Hiya,
On 07/07/2025 17:03, Christian Huitema wrote:
What happens if a client establishes a direct TCP connection with a BE server and adds an ECH inner parameter to the Client Hello?
Nothing much bad (would be my guess). If the BE (application layer) cares about that then you'd expect someone would e.g. have setup wireguard and the BE to only accept connections via the relevant interface(s). If not, I don't see that the TLS layer aborting is really that helpful. And that'd only be of interest if the application using TLS is such that it reacts differently when it's an ECH backend or not, which'd also be fairly rare I think. An application using our OpenSSL code could detect being an ECH backed via an API, but I'm not sure other libraries expose this to the application (or actually even implement split mode;-). But again, maybe I'm missing something. Cheers, S.
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
