On 22.05.2018 22:25, Ivan Labáth wrote: > How about allowing counter wrapping, if it has been at least > 2 * REKEY_TIMEOUT from last handshake? Perhaps reusing the cookie > protocol for a 2-RTT handshake? > > Losing access to a device, because its clock has gone wonky is not pleasant.
If that happens, you can remove and re-add the peer. -- -- Matthias Urlichs _______________________________________________ WireGuard mailing list [email protected] https://lists.zx2c4.com/mailman/listinfo/wireguard
