On 26.11.25 20:51, Eric Rescorla wrote:
It's mandatory to implement per: https://www.rfc-editor.org/rfc/rfc8446#section-9.1A TLS-compliant application MUST support key exchange with secp256r1 (NIST P-256) and SHOULD support key exchange with X25519 [RFC7748].
Thanks Ekr for clarification. I might have missed that as implementer's issue. I now see that section 9.2 marks key_share extension as MUST.
-Usama
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
