search

droe / sslsplit

Transparent SSL/TLS interception
https://www.roe.ch/SSLsplit
BSD 2-Clause "Simplified" License
1.73k stars 327 forks source link

SSLKEYLOGFILE can not support TLSv1.3 #333

Open stevenrao opened 4 months ago

stevenrao commented 4 months ago

tls 1.3 sslkeylog format is CLIENT_RANDOM 7d9808b90c2ea6a7bb507012f10f9b50fa2504908b07d6da890ca7a2073ecb97 2ca9209a321885911a4c81d08f7daa32fe36c7fec3dec1b500f8fdb2f818c16f8360b43bf19b203cd6c350f2823a5c17 SERVER_HANDSHAKE_TRAFFIC_SECRET 6221382124ecaee333f23799cd65df40a85ac1dbadf48ba8be79f5bcd4113b26 96fd63b07ad2072797e31ba040683f46e8a1d031cd6ae35de8f3f4df32eba658feef48efb768778c4b1c4771752bd5d5 EXPORTER_SECRET 6221382124ecaee333f23799cd65df40a85ac1dbadf48ba8be79f5bcd4113b26 c267fced86f5e7628552b02ddf4aa4f0d612510fdffca54e14e1eeb8583fadb18ad1cec5fcb4bd5626ade460ea7e3c6f SERVER_TRAFFIC_SECRET_0 6221382124ecaee333f23799cd65df40a85ac1dbadf48ba8be79f5bcd4113b26 3a056e1368d24cb86a5ff34d2f567d175810a25406a78263accfef7551a316ca5dc2ebad0b92c9e531227a7d14ffc09e CLIENT_HANDSHAKE_TRAFFIC_SECRET 6221382124ecaee333f23799cd65df40a85ac1dbadf48ba8be79f5bcd4113b26 0a23c743c08d4ae3d1dcf8d77ff64659ced805f38769c0d3d0a5b9a0811ccca0d7b152173a530baf99314febf940275d CLIENT_TRAFFIC_SECRET_0 6221382124ecaee333f23799cd65df40a85ac1dbadf48ba8be79f5bcd4113b26 a10df62e2d71d256e55c0b933afc7b684ac28dacdd6e687908501f405e5c285579d2ce1405e7ad4875d39db2dc3ef900

sonertari commented 4 months ago

Have you tried the tls13 branch? Otherwise, sslsplit does not support TLSv1.3. The develop branch gives (the -V option):

SSL/TLS protocol availability: tls10 tls11 tls12

But SSLproxy does support TLSv1.3. Do you mean sslproxy?