commit 164537c4a65b66dcd57a0a2e074304c5ffb9cf03
author Ronald Cron <ronald.cron@arm.com> Thu Feb 01 18:05:47 2024 +0100
committer Ronald Cron <ronald.cron@arm.com> Thu Feb 01 19:52:30 2024 +0100
tree 0be2d15e7724a1485abe62a11337c86aa7e33e0a
parent ed7d4bfda589684c59aaadc14e4bfdba07f7cd3d

tls13: early data: Improve, add comments

Signed-off-by: Ronald Cron <ronald.cron@arm.com>

include/mbedtls/ssl.h

diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 5644f08..2aae32e 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@@ -2074,7 +2074,8 @@
  *  namely mbedtls_ssl_handshake(), mbedtls_ssl_handshake_step(),
  *  mbedtls_ssl_read() or mbedtls_ssl_write() may return with the error code
  *  MBEDTLS_ERR_SSL_RECEIVED_EARLY_DATA indicating that some early data have
- *  been received. To read the early data, call mbedtls_ssl_read_early_data().
+ *  been received. To read the early data, call mbedtls_ssl_read_early_data()
+ *  before calling the original function again.
  *
  * \warning This interface is experimental and may change without notice.
  *
@@ -5124,7 +5125,7 @@
  *
  * \note           This API is server specific.
  *
- * \note           Early data is defined in the TLS 1.3 specification, RFC 8446.
+ * \warning        Early data is defined in the TLS 1.3 specification, RFC 8446.
  *                 IMPORTANT NOTE from section 2.3 of the specification:
  *
  *                 The security properties for 0-RTT data are weaker than