I'd like to get exact details on the SSL debug output generated using javax.net.debug. I have looked, but nearly everything just goes through a sample file.
Sorry in advance if this is easier to find then I expected.
Asked
Active
Viewed 2.2k times
6
-
I also found this link, but again it doesn't cover everything. https://www.owasp.org/index.php/Using_the_Java_Secure_Socket_Extensions – Jiyeon Oct 01 '11 at 06:00
-
"nearly everything just goes through a sample file" means what? – user207421 Jun 04 '12 at 00:27
-
See http://www.theeggeadventure.com/wikimedia/index.php/Javax.net.debug – Vadzim Sep 06 '12 at 08:11
-
2[Debugging SSL/TLS Connections](http://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/ReadDebug.html) and [this](http://www.herongyang.com/JDK/SSL-Socket-Communication-Debug-javax-net-debug.html) may be helpful. – XoXo Aug 17 '15 at 19:19
2 Answers
11
I don't understand what it is that you don't understand.
There's the specification of the option itself in the JSSE Reference Guide. There's the tutorial mentioned by @JavaGeek.
You definitely need to understand the SSL handshake process to understand the output for the handshake option, and your reference for that is RFC 2246, or th excellent book by Eric Rescoria if you like.
You would need to understand the TrustManager and KeyManager interfaces to make much sense out of the keymanager and trustmanager options, and the SSLContext and friends to understand the session and context stuff.
user207421
- 305,947
- 44
- 307
- 483
2
What do you mean by the exact details?
Oracle provides a pretty good tutorial on how to debug SSL connections, but if you're trying to find the Javadoc for it, I don't think it's available.
JavaGeek
- 76
- 1
-
Thanks. I had found that before, but it doesn't appear to cover everything. – Jiyeon Sep 30 '11 at 20:47
-
@Jiyeon Doesn't cover everything such as what? It looks complete to me. – user207421 Oct 08 '14 at 18:41