[Webkit-unassigned] [Bug 208192] [Curl] Add TLS debugging feature

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Feb 25 06:17:27 PST 2020


https://bugs.webkit.org/show_bug.cgi?id=208192

--- Comment #2 from Takashi Komori <Takashi.Komori at sony.com> ---
This patch adds TLS debugging feature which writes TLS key log to the file which is specified by environment variable "WEBKIT_CURL_TLS_KEY_LOG_FILE"
If we have the key log file and packet dump, we can decrypt the TLS packets which browser sent/received.
Outputted key log file follows the NSS key log format, and it supports less or equal to TLS version 1.2

 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format

This feature is enabled when only we enable ENABLE_TLS_DEBUG flag on build time as below.

>perl .\Tools\Scripts\build-webkit --wincairo --cmakeargs="-DENABLE_TLS_DEBUG=1"

Chrome also has the almost the same feature, it outputs the key log file to the path which is specified by environment variable "SSLKEYLOGFILE"

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200225/c6a2b3a1/attachment.htm>


More information about the webkit-unassigned mailing list