mirror of
https://github.com/mollyim/webrtc.git
synced 2025-05-17 07:37:51 +01:00
07d83c8a9a
The new verification makes verification a function on a message. It also stores the password used in the request message, so that it is easily accessible when verifying the response. Bug: chromium:1177125 Change-Id: I505df4b54214643a28a6b292c4e2262b9d97b097 Reviewed-on: https://webrtc-review.googlesource.com/c/src/+/209060 Reviewed-by: Björn Terelius <terelius@webrtc.org> Commit-Queue: Harald Alvestrand <hta@webrtc.org> Cr-Commit-Position: refs/heads/master@{#33366}
29 lines
1.1 KiB
C++
29 lines
1.1 KiB
C++
/*
|
|
* Copyright (c) 2016 The WebRTC project authors. All Rights Reserved.
|
|
*
|
|
* Use of this source code is governed by a BSD-style license
|
|
* that can be found in the LICENSE file in the root of the source
|
|
* tree. An additional intellectual property rights grant can be found
|
|
* in the file PATENTS. All contributing project authors may
|
|
* be found in the AUTHORS file in the root of the source tree.
|
|
*/
|
|
|
|
#include <stddef.h>
|
|
#include <stdint.h>
|
|
|
|
#include "api/transport/stun.h"
|
|
|
|
namespace webrtc {
|
|
void FuzzOneInput(const uint8_t* data, size_t size) {
|
|
const char* message = reinterpret_cast<const char*>(data);
|
|
|
|
// Normally we'd check the integrity first, but those checks are
|
|
// fuzzed separately in stun_validator_fuzzer.cc. We still want to
|
|
// fuzz this target since the integrity checks could be forged by a
|
|
// malicious adversary who receives a call.
|
|
std::unique_ptr<cricket::IceMessage> stun_msg(new cricket::IceMessage());
|
|
rtc::ByteBufferReader buf(message, size);
|
|
stun_msg->Read(&buf);
|
|
stun_msg->ValidateMessageIntegrity("");
|
|
}
|
|
} // namespace webrtc
|