[issue12551] Provide data for TLS channel binding
Jacek Konieczny
report at bugs.python.org
Wed Jul 13 19:55:13 CEST 2011
Jacek Konieczny <jajcus at jajcus.net> added the comment:
Here is a patch, ready for review. Seems to work, though I still need to check it with some other implementation.
I have chosen not to expose another three OpenSSL functions (SSL_get_finished, SSL_get_peer_finished, SSL_session_reused), but provide API just for getting the channel binding. If OpenSSL provides a better API some day (gnutls already has a dedicated function), we can use that.
The method added to SSLSocket - get_channel_binding() currently can return only the 'tls-unique' channel binding type, but can be easily extended for other types, which also may be easier to get from the C module.
----------
keywords: +patch
Added file: http://bugs.python.org/file22646/tls_channel_binding.patch
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue12551>
_______________________________________
More information about the Python-bugs-list
mailing list