[gnutls-devel] GnuTLS | Forbid uncolicited CompressedCertificate messages (!1678)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Thu Dec 8 13:34:39 CET 2022
Zoltán Fridrich commented on a discussion on lib/tls13/certificate.c: https://gitlab.com/gnutls/gnutls/-/merge_requests/1678#note_1201592308
> return gnutls_assert_val(ret);
> comp_method = _gnutls_compress_certificate_num2method(method_num);
>
> + if (!_gnutls_compress_certificate_is_method_enabled(session, comp_method))
> + return gnutls_assert_val(GNUTLS_E_ILLEGAL_PARAMETER);
On uncompressed_length mismatch the bad_certificate alert is sent. I fail to see the problem here.
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1678#note_1201592308
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20221208/83736d62/attachment-0001.html>
More information about the Gnutls-devel
mailing list