Hi, when I set https and log level set to trace8, I see duplicate message during initialization of TLS. I use self signed certificate without password. In log below there are repeated messages like "AH01893: Configuring TLS extension handling". [Wed Aug 03 07:51:43.962935 2016] [ssl:info] [pid 31015] AH01914: Configuring server fw.venku:443 for SSL protocol [Wed Aug 03 07:51:43.963129 2016] [ssl:trace3] [pid 31015] ssl_engine_init.c(595): Creating new SSL context (protocols: TLSv1, TLSv1.1, TLSv1.2) [Wed Aug 03 07:51:43.963716 2016] [ssl:trace1] [pid 31015] ssl_engine_init.c(832): Configuring permitted SSL ciphers [ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA] [Wed Aug 03 07:51:43.963986 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(506): AH01893: Configuring TLS extension handling [Wed Aug 03 07:51:43.964037 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(1013): AH02232: Configuring RSA server certificate [Wed Aug 03 07:51:43.965189 2016] [ssl:trace3] [pid 31015] ssl_util_ssl.c(396): [fw.venku:443] SSL_X509_match_name: expecting name 'fw.venku', matched by ID '*.venku' [Wed Aug 03 07:51:43.965668 2016] [ssl:debug] [pid 31015] ssl_util_ssl.c(407): AH02412: [fw.venku:443] Cert matches for name 'fw.venku' [subject: emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty Ltd,ST=Some-State,C=CZ / issuer: emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty Ltd,ST=Some-State,C=CZ / serial: F5B902E34B680C44 / notbefore: Aug 2 08:14:45 2016 GMT / notafter: May 6 08:14:45 2071 GMT] [Wed Aug 03 07:51:43.965756 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(1068): AH02236: Configuring RSA server private key [Wed Aug 03 07:51:44.755740 2016] [ssl:info] [pid 31015] AH02200: Loading certificate & private key of SSL-aware server 'fw.venku:443' [Wed Aug 03 07:51:44.758665 2016] [ssl:debug] [pid 31015] ssl_engine_pphrase.c(506): AH02249: unencrypted RSA private key - pass phrase not required [Wed Aug 03 07:51:45.066402 2016] [ssl:info] [pid 31015] AH01914: Configuring server fw.venku:443 for SSL protocol [Wed Aug 03 07:51:45.066614 2016] [ssl:trace3] [pid 31015] ssl_engine_init.c(595): Creating new SSL context (protocols: TLSv1, TLSv1.1, TLSv1.2) [Wed Aug 03 07:51:45.066999 2016] [ssl:trace1] [pid 31015] ssl_engine_init.c(832): Configuring permitted SSL ciphers [ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA] [Wed Aug 03 07:51:45.067205 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(506): AH01893: Configuring TLS extension handling [Wed Aug 03 07:51:45.067250 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(1013): AH02232: Configuring RSA server certificate [Wed Aug 03 07:51:45.067712 2016] [ssl:trace3] [pid 31015] ssl_util_ssl.c(396): [fw.venku:443] SSL_X509_match_name: expecting name 'fw.venku', matched by ID '*.venku' [Wed Aug 03 07:51:45.068020 2016] [ssl:debug] [pid 31015] ssl_util_ssl.c(407): AH02412: [fw.venku:443] Cert matches for name 'fw.venku' [subject: emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty Ltd,ST=Some-State,C=CZ / issuer: emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty Ltd,ST=Some-State,C=CZ / serial: F5B902E34B680C44 / notbefore: Aug 2 08:14:45 2016 GMT / notafter: May 6 08:14:45 2071 GMT] [Wed Aug 03 07:51:45.068075 2016] [ssl:debug] [pid 31015] ssl_engine_init.c(1068): AH02236: Configuring RSA server private key Is this correct behavior? --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|