Closed
Bug 1789436
Opened 2 years ago
Closed 1 year ago
Add Option for Randomizing TLS Client Hello Extension Order
Categories
(NSS :: Libraries, enhancement, P3)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: djackson, Assigned: lschwarz)
References
Details
Attachments
(2 files)
Chrome recently announced they would experiment with randomising the extension order in their TLS Client Hellos. This is permitted by the specification and would likely reduce ossification in the TLS ecosystem.
We should look at adding similar support to NSS and running a similar experiment.
Assignee | ||
Updated•1 year ago
|
Assignee: nobody → lschwarz
Status: NEW → ASSIGNED
Assignee | ||
Comment 1•1 year ago
|
||
Reporter | ||
Comment 2•1 year ago
|
||
Status: ASSIGNED → RESOLVED
Closed: 1 year ago
Resolution: --- → FIXED
Reporter | ||
Comment 3•1 year ago
|
||
Comment 4•1 year ago
|
||
A patch has been attached on this bug, which was already closed. Filing a separate bug will ensure better tracking. If this was not by mistake and further action is needed, please alert the appropriate party. (Or: if the patch doesn't change behavior -- e.g. landing a test case, or fixing a typo -- then feel free to disregard this message)
Reporter | ||
Comment 5•1 year ago
|
||
You need to log in
before you can comment on or make changes to this bug.
Description
•