So, the draft has following text:
The same extension types MUST NOT appear in both the ServerHello and
EncryptedExtensions. If the same extension appears in both locations,
the client MUST rely only on the value in the EncryptedExtensions
block. if the extension "MUST NOT" be in both ServerHello and EncryptedExtensions, why the client should continue with the handshake if a server makes such a major mistake? Why aborting the connection in such situation isn't safer? -- Regards, Hubert Kario Senior Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
