Elaborate on example for report_dropped rejection case

The protocol requires Aggregators to prevent report replays within a task. It also allows the Aggregators to eventually clean up state for anti-replay. If a report arrives late, it may be rejected because the Aggregator can't determine if it has been replayed. Clarify this in the example.
ietf-wg-ppm · Jan 15, 2025 · 712f0fb · 712f0fb
1 parent 0498475
commit 712f0fb
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/draft-ietf-ppm-dap.md b/draft-ietf-ppm-dap.md
@@ -1912,10 +1912,10 @@ following checks:
       {{distributed-systems}} for more information.
 
 1. Finally, if an Aggregator cannot determine if an input share is valid, it
-   MUST mark the input share as invalid with error `report_dropped`. For
-   example, if the Aggregator has evicted the state required to perform the
-   check from long-term storage. (See {{reducing-storage-requirements}} for
-   details.)
+   MUST mark the input share as invalid with error `report_dropped`.
+   For example, the report timestamp may be so far in the past that the state
+   required to perform the check has been evicted from the Aggregator's
+   long-term storage. See {{reducing-storage-requirements}} for details.
 
 If all of the above checks succeed, the input share is not marked as invalid.