tls13: early_data: cli: improve comment

This commit improves comment of why we assign the identifier of the
ciphersuite in handshake to `ssl->session_negotiate`.

Signed-off-by: Yanray Wang <yanray.wang@arm.com>

library/ssl_tls13_client.c

@@ -2207,13 +2207,14 @@ static int ssl_tls13_process_encrypted_extensions(mbedtls_ssl_context *ssl)
 #endif
 
     /*
-     * Move `session_negotiate->ciphersuite` assignment here which after
+     * In case the client has proposed a PSK associated with a ticket,
-     * early data cipher suite check.
+     * `ssl->session_negotiate->ciphersuite` still contains at this point the
-     *
+     * identifier of the ciphersuite associated with the ticket. This is that
-     * We compute transform_handshake by the cipher suite chosen from
+     * way because, if an exchange of early data is agreed upon, we need
-     * the server in `handshake`. `session_negotiate->ciphersuite` is the
+     * it to check that the ciphersuite selected for the handshake is the
-     * cipher suite negotiated in previous connection and it is not used for
+     * ticket ciphersuite (see above). This information is not needed
-     * computing transform_handshake.
+     * anymore thus we can now set it to the identifier of the ciphersuite
+     * used in this session under negotiation.
      */
     ssl->session_negotiate->ciphersuite = handshake->ciphersuite_info->id;