Enforcing group / key_share order in TLS1.3
Sebastian Andrzej Siewior
openssl-dev at ml.breakpoint.cc
Fri Jan 10 22:41:20 UTC 2020
Hi,
gnutls-cli sends by default (in the supported groups extension)
`secp256r1' first and later `x25519'. The key_share extension contains a
key for both types. The server has both types configured both groups and
`x25519' comes first.
The handshake however ends up with `secp256r1'. Is there a way to tell
openssl to prefer `x25519' over `secp256r1'?
Sebastian
More information about the openssl-users
mailing list