Duplicate TLS message during startup

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

  when I set https and log level set to trace8, I see duplicate
message during initialization of TLS.

I use self signed certificate without password.

In log below there are repeated messages like "AH01893: Configuring
TLS extension handling".

[Wed Aug 03 07:51:43.962935 2016] [ssl:info] [pid 31015] AH01914:
Configuring server fw.venku:443 for SSL protocol
[Wed Aug 03 07:51:43.963129 2016] [ssl:trace3] [pid 31015]
ssl_engine_init.c(595): Creating new SSL context (protocols: TLSv1,
TLSv1.1, TLSv1.2)
[Wed Aug 03 07:51:43.963716 2016] [ssl:trace1] [pid 31015]
ssl_engine_init.c(832): Configuring permitted SSL ciphers
[ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA]
[Wed Aug 03 07:51:43.963986 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(506): AH01893: Configuring TLS extension handling
[Wed Aug 03 07:51:43.964037 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(1013): AH02232: Configuring RSA server certificate
[Wed Aug 03 07:51:43.965189 2016] [ssl:trace3] [pid 31015]
ssl_util_ssl.c(396): [fw.venku:443] SSL_X509_match_name: expecting
name 'fw.venku', matched by ID '*.venku'
[Wed Aug 03 07:51:43.965668 2016] [ssl:debug] [pid 31015]
ssl_util_ssl.c(407): AH02412: [fw.venku:443] Cert matches for name
'fw.venku' [subject:
emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty
Ltd,ST=Some-State,C=CZ / issuer:
emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty
Ltd,ST=Some-State,C=CZ / serial: F5B902E34B680C44 / notbefore: Aug  2
08:14:45 2016 GMT / notafter: May  6 08:14:45 2071 GMT]
[Wed Aug 03 07:51:43.965756 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(1068): AH02236: Configuring RSA server private key
[Wed Aug 03 07:51:44.755740 2016] [ssl:info] [pid 31015] AH02200:
Loading certificate & private key of SSL-aware server 'fw.venku:443'
[Wed Aug 03 07:51:44.758665 2016] [ssl:debug] [pid 31015]
ssl_engine_pphrase.c(506): AH02249: unencrypted RSA private key - pass
phrase not required
[Wed Aug 03 07:51:45.066402 2016] [ssl:info] [pid 31015] AH01914:
Configuring server fw.venku:443 for SSL protocol
[Wed Aug 03 07:51:45.066614 2016] [ssl:trace3] [pid 31015]
ssl_engine_init.c(595): Creating new SSL context (protocols: TLSv1,
TLSv1.1, TLSv1.2)
[Wed Aug 03 07:51:45.066999 2016] [ssl:trace1] [pid 31015]
ssl_engine_init.c(832): Configuring permitted SSL ciphers
[ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA]
[Wed Aug 03 07:51:45.067205 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(506): AH01893: Configuring TLS extension handling
[Wed Aug 03 07:51:45.067250 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(1013): AH02232: Configuring RSA server certificate
[Wed Aug 03 07:51:45.067712 2016] [ssl:trace3] [pid 31015]
ssl_util_ssl.c(396): [fw.venku:443] SSL_X509_match_name: expecting
name 'fw.venku', matched by ID '*.venku'
[Wed Aug 03 07:51:45.068020 2016] [ssl:debug] [pid 31015]
ssl_util_ssl.c(407): AH02412: [fw.venku:443] Cert matches for name
'fw.venku' [subject:
emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty
Ltd,ST=Some-State,C=CZ / issuer:
emailAddress=root@xxxxxxxxxx,CN=*.venku,O=Internet Widgits Pty
Ltd,ST=Some-State,C=CZ / serial: F5B902E34B680C44 / notbefore: Aug  2
08:14:45 2016 GMT / notafter: May  6 08:14:45 2071 GMT]
[Wed Aug 03 07:51:45.068075 2016] [ssl:debug] [pid 31015]
ssl_engine_init.c(1068): AH02236: Configuring RSA server private key

Is this correct behavior?

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx




[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux