Hello,
<https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format>
states that:
"Obviously this is only a debugging measure and is only enabled if NSS is
built with DEBUG and TRACE defined."
Analogously,
<https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Reference/NSS_environment_variables>
says:
"SSLKEYLOGFILE: [...] Note: The code must be built with TRACE defined to
use this functionality."
However, the actual responsible code
(<https://hg.mozilla.org/projects/nss/file/65605e800fd1/lib/ssl/sslsock.c#l2840>)
doesn't seem to be protected by any compile-time conditions (except for
NSS_HAVE_GETENV). And I've checked with a stock Ubuntu NSS package that
SSLKEYLOGFILE works, even though SSLDEBUGFILE doesn't.
So who's in the wrong here? Is it a bug in the code, or in the
documentation?
Roman.
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
