4xx Client Error
HTTP 425 Too Early
The server is unwilling to risk processing a request that might be replayed. This is used with TLS Early Data (0-RTT) to protect against replay attacks.
Common Causes
- Request sent using TLS 1.3 early data (0-RTT)
- Server refusing replayed requests for safety
- Non-idempotent request sent in early data
How to Fix
- 1Retry the request after the TLS handshake completes
- 2Only send idempotent requests in early data
- 3Disable TLS early data for sensitive operations
Example
HTTP 425 Too Early
POST /api/transfer HTTP/1.1 (sent via TLS 0-RTT early data) → 425 Too Early → "Retry after full handshake"
Related Client Error Codes
400
Bad Request
401Unauthorized
402Payment Required
403Forbidden
404Not Found
405Method Not Allowed
406Not Acceptable
407Proxy Authentication Required
408Request Timeout
409Conflict
410Gone
411Length Required
412Precondition Failed
413Content Too Large
414URI Too Long
415Unsupported Media Type
416Range Not Satisfiable
417Expectation Failed
418I'm a Teapot
421Misdirected Request
422Unprocessable Content
423Locked
424Failed Dependency
426Upgrade Required
428Precondition Required
429Too Many Requests
431Request Header Fields Too Large
451Unavailable For Legal Reasons