diff options
author | Peter Wu <peter@lekensteyn.nl> | 2017-02-01 19:14:27 +0100 |
---|---|---|
committer | Peter Wu <peter@lekensteyn.nl> | 2017-02-07 19:20:56 +0100 |
commit | 4bf73e9f86804cfe98b03accfc2dd7cb98e018d6 (patch) | |
tree | ca92a15e8a6b06e1a709e42131fa71c127bbc2fb /doc | |
parent | a19a6c8179faa3da0dedaaf2effae385cf7dd65d (diff) | |
download | openssl-4bf73e9f86804cfe98b03accfc2dd7cb98e018d6.tar.gz |
apps: Add support for writing a keylog file
The server and client demos (s_client and s_server) are extended with a
-keylogfile option. This is similar as setting the SSLKEYLOGFILE
environment variable for NSS and creates a keylog file which is suitable
for Wireshark.
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2343)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man1/s_client.pod | 5 | ||||
-rw-r--r-- | doc/man1/s_server.pod | 5 |
2 files changed, 10 insertions, 0 deletions
diff --git a/doc/man1/s_client.pod b/doc/man1/s_client.pod index fb1680a1a5..f8c4a9bb04 100644 --- a/doc/man1/s_client.pod +++ b/doc/man1/s_client.pod @@ -520,6 +520,11 @@ for SCTs. A file containing a list of known Certificate Transparency logs. See L<SSL_CTX_set_ctlog_list_file(3)> for the expected file format. +=item B<-keylogfile path> + +Appends TLS secrets to the specified keylog file such that external programs +(like Wireshark) can decrypt TLS connections. + =back =head1 CONNECTED COMMANDS diff --git a/doc/man1/s_server.pod b/doc/man1/s_server.pod index f1a13dc868..337dc2c9f9 100644 --- a/doc/man1/s_server.pod +++ b/doc/man1/s_server.pod @@ -557,6 +557,11 @@ cause the client to disconnect due to a protocol violation. print out some session cache status information. +=item B<-keylogfile path> + +Appends TLS secrets to the specified keylog file such that external programs +(like Wireshark) can decrypt TLS connections. + =back =head1 NOTES |