[gnutls-devel] GnuTLS | boringssl early data is rejected by gnutls server because of the client ticket age > the server ticket age (#1403)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Mon Sep 26 08:49:45 CEST 2022
Tatsuhiro Tsujikawa commented:
boringssl's age calculation might be inaccurate, but there is no requirement for server to check client ticket age must be smaller than or equal to server ticket age. It is possible that client clock might be adjusted between the time when it received session ticket and actually using it in a way that client ticket age becomes 1 second larger which can lead to this issue.
I tested BoringSSL client against OpenSSL, BoringSSL, wolfSSL, picotls, and GnuTLS servers, and only GnuTLS server often fails to accept early data because of the check.
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1403#note_1113698652
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220926/bd999973/attachment.html>
More information about the Gnutls-devel
mailing list