remove Config.MaxRetryTokenAge, set it to the handshake timeout (#4064)

There is no good reason to manually set the validity period for Retry tokens. Retry tokens are only valid on a single connection during the handshake, so it makes sense to limit their validity to the configured handshake timeout.
2025-04-04 04:37:36 +03:00 · 2023-09-10 13:53:12 +07:00 · 2023-09-10 13:53:12 +07:00 · abfe1ef548
commit abfe1ef548
parent e1fcac3e46
7 changed files with 25 additions and 16 deletions
--- a/interface.go
+++ b/interface.go
@ -265,9 +265,6 @@ type Config struct {
 	// See https://datatracker.ietf.org/doc/html/rfc9000#section-8 for details.
 	// If not set, every client is forced to prove its remote address.
 	RequireAddressValidation func(net.Addr) bool
-	// MaxRetryTokenAge is the maximum age of a Retry token.
-	// If not set, it defaults to 5 seconds. Only valid for a server.
-	MaxRetryTokenAge time.Duration
 	// MaxTokenAge is the maximum age of the token presented during the handshake,
 	// for tokens that were issued on a previous connection.
 	// If not set, it defaults to 24 hours. Only valid for a server.