[TLS] Extensions and session resumption

[Mike <mike-list@xxxxxxxxx>]

It's late, so I might be missing something, but I
can't find any information about what clients and
servers should put into hello extensions when they
intend to resume a previous session.  It is implied
that all that is necessary is for the session ID to
match that of the previous session (and the client
MUST include the particular cipher suite and
compression algorithm), but nothing is said about
whether the client needs to specify the same list
of extensions (with the same values presumably),
or if the server must include them in the server
hello response.

My code wants at least the server name extension
to be in the client hello in order for the server
to easily find the cached session (since you can
set up multiple session caches).  But it also makes
some sense to require the inclusion of truncated
HMAC, for example.

Mike
_______________________________________________
TLS mailing list
TLS@xxxxxxxx
https://www.ietf.org/mailman/listinfo/tls