Support SSLKEYLOGFILE environment variable for secrets logging

2021-07-27 16:13:25 +02:00 · 2021-07-27 16:13:25 +02:00 · e9f48103f9
parent 59a32e5eb0
commit e9f48103f9
1 changed files with 8 additions and 0 deletions
--- a/grpcurl.go
+++ b/grpcurl.go
@ -542,6 +542,14 @@ func ClientTransportCredentials(insecureSkipVerify bool, cacertFile, clientCertF
 		tlsConf.RootCAs = certPool
 	}

+	if os.Getenv("SSLKEYLOGFILE") != "" {
+		w, err := os.OpenFile(os.Getenv("SSLKEYLOGFILE"), os.O_WRONLY|os.O_CREATE|os.O_APPEND, 0600)
+		if err != nil {
+			return nil, fmt.Errorf("could not open SSLKEYLOGFILE: %v", err)
+		}
+		tlsConf.KeyLogWriter = w
+	}
+
 	return credentials.NewTLS(&tlsConf), nil
 }