Matt Caswell wrote: > > > On 12/11/15 08:23, Nikos Mavrogiannopoulos wrote: > > On Wed, 2015-11-11 at 18:39 +0000, Mike Bishop wrote: > > > >> I know that BoringSSL explicitly requires that application data flow > >> be stopped during renegotiation. If the HTTP working group adopts > >> this draft, do the owners of other TLS implementations expect this to > >> require changes in their TLS 1.2 implementations? > > GnuTLS also has this requirement. > > > OpenSSL also does not allow application data during renegotiation.
Our implementation also does not allow application data during renegotiation. (But it also has server-side renegotiation completely disabled.) -Martin _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
