You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by David Cleary <da...@progress.com.INVALID> on 2023/08/29 19:53:07 UTC

Disabling cipher warning

2023-08-29T15:31:57.840-04:00 WARN  [main] o.a.t.u.n.j.JSSEUtil - Some of the specified [ciphers] are not supported by the SSL engine and have been skipped: [Dozens of OpenSSL ciphers]

We use OpenSSL and moving to Tomcat 10.1.13 has caused an overload of useless information to appear when starting Tomcat. Any way to turn this off? Looking at the source code, it doesn't look like it.

boolean warnOnSkip = !sslHostConfig.getCiphers().equals(SSLHostConfig.DEFAU.....

Thanks
Dave

Re: Disabling cipher warning

Posted by Mark Thomas <ma...@apache.org>.

On 29/08/2023 20:53, David Cleary wrote:
> 2023-08-29T15:31:57.840-04:00 WARN  [main] o.a.t.u.n.j.JSSEUtil - Some of the specified [ciphers] are not supported by the SSL engine and have been skipped: [Dozens of OpenSSL ciphers]
> 
> We use OpenSSL and moving to Tomcat 10.1.13 has caused an overload of useless information to appear when starting Tomcat. Any way to turn this off? Looking at the source code, it doesn't look like it.

Specify the ciphers you want to use rather than relying on the defaults.

If you think the message is wrong then please provide your TLS 
configuration so we can try and re-create the issue.

Mark

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org