mvfst icon indicating copy to clipboard operation
mvfst copied to clipboard

Published 20 hours ago verified publisher icon facebook

Exporting TLS secrets

Open francoismichel opened this issue 3 years ago • 3 comments

Hello,

There does not seem to be a functionnality to easily get a tls keylog file such as it is the case for other QUIC implementations. Fizz provides an example of client using callbacks to get the secrets. It would be interesting to allow a mvfst client to get the same functionalities from the the mvfst API exposed to the client. Some callback could be called in the ActionMoveVisitor of the FizzClientHandshake for example.

Maybe this functionnality already exists (though I did not find a mention of it in the code), if that is the case, sorry for the useless issue.

francoismichel avatar Oct 28 '20 11:10 francoismichel

I met the same problem in my project. Hope some kindful guys can help out.

cmlMarlon avatar Feb 04 '21 08:02 cmlMarlon

So we are

ElNiak avatar Apr 12 '21 16:04 ElNiak

I have a version with a dirty patch that allows us to export the secrets from mvfst, available here if needed (running QUIC draft 29 but it should be easily updatable to more recent versions):

https://github.com/francoismichel/quic-implems-dockers

francoismichel avatar Apr 12 '21 16:04 francoismichel