Page MenuHomePhabricator

Implement client/server configuration fuzzer
Open, NormalPublic


The fuzzing of configuration parser is nice user input that we should properly parse and avoid possible crashes/issues as it used to be quite frequent issue in the past.

At this moment, there is no simple API where we could plug fuzzer into as the only public function in config.c is ssh_config_parse_file, which takes the file so we will need need some new (could be internal) API to parse arbitrary string.