Closed Bug 1790357 Opened 2 years ago Closed 2 years ago

ECH client - On resumption discard TLS < 1.2 session ids/tickets if ECH configs are setup.

Categories

(NSS :: Libraries, defect)

Product:
NSS
Component:
Libraries
Version:
3.80
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: lschwarz, Assigned: lschwarz)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

Bug 1790357: ECH client - Discard resumption TLS < 1.3 Session(IDs|Tickets) if ECH configs are setup. r?djackson
(deleted), text/x-phabricator-request
Details

NSS ECH client does perform resumption if it posses TLS 1.2 session tickets from a previous connection AND ECH configs are setup. It must discard the 'deprecated' resumption ids and start a new connection offering ECH.

Bug discovered through BoGo (BoringSSL test) 'TLS-ECH-Client-TLS12Session(ID|Ticket)'.

The severity field is not set for this bug.
:beurdouche, could you have a look please?

For more information, please visit auto_nag documentation.

Flags: needinfo?(bbeurdouche)

https://hg.mozilla.org/projects/nss/rev/de72403d8b849a217264de84db9016f67dc34a28

Status: ASSIGNED → RESOLVED
Closed: 2 years ago
Resolution: --- → FIXED
Flags: needinfo?(bbeurdouche)
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: