Martin Thomson <martin.thom...@gmail.com> writes: >Plaintext records don't have any such limits. I explicitly excluded them.
Hmm, it's somewhat disguised in the text, technically all records are "protected records" (if you use EMS, everything is at least integrity- protected). So if you mean "this only applies to application_data" then you should probably say so (alerts and CCS are too short for it to matter, and I'm assuming no rehandshake, so only application_data will be affected by the length constraints). However, this then leads to a problem where it doesn't actually solve the constrained-client/server issue, if a client asks for 2K max record size and the server responds with a 4K hello then it's going to break the client even if later application_data records are only 2K. So it would need to apply to every record type, not just application_data. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls