From deb620501d9ba7426a01af871b4c0229d8645c58 Mon Sep 17 00:00:00 2001
From: Andy Green <andy@warmcat.com>
Date: Wed, 25 Sep 2024 12:15:46 +0100
Subject: [PATCH] doc: session tickets

https://github.com/warmcat/libwebsockets/issues/3226
---
 READMEs/README.tls-sessions.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/READMEs/README.tls-sessions.md b/READMEs/README.tls-sessions.md
index 5247555ce..c0eb6a1c3 100644
--- a/READMEs/README.tls-sessions.md
+++ b/READMEs/README.tls-sessions.md
@@ -43,8 +43,10 @@ valid session object.
 ### Difference from Session Tickets
 
 TLS also supports sessions as bearer tokens, but these are generally considered
-as degrading security.  Lws doesn't support Session Tickets, just reuse by
-Session IDs.
+as degrading security.  Lws doesn't do anything special for Session Tickets, but
+it's possible your TLS library will support them by default, as is reportedly the
+case with mbedtls 2.28.1.  Either way, it's expected Session IDs should work with
+lws if enabled and your tls library supports them.
 
 ## Support in lws