问题
I use a java TLS server with custom KeyManager, TrustManager and with client authentication. The connection works and certificates are exchanged, also the client (firefox) says that the connection is encrypted. I analyze the connection with wireshark but i don't see tls messages, wireshark shows only tcp segments without decoding the payload (such as TLS client hello, server hello, etc). I enable the debug logging an this is the log of the server:
trigger seeding of SecureRandom done seeding SecureRandom Allow unsafe renegotiation: false Allow legacy hello messages: true Is initial handshake: true Is secure renegotiation: false Thread-1, called closeSocket()
回答1:
If you're using a port that's not normally used for SSL/TLS, you will have to tell Wireshark to decode it as SSL/TLS explicitly.
Right click on a packet and choose Decode As... -> Transport -> SSL.
回答2:
If you have the private key, you can see the payload, just go tools->preference->ssl->edit and insert your key here.
来源:https://stackoverflow.com/questions/10531903/java-tls-connection-behaviour