From: Tobias Brunner <tobias@strongswan.org>
Date: Fri, 30 Jan 2026 14:06:14 +0000 (+0100)
Subject: github: Also run UBSan with CIFuzz
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=8a8d4640cf66865a6a72cc4e97659d689258bb15;p=thirdparty%2Fstrongswan.git

github: Also run UBSan with CIFuzz
---

diff --git a/.github/workflows/cifuzz.yml b/.github/workflows/cifuzz.yml
index 9e159e97ff..2857bb9b2e 100644
--- a/.github/workflows/cifuzz.yml
+++ b/.github/workflows/cifuzz.yml
@@ -16,6 +16,10 @@ jobs:
     needs: pre-check
     if: ${{ needs.pre-check.outputs.should_skip != 'true' }}
     runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        sanitizer: [address, undefined]
     permissions:
       security-events: write
     steps:
@@ -25,6 +29,7 @@ jobs:
       with:
         oss-fuzz-project-name: 'strongswan'
         language: c
+        sanitizer: ${{ matrix.sanitizer }}
 
     - name: Run Fuzzers
       uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
@@ -32,12 +37,13 @@ jobs:
         oss-fuzz-project-name: 'strongswan'
         output-sarif: true
         language: c
+        sanitizer: ${{ matrix.sanitizer }}
 
     - name: Upload Crash
       uses: actions/upload-artifact@v4
       if: failure() && steps.build.outcome == 'success'
       with:
-        name: artifacts
+        name: ${{ matrix.sanitizer }}-artifacts
         path: ./out/artifacts
 
     - name: Upload Sarif