diff options
| author | Joe Orton <jorton@apache.org> | 2019-11-15 10:46:30 +0100 |
|---|---|---|
| committer | Joe Orton <jorton@apache.org> | 2019-11-15 10:46:30 +0100 |
| commit | abe9502d3ba02e8e6815c0dfc9648582aa8d423d (patch) | |
| tree | 1ab42e24875480f7a2607facbe400f9883f1b7ae /CHANGES | |
| parent | Fix some spelling errors (diff) | |
| download | apache2-abe9502d3ba02e8e6815c0dfc9648582aa8d423d.tar.xz apache2-abe9502d3ba02e8e6815c0dfc9648582aa8d423d.zip | |
mod_ssl: Log private key material to file set by $SSLKEYLOGFILE in the
environment, using the standard format which can be parsed by (e.g.)
wireshark for decoding SSL/TLS traffic; supported from OpenSSL 1.1.1.
* modules/ssl/ssl_private.h: Add keylog_file to SSLModConfigRec.
* modules/ssl/ssl_engine_init.c (ssl_init_Module): Open log file if
SSLKEYLOGFILE is set in the environment.
(ssl_init_ctx_protocol): Register the keylog callback with OpenSSL.
* modules/ssl/ssl_engine_kernel.c (modssl_callback_keylog):
New function.
PR: 63391
Github: closes #74
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1869842 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 6 |
1 files changed, 5 insertions, 1 deletions
@@ -1,6 +1,10 @@ -*- coding: utf-8 -*- Changes with Apache 2.5.1 - + + *) mod_ssl: Support logging private key material for use with + wireshark via log file given by SSLKEYLOGFILE environment + variable. Requires OpenSSL 1.1.1. PR 63391. [Joe Orton] + *) mod_proxy: Improve tunneling loop to support half closed connections and pending data draining (for protocols like rsync). PR 61616. [Yann Ylavic] |