From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org
X-Spam-Level: 
X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=ham
	autolearn_force=no version=3.4.4
Received: (qmail 2013 invoked from network); 14 Jun 2021 19:17:02 -0000
Received: from 1ess.inri.net (216.126.196.35)
  by inbox.vuxu.org with ESMTPUTF8; 14 Jun 2021 19:17:02 -0000
Received: from duke.felloff.net ([216.126.196.34]) by 1ess; Mon Jun 14 14:27:11 -0400 2021
Message-ID: <144E4812C04A086AA104EB478BFC153F@felloff.net>
Date: Mon, 14 Jun 2021 20:26:59 +0200
From: cinap_lenrek@felloff.net
To: 9front@9front.org
In-Reply-To: <CABO6shdDdshxr3G6urpB=kML9A21KTLofcm+nQ3pBD7Oe7nADw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
List-ID: <9front.9front.org>
List-Help: <http://lists.9front.org>
X-Glyph: ➈
X-Bullshit: DOM replication ActivityPub over ActivityPub plugin configuration metadata 
Subject: Re: [9front] libsec: various tls changes
Reply-To: 9front@9front.org
Precedence: bulk

ok, that looks good. before, we would always just pick secp256r1,
no negotiation whatsoever. i just wonder what the rfc sais, now
that we have negotiation for it... it might be better to just
error and close the connection instead?

but otherwise it looks fine now...

--
cinap