Hi Tom, all, On 12/03/2021, 17:29, "tom petch" <daedu...@btconnect.com> wrote: > On 12/03/2021 16:18, Achim Kraus wrote: > > Hi Tom, Hannes, Thomas, > > > > "A zero-length value indicates that the server will send with the > > client's CID but does not wish the client to include a CID (or > > again, alternately, to use a zero-length CID)." > > > > My feeling is, the text in the paragraphs following that seems to > > introduce first the idea of a "zero-length CID", and later use that > > only to negate the use of tls_cid record. It may be more straight > > forward, if the use of a "zero-length CID" is limited to the > > ClientHello and the ServerHello extensions. And later the use of a > > tls_cid record is then only for negotiated non-empty CID. > > > > WDYT? > > I think that I cannot make sense of that 'alternately'. The > subsequent paragraphs seem to rule it out as an option. On a first > read I thought that a zero length CID was a valid option for > Application Data and wanted to know which form of header and MAC was > appropriate but my understanding of the later paragraphs became that a > zero length CID can only appear in Hello; but I do think that this > needs fixing.
Is your suggestion to remove the parenthetical? I.e.: OLD A zero-length value indicates that the server will send with the client's CID but does not wish the client to include a CID (or again, alternately, to use a zero-length CID). NEW A zero-length value indicates that the server will send with the client's CID but does not wish the client to include a CID. > I did track the WG discussion last October and did not see anything > very clear then. > > Tom Petch IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls