From 28d5f844d5cb9eb7587a30f6042aaa2262b34027 Mon Sep 17 00:00:00 2001
From: Tobias Pankrath <tobias.pankrath@vattenfall.de>
Date: Sat, 18 Sep 2021 13:36:45 +0200
Subject: [PATCH] feat(http2): write pre-master secrets to file

---
 http2.d | 25 ++++++++++++++++++++++++-
 1 file changed, 24 insertions(+), 1 deletion(-)

diff --git a/http2.d b/http2.d
index ecd7447..8d861d7 100644
--- a/http2.d
+++ b/http2.d
@@ -2532,6 +2532,7 @@ version(use_openssl) {
 			SSL_METHOD* function() SSLv3_client_method;
 			SSL_METHOD* function() TLS_client_method;
 
+			void function(SSL_CTX*, void function(SSL*, char* line)) SSL_CTX_set_keylog_callback;
 		}
 	}
 
@@ -2629,6 +2630,14 @@ version(use_openssl) {
 		else throw new Exception("ERR_print_errors_fp not loaded");
 	}
 
+	extern(C)
+	void SSL_CTX_keylog_cb_func(SSL_CTX* ctx, void function(SSL*, char*) func)
+	{
+		if(ossllib.SSL_CTX_set_keylog_callback)
+			ossllib.SSL_CTX_set_keylog_callback(ctx, func);
+		else throw new Exception("SSL_CTX_keylog_cb_func not loaded");
+	}
+
 
 	private __gshared void* ossllib_handle;
 	version(Windows)
@@ -2736,6 +2745,20 @@ version(use_openssl) {
 
 	//pragma(lib, "crypto");
 	//pragma(lib, "ssl");
+	extern(C)
+	void write_to_file(SSL* ssl, char* line)
+	{
+		import std.stdio;
+		import std.string;
+		import std.process : environment;
+		string logfile = environment.get("SSLKEYLOGFILE");
+		if (logfile !is null)
+		{
+			auto f = std.stdio.File("/tmp/keyfile", "a+");
+			f.writeln(fromStringz(line));
+			f.close();
+		}
+	}
 
 	class OpenSslSocket : Socket {
 		private SSL* ssl;
@@ -2743,7 +2766,7 @@ version(use_openssl) {
 		private void initSsl(bool verifyPeer, string hostname) {
 			ctx = SSL_CTX_new(SSLv23_client_method());
 			assert(ctx !is null);
-
+			debug SSL_CTX_keylog_cb_func(ctx, &write_to_file);
 			ssl = SSL_new(ctx);
 
 			if(hostname.length)