[TLS] What's the proper alert for sequence wrap.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[TLS] What's the proper alert for sequence wrap.
Hi,
The RFC4346 says:
Sequence numbers are of type uint64 and may not
exceed 2^64-1. Sequence numbers do not wrap. If a TLS
implementation would need to wrap a sequence number, it must
renegotiate instead.
In a implementation, if one does not want to support sequence number
wrap with renegotiation, a fatal alert should be sent to peer if the
sequence number exceed. Or if one side receive a wrapped sequence
number, a fatal alert also should be sent to peer. However, I don't find
proper alert descriptions for both read and write sequence number exceed
cases.
Any suggestions?
Thanks,
Andrew
_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
