qlog icon indicating copy to clipboard operation
qlog copied to clipboard

Published 20 hours ago verified publisher icon quicwg

mandatory new field in key_updated compromises security

Open marten-seemann opened this issue 5 years ago • 1 comments

On a production system you probably don't want to log TLS secrets, even if you qlog (some of the) connections. The new field in the key_updated event therefore should not be mandatory.

I'm not sure I understand the old field either. If you're logging 1-RTT key updates and their sequence numbers, the key would already be written to the qlog, so there's no need to export it again. Or am I missing something?

Maybe it would be a good idea to keep key material to the SSLKEYLOGFILE and not even offer an option to write them to qlog?

marten-seemann avatar Feb 17 '20 07:02 marten-seemann

Additionally, we should add an "owner" field to the key_update event.

Now, difference between client/server keys is made with the trigger and also the KeyType: this should be made more consistent with the other events. See also #44.

An endpoint would then emit separate events for client and server key updates, which should work event if key calculation is delayed (though not 100% sure yet).

rmarx avatar Feb 17 '20 10:02 rmarx

I support not logging secrets

LPardue avatar Mar 25 '23 06:03 LPardue