On 07/03/2017 07:01 PM, Eric Rescorla wrote: > Currently the extension table says that server_certificate_type goes > in the Certificate message, whereas client_certificate_type does > not. My reasoning for the latter is that the extensions are attached > to individual certificate elements, so it was non-sensical to have a > situation where you might have cert A be X.509 and cert B be PGP. I > think we should just change server_certificate_type to go in EE, and > then maybe in future if people want something cleverer they can add it > then. I didn't want to do this without WG discussion, but I think we > should and if people don't object I'll do it in a -22. >
Seems worth doing. [snip] > > [0] Note that this is a bit tricky when you are also streaming > Early Data. I'm not sure what this footnote was supposed to refer to. -Ben
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
