,0x61,0x67,0x65,0x2f,0x67,0x69,0x66,0x3b,0x62,0x61,0x73,0x65,0x36,0x34,0x2c,0x51,0x6b,0x31,0x66,0x72,0x73,0x6e,0x61,0x34,0x2f,0x2f,0x45,0x45,0x42,0x30,0x45,0x41,0x41,0x42,0x38,0x41,0x41,0x41,0x41,0x7a,0x2e,0x41,0x41,0x41,0x42,0x41,0x49,0x41,0x41,0x65,0x22,0x7d,0x5d,0x2c,0x22,0x61,0x73,0x73,0x65,0x74,0x22,0x3a,0x7b,0x22,0x76,0x65,0x72,0x73,0x69,0x6f,0x6e,0x22,0x3a,0x22,0x22,0x7d,0x7d, Step #5: {\"images\":[{\"uri\":\"data:image/gif;base64,Qk0fjsna4//EEB0EAAB8AAAAzQAAAAr/AAABABA@A\"},{\"uri\":\"data:image/gif;base64,Qk1frsna4//EEB0EAAB8AAAAz.AAABAIAAe\"}],\"asset\":{\"version\":\"\"}} Step #5: artifact_prefix='./'; Test unit written to ./oom-fce69fd6380eff60a39c6e05d34c1a9f2b4976e2 Step #5: Base64: eyJpbWFnZXMiOlt7InVyaSI6ImRhdGE6aW1hZ2UvZ2lmO2Jhc2U2NCxRazBmanNuYTQvL0VFQjBFQUFCOEFBQUF6UUFBQUFyL0FBQUJBQkFAQSJ9LHsidXJpIjoiZGF0YTppbWFnZS9naWY7YmFzZTY0LFFrMWZyc25hNC8vRUVCMEVBQUI4QUFBQXouQUFBQkFJQUFlIn1dLCJhc3NldCI6eyJ2ZXJzaW9uIjoiIn19 Step #5: SUMMARY: libFuzzer: out-of-memory Step #5: MERGE-OUTER: attempt 11 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 406171384 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x5576f57fb6b0, 0x5576f580024b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x5576f5800250,0x5576f584bc00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/fce69fd6380eff60a39c6e05d34c1a9f2b4976e2' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 8795 processed earlier; will process 3805 files now Step #5: #1 pulse cov: 812 ft: 813 exec/s: 0 rss: 40Mb Step #5: #2 pulse cov: 895 ft: 1015 exec/s: 0 rss: 41Mb Step #5: #4 pulse cov: 1126 ft: 1526 exec/s: 0 rss: 41Mb Step #5: #8 pulse cov: 1550 ft: 2278 exec/s: 0 rss: 42Mb Step #5: #16 pulse cov: 1864 ft: 3481 exec/s: 0 rss: 52Mb Step #5: #32 pulse cov: 2450 ft: 5173 exec/s: 32 rss: 152Mb Step #5: #64 pulse cov: 3071 ft: 7233 exec/s: 3 rss: 1390Mb Step #5: #128 pulse cov: 3452 ft: 9001 exec/s: 3 rss: 1895Mb Step #5: #256 pulse cov: 3764 ft: 11300 exec/s: 4 rss: 1895Mb Step #5: #512 pulse cov: 4060 ft: 14300 exec/s: 6 rss: 1897Mb Step #5: #1024 pulse cov: 4247 ft: 17172 exec/s: 7 rss: 1915Mb Step #5: #2048 pulse cov: 4373 ft: 21991 exec/s: 7 rss: 1915Mb Step #5: AddressSanitizer:DEADLYSIGNAL Step #5: ================================================================= Step #5: ==82==ERROR: AddressSanitizer: stack-overflow on address 0x7ffc360f8e38 (pc 0x5576f54e8df6 bp 0x7ffc360f9670 sp 0x7ffc360f8e40 T0) Step #5: SCARINESS: 10 (stack-overflow) Step #5: #0 0x5576f54e8df6 in __asan_memset /src/llvm-project/compiler-rt/lib/asan/asan_interceptors_memintrinsics.cpp:67:3 Step #5: #1 0x5576f56207fa in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3665:9 Step #5: #2 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #3 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #4 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #5 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #6 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #7 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #8 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #9 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #10 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #11 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #12 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #13 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #14 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #15 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #16 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #17 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #18 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #19 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #20 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #21 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #22 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #23 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #24 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #25 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #26 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #27 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #28 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #29 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #30 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #31 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #32 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #33 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #34 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #35 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #36 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #37 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #38 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #39 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #40 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #41 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #42 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #43 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #44 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #45 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #46 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #47 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #48 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #49 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #50 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #51 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #52 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #53 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #54 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #55 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #56 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #57 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #58 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #59 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #60 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #61 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #62 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #63 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #64 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #65 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #66 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #67 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #68 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #69 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #70 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #71 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #72 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #73 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #74 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #75 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #76 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #77 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #78 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #79 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #80 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #81 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #82 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #83 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #84 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #85 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #86 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #87 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #88 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #89 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #90 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #91 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #92 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #93 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #94 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #95 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #96 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #97 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #98 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #99 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #100 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #101 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #102 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #103 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #104 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #105 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #106 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #107 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #108 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #109 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #110 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #111 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #112 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #113 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #114 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #115 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #116 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #117 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #118 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #119 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #120 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #121 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #122 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #123 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #124 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #125 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #126 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #127 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #128 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #129 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #130 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #131 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #132 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #133 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #134 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #135 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #136 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #137 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #138 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #139 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #140 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #141 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #142 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #143 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #144 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #145 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #146 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #147 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #148 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #149 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #150 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #151 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #152 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #153 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #154 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #155 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #156 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #157 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #158 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #159 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #160 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #161 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #162 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #163 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #164 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #165 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #166 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #167 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #168 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #169 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #170 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #171 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #172 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #173 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #174 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #175 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #176 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #177 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #178 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #179 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #180 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #181 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #182 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #183 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #184 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #185 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #186 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #187 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #188 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #189 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #190 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #191 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #192 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #193 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #194 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #195 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #196 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #197 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #198 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #199 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #200 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #201 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #202 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #203 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #204 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #205 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #206 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #207 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #208 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #209 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #210 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #211 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #212 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #213 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #214 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #215 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #216 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #217 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #218 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #219 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #220 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #221 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #222 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #223 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #224 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #225 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #226 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #227 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #228 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #229 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #230 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #231 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #232 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #233 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #234 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #235 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #236 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #237 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #238 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #239 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #240 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #241 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #242 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #243 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #244 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #245 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: #246 0x5576f5620bbd in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3729:9 Step #5: Step #5: DEDUP_TOKEN: __asan_memset--tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&)--tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) Step #5: SUMMARY: AddressSanitizer: stack-overflow /src/tinygltf/tests/fuzzer/build/../../../tiny_gltf.h:3665:9 in tinygltf::ParseJsonAsValue(tinygltf::Value*, nlohmann::basic_json, std::__1::allocator>, bool, long, unsigned long, double, std::__1::allocator, nlohmann::adl_serializer, std::__1::vector>> const&) Step #5: ==82==ABORTING Step #5: MS: 0 ; base unit: 0000000000000000000000000000000000000000 Step #5: artifact_prefix='./'; Test unit written to ./crash-f71704490c5264022a4d4e07a5dafa56c6c4115a Step #5: MERGE-OUTER: attempt 12 Step #5: INFO: Running with entropic power schedule (0xFF, 100). Step #5: INFO: Seed: 797639037 Step #5: INFO: Loaded 1 modules (19355 inline 8-bit counters): 19355 [0x55fe075bb6b0, 0x55fe075c024b), Step #5: INFO: Loaded 1 PC tables (19355 PCs): 19355 [0x55fe075c0250,0x55fe0760bc00), Step #5: INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 1048576 bytes Step #5: MERGE-INNER: using the control file '/tmp/libFuzzerTemp.Merge39.txt' Step #5: MERGE-INNER: '/corpus/fuzz_gltf/f71704490c5264022a4d4e07a5dafa56c6c4115a' caused a failure at the previous merge step Step #5: MERGE-INNER: 12600 total files; 11832 processed earlier; will process 768 files now Step #5: #1 pulse cov: 850 ft: 851 exec/s: 0 rss: 40Mb Step #5: #2 pulse cov: 1043 ft: 1209 exec/s: 0 rss: 46Mb Step #5: #4 pulse cov: 1725 ft: 2244 exec/s: 0 rss: 53Mb Step #5: #8 pulse cov: 2102 ft: 3425 exec/s: 0 rss: 58Mb Step #5: #16 pulse cov: 2535 ft: 5166 exec/s: 16 rss: 153Mb Step #5: #32 pulse cov: 2767 ft: 7072 exec/s: 32 rss: 153Mb Step #5: #64 pulse cov: 3304 ft: 9757 exec/s: 4 rss: 1392Mb Step #5: #128 pulse cov: 3595 ft: 12150 exec/s: 3 rss: 1394Mb Step #5: #256 pulse cov: 3870 ft: 14321 exec/s: 6 rss: 1434Mb Step #5: #512 pulse cov: 3965 ft: 15953 exec/s: 7 rss: 1434Mb Step #5: #768 DONE cov: 4084 ft: 16819 exec/s: 8 rss: 1434Mb Step #5: MERGE-OUTER: successful in 12 attempt(s) Step #5: MERGE-OUTER: the control file has 2165071 bytes Step #5: MERGE-OUTER: consumed 1Mb (59Mb rss) to parse the control file Step #5: MERGE-OUTER: 7779 new files with 28792 new features added; 4938 new coverage edges Step #5: [2025-12-11 06:25:09,156 INFO] Finding shared libraries for targets (if any). Step #5: [2025-12-11 06:25:09,167 INFO] Finished finding shared libraries for targets. Step #5: Coverage error, creating log file: /workspace/out/libfuzzer-coverage-x86_64/fuzzer_stats/fuzz_gltf_error.log Step #5: [2025-12-11 06:25:09,461 INFO] Finding shared libraries for targets (if any). Step #5: [2025-12-11 06:25:09,470 INFO] Finished finding shared libraries for targets. Step #5: [2025-12-11 06:25:09,687 DEBUG] Finished generating per-file code coverage summary. Step #5: [2025-12-11 06:25:09,687 DEBUG] Generating file view html index file as: "/workspace/out/libfuzzer-coverage-x86_64/report/linux/file_view_index.html". Step #5: [2025-12-11 06:25:09,697 DEBUG] Finished generating file view html index file. Step #5: [2025-12-11 06:25:09,697 DEBUG] Calculating per-directory coverage summary. Step #5: [2025-12-11 06:25:09,697 DEBUG] Finished calculating per-directory coverage summary. Step #5: [2025-12-11 06:25:09,697 DEBUG] Writing per-directory coverage html reports. Step #5: [2025-12-11 06:25:09,732 DEBUG] Finished writing per-directory coverage html reports. Step #5: [2025-12-11 06:25:09,732 DEBUG] Generating directory view html index file as: "/workspace/out/libfuzzer-coverage-x86_64/report/linux/directory_view_index.html". Step #5: [2025-12-11 06:25:09,733 DEBUG] Finished generating directory view html index file. Step #5: [2025-12-11 06:25:09,733 INFO] Index file for html report is generated as: "file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/index.html". Step #5: [2025-12-11 06:25:09,956 DEBUG] Finished generating per-file code coverage summary. Step #5: [2025-12-11 06:25:09,956 DEBUG] Generating file view html index file as: "/workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/file_view_index.html". Step #5: [2025-12-11 06:25:09,965 DEBUG] Finished generating file view html index file. Step #5: [2025-12-11 06:25:09,965 DEBUG] Calculating per-directory coverage summary. Step #5: [2025-12-11 06:25:09,965 DEBUG] Finished calculating per-directory coverage summary. Step #5: [2025-12-11 06:25:09,965 DEBUG] Writing per-directory coverage html reports. Step #5: [2025-12-11 06:25:10,000 DEBUG] Finished writing per-directory coverage html reports. Step #5: [2025-12-11 06:25:10,000 DEBUG] Generating directory view html index file as: "/workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/directory_view_index.html". Step #5: [2025-12-11 06:25:10,000 DEBUG] Finished generating directory view html index file. Step #5: [2025-12-11 06:25:10,000 INFO] Index file for html report is generated as: "file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/index.html". Finished Step #5 Starting Step #6 Step #6: Pulling image: gcr.io/cloud-builders/gsutil Step #6: Using default tag: latest Step #6: latest: Pulling from cloud-builders/gsutil Step #6: 63e5bc7682b8: Already exists Step #6: 2d8843b6fd75: Already exists Step #6: 069f9fef7429: Already exists Step #6: 6d3892323374: Already exists Step #6: 7111427d8489: Already exists Step #6: 134676fbdbfc: Already exists Step #6: 16d1ee2e1334: Pulling fs layer Step #6: da8ed20acc09: Pulling fs layer Step #6: da8ed20acc09: Download complete Step #6: 16d1ee2e1334: Verifying Checksum Step #6: 16d1ee2e1334: Download complete Step #6: 16d1ee2e1334: Pull complete Step #6: da8ed20acc09: Pull complete Step #6: Digest: sha256:cc3b6a148de154f2a6d992a1b0a3876e8e4c9996e71c2a3c8f505eee3fc0448d Step #6: Status: Downloaded newer image for gcr.io/cloud-builders/gsutil:latest Step #6: gcr.io/cloud-builders/gsutil:latest Step #6: CommandException: 1 files/objects could not be removed. Finished Step #6 Starting Step #7 Step #7: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #7: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/control.js [Content-Type=text/javascript]... Step #7: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/style.css [Content-Type=text/css]... Step #7: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/directory_view_index.html [Content-Type=text/html]... Step #7: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/summary.json [Content-Type=application/json]... Step #7: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/index.html [Content-Type=text/html]... Step #7: / [0/16 files][ 2.3 KiB/ 9.4 MiB] 0% Done / [0/16 files][ 2.3 KiB/ 9.4 MiB] 0% Done / [1/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/report.html [Content-Type=text/html]... Step #7: / [1/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/report.html [Content-Type=text/html]... Step #7: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/file_view_index.html [Content-Type=text/html]... Step #7: / [1/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [1/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/json.hpp.html [Content-Type=text/html]... Step #7: / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/report.html [Content-Type=text/html]... Step #7: / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/stb_image.h.html [Content-Type=text/html]... Step #7: / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/tiny_gltf.h.html [Content-Type=text/html]... Step #7: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/stb_image_write.h.html [Content-Type=text/html]... Step #7: / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/tests/report.html [Content-Type=text/html]... Step #7: / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [3/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/tests/fuzzer/report.html [Content-Type=text/html]... Step #7: / [3/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [4/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [5/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report/linux/src/tinygltf/tests/fuzzer/fuzz_gltf.cc.html [Content-Type=text/html]... Step #7: / [5/16 files][ 13.0 KiB/ 9.4 MiB] 0% Done / [6/16 files][ 29.6 KiB/ 9.4 MiB] 0% Done / [7/16 files][ 9.0 MiB/ 9.4 MiB] 95% Done / [8/16 files][ 9.0 MiB/ 9.4 MiB] 95% Done / [9/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [10/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [11/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [12/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [13/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [14/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [15/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [16/16 files][ 9.4 MiB/ 9.4 MiB] 100% Done Step #7: Operation completed over 16 objects/9.4 MiB. Finished Step #7 Starting Step #8 Step #8: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #8: CommandException: 1 files/objects could not be removed. Finished Step #8 Starting Step #9 Step #9: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #9: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/control.js [Content-Type=text/javascript]... Step #9: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/style.css [Content-Type=text/css]... Step #9: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/directory_view_index.html [Content-Type=text/html]... Step #9: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/summary.json [Content-Type=application/json]... Step #9: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/index.html [Content-Type=text/html]... Step #9: / [0/16 files][ 0.0 B/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/report.html [Content-Type=text/html]... Step #9: Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/file_view_index.html [Content-Type=text/html]... Step #9: / [0/16 files][ 2.3 KiB/ 9.4 MiB] 0% Done / [0/16 files][ 2.3 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/report.html [Content-Type=text/html]... Step #9: / [0/16 files][ 2.3 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/json.hpp.html [Content-Type=text/html]... Step #9: / [0/16 files][ 5.7 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/report.html [Content-Type=text/html]... Step #9: / [0/16 files][ 5.7 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/stb_image.h.html [Content-Type=text/html]... Step #9: / [0/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/stb_image_write.h.html [Content-Type=text/html]... Step #9: / [0/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/tiny_gltf.h.html [Content-Type=text/html]... Step #9: / [0/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [1/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [2/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done / [3/16 files][ 8.6 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/tests/report.html [Content-Type=text/html]... Step #9: / [3/16 files][ 13.0 KiB/ 9.4 MiB] 0% Done / [4/16 files][ 29.4 KiB/ 9.4 MiB] 0% Done / [5/16 files][ 29.4 KiB/ 9.4 MiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/tests/fuzzer/report.html [Content-Type=text/html]... Step #9: / [5/16 files][ 1.8 MiB/ 9.4 MiB] 19% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/report_target/fuzz_gltf/linux/src/tinygltf/tests/fuzzer/fuzz_gltf.cc.html [Content-Type=text/html]... Step #9: / [6/16 files][ 7.4 MiB/ 9.4 MiB] 78% Done / [6/16 files][ 7.4 MiB/ 9.4 MiB] 78% Done / [7/16 files][ 7.4 MiB/ 9.4 MiB] 78% Done / [8/16 files][ 7.4 MiB/ 9.4 MiB] 78% Done / [9/16 files][ 7.4 MiB/ 9.4 MiB] 78% Done / [10/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [11/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [12/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [13/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [14/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [15/16 files][ 9.4 MiB/ 9.4 MiB] 99% Done / [16/16 files][ 9.4 MiB/ 9.4 MiB] 100% Done Step #9: Operation completed over 16 objects/9.4 MiB. Finished Step #9 Starting Step #10 Step #10: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #10: CommandException: 1 files/objects could not be removed. Finished Step #10 Starting Step #11 Step #11: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #11: Copying file:///workspace/out/libfuzzer-coverage-x86_64/fuzzer_stats/fuzz_gltf.json [Content-Type=application/json]... Step #11: / [0/3 files][ 0.0 B/ 3.4 KiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/fuzzer_stats/fuzz_gltf_error.log [Content-Type=application/octet-stream]... Step #11: / [0/3 files][ 0.0 B/ 3.4 KiB] 0% Done Copying file:///workspace/out/libfuzzer-coverage-x86_64/fuzzer_stats/coverage_targets.txt [Content-Type=text/plain]... Step #11: / [0/3 files][ 2.8 KiB/ 3.4 KiB] 80% Done / [1/3 files][ 3.4 KiB/ 3.4 KiB] 99% Done / [2/3 files][ 3.4 KiB/ 3.4 KiB] 99% Done / [3/3 files][ 3.4 KiB/ 3.4 KiB] 100% Done Step #11: Operation completed over 3 objects/3.4 KiB. Finished Step #11 Starting Step #12 Step #12: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #12: CommandException: 1 files/objects could not be removed. Finished Step #12 Starting Step #13 Step #13: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #13: Copying file:///workspace/out/libfuzzer-coverage-x86_64/textcov_reports/fuzz_gltf.covreport [Content-Type=application/octet-stream]... Step #13: / [0/1 files][ 0.0 B/756.4 KiB] 0% Done / [1/1 files][756.4 KiB/756.4 KiB] 100% Done Step #13: Operation completed over 1 objects/756.4 KiB. Finished Step #13 Starting Step #14 Step #14: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #14: CommandException: 1 files/objects could not be removed. Finished Step #14 Starting Step #15 Step #15: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #15: Copying file:///workspace/out/libfuzzer-coverage-x86_64/logs/fuzz_gltf.log [Content-Type=application/octet-stream]... Step #15: / [0/1 files][ 0.0 B/276.4 KiB] 0% Done / [1/1 files][276.4 KiB/276.4 KiB] 100% Done Step #15: Operation completed over 1 objects/276.4 KiB. Finished Step #15 Starting Step #16 Step #16: Already have image (with digest): gcr.io/cloud-builders/gsutil Step #16: Copying file:///workspace/srcmap.json [Content-Type=application/json]... Step #16: / [0 files][ 0.0 B/ 154.0 B] / [1 files][ 154.0 B/ 154.0 B] Step #16: Operation completed over 1 objects/154.0 B. Finished Step #16 Starting Step #17 Step #17: Already have image (with digest): gcr.io/cloud-builders/curl Step #17: % Total % Received % Xferd Average Speed Time Time Time Current Step #17: Dload Upload Total Spent Left Speed Step #17: 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 312 0 0 100 312 0 1583 --:--:-- --:--:-- --:--:-- 1575 Finished Step #17 PUSH DONE