Upon receiving an "encrypted_client_hello" extension in an initial ClientHello , the client-facing server determines if it will accept ECH prior to negotiating any other TLS parameters.
The info parameter to SetupBaseR is the concatenation "tls ech", a zero byte, and the serialized ECHConfig .
If either of these checks fails, the client-facing server MUST abort with an "illegal_parameter" alert.¶If these checks succeed, the client-facing server then forwards the ClientHelloInner to the appropriate backend server, which proceeds as in Section 7.2.
If the backend server responds with a HelloRetryRequest, the client-facing server forwards it, decrypts the client's second ClientHelloOuter using…
49 минут назад @ rfc-editor.org
infomate
