mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2025-07-30 02:37:28 +02:00
Added new WOLFSSL_SSLKEYLOGFILE define to output master secret used by Wireshark logging to file. Defaults to sslkeylog.log, but can be overridden using WOLFSSL_SSLKEYLOGFILE_OUTPUT.
This commit is contained in:
David Garske
47
src/tls.c
47
src/tls.c
@ -99,6 +99,12 @@ static int TLSX_PopulateSupportedGroups(WOLFSSL* ssl, TLSX** extensions);
|
|||||||
#endif
|
#endif
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
/* Optional Pre-Master-Secret logging for Wireshark */
|
||||||
|
#if !defined(NO_FILESYSTEM) && defined(WOLFSSL_SSLKEYLOGFILE)
|
||||||
|
#ifndef WOLFSSL_SSLKEYLOGFILE_OUTPUT
|
||||||
|
#define WOLFSSL_SSLKEYLOGFILE_OUTPUT "sslkeylog.log"
|
||||||
|
#endif
|
||||||
|
#endif
|
||||||
|
|
||||||
#ifndef WOLFSSL_NO_TLS12
|
#ifndef WOLFSSL_NO_TLS12
|
||||||
|
|
||||||
@ -704,13 +710,44 @@ int MakeTlsMasterSecret(WOLFSSL* ssl)
|
|||||||
}
|
}
|
||||||
if (ret == 0) {
|
if (ret == 0) {
|
||||||
#ifdef SHOW_SECRETS
|
#ifdef SHOW_SECRETS
|
||||||
int i;
|
/* Wireshark Pre-Master-Secret Format:
|
||||||
|
* CLIENT_RANDOM <clientrandom> <mastersecret>
|
||||||
|
*/
|
||||||
|
const char* CLIENT_RANDOM_LABEL = "CLIENT_RANDOM";
|
||||||
|
int i, pmsPos = 0;
|
||||||
|
char pmsBuf[13 + 1 + 64 + 1 + 96 + 1 + 1];
|
||||||
|
|
||||||
printf("master secret: ");
|
XSNPRINTF(&pmsBuf[pmsPos], sizeof(pmsBuf) - pmsPos, "%s ",
|
||||||
for (i = 0; i < SECRET_LEN; i++)
|
CLIENT_RANDOM_LABEL);
|
||||||
printf("%02x", ssl->arrays->masterSecret[i]);
|
pmsPos += XSTRLEN(CLIENT_RANDOM_LABEL) + 1;
|
||||||
printf("\n");
|
for (i = 0; i < RAN_LEN; i++) {
|
||||||
|
XSNPRINTF(&pmsBuf[pmsPos], sizeof(pmsBuf) - pmsPos, "%02x",
|
||||||
|
ssl->arrays->clientRandom[i]);
|
||||||
|
pmsPos += 2;
|
||||||
|
}
|
||||||
|
XSNPRINTF(&pmsBuf[pmsPos], sizeof(pmsBuf) - pmsPos, " ");
|
||||||
|
pmsPos += 1;
|
||||||
|
for (i = 0; i < SECRET_LEN; i++) {
|
||||||
|
XSNPRINTF(&pmsBuf[pmsPos], sizeof(pmsBuf) - pmsPos, "%02x",
|
||||||
|
ssl->arrays->masterSecret[i]);
|
||||||
|
pmsPos += 2;
|
||||||
|
}
|
||||||
|
XSNPRINTF(&pmsBuf[pmsPos], sizeof(pmsBuf) - pmsPos, "\n");
|
||||||
|
pmsPos += 1;
|
||||||
|
|
||||||
|
/* print master secret */
|
||||||
|
puts(pmsBuf);
|
||||||
|
|
||||||
|
#if !defined(NO_FILESYSTEM) && defined(WOLFSSL_SSLKEYLOGFILE)
|
||||||
|
{
|
||||||
|
FILE* f = XFOPEN(WOLFSSL_SSLKEYLOGFILE_OUTPUT, "a");
|
||||||
|
if (f != XBADFILE) {
|
||||||
|
XFWRITE(pmsBuf, 1, pmsPos, f);
|
||||||
|
XFCLOSE(f);
|
||||||
|
}
|
||||||
|
}
|
||||||
#endif
|
#endif
|
||||||
|
#endif /* SHOW_SECRETS */
|
||||||
|
|
||||||
ret = DeriveTlsKeys(ssl);
|
ret = DeriveTlsKeys(ssl);
|
||||||
}
|
}
|
||||||
|
|||||||
Reference in New Issue
Block a user