mmaehren

Hi, this is an excerpt from RFC 8446 - "1.2. Major Differences from TLS 1.2" ``` - Session resumption with and without server-side state as well as the PSK-based cipher...

Please also provide openssl's error message. I'm not sure if setting a cert for s_client enforces that the server requests a certificate. As you can see in the debug output,...

Which openssl version is this?

I'm not sure what's causing the alert. Openssl's error `4708638208:error:1414D172:SSL routines:tls12_check_peer_sigalg:wrong signature type:ssl/t1_lib.c:1065:` seems to reference these lines of code https://github.com/openssl/openssl/blob/fd78df59b0f656aefe96e39533130454aa957c00/ssl/t1_lib.c#L1061-L1067 I talked to @ic0ns and he mentioned that there...

Thank you, we will try to be more specific with the RFC chapters in the future.

Yes, we developed an automated tool for this which we plan to release in the coming months. By 'example implementations' we meant the s_client and s_server equivalent of libressl.

Hey, based on the feedback we received from other developers, we split up the reports to separate cases where the RFC imposes restrictions on a sender but does not require...