diff options
| author | Maxim Dounin <mdounin@mdounin.ru> | 2024-05-06 00:07:18 +0300 |
|---|---|---|
| committer | Aleksei Bavshin <a.bavshin@f5.com> | 2026-04-14 11:26:42 -0600 |
| commit | aa09c199921fd104b42c234085146caa9c10b0c3 (patch) | |
| tree | 7ae67d81ec52cab6ac120485809939af49d31189 /src/event | |
| parent | 06c9d63fc8a2510a0568cc8b83147add987748cb (diff) | |
| download | nginx-aa09c199921fd104b42c234085146caa9c10b0c3.tar.gz nginx-aa09c199921fd104b42c234085146caa9c10b0c3.tar.bz2 | |
SSL: logging level of "invalid alert" errors.
The SSL_R_INVALID_ALERT ("invalid alert") errors are reported by OpenSSL
1.1.1 or newer if the client sends a malformed alert. These errors are
now logged at the "info" level.
Signed-off-by: Aleksei Bavshin <a.bavshin@nginx.com>
Origin: <https://freenginx.org/hg/nginx/rev/d89e0386b695>
Diffstat (limited to 'src/event')
| -rw-r--r-- | src/event/ngx_event_openssl.c | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c index a466ec2b9..74b2b0066 100644 --- a/src/event/ngx_event_openssl.c +++ b/src/event/ngx_event_openssl.c @@ -3898,6 +3898,9 @@ ngx_ssl_connection_error(ngx_connection_t *c, int sslerr, ngx_err_t err, #ifdef SSL_R_PACKET_LENGTH_TOO_LONG || n == SSL_R_PACKET_LENGTH_TOO_LONG /* 198 */ #endif +#ifdef SSL_R_INVALID_ALERT + || n == SSL_R_INVALID_ALERT /* 205 */ +#endif || n == SSL_R_RECORD_LENGTH_MISMATCH /* 213 */ #ifdef SSL_R_TOO_MANY_WARNING_ALERTS || n == SSL_R_TOO_MANY_WARNING_ALERTS /* 220 */ |