From 45da0bc3f8512ff1136f72cc670227fdbc0a8997 Mon Sep 17 00:00:00 2001
From: Chris Fretz <cfretz@icloud.com>
Date: Thu, 26 Mar 2020 13:16:41 -0400
Subject: [PATCH] Added a fuzz-tested buffer validation API Intended use case
 for dart::is_valid and dart::validate is to enable interacting with buffers
 from untrusted sources

---
 .travis.yml                           |  48 ++-
 benchmark/CMakeLists.txt              |   1 +
 benchmark/configurable.cc             | 298 ++++++++++------
 include/dart.h                        | 470 +++++++++++++++++++++++++-
 include/dart/abi.h                    |  18 +
 include/dart/api.tcc                  |  12 +-
 include/dart/array.tcc                |  90 +++++
 include/dart/common.h                 |  64 +++-
 include/dart/connector/json.tcc       |  36 ++
 include/dart/object.tcc               | 120 +++++++
 include/dart/primitive.tcc            |  29 ++
 include/dart/shim.h                   |   2 +-
 include/dart/string.tcc               |  50 +++
 src/generic.cc                        |   4 +
 test/arr_unit_tests.cc                |   6 +-
 test/dcm_unit_tests.cc                |   2 +-
 test/fuzz_tests.cc                    |  95 ++++++
 test/fuzzer_input/cyclic_case_1.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_10.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_11.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_12.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_13.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_14.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_15.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_16.dart | Bin 0 -> 1481 bytes
 test/fuzzer_input/cyclic_case_17.dart | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_2.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_3.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_4.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_5.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_6.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_7.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_8.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/cyclic_case_9.dart  | Bin 0 -> 1464 bytes
 test/fuzzer_input/test_case_0.dart    | Bin 0 -> 1640 bytes
 test/fuzzer_input/test_case_1.dart    | Bin 0 -> 1632 bytes
 test/fuzzer_input/test_case_2.dart    | Bin 0 -> 1656 bytes
 test/fuzzer_input/test_case_3.dart    | Bin 0 -> 1536 bytes
 test/fuzzer_input/test_case_4.dart    | Bin 0 -> 1664 bytes
 test/fuzzer_input/test_case_5.dart    | Bin 0 -> 1560 bytes
 test/fuzzer_input/test_case_6.dart    | Bin 0 -> 1664 bytes
 test/fuzzer_input/test_case_7.dart    | Bin 0 -> 1464 bytes
 test/fuzzer_input/test_case_8.dart    | Bin 0 -> 1456 bytes
 test/fuzzer_input/test_case_9.dart    | Bin 0 -> 1568 bytes
 test/generic_abi_unit_tests.cc        |  33 ++
 test/int_unit_tests.cc                |   4 +-
 test/json_test.cc                     |  58 +++-
 test/obj_unit_tests.cc                |  80 ++++-
 test/str_unit_tests.cc                |   4 +-
 49 files changed, 1376 insertions(+), 148 deletions(-)
 create mode 100644 test/fuzz_tests.cc
 create mode 100644 test/fuzzer_input/cyclic_case_1.dart
 create mode 100644 test/fuzzer_input/cyclic_case_10.dart
 create mode 100644 test/fuzzer_input/cyclic_case_11.dart
 create mode 100644 test/fuzzer_input/cyclic_case_12.dart
 create mode 100644 test/fuzzer_input/cyclic_case_13.dart
 create mode 100644 test/fuzzer_input/cyclic_case_14.dart
 create mode 100644 test/fuzzer_input/cyclic_case_15.dart
 create mode 100644 test/fuzzer_input/cyclic_case_16.dart
 create mode 100644 test/fuzzer_input/cyclic_case_17.dart
 create mode 100644 test/fuzzer_input/cyclic_case_2.dart
 create mode 100644 test/fuzzer_input/cyclic_case_3.dart
 create mode 100644 test/fuzzer_input/cyclic_case_4.dart
 create mode 100644 test/fuzzer_input/cyclic_case_5.dart
 create mode 100644 test/fuzzer_input/cyclic_case_6.dart
 create mode 100644 test/fuzzer_input/cyclic_case_7.dart
 create mode 100644 test/fuzzer_input/cyclic_case_8.dart
 create mode 100644 test/fuzzer_input/cyclic_case_9.dart
 create mode 100644 test/fuzzer_input/test_case_0.dart
 create mode 100644 test/fuzzer_input/test_case_1.dart
 create mode 100644 test/fuzzer_input/test_case_2.dart
 create mode 100644 test/fuzzer_input/test_case_3.dart
 create mode 100644 test/fuzzer_input/test_case_4.dart
 create mode 100644 test/fuzzer_input/test_case_5.dart
 create mode 100644 test/fuzzer_input/test_case_6.dart
 create mode 100644 test/fuzzer_input/test_case_7.dart
 create mode 100644 test/fuzzer_input/test_case_8.dart
 create mode 100644 test/fuzzer_input/test_case_9.dart

diff --git a/.travis.yml b/.travis.yml
index b6d5f8d..f8b1093 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -64,6 +64,20 @@ install:
 # Build matrix
 matrix:
   include:
+    - env:
+        VERSION: 7
+        FUZZ: true
+      os: linux
+      compiler: clang
+      addons:
+        apt:
+          sources:
+            - llvm-toolchain-xenial-7
+            - ubuntu-toolchain-r-test
+          packages:
+            - rapidjson-dev
+            - clang-7
+            - g++-7
     - env:
         VERSION: 5
         USE_GSL_LITE: true
@@ -215,26 +229,38 @@ matrix:
       env:
         USE_GSL_LITE: true
         IS_SLOW_AS_MOLASSES: true
+    - os: osx
+      compiler: clang
+      osx_image: xcode11.3
+      env:
+        IS_SLOW_AS_MOLASSES: true
 
 # Build and run.
 script:
-  - mkdir build
-  - cd build
-  - while true; do sleep 60; echo 'still here!'; done &
-  - KEEPALIVE_PID=$!
   - |
-    if [ "${IS_SLOW_AS_MOLASSES}" = "true" ]; then
-      cmake .. -Dbenchmark=ON -Duse_sajson=ON -Dbuild_abi=ON -Duse_asan=ON
+    if [ "${FUZZ}" = "true" ]; then
+      cd test
+      clang++ -std=c++14 -g -O3 -fsanitize=fuzzer,address -o fuzz fuzz_tests.cc
+      mkdir discoveries
+      timeout --preserve-status 600 ./fuzz fuzzer_input discoveries
     else
-      cmake .. -Dbenchmark=ON -Duse_sajson=ON -Dextended_test=ON -Dbuild_abi=ON -Dgen_coverage=ON -Duse_asan=ON
+      mkdir build
+      cd build
+      while true; do sleep 60; echo 'still here!'; done &
+      KEEPALIVE_PID=$!
+      if [ "${IS_SLOW_AS_MOLASSES}" = "true" ]; then
+        cmake .. -Dbenchmark=ON -Duse_sajson=ON -Dbuild_abi=ON -Duse_asan=ON
+      else
+        cmake .. -Dbenchmark=ON -Duse_sajson=ON -Dextended_test=ON -Dbuild_abi=ON -Dgen_coverage=ON -Duse_asan=ON
+      fi
+      make VERBOSE=1
+      kill -9 $KEEPALIVE_PID
+      ctest --output-on-failure
     fi
-  - make VERBOSE=1
-  - kill -9 $KEEPALIVE_PID
-  - ctest --output-on-failure
-  - cd ..
 
 after_success:
   - |
+    cd ..
     if [ "${TRAVIS_OS_NAME}" = "linux" ] && [ "${GEN_COVERAGE}" = "true" ]; then
       coveralls --gcov gcov-7 -r . -b build/ -i include/ -i src/ -E '.*(catch|variant).*' --gcov-options '\-lp'
     fi
diff --git a/benchmark/CMakeLists.txt b/benchmark/CMakeLists.txt
index 06922d1..bf4fc1d 100644
--- a/benchmark/CMakeLists.txt
+++ b/benchmark/CMakeLists.txt
@@ -38,6 +38,7 @@ endif (libyaml)
 # Link against flatbuffers if we have it
 if (libflatbuffers)
   target_compile_options(static_bench PUBLIC -DDART_HAS_FLEXBUFFERS)
+  target_compile_options(configurable_bench PUBLIC -DDART_HAS_FLEXBUFFERS)
 endif ()
 
 # Handle YAJL
diff --git a/benchmark/configurable.cc b/benchmark/configurable.cc
index c5391ba..76681f2 100644
--- a/benchmark/configurable.cc
+++ b/benchmark/configurable.cc
@@ -22,114 +22,20 @@
 #include <nlohmann/json.hpp>
 #endif
 
+#if DART_HAS_FLEXBUFFERS
+#include <flatbuffers/flexbuffers.h>
+#endif
+
 /*----- Local Includes -----*/
 
 #include "../include/dart.h"
 
-/*----- Helpers -----*/
-
-template <class Idx>
-constexpr bool all_equal(Idx) {
-  return true;
-}
-template <class Lhs, class Rhs, class... Idxs>
-constexpr bool all_equal(Lhs lidx, Rhs ridx, Idxs... lens) {
-  return lidx == ridx && all_equal(ridx, lens...);
-}
+/*----- Globals -----*/
 
 auto extract_directory(dart::shim::string_view path) noexcept {
   return path.substr(0, path.find_last_of("/"));
 }
 
-template <class... Containers, class Func>
-constexpr void for_multi(Func&& cb, Containers&&... cs) {
-  // Setup ADL.
-  using std::end;
-  using std::begin;
-
-  // Validation.
-  if (!all_equal(cs.size()...)) {
-    throw std::invalid_argument("All containers must be of the same size");
-  }
-
-  // Get a tuple of iterators.
-  [&] (auto first, auto... rest) {
-    // Get an end iterator to use as a sentinel.
-    auto& end = std::get<1>(first);
-    auto& curr = std::get<0>(first);
-
-    // Walk each iterator along together.
-    while (curr != end) {
-      // Dereference.
-      cb(*curr, *std::get<0>(rest)...);
-
-      // Increment our iterators.
-      ++curr;
-      (void) std::initializer_list<int> {(++std::get<0>(rest), 0)...};
-    }
-  }(std::make_tuple(begin(cs), end(cs))...);
-}
-
-// This benchmark is getting out of hand.
-#ifdef DART_HAS_YAJL
-void yajl_serialize(yajl_val curr, yajl_gen handle) {
-  yajl_gen_status ret;
-  switch (curr->type) {
-    case yajl_t_object:
-      {
-        ret = yajl_gen_map_open(handle);
-        assert(ret == yajl_gen_status_ok);
-        auto* obj = YAJL_GET_OBJECT(curr);
-        for (auto i = 0U; i < obj->len; ++i) {
-          auto* key = obj->keys[i];
-          ret = yajl_gen_string(handle, reinterpret_cast<unsigned char const*>(key), strlen(key));
-          assert(ret == yajl_gen_status_ok);
-          yajl_serialize(obj->values[i], handle);
-        }
-        ret = yajl_gen_map_close(handle);
-        assert(ret == yajl_gen_status_ok);
-      }
-      break;
-    case yajl_t_array:
-      {
-        ret = yajl_gen_array_open(handle);
-        assert(ret == yajl_gen_status_ok);
-        auto* arr = YAJL_GET_ARRAY(curr);
-        for (auto i = 0U; i < arr->len; ++i) yajl_serialize(arr->values[i], handle);
-        ret = yajl_gen_array_close(handle);
-        assert(ret == yajl_gen_status_ok);
-      }
-      break;
-    case yajl_t_string:
-      {
-        auto* str = YAJL_GET_STRING(curr);
-        ret = yajl_gen_string(handle, reinterpret_cast<unsigned char const*>(str), strlen(str));
-      }
-      break;
-    case yajl_t_number:
-      if (YAJL_IS_INTEGER(curr)) {
-        ret = yajl_gen_integer(handle, YAJL_GET_INTEGER(curr));
-      } else {
-        ret = yajl_gen_double(handle, YAJL_GET_DOUBLE(curr));
-      }
-      break;
-    case yajl_t_true:
-      ret = yajl_gen_bool(handle, false);
-      break;
-    case yajl_t_false:
-      ret = yajl_gen_bool(handle, false);
-      break;
-    default:
-      assert(curr->type == yajl_t_null);
-      ret = yajl_gen_null(handle);
-      break;
-  }
-  assert(ret == yajl_gen_status_ok);
-}
-#endif
-
-/*----- Globals -----*/
-
 static auto base_dir = extract_directory(__FILE__);
 static auto byte_counter = [] (auto a, auto& s) { return a + s.size(); };
 static std::string const json_input = std::string {base_dir} + "/input.json";
@@ -214,6 +120,7 @@ struct benchmark_helper : benchmark::Fixture {
 
   std::vector<std::string> load_input(dart::shim::string_view path) const;
   std::vector<unsafe_buffer> parse_input_dart(gsl::span<std::string const> packets) const;
+  std::vector<unsafe_heap> parse_mutable_dart(gsl::span<std::string const> packets) const;
   std::vector<rj::Document> parse_input_rj(gsl::span<std::string const> packets) const;
 #ifdef DART_USE_SAJSON
   std::vector<sajson::document> parse_input_sajson(gsl::span<std::string const> packets) const;
@@ -233,6 +140,7 @@ struct benchmark_helper : benchmark::Fixture {
 
   std::vector<std::string> input;
   std::vector<unsafe_buffer> parsed_dart;
+  std::vector<unsafe_heap> mutable_dart;
   std::vector<rj::Document> parsed_rj;
 #ifdef DART_USE_SAJSON
   std::vector<sajson::document> parsed_sajson;
@@ -252,6 +160,162 @@ struct benchmark_helper : benchmark::Fixture {
 
 };
 
+/*----- Helpers -----*/
+
+template <class Idx>
+constexpr bool all_equal(Idx) {
+  return true;
+}
+template <class Lhs, class Rhs, class... Idxs>
+constexpr bool all_equal(Lhs lidx, Rhs ridx, Idxs... lens) {
+  return lidx == ridx && all_equal(ridx, lens...);
+}
+
+template <class... Containers, class Func>
+constexpr void for_multi(Func&& cb, Containers&&... cs) {
+  // Setup ADL.
+  using std::end;
+  using std::begin;
+
+  // Validation.
+  if (!all_equal(cs.size()...)) {
+    throw std::invalid_argument("All containers must be of the same size");
+  }
+
+  // Get a tuple of iterators.
+  [&] (auto first, auto... rest) {
+    // Get an end iterator to use as a sentinel.
+    auto& end = std::get<1>(first);
+    auto& curr = std::get<0>(first);
+
+    // Walk each iterator along together.
+    while (curr != end) {
+      // Dereference.
+      cb(*curr, *std::get<0>(rest)...);
+
+      // Increment our iterators.
+      ++curr;
+      (void) std::initializer_list<int> {(++std::get<0>(rest), 0)...};
+    }
+  }(std::make_tuple(begin(cs), end(cs))...);
+}
+
+// This benchmark is getting out of hand.
+#ifdef DART_HAS_YAJL
+void yajl_serialize(yajl_val curr, yajl_gen handle) {
+  yajl_gen_status ret;
+  switch (curr->type) {
+    case yajl_t_object:
+      {
+        ret = yajl_gen_map_open(handle);
+        assert(ret == yajl_gen_status_ok);
+        auto* obj = YAJL_GET_OBJECT(curr);
+        for (auto i = 0U; i < obj->len; ++i) {
+          auto* key = obj->keys[i];
+          ret = yajl_gen_string(handle, reinterpret_cast<unsigned char const*>(key), strlen(key));
+          assert(ret == yajl_gen_status_ok);
+          yajl_serialize(obj->values[i], handle);
+        }
+        ret = yajl_gen_map_close(handle);
+        assert(ret == yajl_gen_status_ok);
+      }
+      break;
+    case yajl_t_array:
+      {
+        ret = yajl_gen_array_open(handle);
+        assert(ret == yajl_gen_status_ok);
+        auto* arr = YAJL_GET_ARRAY(curr);
+        for (auto i = 0U; i < arr->len; ++i) yajl_serialize(arr->values[i], handle);
+        ret = yajl_gen_array_close(handle);
+        assert(ret == yajl_gen_status_ok);
+      }
+      break;
+    case yajl_t_string:
+      {
+        auto* str = YAJL_GET_STRING(curr);
+        ret = yajl_gen_string(handle, reinterpret_cast<unsigned char const*>(str), strlen(str));
+      }
+      break;
+    case yajl_t_number:
+      if (YAJL_IS_INTEGER(curr)) {
+        ret = yajl_gen_integer(handle, YAJL_GET_INTEGER(curr));
+      } else {
+        ret = yajl_gen_double(handle, YAJL_GET_DOUBLE(curr));
+      }
+      break;
+    case yajl_t_true:
+      ret = yajl_gen_bool(handle, false);
+      break;
+    case yajl_t_false:
+      ret = yajl_gen_bool(handle, false);
+      break;
+    default:
+      assert(curr->type == yajl_t_null);
+      ret = yajl_gen_null(handle);
+      break;
+  }
+  assert(ret == yajl_gen_status_ok);
+}
+#endif
+
+#if DART_HAS_FLEXBUFFERS
+void convert_dart_to_fb(unsafe_buffer pkt, flexbuffers::Builder& fbb, char const* currkey = nullptr) {
+  switch (pkt.get_type()) {
+    case unsafe_buffer::type::object:
+      {
+        unsafe_buffer::iterator k, v;
+        std::tie(k, v) = pkt.kvbegin();
+        
+        // Flexbuffer builder API is kind of awkward to use
+        // in a recursive function like this, but we can get it done
+        auto work = [&] {
+          while (v != pkt.end()) {
+            convert_dart_to_fb(*v, fbb, k->str());
+            ++k, ++v;
+          }
+        };
+
+        // Need to call differently depending on if we're already
+        // in the process of building an object
+        if (currkey) fbb.Map(currkey, work);
+        else fbb.Map(work);
+      }
+      break;
+    case unsafe_buffer::type::array:
+      {
+        // Flexbuffer builder API is kind of awkward to use
+        // in a recursive function like this, but we can get it done
+        auto work = [&] {
+          for (auto v : pkt) {
+            convert_dart_to_fb(v, fbb);
+          }
+        };
+
+        // Need to call differently depending on if we're already
+        // in the process of building an object
+        if (currkey) fbb.Vector(currkey, work);
+        else fbb.Vector(work);
+      }
+      break;
+    case unsafe_buffer::type::string:
+      fbb.String(pkt.str());
+      break;
+    case unsafe_buffer::type::integer:
+      fbb.Int(pkt.integer());
+      break;
+    case unsafe_buffer::type::decimal:
+      fbb.Float(pkt.decimal());
+      break;
+    case unsafe_buffer::type::boolean:
+      fbb.Bool(pkt.boolean());
+      break;
+    default:
+      fbb.Null();
+      break;
+  }
+}
+#endif
+
 /*----- Benchmark Definitions -----*/
 
 BENCHMARK_F(benchmark_helper, dart_nontrivial_finalized_json_test) (benchmark::State& state) {
@@ -318,9 +382,9 @@ BENCHMARK_F(benchmark_helper, dart_nontrivial_json_key_lookups) (benchmark::Stat
 BENCHMARK_F(benchmark_helper, dart_nontrivial_json_finalizing) (benchmark::State& state) {
   int64_t bytes = 0;
   for (auto _ : state) {
-    for (auto const& pkt : input) {
-      auto parsed = unsafe_buffer::from_json(pkt);
-      auto buf = parsed.get_bytes();
+    for (auto const& pkt : mutable_dart) {
+      auto finalized = pkt.lower();
+      auto buf = finalized.get_bytes();
       benchmark::DoNotOptimize(buf.data());
       rate_counter++;
       bytes += buf.size();
@@ -331,6 +395,27 @@ BENCHMARK_F(benchmark_helper, dart_nontrivial_json_finalizing) (benchmark::State
   state.counters["parsed packets"] = rate_counter;
 }
 
+#if DART_HAS_FLEXBUFFERS
+BENCHMARK_F(benchmark_helper, flexbuffer_nontrivial_json_finalizing) (benchmark::State& state) {
+  int64_t bytes = 0;
+  for (auto _ : state) {
+    for (auto const& pkt : parsed_dart) {
+      // Lay out the flexbuffer
+      flexbuffers::Builder fbb;
+      convert_dart_to_fb(pkt, fbb);
+
+      // Finish it.
+      fbb.Finish();
+      rate_counter++;
+      bytes += fbb.GetBuffer().size();
+    }
+  }
+
+  state.SetBytesProcessed(bytes);
+  state.counters["parsed packets"] = rate_counter;
+}
+#endif
+
 BENCHMARK_F(benchmark_helper, rapidjson_nontrivial_insitu_json_test) (benchmark::State& state) {
   auto chunk = input.size();
   for (auto _ : state) {
@@ -566,6 +651,7 @@ BENCHMARK_MAIN();
 void benchmark_helper::SetUp(benchmark::State const&) {
   input = load_input(json_input);
   parsed_dart = parse_input_dart(input);
+  mutable_dart = parse_mutable_dart(input);
   parsed_rj = parse_input_rj(input);
 #ifdef DART_USE_SAJSON
   parsed_sajson = parse_input_sajson(input);
@@ -600,6 +686,14 @@ std::vector<unsafe_buffer> benchmark_helper::parse_input_dart(gsl::span<std::str
   return parsed;
 }
 
+std::vector<unsafe_heap> benchmark_helper::parse_mutable_dart(gsl::span<std::string const> packets) const {
+  std::vector<unsafe_heap> parsed(packets.size());
+  std::transform(packets.begin(), packets.end(), parsed.begin(), [] (auto& pkt) {
+    return unsafe_heap::from_json(pkt);
+  });
+  return parsed;
+}
+
 std::vector<rj::Document> benchmark_helper::parse_input_rj(gsl::span<std::string const> packets) const {
   std::vector<rj::Document> parsed(packets.size());
   std::transform(packets.begin(), packets.end(), parsed.begin(), [] (auto& pkt) {
diff --git a/include/dart.h b/include/dart.h
index 599351a..832563c 100644
--- a/include/dart.h
+++ b/include/dart.h
@@ -55,7 +55,7 @@ static_assert(false, "libdart requires a c++14 enabled compiler.");
 
 // Version macros for conditional compilation/feature checks.
 #define DART_MAJOR_VERSION          1
-#define DART_MINOR_VERSION          1
+#define DART_MINOR_VERSION          2
 #define DART_PATCH_VERSION          0
 
 /*----- Type Declarations -----*/
@@ -3579,6 +3579,16 @@ namespace dart {
       >
       basic_string& operator +=(shim::string_view str);
 
+      /**
+       *  @brief
+       *  Subscript operator.
+       *
+       *  @details
+       *  Returns the character at the given index.
+       *  Operator returns a temporary character, and does not allow writes
+       */
+      char operator [](size_type idx) const noexcept;
+
       /**
        *  @brief
        *  Dereference operator.
@@ -6924,6 +6934,31 @@ namespace dart {
         >
       >
       static basic_heap from_json(shim::string_view json);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::heap::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::heap::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::heap::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::heap::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned parse_stack_size = default_parse_stack_size,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_heap parse(shim::string_view json);
 #elif DART_HAS_RAPIDJSON
       /**
        *  @brief
@@ -6949,6 +6984,31 @@ namespace dart {
         >
       >
       static basic_heap from_json(shim::string_view json);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::heap::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::heap::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::heap::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::heap::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned flags = parse_default,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_heap parse(shim::string_view json);
 #endif
 
 #if DART_HAS_RAPIDJSON
@@ -9180,6 +9240,31 @@ namespace dart {
         >
       >
       static basic_buffer from_json(shim::string_view json);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::heap::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::heap::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::heap::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::heap::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned parse_stack_size = default_parse_stack_size,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_buffer parse(shim::string_view json);
 #elif DART_HAS_RAPIDJSON
       /**
        *  @brief
@@ -9205,6 +9290,31 @@ namespace dart {
         >
       >
       static basic_buffer from_json(shim::string_view json);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::buffer::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::buffer::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::buffer::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::buffer::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned flags = parse_default,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_buffer parse(shim::string_view json);
 #endif
 
 #if DART_HAS_RAPIDJSON
@@ -12286,6 +12396,31 @@ namespace dart {
         >
       >
       static basic_packet from_json(shim::string_view json, bool finalized = true);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::heap::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::heap::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::heap::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::heap::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned parse_stack_size = default_parse_stack_size,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_packet parse(shim::string_view json, bool finalized = true);
 #elif DART_HAS_RAPIDJSON
       /**
        *  @brief
@@ -12311,6 +12446,31 @@ namespace dart {
         >
       >
       static basic_packet from_json(shim::string_view json, bool finalize = false);
+
+      /**
+       *  @brief
+       *  Function constructs an optionally finalized packet to represent the given JSON string.
+       *
+       *  @details
+       *  Parsing is based on RapidJSON, and so exposes the same parsing customization points as
+       *  RapidJSON.
+       *  If your JSON has embedded comments in it, NaN or +/-Infinity values, or trailing commas,
+       *  you can parse in the following ways:
+       *  ```
+       *  auto json = input.read();
+       *  auto comments = dart::packet::from_json<dart::parse_comments>(json);
+       *  auto nan_inf = dart::packet::from_json<dart::parse_nan>(json);
+       *  auto commas = dart::packet::from_json<dart::parse_trailing_commas>(json);
+       *  auto all_of_it = dart::packet::from_json<dart::parse_permissive>(json);
+       *  ```
+       */
+      template <unsigned flags = parse_default,
+               bool enabled = refcount::is_owner<RefCount>::value, class EnableIf =
+        std::enable_if_t<
+          enabled
+        >
+      >
+      static basic_packet parse(shim::string_view json, bool finalize = false);
 #endif
 
 #if DART_HAS_RAPIDJSON
@@ -13730,14 +13890,316 @@ namespace dart {
 
   inline namespace literals {
 
-    inline packet operator ""_dart(char const* val, size_t len);
-    inline packet operator ""_dart(unsigned long long val);
-    inline packet operator ""_dart(long double val);
+    inline string operator ""_dart(char const* val, size_t len);
+    inline number operator ""_dart(unsigned long long val);
+    inline number operator ""_dart(long double val);
 
   }
 
   /*----- Global Free Functions -----*/
 
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline bool is_valid(gsl::span<gsl::byte const> buffer) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.data()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, buffer.size());
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline bool is_valid(gsl::byte const* buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  bool is_valid(std::unique_ptr<gsl::byte, Del> const& buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  bool is_valid(std::unique_ptr<gsl::byte[], Del> const& buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  bool is_valid(std::unique_ptr<gsl::byte const, Del> const& buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  bool is_valid(std::unique_ptr<gsl::byte const[], Del> const& buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline bool is_valid(std::shared_ptr<gsl::byte const> const& buffer, size_t len) noexcept {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    return detail::valid_buffer<true, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline void validate(gsl::span<gsl::byte const> buffer) {
+    detail::raw_element raw {detail::raw_type::object, buffer.data()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, buffer.size());
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline void validate(gsl::byte const* buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  void validate(std::unique_ptr<gsl::byte, Del> const& buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  void validate(std::unique_ptr<gsl::byte[], Del> const& buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  void validate(std::unique_ptr<gsl::byte const, Del> const& buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  template <class Del>
+  void validate(std::unique_ptr<gsl::byte const[], Del> const& buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  inline void validate(std::shared_ptr<gsl::byte const> const& buffer, size_t len) {
+    detail::raw_element raw {detail::raw_type::object, buffer.get()};
+    detail::valid_buffer<false, std::shared_ptr>(raw, len);
+  }
+
 #ifdef DART_USE_SAJSON
   /**
    *  @brief
diff --git a/include/dart/abi.h b/include/dart/abi.h
index 2b6d639..2cac295 100644
--- a/include/dart/abi.h
+++ b/include/dart/abi.h
@@ -7912,6 +7912,24 @@ extern "C" {
    */
   DART_ABI_EXPORT dart_err_t dart_take_bytes_rc_err(dart_packet_t* dst, dart_rc_type_t rc, void* bytes);
 
+  /**
+   *  @brief
+   *  Function provides a way to check if an arbitrary buffer of bytes
+   *  can be successfully interpreted as a Dart buffer.
+   *
+   *  @details
+   *  Function validates whether the given network buffer is well formed.
+   *  If the function returns true it does NOT mean that the given buffer
+   *  definitely wasn't corrupted in any way, just that the whole buffer
+   *  is safely traversable, all necessary invariants hold, and it can be
+   *  used without worry of undefined behavior.
+   *
+   *  @remarks
+   *  Function is largely intended to be used when the buffer in question
+   *  came from an untrusted source.
+   */
+  DART_ABI_EXPORT int dart_buffer_is_valid(void const* bytes, size_t len);
+
   /**
    *  @brief
    *  Function default-initializes a Dart iterator.
diff --git a/include/dart/api.tcc b/include/dart/api.tcc
index 3c5248f..0d7c9b7 100644
--- a/include/dart/api.tcc
+++ b/include/dart/api.tcc
@@ -1172,16 +1172,16 @@ namespace dart {
 
   inline namespace literals {
 
-    inline packet operator ""_dart(char const* val, size_t len) {
-      return packet::make_string({val, len});
+    inline string operator ""_dart(char const* val, size_t len) {
+      return string {shim::string_view {val, len}};
     }
 
-    inline packet operator ""_dart(unsigned long long val) {
-      return packet::make_integer(val);
+    inline number operator ""_dart(unsigned long long val) {
+      return number {val};
     }
 
-    inline packet operator ""_dart(long double val) {
-      return packet::make_decimal(val);
+    inline number operator ""_dart(long double val) {
+      return number {val};
     }
 
   }
diff --git a/include/dart/array.tcc b/include/dart/array.tcc
index 503e90f..d7e96e5 100644
--- a/include/dart/array.tcc
+++ b/include/dart/array.tcc
@@ -299,6 +299,86 @@ namespace dart {
       bytes = static_cast<uint32_t>(offset);
     }
 
+// Unfortunately some versions of GCC and MSVC aren't smart enough to figure
+// out that if this function is declared noexcept the throwing cases are dead code
+#if DART_USING_GCC
+#pragma GCC diagnostic push
+#pragma GCC diagnostic ignored "-Wpragmas"
+#pragma GCC diagnostic ignored "-Wterminate"
+#elif DART_USING_MSVC
+#pragma warning(push)
+#pragma warning(disable: 4297)
+#endif
+
+    template <template <class> class RefCount>
+    template <bool silent>
+    bool array<RefCount>::is_valid(size_t bytes) const noexcept(silent) {
+      // Check if we even have enough space left for the array header.
+      if (bytes < header_len) {
+        if (silent) return false;
+        else throw validation_error("Serialized array is truncated");
+      }
+
+      // We now know it's safe to access the array length, but it could still be garbage,
+      // so check if the array claims to be larger than our total buffer.
+      // After this check, all other length checks will use the length reported by the array
+      // itself to validate internal consistency
+      // Signed comparison warnings are the actual worst
+      auto total_size = static_cast<std::ptrdiff_t>(get_sizeof());
+      if (total_size > static_cast<ssize_t>(bytes)) {
+        if (silent) return false;
+        else throw validation_error("Serialized array length is out of bounds");
+      }
+
+      // The array reports a reasonable length,
+      // so now check if the vtable is within bounds.
+      auto* vtable_end = raw_vtable() + (size() * sizeof(array_entry));
+      if (vtable_end - DART_FROM_THIS > total_size) {
+        if (silent) return false;
+        else throw validation_error("Serialized array vtable length is out of bounds");
+      }
+
+      // We now know that the vtable is fully within bounds, but it could still be full of crap
+      // Check that every element in the vtable has a valid type
+      for (size_t i = 0; i < size(); ++i) {
+        if (!valid_type(vtable()[i].get_type())) {
+          if (silent) return false;
+          else throw validation_error("Serialized object value is of no known type");
+        }
+      }
+
+      // We now know the entire vtable is within bounds,
+      // so iterate over it and check all contained children.
+      void const* prev = this;
+      for (auto raw_val : *this) {
+        // Load the base address of the value and verify that it's within bounds.
+        auto val_offset = raw_val.buffer - DART_FROM_THIS;
+        if (val_offset > total_size) {
+          if (silent) return false;
+          else throw validation_error("Serialized array value offset is out of bounds");
+        } else if (raw_val.buffer <= prev) {
+          if (silent) return false;
+          else throw validation_error("Serialized array value contained a negative or cyclic offset");
+        } else if (align_pointer<RefCount>(raw_val.buffer, raw_val.type) != raw_val.buffer) {
+          if (silent) return false;
+          else throw validation_error("Serialized array value offset does not meet alignment requirements");
+        }
+        prev = raw_val.buffer;
+
+        // We now know that at least up to the base of the value is within bounds, so recurse on the value.
+        // If the buffer validation routine returns false, it means we're not throwing errors.
+        auto valid_val = valid_buffer<silent, RefCount>(raw_val, total_size - val_offset);
+        if (!valid_val) return false;
+      }
+      return true;
+    }
+
+#if DART_USING_GCC
+#pragma GCC diagnostic pop
+#elif DART_USING_MSVC
+#pragma warning(pop)
+#endif
+
     template <template <class> class RefCount>
     size_t array<RefCount>::size() const noexcept {
       return elems;
@@ -361,6 +441,16 @@ namespace dart {
       return shim::launder(reinterpret_cast<array_entry const*>(base));
     }
 
+    template <template <class> class RefCount>
+    gsl::byte* array<RefCount>::raw_vtable() noexcept {
+      return DART_FROM_THIS_MUT + sizeof(bytes) + sizeof(elems);
+    }
+
+    template <template <class> class RefCount>
+    gsl::byte const* array<RefCount>::raw_vtable() const noexcept {
+      return DART_FROM_THIS + sizeof(bytes) + sizeof(elems);
+    }
+
   }
 
 }
diff --git a/include/dart/common.h b/include/dart/common.h
index 6cd1f07..7527ef3 100644
--- a/include/dart/common.h
+++ b/include/dart/common.h
@@ -102,6 +102,10 @@ namespace dart {
     parse_error(char const* msg) : runtime_error(msg) {}
   };
 
+  struct validation_error : std::runtime_error {
+    validation_error(char const* msg) : runtime_error(msg) {}
+  };
+
   namespace detail {
 
     template <class T>
@@ -646,6 +650,9 @@ namespace dart {
 
         /*----- Public API -----*/
 
+        template <bool silent>
+        bool is_valid(size_t bytes) const noexcept(silent);
+
         size_t size() const noexcept;
         size_t get_sizeof() const noexcept;
 
@@ -680,11 +687,16 @@ namespace dart {
         object_entry* vtable() noexcept;
         object_entry const* vtable() const noexcept;
 
+        gsl::byte* raw_vtable() noexcept;
+        gsl::byte const* raw_vtable() const noexcept;
+
         /*----- Private Members -----*/
 
         alignas(4) little_order<uint32_t> bytes;
         alignas(4) little_order<uint32_t> elems;
 
+        static constexpr auto header_len = sizeof(bytes) + sizeof(elems);
+
     };
     static_assert(std::is_standard_layout<object<std::shared_ptr>>::value, "dart library is misconfigured");
 
@@ -722,6 +734,9 @@ namespace dart {
 
         /*----- Public API -----*/
 
+        template <bool silent>
+        bool is_valid(size_t bytes) const noexcept(silent);
+
         size_t size() const noexcept;
         size_t get_sizeof() const noexcept;
 
@@ -746,11 +761,16 @@ namespace dart {
         array_entry* vtable() noexcept;
         array_entry const* vtable() const noexcept;
 
+        gsl::byte* raw_vtable() noexcept;
+        gsl::byte const* raw_vtable() const noexcept;
+
         /*----- Private Members -----*/
 
         alignas(4) little_order<uint32_t> bytes;
         alignas(4) little_order<uint32_t> elems;
 
+        static constexpr auto header_len = sizeof(bytes) + sizeof(elems);
+
     };
     static_assert(std::is_standard_layout<array<std::shared_ptr>>::value, "dart library is misconfigured");
 
@@ -787,6 +807,9 @@ namespace dart {
 
         /*----- Public API -----*/
 
+        template <bool silent>
+        bool is_valid(size_t bytes) const noexcept(silent);
+
         size_t size() const noexcept;
         size_t get_sizeof() const noexcept;
 
@@ -809,6 +832,8 @@ namespace dart {
 
         alignas(alignment) little_order<size_type> len;
 
+        static constexpr auto header_len = sizeof(len);
+
     };
     using string = basic_string<uint16_t>;
     using big_string = basic_string<uint32_t>;
@@ -843,6 +868,9 @@ namespace dart {
 
         /*----- Public API -----*/
 
+        template <bool silent>
+        bool is_valid(size_t bytes) const noexcept(silent);
+
         size_t get_sizeof() const noexcept;
 
         T get_data() const noexcept;
@@ -859,6 +887,8 @@ namespace dart {
 
         alignas(alignment) little_order<T> data;
 
+        static constexpr auto header_len = sizeof(data);
+
     };
     static_assert(std::is_standard_layout<primitive<int>>::value, "dart library is misconfigured");
 
@@ -962,6 +992,26 @@ namespace dart {
       }
     }
 
+    inline bool valid_type(raw_type type) noexcept {
+      switch (type) {
+        case raw_type::object:
+        case raw_type::array:
+        case raw_type::string:
+        case raw_type::small_string:
+        case raw_type::big_string:
+        case raw_type::short_integer:
+        case raw_type::integer:
+        case raw_type::long_integer:
+        case raw_type::decimal:
+        case raw_type::long_decimal:
+        case raw_type::boolean:
+        case raw_type::null:
+          return true;
+        default:
+          return false;
+      }
+    }
+
     /**
      *  @brief
      *  Function provides a "safe" bridge between the high level
@@ -1242,6 +1292,18 @@ namespace dart {
       }
     }
 
+    template <bool silent, template <class> class RefCount>
+    bool valid_buffer(raw_element elem, size_t bytes) noexcept(silent) {
+      // Null is a special case because it occupies zero space in the network buffer
+      // Check if the given element has a valid type.
+      // If we're validating against corrupted garbage it likely won't
+      if (elem.type == raw_type::null) return true;
+      else if (!valid_type(elem.type)) return false;
+
+      // Call through to our implementation
+      return generic_deref<RefCount>([=] (auto& v) { return v.template is_valid<silent>(bytes); }, elem);
+    }
+
     template <template <class> class RefCount>
     constexpr size_t sso_bytes() {
       return basic_heap<RefCount>::sso_bytes;
@@ -1261,7 +1323,7 @@ namespace dart {
 
     constexpr raw_type identify_integer(int64_t val) noexcept {
       if (val > INT32_MAX || val < INT32_MIN) return raw_type::long_integer;
-      else if (val > INT16_MAX || val < INT16_MAX) return raw_type::integer;
+      else if (val > INT16_MAX || val < INT16_MIN) return raw_type::integer;
       else return raw_type::short_integer;
     }
 
diff --git a/include/dart/connector/json.tcc b/include/dart/connector/json.tcc
index 8cd3709..a50df76 100644
--- a/include/dart/connector/json.tcc
+++ b/include/dart/connector/json.tcc
@@ -114,6 +114,24 @@ namespace dart {
     if (finalized) return basic_buffer<RefCount>::template from_json<parse_stack_size>(json);
     else return basic_heap<RefCount>::template from_json<parse_stack_size>(json);
   }
+
+  template <template <class> class RefCount>
+  template <unsigned parse_stack_size, bool, class EnableIf>
+  basic_heap<RefCount> basic_heap<RefCount>::parse(shim::string_view json) {
+    return basic_heap::from_json<parse_stack_size>(json);
+  }
+
+  template <template <class> class RefCount>
+  template <unsigned parse_stack_size, bool, class EnableIf>
+  basic_buffer<RefCount> basic_buffer<RefCount>::parse(shim::string_view json) {
+    return basic_buffer::from_json<parse_stack_size>(json);
+  }
+
+  template <template <class> class RefCount>
+  template <unsigned parse_stack_size, bool, class EnableIf>
+  basic_packet<RefCount> basic_packet<RefCount>::parse(shim::string_view json, bool finalized) {
+    return basic_packet::from_json(json, finalized);
+  }
 #elif DART_HAS_RAPIDJSON
   template <template <class> class RefCount>
   template <unsigned flags, bool enabled, class EnableIf>
@@ -179,6 +197,24 @@ namespace dart {
     if (finalized) return basic_buffer<RefCount>::template from_json<flags>(json);
     else return basic_heap<RefCount>::template from_json<flags>(json);
   }
+
+  template <template <class> class RefCount>
+  template <unsigned flags, bool enabled, class EnableIf>
+  basic_heap<RefCount> basic_heap<RefCount>::parse(shim::string_view json) {
+    return basic_heap::from_json<flags>(json);
+  }
+
+  template <template <class> class RefCount>
+  template <unsigned flags, bool enabled, class EnableIf>
+  basic_buffer<RefCount> basic_buffer<RefCount>::parse(shim::string_view json) {
+    return basic_buffer::from_json<flags>(json);
+  }
+
+  template <template <class> class RefCount>
+  template <unsigned flags, bool enabled, class EnableIf>
+  basic_packet<RefCount> basic_packet<RefCount>::parse(shim::string_view json, bool finalized) {
+    return basic_packet::from_json<flags>(json, finalized);
+  }
 #endif
 
 #if DART_HAS_RAPIDJSON
diff --git a/include/dart/object.tcc b/include/dart/object.tcc
index 8c010e0..6707dcf 100644
--- a/include/dart/object.tcc
+++ b/include/dart/object.tcc
@@ -508,6 +508,116 @@ namespace dart {
       bytes = static_cast<uint32_t>(offset);
     }
 
+// Unfortunately some versions of GCC and MSVC aren't smart enough to figure
+// out that if this function is declared noexcept the throwing cases are dead code
+#if DART_USING_GCC
+#pragma GCC diagnostic push
+#pragma GCC diagnostic ignored "-Wpragmas"
+#pragma GCC diagnostic ignored "-Wterminate"
+#elif DART_USING_MSVC
+#pragma warning(push)
+#pragma warning(disable: 4297)
+#endif
+
+    template <template <class> class RefCount>
+    template <bool silent>
+    bool object<RefCount>::is_valid(size_t bytes) const noexcept(silent) {
+      // Check if we even have enough space left for the object header.
+      if (bytes < header_len) {
+        if (silent) return false;
+        else throw validation_error("Serialized object is truncated");
+      }
+
+      // We now know it's safe to access the object length, but it still could be garbage,
+      // so check if the object claims to be larger than our total buffer.
+      // After this check, all other length checks will use the length reported by the object
+      // itself to validate internal consistency
+      // Signed comparison warnings are the actual worst
+      auto total_size = static_cast<std::ptrdiff_t>(get_sizeof());
+      if (total_size > static_cast<ssize_t>(bytes)) {
+        if (silent) return false;
+        else throw validation_error("Serialized object length is out of bounds");
+      }
+
+      // The object reports a reasonable total length,
+      // so now check if the vtable is within bounds.
+      auto* vtable_end = raw_vtable() + (size() * sizeof(object_entry));
+      if (vtable_end - DART_FROM_THIS > total_size) {
+        if (silent) return false;
+        else throw validation_error("Serialized object vtable length is out of bounds");
+      }
+
+      // We now know that the vtable is fully within bounds, but it could still be full of crap
+      // Check that every element in the vtable has a valid type
+      for (size_t i = 0; i < size(); ++i) {
+        if (!valid_type(vtable()[i].get_type())) {
+          if (silent) return false;
+          else throw validation_error("Serialized object value is of no known type");
+        }
+      }
+
+      // We now know the entire vtable is within bounds,
+      // so iterate over it and check all contained children.
+      void const* prev = this;
+      auto key_it = key_begin(), val_it = begin();
+      while (val_it != end()) {
+        // We know the whole vtable is within bounds, but it could still specify offsets that aren't,
+        // so load the base address of the key and verify that it's within bounds
+        // We compare against the size of the object here as we already know it's within bounds
+        auto raw_key = *key_it;
+        auto key_offset = raw_key.buffer - DART_FROM_THIS;
+        if (key_offset > total_size) {
+          // Key offset is out of bounds
+          if (silent) return false;
+          else throw validation_error("Serialized object key offset is out of bounds");
+        } else if (raw_key.buffer <= prev) {
+          if (silent) return false;
+          else throw validation_error("Serialized object key contained a negative or cyclic offset");
+        } else if (align_pointer<RefCount>(raw_key.buffer, raw_key.type) != raw_key.buffer) {
+          if (silent) return false;
+          else throw validation_error("Serialized object key offset does not meet alignment requirements");
+        }
+        prev = raw_key.buffer;
+
+        // We now know that at least up to the base of the key is within bounds, so recurse on the key.
+        // If the buffer validation routine returns false, it means we're not throwing errors.
+        // It would be unsafe to dereference the value iterator at this point, because doing so
+        // loads offset information from the key, and we haven't check if it's safe yet.
+        auto valid_key = valid_buffer<silent, RefCount>(raw_key, total_size - key_offset);
+        if (!valid_key) return false;
+
+        // Now we can dereference the value iterator since we know the key appears reasonable.
+        // Load the base address of the value and verify that it's within bounds.
+        auto raw_val = *val_it;
+        auto val_offset = raw_val.buffer - DART_FROM_THIS;
+        if (val_offset > total_size) {
+          if (silent) return false;
+          else throw validation_error("Serialized object value offset is out of bounds");
+        } else if (raw_val.buffer <= prev) {
+          if (silent) return false;
+          else throw validation_error("Serialized object value contained a negative or cyclic offset");
+        } else if (align_pointer<RefCount>(raw_val.buffer, raw_val.type) != raw_val.buffer) {
+          if (silent) return false;
+          else throw validation_error("Serialized object value offset does not meet alignment requirements");
+        }
+        prev = raw_val.buffer;
+
+        // We now know that at least up to the base of the value is within bounds, so recurse on the value.
+        auto valid_val = valid_buffer<silent, RefCount>(raw_val, total_size - val_offset);
+        if (!valid_val) return false;
+
+        // Check the next pair.
+        ++key_it, ++val_it;
+      }
+      return true;
+    }
+
+#if DART_USING_GCC
+#pragma GCC diagnostic pop
+#elif DART_USING_MSVC
+#pragma warning(pop)
+#endif
+
     template <template <class> class RefCount>
     size_t object<RefCount>::size() const noexcept {
       return elems;
@@ -693,6 +803,16 @@ namespace dart {
       return shim::launder(reinterpret_cast<object_entry const*>(base));
     }
 
+    template <template <class> class RefCount>
+    gsl::byte* object<RefCount>::raw_vtable() noexcept {
+      return DART_FROM_THIS_MUT + sizeof(bytes) + sizeof(elems);
+    }
+
+    template <template <class> class RefCount>
+    gsl::byte const* object<RefCount>::raw_vtable() const noexcept {
+      return DART_FROM_THIS + sizeof(bytes) + sizeof(elems);
+    }
+
   }
 
 }
diff --git a/include/dart/primitive.tcc b/include/dart/primitive.tcc
index 484ef7d..06eca5e 100644
--- a/include/dart/primitive.tcc
+++ b/include/dart/primitive.tcc
@@ -107,6 +107,35 @@ namespace dart {
 
   namespace detail {
 
+// Unfortunately some versions of GCC and MSVC aren't smart enough to figure
+// out that if this function is declared noexcept the throwing cases are dead code
+#if DART_USING_GCC
+#pragma GCC diagnostic push
+#pragma GCC diagnostic ignored "-Wpragmas"
+#pragma GCC diagnostic ignored "-Wterminate"
+#elif DART_USING_MSVC
+#pragma warning(push)
+#pragma warning(disable: 4297)
+#endif
+
+    template <class T>
+    template <bool silent>
+    bool primitive<T>::is_valid(size_t bytes) const noexcept(silent) {
+      // With a primitive value, there's only the header, so check to ensure
+      // it's within bounds
+      if (bytes < header_len) {
+        if (silent) return false;
+        else throw validation_error("Serialized primitive value is truncated");
+      }
+      return true;
+    }
+
+#if DART_USING_GCC
+#pragma GCC diagnostic pop
+#elif DART_USING_MSVC
+#pragma warning(pop)
+#endif
+
     template <class T>
     size_t primitive<T>::get_sizeof() const noexcept {
       return sizeof(T);
diff --git a/include/dart/shim.h b/include/dart/shim.h
index 5985395..74236f8 100644
--- a/include/dart/shim.h
+++ b/include/dart/shim.h
@@ -83,7 +83,7 @@ using ssize_t = SSIZE_T;
 #define DART_ASSERT(cond)                                                                                     \
   if (DART_UNLIKELY(!(cond))) {                                                                               \
     auto& msg = "dart::packet has detected fatal memory corruption and cannot continue execution.\n"          \
-      "\"" DART_STRINGIFY(cond) "\" violated.\nSee " __FILE__ ":" DART_STRINGIFY(__LINE__);                   \
+      "\"" DART_STRINGIFY(cond) "\" violated.\nSee " __FILE__ ":" DART_STRINGIFY(__LINE__) "\n";              \
     int errfd = DART_STDERR_FILENO;                                                                           \
     ssize_t spins {0}, written {0}, total {sizeof(msg)};                                                      \
     do {                                                                                                      \
diff --git a/include/dart/string.tcc b/include/dart/string.tcc
index 3c9b798..2c6f536 100644
--- a/include/dart/string.tcc
+++ b/include/dart/string.tcc
@@ -24,6 +24,12 @@ namespace dart {
     return *this;
   }
 
+  template <class String>
+  char basic_string<String>::operator [](size_type idx) const noexcept {
+    if (idx >= size()) return '\0';
+    else return str()[idx];
+  }
+
   template <class String>
   char const* basic_string<String>::str() const noexcept {
     return val.str();
@@ -53,6 +59,50 @@ namespace dart {
       data()[len] = '\0';
     }
 
+// Unfortunately some versions of GCC and MSVC aren't smart enough to figure
+// out that if this function is declared noexcept the throwing cases are dead code
+#if DART_USING_GCC
+#pragma GCC diagnostic push
+#pragma GCC diagnostic ignored "-Wpragmas"
+#pragma GCC diagnostic ignored "-Wterminate"
+#elif DART_USING_MSVC
+#pragma warning(push)
+#pragma warning(disable: 4297)
+#endif
+
+    template <class SizeType>
+    template <bool silent>
+    bool basic_string<SizeType>::is_valid(size_t bytes) const noexcept(silent) {
+      // Check if we even have enough space left for the string header
+      if (bytes < header_len) {
+        if (silent) return false;
+        else throw validation_error("Serialized string is truncated");
+      }
+
+      // We now know it's safe to access the string length, but it could still be garbage,
+      // so check if the string claims to be larger than the total buffer.
+      auto total_size = get_sizeof();
+      if (total_size > bytes) {
+        if (silent) return false;
+        else throw validation_error("Serialized string length is out of bounds");
+      }
+
+      // We now know that the total string is within bounds, but it could still be garbage,
+      // so, since we can't generically calculate if the string contents are "correct",
+      // use the existence of the null terminator as a proxy for lack of corruption.
+      if (data()[size()] != '\0') {
+        if (silent) return false;
+        else throw validation_error("Serialized string is corrupted, internal consistency checks failed");
+      }
+      return true;
+    }
+
+#if DART_USING_GCC
+#pragma GCC diagnostic pop
+#elif DART_USING_MSVC
+#pragma warning(pop)
+#endif
+
     template <class SizeType>
     size_t basic_string<SizeType>::size() const noexcept {
       return len;
diff --git a/src/generic.cc b/src/generic.cc
index 9299bd5..5d0b574 100644
--- a/src/generic.cc
+++ b/src/generic.cc
@@ -1586,6 +1586,10 @@ extern "C" {
     return dart_take_bytes_rc_err_impl(dst, rc, bytes);
   }
 
+  int dart_buffer_is_valid(void const* bytes, size_t len) {
+    return dart::is_valid(reinterpret_cast<gsl::byte const*>(bytes), len);
+  }
+
   dart_err_t dart_iterator_init_err(dart_iterator_t* dst) {
     // Initialize.
     dst->rtti.p_id = DART_PACKET;
diff --git a/test/arr_unit_tests.cc b/test/arr_unit_tests.cc
index 873c58b..8fad764 100644
--- a/test/arr_unit_tests.cc
+++ b/test/arr_unit_tests.cc
@@ -980,7 +980,7 @@ SCENARIO("arrays can optionally access non-existent elements with a fallback", "
 
       auto arr = pkt::make_array();
       DYNAMIC_WHEN("we attempt to optionally access a non-existent index", idx) {
-        auto key = dart::conversion_helper<pkt>(0_dart);
+        auto key = dart::conversion_helper<pkt>(dart::packet::make_integer(0));
         auto opt_one = arr.get_or(0, 1);
         auto opt_two = arr.get_or(key, 1.0);
         auto opt_three = arr.get_or(0, "not here");
@@ -998,7 +998,7 @@ SCENARIO("arrays can optionally access non-existent elements with a fallback", "
 
       DYNAMIC_WHEN("we attempt to optionally access a non-existent index on a temporary", idx) {
         arr.push_back(nullptr);
-        auto key = dart::conversion_helper<pkt>(0_dart);
+        auto key = dart::conversion_helper<pkt>(dart::packet::make_integer(0));
         auto opt_one = arr[0].get_or(0, 1);
         auto opt_two = arr[0].get_or(key, 1.0);
         auto opt_three = arr[0].get_or(0, "not here");
@@ -1022,7 +1022,7 @@ SCENARIO("arrays can optionally access non-existent elements with a fallback", "
           DYNAMIC_WHEN("the array is finalized", idx) {
             a = pkt::make_object("arr", a).finalize()["arr"];
 
-            auto key = dart::conversion_helper<pkt>(0_dart);
+            auto key = dart::conversion_helper<pkt>(dart::packet::make_integer(0));
             auto opt_one = a.get_or(0, 1);
             auto opt_two = a.get_or(key, 1.0);
             auto opt_three = a.get_or(0, "not here");
diff --git a/test/dcm_unit_tests.cc b/test/dcm_unit_tests.cc
index 6964c85..6bea64d 100644
--- a/test/dcm_unit_tests.cc
+++ b/test/dcm_unit_tests.cc
@@ -54,7 +54,7 @@ SCENARIO("decimals can supply a default value", "[decimal unit]") {
       }
 
       DYNAMIC_WHEN("retrieving a decimal", idx) {
-        opt = dart::conversion_helper<pkt>(2.99792_dart);
+        opt = dart::conversion_helper<pkt>(dart::packet::make_decimal(2.99792));
         DYNAMIC_THEN("it returns the real value", idx) {
           REQUIRE(opt.decimal_or(3.14159) == 2.99792);
         }
diff --git a/test/fuzz_tests.cc b/test/fuzz_tests.cc
new file mode 100644
index 0000000..1e46d81
--- /dev/null
+++ b/test/fuzz_tests.cc
@@ -0,0 +1,95 @@
+/*----- System Includes -----*/
+
+#include <cstdio>
+
+/*----- Local Includes -----*/
+
+#include "dart_tests.h"
+
+/*----- Globals -----*/
+
+// This global exists to try to force the compiler to actually
+// run the explore function, as otherwise it doesn't really have
+// any side-effects
+constexpr size_t input_len = 128;
+constexpr size_t output_len = 1024;
+thread_local char volatile* dummy_output;
+
+/*----- Function Implementations -----*/
+
+// Function runs DFS across the given packet, reaching all leaf values,
+// to ensure that validated buffers are actually usable.
+void explore(dart::buffer::view pkt) {
+  switch (pkt.get_type()) {
+    case dart::buffer::type::object:
+      {
+        dart::buffer::view::iterator kit, vit;
+        std::tie(kit, vit) = pkt.kvbegin();
+        while (vit != pkt.end()) {
+          explore(*kit);
+          explore(*vit);
+          ++kit, ++vit;
+        }
+      }
+      break;
+    case dart::buffer::type::array:
+      for (auto val : pkt) explore(val);
+      break;
+    case dart::buffer::type::string:
+      {
+        dart::buffer::string::view sv {pkt};
+        for (auto i = 0; i < std::min(sv.size(), output_len); ++i) {
+          dummy_output[i] = sv[i];
+        }
+      }
+      break;
+    case dart::buffer::type::integer:
+      *reinterpret_cast<int64_t volatile*>(dummy_output) = pkt.integer();
+      break;
+    case dart::buffer::type::decimal:
+      *reinterpret_cast<double volatile*>(dummy_output) = pkt.decimal();
+      break;
+    case dart::buffer::type::boolean:
+      *reinterpret_cast<bool volatile*>(dummy_output) = pkt.boolean();
+      break;
+    default:
+      DART_ASSERT(pkt.get_type() == dart::buffer::type::null);
+  }
+}
+
+extern "C" {
+
+  int LLVMFuzzerTestOneInput(gsl::byte const* data, size_t size) {
+    dummy_output = new char volatile[output_len];
+
+    auto bytes = gsl::make_span(data, size);
+    if (dart::is_valid(bytes)) {
+      dart::buffer buff {bytes};
+      explore(buff);
+    }
+
+    delete[] dummy_output;
+    return 0;
+  }
+
+}
+
+#ifdef DART_USING_AFL
+
+int main() {
+  // Reopen stdin in binary mode
+  std::freopen(nullptr, "rb", stdin);
+
+  // Read from stdin until we hit EOF
+  size_t len;
+  std::vector<char> storage;
+  std::array<char, input_len> buff;
+  while ((len = std::fread(buff.data(), sizeof(char), buff.size(), stdin)) > 0) {
+    storage.insert(storage.end(), buff.data(), buff.data() + len);
+  }
+
+  // Pass to our fuzzer function.
+  LLVMFuzzerTestOneInput(reinterpret_cast<gsl::byte const*>(storage.data()), storage.size());
+}
+
+#endif
diff --git a/test/fuzzer_input/cyclic_case_1.dart b/test/fuzzer_input/cyclic_case_1.dart
new file mode 100644
index 0000000000000000000000000000000000000000..d0102b0f04df7cd42a6fc44a2a7303dea0bf2fcf
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+#At3}Oj5I=nNHR(Pq&st(pB-3@W(5*LEE3X=(_QIUa=UwN
zcP2p`cmR%wGY`OFFGzdfzyokbh!Y1+JO$-Wha*^We`S}eTrQXUWe?y@0C-8g-FYVd
zARcsh_Lm!Xv+9i&30=kSiLI{XzY^O$zWBE7i1`cRK~Jck>v6gIo!IJWe%~Q|pQqo~
zT<{-jCdDtrR)48qbe+Bwzc~(Y`*+Puzen*L4TSNC?SbUCj)$^H9gj4A=Xkv29e5^E
zcniV=li4($Orju+CxP$J;^llX_W(M;GlUZtK4cXwCON^G@5Ny<nq!)bg2-QtxF6ss
zP6K})E&Le<WZ4D9b0kA*7u4xUv=gx_`Ke=XDY_uJv2N{SzBK?nSPD%O1NdA>DR@qE
zu64okjO2u53LPfYoxk&jR}JqPK5f_s6qU(~lsr%{v{RpUTohUuI0W1zSX!(!?U$lK
zT`5}816oj7_z7+{Y>iS_CUm8diPBU#tEA+4Qn1D```1aMM`LLYbs{XcqEL)W@w^fx
zOXx&o&y~o>>`^5QqiMsC#te-?W`wfLMM?JTuFy#9?smblI%sF@)M;(UnNW#HMM_b#
zq)-N*SKN*%e$2U$l<S8khvO9`_X0P?LRL7oYj;MWQru8BoLsI7h44CjFlDFn(0iW+
z({SWRVMsd772W?gwC+{vF0TjFzifElkjkQ-Up15s%Z8NJTEA)dbwdKUr{V6BN}6tI
zcfW2A7u$gPVJ-7C)s!VTg<0USk5C#*xxHMYs&Giz%K4Bz5y?tqTn$+?kLJ$9f=jLv
zBp)aKFbKo(G@{w0$V;xaB;7py`0DPn8<Lh<ph}x^gFk6c7Z0QE+I{^6_@UtiabM2|
zZIPb1F}?3LxEHc(`}#kITdq(_c3o(TU)9PB`u>-_%gNsU6}Xl{A-m$5j$E6=|Jgg=
zd;8bmQSqP*yT#=awW(e7p%jUwqK3C&Wo>zWc2-KB;Hr@6SlBb)+xQ-3AGdg2$U-}B
zu6W#yWE#;5l>rRlF`cUzvi)Oymwi!GY{l2eB33DlJY_lE8vR1d*x3qmnOLz#XbtEc
zT4AfS_8Cvc(aeuyciXa1*-mi;BY!duV$Yj}^gjcQnJ^YLQjXt&PdObR<=Y{<EVYm<
o8ZvJ(jahsi`s|Y@a12Ynrk8H<LtP0=_Qq=dut2T1yDS3y1BJ~v5dZ)H

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_10.dart b/test/fuzzer_input/cyclic_case_10.dart
new file mode 100644
index 0000000000000000000000000000000000000000..878453b304030b129f4deb52931886e06a7a1fcd
GIT binary patch
literal 1464
zcmai!&2A$_5P-{nu@ey?q!oe_jTE6EY{&L^>~T){*}y8w3M7PBB&1DyraUgGr)Rdi
z$FUIy9)Kg_%mZ-P3(_7q@Bo|<;>3XyPeJu$!Vy|3e>GiQKV9AJR~>*i0pJx&v-O<*
zVD7bK`j`K1r{$vtD{U=rnT@uSzcQO0x%{^2iP=l$UWfG0)pxP}o!RIZdD~)pS0>+A
zT*@CS#`!PIMt5aiw!OWe-#mM``@3Rl-s5@>dSoZeW>3j$&wZ6Ao(BfM^E_P17Cff}
z-hwd3cs7nkqxm$9M$;geMXSYfF#%|SOc9QJ`H+^pnDrQE!6XXf!2*+bFr5d>fefZN
zh>~frm@k7FPT8{!T4u<OJkD5nOPq<>R`S@hv!XUAX`NsDMD8p=2UcWwq6eRoQY15;
z^P>$;rmV-TbLlW*@$pV;Uevs)`K)FakV>272}j^!I8&E1E^|W`_5rss77k0p`4Y5f
zO3f=ezza$TKf%>jY*3LCWJ-gA3R`BPR7z%XF6zMI-ypRet>ZZ~F*)fd*Fq|KQBomd
z-VystP1#U9F3Ad>wgUNEptUG0X(xP@>@RL|gS_tMzF1Ke?Y+G@sr;lM9aBOHS1saP
zTYOPUH{|*;lcc!UcXbbkYi{ltZu6xoap*RFkE9daayPtQtaFX<27E9U$BS_CzL<`~
zK`;+Pwi&7U{J-IK2Q0p?dn{kpysgRCqMBdVR5gp5+}6szt@(9L2KcAp&yue+pVIyL
z`W(Kt9?O2E%Oo+}B{+uJbRs@NWgYkSe1p2gK6fjVeesmyHKkJb#e6Ye_y|j>q>hne
z90mPp7!JpCo{jUYkb1}3)w7Q;Za%wWZDj~`QeQXtlXLod1dFfF56>UG!sCp^*X-}}
zUXzj||IP2a3I2uLkB9qz2-i}hQsOc<4!^35XZ-tL{yx`(|7&omNTaxrhPPa~|8IUD
z`@#Qpc%0v9E3R?1LSw5CT_`Aae5v7WSUXpoo}3g)#<<Q^G9-5rOt!&<yN^4(%vElD
zG=F*giKGV6kxl{n@Pzl3_r=3weOG*umtrk9DCVNn24x~LJ~jReu|w}m_B?j9L1^^&
z9XfJlQpJo$!}%<TB7fQ{*Xh0C00zNmIE^NgS?KSd!IZ2+gWThH;8V#PNaU_B&I?0I
p%==<88b=~J4FmDXQ#gc`-0(|x_@ODuvA=aj-YwCX-F+7U{sGM%H?IHy

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_11.dart b/test/fuzzer_input/cyclic_case_11.dart
new file mode 100644
index 0000000000000000000000000000000000000000..ea0f840af5d46c2e8afc969fd673947d991f45a8
GIT binary patch
literal 1464
zcmai!&5J8V5Wp*6o9yBuf{31MVUZP+Y?8?&lRfRnTYW71P!RD6!rRJBWzx{oGq1ZR
zn}`Sh0FUC?KfuGg2=Cy*KftqyCl8*yd$)Ra)}uCbel=ZPA6;FYmmPpN0N^FhX6u>!
zow?V-^iTiYPRrLDEVMP=G8=7&zc8B}Tz=E^r0fNAuOszO)pxP}joIiJylt_*i^+Et
zm-s`)IRBa1=&sC*w$~T(SI-{p{;HUocR8Pfp0pEYv#0Rdb6@3&=YgSbJr7sdf@d;;
zHzABEo{gi?Xg&?2(KHBV(Q2_=OaNMdDZ!CXAJURHvmDbbm_%VbSWprVrt@Gqz+g&)
zD47O}`7)T%lr7t!F(WqQamJI6#F3b7g~y(qm287T>-^rwxU&EqSV_YRJ@`y2B{AbQ
zKic3hWjSV<Q-={x@9(tcMa`R<PiuC8WNEWJVGo=PN9uCKWp1Q}eV}bjg`?7Nyo4;7
zQuB@u@P^XCk8rgW8&c8<X-Y#v7PibpsT5{$E^5c(UnjMmtm8E@v2^HUt_3Rjyp)BA
z`9y4wT4qD>sFYUlvK7SNf~+NBrFOz+$@bzVH^lpH?voW&(%#yulgbW-)Uixt!dZ(r
z*Os1_=!Tp>WhfQb`mV0waLvU%qiw!aB@NxipHb?Bwp<M_7wcRTyaw-&#qlDXyeFpP
za1hMH5dH>(n(zN>-gm&$*L9EQ7d3Bda$8jE>zb-&QIpGB>9;k%s>uNVH2ht1OY<$=
z->;A1bL;WkuVhRT!&QP~m`x|*LsHgpZO=EPOX_pAGVF^dGG5CRbzjUE^M&`YM1?vg
z_Hh*Sr(rl8&v`Y@vjX*wrK_hOUEF+n#nQ@1(n;NJ@CV2A`S{`UyRG>>(~mQrK4;(0
zdrg@f`EP#TP4F+|emwO5AzY&-rNm`!9DP|S&-nMh?0w7!`&ZynNloGc4IjBO|KIrD
z_k;bb@F>62R$S9+MaEVxx=_g2aZ|%vuy(FEJvk{9#<b2=GL-Hlm~4XySD$utnXBA*
zZ@zi_jiiRiNu2`p;W3{p?~8}W`i}TKFU1-+B<7;jhA<Hs-x~jg*rB(T_B?iSL(u5)
zJ9N^ON#!#d4d=5Uiu`S>T&MSn0~iFO;WU~|W})vtL#ecm3~`O$hEI?Wkl?N_&I==z
pnD@nGG>$}c8V2IyCvXTW-0(|x^nod*V|(ii-Yv<P-F+1S{sHt$INtyO

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_12.dart b/test/fuzzer_input/cyclic_case_12.dart
new file mode 100644
index 0000000000000000000000000000000000000000..a0bc10b5ba4a3ac69f16d41a88a137d3c34a2239
GIT binary patch
literal 1464
zcmai!Pj4$V5WuJT)1(yzAt3}Oj8vf_k~GO?lTA<k^9oN@pFl#0hlKPx*_~`GdA<8=
zZ<-(ud;pG!GarD%yCA&-2R;C2gg9~F#HV1q*>VI+-rv~c8IQ-~ec1+h698UvZ#19D
zKbZSXO#kxZR$9KX$3jcv9kbnX_$#x~#>KY{Ps&~}_uEqcT#bv>@65fn!Mi5wJD7Z5
zae+TpjPqZZd!40u(enC2{^r@G?cWts^B%`@*p+t7Y;+agcpj)c@jNv2o#)XKoA68~
z@D_wI#nVwV9L^?TG@Jy%G+NFV^D#gZFeNzl;X_*TVwPi?2IDA<`*TX-{$v&``WQ^8
zA0?AuK3fD+ny_UHG-kwx+|If4k$5L&OW}!UdnsF>&^o{NF>WpA2A0zBL>E4nN=eLk
z&bJmgOj(Xu=Fnlt-TOPMd0F$e=F^%TAX(ZhPuK$o!#j0&$3<?Wg#(~XOogM;@O}wd
zGNtAfZQuo^gP-7fBi5v(6VjB1ge+{CiBc)d;#|~@#lKE!Jz2+dWMb*i$y^Im@_8u>
z5%Y=I9<|H{;!!EB;Aty}$AYXSVWoD$N6Gf$HaEoUZg;_oDrj%*)k$TCLh4v1GU2F2
zoNG(ZOLPN{pE8t+bA4auaIoU!p3^2@sFDV5?awH6LL1J8my1=d30{W}M&e{1j^7uP
zQP>Y=VaPgzn(zM`UiT_@pVxivU)H><$z@T^uWG8AMNLj?rQg*2x+Vks)9`o6CC#_A
zyI;SDkFCr7ppr333}*>WU^*F#k4Ra^xxHAEE~&@a%CIM%$ap1F)IBkq&*t940u}0*
z*vE0un}p$DG~?Mg&kEFAmad<Ee0lrXHA_n)Nhfu=!JoXRk4JF#?XLO){800p`B2aM
z4VfJKF~9Ey_!qKk5A}ZpH>gP|ag`fKUscL;{{EM}&&h-RD{!TxCUJ>|k6f9<|Ji%r
z5B9IYqx@c5aYM@`8C$vNKp|ttMGbGm%DLj~^t4bI(<)cVK)Talya~pfecIAhu5#nO
z`Qq_6k{Ti>bqdgf$9%55CmtT_yW)$y6f0bln2Ayw!bD_zYy1nb18*zsMeO97V6V&X
z&`DP&mCtB6m`#Hy^0%#Wo$eHe&<}=#Ni-f$L;jzEp;TH&hB(LXz^BLuNO0Q|7ln~Z
p%z9!x97Q5J3j^`V6F7n;uKA@q`p}fpvAuN$?-yjuc9%tfe*l~PI28Z@

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_13.dart b/test/fuzzer_input/cyclic_case_13.dart
new file mode 100644
index 0000000000000000000000000000000000000000..f69d77ab585179732e6fa13da9fbd4818c1b57f3
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+_LRuj>VWbfnM3PDRC*7IT{OrJLG%Ju0Vv&$`obF1;lH1*D
zyE6&mzyokZoOu8adqLU*2OfYkLYz2o;wdP1Ivl~0^HsZC<#JUyuX+G)0>CSp?ap)Y
z2l1f8v%lPTH>)1CNa!klPi%E9|CQM8@x`}oN6cRm4|+oVTz{9V--)fB=Jy@a_j&q#
z%?1ClW>Wk@Z1tD=W!LFT@tflSw}02n^m`P~(LflF*d9oJ>v$-O)bU8;caFzP-ht;L
zg|{F~Fquu`$s`KGcoO*jEMCqRa}S^cJVQ8f;X_u@W|9+}`Cc3*qdBI@D2V*Ui2DJK
z;xzE*(ZZi$K$cxlJV!F5aY2)=L?;oulAk*EmZA%i8|(Hy;adaHgQd{4Fo4g6l!E89
z=0+DR&qz*4rqJu*QhH9)`Mqj**YH`xKA@;fUZmuKf}xZ8bmF4W!oVTmCc)BTrRlsB
z4eCnKjvmm4%EC`@vtetL!ZM*NjZBoL%2_2P&y#{Rj@iFX8a*0IYp4@pxfO+CT#6T!
zC|N=`B73exK4y<AVHhnNhV;$Q7-U8$%UqOX&+ZD1wC`>gEUSZd)=r()cAN>7h*YE$
zHA@O*@I}S#nBvEr3rV?tXmU7SQF1SEQ!HeKW4m^D6e`6HWy8tks!#}Tzz0)yIuE_~
zSuhPpeiVkJ(_B&gzoC6cG+kZ~Xnxu7z9F?my}oKF8<q_zt+jsB@au*IaCLMwq?V>C
z?dt2!aIp<&9@a8XQ%zZdQ<w!F`v|46l-tWSstSjct(*_pQ<1Dh#?_ET^JwloEV$$<
zLGp3p4}&lqPa|4QioE1%OVZ7=kFV}NyCG?*1*)`ZH~5pzbn!5nZrs<u06#RmAnyD5
zpe@o9_f7A+4eo{P#=ifL;g&0ul3f?t;#aluf`0$Y-sNO({~BCNp^#m1O;@hX;s5NN
z@4fx&@VIzThTY<FiQ3dI`cR6*Qd7g*u(Gy1KRYWWPjFSpbS&(d?`?dKvX5K5E@Yvd
zH`hF_BAG_CLS+C$ctZCohHU>>-(_DE6<hH&vWQhmBTrdQRinQUGj_JZTqahm5n2O!
zhgR4st$oImaWwPe*i~B=D%&ZJVB}B6LF{?6(Dk3jOc;wADaY@?r<^X3^6ijamRd*_
o4VgEY#w<P$efG&yIEE!((@VGbp{|4_dt)_!SfJM1T^0fU0jR1s+yDRo

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_14.dart b/test/fuzzer_input/cyclic_case_14.dart
new file mode 100644
index 0000000000000000000000000000000000000000..99356fcc1ec0909d128f20c0629e3a25843778b1
GIT binary patch
literal 1464
zcmai!&5J8V5Wp*6o9yBu!b9|A3yZ9nWRv;GO!l-NZ}qY4LqWtR2yZ(xl}STS&%ExQ
zY$6`~13Zd<g@<<$-ob-^fM*d;9z1#XZuMm1NpPU@tNy6!>Z<Cz>H)k70Ix{eo#*0r
z;z5UJf4Xrus~)vT=_-CtY;`UFh1l-##kXxo%wG}@dP4nFkIU6>#8yx9`wp%5dHQ|L
z1^=ODQv6J8^_Ti(*R7Z0SH}Tv|Eihk_b8sDfiNDiJ&^p?@lY12<B`Vi9FLd01J6YY
zZ$X$~GMmPeNfd<fB=G%NyqquQ9zX|phH&D-hpeK_q$fD@y*Nxpb4-&_5c!J{_X8Zo
zY2eSJg+If9EW4n1j$}yR1qoe=P9k<CKXvRaMHeJD*6n@5w+5gGOQC6E0G|sf1<z^D
zeO<6TBRwIVLWc>7^LO6xs^MM3XAS#+qB41rk_QTgPU_Q%i$V(nhk%;|ON*7J^HMaZ
zD@8kcKpQFxKf=w1tx*cggswC)QJN}em6SYB3f4Gg|2k>b(O8;8oe0aVC=}yTyr@LU
z61oxDb0zXIdt3>_XxcEOF+*dJ8KEq5QIb8oD>Tx+yIruX4%%6}<+QfrOsGVpBBiKV
zQYeEjDsIOVKjvIW%JoB&!|{redx4u`AuAl)wY#HGDQ+kmPA^x5LU;o{n6lG(=)KQ^
zX*lwuFoeHBb4B(4hV~tixV#>aeA)26A+<$4ziKEOmJKPb_4=ma*9{5ao`$O>wKP>}
zS6_FAi)}!1SnE7ZHDw7-VHSAoBb3HcZZFrUDjZU_az12FMY0kZS3?%fqq+02;F7BZ
z$;XL548m|cjc7J0@{+49X*bV4zPkJDhP0&?sM4n0;14>}#luKkeD@6r_4vXm^tpaM
zXp8iO*rxa02KPdC-@gBk;g&0ul3f?t;#c+J1^w>d!++VkGxzqd!L<|$*%jAx<=Pzn
z&))go+rJKviw9-cEiRX+P3@u&rARC_HM|WgYs>Sqvr_T|SA|T+!k+ow#`h@uxW(&2
z7TS4p&EqPPX+$ej1~7ytbgyE__K)>l_C-;#6<;HZSfw=bl;u=4`U^2*XDiHQV#OMv
zHK2EBg{{)sXFM54Ge3@9wPm5Q-NF%!{K+_oJ#QAe{?nKVV^JgJ_#OC^(*;t#9kR<(
q3(2A(^Cr`n#pj{VK6whqu;goc=@viKm9S)QtmY33)Ox$iBEUZkk2qcc

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_15.dart b/test/fuzzer_input/cyclic_case_15.dart
new file mode 100644
index 0000000000000000000000000000000000000000..5dda8e13dcac5a7812737d49a773d78813469cfb
GIT binary patch
literal 1464
zcmbVMOK&4Z5U%(UI}s6ZL2#mxA{2z}*z@p=bIM}_t0*f#2(d^=q&-u%OX}&F?dfrB
z#DO1y_!S(uAnkzzzXEaOh`4j7dOYR`5+jwr?ymak)zyC41$YAhUb3{>#p<^fz(Lo@
zhc@qfGX1{Bx%{EVB>#o+ptmqTcAUPTU)lb!OZsQVR`-AKou58#|EzIo-sOCb`&4?2
zt-g|X4v$oxIy^S`ox_ubY{OTS!kZ8#m`o?}cpL>`JPv$+8ZTz^nFr7YxkNbSx;n6|
z*qGPXIQ6|aOolT|lVK3~^P%(u9L8zj&!V|M#ekU|&@w|N@^{I?rEw(2j*@2%y9?@o
zlBIRFPvy1*=)!^wAN1jKQi^28XVCtG^;Rx<o$!`Zhq2?cTr_yy;C+M78|(p6<$SOQ
zPKG1(IO04vRKgM9Cc(mDWjJ1nC7MdJMHkqhvhWk!Zp0cDSwW^UD5xl_OjJtAEXjp)
zoaL$b#|i5{VLg_X&(I`frKMa8spv&Tg-Ey}I0Vp?jl`3RO2NmaK;AQ{L{XBq!ez;P
zai1GxyZc?TqE4E<*Xp$9NkKZHlv2)GB)Kl}MJ4Ts^T$k*;$A;CJshpLxtF-f=c>Yy
zUAr1dr?}y6xOK70HNxxg{zRP3Lhn5hOv0fbg(3U}MrywQZ`tmc#r2g-fG-<-XpqOE
zK3_Gc8Y~**w$}PhgWojB00%7YF8N9DE$!~t#c;XxS&r(pOjE;Mf-{%~p7;<|X}Pyo
zYt$7ExLcVVh-Z|nXesqTM6+n-Jj|t%Izjev>JNf298DrVP4cXeddsWZ=O10)e|F2O
zg(1{wJt`dUcNUkA`&@nx4ZhakCF6dc4_lO;x_w8>7PuF(`}XsH0(VlQQsO2z7Qe2Q
zm;C#0d>3=ie+6z7X%yGeaLF|t{)_K?@A<F7ll)Pa;tm%JG-d6g2L&aThZ^33m9@pi
z`FWvaf~#DmBeLhdxA8shK5p?QSGjTC-0-*?SsFx3dI>Oqr(9P)5c|jaj`$+4#7eGF
zM559LWhyehHU0}JM~+M7Rbpw4aM0&>XvtP-?K2*aqNyLp?zUB~mpjEV4E^yah&^u_
zy7@D>q|%~6?(y63spJAuxgChB!jKZtKzQRxEaHpM7au=^6IjSKzjTWqn2Id(OKarg
L9F5uTx(M($qvbaX

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_16.dart b/test/fuzzer_input/cyclic_case_16.dart
new file mode 100644
index 0000000000000000000000000000000000000000..781bf233063b26ecc688765aa9392baba35d7729
GIT binary patch
literal 1481
zcma)6J#QmL7=GiAIEjcjsE&$3N)d$Z*j}%9ohly}I7K-DI-xtHleqEjYkQ>e?B49G
zV<QTF1magv&>&qw!LLA+l$12|JhR!*ARVmq`k9&c`^&G}MDG&OYtU{pU;fr0+G$()
zvPsnF$n^UPXYz*%lk6AZPG@d^Y<YgJ{)GH)TbZAMjrRZ6|4+NWdV70XUL(H7zRpsQ
z2bRC{csQ3$`bwqrkivwM$uJ%aqH!1x#z8QN=hNAAMARg?U^+rxEn1Wi#`%IL!6*)s
z-jvg%H;#f?PX=S|#pyVhMzdhTV`#R>$Q45o-x&y@z!R{g<*~>1T(wBc!g<-pa$69!
zsriS+!yY|TS}VE28=k;-a)EP#D?+D%*9V=}cv0g`jn8ZB5UbMLfCU5tPaSxiWmXlm
zPrOMucU)TdOSxcM8c4JW0;Qv$=xQU@td$eWmX?Lei*hAOt>r4ogg3m(Qt^)w@IMEi
z3x_whiE`4Z%m}H~t5W46K}NJoWYnrJ9+j#PTmQqjL#bd<DC2~W68hpMvkbYLyI=)^
zerjR8VyBg!6v`wjRVkttNoERuRZ7=K{JfG%qt>@|4f{(J_l!5$OqbkuYoDVsDQ{2>
zf6kYgVS0x?8j9m-IQmeGhhZ;>!jS$VD-HVpE#wYBzOG1tUex%qMvO)EzN}H#nAeE1
zR{Twk-_!`89gy!ORsvnR>#z6WW7`AmS7(`~7FD8Snv6%{6V`=8ZO_+iO75asE7=uK
zRI*eHX}ThsMpJKLCbcvP!^Tn29fx6m7~wU^R=G4UaJqW_>BY?#S2)eBVv|;*0)M}Q
zd^`_8KE6ebfa-n*yr1XYhDwk8y=7#B{D$0p_w#>9*V3@o;xe<2zpj{P_<fVU_j#}X
z7F}v(SX@Yplq+@e`v2OsHyQN2dxLM&qwLlc;+p4kwnb&LL%B*ErkviRrE~e|$w{td
z!plsjedSJq(Iyz79lYhsOlQ_x^V8&8w6M%h8PuptkCABB6@Gi4VS7IiUuLCP$~B8f
zl*Y15#R_f2e@fB!x~e!&oLV#O>|rsTa%EcCj0gQ_62x)U{s(4p$2g$gLySf+=#S&k
zXcGFNw7gJ-W6LP~`}9;IiBxX8;ylll7ExD>2E$myr(w|e><JyxT&}VHjz6}ga?mfF
MmA5mtcI!*~H{3)zUH||9

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_17.dart b/test/fuzzer_input/cyclic_case_17.dart
new file mode 100644
index 0000000000000000000000000000000000000000..65a82eabe63c5717a3c370614bfe514b1ac29432
GIT binary patch
literal 1464
zcmah}&2A$_5Ux0OoCG2S2gIJXk#Y#ac5Kg#XPi@hHn57a0tq1&3AAZXm+h8%x@Wt4
z92;@qhQt|h<^ecxLD~Zco&s^?$^&qx+8!gM6);lytFErEy1J^`FIoU^0Kf~9S9Z(!
zZw-K*mgRT50F5>m-v#_*!hcw=bMp(~PJ3#9Y=-?({!0FPEvbJdY_$G`-+qa|iTkqs
zpK;%8>??jl`85ud5djY^ejD&;%6H+J6z~=#Ip(85*6*irlJ(;#8fDY*WIP1e1wKPK
zrh7GER*^I5mpF=sS(10hDDrNcMw2d&V(exjj>hRE8evS#CTLzD5$QW8p{vnJ0IaF_
zNm#e0vI&YiAABG4l>=zOR9Z6Z!zWTH$qTZDuL+*dNY6>9)S*uj;+@raS>tVuPit%g
z%E}c+Py|YbPHNMM6Jw==1HfgDrN_$Bc>*2UN|Q$m$f5G^6I?IZ0+sYk+R7r6rK<{7
zDaDK2usSgNJ4n5c&XWyoE<N|sXvUR%UdfW>bR*((EsGv|R7uCk>=@FTp>xQb)SiVb
ziO+70Me@7dB+Dr2uWew5ZL#KYCUq`_6qGf~jdu9F;=V`uW5K1OTHn_-?9D%4xpQ2a
ziK?*Y7vYXl3tUn)f?m#zMtB|G9k7#ea`O(02T3<dlLY<*%Qf}?EAl%e33c5g`K-pf
z8fh%n_IZt}#<E5#>w14#<CirOzz#|1B|Qo1(x$)RjF8(t$-!FZLRhL2oWLj^viDIr
zPqn>Rpsuh()hc+0J(2lb&baQdbexVugb7z%=SVS*qfVS8y+KOW+!Wt%y&~=U=?9m$
zA77I;wGy?c#|?g`GebV%3;EsE_<fD%gxh)EYe;b%)=kYD5MIdU+s^+H+;ELbu`6Re
zezD#>r{DkLhcmbQSK&%YjqH+Jy7HP1|HlupxBS=Ok-687-QaYJ)~!Rdp_I9&p@s)A
z_r5$kJuMZ_ac-38Nq-s*m(h@_k1M<~%GeMs3{U9D%p!WJX8;{|O!qP!wtcK`vrkRM
z=6r!HWtFzb1uLj)^cUiKfh*lb?&ShuXP@4om%b9~m|4G<j-o6J-Bw1=HXDb~jrzSf
z8xBWFm_Lg%={#Db8b5@OI9)*SRfk=aRw|Zu*swpySay~~?87H;1XI4Cm+tXBTS-rR
P=PkdVptY+_6#@PNLIyiY

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_2.dart b/test/fuzzer_input/cyclic_case_2.dart
new file mode 100644
index 0000000000000000000000000000000000000000..8c6b303d684b9005bb807be5eb55c93571cad928
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+#At3}Oj5I=nNHR(Pq&st(pB-3@W(5*LEE3X=(_QIUa=UwN
zcP2p`cmR%wGY`OFFGzdfzyokbh!Y1+JO$-Wha*^We`S}eTrQXUWe?y@0C-8g-FYVd
zAoe>v`^$~HS@lMXgs$TE#8%hxUy1D=Uwqqk#QX*EpeNMN^|)O9PHgowzweN~&(rT~
zF8Gf%lj0X*tH0DQx=vq;-y8?H{kvwS-=lbr2Eus6_CWGm$3t19jz=25b39)14m=Yn
zyai!`$!r==CQ%T^lfd_9@p8VHdjK8a8N!JRAF_%Tlbqnp_u?=a%`r_zLF6w++z)UR
zr-46@7XAzavh0H5Ig%l@3+i+v+KJee{M50x6kU+qShw~u-x`1(EQO|t0emi`6g;On
z*ScVNMsh+jg$@(y&fj^%tA=+CpEm3Ripu0gN**W}+Nn=FE($FS90G0<EG<@=_Dj*A
zt`x240WGL3`~)`}wnix|6S~sKL}{v=RZ{XiDOlr}{p+OBqp>uHIuVvzQ7FcxcwUK;
zC3GUP=St*b_NWqu(X?SmV}`~cGeTMBq9l8ES7@Ylce`L&9kjD{>a@1wOsGVpBBiKV
zQYeGZD{jXWKjvIW%JoB&!|{redx4u`AuAl)wL7CwDQ+kmPA*r4LU<iMn6lG(=)KQ^
zX*lwuFeIJkithg#TK6h-m)8U8UpBmNNM%vauNumRWkX79t=}~Kx*-AF({Oi5B~7=q
zyI;45i)}#tu$Fn6YRVFv!YuIEM<|V@++MCxRXC(<<$TDVh-4))u7)g{M|0<4!6jD-
zl8+OA7=+<?8qsW0<Rw>Il5U=Ue0BHP4M|HaP^C?|!Jo9Ji-%En?Y{m3{Lt`%xUc7f
zwn$IhnBI3A+zZ*Yef=N9EmtTdyDqfFuWIE5egDhe<z#RF3S3K}kX><2N3PA`|LmRb
zz5Q$OsCZC@-QseI+SD%kP>RG-QN!D?vbH=wJ1Zqma8<~3EbN)@ZG4Zik6XMhWTBlm
zS3K@UGL2}3$^eG&n9fxU+5WM<%f2Wow&H7K5v!C&p0b>7jea3!>}-X(OsrTVv<CDJ
zt*}*E`-~^!Xy(VUyKPyhY^OMakv|y+vFFV~`k#TuOc;wADaY@?r<@Lu^6ijamRd*_
o4VgEY#w<P$efG%{IEE!((@VGbp{|4_dt)_!SfJM1T^0fU0gG`s5&!@I

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_3.dart b/test/fuzzer_input/cyclic_case_3.dart
new file mode 100644
index 0000000000000000000000000000000000000000..157ce2d1694227218c572dda3f638b54e7798f5b
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+#At3}Oj5I=nNHR(Pq&st(pB-3@W(5*LEE3X=(_QIUa=UwN
zcP2p`cmR%wGY`OFFGzdfzyokbh!Y1+JO$-Wha*^We`S}eT&}YFWe?y@0C-8g-FYVd
zARcsh_Lm!Xv+9i&z@V%6J+alb{8wVT#~0tW9Wj4FJm?Aab3HCszY|+M&F?#;@ALHg
znhXA8&7}B+*y=C!i>}j`;y1?uZvU>C>Gvp}qk%9Uu|1Id*6~mlspFBx?;MYpyaUff
z3U5J}U^1J=lSveW@g(s5S-hMt<{m%?c!qF7=jcLK(PEMlocUfHCZjo~$tZ~Y#fbX>
zj^Z@%=h4ESVL+B$P&`L6q;^4_jzl{VyON(e_Liaxk{j#RKIU5k(1WGWG%<kBg_MHl
zH0N3uEYC<zNT$$XLf!d0Z+O-4uHn;$eLzu}yhzCd1w%XaX~#vOg@HrBO@gJxO4EKR
z8q}4d6+NH@m4%<+X2aGfg=Iol8ks0fm9t7po+kxs9J7C&G<r0a=1?cXaw`hOxD?MT
zQL=<iMD|>Xe9RtI!Z4aP3~9{J7-U8$%UqOX&+ZD1wC-*fEUSZd)=r()cAN>7h*YE$
zHA@O*@Oj1UnBvEr3rV?tXmU7SQF1SEQ!HeKW4m@|6e`6HWy8tks!#~8!v|A#IuE_~
zSuhPpeiVkJ(_B&gzoB)nQg?Yhp#EjU`-XHa>iJbe*|2O#X|45}hF>=%06m4emUN}5
zO1t{HJzQ)9>W8(=(^ONI;1p(o$38-7EamocjjF;SWh>`H_CzErk#RL-(L9<v4+}22
zN|1b<_`@I!$J2;rlOiv<+LCnh^y90$&u&OsYJn<kt{ePGd%AcSb=U6eFTf8CFNpj5
ze9#u@i5t`VZi9OvySBgo$8gIPO3AJZZSkvGc|qU*vUfSz+rI+WQYd6sT+@+jbND}d
z=X-De8ayf<lwr5HT%tC$i$0Vhv2>~7ZCF`bo}ZnSk|($-WI7i1%=b3FN7=_MUKg^^
z&YQbDt|FO6v_fS7LwHQ*Du!(TSl?w|6ct<XHL{3RN+VBMPF15{h#5OuVJ;IZ)(EWu
zy+bQ(mDWDv$vB$%aqOxs3zh8@M=<gy;~@6DSxEmg(3lBhQ6uH}9r%>f0aCslvddBn
p$)X|iCexV3=b_I&c>>3<<ZF8A7C+RLuw-wn<_`<hdb`Uaz(2BWI2ix{

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_4.dart b/test/fuzzer_input/cyclic_case_4.dart
new file mode 100644
index 0000000000000000000000000000000000000000..d02819ef8752c10b35895f8cf80afe4165815a04
GIT binary patch
literal 1464
zcmai!Pj4$V5WuJT)1(yzAt3}Oj8vf_k~GO?lTA<k^9oN@pFl#0hlKR%>`pc#dA<8=
zZ<-(ud;pG!GarD%yCA&-2R;C2gg9~F#HV1q*>VI+-rv~c8IQ-~ec1+h698UvZ#19L
zAI$xxO#kxZR$9KX$3jcXJLX=?$zPd`wp@JM@Wku|bH7dc=W1N6erN8rjl65Jz9W<G
zD=y@Z732ID=3ZxMUbMWvpx->Zxc$3gYTn~`4!dN>%tlwq8_xrkC!U7}zw<m=$|gLc
z1m1!$#&|l4hQrw;jE0jSm`2O_Vm=0Ff=m&PefW@;yqM(}r@=T1<Nh3zxIdW%i@ppd
z*pHG)FrO`gDNfk31zKjvhTP7pFYr#hZ%fG&&-Rj9prmzv?PIyM0Bu;3;fXGMPD+u?
zc+R&LIGM5>v&^BxkUOUc&T3xPysi1PW(SZ;o8<|6;9z*C4)3_g4Out<+{9QoEDi6M
zphZ(^UeN|#P&)Vtt~X+hiku)*8WdF6G83gzGK+IjI~M;ssr6_b&!LIQNk_RBQql90
z3K8>(*j{SN2I5gkR`9eH$YX)lqOhc$@KLh8xXlgny4zi_q6*qudv#LTNkKZMgc6Qg
z#JRTkyp(Rh@na@Qajx&{91d2T+;iOI3svI4t^FBEC%EBkc)3{R8sT;LU?fiF;rM+q
z8HN2|7KW@dQuF<P!|Pt<?(@3O{mYtnHMuOR`BhC-v#7~wt@N9kU)N-Se;WQSxup4)
zcK7S|@UeBdA5^kT62n=76PQlM;v-bnac(cxs7vf|wldihPbgkdDs@lH=Cir?u#igX
z7}>{h(3^zeU^L^|IL`{Hw=7*h{rK|svul=?hEOMUxxt^jr;kT)_wBCw0{l?(oatls
z^}OGp<k*k-eK)|rkX?JI|0B4O8kG`PxpDYar99{Ff7$z-JlMYiSBf->OKJGXl{x&M
zz4!fK{~A2X@3j>-xLl&Km5UA(6gw_zcpFyE6=$cXg_1F@a+M6ood)AgFy`#z7O!%Z
z8}H2*kH3-BAUe`1Ko1`Cx$>TPc&zV=FY;2X<Qm0Hl-i(7M8>zqzYsg{wq!42M{9(=
zF26%Zu1qSQ(Qq)E22td1Tje_4DGs3@3<r~FJf4R9KLdj)S%(HW$M3+Wk`Iu`ZBJYj
rhLo7~#CSN0M06Gg;*%$E1WUQ*m+tUGQ<7tQ>x{f#pfTHB76JYNe5E)K

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_5.dart b/test/fuzzer_input/cyclic_case_5.dart
new file mode 100644
index 0000000000000000000000000000000000000000..b180c005b3889c74017da6ad40978a8e7c582c56
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+#At3}Oj5I=nNHR(Pq&st(pB-3@W(5*LEE3X=(_QIUa=UwN
zcP2p`cmR%wGY`OFFGzdfzyokbh!Y1+JO$-Wha*_3{>m;_xm>pUWe?y@0C-8#?mQEJ
z5Dz*$`^)vaS@lMXl&<3U#8%hxUy1D=Uwqqk#QX*EpeNMNb-!HwPHgowzweN}&(rT~
zF8Gf%lj0X*tH0DQy3SsT-y8?H{kvwS-=lnv2Eus6_CWGm$3t19jz=25b39)14m=Yn
zyai!`$!r==CQ%T^lfd_9@p8VHdjK8a8N!K6AF_%jlb+zr_u?=a%`r_zLF6w++z)UR
zr-46@7XAza^6Y}*Ig%r_3liEAtwiife(Km;iY`cQteg9oZw){XmO|6O06rH|3ZB!L
zYhAEBBRwIVQilo25y?4;i+k1ZuHn;$eLzu}yhtemB||IqX~jjMg@HrBO@gJxO4E8N
z8q}4d89ks0m4%<+X2aGfg=Iol8ks0fm9t7po+kxs0<(XEG<GzW#!x51aw`hOxD?MT
zQL=<~ME+cfe9RtI!Y~>(45`o17-U8$%UqV^&+ZD1H1BSgEUS}t-p-uXew+!Fh*YGM
zHA@O*@Oj1UnDWP*3rV$pXlgiKQE@MDQ!HeKW4m^H6e`6HRm17!s!#~8!v|A#IuE_~
zSuhPpeiVje(_GQ{e?#+LC2@5<Ao;T4eM7ny_4ulxY*;p=vex!Z!>=0>z&#CjhIFOr
zly>Lq)^NEENDgbAr>UkY!70oFk9~yFSgP&i8dZfus#ea2?1@NLBI9bvqIooT5f)r>
zl_149@rOYej;9fgCPiLywI%K5>Bm=hpWTqQ)B;u7TsQcW)^zzW64&nQFTf8CFNpj5
ze9#u@iR;t*Zi9OvySBgo$8gIPO3AJZZSkwxctPL)@^>}a`@aI$QYd6sT+^0oclbYl
z7klsj8ayf<lwr5HT%tC0h(44ev2>~7ZCF`bo}ZnSk|($-WI7i1%=b3FN7ctIUKg^^
zE}FYM?nE+;XoboEhVYp7RSenwvA)Z`C@Qw%Yh)3tlt!MioKB5?A!h7+g}F?uSR=Fs
z^bW1CRa(c4C*x@5$FVzYS*UDhID(Ns83(cF%|iFyHD<zC)JQdc2R`Mrfs}8D?6TBC
pvS`S>$uws1dFZoGp1?6I`I=t3#Se8QEcqL&`NIOW-tMXh@DHc$I2ix{

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_6.dart b/test/fuzzer_input/cyclic_case_6.dart
new file mode 100644
index 0000000000000000000000000000000000000000..6783f2b6ad1e114b6f4b8e877a2101061c001c76
GIT binary patch
literal 1464
zcmai!&2A$_5XUQyoj4HzAt3}O8Yx0S*pB1z*yEh?v4K^T6-WrNNJyLZOnKZ=PtR;m
zk7FYaJOD?;nFrvo7o<IK-~l)z#EAnZo`Qc*CLE!qnqT!tRaaM6&&v+cn?&>y(%OEe
z{s4EjW%`%zx6|s4EhudxZ^5m$lfQzkj+}qn^5pCVxYJSQ=el1ke+RcZR^D!7epe>n
z*PP2AYsUF6;MVTKzG(aTLjC61<;~wUQ~Ms`+3%`y1h%?bUVHB8Jn`JO{GI2)LT=MD
zmC#!h#vD&hqTz5l4x`~X2qw{DHlK}%wn?T;hdz8tD=dZ{^CTEWVcef_68Fc`VBVL(
znEO#O4rbGNFyS#Q+hk<MFho0p;7HgBY-@Ss*;%MIX<0hI_OaZQL>*cvi-9hEuC!J%
z!<cVvax#S;Lr3T|gm{0a4KEtrG<@1{msnM0mM8FlV6f9JcAV!{m9$5^j=6ALS?rf^
z$+j|B(IG6T9Q{OBYq4UjoKUv1EL2fenW(guS)7Z;vG~_XGtZ^N7~5Dm=~Qln)arSq
z3K8Q(u$M+<1M#R*rND407=6KI$)Z%o2_Gfw#Z7J*>u&CY6?M?w+D|97ofOK%Dp3id
z7IAJ$eqKp8K>VCZrIG8qCWnJ1l6%JMe6A}VxRpPnG6}Dd4X+o=+%UaPADoDzSvY!M
zj8DRTFbzY@S!r<p-(cOV5TDl_$d?e58r?#CA7xQ<*-$qu8X~Rr{JP=S4FU2`!`~%J
zy7uYs*ZcIbbs>ATE|bI}OLRn&@ko5cx^&3x`HD@&J!C7BJ@G`vOO;B~6Vusr<~_`%
zmL_KSI1GB@FdUprF&gJtA<YKb)zgnJZa%w$wy=s#(v%zhi9LNh0^-|k{U!RL;TiZ)
z&pR!Z9Qr=qcZ>WBxo;2ke?ZsLu-4)-w~oK6C(rQxFMFSp2m4p(QY*vaLRuWTHmCoy
z_r4$OU!zC)ohijNFBWXe+QlvvDt0JpdYhKc6{p9?g_bcdbDa#7I}S$cV1(@RhA(rS
zTkp*mkH3-BGCO5bq8>fQx$>TPc&zV=FY-z(<%-2rRK~JQM21_#FQgoJTUDONPOX@>
zx_F09xhkoBM#I5$5=4=|ZJnF+eqx{c!Ei8+Mx#lH{~1|MRq5C=a{LZ`Dsg~BZhGRp
suu6+*PmG2qk%&&iKz#Cq4rn1)c<GKmw3TwOFP)WlbGCMKpGBg70Dwg}4*&oF

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_7.dart b/test/fuzzer_input/cyclic_case_7.dart
new file mode 100644
index 0000000000000000000000000000000000000000..976161693fbd57a8e29d181a3000a3aef5926bb3
GIT binary patch
literal 1464
zcmai!L2n~96vtoFq)iJ2At3}Oj8vf_k~Ga^l1Wc(cMGekE07RkkyhF|GcOZM9?z`D
zlO~7*AAlp`%m?7G7o<IK-~(_*h!Y1+d<y=aPC0_5H@{~;zvt&?dtP>k-Xfxxkk<Ay
z^#{1KEz`ezznxZZZb4}qc>`{>o%|JSb>#fpmM3Q~z@3gVKiB<Y`8&APvGQgc_Fb8L
zUvn;htQqIOfLpr@`=agbh5F62%bUMzruKd0v)@(a2yAt=yz<=BdE&Wm`8&^ph1{lR
zDxtS2j5(g1M8n~997e-&5KN-QY(5(iZIeuy4t@HRR+tPu=1DM$!ni-<B<_!=!Mrbn
zG54cn9L%QkV8UZ~w#mqh;fQty!IrQR*w*sMv$Ifb(z0}Z?jyM=i8{1U76V=SLTRmJ
zhB4pT<YWpxhK|%}2zdo^3h{9-8eTVi(r}kpRb`eZh=63U(k@n<=T?=pN4$=?a9mle
zmvG6pGMLdJOsE|FM3-x^Vy&D|wz4c#QC69#w3b<%izcx6H%MdW(qW8ktekWzH$rOl
zyi$dTu_O3Pqq2c`SgBHAxD<@O;Id><D&vID68_>kw~Tq$cgc!6Y47dLN$n?vGO<cj
zf~-ZHo06Yb(hZP5XHsd@`nIXzV2R?M@j9RDiU)4x_oz(5YgEJQ#WFWcZ_tM);%F9*
zJ`m%Rupdmr5H>3f&i@<Cdky02x&wLI@TMWIMLoW3s2dgyQP$eNZuoUWfc(?&XNW6}
zQ@T4}zlP7P3)!o6nIslfq9dA&N8)4Fr9*AcS8OWop<0>jiN`8ls#Kbun9im%A7L)F
zG%+K_VbB|g;oxM7(KycvX*SR<pL}w0{rM%dg;i{l=DN|JSkvbtAimwyU!orxo`LuG
zd8eh4L*K{yZjpZ>ckTZEAJCOFthIQMTgPA3#xs2X%iq`J-v3p4pp{{9AuYCCyVL*q
z``GvXuhYZ))|BFk7Ynv!9b%UX6+2vNdWV+I6{p9?g_bcdbDa#7I}S$cV1(-Ph9BfQ
zw?3M`JpM#d%j}d%iF))1`^tOb{;|F%zRWAJlq(ifQ5nlJ5gASmzmRg^eN}lLJGElk
z>f#+b<*KBP84U;1Nf1T;v~_OMJHtNpgW+HtjYg9Y|1+|js?xD#)c9TcOkx9x-1NkG
sVU-rso)`^JA`zX2f%x<>9neCq@X{TBWGm(1Upgyq=WOlfu8Kte0IV@M8UO$Q

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_8.dart b/test/fuzzer_input/cyclic_case_8.dart
new file mode 100644
index 0000000000000000000000000000000000000000..73794ca71ffe76b74ad01fd8e145bbbed80f7cda
GIT binary patch
literal 1464
zcmai!Pj4$V5WuJT)1(yzAt3}Oj8vf_k~GO?lTA<k^9oN@pFl#0hlKPx*_~`GdA<8=
zZ<-(ud;pG!GarD%yCA&-2R;C2gg9~F#HV1q*>VI+-rv~c8INb|ec1+h698UvZ#19D
zKbZSXO#kxZR$9KX2heS4ykj1;9RA8|v~lrm!;`WX%>B01KUd>o^*eK~ZSbzi`VJ=F
zS6twa732ID=3ZxMUbMWvkiU6$Y5RA@)V#;>9CoE0GaFrnH=YM7PdpC|edl?!#3nqG
z3A_biO!0IS4TrNy7!4;uFpZY;#e59V1WXBz`5Y}sOJ2-!Ow(W-g>ipQN!*{zf<+&L
z3H76763l0dU`i9VY=Op%*pS;fcRmvD#B3=%@oX<;3lv)C*FMIr1!%)k8lLFF=Ta$&
z8PECF0*5KfG0Pk}47q!MXEiTt-qw6tvjZeco8<|6;9z*C4)3_gjkIt8w27&3R2tqd
zAxoyzyrK=fpmgvPTyMmhlypLx(vXmaEi+Lng;|`7+Ohc8Nv$XAc#cdg9Xgq7fl59v
zWg%id5!<7d*+4uhr4>AF1@TyrwIr<6PWUL<Ufkw}c-`$TSWyM-t-U&_>`+J@%S0v|
zwTN?V>3NB6!0}UtQgN>D>l_YNoZNHT<O@~Oz^(lmrA}zW+3<3)$~D33@WDu&%){~f
zVloQ*!7L0}XHawfzu|SSa`$=N=l*5QyPAA0s`*t-RkNtcX|42|nqSvs06&GQmVBkT
zO1t{{J$!6k?gy2ONn$ula01iGSbRjvI?nCInsiA$&Q^v!@kGWenWFBA*?czl9u}xj
z$HYF4gWe<z2csF!#(7qt-m-N4^yACh&#qZo8c8~-uN(Zyd-`|;ci--+FTf8q&zTSR
zdA}i(V?XBi-2neWcJ1N*AHfZ3Qc7Iq#?e=m@|?f_W$$zHVE+nSDXB?ZqTwS~=J0>^
z-uHw3Yw#$)*H+xna!JNkE;>-i*zu)?w_)X6advuID2!>9t7IVEX)xXdW6nNp=_*&b
z@!tI9@fAr8k&`+F=)q$?SKbp3kM&*gMP7;(u1U;9sSRNwGOil`LhQiXN_!DIxhB}_
z@;h|Wl}Y6@8V+XDAc}moRj$*W;t=}5a4?C+<7vqMGcc4&>&Ou2_#OBZ`2Y!Sd*Y%n
qQi)kljEAF0L}y_jK6wI1u*5aLbVnbWQaZM`&fxumjM?t82=EWy%{U<d

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/cyclic_case_9.dart b/test/fuzzer_input/cyclic_case_9.dart
new file mode 100644
index 0000000000000000000000000000000000000000..1c7a1dd29919d9e0604bee01280439db9693793a
GIT binary patch
literal 1464
zcmai!&5k2A5P)m)Gs(;{ASAR}P8ex~29acv{z-S{G(S7A8qEqMgjgh`9jCj}vE+95
z+U`t(IPd@*5oaEN!(Nc~z<~$gj1VUdoOlY#oeoE^RQal1u5!6t&Z{oKLjZV1@}T`(
z{6XAr^XxBTtCLl4?UB+^{EoQSvHVwJtIOx#wj42kN!;%W^>h7QE`KNPbv3_hlfB2&
z?`zKak2RCx7vf%Tp<i~Ky%fJW_Hpxf%}l>X`8?<g;}KhZ$!{DFWRW@^YW&XeXu;d?
zT%_;_!UU7)Bp#2WAdJU>?@!~!Y(Db<+Q2h}W0yW;6)h$`!Kv@XVKSUynhb-;pAWeo
z;4n@De-_RCDF)=(0mXA9M;hlObR^n|*pd9ivAYl*kla|e_6gq@fG#YAring$E~FGZ
zr#Uw|V0lJ*LOP`mV-gqdtl?$D+lJ2?_5ej?@*<@Olnm|EqaEjk76uLg*9n#uD^2^Q
zXi!&*R&;?DR2F`M>or@U6qX5HX=I`_Rn96Yd7c!k3C#Wt(%8{hnnRrk%dIFB<5Ik+
zM9C655&3f^@)3Jn3BzdGFr;sW#vn67S?01Ne|B4Fq;<F3WLcfG^LFO6_Tx;bM5H36
ztXWbhgD)y>N0dM2Tu7?*eN)5Hl8Sqd>tZe|9NCpSqfjZXsTxi%mxV%j6F!)*lUeA!
z&w@!f^rJ8&o92q{{~KEOI*F_6KFOC2?;28D)bq=RvSHbf%39mk4Zm(k0QWT9T~bTa
zEp6}D?cs9klN{7KPg6}*f)khq9{UKTu~gfO6{-pcRIQv3*i(@#MaI>DMYCw;BFwqu
zDnW{I><@x498DscO^UqaYD3!fvyU%tKf5Mvp#`e6X*c+j_H_9$5;yMZUw|JPo)dTd
zyx$V(vHPa?-2(SQwqw`-M{vUxO3AJYZSkwxcuv3n<?m{;^M4Jlq)^B%xuzr6?(l#9
zF80p<4R~DKE5mMZu|RF=5IrbGVyUU&ZCF}co}HeSk|($<WI7V|)c4lDN7cs-UKO&?
zE}Cl|cO#ibv_fS719(E`Dh6!#Sl?w|6ct<Y6|#s`N+VBMPPayXA!g)!g}F$qSRw57
z=^a{OtF(?8k4Mqek7IY+vQXL9a0o+xJPKmZn}z^~pfMB1qDHFmJMbx|1EhR2U>Btp
ql0^gNjVCdS&qAMl@)V9>!B_OsEq<sgVaeZE&F|-^^=4Z|fPVnJ{Wu!{

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_0.dart b/test/fuzzer_input/test_case_0.dart
new file mode 100644
index 0000000000000000000000000000000000000000..911d47f377a540332169a70035123654d90a02ad
GIT binary patch
literal 1640
zcmaJ>-EJF26h3k6I1LIC5<-EiLG*%xz1j6&>|7;*loq8Rg-UHDq-MNx>>V+l-OkRY
zwuBH*fOrJNQ*g~=^ok3_V<5g+J59OiN@u^BIdkUxeKXk((Fa8I2c)t6T)zVDY|HuI
zVcwiq?{8tywDJnL)%5aDV523cXWIdJkpXvF+WLB4WWNHpT23A`p>IodS>se@HKzGb
zz^(SoWv!qu^e+K-dG&jZbN33kx2wy4>ba5s2E1eP1H{?bb9@nSe<ru-xmI*Q!<5re
ztcI#TNz&mc?oD};4AL>tHpw~D-4H&_D{RL2D4wP&iIeW6FGt<MFqw46JW$;s4@U8L
zr20LchW%D97>4*xAPvYtz^0L(1#Hc9lZ-4qQJcQYxR6d!i)PwksYOrnT$R`tz9xA&
z$K)BtNQGiZIPZ9aXB&L5!OIQq&^22v7r{!q$}#d`oPN9BBy6bla++73{MJL8YNb_W
zy>MJO&e$q;+6!K$TzIbBn<Fo5UV2w4k!oYAg;2S$l`&GJRiTyi(u<4S@gfoz@Zk83
zb(F^ot%O7bBA?B4s^#nBc*!o+FxR<-!`n$DzR{%?+KOv72y0f&HJlVK*NPFeH2Os)
z#fwUp2*w1LaASgVto$#fNSrT);*wp+*7Kss-8veU0(BCV7kQdWPT}A-{Zji#e0gKG
z&>{TwU#eh&l+a5ARhQ~E^4B@0xh*;MTyH=QQRojZq&D;sy$pSi$~7NOayQjWFI{9A
zJV6)Hj3v4o#zmG}ruXRcM0`5#AKep!@u1sJl0I}!TJZK~?AwDpg@E$({RXc#2s+p6
z*#^x9iw(kMtq&f9{f`?2P`J{8gSe{TXNYILrw!bN+<~-7D&@E=sY|2bkvNlO$=-`o
z(6Zu=c#>(4IwOsac$8Z&t?Y>Y(RcvMsWj52jC1bxI{ncw>cv=1^F<-;3Ld__JbU=`
z@hPa@rkT@VX-R*<XNX5Y!gp2wiGJJQ3Gn6~?liQz8|HYI8We8!`n$Qe`*d#6$@{W0
zKUj9P@&y04*@v3k*uNX@v@t93l{O2oFdT3Kd7FLE-P)fUwo;tA{H4`)4iz#jbPCom
zeMp)2#qr@`VPwi#Zd9cGVZXQR_fQ*N@fU&mp)1p1kF~jD_VqdU=m7%DQT{-+kHxdR
z5}CYaF&33|3=%KUGQ4|b1Up@xre0qo{$0FQUi(Vb<H0EEPvXf@=(Nf0e64tgx=B2Y
zCcR-C55PUgb6t9NjQV~;kF&~^O0GKMYiTR#Rw5a7L@!PTB1w*WJ#qSo_Gu=saaTRx
Pca;t=p)3khmyiAf%e8y2

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_1.dart b/test/fuzzer_input/test_case_1.dart
new file mode 100644
index 0000000000000000000000000000000000000000..ce112f5215e71d2856fd2666b04c5201bbc4a9b6
GIT binary patch
literal 1632
zcmah}&2Ah;5UySC+G|TeAVnx}K#gRfM6B04`!`;nY(k6$v22k@;U`jDJ6$u|%1rm9
zr+Z~14jd2<!HLJ<0eA)uoDkwEI8i-2c5;HY%HMWZf7LbBU-jiCz`FqOD_eWxh5CbW
za|5%#!@QIEyDk3F(Rj(&>Nxz3vE9YRWFsII-!N`=m0s5Ka`_`;t84M?4*R!Ip47O&
z=QSqAGPbr-d)W>CQvDRLN7p~snAzVMcY3P&tDfihPr&Wm+~qvmJC;5TcqhdTc%dZR
zgK0v^Y$&IrSu|SAN6|r?Ch2fa02_cA!ABu|$UJX`U6@a%$#{_t_hLC6?@cC2yf+`k
z(H>1{z8J<hPGe?vKx4re#t~ba?Owo6j`st0Q`LbSD;M^jnW_TlLaHn;^xzA0ORIFl
z?|{RM{ogXL%Qg&rw!;Qb8hqT~(+0P|q^U|2!Zxf-?n{S`m`PXROv+V#_8Pl@3*#Ng
z)|t|(5RxjgUOS;xr9{q7t13atSA~%RbM?yOKs@3YqQFd}pqgcJV@aS?CDRh6Goh>x
zD+M``7+n$bm|}8fGXE-}(vi198!dQCeOjgXT)K5pRnZ&MSDq8`d5%S5ZWBZAXds@1
zgzHlhM~<TsipQK#!Qm@sy%egfd?A{$h`<twFO@_t4fDgnH_lL(H&d>^vP7#eL@upS
zl6ZUlWw$e`obXPpYV!Kil}?mYGNg7>)IqpMDp2L{KD=!1dQh+kj!an^>nK?ce60wj
zWw<T~E!2f_X;>8Rz{ioeKaVF5#B?6-v0%sSv#43CVf?_h!}b*$OC6p!c-bJ!xL#j2
zm^WB9$g-&Y;oQLgzCngMkDxtnQP$8}k73UiTaRtK{*6*vzBYIO+*INeEsKXQ_;^Ly
zQ(v50vqFh|ae+Ddz8DWjF-KVNOee%KcE|lF8V=$auO_A_QD5`w`NhTgmrox(JmuBY
zD$<fm#N$u4kdI&s<Fft_@JoY7j5qza*;aBl%=tZPL+I%Bxarro;B!K)6^Un<JF>xh
z#P(nOa5t~{&s3HvU5U>u(Yk~Gj~`;c=AWT;-1^^%Pf)+CKX405m9Xdt-h-uc<>CH*
znPWmrlgoi}`{U8oc*NDGYkC+OFhpDAp2g6EjI-cy89*OSDbGz`+&nHHim#0qOI(qd
z39l`o6b0WJKY0}^v<Ip>PMlg1w0itfIpw^pW6lTDNpvue!)@nAXKTj}M6=0YI-DHL
zr$K*~GF5Q}iEI1;JPBPR@wzY0@LEKZz8DRonTQU@2jch);0~m?;y1?8iS_(2ZL%6P
I|8Z&HU+eC4EdT%j

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_2.dart b/test/fuzzer_input/test_case_2.dart
new file mode 100644
index 0000000000000000000000000000000000000000..e49f63f34b8886535d496d4e23146dbaad46d730
GIT binary patch
literal 1656
zcmah}&2Ah;5UySC+8aZVkN_Deheq-tko9<XXLs%K$suv%L~#-&2!Vu%Yi4R^Tk7c<
zdb*7laquJX030~+42TEdAvkg15qJQqduI{3Kua~>bp3TzS5;qc1AG7gzc6*TUd!JZ
zx3{qP)9-tQd#}SkJ&l))ou0+t7`uH;pKN)g(lBoKrM?OKdif(`r*H6XkL5d<=K)jv
zE?`#uz}VSYn47+r*YanN16utWurPly?ha%F99MUsaL?l{RZTqZ8oKm&dx2Z<TIR3^
zvy8I&D4)eRo{VQPC22C7BP9S^fCa((K71$~E5kluGK%BTWPCtrMhDXjlY=ywjt>x%
zX*$W`@e#&eUt>vZ$m^7;%e3dQr|=Vx{e|p-!p3s$aE>OI8lVpgX_&PG4-~pwB5QhI
z7K;YpYyRidV8rD8owRt`;(3eDTHJ<(D<tv>U7%}kn>kgZ-#LKWV5l~<B%PCymZg|h
z&cdp5CS6ljxzJ826zD98r<I{nXxT`SRV53nNWA>FxsbUaD{3@+pfiFn5@(GSxs#0-
zppxG>S+linD6`~s@=8_aO%7|bofDZ<%9X;khA5=YWG-{3tth3IrMMy`tze%l^3aGz
zvM>Z1iHFsje#1$@LUESHYkOD!gc~kK1O=aTnN@9cIW=ThH4=~WmK8kETDiRpjz&u?
z*VzU+2OoS!;`w4BGl}a1EtNIryg6gD4T&@n*MLft3hqF*u79))opH)WmakA#RGGq8
zQgYR}q@fS`P%kS@@GjgNi@V8W`mvbK<AX^uPFT~R<{tLzhH01S3nm@`_^QRr7P-9x
zf7zmHv2KwYDaie~-v0X*8NiRY?@1nA?$>pndYv7n0n@GU&$Dc(Y2Xl!=SSj#3|}sx
z6Avn9>`=U_jnu^z*Pe#rb24S6nLCf?N9-p>g*qelv>y*g)8lA1VJ;V-M!jP0i{~#t
zyZ`j@voq!{jO4cFkqPS${`$BClV6wN3-D8mr;MBV-0sSJ-|zXo>Vlv6_1etyTkxuC
zP<)C;)5iZPtNfR}znhKy+whQ5!w#x%Is3Km|FieLH}>zq1$U{=QJhms#+QWit!2go
zMerdkt*uWE4{L=PEi08r(jLZ>>v+OdpcOsvgW$cT%5hT+pfE(1FCE|>oRd=3P_$3a
zN8-!Mi6vf<m<y-5PPr(#c>E%Arw%|i_cJT62s#6P$E>t24<4t{e14QnkA2NmrHi#-
z7sj(Bin%AJQ{RP#3fWk$KHu;icw}UbtD$(})JlwpVlo=f#nDMT5-%?NOSQl&9$HI}
Mj9b4{b*%{g1`v^Y*#H0l

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_3.dart b/test/fuzzer_input/test_case_3.dart
new file mode 100644
index 0000000000000000000000000000000000000000..01e959f39f8759e4a8eafa0d9bca5af184aeaf8b
GIT binary patch
literal 1536
zcmaKs-HsbI6o5~%`Pp6C3#1Aagpez(5U9y)GMUNGii=H)XeGK50#yZs)b)%{CKeuh
z>aoK{;-XK1cnmK43_JlsTp=ESN8mV_4L1l&CtqxzKilUF^Z?!gfHx%VqnGk`V(*9-
ze}#Fc@b_Bur=$5bvDI<>S7N)%vp?E_SoV%czbo}UV!K<dN5odw@;71L=i=`jGv4cj
zd2Ze#w)!gz-7v4@hk?hqz1Xp^j(B=3>({%v;y(qRDDz9;sl`77@2>a}yp#g&Lz-hg
z9f>r})7feg=jnWs<1|YFj(`^k?}zlE@T3f9kcw<9_$nDLGUUS~8_kD{cqE3gh%=mx
z=1DTigTCe^k|B*t5;`hHB6bvy0=p~O0mW-axx$svt}rFqEzqG>($aDdo){%0`RIV-
zMGe5oj#7tFuqXMX;nRj+H2k*V3E)kRl|ygg1U5$b%5jI}qvVC=(5LvBv9hKJ+|vf_
z(1Lf+Z$0*v6r9wVSBjUpVT~>;rIsaoW-ONM;FAfXjBQr&25m0MRvOLngCi|#xz|I+
z1>2yKE@Df;cG(=_{Ohx_Mheu9$*T4x%Z;w_m8X;h)@VI#>~f;54Qk2Dh&^v|J)E1N
zW9SdQYe`10ysVkSvZ91<9bjEkQf1H%r`x5fjgII>u;fy~2T<%@BPtJ1b(wMHGalt8
z^52KMlUm>n-942n&8oH02yer~G5csfk3VL~BpFVola%%>*Hl-pN$-^8YZ7W9_^#n~
zLn^o3`nsWNST&^5+3kmz!T!gF1PCn`Y9!=B?Lsm4I(_0X$q7jxxDb|(4i6zt7wl?l
zokF&x+w?eKUpb?c)I~jDFSdrBy%?}*GEK;iPR@0X<mD_LEM|*nF{9Poloi)o%H`4W
z+4D!s5MgB{YC*+I<2RC!4<iZVdiM+PbHhvGZJ+eoQk;c3eK*<=I&VL2`|1u{As6O{
zntdtF-aX8NKFNKO|FREva%+DApVK>kDsPO2OIrUwyRdg_cL$y*)S9#97Ht!^50%WF
zw+QdT+PUiD{Jc^;$2C<<B;ENWzL~^y>$t_op-qCfOnK_JV<;@5qpJmagQuvJ8L)lZ
zKVaV&&(?f{Y&>FKTRJW)>9OdGR7Yef>t*ib2BCFKee9(3f;{$NHjCzII-$2wMi=|#
zw_rG)%%V6>l4MLZXR(mALyL5;58wp~jkVz00b5p9Di%)%EFO(#EWSv`Y<UHDVZ}G}
TrEvI}_0mx_@v2f3Za4k`VU$yH

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_4.dart b/test/fuzzer_input/test_case_4.dart
new file mode 100644
index 0000000000000000000000000000000000000000..0b47db724e1f78bb6ac15c44930f2a228f4631aa
GIT binary patch
literal 1664
zcmah}&2A$_5H34*>_l1w2%&{jBXU?EcE<nCo{~j@pe4I#mjfWQoAOL~+|o?XY)_9j
zMjZCQfu}$`11BDUr{KhaGY`Otug8;w6SP$GO?UlQSM{r1qPL0YS5R~3x&9rvyTkFH
ze&34Aw;K3q8NLKIT8@7MHru=y?|78-8{lqRn^m>XS3dw7ZOgB>!0&MMtilDm3d8J2
zV576NS8dPF^-mtVviYUL*!~6F@9N_3YM=0%h_AVqWFLCmxAM&6oh9$ka~;uLnuHQg
zgJ^Ob%!P-?qdAAe`Eni+?GVRO<<_FOgfJaY6fDM*#W3hiMpN#Mr^}$nvvAlO&w}YF
z2zU@iL!?WFQ$gNXC!i+iuE$ow_dK?jx<v^Wj;Ku+8?gm&sVxrn=+uD0g=R>4TaM#`
z=v(|FB?>^^-n_<>8qaHdQe&Iel4u7Vofl<#gB|!?WELkK3bQoLq6|D7m5!uwW^}4j
zU41z=th5Prq@&U}6=tT87bQCtWl3g5eU4AsS5GyV+NiM1b;J(*ilI1C>ntgAoQO)j
zwZ1w{^ovsGN{T`hYUGsYvOo}90oX`#IE@q|1c-Zy%5Uhzl@^}8C(l$qJ5}YP3uVeA
zVO97rxpdN3XP#Smfqb@H>QM8)!hxMiRa7K}*h<eEHM-DS^S9YR_BQpZsC8glr&72Z
z2bDv)5*un{tuwPVSk+7AY&9c^KI$zg>xAAVzP{^z>bu}XOlH%pkBjlQtxY6XxKFe^
zcKIqZLT}JV19k8Cc>aN!jK;mud^7;hvO%x<^$N5P`U-?rulmO0WxYomSLdr5lN$3H
z(UKM4`}KO?*9ag#%D(q7qIFDLnGW_{&>pBm97Ps|K<AHxxw;UGTqAY57E{Wh`qc7w
zTI^aU33iV%>sDfoy70w8zkOCDY@*^&O{d40qz)|@2cf|B!SHZ4ANEJXZRh4}Hi+=-
z(c>o<kG<s5YJn<Z@aqqdk5hsCx~#rLKi7Byyq?S5rj8E$9`96>{G@N!^&G!O53G*k
zLOtYinX>WR6VQL@`&!-VKeW1V8+Fb$(k2G$fAziXYyEwCiXv(CptSyas@0)fhv+7u
zcWC8Ye*fqwPdJoSmPCE+jz+^PRH{p|k&pej`VLyy?4`k3Y(-oZM~}`WNwPzA^XR;%
zzRpUu;<c!$DvcG4af<82TUhj=tBcdn>9tU!i<iV{S4L>OJ(`aDK`@$5X82Ds6K@$^
z8uW*FD`zv`l~!VuL9C#{@6(s7(iRbKd>5=GU5HhK(V-d!gRvUj4`%9%3%Wx~UT0Q2
U`NWoZ&GxBqmR~~FZnky!2W7r~`2YX_

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_5.dart b/test/fuzzer_input/test_case_5.dart
new file mode 100644
index 0000000000000000000000000000000000000000..25eaa967c27f1ca054b650d74bac21a97651033f
GIT binary patch
literal 1560
zcmah}&2A$_5H34*;sh-c2%#W2G*S+*IL`Ptb`B^}#6rX-NbG`kCD5kaQ?^^%^FvQh
zNDv1efCu2nBXH!%3Gob^IP6n!;_LAwAP&${&DT?1e_cPlyGisq5&aBmZag!;12;E#
z`6B$cmgQ>=Y+5N_0vj#QzXF?Wp1)`Ylw@ZE@@<pu0-No8H3Bx;j(-XNTO2oA0q4A1
zq0V~1#@52^wgW#m?+5J2&8HPE-S@zqjwybq{w@C$aNB0T1>AA+XTW<4-k@hDrd=9q
z(Ubl(>JNrGp3XR$4<s7RXG9ysOQE+y__Qn`OnW4Hq2qou+Mmxyhx?<^puf+9(Re?S
zA;;6<h-ZsIkWV=gC}JIha8-B$wk+Qd*j|_xSuQ;8PUl&c$_-JQ7RG_KNsn@2S3nS}
zMV^<~e~CRprwA169o6`t#)}$1uW^e?YdO&wbtu!CMKip$DKV)@V3h*^i!!bFJkLr`
zuQopL%3|-zM9H->vC?I3V)pFSSEW%&X07o`ib9mIa*{h)Ng9g_+!E3@XBCV?T}$qz
zbPCDvJ@uJaCNE$&cbSPL^@?MYo5E<5E|oUc;*70<n|vLE)CyJ1|FBni&)FIFuzqLm
zF75)}&f>d!{42<7aoXTMCQH@Ya>C1$tLud;a_QkXRv|OEQZHmp5;m6Jq@t=!FR4m)
ztg{qh8-LT&Spq48JX|CHp-yeeSEwt!Lhtp}JG067T{WJK_lM&s!kOa~y%pAXpdHW?
z5Jri<sPVE!v|Ytt)o5$XYeey?^WZn=e_JDf!svxw!6>29>$rl<7N`T-uJ#<q4jH8p
z9Ujiqg?#<oxaaERO43rg>airbAY3h1s1O(rvl2Dql)Gv?iTc6XoNW+*y}f>SG(GH%
zBXE(EoYNa{Pd~XhJ$rce_$jyxXV5MM{Q=)0E(HqfvicJJSmQD9c5XJCCf*DGct@HP
zCUL!P=j>%VWxqlTrlL;Sq~Y`!^k4cRH-GD&pd8j{#_e+X21oy^A8g<1zeFE85vM-3
zvUZNMEy|5XdkVclEAR88gM-|%mQ`lsp7966!S!%}D#(qTW;S!d+T50CiViJd&0{Et
z?$bwNZPr!mC*f`NG%MALuS88%nL6QEC8!-9sser5Ayb@aZ?1$I9lS5z_%epYZ5j=G
zlV~=L#@O2|U9Jy0G@15>li6evdeF(z6kePlzlt7(*^2q5tIpZ!l^Tq@Y7q4g)%a-G
bS10F0_h`Xa8RlLdxYBrZHRriqcQw&pH)2<!

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_6.dart b/test/fuzzer_input/test_case_6.dart
new file mode 100644
index 0000000000000000000000000000000000000000..71102dcf1bb4dbfbf44b8f07a68f6182e1892c3c
GIT binary patch
literal 1664
zcmaJ>%WfP+6uq`*{6axOf+(!0NL~b(8TUNhla+@&1PB94f<&T7@tv+aJ%y?tsqP-z
zC<`yyvEc()Aie>y<TF^Y;0yQw#Hn`MIGdDo`&9LPR@J$6zDabGh<<~tZ@e&n0yj4}
z{@brxarN#RCasi@forXj{{XJHdH#IEqa?3@n{AW+P_OglFTl07<Ddoo7VGb7ob!2&
zQT7vXZENAq+g_iWUp;Qi+3z*R?jPXpwkiIt*OqUhzV#iO1s->u%st*%@CLmwnr_iJ
zl4#NogJCoXr(->zPJ%FyNkFtg91DHm%cr=4G40WOI3GvTq3#BQ>7qM|#z8k+NWZJc
z2jj`;Ae;nx;q6mS1dbSokafr{k1fj|d2BCCi!2u<_D+w?N?bwIriF3%)uIPFWti2Y
zMJ313KEn!IA{17~3mZIa@bd<rG}xw<SmUGBKwDH<%Sn`7n{Cj`${;Gwv#O*Y*S?A(
zmWWFgWl56hOqnz?+UP1R6)Y871IRCsdupalZVD5bG*(g+qKvDYC@qCJ@59&hx-vx_
zB&uxA$dDHDvO=ya>%^ocQMFxmSxA}{rK@yLJzyoJ5^sT{g%^s$?}t@v5aWx?Nun+S
z<SsK>klkWiu0q7jLVdNo(l@aiXDR%)QB+h)Svj@JY?YT>N?mjltEWE83xt%@*KD2S
zPL`5tai&yP#n*||>&n8Qvg>*3{U#iztX9|_C+f1m9&SbwHkRHa0V8^@Cdy&L-&dM@
z5kqf~^AsHN+{l+%D)bJ0+*fzP!T3Wp>W{jEVGu&+I0cveIEU;)zJ++d=M5e=2%6Xb
zmkrtm^9DiLT7TN$s|Eq&TitUVEezgW@YUzof^0)}>N#uez!vJzFg#HAvnoa>6zXy5
zM9Pl(M68vSk&}-4QdX?FqXzwO;-k#javBNZ><v4kY1j+;_zSY;oSvboquH}>?$5mC
z!Wmo#+J^pu_<9t?kK_7F^mBuUz{~#JTsL~pukl{3lkfP8aoNvr(LHvVRgVM=Z*+&i
zH~ITBx%7XVjzDZ{6~fpeOMQq#$eaAV?tlMTBr5^;AM?sTP8eI1n+SvzdY_hMncv;t
z&n-u?%&hL2a(_5D9S(5%awhkDBlugHyX+*zzu2ERnwRJfeTrkxI?6vix7E|EQcGTm
znyM;w!dfM`F=Q-y{w7T^i%O8u&n=gxtTg63)II3+!*MtnU~aQCzEJE^e=_VH1mkcx
z^xSh2o1zpaIN#g!WLddF^I1pDs<=WE4*Iz8pg&U6yTM3(eMC2C!K)0NB@bPN7j2jD
MCh*BzoI4}>51QzMiU0rr

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_7.dart b/test/fuzzer_input/test_case_7.dart
new file mode 100644
index 0000000000000000000000000000000000000000..907b8a94ea945b144837c46991e1b2dc114a60b3
GIT binary patch
literal 1464
zcmai!&5k2A5P&Oxlgx+_LRuj>VWbfnM3PDRC*7IT{OrJLG%Ju0Vv&$`obF1;lH1*D
zyE6&mzyokZoOu8adqLU*2OfYkLYz2o;wdP1Ivl~0`zyO#<#M^)uX+G)0>CTk?ap)Y
z2l1f8v%lQ9n^limBy<(OC$_ql|4MB4_~P5PBjzuO2R)&FuE*u-cVerj`F)4<eV%?_
zbHRVCnH0YeTm7Ye*>(C-{N^~o?cX&s{T{`0G!Vukwg-~mIv&a*bv)Aeo#XM6ci_25
z;VlRgOlH$~GKqpPo&>%>i<k4o+ym$U&k#;r_>fh!nB)X!z88ndXpU(z3L<|o;(mam
zI1T)HwD4ybkYyJX&yftNT~MbZ(N4s!<fo3krRaj>#=5mn_|^dQU@0_B4B&GirQkWu
zxz+{CGm;aMDRh`ncmB>BUNyXH_^e?cP*f%_Qu08-&`y2YaZzYt;1F<=U}>?^v|ow_
zb){%U4`@MU;U~D+ur*3ynb4I+CQ4J~tdf%FNx>S&>|ZC19*w0r)QPa%ib63i#fwUm
zETI#TJy#+hv&WS%jHV4k8Z$HonGwn|7bV%VyFw$ayW0iJ>Y$yqQ>V2ZXF??+6)8o{
zl0q4LQE@w__%Y`~Qm!AG9FA9%+zZ?k3t8dVuH6}hN^wKkaB{gS6v7+u!IYiOL+^bS
zOv8~Mg(2xQS9Jg1(7Ge)F0TjFzifElkjkQ-Up15s%Z8NJTEA)dbwdKUr{V6BN}6tI
zcfW2A7u$gPVJ-7C)s!VTg<0USk5C#*xxHMYs&Giz%K4Bz70F6uTn$+?kLJ$9f=jLv
zBp)aKFbKo(G@{w0$V;xaB;7pw`0DPn8<Lh<ph}x^gFk6c7Z0QE+I{^6_@UtiabM2|
zZIPb1F}?3LxEHc(`}#kITdq(_c3o(TU)9PB`u>-_%gNsUHMo{SA-m$5j$E6=|Jgg=
zd;8bnaq*xGyT#=awW(e7p%jUwqK3C&Wo>zWc2-KB;Hr@6SlBb)+xQ-3AGdg2$U-}B
zu6W#yWE#;5l>rRl37xALvi)Oymwi!GY{l2eB33DlJY_lE8vR1d*x3qmnOLz#XbtEc
zT4AfS_8Cvc(aeuyciXa1*-mi;BY!duV$Yj}uKqM;!dTQuIerH|<#d3QZ-?x%)Izdo
n$h^rkX7PFGvrnGFF)aC-Ub@8(btNp>8>{)l0=3@mvIy`GdVM$z

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_8.dart b/test/fuzzer_input/test_case_8.dart
new file mode 100644
index 0000000000000000000000000000000000000000..91cc9ea303fa8b4d436a12238bb279fc53ab1c49
GIT binary patch
literal 1456
zcmai!OK&7K5P&Q5$V?(uXeB@(gk+=~cuYF;e&m#BSrVbFcpT6oA#JMLH9eNxcCXtG
zGb;}KggtZOCqzO*{DA!h95`^=11Ek3<xb}cE!BMOE?2o+kGbsvyaNEgv$WdJ)L+c~
zHs*iFbteyR?eR;;;5Bov<M9t>tBdK&RwNa_G55R5ysFpb<~4J#>u}R%eGlc&HB-E;
znb}v&z24g0cA~yie@6Cc_fO5-9dSH|eN_#at-i*~$OCQD$U{djBOk1>4bPN>cVU)M
zHXkjA*=#*bN7F@`PG_?;%K+MdIl<d8e8>ZDh9g*|i%hPTbezqmi{t5JnjSBQgvT@+
zkJqcwY`&Uf+;6ZTHst4wg|EaXF*_Ouk=?cGfX2!L^x-qSQL?fIpbKl|_~SlYQKePw
zp#vWC3P7<PhYrJN&vM%Etl?F|?;G}jRHzCo`5u+>Z~(N;sPq&ZJOD?fqYW8Jj&+Bi
zOs1rg!Ei)fz|;m0zrt7O6#C#qrnC-)pvsF%8818)rFFsttx=#>&x0yO>8z5(S{YO&
zD)yC#$3dVJoD45AYbtsk&<olMHmJmvbyNsr&7Cgu6wfL!Hz=~8%f>YdX*HjwIV?xf
zG!b7%d-kKGAZ#3wQANVhQ-Mmu`=IL_CbCKI+1BQ{rlc-Smv1a-%em^abfMf>L+}tj
z9f^-ttI5Y=%H<tTmUGrQG~5S2@xDWrr!4y{G0&0L4Y@t)^`@b2ST^Lu*7|s6wEM9k
z1LBCpnsRG%@7&cn?&-0__zvoKl+saEaTksjD{)1}ZpAki<v?6mx4~i{&YgN;4GzR=
zF^|?MYBU+K{n2=^m@kvrlD}rQDADXVil<**TwFblJJ(KeGjN;1YnB*?V2RIl{R{9*
z!!zc6Kkv7cJc?_c?-s-fxqI&W{~=t4G({)HBWt`PhZUUhmjAMkxwyA~lkK^mzC}&u
zMIg<i^}qJf_r3iaaAAX%;#{w-YohBxsWR>}g7;wKeR+CvQfka-W3^0_KbefTlQCzV
zcJwH=UG$dfz_Zwg+!1+Ya)3|ZlC-u1E<+sD55;#jhz;J5ScqU8anl!EEB*til4z-_
z^USLog1tV^y;nX+_ILn`VKSSHhpP#{Yisg5#UWRCl#Hj-`EU}u&QY!^PmcHwAHWl9
wB<=>{i=cO6v>b@>a5NW_)6r6#KjGP4<BjF1rq5ldXS?zae@Mx>9j6BV1@ewM9{>OV

literal 0
HcmV?d00001

diff --git a/test/fuzzer_input/test_case_9.dart b/test/fuzzer_input/test_case_9.dart
new file mode 100644
index 0000000000000000000000000000000000000000..e746092271c258421366fc199130d6c2d7408ab2
GIT binary patch
literal 1568
zcmai!&2Ah;5XWoRyZ(xTgcL=AOB%_Cpsd$B`{|7kvSXQ8U@MYAK%_`<?{w{Ki=OF8
zPmk@DIPeHO00$m|14oV=cmhrwIPnmOf6va!oM5DyUw>6~byro3O`?ZH^fRQn@kaj+
zZf?lr&(Lor<%0$qtxR5ljh2_cfX%j?{nZTQ^uY$!w{<4KW;<Ve1UA}E{u=sQQc){#
zCLdOeZ3k>@&E2DR7|->`f!n;iteCj(!QE|L{806c{3&q9*xv$o9seD8e=axZjaKxC
zMlr|Z=&+|E84aVjH<@u9jr$X#4U!4d`@wxmN-U;5isVQR`bzD`^8xP<C%w`BjHko>
zv6@ff$!s<~?9IdaOr{J)d`A!*6+3|~BcBAe=ek8k7M`e0&z<%joNI@HdvvmJy6~J8
zoMCN?yi5wBuh53;)C>BMan0v7KdpILvq^kQv_r9lp|_><umq>79plpE5>~>Q+9YST
z^z^uKj)r65InAvTahYo+z4YQ7qp1kGLK+QILY2A@e9JD@SfFhtOwh$(X^c!`yY6?z
zX;H99tufk*d6{U~t9vW6iVJpS=2sdlbQW~HP*%JxwUDJ}A=P^0&{8_rg^qQW)ShuE
zbY7IHNM(}2xwXa0S)IdFSDa{Lu!3Q^_M);}XzZ-joet}=NUajp1mDJ-doG>GY}Un1
zaVoW;#}wa1s5=YMJ4%?pvBoCLu5}4k>P+GKcMyv<<qMlJy-QCc@nkw3eJF;L>HeTM
znPASz3^^9Q?;yL7uOTQYdR_CXCPGz>FKU{ac})binn%zpep?fuP=X<6P*TW(RUU;s
zwjkS(;O7=er5qOpJ*9Ck5}$j%k<NpT*>}V-LRi?WBQB&{8kwn%K$%3)n@MzIhLyd3
zXF59UP7g5}+ccNi5~D9pPd|Hk{_@2ujLx0rOd*}=4@mGwK*D!b{fU08c?7QOX0xf)
zUg+Z;S!L~N(Yns=(U<I`II||@U^{$AkpI#Tce2)hhc1vGn#D2d+_@?s|EC{p-|3&p
zrQ%Fn+M94Sn8I0e9s3f--lK*0`LlzA+{l<0)~K%b2ZR3YppV<<C7&R3T!>17tIjYM
z=#k(=2Xw~9*pB$uqws-vWlOP;*DOY&%p9XCaP9)HRndjEE{<cbubCR#WKf>IR5;NN
zMbqwNI2{cKXd9a)tBGyuccb3na4-t_=Qs&(k7Jxc&=-r+6-q7<{oH9I2EC5x_o9&)
iJR6S0@deR+n#*fczUNO|sXZ(d-pQL8JGTtCK=cnk9$q^D

literal 0
HcmV?d00001

diff --git a/test/generic_abi_unit_tests.cc b/test/generic_abi_unit_tests.cc
index 31c7ed5..0cff5ed 100644
--- a/test/generic_abi_unit_tests.cc
+++ b/test/generic_abi_unit_tests.cc
@@ -2254,6 +2254,39 @@ SCENARIO("finalized objects with unsafe refcounting have unique object represent
   }
 }
 
+SCENARIO("finalized objects can be checked for validity", "[generic abi unit]") {
+  GIVEN("a finalized object with some contents") {
+    constexpr auto custom_len = 1024;
+
+    auto obj = dart_obj_init_va("sass,oidb,sidbn",
+        "hello", "world", "arr", "one", "two",
+        "obj", "nest_int", 1337, "nest_dcm", 3.14159, "nest_bool", true,
+        "yes", "no", "int", 1337, "dcm", 3.14159, "bool", true, "none");
+    auto fin = dart_finalize(&obj);
+    auto guard = make_scope_guard([&] {
+      dart_destroy(&fin);
+      dart_destroy(&obj);
+    });
+
+    WHEN("we grab access to the underlying network buffer") {
+      size_t len;
+      void const* buff = dart_get_bytes(&fin, &len);
+      THEN("it validates successfully") {
+        REQUIRE(dart_buffer_is_valid(buff, len));
+      }
+    }
+
+    WHEN("we create our own buffer") {
+      void* buff = malloc(custom_len);
+      auto guard = make_scope_guard([&] { free(buff); });
+      std::memset(buff, 0, custom_len);
+      THEN("it fails to validate") {
+        REQUIRE(!dart_buffer_is_valid(buff, custom_len));
+      }
+    }
+  }
+}
+
 SCENARIO("arrays can be constructed with many values", "[generic abi unit]") {
   GIVEN("many test cases to run") {
     WHEN("an array is constructed with many values") {
diff --git a/test/int_unit_tests.cc b/test/int_unit_tests.cc
index 4a153ff..9976b03 100644
--- a/test/int_unit_tests.cc
+++ b/test/int_unit_tests.cc
@@ -52,7 +52,7 @@ SCENARIO("integers can supply a default value", "[integer unit]") {
       }
 
       DYNAMIC_WHEN("retrieving an integer", idx) {
-        opt = dart::conversion_helper<pkt>(28008_dart);
+        opt = dart::conversion_helper<pkt>(dart::packet::make_integer(28008));
         DYNAMIC_THEN("it returns the real value", idx) {
           REQUIRE(opt.integer_or(1337) == 28008);
         }
@@ -151,7 +151,7 @@ SCENARIO("naked integers cannot be finalized", "[integer unit]") {
   GIVEN("a integer") {
     dart::mutable_api_test([] (auto tag, auto idx) {
       using pkt = typename decltype(tag)::type;
-      auto integer = dart::conversion_helper<pkt>(1337_dart);
+      auto integer = dart::conversion_helper<pkt>(dart::packet::make_integer(1337));
       DYNAMIC_WHEN("the integer is finalized directly", idx) {
         DYNAMIC_THEN("it refuses", idx) {
           REQUIRE_THROWS_AS(integer.finalize(), std::logic_error);
diff --git a/test/json_test.cc b/test/json_test.cc
index 9e822fe..7c94ddb 100644
--- a/test/json_test.cc
+++ b/test/json_test.cc
@@ -47,7 +47,8 @@ auto make_scope_guard(Func&& cb) {
 }
 
 #if DART_HAS_RAPIDJSON
-void compare_rj_dart(rj::Value const& obj, dart::packet const& pkt);
+template <class Packet>
+void compare_rj_dart(rj::Value const& obj, typename Packet::view pkt);
 template <class AbiType>
 void compare_rj_dart_abi(rj::Value const& obj, AbiType const* pkt);
 void compare_rj_rj(rj::Value const& obj, rj::Value const& dup);
@@ -73,24 +74,57 @@ TEST_CASE("dart::packet parses JSON via RapidJSON", "[json unit]") {
   for (size_t index = 0; index < parsed.size(); ++index) {
     // Construct the packet.
     auto& packet = parsed[index];
-    auto pkt = dart::parse(packets[index], true);
+    auto pktone = dart::packet::from_json(packets[index], false);
+    auto pkttwo = dart::packet::parse(packets[index], true);
+    auto pktthree = dart::heap::from_json(packets[index]);
+    auto pktfour = dart::heap::parse(packets[index]);
+    auto pktfive = dart::buffer::from_json(packets[index]);
+    auto pktsix = dart::buffer::parse(packets[index]);
 
     // Validate against the reference.
-    compare_rj_dart(packet, pkt);
+    // Function is generic, but declares ones of its parameters
+    // as a dependent name, and is therefore non-deducible
+    // Ugly, but a simple way to increase coverage
+    compare_rj_dart<decltype(pktone)>(packet, pktone);
+    compare_rj_dart<decltype(pkttwo)>(packet, pkttwo);
+    compare_rj_dart<decltype(pktthree)>(packet, pktthree);
+    compare_rj_dart<decltype(pktfour)>(packet, pktfour);
+    compare_rj_dart<decltype(pktfive)>(packet, pktfive);
+    compare_rj_dart<decltype(pktsix)>(packet, pktsix);
 
     // Validate the underlying buffer.
-    dart::packet dup(pkt.dup_bytes());
-    compare_rj_dart(packet, dup);
+    dart::packet duptwo(pkttwo.dup_bytes());
+    dart::buffer dupfive(pktfive.dup_bytes());
+    dart::buffer dupsix(pktsix.dup_bytes());
+    compare_rj_dart<decltype(duptwo)>(packet, duptwo);
+    compare_rj_dart<decltype(dupfive)>(packet, dupfive);
+    compare_rj_dart<decltype(dupsix)>(packet, dupsix);
 
     // Generate JSON, reparse it, and validate it's still the same.
-    rj::Document rj_dup;
-    auto json = pkt.to_json();
-    rj_dup.Parse(json.data());
-    compare_rj_rj(packet, rj_dup);
+    rj::Document rj_dupone, rj_duptwo, rj_dupthree, rj_dupfour, rj_dupfive, rj_dupsix;
+    auto jsonone = pktone.to_json();
+    auto jsontwo = pkttwo.to_json();
+    auto jsonthree = pktthree.to_json();
+    auto jsonfour = pktfour.to_json();
+    auto jsonfive = pktfive.to_json();
+    auto jsonsix = pktsix.to_json();
+    rj_dupone.Parse(jsonone.data());
+    rj_duptwo.Parse(jsontwo.data());
+    rj_dupthree.Parse(jsonthree.data());
+    rj_dupfour.Parse(jsonfour.data());
+    rj_dupfive.Parse(jsonfive.data());
+    rj_dupsix.Parse(jsonsix.data());
+    compare_rj_rj(packet, rj_dupone);
+    compare_rj_rj(packet, rj_duptwo);
+    compare_rj_rj(packet, rj_dupthree);
+    compare_rj_rj(packet, rj_dupfour);
+    compare_rj_rj(packet, rj_dupfive);
+    compare_rj_rj(packet, rj_dupsix);
   }
 }
 
-void compare_rj_dart(rj::Value const& obj, dart::packet const& pkt) {
+template <class Packet>
+void compare_rj_dart(rj::Value const& obj, typename Packet::view pkt) {
   switch (obj.GetType()) {
     case rj::kObjectType:
       {
@@ -107,7 +141,7 @@ void compare_rj_dart(rj::Value const& obj, dart::packet const& pkt) {
           REQUIRE(pkt.has_key(member.name.GetString()));
 
           // Recursively check the value.
-          compare_rj_dart(member.value, pkt[member.name.GetString()]);
+          compare_rj_dart<Packet>(member.value, pkt[member.name.GetString()]);
         }
         break;
       }
@@ -123,7 +157,7 @@ void compare_rj_dart(rj::Value const& obj, dart::packet const& pkt) {
         // Iterate over the values and recursively check each one.
         for (size_t index = 0; index < obj.Size(); ++index) {
           // Run the check.
-          compare_rj_dart(rj_arr[static_cast<rj::SizeType>(index)], pkt[index]);
+          compare_rj_dart<Packet>(rj_arr[static_cast<rj::SizeType>(index)], pkt[index]);
         }
         break;
       }
diff --git a/test/obj_unit_tests.cc b/test/obj_unit_tests.cc
index 52eb30e..c658e46 100644
--- a/test/obj_unit_tests.cc
+++ b/test/obj_unit_tests.cc
@@ -188,6 +188,80 @@ SCENARIO("finalized objects can be deep copied", "[object unit]") {
   }
 }
 
+SCENARIO("finalized objects can be validated", "[object unit]") {
+  GIVEN("a finalized object with some contents") {
+    dart::finalized_api_test([] (auto tag, auto idx) {
+      using pkt = typename decltype(tag)::type;
+      constexpr auto custom_len = 1024;
+
+      auto obj = pkt::make_object("hello", "world!").finalize();
+      DYNAMIC_WHEN("we grab access to the underlying network buffer", idx) {
+        size_t len;
+        auto buf = obj.get_bytes();
+        auto dup = obj.dup_bytes(len);
+
+        std::shared_ptr<gsl::byte const> ptr {
+          obj.dup_bytes().release(),
+          [] (auto* ptr) { dart::shim::aligned_free(const_cast<gsl::byte*>(ptr)); }
+        };
+        DYNAMIC_THEN("it validates successfully", idx) {
+          REQUIRE(dart::is_valid(buf));
+          REQUIRE(dart::is_valid(buf.data(), buf.size()));
+          REQUIRE(dart::is_valid(dup, len));
+          REQUIRE(dart::is_valid(ptr, buf.size()));
+          REQUIRE_NOTHROW(dart::validate(buf));
+          REQUIRE_NOTHROW(dart::validate(buf.data(), buf.size()));
+          REQUIRE_NOTHROW(dart::validate(dup, len));
+          REQUIRE_NOTHROW(dart::validate(ptr, buf.size()));
+        }
+
+        DYNAMIC_WHEN("we corrupt the buffer", idx) {
+          // This isn't great, but it's the easiest way to check what happens
+          // if the buffer is corrupted and a string becomes unterminated.
+          // The underlying buffer isn't ACTUALLY const, const is added to
+          // the type when returned, so I'm going to let it slide.
+          // All of the ridiculous reinterpret business is necessary because
+          // gsl_lite declares gsl::byte to be a struct instead of an enum
+          auto curr = len - 1;
+          char replacement = '!';
+          while (*reinterpret_cast<char const*>(&dup[curr]) != '!') --curr;
+          const_cast<gsl::byte&>(dup[curr + 1]) = *reinterpret_cast<gsl::byte*>(&replacement);
+
+          DYNAMIC_THEN("it fails to validate", idx) {
+            REQUIRE(!dart::is_valid(dup.get(), len));
+            REQUIRE_THROWS_AS(dart::validate(dup.get(), len), dart::validation_error);
+          }
+        }
+
+        DYNAMIC_WHEN("we truncate the buffer", idx) {
+          auto curr = len;
+          while (--curr != 0) {
+            DYNAMIC_THEN("it fails to validate", idx) {
+              REQUIRE(!dart::is_valid(dup.get(), curr));
+              REQUIRE_THROWS_AS(dart::validate(dup.get(), curr), dart::validation_error);
+            }
+          }
+        }
+      }
+
+      DYNAMIC_WHEN("we create our own buffer", idx) {
+        auto buf = std::make_unique<gsl::byte const[]>(custom_len);
+        std::shared_ptr<gsl::byte const> dup(new gsl::byte[custom_len](), [] (auto* ptr) { delete[] ptr; });
+        DYNAMIC_THEN("it fails to validate", idx) {
+          REQUIRE(!dart::is_valid(gsl::make_span(buf.get(), custom_len)));
+          REQUIRE(!dart::is_valid(buf.get(), custom_len));
+          REQUIRE(!dart::is_valid(buf, custom_len));
+          REQUIRE(!dart::is_valid(dup, custom_len));
+          REQUIRE_THROWS_AS(dart::validate(gsl::make_span(buf.get(), custom_len)), dart::validation_error);
+          REQUIRE_THROWS_AS(dart::validate(buf.get(), custom_len), dart::validation_error);
+          REQUIRE_THROWS_AS(dart::validate(buf, custom_len), dart::validation_error);
+          REQUIRE_THROWS_AS(dart::validate(dup, custom_len), dart::validation_error);
+        }
+      }
+    });
+  }
+}
+
 SCENARIO("aliased objects lazily copy data when mutated", "[object unit]") {
   GIVEN("an object") {
     dart::mutable_api_test([] (auto tag, auto idx) {
@@ -928,7 +1002,7 @@ SCENARIO("objects can optionally access non-existent keys with a fallback", "[ob
 
       auto obj = pkt::make_object();
       DYNAMIC_WHEN("we attempt to optionally access a non-existent key", idx) {
-        auto key = dart::conversion_helper<pkt>("nope"_dart);
+        auto key = dart::conversion_helper<pkt>(dart::packet::make_string("nope"));
         auto opt_one = obj.get_or("nope", 1);
         auto opt_two = obj.get_or(key, 1.0);
         auto opt_three = obj.get_or("nope", "not here");
@@ -945,7 +1019,7 @@ SCENARIO("objects can optionally access non-existent keys with a fallback", "[ob
       }
 
       DYNAMIC_WHEN("we attempt to optionally access a non-existent key on a temporary", idx) {
-        auto key = dart::conversion_helper<pkt>("double_nope"_dart);
+        auto key = dart::conversion_helper<pkt>(dart::packet::make_string("double_nope"));
         auto opt_one = obj["nope"].get_or("double_nope", 1);
         auto opt_two = obj["nope"].get_or(key, 1.0);
         auto opt_three = obj["nope"].get_or("double_nope", "not here");
@@ -963,7 +1037,7 @@ SCENARIO("objects can optionally access non-existent keys with a fallback", "[ob
 
       DYNAMIC_WHEN("the object is finalized", idx) {
         obj.finalize();
-        auto key = dart::conversion_helper<pkt>("nope"_dart);
+        auto key = dart::conversion_helper<pkt>(dart::packet::make_string("nope"));
         auto opt_one = obj.get_or("nope", 1);
         auto opt_two = obj.get_or(key, 1.0);
         auto opt_three = obj.get_or("nope", "not here");
diff --git a/test/str_unit_tests.cc b/test/str_unit_tests.cc
index e279ddb..e502566 100644
--- a/test/str_unit_tests.cc
+++ b/test/str_unit_tests.cc
@@ -79,7 +79,7 @@ SCENARIO("strings can supply a default value", "[string unit]") {
       }
 
       DYNAMIC_WHEN("retrieving a string", idx) {
-        auto new_opt = dart::conversion_helper<pkt>("goodbye"_dart);
+        auto new_opt = dart::conversion_helper<pkt>(dart::packet::make_string("goodbye"));
         DYNAMIC_THEN("it returns the real value", idx) {
           REQUIRE(new_opt.strv_or("hello") == "goodbye");
           REQUIRE_FALSE(strcmp(new_opt.str_or("hello"), "goodbye"));
@@ -160,7 +160,7 @@ SCENARIO("naked strings cannot be finalized", "[string unit]") {
   GIVEN("a string") {
     dart::mutable_api_test([] (auto tag, auto idx) {
       using pkt = typename decltype(tag)::type;
-      auto str = dart::conversion_helper<pkt>("hello world!"_dart);
+      auto str = dart::conversion_helper<pkt>(dart::packet::make_string("hello world!"));
       DYNAMIC_WHEN("the string is finalized directly", idx) {
         DYNAMIC_THEN("it refuses", idx) {
           REQUIRE_THROWS_AS(str.finalize(), std::logic_error);