On Mon, Sep 30, 2019, at 6:28 AM, Hubert Kario wrote: > On Saturday, 28 September 2019 01:59:42 CEST Christopher Wood wrote: > > This version addresses some of the comments we received from Hubert a while > > back. We think it's ready to go for WGLC, modulo whatever nits folks find. > > :-) > > I still see the "vend" instead of "send" typos... Same for "vended"
It's not a typo! We chose to use vend. > > ``` > Clients must therefore > bound the number of parallel connections they initiate by the > number of tickets in their possession, or risk ticket re-use. > ``` > > I'm not a native speaker, but shouldn't it be "...therefore bind the > number..."? Yes, we can fix it in the next version. > > ``` > Servers MUST NOT send more than 255 tickets to clients. > ``` > > per what? session? at a time? connection? This is all per session. We can state it explicitly in the next version. > what's the expected behaviour with tickets and post-handshake authentication? > Are tickets sent after PHA also bound by this limit? As mentioned earlier, there is no effect, so we left it out. We're happy to accept text should you think it's needed. > ``` > Clients MUST NOT change the value of TicketRequestContents.count in > second ClientHello messages sent in response to a HelloRetryRequest. > ``` > > 'A server MUST abort the connection with an "illegal_parameter" if the value > of the extension changed, it was added or removed in second ClientHello.' ? I don't think this is necessary. Best, Chris _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
