I think this was addressed by https://gitlab.com/libssh/libssh-mirror/merge_requests/63 for OpenSSL.

The support should be available also in the mbedTLS and libgcrypt, but the question is whether it makes sense there as the primary backend is openssl here.

https://en.wikipedia.org/wiki/Curve25519
https://tls.mbed.org/core-features
https://github.com/gpg/libgcrypt/blob/master/cipher/ecc-curves.c

I think supporting mbedtls in future would be nice as it is GPL licensed. libgcrypt is just a mess and we should remove it at one point.