• Developer Zone
• Bugs Home
• Report a bug
• Advanced search
• Saved searches
• Tags

• View
• Add Comment
• Files
• Developer
• Edit Submission
• View Progress Log
• Contributions

Description:
Please add support to log (EC)DH master/session keys in NSS Key Log Format.

This helps with:
- troubleshooting/debugging SSL/TLS issues
- dump traffic which can be used to warmup slaves or to do prefetching
- Use a network based audit tool

https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format
https://www.openssl.org/docs/manmaster/apps/sess_id.html
https://wiki.wireshark.org/SSL#Using_the_.28Pre.29-Master-Secret

How to repeat:
See description

Update versions

Maybe support for SSLKEYLOGFILE as environment variable can be added via SSL_CTX_set_keylog_callback()

https://www.openssl.org/docs/man3.1/man3/SSL_CTX_get_keylog_callback.html

• Legal Policies
• Your Privacy Rights
• Terms of Use
• Contact Us

Portions of this website are copyright © 2001, 2002 The PHP Group

Page generated in 0.063 sec. using MySQL 8.4.5-u4-cloud

Timestamp references displayed by the system are UTC.
Content reproduced on this site is the property of the respective copyright holders.
It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.

  © 2025, Oracle Corporation and/or its affiliates