Martin Thomson <[email protected]> writes: >Plaintext records don't have any such limits. I explicitly excluded them.
Hmm, it's somewhat disguised in the text, technically all records are "protected records" (if you use EMS, everything is at least integrity- protected). So if you mean "this only applies to application_data" then you should probably say so (alerts and CCS are too short for it to matter, and I'm assuming no rehandshake, so only application_data will be affected by the length constraints). However, this then leads to a problem where it doesn't actually solve the constrained-client/server issue, if a client asks for 2K max record size and the server responds with a 4K hello then it's going to break the client even if later application_data records are only 2K. So it would need to apply to every record type, not just application_data. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
