From 22acd0f9d1b8f7af840ba77a7ebdb927e56b7101 Mon Sep 17 00:00:00 2001
From: Peter Wu <lekensteyn@gmail.com>
Date: Fri, 6 Dec 2013 12:41:31 +0100
Subject: cyassl-test: test ciphers supported by CyaSSL

---
 notes.txt | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'notes.txt')

diff --git a/notes.txt b/notes.txt
index 9e4d70f..330ed41 100644
--- a/notes.txt
+++ b/notes.txt
@@ -23,6 +23,14 @@ autoreconf -fiv
 make
 examples/server/server -p 4433
 SSLKEYLOGFILE=premaster.txt examples/client/client -l AES256-SHA -p 4433
+see also cyassl-test (in this repo) for testing all supported ciphers
+# Show a list of cipher suites from ClientHello and the HTTP version (or the
+# number of the ClientHello if decryption failed).
+/tmp/wsbuild/tshark -r cyassl-tcp.pcapng.gz -ohttp.ssl.port:4430 \
+ -ossl.keylog_file:premaster.txt -ossl.psk:1a2b3c4d -Tfields -e frame.number \
+ -e ssl.handshake.ciphersuite -e http.request.version \
+ -Y not\ ssl.handshake.type==2 |
+ awk '$2~/0x/{if(n)print n;printf("%s ",$2);n=$1}$2=="HTTP/1.0"{print $2;n=""}'
 
 # find which suites are not supported yet (unsupported.txt)
 awk -vsrc=/tmp/wireshark/epan/dissectors/packet-ssl-utils.c -F'[ {,]+' 'BEGIN{while(getline <src)if(/^ *\{.*,KEX_/)a[$2]=1}{if(!a[$1])print}' suites.txt
-- 
cgit v1.2.1