Fuzz deserialization

Just in case, should setup fuzzing for the deserializer to make sure it's safe (most likely issue I can think of would be over-allocation, so something that limits the virtual memory while fuzzing could be useful).