[gnutls-devel] GnuTLS | boringssl early data is rejected by gnutls server because of the client ticket age > the server ticket age (#1403)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Wed Sep 28 09:20:49 CEST 2022

Daiki Ueno commented:

Hello, GnuTLS implements [Client Hello Recording](https://datatracker.ietf.org/doc/html/rfc8446#section-8.2) to detect replay attacks and the condition `server_ticket_age >= client_ticket_age` is a prerequisite to calculate [expected_arrival_time](https://datatracker.ietf.org/doc/html/rfc8446#section-8.3), though we ignore estimated RTT. Perhaps adding this parameter as a margin might mitigate the issue.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1403#note_1117024113
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220928/407e0ad1/attachment.html>

More information about the Gnutls-devel mailing list