RFR: 8133816: Display extra SSLServerSocket info in debug mode [v2]
Xue-Lei Andrew Fan
xuelei at openjdk.org
Thu Aug 18 15:49:15 UTC 2022
On Thu, 18 Aug 2022 13:56:38 GMT, Weibing Xiao <duke at openjdk.org> wrote:
>> src/java.base/share/classes/sun/security/ssl/ServerHello.java line 438:
>>
>>> 436:
>>> 437: if (ke == null) {
>>> 438: continue;
>>
>> I may add a debug log here that the key exchange is not good for the cipher suite and protocol.
>
> As mentioned in my previous reply, if handshaking failed, all of the cipher suites will be logged. Technically key name is included in cipher suite name.
Hm, all cipher suites are logged, please analysis the failure by yourself. Is it really the purpose of debug log and what you want to do?
-------------
PR: https://git.openjdk.org/jdk/pull/9731
More information about the security-dev
mailing list