.. versionadded:: 3.10
+.. data:: OP_ENABLE_KTLS
+
+ Enable the use of the kernel TLS. To benefit from the feature, OpenSSL must
+ have been compiled with support for it, and the negotiated cipher suites and
+ extensions must be supported by it (a list of supported ones may vary by
+ platform and kernel version).
+
+ Note that with enabled kernel TLS some cryptographic operations are
+ performed by the kernel directly and not via any available OpenSSL
+ Providers. This might be undesirable if, for example, the application
+ requires all cryptographic operations to be performed by the FIPS provider.
+
+ This option is only available with OpenSSL 3.0.0 and later.
+
+ .. versionadded:: 3.12
+
.. data:: HAS_ALPN
Whether the OpenSSL library has built-in support for the *Application-Layer
PyModule_AddIntConstant(m, "OP_IGNORE_UNEXPECTED_EOF",
SSL_OP_IGNORE_UNEXPECTED_EOF);
#endif
+#ifdef SSL_OP_ENABLE_KTLS
+ PyModule_AddIntConstant(m, "OP_ENABLE_KTLS", SSL_OP_ENABLE_KTLS);
+#endif
#ifdef X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT
PyModule_AddIntConstant(m, "HOSTFLAG_ALWAYS_CHECK_SUBJECT",
projects / thirdparty / Python / cpython.git / commitdiff
