[gnutls-devel] GnuTLS | does not abort the connection when client does not send uncompressed format in ECPointFormatList or sends an epmty ECPointFormatList (#1609)

[Read-only notification of GnuTLS library development activities]

AnnaStarovojtova created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1609



## Description of problem:
The server does not abort the connection when:
- the client sends an ECPointFormatList without the uncompressed format in it;
- the client sends an empty ECPointFormatList.

## Version of gnutls used:

gnutls-cli 3.8.6

## Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)

Fedora

## How reproducible:

Steps to Reproduce:

run the tlsfuzzer `test-point-extension.py` script

## Actual results:

The following tests fail:

- ECDHE uncompressed extension missing
- ECDHE empty list extension

## Expected results:

- When the client sends the ECPointForamtList with only compressed values, the server must abort the handshake and return illegal_parameter alert.
  * RFC8422 - 5.1.2.  Supported Point Formats Extension

    >>>
    If the client sends the extension and the extension does not contain the uncompressed point format, and the client has used the Supported Groups extension to indicate support for any of the curves defined in this specification, then the server MUST abort the handshake and return an illegal_parameter alert.

    >>>
- When the client sends an empty ECPointFormatList, the client should abort the handshake and return a decode_error alert.
  * RFC8422 - 5.1.2.  Supported Point Formats Extension

    > struct { ECPointFormat ec_point_format_list\<1..2^8-1\> } ECPointFormatList;

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1609
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20241114/28a5f798/attachment-0001.html>