You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@serf.apache.org by "Michael Schierl (JIRA)" <ji...@apache.org> on 2019/04/07 11:36:00 UTC
[jira] [Commented] (SERF-176) Support session key logging for SSL
decrypting with Wireshark (SSLKEYLOGFILE)
[ https://issues.apache.org/jira/browse/SERF-176?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16811850#comment-16811850 ]
Michael Schierl commented on SERF-176:
--------------------------------------
A Quick&Dirty patch (that works well enough for me) is here:
[https://gist.github.com/schierlm/fef3d79818f5561cd87991c89b81122f]
Note that it has only been tested on Linux, and only on a test server with very light load, and as I am not really familiar with the Apache codebase (especially wrt thread safety) I would not call this patch "production ready", and the error handling (in case of malformed .conf file) could surely be better.
But it is certainly a start (that some more experienced developer could review or improve), and for some test servers it might be sufficient.
> Support session key logging for SSL decrypting with Wireshark (SSLKEYLOGFILE)
> -----------------------------------------------------------------------------
>
> Key: SERF-176
> URL: https://issues.apache.org/jira/browse/SERF-176
> Project: serf
> Issue Type: Improvement
> Reporter: Guido Wischrop
> Priority: Major
>
> For error analysis and debugging it would be extremely useful to decrypt HTTPS traffic with Wireshark. Firefox and Google Chrome are supporting this through the environment setting SSLKEYLOGFILE ([see more|https://jimshaver.net/2015/02/11/decrypting-tls-browser-traffic-with-wireshark-the-easy-way/]). Can this be implemented for serf too?
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)