9
TLS key log file
I
Text file with unique per-session secrets
3
.
I
TLS 1.2 format: CLIENT RANDOM <Client Hello Random> <master secret> .
I
TLS 1.3 requires four different secrets (handshake and traffic secrets).
I
Check that the file is created and updated, it looks like:
CLIENT_RANDOM F8566FD1E091C4CD1583313B04BB2834C817D917FC3BEDC351529BD8CC6A5FD1 9BC6A9D65B89835DB86BD857D08A8D87847F0BE08B88618BCB25A1AD726D1408B7B9BA6E742DF46EFAE911EEFF82ABDE
CLIENT_RANDOM CC5A30A4606104A670D0A82B27A112E9BCD05E1A498F7C8445027334157FDFD3 CFCE47C71B69D198BCF63FC4206D16BB9A524C0CB0CACCEA36DC6DD23D647359AF5C1FD0BA7369F942D4FB7FB242D1A6
CLIENT_RANDOM 607AAA3D657D8A08F1073AE75B62CD284C87BB5504D275631CA86533707FB080 B27567070A3832CA2C072D1D0905647EF364C1E017A33001ED0BB2E4A08654F59FD2C8758042E583A503DDC4012007D8
CLIENT_HANDSHAKE_TRAFFIC_SECRET e27a03ae85ae8035b331a1af6089dd1e2f300cce131b03fdb9f07a25f1a10876 8ac2e7e210e30e8f660048e20d45209935d6a2d9a412329534d8742b2357006b
SERVER_HANDSHAKE_TRAFFIC_SECRET e27a03ae85ae8035b331a1af6089dd1e2f300cce131b03fdb9f07a25f1a10876 21c21f13865944c2c411ed1a7271809834dbe618b35b3a9a188ebba50367988e
CLIENT_TRAFFIC_SECRET_0 e27a03ae85ae8035b331a1af6089dd1e2f300cce131b03fdb9f07a25f1a10876 0de57183beff9a8c43994f517fba1d79ca374bff53b2a2d1aac3070ff02e87d1
SERVER_TRAFFIC_SECRET_0 e27a03ae85ae8035b331a1af6089dd1e2f300cce131b03fdb9f07a25f1a10876 f26e64d69b8095bbcdcbd04d48f2f9d96aedc1abc6463a422f368ef25bf33b2f
EXPORTER_SECRET e27a03ae85ae8035b331a1af6089dd1e2f300cce131b03fdb9f07a25f1a10876 3ab0346dcf11212792839c1f89c9e05aed7b159e680b7a505718927ceb26e3f8
3
File format at https://developer.mozilla.org/NSS_Key_Log_Format
#sf19us • UC Berkeley • June 8 - 13