bpo-37952: SSL: add support for export_keying_material by wingel · Pull Request #25255 · python/cpython
Add support for the RFC5705 SSL_export_keying_material function to the Python SSL module.
OpenSSL has a function to "SSL_export_keying_material" as described in RFC5705. This functionality is needed to be able to support a bunch of other protocols such as "Network Time Security for the Network Time Protocol" which has now become a proper RFC as RFC8915. There are half a dozen other RFCs which also use this functionality.
This functionality is used in my implementation of the NTS procotol which can also be found on github:
https://github.com/Netnod/nts-poc-python
It would be very nice if mainline Python could support for t his function in the future so that I don't have to maintain a patched version of Python for this.