Mercurial > hg > nginx

changeset 9265:d89e0386b695

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
SSL: logging level of "invalid alert" errors. The SSL_R_INVALID_ALERT ("invalid alert") errors are reported by OpenSSL 1.1.1 or newer if the client sends a malformed alert. These errors are now logged at the "info" level.
author Maxim Dounin <mdounin@mdounin.ru>
date Mon, 06 May 2024 00:07:18 +0300
parents f5423ee155fe
children 93bbb9fbf30d
files src/event/ngx_event_openssl.c
diffstat 1 files changed, 3 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/src/event/ngx_event_openssl.c	Mon May 06 00:06:15 2024 +0300
+++ b/src/event/ngx_event_openssl.c	Mon May 06 00:07:18 2024 +0300
@@ -3495,6 +3495,9 @@
 #ifdef SSL_R_PACKET_LENGTH_TOO_LONG
             || n == SSL_R_PACKET_LENGTH_TOO_LONG                     /*  198 */
 #endif
+#ifdef SSL_R_INVALID_ALERT
+            || n == SSL_R_INVALID_ALERT                              /*  205 */
+#endif
             || n == SSL_R_RECORD_LENGTH_MISMATCH                     /*  213 */
 #ifdef SSL_R_TOO_MANY_WARNING_ALERTS
             || n == SSL_R_TOO_MANY_WARNING_ALERTS                    /*  220 */