In your letter dated Thu, 26 Feb 2026 09:24:55 +0100 you wrote: >In other words, I object to having _normative_ language in DNS-related >document about how _crypto_ should be implemented. > >Having said that, I do not object to mentioning it along the lines of >'perhaps check your crypto library enforces sane parameters'.
I think this is fine. We don't have to define where such limits are implemented. A non-normative remark that introduces the issue and that implementations may want impose limits is good enough. We could try to document out what values are currently accepted by validators. _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
