openssl-{connect,listen}: Add PSK support

Wireshark already supports these suites, yay :)
author: Peter Wu <lekensteyn@gmail.com> 2013-09-30 23:08:27 +0200
committer: Peter Wu <lekensteyn@gmail.com> 2013-09-30 23:08:27 +0200
commit: 798b5a620746f042dce4a019c73e2d9c82598d22 (patch)
tree: 048cac26071639b5b8ec117a81769337bfa57480 /openssl-listen
parent: 0cfe180f9ba5e09d880dce2c887477e1892206bf (diff)
download: wireshark-notes-798b5a620746f042dce4a019c73e2d9c82598d22.tar.gz
1 files changed, 4 insertions, 3 deletions
diff --git a/openssl-listen b/openssl-listen
index e45e3dd..dd37e44 100755
--- a/openssl-listen
+++ b/openssl-listen
@@ -10,6 +10,7 @@ ecd_prv=secp384r1-dsa.pem
 ecd_pub=secp384r1-dsa.crt
 ecc_prv=secp384r1-rsa.pem
 ecc_pub=secp384r1-rsa.crt
+PSK=12345678
 
 pkdir=$1
 portbase=${2:-4430}
@@ -29,8 +30,6 @@ if ! mkdir -p "$pkdir"; then
     exit 1
 fi
 
-set -u
-
 pids=()
 
 gen_pk() {
@@ -72,7 +71,7 @@ gen_pk() {
 }
 
 start_server() {
-    local keyfile crtfile port auth ca_key= ca_crt=
+    local keyfile crtfile port auth ca_key= ca_crt= opts=()
     auth=$1
 
     case $auth in
@@ -80,6 +79,7 @@ start_server() {
         crtfile=$rsa_pub
         keyfile=$rsa_prv
         port=$portbase
+        opts+=(-psk "$PSK")
         ;;
     ECDSA)
         crtfile=$ecd_pub
@@ -111,6 +111,7 @@ start_server() {
     fi
 
     openssl s_server -accept $port \
+        "${opts[@]}" \
         -cert "$pkdir$crtfile" -key "$pkdir$keyfile" -www &
     pids+=($!)
 }
author	Peter Wu <lekensteyn@gmail.com>	2013-09-30 23:08:27 +0200
committer	Peter Wu <lekensteyn@gmail.com>	2013-09-30 23:08:27 +0200
commit	798b5a620746f042dce4a019c73e2d9c82598d22 (patch)
tree	048cac26071639b5b8ec117a81769337bfa57480 /openssl-listen
parent	0cfe180f9ba5e09d880dce2c887477e1892206bf (diff)
download	wireshark-notes-798b5a620746f042dce4a019c73e2d9c82598d22.tar.gz