summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGlenn Strauss <gstrauss@gluelogic.com>2017-11-06 21:39:00 -0500
committerGlenn Strauss <gstrauss@gluelogic.com>2017-11-06 21:39:00 -0500
commit06d108855d4d5f308fb8f6434d0db23915f62475 (patch)
tree7952316ac161a77daadab6f91f244abe1bfdcec0
parentd61714dd0de1acd75ffe3dab7dc109a73926a49a (diff)
downloadlighttpd1.4-06d108855d4d5f308fb8f6434d0db23915f62475.tar.gz
lighttpd1.4-06d108855d4d5f308fb8f6434d0db23915f62475.zip
[mod_openssl] quiet trace from TCP probes (#2784)
x-ref: "huge amount of "SSL: -1 5 0 Success" messages" https://redmine.lighttpd.net/issues/2784
-rw-r--r--src/mod_openssl.c8
1 files changed, 8 insertions, 0 deletions
diff --git a/src/mod_openssl.c b/src/mod_openssl.c
index 88520edb..af69068f 100644
--- a/src/mod_openssl.c
+++ b/src/mod_openssl.c
@@ -1451,6 +1451,14 @@ connection_read_cq_ssl (server *srv, connection *con,
switch(oerrno) {
default:
+ /* (oerrno should be something like ECONNABORTED not 0
+ * if client disconnected before anything was sent
+ * (e.g. TCP connection probe), but it does not appear
+ * that openssl provides such notification, not even
+ * something like SSL_R_SSL_HANDSHAKE_FAILURE) */
+ if (0==oerrno && 0==cq->bytes_in && !hctx->conf.ssl_log_noise)
+ break;
+
log_error_write(srv, __FILE__, __LINE__, "sddds", "SSL:",
len, r, oerrno,
strerror(oerrno));