Closed
Bug 1751877
Opened 3 years ago
Closed 3 years ago
Firefox appears to race ECH and non-ECH connections
Categories
(NSS :: Libraries, defect, P3)
Tracking
(firefox98 affected)
RESOLVED
DUPLICATE
of bug 1750413
| Tracking | Status | |
|---|---|---|
| firefox98 | --- | affected |
People
(Reporter: djackson, Unassigned)
References
(Blocks 1 open bug)
Details
Attachments
(1 file)
|
(deleted),
application/octet-stream
|
Details |
Current Behaviour:
When testing ECH with Firefox Nightly and crypto.cloudflare.com, Firefox appears to race two TLS connections (one with ECH, one without). The initial page load uses the ECH connection and subsequent page loads use the unprotected connection.
A packet capture is attached.
Expected Behaviour:
Firefox should not fallback from ECH unless the server securely disables ECH.
|
Reporter | |
Comment 1•3 years ago
|
||
|
|
Reporter | |
Updated•3 years ago
|
Attachment #9260589 -
Attachment is obsolete: true
Attachment #9260589 -
Attachment is private: true
|
|
Reporter | |
Comment 2•3 years ago
|
||
|
|
Reporter | |
Comment 3•3 years ago
|
||
[Tracking Requested - why for this release]:
|
|
Reporter | |
Updated•3 years ago
|
Status: NEW → RESOLVED
Closed: 3 years ago
Priority: P1 → P3
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•