> I only have one question for you then---IF I allowed TLS to be
> optional, how would a client know to use TLS, Wireguard or say, Tor?

Note that HTTP has this issue (HTTP 1.1? 1.2? Soon 1.3 which does not
even use TCP?) It is "solved" by some mixture of signaling in the DNS
redirection when possible (Alt-Svc:) and intelligent guessing, probing
and memorization by the client.

