mitmproxy/docs/dev/sslkeylogfile.rst

15 lines
712 B
ReStructuredText
Raw Normal View History

2015-09-06 01:20:58 +00:00
.. _sslkeylogfile:
TLS Master Secrets
==================
2015-09-07 08:52:18 +00:00
The SSL master keys can be logged by mitmproxy so that external programs can decrypt TLS
connections both from and to the proxy. Key logging is enabled by setting the environment variable
2015-09-06 01:20:58 +00:00
:envvar:`SSLKEYLOGFILE` so that it points to a writable text file.
Recent versions of WireShark can use these log files to decrypt packets.
You can specify the key file path in WireShark via
:samp:`Edit -> Preferences -> Protocols -> SSL -> (Pre)-Master-Secret log filename`.
Note that :envvar:`SSLKEYLOGFILE` is respected by other programs as well, e.g. Firefox and Chrome.
2015-09-07 08:52:18 +00:00
If this creates any issues, you can set :envvar:`MITMPROXY_SSLKEYLOGFILE` alternatively.