◐ Shell
clean mode source ↗

gh-95341: Implement tls-exporter channel bindings and export key materials by tiran · Pull Request #95366 · python/cpython

bedevere-bot

Skip to content

Navigation Menu

Sign in

Appearance settings

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

Sign up

Appearance settings

Conversation

@tiran

@tiran tiran commented

Jul 28, 2022

edited by bedevere-bot

Loading

Copy link Copy Markdown

Member

Neustradamus, agronholm, and ztane reacted with heart emoji

@Neustradamus

Copy link Copy Markdown

@tiran: Have you an idea when it will be merged?

Thanks for your work!

@tiran

tiran commented

Aug 6, 2022

Copy link Copy Markdown

Member Author

When it's ready. There is no need to rush this PR. The feature window for 3.12 is open for another 8 months.

@Neustradamus

Copy link Copy Markdown

@tiran: Thanks for your answer! No problem ^^

@Neustradamus

Copy link Copy Markdown

Hi @tiran, I see "v3.12.0a1" but it is without this PR :/

Can you look?

Thanks in advance.

@TheZ3ro

TheZ3ro commented

May 25, 2023

Copy link Copy Markdown

any news about this @tiran ?

@Neustradamus

Copy link Copy Markdown

@tiran: Have you progressed on it since more one year?

cc: @wingel

@Neustradamus

Neustradamus commented

Nov 8, 2023

edited

Loading

Copy link Copy Markdown

@tiran: I think that you have seen the jabber.ru MITM:

Can you add "tls-server-end-point" from RFC5929 too?

It is needed for all SCRAM-SHA-*-PLUS (several RFCs) and specified in:

Thanks in advance.

@Neustradamus

Copy link Copy Markdown

Dear @python team,

It is possible to look for @tiran PR:

Security is important!

  • tls-unique for TLS =< 1.2
  • tls-server-end-point
  • tls-exporter for TLS = 1.3

Several projects/products wait you...

@erlend-aasland erlend-aasland added the type-security

A security issue

label

Jan 4, 2024

Neustradamus referenced this pull request

Oct 26, 2024 
…o as

to get channel binding data for the current SSL session (only the
"tls-unique" channel binding is implemented).  This allows the
implementation of certain authentication mechanisms such as SCRAM-SHA-1-PLUS.

Patch by Jacek Konieczny.

@github-actions

Copy link Copy Markdown

This PR is stale because it has been open for 30 days with no activity.

@github-actions github-actions Bot added the stale

Stale PR or inactive for long period of time.

label

Apr 11, 2026

@caronc

caronc commented

May 23, 2026

Copy link Copy Markdown

Hi all; I'm just looking for a status update on this issue 🙏

@github-actions github-actions Bot removed the stale

Stale PR or inactive for long period of time.

label

May 28, 2026

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@gpshead gpshead Awaiting requested review from gpshead gpshead will be requested when the pull request is marked ready for review gpshead is a code owner

@picnixz picnixz Awaiting requested review from picnixz picnixz will be requested when the pull request is marked ready for review picnixz is a code owner

Assignees

No one assigned

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@tiran @Neustradamus @TheZ3ro @caronc @erlend-aasland @bedevere-bot