wireguard-tools/contrib/extract-handshakes
Jason A. Donenfeld cef7ac9ef9 global: put SPDX identifier on its own line
The kernel has very specific rules correlating file type with comment
type, and also SPDX identifiers can't be merged with other comments.

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
2018-09-20 19:41:22 +02:00
..
.gitignore contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
Makefile contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
README contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
extract-handshakes.sh contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
offset-finder.c global: put SPDX identifier on its own line 2018-09-20 19:41:22 +02:00

README

Handshake Extractor
===================

This will extract private keys from outgoing handshake sessions, prior
to them being sent, via kprobes. It exports the bare minimum to be
able to then decrypt all packets in the handshake and in the subsequent
transport data session.

Build:

    $ make

Run (as root):

    # ./extract-handshakes.sh
    New handshake session:
      LOCAL_STATIC_PRIVATE_KEY = QChaGDXeH3eQsbFAhueUNWFdq9KfpF3yl+eITjZbXEk=
      REMOTE_STATIC_PUBLIC_KEY = HzgTY6aWXtuSyW/PUquZtg8LB/DyMwEXGkPiEmdSsUU=
      LOCAL_EPHEMERAL_PRIVATE_KEY = UNGdRHuKDeqbFvmiV5FD4wP7a8PqI6v3Xnnz6Jc6NXQ=
      PRESHARED_KEY = AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=