Line Chat 使用 conscrypt 做 SSL,按照导出 SSL KEY 的方法,可以获取到用于 WireShark 解密 SSL 流量。
1
2
3
4
5
6
7
8
9
10
11
| blueline:/ $ su
blueline:/ # ps -ef | grep line
root 3491 1 0 13:59:46 ? 00:02:30 thermal-engine -c /vendor/etc/thermal-engine-blueline-novr-prod.conf
u0_a273 15116 1274 3 15:52:50 ? 00:06:30 jp.naver.line.android
root 31788 31563 23 19:34:19 8ex/.magisk/pts/0 00:00:00 grep line
blueline:/ # cat /proc/15116/maps | grep ssl
795e0c2000-795e0de000 r--p 00000000 fd:11 31 /apex/com.android.conscrypt/lib64/libssl.so
795e0de000-795e11a000 r-xp 0001c000 fd:11 31 /apex/com.android.conscrypt/lib64/libssl.so
795e11a000-795e11d000 r--p 00058000 fd:11 31 /apex/com.android.conscrypt/lib64/libssl.so
795e11d000-795e11e000 rw-p 0005a000 fd:11 31 /apex/com.android.conscrypt/lib64/libssl.so
blueline:/ #
|