[New-bugs-announce] [issue43765] Add support for the RFC5705 SSL_export_keying_material function

Christer Weinigel report at bugs.python.org
Wed Apr 7 09:48:01 EDT 2021

New submission from Christer Weinigel <christer at weinigel.se>:

OpenSSL has a function to "SSL_export_keying_material" as described in RFC5705.  This function is needed to be able to support a bunch of other protocols such as "Network Time Security for the Network Time Protocol" defined in  RFC8915 and half a dozen other RFCs.

I have written a patch to add support for this function which can be found on github:


And it is used in my implementation of the NTS procotol which can also be found on github:


It would be very nice if mainline Python could support for this function in the future so that I don't have to maintain a patched version of Python for this.

I'll make a pull request on github for this when I have a bpo number.

assignee: christian.heimes
components: SSL
messages: 390432
nosy: christian.heimes, wingel71
priority: normal
severity: normal
status: open
title: Add support for the RFC5705 SSL_export_keying_material function
type: enhancement
versions: Python 3.10

Python tracker <report at bugs.python.org>

More information about the New-bugs-announce mailing list