serf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Michael Schierl (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SERF-176) Support session key logging for SSL decrypting with Wireshark (SSLKEYLOGFILE)
Date Sun, 07 Apr 2019 11:36:00 GMT

    [ https://issues.apache.org/jira/browse/SERF-176?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16811850#comment-16811850
] 

Michael Schierl commented on SERF-176:
--------------------------------------

A Quick&Dirty patch (that works well enough for me) is here:

[https://gist.github.com/schierlm/fef3d79818f5561cd87991c89b81122f]

Note that it has only been tested on Linux, and only on a test server with very light load,
and as I am not really familiar with the Apache codebase (especially wrt thread safety) I
would not call this patch "production ready", and the error handling (in case of malformed
.conf file) could surely be better.

 

But it is certainly a start (that some more experienced developer could review or improve),
and for some test servers it might be sufficient.

> Support session key logging for SSL decrypting with Wireshark (SSLKEYLOGFILE)
> -----------------------------------------------------------------------------
>
>                 Key: SERF-176
>                 URL: https://issues.apache.org/jira/browse/SERF-176
>             Project: serf
>          Issue Type: Improvement
>            Reporter: Guido Wischrop
>            Priority: Major
>
> For error analysis and debugging it would be extremely useful to decrypt HTTPS traffic
with Wireshark. Firefox and Google Chrome are supporting this through the environment setting
SSLKEYLOGFILE ([see more|https://jimshaver.net/2015/02/11/decrypting-tls-browser-traffic-with-wireshark-the-easy-way/]).
Can this be implemented for serf too?



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message