This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

classification
Title: Add support for the RFC5705 SSL_export_keying_material function
Type: enhancement Stage: resolved
Components: SSL Versions: Python 3.10
process
Status: closed Resolution: duplicate
Dependencies: Superseder:
Assigned To: christian.heimes Nosy List: christian.heimes, wingel71
Priority: normal Keywords:

Created on 2021-04-07 13:48 by wingel71, last changed 2022-04-11 14:59 by admin. This issue is now closed.

Messages (1)
msg390432 - (view) Author: Christer Weinigel (wingel71) * Date: 2021-04-07 13:48
OpenSSL has a function to "SSL_export_keying_material" as described in RFC5705.  This function is needed to be able to support a bunch of other protocols such as "Network Time Security for the Network Time Protocol" defined in  RFC8915 and half a dozen other RFCs.

I have written a patch to add support for this function which can be found on github:

https://github.com/wingel/cpython

And it is used in my implementation of the NTS procotol which can also be found on github:

https://github.com/Netnod/nts-poc-python

It would be very nice if mainline Python could support for this function in the future so that I don't have to maintain a patched version of Python for this.

I'll make a pull request on github for this when I have a bpo number.
History
Date User Action Args
2022-04-11 14:59:43adminsetgithub: 87931
2021-04-07 13:50:00wingel71setstatus: open -> closed
resolution: duplicate
stage: resolved
2021-04-07 13:48:01wingel71create