ngtcp2: add support for SSLKEYLOGFILE

author Daniel Stenberg <daniel@haxx.se>

Sat, 24 Aug 2019 17:11:25 +0000 (19:11 +0200)

committer Daniel Stenberg <daniel@haxx.se>

Sun, 25 Aug 2019 21:29:46 +0000 (23:29 +0200)
author Daniel Stenberg <daniel@haxx.se>
Sat, 24 Aug 2019 17:11:25 +0000 (19:11 +0200)
committer Daniel Stenberg <daniel@haxx.se>
Sun, 25 Aug 2019 21:29:46 +0000 (23:29 +0200)
diff --git a/lib/vquic/ngtcp2.c b/lib/vquic/ngtcp2.c

index e3af71e94ecc5533ea6e9f4ea9ceeb19554d37ef..6abbfa2ab63c0424ba7ad8270247f51c7320fffd 100644 (file)
--- a/lib/vquic/ngtcp2.c
+++ b/lib/vquic/ngtcp2.c
@@ -285,9 +285,19 @@ static int transport_params_parse_cb(SSL *ssl, unsigned int ext_type,
    return 1;
  }
  
+static FILE *keylog_file; /* not thread-safe */
+static void keylog_callback(const SSL *ssl, const char *line)
+{
+  (void)ssl;
+  fputs(line, keylog_file);
+  fputc('\n', keylog_file);
+  fflush(keylog_file);
+}
+
  static SSL_CTX *quic_ssl_ctx(struct Curl_easy *data)
  {
    SSL_CTX *ssl_ctx = SSL_CTX_new(TLS_method());
+  const char *keylog_filename;
  
    SSL_CTX_set_min_proto_version(ssl_ctx, TLS1_3_VERSION);
    SSL_CTX_set_max_proto_version(ssl_ctx, TLS1_3_VERSION);
@@ -323,6 +333,14 @@ static SSL_CTX *quic_ssl_ctx(struct Curl_easy *data)
      return NULL;
    }
  
+  keylog_filename = getenv("SSLKEYLOGFILE");
+  if(keylog_filename) {
+    keylog_file = fopen(keylog_filename, "wb");
+    if(keylog_file) {
+      SSL_CTX_set_keylog_callback(ssl_ctx, keylog_callback);
+    }
+  }
+
    return ssl_ctx;
  }
author	Daniel Stenberg <daniel@haxx.se>
	Sat, 24 Aug 2019 17:11:25 +0000 (19:11 +0200)
committer	Daniel Stenberg <daniel@haxx.se>
	Sun, 25 Aug 2019 21:29:46 +0000 (23:29 +0200)