From f10b17663bab369e8e88385c8c3406d3cc9f97e5 Mon Sep 17 00:00:00 2001
From: Peter Wu <lekensteyn@gmail.com>
Date: Fri, 6 Dec 2013 00:08:26 +0100
Subject: run-ws: helper to run wireshark for SSL debugging

Example usage, assuming 'premaster.txt' in corrent directory:

    ./run-ws /tmp/wsbuild/tshark dump.pcapng

Example, with filtering for SSL record type Application Data (23):

    ./run-ws /usr/bin/wireshark dump.pcapng.gz \
        -Y ssl.record.content_type==23
---
 run-ws | 40 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)
 create mode 100755 run-ws

(limited to 'run-ws')

diff --git a/run-ws b/run-ws
new file mode 100755
index 0000000..b9c46b6
--- /dev/null
+++ b/run-ws
@@ -0,0 +1,40 @@
+#!/bin/sh
+
+if [ $# -lt 2 ]; then
+	echo "Usage: $0 /path/to/wireshark capture.pcapng [ssl debug file] [--] [other wireshark options]"
+	exit 1
+fi
+
+SSLKEYLOGFILE=${SSLKEYLOGFILE:-$PWD/premaster.txt}
+WIRESHARK=$1
+CAPTFILE=$2
+SSLDEBUG=
+shift 2
+
+# set SSL debug file only if ssl debug file is given
+case $1 in
+-*|'') ;;
+*) SSLDEBUG=$1 ; shift ;;
+esac
+
+# -- marks end of our options and the begin of wireshark options
+case $1 in
+--) shift ;;
+esac
+
+if [ ! -x "$WIRESHARK" ]; then
+	echo "$WIRESHARK: not an executable"
+	exit 1
+fi
+
+if [ ! -s "$CAPTFILE" ]; then
+	echo "$CAPTFILE: file is empty or does not exist"
+	exit 1
+fi
+
+[ -z "$SSLDEBUG" ] || set -- -o ssl.debug_file:"$SSLDEBUG" "$@"
+
+"$WIRESHARK" -r "$CAPTFILE" \
+	-o http.ssl.port:443,4430-4433 \
+	-o ssl.keylog_file:"$SSLKEYLOGFILE" \
+	"$@"
-- 
cgit v1.2.1