From e9f48103f91b2716e44bb49f644e80a43d3f21ae Mon Sep 17 00:00:00 2001
From: Igor Wiedler <iwiedler@gitlab.com>
Date: Tue, 27 Jul 2021 16:13:25 +0200
Subject: [PATCH] Support SSLKEYLOGFILE environment variable for secrets
 logging

---
 grpcurl.go | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/grpcurl.go b/grpcurl.go
index e627988..c0a6753 100644
--- a/grpcurl.go
+++ b/grpcurl.go
@@ -542,6 +542,14 @@ func ClientTransportCredentials(insecureSkipVerify bool, cacertFile, clientCertF
 		tlsConf.RootCAs = certPool
 	}
 
+	if os.Getenv("SSLKEYLOGFILE") != "" {
+		w, err := os.OpenFile(os.Getenv("SSLKEYLOGFILE"), os.O_WRONLY|os.O_CREATE|os.O_APPEND, 0600)
+		if err != nil {
+			return nil, fmt.Errorf("could not open SSLKEYLOGFILE: %v", err)
+		}
+		tlsConf.KeyLogWriter = w
+	}
+
 	return credentials.NewTLS(&tlsConf), nil
 }