Add Context.set_tlsext_use_srtp (#734)
This allows negotiating SRTP keying material, which is useful when using
DTLS-SRTP, as WebRTC does for example.
diff --git a/tests/test_ssl.py b/tests/test_ssl.py
index 87bd18c..b09fce7 100644
--- a/tests/test_ssl.py
+++ b/tests/test_ssl.py
@@ -1593,6 +1593,35 @@
store = context.get_cert_store()
assert isinstance(store, X509Store)
+ def test_set_tlsext_use_srtp_not_bytes(self):
+ """
+ `Context.set_tlsext_use_srtp' enables negotiating SRTP keying material.
+
+ It raises a TypeError if the list of profiles is not a byte string.
+ """
+ context = Context(TLSv1_METHOD)
+ with pytest.raises(TypeError):
+ context.set_tlsext_use_srtp(text_type('SRTP_AES128_CM_SHA1_80'))
+
+ def test_set_tlsext_use_srtp_invalid_profile(self):
+ """
+ `Context.set_tlsext_use_srtp' enables negotiating SRTP keying material.
+
+ It raises an Error if the call to OpenSSL fails.
+ """
+ context = Context(TLSv1_METHOD)
+ with pytest.raises(Error):
+ context.set_tlsext_use_srtp(b'SRTP_BOGUS')
+
+ def test_set_tlsext_use_srtp_valid(self):
+ """
+ `Context.set_tlsext_use_srtp' enables negotiating SRTP keying material.
+
+ It does not return anything.
+ """
+ context = Context(TLSv1_METHOD)
+ assert context.set_tlsext_use_srtp(b'SRTP_AES128_CM_SHA1_80') is None
+
class TestServerNameCallback(object):
"""