On Mon, Jan 23, 2023 at 02:51:45PM +0000, Salz, Rich wrote:
> > Assuming OpenSSL's d2i_PUBKEY(3) can decode these, they'll be
> > accepted. I don't recall seeing any code to transmit point
> > compressed public keys *to* the peer, but may have missed it,
> > wasn't looking at the codec that closely.
>
> Looking at the file tls`.h, it appears RFC 4492 point formats are supported.
It seems the sending side will does not presently send compressed forms:
https://github.com/tmshort/openssl/blob/master-rpk/ssl/statem/extensions.c#L1802-L1812
If support for compressed public key forms is a common feature of other
implementations, perhaps it should be included...
--
Viktor.
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
