Disabling TLS GREASE

Developer Tools & Services Xcode
karimhm OP
Created Oct ’23
Replies 1
Boosts 0
Views 371
Participants 1

Is there a way to disable TLS GREASE on NWProtocolTLS.Options.securityProtocolOptions.

Because it adds a 40 bytes overhead to the ClientHello. Combined with other factors (the padding extension), this would cause the TLS handshake to take a significate amount of time on low bandwidth connections.

I tried using the private funcion sec_protocol_options_set_tls_grease_enabled() but it did not work.

Replies  1
Boosts  0
Views  371
Participants  1
karimhm OP
Oct ’23

The only way i managed to disable it is by setting a breakpoint on SSL_CTX_set_grease_enabled and changing the parameter to FALSE. But this can only be done with a debugger attached to the application.

0
Disabling TLS GREASE
First post date Last post date
 
 
Q