docker-nginx-boringssl
docker-nginx-boringssl copied to clipboard
nginx-modules
Capture sslkey log file for QUIC traffic
Hi @fdintino @punkeel @agile6v @denji @Wonderfall
does anyone has any idea how to capture ssl key log file to decrypt QUIC traffic. Built nginx-quic with boringssl
Thank you
- https://github.com/ngtcp2/ngtcp2#configuring-wireshark-for-quic
- https://boringssl.googlesource.com/boringssl/+/e776cc29568e520aaabc83188cc7db7991f0b776
- https://github.com/quicwg/base-drafts/wiki/Tools#wireshark
- https://blog.salrashid.dev/articles/2021/wireshark-grpc-tls/
- https://mitmproxy.org/
- mitmproxy/mitmproxy#5435 (https://github.com/mitmproxy/mitmproxy/blob/main/CHANGELOG.md)
- https://firefox-source-docs.mozilla.org/security/nss/legacy/key_log_format/index.html
- https://nginx.org/en/docs/ngx_core_module.html#env
env LD_PRELOAD=/usr/local/lib/libsslkeylog.so;
env SSLKEYLOGFILE=/tmp/premaster.txt;
- https://www.netresec.com/?page=PolarProxy
- https://github.com/gojue/ecapture (decodes TLS, QUIC support is not declared)
- Decrypting TLS, HTTP/2 and QUIC with Wireshark
