> I used to think that MTI doesn’t mean “Mandatory To Offer”. My codebase must have it, but my server (and/or client) configuration may explicitly forbid it. Is there anything wrong with this view? No. At least within the TLS WG this has been brought up multiple times. :)