The tlsSocket.enableTrace() method is an inbuilt application programming interface of class TLSSocket within tls module which is used to debug TLS connection problems.
Syntax:
tlsSocket.enableTrace()
Parameters: This method does not accept any parameter.
Return Value: This method will display TLS packet trace information in stderr.
How to generate a private key and public certificates?
- Private Key
Step 1: Open Notepad and copy and paste the following key:
-----BEGIN RSA PRIVATE KEY----- MIICXQIBAAKBgQC38R9wXcUbhOd44FavgmE5R3K4JeYOHLnI7dUq1B8/Gv7l3SOg JKef/m9gM1KvUx951mapXGtcWgwB08J3vUE2YOZ4tWJArrVZES0BI/RmFAyhQFP5 HcWl3LSM9LRihP98F33oIkKaCxA5LxOrkgpV4HrUzIKTABDYah7RPex1WQIDAQAB AoGBAIXR71xxa9gUfc5L7+TqBs+EMmrUb6Vusp8CoGXzQvRHMJCMrMFySV0131Nu o0YYRDsAh1nJefYLMNcXd1BjqI+qY8IeRsxaY+9CB2KKGVVDO2uLdurdC2ZdlWXT Vwr3dDoyR0trnXJMmH2ijTeO6bush8HuXxvxJBjvEllM5QYxAkEA3jwny9JP+RFu 0rkqPBe/wi5pXpPl7PUtdNAGrh6S5958wUoR4f9bvwmTBv1nQzExKWu4EIp+7vjJ fBeRZhnBvQJBANPjjge8418PS9zAFyKlITq6cxmM4gOWeveQZwXVNvav0NH+OKdQ sZnnDiG26JWmnD/B8Audu97LcxjxcWI8Jc0CQEYA5PhLU229lA9EzI0JXhoozIBC TlcKFDuLm88VSmlHqDyqvF9YNOpEdc/p2rFLuZS2ndB4D+vu6mjwc5iZ3HECQCxy GBHRclQ3Ti9w76lpv+2kvI4IekRMZWDWnnWfwta+DGxwCgw2pfpleBZkWqdBepb5 JFQbcxQJ0wvRYXo8qaUCQQCgTvWswBj6OTP7LTvBlU1teAN2Lnrk/N5AYHZIXW6m nUG9lYvH7DztWDTioXMrruPF7bdXfZOVJD8t0I4OUzvC -----END RSA PRIVATE KEY-----
Step 2: Save as a private key.pem
- Public Certificate
Step 1: Open Notepad and copy and paste the following key:
-----BEGIN CERTIFICATE----- MIICfzCCAegCCQDxxeXw914Y2DANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMC SU4xEzARBgNVBAgMCldlc3RiZW5nYWwxEDAOBgNVBAcMB0tvbGthdGExFDASBgNV BAoMC1BhbmNvLCBJbmMuMRUwEwYDVQQDDAxSb2hpdCBQcmFzYWQxIDAeBgkqhkiG 9w0BCQEWEXJvZm9mb2ZAZ21haWwuY29tMB4XDTIwMDkwOTA1NTExN1oXDTIwMTAw OTA1NTExN1owgYMxCzAJBgNVBAYTAklOMRMwEQYDVQQIDApXZXN0YmVuZ2FsMRAw DgYDVQQHDAdLb2xrYXRhMRQwEgYDVQQKDAtQYW5jbywgSW5jLjEVMBMGA1UEAwwM Um9oaXQgUHJhc2FkMSAwHgYJKoZIhvcNAQkBFhFyb2ZvZm9mQGdtYWlsLmNvbTCB nzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAt/EfcF3FG4TneOBWr4JhOUdyuCXm Dhy5yO3VKtQfPxr+5d0joCSnn/5vYDNSr1MfedZmqVxrXFoMAdPCd71BNmDmeLVi QK61WREtASP0ZhQMoUBT+R3Fpdy0jPS0YoT/fBd96CJCmgsQOS8Tq5IKVeB61MyC kwAQ2Goe0T3sdVkCAwEAATANBgkqhkiG9w0BAQsFAAOBgQATe6ixdAjoV7BSHgRX bXM2+IZLq8kq3s7ck0EZrRVhsivutcaZwDXRCCinB+OlPedbzXwNZGvVX0nwPYHG BfiXwdiuZeVJ88ni6Fm6RhoPtu2QF1UExfBvSXuMBgR+evp+e3QadNpGx6Ppl1aC hWF6W2H9+MAlU7yvtmCQQuZmfQ== -----END CERTIFICATE-----
Step 2: Save as public cert.pem
Example 1: Filename: index.js
// Node.js program to demonstrate the// tlsSocket.enableTrace() methodconst tls = require('tls'),
fs = require('fs'),
// Port and host address for server
PORT = 1337,
HOST = '127.0.0.1',
value = null;
// Private key and public certificate for accessconst options = { key: fs.readFileSync('private-key.pem'),
cert: fs.readFileSync('public-cert.pem'),
rejectUnauthorized: false
};// Creating and initializing serverconst server = tls.createServer(options, function (socket) {
// Print the data that we received
socket.on('data', function (data) {
console.log('\nReceived: %s ',
data.toString().replace(/(\n)/gm, ""));
});
// Stopping the server
// by using the close() method
server.close(() => {
console.log("Server closed successfully");
});
});// Start listening on a specific port and address// by using listen() methodserver.listen(PORT, HOST, function () {
console.log("I'm listening at %s, on port %s", HOST, PORT);
});// Creating and initializing clientconst client = tls.connect(PORT, HOST, options, function () {
// Display TLS packet trace information
// by using tlsSocket.enableTrace() method
client.enableTrace();
client.end(() => {
console.log("Client closed successfully");
});
}); |
Run the index.js file using the following command:
node index.js
Output:
I’m listening at 127.0.0.1, on port 1337
Sent Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 19
Inner Content Type = Alert (21)
Level=warning(1), description=close notify(0)
Client closed successfully
Server closed successfully
Received Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 266
Inner Content Type = Handshake (22)
NewSessionTicket, Length=245
ticket_lifetime_hint=7200
ticket_age_add=1553580394
ticket_nonce (len=8): 0000000000000000
ticket (len=224): 7C75222CD19446A54CE………2F1948461E4F43C6DB547A6
No extensions
Received Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 266
Inner Content Type = Handshake (22)
NewSessionTicket, Length=245
ticket_lifetime_hint=7200
ticket_age_add=3758812927
ticket_nonce (len=8): 0000000000000001
ticket (len=224): 7C75222CD19446A54CE156C84……….603ECFEA28F1
No extensions
Received Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 19
Inner Content Type = Alert (21)
Level=warning(1), description=close notify(0)
Example 2: Filename: index.js
// Node.js program to demonstrate the// tlsSocket.enableTrace() methodconst tls = require('tls'),
fs = require('fs'),
// Port and host address for server
PORT = 1337,
HOST = '127.0.0.1';
// Private key and public certificate for accessconst options = { key: fs.readFileSync('private-key.pem'),
cert: fs.readFileSync('public-cert.pem'),
rejectUnauthorized: false
};// Creating and initializing serverconst server = tls.createServer(options, function (socket) {
// Display TLS packet trace information
// by using tlsSocket.enableTrace() method
client.enableTrace();
// Stopping the server
// by using the close() method
server.close(() => {
console.log("Server closed successfully")
});
});// Start listening on a specific port and address// by using listen() methodserver.listen(PORT, HOST, function () {
console.log("I'm listening at %s, on port %s", HOST, PORT);
});// Creating and initializing clientconst client = tls.connect(PORT, HOST, options, function () {
console.log("client is connected");
});client.on("data", function (data) {
console.log('\nReceived: %s ',
data.toString().replace(/(\n)/gm, ""));
// Close the connection after receiving the message
client.end(() => {
console.log("client closed successfully")
});
}); |
Run the index.js file using the following command:
node index.js
Output:
I’m listening at 127.0.0.1, on port 1337
client is connected
Received Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 266
Inner Content Type = Handshake (22)
NewSessionTicket, Length=245
ticket_lifetime_hint=7200
ticket_age_add=1281657603
ticket_nonce (len=8): 0000000000000000
ticket (len=224): 491710CA336E8346C5811978AE……8B152830D4AD866055BFAF
No extensions
Received Record
Header:
Version = TLS 1.2 (0x303)
Content Type = ApplicationData (23)
Length = 266
Inner Content Type = Handshake (22)
NewSessionTicket, Length=245
ticket_lifetime_hint=7200
ticket_age_add=2916884006
ticket_nonce (len=8): 0000000000000001
ticket (len=224): 491710CA33………..5DD7B580C29D366B3447B85121593C9C
No extensions
Reference: https://nodejs.org/dist/latest-v12.x/docs/api/tls.html#tls_tlssocket_enabletrace