JSSE does not renegotate after hitting 2^64-1 sequenced packets.

XMLWordPrintable

    • Type: Bug
    • Resolution: Duplicate
    • Priority: P3
    • 7
    • Affects Version/s: 5.0
    • Component/s: security-libs
    • None


      According to Eric Rescorla (TLS 1.1 spec lead), SSL/TLS implementations
      must renegotiate before reaching 2^64-1 packets. We currently roll
      over to 0.

      Yes, this is for *REALLY* long lived processes, but Jessie's Fast TCP got me
      thinking about it. Eric will be adding a clarification to the TLS 1.1
      spec.

      ###@###.### 2003-06-27

            Assignee:
            Xuelei Fan
            Reporter:
            Bradford Wetmore
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: