Page MenuHomePhabricator

Implement client/server configuration fuzzer
Open, NormalPublic

Description

The fuzzing of configuration parser is nice user input that we should properly parse and avoid possible crashes/issues as it used to be quite frequent issue in the past.

At this moment, there is no simple API where we could plug fuzzer into as the only public function in config.c is ssh_config_parse_file, which takes the file so we will need need some new (could be internal) API to parse arbitrary string.

Event Timeline

Jakuje triaged this task as Normal priority.Wed, Sep 23, 1:05 PM
Jakuje created this task.