Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8073955

Update java.security.debug help text to reflect recent enhancements for debugging

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P4
    • Resolution: Fixed
    • Affects Version/s: 9
    • Fix Version/s: 9
    • Component/s: security-libs
    • Labels:

      Backports

        Description

        The java.security.debug system property controls tracing and debugging output from security classes.

        Recent enhancements to support KeyStore, PKCS12 and OCSP debugging are all missing from the help
        text emitted by the property:

            % java -Djava.security.debug=help
            
            all turn on all debugging
            access print all checkPermission results
            certpath PKIX CertPathBuilder and
                          CertPathValidator debugging
            combiner SubjectDomainCombiner debugging
            gssloginconfig
                          GSS LoginConfigImpl debugging
            configfile JAAS ConfigFile loading
            configparser JAAS ConfigFile parsing
            jar jar verification
            logincontext login context results
            jca JCA engine class debugging
            policy loading and granting
            provider security provider debugging
            pkcs11 PKCS11 session manager debugging
            pkcs11keystore
                          PKCS11 KeyStore debugging
            sunpkcs11 SunPKCS11 provider debugging
            scl permissions SecureClassLoader assigns
            ts timestamping
            
            The following can be used with access:
            
            stack include stack trace
            domain dump all domains in context
            failure before throwing exception, dump stack
                          and domain that didn't have permission
            
            The following can be used with stack and domain:
            
            permission=<classname>
                          only dump output if specified permission
                          is being checked
            codebase=<URL>
                          only dump output if specified codebase
                          is being checked
            
            The following can be used with provider:
            
            engine=<engines>
                          only dump output for the specified list
                          of JCA engines. Supported values:
                          Cipher, KeyAgreement, KeyGenerator,
                          KeyPairGenerator, KeyStore, Mac,
                          MessageDigest, SecureRandom, Signature.
            
            Note: Separate multiple options with a comma

          Issue Links

            Activity

            Hide
            hgupdate HG Updates added a comment -
            URL: http://hg.openjdk.java.net/jdk9/dev/jdk/rev/a3d2a201d7b3
            User: vinnie
            Date: 2015-02-26 16:27:44 +0000
            Show
            hgupdate HG Updates added a comment - URL: http://hg.openjdk.java.net/jdk9/dev/jdk/rev/a3d2a201d7b3 User: vinnie Date: 2015-02-26 16:27:44 +0000
            Hide
            hgupdate HG Updates added a comment -
            URL: http://hg.openjdk.java.net/jdk9/jdk9/jdk/rev/a3d2a201d7b3
            User: lana
            Date: 2015-03-04 22:02:39 +0000
            Show
            hgupdate HG Updates added a comment - URL: http://hg.openjdk.java.net/jdk9/jdk9/jdk/rev/a3d2a201d7b3 User: lana Date: 2015-03-04 22:02:39 +0000

              People

              • Assignee:
                vinnie Vincent Ryan
                Reporter:
                vinnie Vincent Ryan
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: