Welcome! Log In Create A New Profile

Re: [PATCH] SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info"

Forum List Message List New Topic Print View

Piotr Sikora via nginx-devel

April 25, 2017 05:14AM

Hey,

On Wed, Oct 19, 2016 at 12:51 AM, Piotr Sikora <piotrsikora@google.com> wrote:
> # HG changeset patch
> # User Piotr Sikora <piotrsikora@google.com>
> # Date 1476859304 25200
> # Tue Oct 18 23:41:44 2016 -0700
> # Node ID ae85978091f832d27d862e468ee5e4cbfb18da11
> # Parent 8081e1f3ab8b9ccb4e2d7f9240cbfb8e404a3c95
> SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info".
>
> Previously, "no renegotiation" error was logged at the "critical" level
> when using BoringSSL, which rejects renegotiation at the protocol level.
>
> Signed-off-by: Piotr Sikora <piotrsikora@google.com>
>
> diff -r 8081e1f3ab8b -r ae85978091f8 src/event/ngx_event_openssl.c
> --- a/src/event/ngx_event_openssl.c
> +++ b/src/event/ngx_event_openssl.c
> @@ -2045,6 +2045,9 @@ ngx_ssl_connection_error(ngx_connection_
> #ifdef SSL_R_UNSAFE_LEGACY_RENEGOTIATION_DISABLED
> || n == SSL_R_UNSAFE_LEGACY_RENEGOTIATION_DISABLED /* 338 */
> #endif
> +#ifdef SSL_R_NO_RENEGOTIATION
> + || n == SSL_R_NO_RENEGOTIATION /* 339 */
> +#endif
> #ifdef SSL_R_SCSV_RECEIVED_WHEN_RENEGOTIATING
> || n == SSL_R_SCSV_RECEIVED_WHEN_RENEGOTIATING /* 345 */
> #endif

Ping.

Best regards,
Piotr Sikora
_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-devel

Reply Quote

RSS

Subject	Author	Views	Posted
[PATCH] SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info"	Piotr Sikora	565	October 19, 2016 03:54AM
Re: [PATCH] SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info"	Piotr Sikora via nginx-devel	194	April 25, 2017 05:14AM

Sorry, you do not have permission to post/reply in this forum.

Online Users

Guests: 175

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018