Project

General

Profile

Fuzzing

Since 5.5.3 parts of the strongSwan code base are fuzzed on Google's OSS-Fuzz infrastructure.

The following fuzz targets are currently in use:

  • fuzz-certs: Fuzzes the X.509 certificate parsing framework as provided by the default plugins (x509, pem, pkcs1, gmp etc.) and libstrongswan's ASN.1 parser.
  • fuzz-crls: Fuzzes the CRL parsing framework provided by the default plugins (x509, pem etc.) and libstrongswan's ASN.1 parser.
  • fuzz-pa-tnc: Fuzzes the PA-TNC message parser (libimcv).
  • fuzz-pb-tnc: Fuzzes the PB-TNC batch parser (libtnccs).

The seed corpora used by the fuzz targets is provided in a separate repository.