generate_session_ticket: use a 4-byte nonce by default

It is not necessary to use large nonces.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>

diff --git a/lib/tls13/session_ticket.c b/lib/tls13/session_ticket.c
index 213e6a89702e04ba033b29aec5907955a75ff4b6..ca11fd78a6c05d10902545623122e6f5df560a7f 100644 (file)
--- a/lib/tls13/session_ticket.c
+++ b/lib/tls13/session_ticket.c
@@ -178,8 +178,8 @@ generate_session_ticket(gnutls_session_t session, tls13_ticket_t *ticket)
        gnutls_datum_t packed = { NULL, 0 };
        tls13_ticket_t ticket_data;
 
-       /* Generate a random 128-bit ticket nonce */
-       ticket->nonce_size = 16;
+       /* Generate a random 32-bit ticket nonce */
+       ticket->nonce_size = 4;
 
        if ((ret = gnutls_rnd(GNUTLS_RND_NONCE,
                        ticket->nonce, ticket->nonce_size)) < 0)