Jacek Konieczny <jaj...@jajcus.net> added the comment: Here is a patch, ready for review. Seems to work, though I still need to check it with some other implementation.
I have chosen not to expose another three OpenSSL functions (SSL_get_finished, SSL_get_peer_finished, SSL_session_reused), but provide API just for getting the channel binding. If OpenSSL provides a better API some day (gnutls already has a dedicated function), we can use that. The method added to SSLSocket - get_channel_binding() currently can return only the 'tls-unique' channel binding type, but can be easily extended for other types, which also may be easier to get from the C module. ---------- keywords: +patch Added file: http://bugs.python.org/file22646/tls_channel_binding.patch _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue12551> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
