Closed Bug 1281080 Opened 8 years ago Closed 6 years ago

Client should reject TLS 1.2 if they are doing 0-RTT

Tracking

(Not tracked)

Status:

RESOLVED WORKSFORME

People

(Reporter: mt, Unassigned)

Details

Martin Thomson [:mt:]

Reporter

Description

•

8 years ago

Supporting 0-RTT means that the server has to support 1.3.  We should reject a 1.2 ServerHello if the client was doing 0-RTT.

See also https://github.com/tlswg/tls13-spec/pull/502

Masatoshi Kimura [:emk]

Updated

•

8 years ago

Summary: Client should reject TLS 1.3 if they are doing 0-RTT → Client should reject TLS 1.2 if they are doing 0-RTT

Tim Taubert [:ttaubert] (inactive)

Updated

•

7 years ago

Priority: -- → P3

Martin Thomson [:mt:]

Reporter

Comment 1

•

6 years ago

TestTls13ZeroRttDowngrade in ssl_0rtt_unittest.cc covers this.

Status: NEW → RESOLVED

Closed: 6 years ago

Resolution: --- → WORKSFORME

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Client should reject TLS 1.2 if they are doing 0-RTT

Categories

(NSS :: Libraries, defect, P3)

Tracking

(Not tracked)

People

(Reporter: mt, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Comment 1