Introduce TlsMasterKeyHandler

[fzakaria]

Motivation

Debugging SSL/TLS connections through wireshark is a pain -- if the cipher used involves Diffie-Hellman then it is essentially impossible unless you can have the client dump out the master key [1]

This is a work-in-progress change (tests & comments to come!) that introduces a new handler you can set on the SslContext to receive the master key & session id. I'm hoping to get feedback if a change in this vein would be welcomed.

An implementation that conforms to Wireshark's NSS key log[2] file is also included.

Depending on feedback on the PR going forward I am planning to "clean it up" by adding documentation, example server & tests. Implementation will need to be finished as well for retrieving the master key from the OpenSSL context.

[1] https://jimshaver.net/2015/02/11/decrypting-tls-browser-traffic-with-wireshark-the-easy-way/
[2] https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format

Modification

I've wired up a new functional handler that gets passed eventually to SSLHandler to be called with the SSL session id & master key.

An implementation of the handler that conforms to Wireshark's key log format is included.

Result

I was able to set the handler to log to a file, which when provided to Wireshark, decrypted the TLS flow.

I did a quick test by modifying HttpHelloWorldServer

            sslCtx = SslContextBuilder
                    .forServer(ssc.certificate(), ssc.privateKey())
                    .sslProvider(SslProvider.JDK)
                    .sslMasterKeyHandler(TlsMasterKeyHandler.WiresharkTlsMasterKeyHandler.INSTANCE)
                    .build();

cat ~/key.log
RSA Session-ID:5c11f6c920488f4dc9891771ae001bd645a16791ab47b337f89136e0deba3cdb Master-Key:6a3aed11200f26d115de4fb7c6aaa01222532520592e93b45ae1e243d4ec06099f4057f3f75616ea6e741c9318f36a30

Fixes #8663

[netty-bot]

Can one of the admins verify this patch?

[normanmaurer]

@fzakaria will check soon. Just a bit busy atm

[fzakaria]

Sounds good @normanmaurer

[fzakaria]

@normanmaurer thanks for the feedback.

What do you think overall about the motivation of the PR with respect to having it accepted? I'd like to propose having it submitting in two parts: support for JDK engine (the majority of this pull-request) and a latter commit that introduces it for OpenSSL
(I'm not sure yet on the work needed for netty-tcnative)

If that sounds good, I'd like to address your feedback + clean it up (add comments, tests etc..) to get it ready for approval.

[normanmaurer]

@fzakaria this sounds good yes :)

[normanmaurer]

Should we use PlatformDependent (Which will use usafe) to access it ? This way it will also work with jigsaw.

[fzakaria]

I'm not familiar with this class: do I just need to access the fieldOffset then get the object ?
(no need to set Accessible on the field?)

[normanmaurer]

Sorry I meant to say use ReflectionUtil 🤦‍♂️

[normanmaurer]

left some comments that should be addressed

[normanmaurer]

should re really lookup the property every time ?

[fzakaria]

I've left this in for now -- I'm open to making it once lookup.
I imagined this is largely a test driven handler anyways not to be included in typical pipelines?

[normanmaurer]

Can you also add a test ?

[normanmaurer]

final

[fzakaria]

(see note above)

[normanmaurer]

maybe not expose the class directly but just add a static method that returns this instance ?

[fzakaria]

@normanmaurer do you have a good idea for a test or other tests I can draw inspiration from ?
I would need some sort of "TeeClient" that stores the encrypted TLS message (without TLS record header) so that I could then go and decrypt them with the logged master key ?
or
Are we just looking for a more surface-level test for TlsMasterKeyHandler that verifies it gets a non-null key material ?
(leaving the more functional test to the one I introduced in #8699)

[normanmaurer]

@fzakaria no idea for a test yet :(

[normanmaurer]

Sorry not done yet and did miss this before .

[normanmaurer]

@netty-bot test this please

[fzakaria]

That's a good point. Let me do that.

[fzakaria]

For those following this pull-request a demo logback.xml would be (just the raw message and new line):

  <appender name="FILE" class="ch.qos.logback.core.FileAppender">
    <file>key.log</file>
    <encoder>
      <pattern>%m%n</pattern>
    </encoder>
  </appender>

   <logger name="io.netty.wireshark" addivity="false">
    <appender-ref ref="FILE" />
  </logger>

Don't forget to also -Dio.netty.ssl.masterKeyHandler=true

[normanmaurer]

@netty-bot test this please

[fzakaria]

Yes it passed :)
6 months in the making this PR 👍

[fzakaria]

@carl-mastrangelo responded to your feedback.

[carl-mastrangelo]

LGTM

[fzakaria]

@normanmaurer good to go ? :P

[normanmaurer]

@netty-bot test this please

[normanmaurer]

@fzakaria thanks a lot!