mbedtls/ChangeLog.d/workaround_gnutls_anti_replay_fail.txt

Bugfix
    * In TLS 1.3, when using a ticket for session resumption, tweak its age
      calculation on the client side. It prevents a server with more accurate
      ticket timestamps (typically timestamps in milliseconds) compared to the
      Mbed TLS ticket timestamps (in seconds) to compute a ticket age smaller
      than the age computed and transmitted by the client and thus potentially
      reject the ticket. Fix #6623.
Add changlog entry. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com> 2023-01-07 09:11:09 +01:00			`Bugfix`
Improve comment and changlog Signed-off-by: Jerry Yu <jerry.h.yu@arm.com> 2023-01-10 07:58:08 +01:00			`* In TLS 1.3, when using a ticket for session resumption, tweak its age`
			`calculation on the client side. It prevents a server with more accurate`
			`ticket timestamps (typically timestamps in milliseconds) compared to the`
			`Mbed TLS ticket timestamps (in seconds) to compute a ticket age smaller`
			`than the age computed and transmitted by the client and thus potentially`
			`reject the ticket. Fix #6623.`