[TLS] Should we require implementations to send alerts?

Issue: https://github.com/tlswg/tls13-spec/issues/242 In https://github.com/tlswg/tls13-spec/pull/231, Brian Smith argues: "Nobody must ever be *required* to send an alert. Any requirement for sending an alert should be SHOULD, at most." As Dave Garrett notes in the same thread, this is a common

Re: [TLS] Should we require implementations to send alerts?

On 12 September 2015 at 13:49, Eric Rescorla wrote: > "Nobody must ever be required to send an alert. Any requirement for sending > an alert should be SHOULD, at most." This was a point of debate for HTTP/2 as well. The conclusion there was that you had to be prepared to have the connection disa

Re: [TLS] Should we require implementations to send alerts?

On Sat, Sep 12, 2015 at 2:13 PM, Martin Thomson wrote: > On 12 September 2015 at 13:49, Eric Rescorla wrote: > > "Nobody must ever be required to send an alert. Any requirement for > sending > > an alert should be SHOULD, at most." > > This was a point of debate for HTTP/2 as well. The conclusi

Re: [TLS] Should we require implementations to send alerts?

Martin Thomson writes: > On 12 September 2015 at 13:49, Eric Rescorla wrote: > > "Nobody must ever be required to send an alert. Any requirement for sending > > an alert should be SHOULD, at most." > > This was a point of debate for HTTP/2 as well. The conclusion there > was that you had to be

Re: [TLS] Should we require implementations to send alerts?

This seems like the right set of options... On 12 September 2015 at 14:26, Eric Rescorla wrote: > 1. Require termination and say nothing else I think the mere existence of alerts suggests that this isn't really a good option. > 2. Require termination and suggest an alert. > 3. Require terminati

Re: [TLS] Should we require implementations to send alerts?

> > After all, what are you going to do when the connection drops without > > a GOAWAY? Drop the connection? > > Try again, assuming the problem is a one-time glitch? That's important. Without the alert, you might just try again. And again. And again.. .. __

Re: [TLS] Should we require implementations to send alerts?

On Sat, Sep 12, 2015 at 01:49:49PM -0700, Eric Rescorla wrote: > "Nobody must ever be *required* to send an alert. Any requirement for > sending an alert should be SHOULD, at most." Interoperability problems are hard enough to debug even when alerts are sent, and they are *very* useful. If the p

Re: [TLS] Should we require implementations to send alerts?

On Sat, Sep 12, 2015 at 3:18 PM, Viktor Dukhovni wrote: > On Sat, Sep 12, 2015 at 01:49:49PM -0700, Eric Rescorla wrote: > > > "Nobody must ever be *required* to send an alert. Any requirement for > > sending an alert should be SHOULD, at most." > To be clear, you're quoting me quoting Brian Smi