pyopenssl icon indicating copy to clipboard operation
pyopenssl copied to clipboard

Published 20 hours ago verified publisher icon pyca

Add support for TLS 1.3 Early Data

Open Lukasa opened this issue 8 years ago • 2 comments

Deferred: we can't do this until cryptography supports OpenSSL 1.1.1.

It would be very helpful for applications like Twisted to have access to TLS 1.3 Early Data (see this Twisted ticket). To do that PyOpenSSL needs to expose a few functions:

  • SSL_SESSION_get_max_early_data
  • SSL_write_early_data
  • SSL_read_early_data
  • SSL_CTX_set_max_early_data

It'd be good to add this support to PyOpenSSL when it becomes possible.

Lukasa avatar Jun 14 '17 12:06 Lukasa

Is there any progress on this?

maaren avatar Nov 12 '18 13:11 maaren

The next release of pyca/cryptography will be linked against OpenSSL 1.1.1. I'll go ahead and add the bindings for cryptography, but adding the feature itself in pyOpenSSL is dependent upon someone else stepping up.

reaperhulk avatar Nov 12 '18 13:11 reaperhulk