[Issue 10332] New: Add support for SSLKEYLOGFILE environment variable to export keys for Wireshark decryption

openldap-its Mon, 28 Apr 2025 04:58:54 -0700

https://bugs.openldap.org/show_bug.cgi?id=10332


          Issue ID: 10332
           Summary: Add support for SSLKEYLOGFILE environment variable to
                    export keys for Wireshark decryption
           Product: OpenLDAP
           Version: 2.6.9
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Keywords: needs_review
          Severity: normal
          Priority: ---
         Component: libraries
          Assignee: [email protected]
          Reporter: [email protected]
  Target Milestone: ---

Please add support to do the following:
SSLKEYLOGFILE=keylog.txt ldapsearch -H ldaps://...

Other libraries and tools support it to decrypt the TLS traffic with Wireshark
for analysis purposes.

Curl has a simple, but complete implementation:
https://github.com/curl/curl/blob/e008f71f435a39875d86885a96b2eb8968a60fd4/lib/vtls/keylog.h

Maybe it can be reused if license allows that?!

-- 
You are receiving this mail because:
You are on the CC list for the issue.

[Issue 10332] New: Add support for SSLKEYLOGFILE environment variable to export keys for Wireshark decryption

Reply via email to