Mercurial > hg > nginx-vendor-current

comparison src/event/ngx_event_openssl.c @ 420:ad0a34a8efa6 NGINX_0_7_22

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx 0.7.22 *) Feature: the "none" parameter in the "smtp_auth" directive. Thanks to Maxim Dounin. *) Feature: the "$cookie_..." variables. *) Bugfix: the "directio" directive did not work in XFS filesystem. *) Bugfix: the resolver did not understand big DNS responses. Thanks to Zyb.
author Igor Sysoev <http://sysoev.ru>
date Thu, 20 Nov 2008 00:00:00 +0300
parents b4f69f2ef02c
children dac47e9ef0d5
comparison
equal deleted inserted replaced
419:b986babf3f57 420:ad0a34a8efa6
1238 } else if (sslerr == SSL_ERROR_SSL) { 1238 } else if (sslerr == SSL_ERROR_SSL) {
1239 1239
1240 n = ERR_GET_REASON(ERR_peek_error()); 1240 n = ERR_GET_REASON(ERR_peek_error());
1241 1241
1242 /* handshake failures */ 1242 /* handshake failures */
1243 if (n == SSL_R_DIGEST_CHECK_FAILED 1243 if (n == SSL_R_DIGEST_CHECK_FAILED /* 149 */
1244 || n == SSL_R_NO_SHARED_CIPHER 1244 || n == SSL_R_NO_CIPHERS_PASSED /* 182 */
1245 || n == SSL_R_UNEXPECTED_MESSAGE 1245 || n == SSL_R_NO_SHARED_CIPHER /* 193 */
1246 || n == SSL_R_WRONG_VERSION_NUMBER 1246 || n == SSL_R_UNEXPECTED_MESSAGE /* 244 */
1247 || n == SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC 1247 || n == SSL_R_UNEXPECTED_RECORD /* 245 */
1248 || n == SSL_R_WRONG_VERSION_NUMBER /* 267 */
1249 || n == SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC /* 281 */
1248 || n == 1000 /* SSL_R_SSLV3_ALERT_CLOSE_NOTIFY */ 1250 || n == 1000 /* SSL_R_SSLV3_ALERT_CLOSE_NOTIFY */
1249 || n == SSL_R_SSLV3_ALERT_UNEXPECTED_MESSAGE 1251 || n == SSL_R_SSLV3_ALERT_UNEXPECTED_MESSAGE /* 1010 */
1250 || n == SSL_R_SSLV3_ALERT_BAD_RECORD_MAC 1252 || n == SSL_R_SSLV3_ALERT_BAD_RECORD_MAC /* 1020 */
1251 || n == SSL_R_SSLV3_ALERT_DECOMPRESSION_FAILURE 1253 || n == SSL_R_TLSV1_ALERT_DECRYPTION_FAILED /* 1021 */
1252 || n == SSL_R_SSLV3_ALERT_HANDSHAKE_FAILURE 1254 || n == SSL_R_TLSV1_ALERT_RECORD_OVERFLOW /* 1022 */
1253 || n == SSL_R_SSLV3_ALERT_BAD_CERTIFICATE 1255 || n == SSL_R_SSLV3_ALERT_DECOMPRESSION_FAILURE /* 1030 */
1254 || n == SSL_R_SSLV3_ALERT_UNSUPPORTED_CERTIFICATE 1256 || n == SSL_R_SSLV3_ALERT_HANDSHAKE_FAILURE /* 1040 */
1255 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_REVOKED 1257 || n == SSL_R_SSLV3_ALERT_NO_CERTIFICATE /* 1041 */
1256 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_EXPIRED 1258 || n == SSL_R_SSLV3_ALERT_BAD_CERTIFICATE /* 1042 */
1257 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN 1259 || n == SSL_R_SSLV3_ALERT_UNSUPPORTED_CERTIFICATE /* 1043 */
1258 || n == SSL_R_SSLV3_ALERT_ILLEGAL_PARAMETER 1260 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_REVOKED /* 1044 */
1259 || n == SSL_R_TLSV1_ALERT_UNKNOWN_CA) 1261 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_EXPIRED /* 1045 */
1262 || n == SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN /* 1046 */
1263 || n == SSL_R_SSLV3_ALERT_ILLEGAL_PARAMETER /* 1047 */
1264 || n == SSL_R_TLSV1_ALERT_UNKNOWN_CA /* 1048 */
1265 || n == SSL_R_TLSV1_ALERT_ACCESS_DENIED /* 1049 */
1266 || n == SSL_R_TLSV1_ALERT_DECODE_ERROR /* 1050 */
1267 || n == SSL_R_TLSV1_ALERT_DECRYPT_ERROR /* 1051 */
1268 || n == SSL_R_TLSV1_ALERT_EXPORT_RESTRICTION /* 1060 */
1269 || n == SSL_R_TLSV1_ALERT_PROTOCOL_VERSION /* 1070 */
1270 || n == SSL_R_TLSV1_ALERT_INSUFFICIENT_SECURITY /* 1071 */
1271 || n == SSL_R_TLSV1_ALERT_INTERNAL_ERROR /* 1080 */
1272 || n == SSL_R_TLSV1_ALERT_USER_CANCELLED /* 1090 */
1273 || n == SSL_R_TLSV1_ALERT_NO_RENEGOTIATION) /* 1100 */
1260 { 1274 {
1261 switch (c->log_error) { 1275 switch (c->log_error) {
1262 1276
1263 case NGX_ERROR_IGNORE_ECONNRESET: 1277 case NGX_ERROR_IGNORE_ECONNRESET:
1264 case NGX_ERROR_INFO: 1278 case NGX_ERROR_INFO: